From 3e503bc6fab34ed89415df56f9293ed3eae7c5a8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jos=C3=A9=20Guilherme=20Vanz?= <jguilhermevanz@suse.com>
Date: Tue, 5 Sep 2023 09:45:32 -0300
Subject: [PATCH] feat: policy reporter
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Adds a Kubewarden controller subchart to allow users to install the
Policy Reporter UI. Therefore, user get a UI to visualize the reports
generated by the audit scanner.

Signed-off-by: José Guilherme Vanz <jguilhermevanz@suse.com>
---
 .github/workflows/helm-chart-release.yml        |   5 +++++
 charts/kubewarden-controller/Chart.lock         |   6 ++++++
 charts/kubewarden-controller/Chart.yaml         |   5 +++++
 charts/kubewarden-controller/chart-values.yaml  |  16 ++++++++++++++++
 .../charts/policy-reporter-2.19.4.tgz           | Bin 0 -> 27865 bytes
 charts/kubewarden-controller/values.yaml        |  16 ++++++++++++++++
 scripts/extract_images.sh                       |   5 ++++-
 7 files changed, 52 insertions(+), 1 deletion(-)
 create mode 100644 charts/kubewarden-controller/Chart.lock
 create mode 100644 charts/kubewarden-controller/charts/policy-reporter-2.19.4.tgz

diff --git a/.github/workflows/helm-chart-release.yml b/.github/workflows/helm-chart-release.yml
index 62e5b2ece..4b2fa2c96 100644
--- a/.github/workflows/helm-chart-release.yml
+++ b/.github/workflows/helm-chart-release.yml
@@ -79,6 +79,11 @@ jobs:
         run: |
           make generate-changelog-files
 
+      - name: Add dependency repo required to release the controller chart
+        run: |
+          helm repo add policy-reporter https://kyverno.github.io/policy-reporter
+          helm repo update
+
       - name: Run chart-releaser
         uses: helm/chart-releaser-action@v1.5.0
         with:
diff --git a/charts/kubewarden-controller/Chart.lock b/charts/kubewarden-controller/Chart.lock
new file mode 100644
index 000000000..ce1b29507
--- /dev/null
+++ b/charts/kubewarden-controller/Chart.lock
@@ -0,0 +1,6 @@
+dependencies:
+- name: policy-reporter
+  repository: https://kyverno.github.io/policy-reporter
+  version: 2.19.4
+digest: sha256:145d113d1448d3c2217db65df2c2bc6ec91ba57ef9cbdb69805c2466187dbaba
+generated: "2023-09-05T09:47:29.471541497-03:00"
diff --git a/charts/kubewarden-controller/Chart.yaml b/charts/kubewarden-controller/Chart.yaml
index d2df448bf..12e8f3e34 100644
--- a/charts/kubewarden-controller/Chart.yaml
+++ b/charts/kubewarden-controller/Chart.yaml
@@ -44,3 +44,8 @@ annotations:
   # Valid values for the following annotation include: `cluster-tool`, `app` or `cluster-template`
   # See the Cluster Tools section to learn more about when to set this value to `cluster-tool`.
   catalog.cattle.io/type: cluster-tool
+dependencies:
+  - name: policy-reporter
+    version: 2.19.4
+    repository: https://kyverno.github.io/policy-reporter
+    condition: auditScanner.policyReporter
diff --git a/charts/kubewarden-controller/chart-values.yaml b/charts/kubewarden-controller/chart-values.yaml
index bb78366a4..ec21c9e94 100644
--- a/charts/kubewarden-controller/chart-values.yaml
+++ b/charts/kubewarden-controller/chart-values.yaml
@@ -91,6 +91,7 @@ resources:
 replicas: 1
 auditScanner:
   enable: true
+  policyReporter: false
   # The default audit-scanner ServiceAccount is bound to the ClusterRoles:
   # - view: Allows read-only access to most objects in a namespace.
   #   Does not allow viewing secrets, roles or role bindings.
@@ -114,3 +115,18 @@ auditScanner:
   logLevel: info
   # Output result of scan to stdout in JSON upon completion
   outputScan: true
+
+# Values to configure the policy reporter subchart enabled by the
+# auditScanner.policyReporter flag
+policy-reporter:
+  image:
+    registry: ghcr.io
+    repository: kyverno/policy-reporter
+    tag: 2.15.4
+  ui:
+    enabled: true
+    image:
+      registry: ghcr.io
+      repository: kyverno/policy-reporter-ui
+      tag: 1.8.4
+
diff --git a/charts/kubewarden-controller/charts/policy-reporter-2.19.4.tgz b/charts/kubewarden-controller/charts/policy-reporter-2.19.4.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..bc93d68da11b9ce729cc5ee4814da0a5b209460a
GIT binary patch
literal 27865
zcmZs?Q*>rc7pR-0W81c!bZpzU?R0G0ww-ir+qP|Xtas=8&pzYaoOQF-)v7USRMnib
zo@Ww7L81cv_W-DXXbdHk7>y-l*=0O9*^F4!7)_MfEVYz5+2z&L*k#pitPJf;JX93z
zc_mD3Y=N%6EZw%)TPR^)RtNP1v@d*(Ps=rez`2{bd}@g|BjkC`T*q@Zf9D+MOQ@g`
zCmH}LI1S&wna;MJ#___SKsl64mh`h{G#?-{*<V3r;dqsi4)hmFD@sv{H@R_zC4azR
ziu<jvFW$a<jE03h?E3cVf4ez2Yyl?s?(QrcTwEAA_}-=c9NZl^USZB|?VzXSM>vZ8
z&h@>j9}f5uAWC2J!kJ|fk=k%Q8D;<Rhkfsj5qJ_wDIyn=_JzlE(L+ig8_`=2k@jaR
zWKVe~_ell|A^3xijL|;;A+8M%<wYT#x$pqdM={~Q{c2r=Rp*+#i<IlRkK2}`M^6hU
zKcby5<EVH%O{Ty0+#`4!)eF}UaIEb3zK}_TbuW?x*Ac{@Li(jF6hN&kx(8=OS_Evw
z=RPASfOHfdz#?TdbV_NA55#~}#$f<NP6TNHf+-~=&<GhIjk%8)Nd(*>0%h)xf_QL_
zs+jE1N0dV}BM{7h=q^Zq$LEeMIO5ocSlsWu`^x~ge-8u^I@bUl5j(K1ixcTG&pEe2
zv94@?Z<aC79EBiBF9Oe<15uj&$+g>msMPYCAw<0!^Po8FP?Ld}<)CbQ3dNpd2&xd-
z74<PsF<r+WK+b|nG{yVW!1FgW+oIXz(TS!<Vji-OHO7I^@KjTR`E`W<@g{TUW>a|<
zK!U7uWfzV1+3V--uCot-fS?2P#*|HMw;t@^IG)pKGUgJEi2G0P-<`R$@<PY;V!;NA
z`?$NjT42hR#>K+-cz7dvv+!i&7LD$cX5;gTp}4y<@@C@_gzVorzD_%E;Ns#x$3cwl
zz><Xv#SS2y!F~(|*#Q(={k-`&@bP%D;ljS}&i3Z_&iFqD6?=EzqT9tXz8MUYiCVP5
z95}xS;K0Sv-uZ9%t<C}Lxx9Dp$cmA|ps%<A0)PD^3ki)Wleyrci3MV)Nrsy(i6xf@
znX(HKiubY1bQJDv@D&J>kad4c+5#=mMkZgdg3OlHLGl-c7X*6&IdDv>DzYtUqKg`%
zDh#bdett%smY||Uz8$azMt3J(iB3fkSAb_H((aQm-UXB6B#1^M^PL1fn@1tN-p&6q
zKu|yy<;duk6&^d*dIk#L|8NvDw*U<l_nXx3mfa&8N>HGT0x5Cps^`A%;=NnMB_lNE
z$N+{6jCMr+Re|Nij6zKark*}awr4wxq<Ht--b%4MdEq<;6pe{Qy(eO)#4JqI7g7E2
z%xSPLa*b=U2Q7+}o)2UO3p^E~^@aw)2#IK1DNV^HA$z`q|B5kQ{7~^u7doAYsCZ``
z`n8mi!|?sKi~=Ay=4zf>7$VT*5p)5?e<64QgY*@F8CDj6W<o>p#}$YKI>H5aMvY|S
z#60n0l!Q#Xz)8Y6x(-mT;0Yp}NC!e7LsFt95t}MP!3>YEVDkgzn2tYX5@B%kmkSgy
z^4}_Vj0E8s4iBhm-vEYm;RPmEMEc7)UZ?<~6-zw>cae6Z>Efa^rC3Xt41<(U<9Z6L
zpciN1$0r^+HP%#{az<-Bmgbr#FDS%e5MJdR7zk$O#Qp(P8O!*qU13pzf-Bcdk#v$X
za#4b?be&0%#B+`M5om1_1)`EF*Hi^hcx-7(Y35?!%4QJy`T<f-!6Xv3KD)BU+n1c?
zFt`Y-5ZlMwfp1i%TH>I<KxlXj`I^<YgcP@kFlk60Id*5#Hn-uHYJ33+6BYq}7@LO8
zA~pMOs|;afb<u7Y@i>l<JA7dBfi!MGhW`Yrm<&Bz<k)fsmHPw;rl2b$D;s6t{w1ka
zcx~=JWIfm+<qS8R0W<~2fR2?85D=nLVx>NiOaFKj20joh7;wZQi&QCxP^F4<2JJqF
znEV{78Ipe1h!QfhKG0RMlx~*mUE!JxL)nJ+rXO-5NswX_5GojH>~MryJ_Cin<b}4s
z!gP1ON5pEjKV-jjzds{NHY_x#2{8FXc^5<=ClV>~oS?y<5ht01DI|(OW=x~R1h5PJ
ziHtRE!r1w7vQpBBV?!<G9Y|+<Dw~<I1_TZCso^^Y$3TV#s0T1$dI@kLkXnO->LIIC
zGOK2t1Uw}7Lew)}#C;K!fPH(cq~m%_Lcu@^;f}Sm%Q8yxG%Z+jRxN+15M*}c{)ZlF
zfv=Q0?ieO>EsX%oVWlzn_pdaKUYG@$uJ9*lzgfg8c6XPf75+#tDV~%qAb~sRdm15z
zrg`CheCxUQJv!k<TI9LqYE5RfNEsHgRnXoLR1Ytyig+2BMs%`~e8C92@I<h5A@)(y
z`|ct9EkmWywdcOLb<lZG$DzLQb!SGgN2Lo?3o)dms%sEAR4}NWf{0oeB`FRl309EP
zGV{z&RA){;9-cd(zK9DUYAi1=gXp6j7%p@`WqZ07@}{MQJ0p1ng#jO$F$Q>=cP$@z
zcRXk{Mm(til{xS9zJ@vjHbrCZP3LJw#ZmyF!%}WZwHw-MDqA+^MSu_I7$hl6c2`}^
z7|BXVKz1-teEL}SUyzN1xCEgrdQXHyRv}*z5KOEwVLtVIaDVZW)m)2-;)XJ{Gnctz
zq{VV=*cNk4%WVxk5i^$TDOAE=$dS8=(~vPn2*trnw11XSrG}<yAg8`!kQ@zS#;(9R
zMCKtM`}Jn#9hlLy>?x%rsM`W|DE>ki2_dDMGszT($BzwiOoQYqHr2hP0FM|t^s}9x
z+5|)Z1EW|Y$qWZk;a6ym9Ulc*6vNJwW=VR^MdsDEF*HG@%Ij^QimD1e*yqO1ilX!{
zdBBx=c%@!5x9UWK*T3sV<uD<g1|vF#lb{Cj##hZYNc69w-u?<5wxdEPLNg24dk90~
z<_Ca014$N&IttBKHlNKx9MYy(SwWU!iWcA+fcoA*mV}is3gr0A6=;$IR3mG=Nm4f9
z&z^KhYAsq2xG*@NObZML1-jND8njylS`Ba?q9batIz)tkk$QhQ-VmyMt37e|x_bf1
zI1VA<c_4c^AC`@nKJtY(DAXQgA54OA`0%BABY1};8q|6M3B+iuQisS)AAywNc^DyE
ziONA7+lJOJ367(F<`%#L_s4=-*J-r<V=GIBWJM{jppNTHI6KeKQS%|G;J6IU1p%<Y
zft3_aY%joy9OMp}v_HY&$x%fB%LG#srsAV-Uj@<Nh5#2s69KVk5PPjYu`MQWz0e{Z
zQOl7_k1{Lhd6n}n3N0Z+u=yV=5cMfrUtkjfdB$Ox=XU1xO4KqO*JP@}7gMB5E+m?_
zdCL#US@~@0MPIP1$X<P|$_#Oqxv^ZCw!!P;D(mqI#UPy~W?*mEFfyK)tJk@!uS!C4
zW($-eoXS7y?|CN_et`^;ATq4o&i5D`=}6T2APPqsa*QM3D~X+S2gr@y$U$NuNGvl`
zkyaAs(Fh5Dl_8rxlw}^fe-5ljI1F$E7WjMCo{Xs;k`ASDOc@l*?<&=xirZK8l_u*P
zC@}KhnS4r(ffw;x5vA5yseE2MJ>;2X0<<T%I46q+gADcddoiOx<382w+ZUUIHz5@q
zzsI=`1mE+|uJ-c%KL3s)9Rh|)o@+E6#u9b@QLezCgmgMZl>lK-*O_5}z@d{CVZ%01
z(cE7v_P~6+fnQ0l-9{0;{Nq(ABa3{+VV$N(Wa0!HA5&;^0{>9r9SMY87L$dFS+2*R
z*y|mw(+7S!*-&0)Q39uRh0GH*0U-%l3vrPl<Aqu~(+?eCbG2${OlST(C9V|6W#(<5
zwN`GGMHCG+K;%Vm7F2q)Vy{3drx7SMgk=H}1d|-hIX6yLsE+D<q=i4W)O=@wZ;sNd
zQCe}UfuUP`;MtKlTf1q$LwJiAdcn;U-Q-ETldph}Y{)q4<+5x(n=1*ssN%><9pj1o
zt&~fpUEG?s*dicWMBrqUB=Nn`l$gaCqCqbOwA~1)5<^+iY4;mMJ)ZoeWMt27pu=n>
zTuF$Rt&@cfe8t=qVHi<7^>q$p7?-pU-(5fntRyU-W=I6PU)1nV@^!!fGErwFN)F*z
zx^)uxB+~Y^qH-~_ELxX*u5W|}qqx69ywC(wbl>aoTZVPqL-a~r>oV>Rd|cd-J{i8=
z{(*p9POe5hS9_k7EhFskx;WG>X+F#~aK091OkO}RX$Y*5f4xL@C@B~-JQYS6YJ?lg
zm;;ao`e-~o>lx_ZrKkk_@?wEseSw_NjS|(x2>3yD!+u84Wyz!fS#po|bQHN{TjlG7
z9lRn-#$-w|P;gxRLJG)GB)K_EFj6F)t9*tTX57(mlLJ~3cFE*1_Q17qmv@lS^tir&
zCQ646panfD`7Iy^{PP*PQrvlSj(!_@^u@H{0|Q{H->Ki~LJX;4wR5PJQV%NjBGw;B
zW=c3ElmZ$}j?WMkZ<cV_-mjD#2_r0Dsg^62$vMjE9uxBN8=%SyDWqi7Lx0iAy1D3@
z)iSCn?H^2QkL_2O(+5eZ<b=>AGmyt!$=_k%)AZqr^&^(D3-)4QCEd{%A$Sd_j)|Zh
z39rY<1a_ZZ!KrmaaP%EP59vR50}cC3_EES#CIYuu`DKsP0z$u5OV_)!u6sJTi$`yK
zZR0drD@x4xsfj*Q8tin83a3U@YvVEMQ<<8g3ru14;f?Q}`*29VK0%840yXsaYfm`R
ze_<+u4u-HJa8Sra=JU8DfO?#O{-N&%lQ$KIGka8@8I`EWIwmMvhP^@vyFg{-4DzP0
zvdmHV?Tx5q4!*46naq<s5o=Q-$LE#WJmby^jm9CUj;1bE0beCG@!$~v$2e?X0nJ67
zRfKaR`KvKKj_1iT%Fv&3R5?PaBXvZ<^(SlYoA;92=a)<##-6QKQv+Oql<j>EW9krB
zN*$j&YI&b1@_c}loidED<Lt70N)IU14q`S;h+A~er<&>FdWwoOZ2zm(`DX&$)CtN#
z231BHiMah+HL`A-BcbK`AYa=}qZtTZnHFLV;`xu8C*yE;a$;MWnavK;SiBNx#dE>R
z;L~$ek5Tp>M^qGxLfNlxdilM*+Y|3!-|!%gf1nINziZ{$oO~;5_%>*-u&l-n(!+>x
zx;4gKI1(oBYz}B&FEy@8g-wmH+2ydG8BAK^6*Mz%Z<TccuFPs=@FbiGZD5+yOvxy&
zKt4o!G~2#t1DxP@pVBexwV4r1^oqXK$|@v?f|EXMTRp=w&v2hiMh{!2*)&TE{8Uk;
zr89xtQ7k_P_5qCy$;aCphT*wIflK_>yQGEP#Z-*IaG{EM2-DCj5f*vC4g}@###agH
zaW}S}?w|wrJ4sA^?k^Y+wO^Bw^u5V0&w}EFWv}YQM)P`k9o7&*megADRiN_;iHHaG
zlP7PkWz-|8>L-Vq<})5#7f+xY?+1RmZ#5P!jAt+0dXh6oHP&<Dy>306tU@-NQ`q?}
zNL&75lNg+zpB?p8gxM~>NYF$Lc)QLt8D9@c=<qjE4#<Ts?ZGu1GyF@tEJBYv*gMw)
z8e)BqfG<DF*Zt2=SZ@kC6bh`o)lInxT}*8$XACrJY1N5q43+@NwWJmN#p|zBKUZy`
zr&gD7lx3P!*|Ifn`dNNDnm@lmh=%5k2!=@a|4F?2lP=hs>0>8X)1{&<k7Nqognhd7
zIq-v8N=Z^vBBBi}ZC5v__>|JUwyP`?>@)$Z)wnh|h?>&h2ft3f>1)DQd>deHptzVP
z<wY0Q>gwD&y7;oi`WU#H1S?dM5JAA!C9L`yWCqf(W}rCjGxB}SoX9rx+$`Mm1h~l7
zy=05s#?zCE+(PhL5I_pUTu80yF8T*Kt`7Lr5THre^3)t5_W1ITHIv{p-sYg22yC!c
zzx4?>7Q<-%CW0ahzLkj6LP#9MwNXW$XLZHv!(NP7xD;}=oxfxIIt9<JIo8T@po81p
zJk|a^WedA=C9wjHJ3a0G5I2i~bNjFU44z8#=G|PJ0y@o2giO;edz#O7@yc$VHZ38`
zAgkl>DR9aT<+v*_<lGQ;_C49H(a2&o6he+(VPPod#ne?53`d`6thgpf;WI3=54T^z
z@48Dk)^@&8Vehf}k*{JG9imMd-;+WEj-3e?Gr0HiFfn7aHW~~fv~U#S#Ip}fNu=oe
z6NxUDzn<O2JDyviV|jTKWwBgvy`GEhQO(MI_lXb~NRBd_$YWfSJFg<|X;}fe6x6zj
z$!|$*8zPCeZLZd#LFG$#x2^+&T7ZoYXtyF1**_SB`3(+i%Slx^oEe}0`uo+%#`TLt
zi>JmjiR19|)rt1Q=i6kvmcgif*zl_>qbqgUltbhX17jwXRQl)yg}{3m<25EdzwUW}
zBZ!>QD+JQy4g`h#=wQ*I4^Z9O*?@(SlRp#uyz;1O9r%tiaUCtBj-fYF0d}vDA_uxD
zy?->fwbVRn?=FT*Uoy%xt{!oWB#EG5_s%X_HDLauv+^r$r}z7*&d*i9=Zeq6=!*xi
zAEt;Khxu>a?-`=VcXt&d+8_Ve7Z-jM;w4qKF^Kzg?#e)Y>J5Y<eE-wi<6+UA7oCpU
zcb!K|zyQk`{g|KntoCT;kM0Onpksf|@^0N$oiUy1isDHK@Qb-{E_rGn!g?{;JPy&k
zBk+DUGoAi`DQcCmIgg(ayWrPy;yE?2RnTW6(XwW|^!%;-=wAOz@Dwqq97$q`LA6VN
z7_$x#JYu|}5eG*Jr3ln0<3bL)-*1Hy)x(~oJfI*h<|P7_n|Q7se!N}nhjg&KIM7X+
z8_tPFwQ(=VIa))I5?_vl)^k&Pn8b?17{{JQJI`y$PMq;5m%pI8T?oXMPM+8W0$Ar7
zzT236(Mgz6GLh&zdcGKfALLbU>r7pJ{C$1S+|^H}r5A|@mq)1Nz>yDhY4&**0x^Ai
z5-YNEDeX6mAVEFeqvr>(iZTO8n4Z*DQ2CT9ik5R;vE^$h&8vj|0bNX)UItY##aum+
z)XyfD8|zlWR>yiyyN&SvCAJsUZH3wT`>AOYG>kHmub?cMk{R#1=vHwTymQxq%8ee>
zYUzehE6pm%)C_aX7r`EBGQ(w@DfgmIettY)y&d<9zG$y~h#1Sp+1aR$%iyw$0k_94
z4JPU+4WX{3hv1$lh(2Uzf*<FV`=GZ5?&KuU6$T8_B;Db7mp{2hp`MV?lBtBT<1C6_
z+;LuTW@qUssZeNnD>g$M?V&?Bei+BTZhEk8Zrt3z$X(7d4oQxifpb&}A@p*DA?9~9
zg@8v;0(fFt_xLUwSW}A@5%4F%cRrwK*+)pty^Nbk(Na?4Mlj5>z`>|5v+PJLX0)r=
zD83A8RPJlXZ6UV57g?6#ugGNK^(<24<?u{AWublEz(coaNSH5=xu_f$Azf<Jhnte+
zgNO{byEO}}Kl?m<7Elgr=m&-bM}I6|L44FPT|&Pi?aP<azYjX38Uda0>=mq<-9{x!
zsfC&-6h93bk#m*qUR~)ls@{K+99LKhQ87P6rO(r^(uF*9=v5hzX^yWuro!Urj`{uT
z+{-ZNTly1gRPjqC&*@Vgg)IJQXIe3tc)~kZj|KHA@^v;29z3k%wQe+S;}y{Q&--<b
z?KewPs-Z%^dO}PG0l#OVk|+dlhk(U@-#cLl-F3WpWsTuBjMIe{z`nBv!DX0Kr!^v>
zaj#HN!?aK)KJc+6q0*Z89mxrp>;2owqn`K+k|Djq!(?d?Ng+r6@_I3%x*nfWig$A_
zx$-e`<y=tVuu`*E7Oib<uvJD&OhCs+Pd2?b=f~_olc05!K+o#yw`ZHUs6CN2^b8ws
z0F`<5Yj+IreD_R@sxd-ePUg^xb~83qreYG-a@VSgH?GXE%!Km=kGHZ7;(E>lirCSG
zB0QH4yfWu6?h=lD<+(SU%kLOhDW3|#)pJE66%;$oEb=9IJPI9~^ev7Uu*y`GRW<wE
zYMm<`53J{&id`;o@K<H(RYrmQe|dOw9;@pHKAwuCv66*P6DcUF%S$q+l#xE{x8vh+
zePIZ1K9!-zZ&n~N%js$Y`e%aPI7G`G@(+)Mg|I)x#6^zB+%p1!Rpuv@?<}M^8Hb7&
zltgx-$jFRx(%^V?sTM2>hp?ergTf(}4GVeBMvt<@&;Cdoke+w!@%GrEPsrqhp!9co
zV89d?{Z;?hZrdy`!C^aR=CE4Nys@rckUJo|(cQU669dH5<!WU{%ChcKwqipod&3Z!
z5F^0GS7S8bRjWR0RU;oS?>&WthZbv3?Vs!8X`wZhHa;s|Z@l#PU@1L{S2sHM?;N+s
zxEU=x+S48TysXXgg)b|RjL6O--#~q^4%ny_a2@t0l~dnPpLIV;g_Shyw{*nZRoVu`
z46Piw_8vrjwkLw*9epF0;m`1?^e?rbxh7AI)Pncg)7>?Rv3w&xmaCidpiI7Fyj^}^
z3S%sx8^i6BKdF<OWEz(ui+>bS3to}um66MY1TQ~*_7HlI9u_0ruVG^3{^9H<k`+Qs
zixb3SI>Rhy-wTY!L~mE<X77)|`PekyVOM1|x_hl!U%a<eSbB(#KAV_P76rOCK}ly%
zPz)hU(?IBOa+}Y|Y5JbCZJ;*nEa`UstZGhWtZM$3jS3r%7^MU7{+r)Bf#56PJ*zEg
z#LPK7EdHuG)!`D_qc6>+iZ0X_KtGoZC%0-775$cm(ydC{i9HM5&l57<`x_zss2^Oo
z^|UweTUeWyi%$>mX)|xNvkQ3#i#CAydmyTaIkrXMnh5~M89(*9A3h$zv-ZcVEsr%-
zmednHvgiU7tha?%?*~TQ@|)3~?jGsXqE{CY(u2{EAtWcRM<m*MSD#c7aYhPW65pvV
znWNqBcN9_%D8+&Pf{VU`8Br1VbK3<DOO7l>)*xJ0&hr7rkqERQJ^6OQ?%0P$CsSe?
zdGb_j3avR>C8{-pNYiiRoX)+fy52+rvKk;IT?4n_N_$Ug)Hd2V7adzgbp_Tg5tl-U
zEXlBd+RsD=zp>~vy2~%z+~!vRC`Cd1fOcd+$|vCO5Fjk5zla^MS;Ir-OPf*5Ii?qP
z?N=5*vj3g+Fw~ihp<VAINM}FiQq0pX?c|X4gk$&@^c{clhzyE~XQ@1=o@A8!5?0qd
z_5nt*l*FR$Z`1jq%rL6ws>Kc;+${1p1D%sDmW6U!W33bamI7k+0pKfW;bnLKuFY@h
z0kG-L>PN<Un)*k_U0<ARMpVeQgjlKGmc^BM66Y=7Td9r&rNh;|oh|PD2sC=a@PR9&
z*L;kHut}(TV)-8{2!eNp*Bk)fajqgLqk6}KGAtdJppeudMjL30&8}s3nxEzkpoY8a
zqjv1)=fX&N5AgL{y8yI4EMY!h28!+C8{2EXaaDVpPkBLoDJOo4k?Yogq<af!GX@?%
z@?-LFQD6E6iHD8SeeI4ES(@=)*NJ?hj0Ls3KC5d|)DHjBG3f+nXk&NXq31TFN~D^K
zipF2TnAqSQclOed;|BWq-)Ux`>pR&tlZD((y;bpsnSh@bZ5cpgJxjOyOk~h=1ja9P
zV+GDbgw`D5j>12CFDzgGaVOo!WZ5Ju)cGVw8k95nmyZX_3^ByNwKdCJQw=TGX_|OT
zMp`lb?WAM%mJXEBe{}Ymwdcg&6LNSCY|*Os4V%aAXdP_wjN<)ZlLxuunr4pK5DN?t
zub~~Ew}isXU!vwEB_flS>|ujN#;L>f<MhD7A;(*kbK6^Yop^I*!p%X4m@{)fh~;FV
zYSFyCNs7~2rWzeywd%A*Yyr2MS?&l<XBFJ*C;2tf<)=G2;%bbp>XCZ3$r&(XWPNER
z@|McTP-BuQ>)1?s<`Zvf^4b=XTpLo}8J3M8B$=x}q0oOron|~#nJQ6NPDc*qOc*Yb
zVhR(=OeQ~W6L7mICAw<@*Q=amWvHfLJk|b0mMI?$Jr37)+H|HoZu4bk(-FQh#vLTZ
zP0@>rx$0-VZvVBqG?5gOqDO;Dog%<x>?-W~<an>mS?WqzSz}%7^m|C9d2E)m<bB4L
zyKXCKKxO*2j6*18p7gj1RGh{<wM<A$ErJ-cN3Kvb#MPgAq>U8o-_q(n2z6F?;$-PE
zuaC#W=Wyq5`B}YQPJ&*XULJn0m%+<>4^yLu$UPRRgNx^MN(lbKkZ(*iAE&}y?}v+a
zfv5x*;#xX3U}3BN7L$sD(=VM$KE!Lg3j0y{-7YSVw?|+4)h+wo>zmx@QT}e<e@DLb
z>s$M~=ZSgU9$yc>^lnm;U5h1rKCbU4`sSyz`n?@_F!Trbc0E^Gj^3JE$P7Vcl49pY
zvZ_h>7R}F{J85mrD=M5oYea}!s$Bg@e~Mq#<Fv?U0;(pn9Kf;=I%o3L=D^%^xUmPD
zLtE$un&mL7u6u`9w{2znXs&t(eb)hQ96UT0Uw-z-npObaFGB#hOdp!JbxohN+sO%B
z|B69pJ(xD0ojH69R~uQ>9X3genBm|0a;x~{X5(hD{T0eB>=1sUqQAo|+MN#87&{B}
zItGf?*njd?Shq4mwHNPVQ-9vK^G-jX;FET;gEf|~<T8WT|G;>rpZ(B|IK{@F=>4kq
z0Y2Uww4(qH9{iT)pVPs{m`_GoZS5iN=)-TCW=lW)UN3CZ?fP5}_Pe73ZHfH^)rocS
zAoRQ!yG(u2;jJ6(WNZ@i!QgwKp2yzWd1VA-bxoJuB`s!a6aKl4cA34&R(+$+c*PE}
zKBY$u>V+)zswT9YO;3N(p}U~M(}(4$*1v6vxqBG1g{gxpRnFS^2l>jlE2y?A6`%Qz
zuja!|ZB3KkEYnm+cWPHXZ=hepRj<dSUdh(1P4+36+xN88yy359w6-$Y8|m-l*m~q3
zz^S6xW4Lq{e%R+g#wLGAqRS)F5j3negGYJpi{M7|URO+^^Cm@(B2c7MG992oR9AHq
z51CX$LU%MFvl5X*skPhMx<xweqB8Bw)l*hJUWirJ^ht$Cy7rOj*QAF;qphPs0<OtB
zay^a$dhfkrJ00P<+2rL)%tau&^o(1<ev@Z|l41w^TV$!KPJ9>^?LxM9R32kJv|*c{
zT(Fa_Fiw542J_OMFOjTT+0tHggZcdw#gh0{QK-~45!-a*7K^al)-GL_%TQCypPtM_
z42U(tIb*i~^h49?Y~D5uFME?)f0`&OLSL~8^mK=qwrE;Eo?l-5vc6kec)@S%G_T9+
z@^XE6IDfr5TKa;YvtUda=d^+=X%GRP!i9|drLT&tNjp3JqBgXaJDz^p_3ZzI2#eog
zP0Mgmy3z={LKbE7>nX*wKE<>`bGW9eOXiY}$R)RVyqKUm2f*A=ml^9OwWW%r*dS%U
z){$FTXMC<FYSKJ%<7$z+o@s+uL7-0Q^Au3Dldoqlv-_G~ANtj0#jVdaQOSheIG`!#
z9usl+ha(ER$fu^?Hz>hw<$KizFgzYjJW^}@sf!0Vb>QHsJpyoX*<AOw-X|Z$th;c7
zmX|-M_dn^K2diB=jC2uo!UjV#Y@`IrRI#GLVWCcm1a2KX5E9|?P?n^>j<){tyKCFj
zPc=R8ntGZIL%`dtx^jRwJ$Za+Yk8|wmcurdtuc0eTXi!^fxW->vexrkkN+r0L@I!1
z-K~bnl={00`X725VycIHc<-O^Rr<ZPFBg_Y2ru0Zd_{i7D<1JWzSRLuc|kJb3^wx4
zfC;9wn{<nsx?^oT#cWgg5v|C^$j)YiD&k52zru8{claTBJ(~Q)G5C}oh^^zM&3won
ztI7X?EjJMpk|#dBn|?JhX;@q|l;uk)V^+Q}o&8tn-?@}LM>B55Q@K%hT1BYSGHHnS
z%tU1uzIbX%oSLO?pB#?doEe1Z+Z(ZNi?QFf!DQs9i;j#iys}$*UG6vqW1E2L=(4Jg
zYfXk4or>10>TI&C&A1OJLxr=55;)WHPWYDR?l!iy7+;mT^^~Cc^tBUBD9vD}SXix8
zQ|C%#Pj;CmU=>+YwQc-0Z?J#fk@Nf1!C~$vlHVs6r|!5srIep9nAcd9Kh~)K`RJ7Y
zY>-LVG`vW)brml<9<$Go)x%nS8dabR=2<$|iI$`F<!9q>zEEgXKE9RKJ<s7@=nyr%
zm@H#RLZxqSN!Oom;v;mm?!Ax@g!~V_t6x;mD_y44D)@)7NrbFGAW^)43Zx=y%OSRh
zhUyzZYy#J&T)w<orUIy-26-3`M2<zb<X|+201$&kMNXf)LF|CpYo5%cnkU|A2j0^y
zXQyW!8t^FqFf&PkXIjvXrtZj6B7MT@AE&mJ6${4urD!Gl8>aGY&uT8QRJ56-Wjxfz
zKN(-s9m(h{J=R8Vuz6<Ry+K2H@0#O)kD!N_y#4<C<DaR}IN_wQ_wXT})8W#vJirfx
z;J#aRZ<B3l_e$1vk^a+b=|BpmSKQy(Ty8bNhK(pBoXxR*Ox-SCVr@VrT0VgA#v+2W
zz%P3+r*Z;=*4w~}`oxD?v44{Z)N^Of3FtLDkpKG0-ohZnk3aOq<2F9+TOYh1KK&pp
z#oUHf`8nT|$JIJ?GZ&~oH>ykWCKjgvDcmM6C;tF11bFHX00O+GZ~dRli$kM&_FX&2
zrzTr1GoCbQt7HP+_xqwszw*5uyN*1}FK4A2{cG3Z`z1(_4B!PQZwBm4I8!|K!sOWg
zR(Tq)&(p22F}-WX-b{O=Jp^26-^Y9a5Mo2WA_0C?fbALO_KzC&?udTvH(%3X`QNNE
zF|9$G-kkKKP6X$kzxU8;x6I08blcso2DUlkVmj$K?fz}yw6Y@4;yLRgq&BolEvt(1
z=;&Qpx1s1oPAa-aC_-|b^3-@YZ9T&r?^E3DHzWdtYryq{VgJiyi+%#<zx>_*rIh~w
zi8sAc&}SD}P(eAD0j=&RWuT>A1H(9FjdU!4;5V(0>X+m<Kvo%rydK}vp+lH)^&UVx
zET{o6+J9f92Ix&OM>q>tu$M9Lz4iOjVSF#(e;pzCeh@g5v01v@cRy+56jP+E;X=Wj
zQIJ=^z1YyrmVt^Xh;+Zxk7gi#yk-sTn)IC|6h-I<yld*N1Xg@PQc~Aq3N77gEw5q~
zg(sJwJ2g2GiAL4h{dK~f-Q4`e05zJ{5PSO7)+WMA<Uj2=ftq!qE^;vl8&B01j0B&e
z3HBLfLg)`AkUon9CJ~KB2y{%xPZVT;ZUoQx(*KW2BOW%G^er-oCf%VADqV!M4Tz{i
z1W6Lfv=B-SO%_cK!`}o~AU>aF{kDe|WAI0U;S={vwoC=J%1CGMcF4sjhs4N;G|cDa
z#eCJ=kAZj51$q{$(FbB91-|5j4Sm87tm1?}dBZh8BrM&3ycA^@1dj84>UX2`H}aen
zEve&3KOhA~WW+5)0*MyM$cCjb2pu{wqZC9H^Vfk^46g+(e#2$in^MZ;y#8&EI7vM7
zJj~&wTVOQ|6(MpeBf$>?29ynH(2?T=BE*wJOifzJmCuN{4+HA^ojX7!L-?b7IRF=C
zcwRz~-XM*5BDME*hkfjwmLZwoLcj`QPer|}tE=-ViTVn75?v5=8r>GGz2uD|!O};H
z$$V0Uxu5-tD3O<lAEw;LR)l+yoC^&XriK5Uy&fhf!h}FA2tE(t7mhbar4q>9aPJ3_
zBW3=&f>j=l!aDh9Lp)bR>uH7suUN-_HG_D{k>P4Ofr)wp7F=l8s?wdcAJ(I@`clb-
zS#|NS{V&)Nv!aU#y4_bm5tbf-XO^mCNFk+bT=+iX*=vs!_Snh95UFhT<7ri&B7VBN
z-2=e@GjL(6ZzHPZeZE$)_xrsnv)?U#zfUv#6sj<L>}5?)RBD_I{<y{e|H^WEC6U4q
zx#WgY4g<%vXyxxG=dZZg*}Uc-22zyaP@>ofnCXMk{b9sH^gu_yo9c}Kxb7FCs(qR_
ze|2_bsbxEKMd!AOr;<Z$H1`5pXJL#OY3p?$nEN<ngfJ681CoRgf$z;q-#&4V1AO~7
zPYtqVRi?z63skeKXGH80kci9`*$1KKTH5deDkl*kJZG1HM%G^F%CHvDB5`C(S}SY@
zytjksbz#0UJEfK7-K5UYiVNChb#l#r5AHbv?j0W60B!n<y<1bOR8oC)56_-;7zsdP
z52c+Js~@U&MPTEU=|6fT;uG(!OKf12wz*Pbn-e?rkOrnv3@LhRO8MJ}_xMv+UH>dU
z03|H^69gXr&EWQ&tPmzKUpYNHF<6;roC5?nyD*`@2=~=UBt~R-1D*6RgI};)@bmD%
z>UsL{Y<*eSEB*J~MPM*wS6`Y1sIR}|7?9+I#6=|8`Z=g1r!$xbBcN{59>Cx;J)76#
z{$#|Y{N;y{u+H!^_r6dvOKMP2w}^*((F6X6K$dKM`F=#z*5G*}CMWs@lHv57y$M*6
zh$p_`M<2QHP3vsH5}k#+wL4q%G6N5MPx!tS5L?WI7szf~HlKj+y|cdu01t<`9Y9aY
z=!_c60}y0kw4+E>!qZhXyIKi&lnNPCY!4-BmIR44PO(T8Z7fl<&>jPpl<E^FQ!0Zq
zN~`18;l?b-B|Pge5(CJ5Wv`uy08NGwW0<6oPXV)^JyR`2^{3}0(ArFp*CJ!f$a_=2
z_o_(GQN<~sv;D<1_xRJ#-J6l)rx^bUkL-ZS8lIo61yT@&sYsq$!fNtb*hOxm@*miA
z1Q&{_sphgX{u8kH594qov_r>_j6Tf1#d^YD*=~2C?i?<Y{l(6z4bF7Q3N<#$1j{uh
zN2>(hA@GovZ}E*Vv(w>HRq&q*M7>XrM3h)6J(x<#pCFMxf5?rqhyH}3d`yRecn)ij
z^R;W`;;neAldLuLr^0q#?56yxMb*%cag_NpNjX!|#(Ca8-C7{n3K51WdosN|EhFou
zk~HGv>ZR=b>w<pTOPbluOH=69sA{+FMo_JB!QDj)x%Kc_>M3n=880jI&+ZRnD{N%a
zr>^m!fUS%a#c`@sg7`fyCdEqPvCr~mJ9ZL#F%1Xj86;EP)RE)B^5!bY+98z0Nrd5w
zncpLD22F-v8ft4-LSrNFRk_`wQm3Ua-*L(JM~K&xElW8DeD^y4Z|<>dVk!0kc*S6U
ztF@A7xF%uorc=jU^97YLRcu!3rct}4A1}|W*E&?`sr3f#s_dfnz_WMh?}%Hoc$}eE
zTpR9wk642#HG{6|MM9`l>&D7scCBiwbBj7@OX=0!#0Hhi%lVWWV+s}3YG2{Z1)yHM
z$c4r(Nlzu=EkZU+|LfpXSSUJ9ybJ2AJQ&$QTZ{1~-Mq{PbnS(tpMfJMeg>9ZS6GX$
zeE1pj;thTm{yuZxF23af?K-%Fd3A362shVIk?e&^Ur=rR&!3rUlVhD<8I8Ib@QpRF
zVe4`-9{Ajdbjho`aTfQVlGo>_eXUk&S0_VV_yO;KN~|t%aS>Yh+3=GwlbQGPHG_b|
z@LnqwR7ExzstPKp)KVxk9p*V;R4vs1V{FtAxh1lZR+aanw1zuNW2iWP7o<f-IYi`>
z{OK3SJ5z!knyJUGKa6|Attz7MUOn1t<>paWGq*)_HQT-ez6{jMo`Py(FCcz<yYRKK
zargDd<jx`dAqAp$2*fnAW+c>g=B78nwx5aIO3nI5vgjMJvNV+~bLh&MTyfh#^&guW
z_9^b_>sr|u%B-`cK+Tdjac-E-+9AEp6ts)*pLX~yG5i+!$JlQr*N5K(MRo?{7^f+s
zur^O!MYncAcq>(#l2i>s+k!l0MZ26*jX=8|tTU)N1*2-3{HkB`?u2$g^U@Bqled75
zv}^lQOthPA&UW0}dMpd|`+4He0GC;SlS{G0QlCOu1XT<-OuD_QW{{R>lx>Adlde$C
zbVsj+1r1>OqQ1Pnz?as%8HFqH?|QbcNn=(qPWxo5FoRJ!PBBV*V$PhnDX1yIJf{D$
zS}`_(-oTQMgZ%{9Atnb@_nhX1%<V-AZOpPyNkVb@Tnb{x6b2YvJfo@|$VBOFj;EZ*
z#K|LVp0Tfb={VY|ox%{mK~KHuIFdh;?e&CUi>1or4wfpQeYt$2Xv;|if^ewXs?Xu%
zpyfgK7nJsI#Cr)VT2VLda19$&3M}|9S10JC{G)k=i*^;&=Cr!pGwI|>EpD{wHK-2H
zKm*KuP&$J3N{bDr4h~_|BnOYlE-hZ?e9ECj<fAxQcftQjd`mN+q^P|)8Rb8fwv~Ir
zI*dyN@HXbIu=+$y+k2!-wA6bg)*yA7b5KPSS{BuYtU;tKizZtzt{kCovtXP|0ooH~
zoxb+$r-G~X_Vq(YdsI$K(Q@0$v8%HimuBmOBUK#*KaJ&=-dw-?XJL<#UbXsgVklU>
zNybg`Dh+EH8n*IIp^-<owfcqpL&Ym#mgu<pR0r|8Lc3af7fQnsP{n_RFnON`Ptg3*
zYj^B8zy-%^F+7F&D*oLEg9Jml((?5XV)|0rQ0ATz#Es7&{(eV)4IHc8(7k9*_ui{g
z?WPU>H~SmnOB^EQvo{VtPW!z#24d8K+!Z6zEZwmKGhm%3pZq>9!Ye`9^|-L7U9|?}
z7o;d@6!9>H*xuVC+P*m|Q?f$=L4SrJO)l;$Z4@zC-~aUMv^<&`*3X<+9?Ij67f4th
z1`$gUbRm5lXK2n$I<dVV1>9#KGR5Geb!{v;V^aM9%pL-BmryYS_s7=H<xNmMAzUcY
zQc8u-i<s?*)9Zk|6G~t#6fJ@!b3UvwAO~h)W>0y1kbzkEq5<iv@t1~oTxK8=F_Tw(
zQiO9B)XY69`@CPNvZQbzV|{3m#EkO=4veey4lZN3qRIX;zzK(0p;Ir<4`V`=0Har0
zC?v36vo$wif$#x+-XtBpd&kK1HP$3ez0!@RA3N2e024%ls1){&^9V=@l<<@>y-0x;
zPD~Lgb?4>E-Q6g!i`Su22<Cz$dyTC)kjG$%hbth!+2oK_IQMj<UD=CUPSL*%lgWWi
z9S2xe0qUP7(EqIJ0d3JY#b^HW1tKqWyc`Y1e{Im00};VG6`e}n{6TJ~&ZNL)LI|o_
z5i`u8-kL9OsHDNaLRDnY@yw7|IJ10!RK?TJ+r)4~uwO(*$s_G@=a_ey1gZb8RZTPO
zM6Apr%~=K0*a%0{H2Dv7lb~CP-b_@W%t}8mZ@dlNxHw4BRN}LW+{{VtS0sod>%27@
z^#Fdp1vCd1T7pXhR3X$s_;ErBNFpfZu}87e3LSFNi_0$Wtdvd8pfNN_Xz_CY3A1!s
z8#Gr#D2q7nUj_)Q0F%(9mu57Np$^9QBt)Q#vtL^H*y=eeq_%GJUYKP_52j5hDCg)8
z?M8V(cVnL$G)jWyXk2(M9z!Z*)_-}I^;`c`e<p2GNpg5HRK%H$LwQYty8S0~PiLu<
zdI&?#-qV-7B8yv?1>uV!wR5q6$!h|U*n%+q|LEJ*q)i)oB9d0o^12QW2O(Up;G}Z1
zlo<ySS*5IDv&gZ=k0QD`T3Piaq$WLSiFd^l3+$JBq5*n(3H^fxoAQt*v_IZ<{1MV9
zB^2509w_7Z1NvKYU01US`Twl#V&V)aN0Rbfuyhlv$skT7Z%e6i6ACQhC5Y3821FSS
zq^ocu@(}U-?~?3@ZZJ|{%J!jTQlaMye>$WS9wl1Rya_%7O-78t-XSP-Nc-WxlSPXe
zDH_uaA~kAYIhn`-6dW1jJ0#iR)Qq2W#tl5^zepv<ge5ROoW4+pkCY<12#e-HWGIvW
zW<YcPQw6@L^WL_MhWU(Bq+QPWfy34MV3zD4LB7=(uU?@V&EJ1j0F>yM_mRO8|B#?=
zlY@bnL(P%BBd6((9gUnjs81CBBkbhkYCnYiG~<{JJU0n4!`((ZCheb!xWeO4J4#xB
zvpb*AERC=AwJfA!Y^MX)Fx1a&09Kr&5`>g73Nvju<3j(K5oJiPMr1S_>2WEd?R%9!
z<(-V%FtIXn!a7K_az9BQl_X}FQK*cis?OuMN&(^TxJ&fP0M%U??twH)!RQ=CW<hKx
z>1Ca=02i8Lo-cgIVZ)`Ir=9=d^s&V!>l7)wU$FOLzdGnL#Za5k*$y)l>;vcTu!pVc
z=xwsg?R^rd*ecj|p~Xm0+j--WNB$x{l*UWSSx|>h17gN?979A~5uTlLLzAeeaO_G<
zfV`-cwt1oqiGitHp++px@1hHRconh!(zWenzB-Te4f%tND;4ai%XXU~))WO>Bu;};
zMsL*6+`t^i94Dof(^o=kSh>!`AX7cBfxfbO-thg{f1u2$&_{lrRGO7gBAl8>Cn*qs
zS9BftPjO#B0fn)z)~+PA6ddw)7d5ekb$BI@q9$p)UfH>?pIJ{1<o9x#Jp-at$dV6m
zy8zmDRT(Bh=|MTOZa|gTHu?hy#a<Z78=L%iDJKY?7Z@I+DiK*ogEh$Zbp(^tGUH?~
z#PzQi5-`R@8o>827CECaN5Z4BR*2faJmML^Lz05|a*m~-0H7dK{b=Z%;>Tuj8j_z{
zIjHDjHAArXbJ>)#&#E-IY#D0VL|@&gY;!uuo|rtKl7BJiQ-B65PlW3<pTeM++eGR!
zM@m;sfWp`czqdpDP#?@2>!8O8n}aHLDyVe4@5PB(vmxtTBZw=>QT`4jb0Q5(;7%$B
zw5eOEf=k1ina_Q4jx`E&`uwnrheydIlWGCYTuLILwXBpF!OE=QVF(`1)>Sx}why&|
zlRV;<?0K)*y$Qm1%Cyde-uRq=uJWWT#SUL>TsB!TX;moU?tXtiAX+-V1F_Jy`OBQ{
zLq7raU>jGIs&MM`{JpeK^}aWb<{1$5{Zmm4*6<MUJ@z~|(UFguTN-Kj@3LU-Q=zxz
zl`ahJdGQnV|3mgz2Xk`pCbWz^R-+a(G9hVYRgp<?j!^(AZi#8K1Y@}~Xo%-I9IvV`
zr+E~1q;x;?nk@_6u9O2wgk)1esc(tD%WkE?Mk~W(^5EU9^Lj6G4lm^p%rCmvf}*A&
zP*h+2sJi;|Xsf3@*%bTcX?r}8{^K|obtSE)g)3EW5s6GE9|X$_p4wM`{9e&qzo_HV
ziVUvxuX>F*bY#ytc*$R!Hun$q4J-rWQIQ73fTY^%kc;ZR9CzgWrtLeo{yJAvlB8Wn
zbYsbU&Oa;b(}ke|En3-42NjYSn$sw?8vnH}brkO!HI8Y~=ByO2xGVk?#&TDdeDwcm
z5I{1Xvj1ri2(eWsmWdhR5i^RYA2zjZZI{G~og6v*brouC_X(n4R`a4`-anl;#XVk?
zQ~b|9uL_Gp59Ce$3fE+Wj#9`TkaMR6RymmD4xs}#A|K4yF3X%&7u<40$GXhA8RjEe
zorm9r742h~&-=prpGp(58tZ1xp8C#3lb!Q5x{7SKa(EGMPkZr-B`7&=WvN9RFdQWN
zna;D<x~qMQ)`Y8a>^-s9cg@k?Rc<Yr&=uNf98cpJk+~&jzH>m5G%q`YrT8dbMRbx1
zLupF<T-L4%qpz#|@38j47g#;y#J_JNjqm=n1pmJ}LdE(2qay_NF-v_2!7Q|$Y4bGf
zAtFdbw}VNUbIdu~uI7X-=TMy%(7DxnQ}n%rpF+~cfJs?{(EMGV=u{0V&Llzi`9tS7
zTaxn7%t?3EO|wjQzkK70q1FbsQa$<nfik=uz-{Q|F;c_W3Qw2yuzdl*$pt)mWF%Sy
z4gIY;@KgWdhyMuj_4@9NDGNScoxZ8z|JW%a1xzP}He!jgj47ri(Zd>NYv>z1C10AJ
zCw>N0E!8POZ)H}0FFgKRUe#Ac`8d5ndM4l<A(~y{md%mtUg#`*Co4qRzK3;uvk%UA
zCsO82=FGQ^pLP^+7<f23Zhc(XDpB?9HvA0~y0WbCB#WYvjqVC|2`q80_fR&oN#Ywy
zDTK=@<heP_I@N9|$7bZqyWYSH$SWuPwhj+a{q$Sor@aRh1qBIC0_+dxS>cl$hM5k*
zNr&8^gVc&+bSL<4l^SeF2toI|1eNCnRSoRwJqLAC{dbJlkA9;%P?;^|<Nda`H;+m9
zJ-f2$Zc&aYc9RL-b7ZdkUAORys<**a9;oWZ4;O(T<q06@1vvbZ8``vE<W<+7)(I`&
zVhW#!t*(wAQm6bA<9L2C(IiFcaLbe2^`+%Tf4_tW#i|zkQ~1Nh$tNP|Q02DHUJMwx
z^$pr2q&Wj9k^v^~_T1M_{Mu7SOa0PIs}+`VkF<Sw!EB}B6{PnkH3ryq3`V{EODGlG
zEQ=`+Xm)iNw!ALVb)Mv47@3@x;L^y&ez+oMFU!eO!XMDX{w;Wezb^O7_JJv#U!l5Z
zH*`lx@<-84Pa1Jiy80VoPsf&)|CGj}=3?&+R)4zd^v)-tOBFVKj;r?B!pi5M<Ig7)
z9QqsDMkA${z{L=bR&Dn3E^{7wgJ5$6`5<zz(d4Bm{x6reLrf24TUj`z4>)_@)AxcE
z?tC&%sVhOlTi((@5xIRJHK$A2nN;78tW1%1+IjyWlG?ljwjO&)lxdE{_IsV;<IYY2
ziCc6^g#}K^f=ij+t6S>SobDRj<u_!3vBLt#G`m~MpalHSR?yQSqIdU)<w{fgQxmDm
zr~L{U0~xMa^$Yrr%k`1IGj5v`=Iw=cZ(7p}bW}d^O>Vx7)iVVmLO=psjV*$<qOCM4
zz4kT35xqXH*R!^@mDYK8wUUUsC?yc<Os3l_s7!jRDqZ?3a=u{6>&3m>0&k3Q$3mK7
z0}}&y5A5=>Bj&*mnPSazAk90O2Nhcc4!>(j_qH#groHsKN&hx&F3<&=esKk~rv9<4
zC1!j1BUwl*#sKz{nXuv%g3Y0dk73C*WU;u;1D96hR4!DEHbhh|tMqTtI=`Y)p8YZJ
z510x{oa_k6?e=}RSstG(n>jiHYcNk9Dnh1~q>!@ZuBK9yW}iqMIv^8{ot2Zbx6w(t
z*#@f`j6?<hd(fcwZ^Zg|*fjkuXJq;s>4eGS9S^r$!t5hfmC5JyWceAny^=Y@OF1N&
zO+9Y~-*g!>M!g_XFw0*0+5vr-m(6<XfNPzdWcx|+J;|HB36L&5jS~W*X$auNg{S!j
z1g-qH+7m0So>#y7D83HB_<c%z4p$A@J-Gj1LB>e3()j2nM<!icn)(H~(9cdf5|9Q5
zL6G%!`gwETLBw@_nbx}P8rS;qd7rK6nuIx11~H|LHp|!LkiEQftEKt*P^gU~?)J2v
zJf+2Ol;o+Vi9luAuYk!OOWPqy^}h#N>+_f6+&GjC$|8o5QE+!cdCn>l`!cuIf<!hL
z@~InC|29D9@WJCgcC`(4)hdf&m~^O^QP66pXJzZs6Invrw*7<~c^^zSS~-MSHHNZs
z*tQ)HUF0zPy0TuQ{C&c!hk@Ht`rw3VY0tEXkW%k6u|4L1ZzkQLRy}Gp!FWH#DG%c+
zJ&a6se&dO&d4g}#q2~D~BdXg4sKreoIgeq%l>2!VuBF;tW^|Z!=AT8DG(6EoM&BL?
znc<s5V`Nz^+hQeWAN0&2pRCNdkBoPzlr>(VWYceu)`hKSsj8giDz=mSsuQtzw84~p
zU1$38vBu7o@SbXO;V=D3%VjI^Z-SsAV{HKcxAadRwS&ulZqR))XqvO@Hv4Gp5?so_
z@m8nXQY}yBimOYp_5(zFj{TO{w4@}5-6x^fw0wP}LI}^2-k=x>dT(B4o?3JhefkM|
zpPj4K@p(#2nOPy5TU&M<nhy!cO0;dh@uVu83w%$eztiOM=04YjZ3JSqZxkdPPPBvl
zv<l7xAURlcEH(mGvOx>F`Vqi~o%{-zpa1XBJ)VzttwF#Jh2pNf{pp>g!%PSKGC4uE
zy>*)7t{SO3Pd1g*+iYi3)GpeO)@PCW^4K-Fm-V2%o<eq@QIeA+FwZTyoMqb&TdLNj
zcPp9^xvt*}&4YUbm|^fgH6{WGQr`e~dx|)K4>kNrp??OQ(gFzEq0OzJ1Xp`W?}K5R
zI=?%_e=FJ_3R$WPu8KfytEIE)O2a`G5Xog<il$6PFDRF}XwG*qR4_<xsADR7+%9&=
z{GR~(D+JVO-442I0{P6JE%^WX7eDp0ivJ%zD%*b!9v!st-)`mk68Qi1@0sq1t$u3K
zr*d0$t81!N;I+3_@6EFz|2MuHyY&AV91RZ3{D07I{eN!dsko}E{cXD7Z(R{pc|-2v
zYS{Ia>KcQuS$X+V&T=1#dN+U-t{i5lja@l*?84DFkBz%6Ic`+)V49JNG?=d4zwA@*
zxQG=FqB7NSg9Co)Qcm?lf|Jz9HCk<Hp*p<Rmi_gf?fAbAZ@8uySjGSQheze_zlZJj
z-`jcW`F~06UnK=}^^JtVu2r+!^TaE`=$>%##_4R!%s+9));?=JYw>^UBGooytm6NJ
zgM$+P??39d{Qp*-aypqBdxKr2?Bvj<*}suA`@77I-xTBa##7_pHEOrd8czfNk4b_#
zp*WdcH~ITI`QMK#{J%eF`TwmvOY*<>{l4E{p8x%2jwVVcO({~LwL^0>&^6=-hVLny
z!UTE%Jb`RJA&`bl=Zr7#ZCS$jq5sGqw0vck&uaR=X7cwn@;?n8mHj{Z!=s~?{%_;i
z19=9bB0-KcrpdfHQ$f0RE^p6HTBI^gE6qY`k6PET(gyA%TR3xgiOPZZ14)ck4g_;T
zm`OgTvsY?6E=fQ@q6kX|MV+Hvnh{O<2>|9rPj-ejm9~@<Kx_aNDFp;*+=)4+3zb_|
zO@b5U7iXsk(QWeR0y=?+m51|<hDbFPwMpPQ!+f4i{D8#0G;h}>DWZ@QTKjGikx4Ix
zIO#nhK_;|1mCRM>ZgIFrksK-ym!SW~$*jmL%}{v}zE#ZwdJEpvG&NBd3OJed+pu%8
z+B(fxKw*l`ag0bN&A9g8qq@2PCmhjBnJnA<6cs&#svZDU^x7?gHK5p9u&mpHH5)c<
z!^(|l-ioE0QL`N@HpJc%Z>F>ZwTmv9DRg`ZQ$Z!V9taB^qC|H^iJ61W3n{j*2$t8_
zSv7OM=tFLwAmu4eLaTw5ng8N30}O{KfC`Kf@*^|IyS$Aolw5HHI)hG8_Zf~jqWM0>
zS;Vmpxo*5^E4d`Cfpk@C38t0cVV4+PIpI!HD?#lO#32^gX@~Ao-JLC|HYHJra*`?H
zu~}LERTaQEp>T$lK&xQ;1;|um-M!WyO^-MMS92`5Dv`bG{dIRzhrMz2R*54VD)u_E
zx2j;j>UN40ZO_9INb3sJjY+GG=heYfzzI{v$1=0P8*-(FoFhD&^AUKg^3;<gELEst
zp=mOdVIf6jL2S}4v7&_-B!!Hf7g({p@)Y7|?aEh>CODa`RsYZf08vWlnzg+pXqbbc
z0@UL#2|_l~y*8AtXNZ&8IE!OQ7qy6|tGGZi6=cq0T|<LEi;y*|x{9aHb~V<&YsI&H
z<g@zxcg^I#YsCNQ_sidZhll<4{C6wQ7nc9G!0Tnne@hWUWhjLFVrWgO-!>`mE|LPT
zPJC<a-kMo&OIO;O(%xDf-^ZM{mUVR3d2jVG__j0KE&=$uX>F}8c9zq&c7mm()I~{6
z^5(`4N(nO^mZ6R{HQ6v%*D!Ry<LsLiHc`#Ixj`D$_4n6}2Yu}X#p@>mwec~2wS2!y
zW|!t|TUqhG?A~1~A?<T#&nEi6lasI;sx!Es8(bPc5iQsMkB7tKvj6|1VH^M9b{^~g
z*I&!xrZA=D?mDaM_|4`TkOvc$W=>`Y1+D4NvWSBED4{itY?Em|>vikP5i7I&Rvdo>
zr_A4M)nBgY)%ek#8UyzV7uwq6iwbaEN1I*S;@sd>Td$`yC*i3qURh%;zf<t><7i1m
z+f#oX-`I^WVYq(4D>1BTx>h~)0kaf3(Qz@ZIhj-@nkNQRTh%SG-s-0LzcGO&f2!f+
z|2yyA;UvvC>x{t91$dm;dmV`uBhYy=es}if^~<N{KRkUq?(Dmj<TN{OhK*wB#yFmX
zsNCFg3lW`^i}@mzQz&{W*D$8_)l)DvYi3cH;n(d(tBOUQ54D-U>>Kb>^m~RWY65V+
zGChJdqYe%m3e1LlUoFySMN#_5ANWVs#P*jBpTY!1wS%YghN0a8Yv5~+$vEV7Lyk-D
zcQ+yzY`t#C^KwD`n9i14ET=QFClO)Bmyy{d!x4Wj`W}>tqrmzR=ybdJm#c2KjKNAo
zb(CGdR5r(9LkSK@a!MjXMgMd*fe-roU^p1;gW=K9J{UYK4`TpiXH5G4fs+VP&YEdg
z^Pw{2B=kIM_c|!Vyt0nYEJ0inc#=htc_;AjoREm)v@-&I{W`+Qg(Nw%D{|)>iO>b`
zUq3jU&gK#wX?j%R)!ALujk5ExYDthWPGa%?V}<brIEHd+{Zdg3(-bE&dmTj?PHI{t
zMDi=Kh<;@o<`l6xiNfmiRF6brM+Z(Ai85Yhu(A&0D0P8Y1*W@hgH$t$P*T&StaYg;
zE%voiqZ+pM7q7Xz3|`}Gqkve)COR{U!!uH|Y4eUF$eR^WKmTaxt1nXEV|gA|oe?-L
zy?bA?gA4JlcAAn^9at}vBSamt3825!+o@n%8bwl#sR1d1<qE%LjN|Dduaa?6u0kj_
z-aev=ym3zw4x@5Kioz^FuN!9zqo5wAIuT^N<Ge1Df%+0qr!gou!;b6MP=Ttf%F%o7
zth5&XO5XpoEMKh}%1@`dmePXJ`&5zy%i;$br`{>u?VZxy-ciJ|h<{Kozx|(ocmAq=
z{=2ge0?5&fQ1#mUAqp6}L=<yXVE&K=lCi1R@~3zy&I$6B_#taa6#n+#ofI<mZ=w6B
zFx~kf<>SYF@Zp31@uO@ef5~b}PX-?=GD6wbc!R{zjyiQ)7oizS!e@lWkk^${G*x=u
zNvDAm{9^A4j%6MqM{eXL<2j!4x*{&6Pe*%toI%Eba;I>1T#GiTvaHZSS{ZZGGKNTu
zZH0{U?tRU>6+-5)6*5kZR><sJ$Xr31v_hsNWPVaUU9Fq}_gl_T6t+Ufc_)O-V7Qr-
zIclYhQ=^qKJC`z3h@)1@l%&ivh@)1-fcq_CLP#&Vt(>WqGmkfuGsmr*acZ=3X6JH7
zUan{bO-ax^6;N4U(v&@)S27QC$D}UH|Gp)yV1yx)U$<CEqI4#Z=J>vE%QrTEfsz>)
z{A|!Km7w}2w<i*>%f6>LirlY^^40eghJru2f^v7vKHslp9DjIN!}9Asl02$i+8l==
zO2&xd+Fg<YVPJnmQFK#X9E|WRIZ>Cl>ZuW4&Z;Bmt)dh)5%C;{=xLntMRW20MU>Q+
z#_)Z^m`cH^E1?3|<Hk?FY)-D~OE}?@*VJ{Iiwf&{r@Iqkr&*<A`T7cnin6Ttf|r~T
zoa9nPya14aKLjvrnSy8_gy;;_?C)xUlZr6}qGw`q!*WR-(omFyh$1O~rV(*`5SYZY
z*AC6u#VHI>Jttut1{XD>37s)T;R~G9E$|bTmzzsR@DI>`2qp{gKrxUSX}P{Y{P5w|
z4<EG11|L8ET6O-}P(<42gP+$Io^Q}hD|MAdtK_N@rNHn}N2cZ;5Fg6q4aG5{p7aUj
zHQZIw_B$h`aT4N79A+@8*YPa>CD$S7J$#RAq{bu*E))j4%LMkJN<gE*<)o%nGYiYv
zRD&d3!1rh+F)cZAPIL51NK%=xafz#$aztj|L56C4eH4qYgN@|y)q|?F`elm2Hj83&
zfg!iBs^y!y1~o3~kxfeR1`#I9RP4IaIr?KsDRuMWuc7bc*S=S&rnjgyR*#AXI29X0
zSua~=SovhVimHuvVD^99uMSjsbN`Gn1-|Y?H6I++PE;!2kJqur2-^QaMzma}VScjK
zg{mQ;PJOz*LylCP)I|4b7NLDH-oB8d`>OMOGpl_w?|n6X?O<|*y#I<aR)~$VJ1zKp
zEE|w96y}k%T(bs+2~$8Y3f?lLQ=Z3!&R~N7s6eZUG&H`-TLRxLw4-`W6`>>6f?Adu
zt9L`OLXKKHAgE`ZLQ6#NmrTf>RKJ0V=7Mn0P{AOndvJ5A2n=`KB%NZdLmoC1D_U{C
zO*$0>6;;jB#R@bzEty~r+eZx*%-%d+3+@z&B`w1Q^j=;E3EvgBaYhOd>W>uytLd*_
zYK{Pk?ysvn<zaAI<*8MkJ^|&az}KB9Ps4*|<>{MNdAc<hfL3`@&+e3`XAnoN^3*C%
zt@3np%99-y@RQM>YPKfCEREoz-o*fXDQeayp#3-qw-W{EV9=}pIbYCP4d`ZF?Qc{A
z0$-#GWIX&^9jM%-)qz?aXh%9w5$d?rfDC|J4d})+APe1gqyHQ)(SHW5{_}b0KVPK!
zBRzs!6Hu%EwCc~M>W|f?!-6@AVZphF$EJWUB4n-)X_Dx0ICF`qQ_5b_aXQ!GIdL-E
zEP9m=E>)Ijd04n7jgi~d3NKd>bVa%OJwp<wJ4H^F8YU+cpc=<Cie~729bc@8I9De|
zD-LH-ex=O+y4+{s7+$^Cwyr7)w8n`OZ0-?B7{61#j!Px*zE06o5k3u@r^6AR$m;?%
zawp$hg;C{RW$eoOmS)e>+J@_F_VpKCAVvA+awAf(3!J{C(Rh&r4PJ%Xr}n6fO>m|(
z$^XBZe+A!QgX#`vOB!h;RZuAvW(=LHPF*>)E%x3LiW(`kb0j@A;%{>_4H}y67*QLS
z-lFQgL{+1&>>O3cMiJT^RaryR9iwXF(pyx$m#8Wf`<<idkK(kjIf`D?G}|$H)-Jb2
z&3lQOYKYzQ(AvYsIvljN;jZ~-{i45E6fH3HL$_)?%S-p~BLYjy-p=v&!v`7iT^i47
zLY1$9$Z}pcjK}qBZ_&6g-GKa^8{?YelF6wvRfg40Law?;v3tE!zwcDKNO5o>4gFR}
z8vO5!UAScbIdbf-gTC|Uf&1scnTI>8f&1q{-z{}+gASd)238F4DpdX;^6qmdw_q9j
z@oDud4A7rpOx;Y`h4JFQ*&pA(eVJRqioos4y~H-I-F42C&*|AD|BuPerSn?pI*n<6
z@@GZ<&x3w{Sjzu%bksj?^Z(q&qd(IVntwV~-x-;&ce|W-tX$kJ<+QOfp#+2?!u){5
zy*$&+*vW~ub-J5UqPTUk+c<gMbbgzXlR_o?OiliqA`wkZqe^O;C5dTDnQuzT;)=YB
zwuD+c2hJAhX;_K^nNZuL{FmLtkO%V@*2F7)FVFU85A(QyiL-RwLu0<YJe#C!UU^;J
znHBqhl28Q?5iPqwaJ~_sh;iA`oFr!Yj!QwqEUoGe=%=e1vVg)Ao#PmhjGLy;%XNmY
z?WGPCR?f#LAEuT0d!1R7+m<Fkk;FQj%rp{p0Sr{4e_0Sxl4|6V`sN6vB>Yp4@u$vd
zE7SIirpnFXg-Y0O5<=$9(+CDAmT6N<vQ1YpBkQX5)Y!02Yas<`Zb6vqj1?nJaqy-(
zVx?fT`9#{}kL@F$P4qu<DKHdWt&#H4d6w&chsTfl$0hym@aTBZ>VLQK>^}da!IC!H
z<IQDzG%#)xJl=4E$NQzC8&s)ej$Aim<bM=X{f~MZWScW`ot%*hc)#rbhXJvjHL@AV
zmE4h~@=^lHhAsNOp}dkx@;^#;&Nk!WJ<52fVqF_g!26s3(0LEQCZROGkl63H8kb}5
z>B)DG558G7+@LyE<;^ckH!n+Y5h!tK%^hCbNUbjgugz&=3b8omj<Yz1bg?P~{h<84
zX^X6lYbDewUHF-qXv}5kd^R!U*_>RxO{O@C@&Ki^AiR-_DtCWDrRrENi}Sy%ODzAR
z;+Xuob)5Mkl5Ta>n~OoOLhe>a+)4P|YlkAi$qdLZi5M{fn!=iIx6qP&0_hB9vsFIe
zZDy1&QaT=NE*(E13HVKo0IW#G`<d)3K!RPZ5TTcdavXeu0<=xSaw8(LA=tciK@-R5
zor?Tlm7UGv(Ud)d0hjEheCWOLko7x}nYI%SMqB3)YqPT4N>-L-{C~FzSqAm&f31ux
z_M+R2ENw;>tEA1y@<|ELhP#%V9~)Ii8;ZUCb+_Q|L4P;L|J&W3@9t?Loyzh5`*QM{
zHlNNN=hL~h)HAzEsMBW6S)uTM8sC^c%P3l#8@@jAaP7-ZJ^J=Y7NK3Hym?$ZUwOKD
zw2tlT4r6wGS-McuXOR7+k-mxmUnb<&{g3pu{PT;Tm#y{edPQz`pJXI?eh$&W*5Sn~
zgMSr~y=p>#*-^b}0)MTDsZ}4|swVuGi40Z~`pamNH9^0Mh+s7#zf3f+nn+$nn6J+u
zj904-wc3z+?x8m1Ua8%!QZ!tm6t$^rZret;Mm*C`SIZGgarGMQHU8_zkDz-`Rh<g$
zeGVE=P4PP^bl<&eu3>IaHrFus@|tV>MkdXLw$yK^l9GC}9#H6!D&t;L$XDgc-&`TT
zboi+#hRu;+mqdYG8Uc1m^j9ma>sI>S4r8u@Hqh#)A82)Ffqy<2-u3POfPZ)Dlz~5&
zX$sBq`{QRDi}emb_Qi%9`kcw*vyKCMCxC0o<TE6b&pHO}odB*SlRGDqhRt5OpKIJ~
zxh_f6T@e9m(nQkK_8LTSLtttN;LZtP_w4So3jlrVz-r0jGbD@8H2Cx#fb5GUkAgbx
zW9aIe#Dvc~@b&FOt|g)ChRrU;pl;)4qrxPtK11Y@vTr6L_9pTFblp%VQe8U=;PUu?
z$A?FQa{Rxe<AcLC{@-mpyN~~uR&(yQp#X0#6rf9#Z9u>_ARwYuY*-Z-u<69uh6UUt
zETH^l`~}>gfHeTlS0-b<*=mFG4a#HKSS4mZzJnB03atQutK3;DkqFC!*A!IZ57v&X
zocY!qzG3B+yL8sjZow8yZWy!d^_Gu$UM{E~)7kqr!eS#4-(G~p`x{fS4Fy%LwcH21
z^5!16W^3ivpJK}RSXvHN1}7}r3APAMXnFXx!3p!KZE(VMZ{+>ElS0PYsD$9!e&O0(
z^b9fv6#YAR)P^FwXYyx_Ye8S0^r^huMP$HM{IueyQT$9Hj#}}vGx75b;%GDR<CPME
z)v*<Z0+NIUUojTd`VXY7@Var~MI^O+e)6k~XgfJRJ!+O;ZESbY%CBq5uPaECR(|bF
ze*FY#f|FT$g390CUm+AideQwXk5ShaL$&9qC35Jvl|!u@x|SSjvx^j)y$eC~RKRnK
zla!TGch#Xv_MM0EUU8;sBd*_i#Px=a+D*v8LG7Z}innfm^J(L)xAE4klFu;S`lld=
zub;4Ft*d>z6R=?C*-36c4!Dxd!0=_)bG!`zey0JzWuC|~hTh}&-}fu3`MnJdzM+Pj
zLZ&p3d-TDedYEnFX>K;yXB1Dfim1C$?!T#>q14_VuVd+H<B8w2_flgZ@jQxVL#)j_
zwx&|s)()`=?kvXUof=ahV<-e~kb=`^8X_}~e^@nXf-QqX+LNjY52=PV60;^iq^w}Y
zkgN$33BU#s#AW5?DB=JtjU*1hifH1pLUTlMwcMp4FM+cWj~gnOjr?Y<O}f{C$v4!+
zrVvN1E(Tg%?7r(_1)}aIjQNtUZudQm`6s4}ZR^T+>$=z%sfs;=IBHd~RuyYiF*D3v
zsbW{k$LZ73#%lJY<d5Peu?Js@(srM9DF@SbqD~zgHLFw3_rX@5x--|(*0yyk3YBqH
zZ8fTLlUAduR%kUU^XmpQD(U>#>Qi=Et54m4K4szAPPD1RC0A<)gI1fm7Y@>`I&~}R
zlytam4OBOzPUX76YHg}X;rd*)sn1JW0&NDoHUnNB1-nj0f3~^nHd^c#8?F0(qU2|t
zFK)vnx2SoqQ1i3S(YE1|ThzQ)sQJZYP1}0;EyCU_g#GODm~F7k78UOmDt@N9!!}y%
z7mJbwM&8G)U-f(VdFSieWX&zwUN_U$QJZLMd7>?#KlzzTnfjz~J{_=&?;pSX!@R$l
zJY0A6Y?A*=r@PT*tFnF-&+`0V{o&E!VJZLDVSjkk=Ks2l$IeP+WgH3!MTGeQiF<jj
zs<D&pXxoHUYvrY4@vBN^s*+PkC2v$s=Bgt3Qca^uI;JHlr8Z2<1a3N66iZPc=EhKj
z0#2x!XAF5Te_>6$GI>SqhS+`6{6)<|9v47awv2o)$GWf57LT17E?=Uv0VoMod>hfS
z3&e~^V9t3eJDQWkOxtncD9z5Q=H%F#HZ@=Yg(*76F(Mf^O`Mm@hO2E|m*cB(d?R2@
zZS(iCQOj*g15zYW4JR{=6<q)WE(u;1gp{NjTcj>E0x1dq)MNY^kc2~=AgY@xuMr8-
z5l~(T0m_@F5e!g_5<V)YB-2&Q$hzuUlwvKQAeSvNt1TNNMx5f{O?9M7!D#ad+%=D1
z_B6=<4EIjOul0rel4phd?+=a+T=_pZ9v%)``F|Uala+Gl!8FbP9Qcp@L(j_2Hv%R1
z0Pyy?r$m2-J#oGn0hp!{4y1_nE=^BE{~Q1KUX#HW`!v(PI;HP|0W7Eg!NKt8uuT6)
z{o|JYZ{yL<)5h-L?Ew=S5b!wy5*?&A2Qr32FeMbgC<4^D>`D4JO=LzyFQu4J%onE-
zWbBn>58^eB;S34sNzn{5P8TCEn+Md#M7~Q26Owo_0vC%*L=)00CpFEm2S6&LE{cK?
zcs_ka_!&hECENpm!<k`P-X2H^V|WrFpdGh?<!jAGAi}db?}d<FcvgX$>0aJO+dZCZ
z4Qn4T#6cf$B6<^m1DJcIN+U232q3!o5iJxMffQoO0G~q+AVmOj4ud%gMNbYmea}9|
zfDa!%FCsGmwLKtRyXCIP<2VPyeji-I2!|>Oud<*qfD>8i?Q`&g%)}u9|A9uLvY3+E
z@1B|dB}P{aKn4<oLKK>|HGF>0EI9-bnaPIW3P%xu5i7u<2Zju!8JlZu(UYTyMdaxp
zl@?_?Tr<m=S*KAxt1XVmtoWn8ho$W`ddWhJD)0Y^D4s5!3uHBAo^qy^E6}wpdO4Nu
z|KL=O31n8-t2qwl05e528mPL4IuY%QL%@P$AdvSBGKxX~!%$j>VPsaozyw9)%J=l&
z1vTw~6V6eh#PS3ImQkeeYe6y!PR^b)iD?Pp00seKYJUX%in)-CGeP55ghrva2i`IS
zI3W=O5xzj+pJ%W3K}zu@<OsY%{EE;E1_)K>5ivpi61*TV1mD3(90RC8XY@WL3|X_l
z34nm1KuquoE<_!LC1z1fI_~d*t~Mh)eXqyR0Q2_5!6C)!_{T=QGH39SZsF@5LH)A_
zD1yOU0>U(@p!%Dq<8v`_IjY|6lO=<9b)Bw4lImRczyoC(htb1zCh()`51h&V-1)Ez
zoSwfJ8|)LW0z^5U3YAM>Mh~WGPrPD1N(lD@X!sdU5KuQ&fcoqqaX~ExsKw+QWC8`+
zk_0@^Tky~^lq%DOU?%Tlm_`V61)c*4$W?-<Di*C3XOq+?@i>{`WF}c22vI1f90HDD
zEOWcVFx1RVG>6O~2Yce)p0@{Vz4dCQmT~cz`Iz)B2QW(KaOmv;Ww^2@@9lxYa3$bp
z3_W}5e43{IMK(b+K^)26Vwk`g3cHg+GU>W<wIjKJE|l*S{st+Dx`H7_5xMFHFohEw
zVU7{YD{1SO7Bk+Sf&2*k?EC&Na)nkF{1N!MBS-7};<>MX5xaXv$$PPfzh^=!L}Vu5
z?CF0;(v}jCQ2Z9$hLH#XOFo)H#V<?+u_M1Rk|>5NqePBC9~7byCsQG~Ls3Ffb>^2?
z3HCrtC<5~=hC(R8P~tn|Gz)k}(LSIkCYOjwIl^F^igUH+2?|%E$!Y7(G~p_-#WX83
zl@towt7lR~tF9w4H7TpnBol&=Tq1f!F-JcT#uaY|d&OIpgK$n5mk^MB{h#hLLa!hV
zQP}PNV2b`v_cg^coTxW*c_D|1-4LWeQHZ5j&8b|jl@khQNSaL$3;~$}m<awDqnOZz
zEJqR<0usk45d!&YjuMbDu~-OxI1w|-Qf11JQ0AhXBuH9Ra3JuI6EH(uQlF5Of)WMS
z$*ncOlhad(;b?zA&>TgK>D1PON(3)Z2?0}zrucpCylX3FqH@N>O0|3fAcc%w5gHnC
zW#pW;zETt^@+X$Uk@G;o?^5TL%5qQn2t4jT?yv6fjoYDSs+y;Y?l0^&&AlU=4PBBb
zixHDz&Y$@pCRxG_bFvt*g_q|q#-45_$yNP+DH^I5N-sXkqG*f)ip*QRou{JW2n;+g
zL}^48g3iXALXKt&9a4V}P!b6edYgtq2*_6;hVRE2oe9P7=x_O}w+Xz2I1-y)6sUvy
z8@m(FlLA{P@g(8sJ(qfWmYlG+Oz@q-@ZiwAc}0>pgz!Qoqxcd>Xy%}mV1;L<;QwRq
z*_zw7v3}RDz{u@1?pIQh<0P%;OK04q+s(Aide+|QV@p$z#0^QX1eiwa_`mPq;0}Tp
z$&Qn4#g{N9aL&Q)+z<3UO_Mwks*7sD`NTiUe9J-oEz2?8Qicno(OFzn=#I;pRLU0@
zq4S@90(W?tlA^k($tugS_$o)&lq@UoOUZD@>gE+$(s)vl<+-nw?+QTss&Dz)N^M`S
z;4j>~YLYzPn!^vO8zYETIL%gD%O;V%fekT&a-6*7j6iUl1Xy^Qk%j{3bVIV#D1Q8u
z#^?$fbHzO?(;6ofQ*P>&srZ)*?7As|bChqhnv{IsQNecdjIkVxji*TY3ehIraP&WC
zWyS?)j9v--c1h45N$HHl>eiHEv<!$_5x!5jG~m$TKK`#zvix^L;d>zr6;NjD?N=~<
zAxng<+SK_LUDpZB&59rUFU(Yb5lf&&CSnRl;N302<Xp_>KWFl9Y1N#eC-Xv%P>2=3
z!xOLlVqWkw13u;RG=)<O-!Eaz8K#_*vkk668HRRTm;nQ!8`9)UuEq1UV0g(lJiM9n
zafIxj+2=acQu8_wo)-&Kd+ch1g&|K?p<WzVL$R2pS1Z_k+}h=nEQsOu3?zl1L;%Vt
zTH_Mez;}g=f>o69KBOYYIzY%Jfkf*_A9=`+Jf_YmmCb>wH|oT7jL`m`oAai4fYfDQ
zT|i@Q$*ggW%I3PzM<Syj2H><9%&ufm<>uK6*-RRJix&K#zszXefWH4-vs`1j4WbCW
zP!dJh@I_W;MN=TnkbzfNO1UjxxqU66Qn5lWU;_A_5hmse{pRxb-}qoCX1sZkmFI@<
zFS;m7-T_5Td5<(%m>r5-Su~j(9idAMn-J78E@4aIU@6yJBLTixFV%+2NC}G43Nd0#
zGgot8l9bL;Ql_|KI(dOcrLbJHay^r<XA}7nREbi@jn%u)hPEiQaA=f>V?c6-xP|mC
z*pTHkN>U(#PY@@BYpFV<w*i$Fcz1-~aito^IY|>$ZeJyALuG|L%hlTv?@B@M5F>N|
zL@cM0$r)rvO5}!cO^(oOvXnNQ+Bi#;P@1hlhKNP$T`?}9qIHuk@vJ0E9El)xM#|ZQ
z|6d1`r5L^<IaWI0UikD5ad^*+C0WU$q+CW!W0+0MJ5|=#dC9UUSwU*wR=Ebb97957
z<7_d_GcMyeFD(-A3h<$TY7VRzd`6^xBR@<OI5WtK<Yc`?mlao(_{pWL<`jY~xW<gb
zq~aq#vlAwJhz?eJMYcR%iSpz~H-yj=GN}f{=wB4C8nEWIOX`meuC-SPDL)!leT4P1
z6f(p3wZH=;)t6|A%Pm?Zbd!-Xo|HE7;PJ!aWOAxMwy*rp_;kmAOy1Y88=P0TrZKDb
z3Iz?sf1jP6F1-9NXnu(QJiv2vGy8J#Lg;t;kb(-gMZY&m&UM!%N~#J}xOnml<^s9|
zD>q^2>0@9N6kX#qX(&dN6d3)exvWqW#ZN<maRmCeGSf4P9$jyN1-^WJ$=h;f$<2i0
zc=C$tS2?#$1Q3~tLhYDT#zYK4sT^ScaN;GkU(V!hLec>`Z89qzEs`JM`Ve&XoPVAM
z?jKs`<T}Z9M;#!OEvq^!*$PcRr_twhI@n8KdoQMuPauEIipyrT%HE-Aq$$8T#heU1
zaM3gVr<j!(A`P;w`^T}sI|ksu8c(jdyGg$KGw;s2J=vy%*^SmRb9o|@3HTDjQp<fK
zT7kY1UT$b$u=-;aSuQYA`7Yhc=)Fo(Leu}7qUo>G9VS5zgcJoSmAgDdoXQ~N)NOEH
z#B?J#u$viah7k)y&Zl-3pS6X>n9g-t2mjV~a_dZuo0~wF_vrVAFzk)74J9Q-MN04l
zH(B7j?Mml})IO7mrD32I*D}e<oe(dN(aJ7uC3?wYXwofjZcN^mHKHigS*hovdpql|
zQzCnIfWLTAa1z@2wfZ>4;b~LOUU#N#mf?_kL6&_~Y6sS?TlEfG?OwKmH%K?qHn=_m
z>9T!m<)=U1d4;^N;2`bNzb&JZyO8b%H1AHi<mYUZ|Ec4U*p9W=ju>g@(#mGB^jaBk
zpxQjLx2lzze%uA7w8v#hO$AWh3^*MHU{FXpaS6#8Uw5c0?n)h0mk+19*ukiQMe$C4
z&#GJ}=^G1m|5r7oBUg50vp?NJd2uU;Pf%RE#q|qPRNNAo{{JFge8W{hE4CDK(?trS
z*ixB{*ndQdj9EwBL5HSp2x@xVo(sPw#Rt(h)Y+Hl2h21p6+iC^rVa}6O>-MVh+WF9
zVE{!|>UwV@Js_uty`)}SPeY3K8jZ?B2o5HxpaEnB@Xyi0rP3agY^MSC()qCs^bh=u
z@&5={-u{`uL-l{p=6?O({PfBE;Qx7u$I1U!m3|^H^m9@T6#2Ot6uP~Q#8&C9@pGBd
zr&ZZ!+2gH>9yJHnQ8+{IBLI?<^(Ca(S|wUJS;sW{4_4JcPL8qF&icD;`-o~PFRj?>
z=6zFLoGekRx%GD+i%!i2D&6$lK#Hyf6ne(Gi=!erb&cU{+#X1w4hEpe|7~@LR43hN
zi0lqxN0Qo4U@O76)!%E;>gwhocXhX0b=JA*sExZt_9<fv!ne{9RU11)ad#|XG$Nr+
zpA4D4)&u%!7icRjl0POj(mlPPAgGVd=99UQ9#=EUNo-m>$&ms0)^|-`Qe}euo*9&D
zpFmsNx!bJ+W8}X{J=;$Q7?A%@pPhL1e<zE_&kpkcK^|NFCsjpFx&KSO>bq(IJBt6k
z1hT4tmnk^Z6OUG2PDsUQCsT@MRHasSsTqNe{o2N0g}y)HzM6c=)YQp5Qx(d3aS(E+
zb5{gk`}Yyp9W5ttZy$$o>rQs7POja8Wr?03_?CD7jwo8HCdkYUPT$a`kcN=6r5}M~
z1I1TzP2%qoiZ2qjK~vjqnjQlYbd#Jsc}knYSHrsI?%daf?=U)bWWu=oqCHEOYS;6@
z6;e(uzB7yMIEt6!Y?`*RpNFo)___yg+fUqLKOtALHI$@b1hTp>opx8`4KCfgne@d7
z7Riy}j><di1Q_LP_>MTUs-i|xT+wAuU94&*(e3Rl@KF^{qTAcE)@PQi(R-gDCn7lY
zNw~18EL-qQ31)jsI^Ot}U(2-h)63h-<hk+eEwDIgBlZ{tLP@>0Rz|FjG*6$4Dk*b1
z{brt0^nAlubvB!MG<N!gV{aMUN`@FROmE%W|K;3~+H?{%hf3M^IiCO7gBKyMF0Eq>
z-O&br5Kha^F|?MUZQWN{>=fbzNY~$^4WVopiLlc=DB>vU8)M9)Pws`u>vdaHHDM$r
z`5C%;abbPSv$wd!lwQ>28oT&7o*zWEuLCJzn=>@?|LR_5Bc2*3%j|<ecj`_i?RgTX
zAzEd*`wJz&3@-$pzEeY+YtgE!fhzFuezT~xKU9rPU>AA1m^~z$JIqIL2U8a?gvFFw
zgc*=3?wJhFXR6$4HqxEEYUAdsbFOH}KprE%?ZjKt%t^=HUv9Us>10|XmQ_CNXe>iG
zI`d-<((V-6d!)i7FI#v`j`2R2cC!D**#9aEX5Rq7fc<~Ec-qeYd~(SDe2~ZECTgiw
zk&6y*bB^>{hPb;pm2OPmrd+o2wq8zzP#moIT~aPv$aTd9dQ=jI9(i%wZ=WyX#n;ii
zFLe7u#^meqvEu;%fSZK=h_@}gb_`+KQ>QVtKz{ZsA0@?Xe`wv~_uUCMt)IvYP0crB
zr$%N083&Lljfr(Fy^|&oLU($v=&mtKywI)P1;1ms<ge6iD<(xau3m|0412B2Mt&GS
zRY<kBcShf?2?f8}rgc}xoo-uf%iw-+J4fAa+Lu?3;{bO%`~tZI>p3twafYc6a7m_o
zPAu<^Oxlh6=csOSY{3zil>1<y5KAqIs{7)@flCWoZY41LOf(Owz&zzx;(>3jmK;e7
zgM;U99i|<uApd@~t@>8%vmKVqJPNQO1JH~!K4lV>Z#WHc&ry{6xU~Pt$JWh$+y@M|
z)?X1So8lVRqQ4TYt?qV`QIM+FBWRFKg<(95&Y$mqy4#XmA6wx$JkB#l|Ce%FG~L4r
z7|Q=y%%6Dr|H)$h?4bWY#N$aerykS(W%WTdQRrSyG3f`68~zWZ4JlQpBFoFpK;S+h
zKyeniAe8rGE2Wpef3IGxvi1nAYEr0c_i9r(9`bcoivI_#Hy{98kQvdy{BinY_5FT(
zTug5Kdn3mo9lZDBV!xNs_Sa_I*I>Jqd+(Hs3l{o~hLhHj*w^E9cs`|PjQp?2(%kiN
z4Y!)?qy-Gf|Ha~&FaIAuo*(Z2evn6U#YbzXjAFqQnq#y$Ms`i9Z5y3mypoCmjsKod
z#mZ-I7qg4@Z8%e3m(Z=9Dv4l=4tGxgOIYzx8~P(<EIq8kA~cUa85_8(NKox^{QFN}
zI@p4r&@+brEA8(C#eWv33!nebpPnub{Qn`IR??1GYCHZDED@2pBA;SvDC+sWmsY0W
zPWkWST=@#s&aV7>cHwu@u`^iDanH0j*2BcKW7f4+hRsR-h|A(H{OpyGt>fhO(AG~(
zjTJ|y2Rmj5{x1vlcNYUg{D0o6|2sKZ9P<Ak<O%bC?+S$>DIl8<3xl5Q+fODE>rKHY
l!o@qu*_WCBwb|a`IXs8w@ciYU{{{d6|NjFh>$?Du0|42gaSH$d

literal 0
HcmV?d00001

diff --git a/charts/kubewarden-controller/values.yaml b/charts/kubewarden-controller/values.yaml
index 9479c67f2..caa6441d3 100644
--- a/charts/kubewarden-controller/values.yaml
+++ b/charts/kubewarden-controller/values.yaml
@@ -127,6 +127,7 @@ resources:
 replicas: 1
 auditScanner:
   enable: true
+  policyReporter: false
   # The default audit-scanner ServiceAccount is bound to the ClusterRoles:
   # - view: Allows read-only access to most objects in a namespace.
   #   Does not allow viewing secrets, roles or role bindings.
@@ -150,3 +151,18 @@ auditScanner:
   logLevel: info
   # Output result of scan to stdout in JSON upon completion
   outputScan: true
+
+# Values to configure the policy reporter subchart enabled by the
+# auditScanner.policyReporter flag
+policy-reporter:
+  image:
+    registry: ghcr.io
+    repository: kyverno/policy-reporter
+    tag: 2.15.4
+  ui:
+    enabled: true
+    image:
+      registry: ghcr.io
+      repository: kyverno/policy-reporter-ui
+      tag: 1.8.4
+
diff --git a/scripts/extract_images.sh b/scripts/extract_images.sh
index b7a541d2c..56f97da03 100755
--- a/scripts/extract_images.sh
+++ b/scripts/extract_images.sh
@@ -12,7 +12,10 @@ if [ -e $IMAGELIST_FILENAME ]; then
 fi
 
 for chart in $CHARTS_DIRS; do
-	helm template --values "$chart"/values.yaml "$chart"/ | yq -r "..|.image?" | grep -v "null"  > $TMP_IMAGE_FILE
+	# the set CLI flag is used only by the controller chart. But to
+	# simplify the script, it will be passed for all the chart. It will be
+	# ignore for the other chart anyway
+	helm template --values "$chart"/values.yaml --set auditScanner.policyReporter=true "$chart"/ | yq -r "..|.image?" | grep -v "null"  > $TMP_IMAGE_FILE
 	sed --in-place '/---/d' $TMP_IMAGE_FILE
 	mv $TMP_IMAGE_FILE "$chart"/$IMAGELIST_FILENAME 
 done