From 540409513ee2a0c430d4d92c2b4fcd60924775c2 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Thu, 27 Nov 2025 20:39:08 -0600
Subject: [PATCH 01/17] copy template

---
 benchmarks/sregym/Dockerfile                  |  14 ++
 benchmarks/sregym/README.md                   |  61 +++++++++
 .../example_bench_benchmark_timestamp.jsonl   |   3 +
 .../example_bench_pretrain_timestamp.jsonl    |   1 +
 .../sft/example_bench_sft_timestamp.jsonl     |   2 +
 benchmarks/sregym/env.toml                    |  12 ++
 benchmarks/sregym/install.sh                  |  19 +++
 benchmarks/sregym/requirements.txt            |   5 +
 benchmarks/sregym/run.sh                      |  29 +++++
 benchmarks/sregym/src/__init__.py             |   1 +
 benchmarks/sregym/src/main.py                 | 120 ++++++++++++++++++
 benchmarks/sregym/test.sh                     |  10 ++
 benchmarks/sregym/tests/__init__.py           |   0
 benchmarks/sregym/tests/test_benchmark.py     |  60 +++++++++
 14 files changed, 337 insertions(+)
 create mode 100644 benchmarks/sregym/Dockerfile
 create mode 100644 benchmarks/sregym/README.md
 create mode 100644 benchmarks/sregym/data/benchmark/example_bench_benchmark_timestamp.jsonl
 create mode 100644 benchmarks/sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl
 create mode 100644 benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl
 create mode 100644 benchmarks/sregym/env.toml
 create mode 100755 benchmarks/sregym/install.sh
 create mode 100644 benchmarks/sregym/requirements.txt
 create mode 100755 benchmarks/sregym/run.sh
 create mode 100644 benchmarks/sregym/src/__init__.py
 create mode 100644 benchmarks/sregym/src/main.py
 create mode 100755 benchmarks/sregym/test.sh
 create mode 100644 benchmarks/sregym/tests/__init__.py
 create mode 100644 benchmarks/sregym/tests/test_benchmark.py

diff --git a/benchmarks/sregym/Dockerfile b/benchmarks/sregym/Dockerfile
new file mode 100644
index 0000000..3e1536e
--- /dev/null
+++ b/benchmarks/sregym/Dockerfile
@@ -0,0 +1,14 @@
+FROM ubuntu:24.04
+ 
+WORKDIR /usr/src
+COPY . .
+RUN apt-get update && apt-get install -y \
+    build-essential \
+    git \
+    wget \
+    python3-pip \
+    python3-venv
+
+RUN chmod +x install.sh test.sh && ./install.sh
+ 
+ENTRYPOINT ["./test.sh"]
diff --git a/benchmarks/sregym/README.md b/benchmarks/sregym/README.md
new file mode 100644
index 0000000..daa3db8
--- /dev/null
+++ b/benchmarks/sregym/README.md
@@ -0,0 +1,61 @@
+# YourBenchmarkName
+
+## Scenario Description
+
+Provide a summary of your scenarios here. This section should give an overview of the context, objectives, and key elements involved in your scenarios.
+
+### Task Details
+
+Describe your task in detail, including:
+
+- **Input**: Specify the type of input data required for the task.
+- **Output**: Define the expected output from the task.
+- **Evaluation**: Explain how to evaluate the output, including any metrics or criteria used to measure performance.
+
+## Benchmark Setup
+
+### Test in Docker
+
+To test your benchmark in a Docker container, follow these steps:
+
+1. Build the Docker image using the provided Dockerfile. You can do this by running the following command in the terminal:
+
+   ```sh
+   docker build -t your_benchmark_image .
+   ```
+
+2. Once the image is built, you can run it using the following command:
+
+   ```sh
+   docker run -it --rm your_benchmark_image
+   # docker run --rm your_benchmark_image
+   ```
+
+3. Inside the container, navigate to the appropriate directory and execute the benchmark script to start the testing process.
+
+   ```sh
+   ./run.sh
+   ```
+
+### Maunaly Test
+
+To manually test your benchmark, follow these steps:
+
+#### Install Dependencies
+
+To install and configure your benchmark, follow these steps:
+
+1. Run the `install.sh` script to set up the environment and install necessary dependencies. You can simply execute the following command:
+
+   ```sh
+   ./install.sh
+   ```
+
+#### Run
+
+To run your benchmark and obtain results for a specific task and model, follow these steps:
+
+1. Review the `run.sh` script to understand the expected commands and parameters.
+2. Execute the `run.sh` script to start the benchmark. The script will guide you through the process and generate the results.
+
+Feel free to adjust the details to better fit your specific scenario and requirements. Let me know if there's anything else you need!
diff --git a/benchmarks/sregym/data/benchmark/example_bench_benchmark_timestamp.jsonl b/benchmarks/sregym/data/benchmark/example_bench_benchmark_timestamp.jsonl
new file mode 100644
index 0000000..c4b375f
--- /dev/null
+++ b/benchmarks/sregym/data/benchmark/example_bench_benchmark_timestamp.jsonl
@@ -0,0 +1,3 @@
+{"id": "platform_1", "sys_prompt": "You are an expert on Kusto. Help me write kusto query based on the user requirement. DO NOT explain anything, DO give KQL directly. You should strictly use the following format:\n##### KQL\n```\ncluster(#CLUSTER_NAME#).database(#DATABASE_NAME#).#TABLE_NAME# | where #COLUMN_NAME# xxx\n```", "user_prompt": "Query the nodes are stuck in Linux MOS under cluster IAD02PrdGPC01", "thinking": "chain of thought", "response": "let targetCluster = \"IAD02PrdGPC01\";\ncluster(\"azuredcm\").database(\"AzureDCMDb\").dcmInventoryMachines \n| where AzureClusterName == targetCluster\n| join kind=inner \n( \n    cluster('Oneboot').database('OneDhcp').OneDhcpApi\n    | where PreciseTimeStamp > ago(7d)\n    | where ApiName has 'SetDeviceOsType' \n    | parse ApiParams with \"name=\" MachineName \",osType=\" OSType \",osPath=\" OSPath\n) on MachineName\n| project PreciseTimeStamp, AzureClusterName, AzureNodeId, MachineName, OSType, OSPath\n| summarize arg_max(PreciseTimeStamp, *) by AzureNodeId, MachineName\n| where OSPath == \"LinuxMOS\" ", "metadata": {"scenario": "Example", "subtask": "Example", "data_quality":"high", "XXX": "XXX"}}
+{"id": "platform_2", "sys_prompt": "You are an expert on Kusto. Help me write kusto query based on the user requirement. DO NOT explain anything, DO give KQL directly. You should strictly use the following format:\n##### KQL\n```\ncluster(#CLUSTER_NAME#).database(#DATABASE_NAME#).#TABLE_NAME# | where #COLUMN_NAME# xxx\n```", "user_prompt": "Check the capacity of cluster SIN22PrdApp22, which is a non-GPU cluster", "thinking": "chain of thought", "response": "cluster(\"azcore.centralus\").database(\"AzureCP\").MycroftNodeHealthSnapshot\n| where PreciseTimeStamp  >= ago(1d)\n| where ClusterName == \"SIN22PrdApp22\"\n| summarize arg_max(PreciseTimeStamp, *) by ClusterName, NodeId\n| project PreciseTimeStamp, ClusterName, NodeId, NsdState, AvailabilityState, ContainerCount\n| summarize NodeCount = count() by NsdState, AvailabilityState, ContainerCount", "metadata": {"scenario": "Example", "subtask": "Example", "data_quality":"high", "XXX": "XXX"}}
+{"id": "platform_3", "sys_prompt": "You are an expert on Kusto. Help me write kusto query based on the user requirement. DO NOT explain anything, DO give KQL directly. You should strictly use the following format:\n##### KQL\n```\ncluster(#CLUSTER_NAME#).database(#DATABASE_NAME#).#TABLE_NAME# | where #COLUMN_NAME# xxx\n```", "user_prompt": "Check the capacity of cluster IAD02PrdGPC01, which is a GPU cluster", "thinking": "chain of thought", "response": "let cluster = \"IAD02PrdGPC01\";\ncluster(\"azcore.centralus\").database(\"AzureCP\").MycroftNodeSnapshot\n| where PreciseTimeStamp  >= ago(1d)\n| where ClusterName == cluster\n| summarize arg_max(PreciseTimeStamp, *) by ClusterName, NodeId\n| where MachinePoolName contains \"MP2\"\n| project PreciseTimeStamp, ClusterName, NodeId, MachinePoolName\n| join (\ncluster(\"azcore.centralus\").database(\"AzureCP\").MycroftNodeHealthSnapshot\n| where PreciseTimeStamp  >= ago(1d)\n| where ClusterName == cluster\n| summarize arg_max(PreciseTimeStamp, *) by ClusterName, NodeId\n| project PreciseTimeStamp, ClusterName, NodeId, NsdState, AvailabilityState, ContainerCount\n) on NodeId\n| summarize NodeCount = count() by NsdState, AvailabilityState, ContainerCount", "metadata": {"scenario": "Example", "subtask": "Example", "data_quality":"high", "XXX": "XXX"}}
diff --git a/benchmarks/sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl b/benchmarks/sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl
new file mode 100644
index 0000000..c44eafe
--- /dev/null
+++ b/benchmarks/sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl
@@ -0,0 +1 @@
+{"text": "text of one doc", "metadata": {"scenarios": "XXX", "subtask": "XXXX", "description": "xx", "link": "XXX", "XXX": "XXX"}}
\ No newline at end of file
diff --git a/benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl b/benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl
new file mode 100644
index 0000000..26cadb9
--- /dev/null
+++ b/benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl
@@ -0,0 +1,2 @@
+{"sys_prompt": "You are XXX", "user_prompt": "what", "thinking": "chain of thought", "response": "XXX", "metadata": {"scenario": "XX", "subtask": "XXX", "data_quality":"high", "XXX": "XXX"}}
+  
\ No newline at end of file
diff --git a/benchmarks/sregym/env.toml b/benchmarks/sregym/env.toml
new file mode 100644
index 0000000..eac33ed
--- /dev/null
+++ b/benchmarks/sregym/env.toml
@@ -0,0 +1,12 @@
+[llm]
+AZURE_API_KEY = "XXX"
+AZURE_API_BASE = "XXXX"
+AZURE_API_VERSION = "XXX"
+ANTHROPIC_API_KEY = "sk-XXXX"
+
+[hardware]
+use_gpu = false
+
+[env-docker]
+image = "default"
+entrypoint = "./run.sh"
\ No newline at end of file
diff --git a/benchmarks/sregym/install.sh b/benchmarks/sregym/install.sh
new file mode 100755
index 0000000..8a2c40c
--- /dev/null
+++ b/benchmarks/sregym/install.sh
@@ -0,0 +1,19 @@
+#!/bin/bash
+
+set -e  # Exit immediately on error.
+
+# if .venv does not exist, create it
+if [ -d ".venv" ]; then
+    echo "==> .venv already exists, skipping creation."
+else
+    echo "==> Creating .venv directory..."
+
+    python3 -m venv .venv
+    source .venv/bin/activate
+    pip install -r requirements.txt
+    pip install pytest
+    pip install pytest-cov
+    deactivate
+fi
+
+echo "==> ExampleBench environment is set up successfully."
diff --git a/benchmarks/sregym/requirements.txt b/benchmarks/sregym/requirements.txt
new file mode 100644
index 0000000..f5e49c2
--- /dev/null
+++ b/benchmarks/sregym/requirements.txt
@@ -0,0 +1,5 @@
+sentence-transformers==4.0.1
+scikit-learn==1.6.1
+requests
+azure-identity
+litellm==1.77.5
\ No newline at end of file
diff --git a/benchmarks/sregym/run.sh b/benchmarks/sregym/run.sh
new file mode 100755
index 0000000..45f0f10
--- /dev/null
+++ b/benchmarks/sregym/run.sh
@@ -0,0 +1,29 @@
+#!/bin/bash
+
+set -e  # Exit immediately on error.
+
+if [ $# -ne 1 ]; then
+    echo "Usage: $0 <model_location>"
+    echo "Example: $0 Qwen/Qwen2.5-7B-Instruct"
+    exit 1
+fi
+
+MODEL_NAME="$1"
+NEW_MODEL_NAME="${MODEL_NAME//\//_}"
+
+# Note: set it to "openai" if you are using your own model server (vllm)
+# Otherwise, set it to "azure" if you are using azure gpt endpoint
+# Run self-serving model
+# export OPENAI_API_TYPE="openai"  
+# export OPENAI_BASE_URL="http://localhost:2327/v1"
+# export OPENAI_API_KEY="EMPTY"
+
+source .venv/bin/activate
+echo "==> Start to run ExampleBench"
+# Note that if you benchmark has multiple tasks, you need to add --task <task> 
+# in your code to enable task selection.
+python src/main.py \
+    --model_name "${MODEL_NAME}"
+    # --save_path "./outputs/examplebench__${NEW_MODEL_NAME}__$(date +"%Y-%m-%d_%H-%M-%S")" \
+    
+deactivate
diff --git a/benchmarks/sregym/src/__init__.py b/benchmarks/sregym/src/__init__.py
new file mode 100644
index 0000000..284e62c
--- /dev/null
+++ b/benchmarks/sregym/src/__init__.py
@@ -0,0 +1 @@
+"""Init file for the example_bench package."""
diff --git a/benchmarks/sregym/src/main.py b/benchmarks/sregym/src/main.py
new file mode 100644
index 0000000..b078c17
--- /dev/null
+++ b/benchmarks/sregym/src/main.py
@@ -0,0 +1,120 @@
+"""Example for benchmarking the performance of a model on a specific task."""
+
+import argparse
+import json
+import os
+import sys
+from datetime import datetime
+
+sys.path.append(os.path.abspath(os.path.join(os.path.dirname(__file__), '../../../')))
+
+from sdk.utils import set_llm_endpoint_from_config
+
+set_llm_endpoint_from_config('env.toml')
+
+from sdk.evaluator import BasicEvaluator  # noqa: E402
+from sdk.executor import SimpleExecutor  # noqa: E402
+
+
+def main(_input_file, output_dir, _model_name, agent_name):
+    """Main function for running the benchmark."""
+    total_score = []
+    with (
+        open(_input_file, encoding='utf-8') as data,
+        open(os.path.join(output_dir, 'result.jsonl'), 'w', encoding='utf-8') as output_file,
+    ):
+        for line in data:
+            item = json.loads(line)
+            print('============ ' + item['id'] + ' ============')
+            if agent_name == 'llm':
+                executor = SimpleExecutor(_model_name, item['sys_prompt'])
+            else:
+                # You can add more agents here
+                raise ValueError(f'Unknown agent name: {agent_name}')
+            response = executor.run(item['user_prompt'])
+
+            evaluator = BasicEvaluator(_model_name)
+            offline_metrics = evaluator.eval(question=item['user_prompt'], answer=response, groundtruth=item)
+
+            total_score.append(
+                (
+                    offline_metrics['syntax_acc'],
+                    offline_metrics['exact_match'],
+                    offline_metrics['jaccard_similarity'],
+                    offline_metrics['cosine_similarity'],
+                    offline_metrics['embeddings_similarity'],
+                    offline_metrics['llmjudger_rating'],
+                )
+            )  # drop llmjudger_answer
+
+            result = {
+                'id': item['id'],
+                'sys_prompt': item['sys_prompt'],
+                'user_prompt': item['user_prompt'],
+                'groundtruth': item['response'],
+                'response': response,
+                'syntax_acc': offline_metrics['syntax_acc'],
+                'exact_match': offline_metrics['exact_match'],
+                'jaccard_similarity': offline_metrics['jaccard_similarity'],
+                'cosine_similarity': offline_metrics['cosine_similarity'],
+                'embeddings_similarity': offline_metrics['embeddings_similarity'],
+                'llmjudger_rating': offline_metrics['llmjudger_rating'],
+                'llmjudger_answer': offline_metrics['llmjudger_answer'],
+            }
+            print('Evaluation Result:')
+            print(result)
+            output_file.write(json.dumps(result))
+            output_file.write('\n')
+
+    avg_score = [sum(values) / len(values) for values in list(zip(*total_score))]
+    avg_score_dict = {
+        'syntax_acc': avg_score[0],
+        'exact_match': avg_score[1],
+        'jaccard_similarity': avg_score[2],
+        'cosine_similarity': avg_score[3],
+        'embeddings_similarity': avg_score[4],
+        'llmjudger_rating': avg_score[5],
+        'final_score': sum(avg_score[:5]) / 5,  # Average of the first five metrics
+    }
+    with open(os.path.join(output_dir, 'avg_score.json'), 'w', encoding='utf-8') as avg_score_file:
+        json.dump(avg_score_dict, avg_score_file, indent=4)
+    print('************ Final average score ************')
+    print(avg_score_dict)
+
+
+if __name__ == '__main__':
+    parser = argparse.ArgumentParser(description='example benchmark')
+    parser.add_argument(
+        '-i',
+        '--input_file',
+        help='Benchmark input file',
+        default='./data/benchmark/example_bench_benchmark_timestamp.jsonl',
+    )
+    parser.add_argument('-o', '--save_path', help='Result save path', default=None)
+    # Add a parameter for agent
+    parser.add_argument('-a', '--agent', help='Agent Name', default='llm')
+
+    parser.add_argument(
+        '-m',
+        '--model_name',
+        help='Model Name',
+    )
+    # Note that if your benchmark has multiple tasks, you need to add --task <task>
+    # in your code to enable task selection.
+    parser.add_argument('-t', '--task', help='specify task in scenarios', default=None)
+
+    args = parser.parse_args()
+
+    model_name = args.model_name
+    input_file = args.input_file
+    save_path = args.save_path
+
+    if save_path is None:
+        str_model_name = model_name.replace('/', '_')
+        timestamp = datetime.now().strftime('%Y-%m-%d_%H-%M-%S')
+        save_path = os.path.join('./outputs', f'examplebench__{str_model_name}__{args.agent}__{timestamp}')
+
+    save_path = os.path.abspath(os.path.expanduser(save_path))
+    os.makedirs(save_path, exist_ok=True)
+
+    main(input_file, save_path, model_name, agent_name=args.agent)
diff --git a/benchmarks/sregym/test.sh b/benchmarks/sregym/test.sh
new file mode 100755
index 0000000..00820da
--- /dev/null
+++ b/benchmarks/sregym/test.sh
@@ -0,0 +1,10 @@
+#!/bin/bash
+
+set -e  # Exit immediately on error.
+
+source envexamplebench/bin/activate
+pytest --version
+pytest
+deactivate
+
+echo "==> ExampleBench test is done successfully."
diff --git a/benchmarks/sregym/tests/__init__.py b/benchmarks/sregym/tests/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/benchmarks/sregym/tests/test_benchmark.py b/benchmarks/sregym/tests/test_benchmark.py
new file mode 100644
index 0000000..550d61c
--- /dev/null
+++ b/benchmarks/sregym/tests/test_benchmark.py
@@ -0,0 +1,60 @@
+"""Tests for the example benchmark."""
+
+import json
+import unittest
+from pathlib import Path
+
+
+class TestExampleBenchmark(unittest.TestCase):
+    def test_data_format(self):
+        """Test that benchmark data is in the correct format."""
+        data_path = (
+            Path(__file__).parent.parent
+            / "data"
+            / "benchmark"
+            / "example_bench_benchmark_timestamp.jsonl"
+        )
+
+        self.assertTrue(
+            data_path.exists(), f"Benchmark data file not found: {data_path}"
+        )
+
+        with open(data_path, encoding="utf-8") as f:
+            for line_num, line in enumerate(f, 1):
+                data = json.loads(line)
+
+                # Check required fields
+                self.assertIn("id", data, f'Line {line_num}: missing "id" field')
+                self.assertIn(
+                    "sys_prompt", data, f'Line {line_num}: missing "sys_prompt" field'
+                )
+                self.assertIn(
+                    "user_prompt", data, f'Line {line_num}: missing "user_prompt" field'
+                )
+                self.assertIn(
+                    "response", data, f'Line {line_num}: missing "response" field'
+                )
+
+                # Check field types
+                self.assertIsInstance(
+                    data["id"], str, f'Line {line_num}: "id" must be a string'
+                )
+                self.assertIsInstance(
+                    data["sys_prompt"],
+                    str,
+                    f'Line {line_num}: "sys_prompt" must be a string',
+                )
+                self.assertIsInstance(
+                    data["user_prompt"],
+                    str,
+                    f'Line {line_num}: "user_prompt" must be a string',
+                )
+                self.assertIsInstance(
+                    data["response"],
+                    str,
+                    f'Line {line_num}: "response" must be a string',
+                )
+
+
+if __name__ == "__main__":
+    unittest.main()

From 6d5eab07e630fb12c8f06ee5eda787c461430f69 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Thu, 27 Nov 2025 21:11:22 -0600
Subject: [PATCH 02/17] Squashed 'benchmarks/sregym/sregym_core/' content from
 commit 529f564e

git-subtree-dir: benchmarks/sregym/sregym_core
git-subtree-split: 529f564ef3c955db2ed82aac2f84c6eb05e078c7
---
 .env.example                                  |   64 +
 .github/.CODEOWNERS                           |    1 +
 .github/workflows/action.yml                  |   85 +
 .gitignore                                    |  768 +++
 .gitmodules                                   |    3 +
 .pre-commit-config.yaml                       |   11 +
 .python-version                               |    1 +
 CONTRIBUTING.md                               |  326 ++
 LICENSE.txt                                   |   19 +
 Problem List.md                               |   89 +
 README.md                                     |   93 +
 SREGym-applications                           |    1 +
 agents.yaml                                   |   11 +
 assets/SREGymFigure.png                       |  Bin 0 -> 330255 bytes
 cli.py                                        |  214 +
 clients/__init__.py                           |    0
 clients/autosubmit/autosubmit_agent.py        |   31 +
 clients/stratus/README.md                     |    8 +
 clients/stratus/__init__.py                   |    0
 .../configs/diagnosis_agent_config.yaml       |   79 +
 .../configs/diagnosis_agent_prompts.yaml      |   70 +
 .../stratus/configs/langgraph_tool_configs.py |   46 +
 .../configs/llm_summarization_prompt.yaml     |   37 +
 .../configs/localization_agent_config.yaml    |   89 +
 .../configs/localization_agent_prompts.yaml   |   73 +
 .../configs/mitigation_agent_config.yaml      |   74 +
 .../configs/mitigation_agent_prompts.yaml     |   96 +
 .../configs/rollback_agent_config.yaml        |   24 +
 .../configs/rollback_agent_prompts.yaml       |   28 +
 clients/stratus/configs/stratus_config.py     |   28 +
 clients/stratus/llm_backend/__init__.py       |    0
 .../stratus/llm_backend/get_llm_backend.py    |  353 ++
 clients/stratus/llm_backend/init_backend.py   |  177 +
 clients/stratus/llm_backend/trim_util.py      |   40 +
 clients/stratus/stratus_agent/README.md       |    7 +
 clients/stratus/stratus_agent/__init__.py     |    0
 clients/stratus/stratus_agent/base_agent.py   |  244 +
 .../stratus/stratus_agent/diagnosis_agent.py  |  198 +
 .../stratus/stratus_agent/driver/__init__.py  |    0
 .../stratus/stratus_agent/driver/driver.py    |  598 +++
 .../stratus_agent/localization_agent.py       |   79 +
 .../stratus/stratus_agent/mitigation_agent.py |  233 +
 .../stratus/stratus_agent/rollback_agent.py   |  125 +
 clients/stratus/stratus_agent/state.py        |   21 +
 clients/stratus/stratus_utils/__init__.py     |    0
 .../stratus_utils/ai_msg_mock_utils.py        |   53 +
 clients/stratus/stratus_utils/get_logger.py   |    7 +
 .../stratus_utils/get_starting_prompt.py      |   16 +
 clients/stratus/stratus_utils/str_to_tool.py  |   72 +
 .../stratus_utils/truncate_by_token.py        |   23 +
 clients/stratus/tools/__init__.py             |    0
 clients/stratus/tools/basic_tool_node.py      |   43 +
 clients/stratus/tools/compile/compile_tool.py |   59 +
 clients/stratus/tools/jaeger_tools.py         |  248 +
 clients/stratus/tools/kubectl_tools.py        |  234 +
 clients/stratus/tools/localization.py         |   59 +
 clients/stratus/tools/prometheus_tools.py     |  127 +
 .../stratus/tools/stateful_async_tool_node.py |   36 +
 clients/stratus/tools/stratus_tool_node.py    |  127 +
 clients/stratus/tools/submit_tool.py          |  127 +
 .../stratus/tools/text_editing/__init__.py    |    0
 clients/stratus/tools/text_editing/edit.py    |  208 +
 .../stratus/tools/text_editing/file_manip.py  |  415 ++
 .../tools/text_editing/flake8_utils.py        |  142 +
 clients/stratus/tools/text_editing/insert.py  |   81 +
 .../tools/text_editing/windowed_file.py       |  303 ++
 clients/stratus/tools/wait_tool.py            |   35 +
 clients/stratus/weak_oracles/__init__.py      |    0
 clients/stratus/weak_oracles/base_oracle.py   |   20 +
 .../weak_oracles/cluster_state_oracle.py      |   98 +
 .../stratus/weak_oracles/workload_oracle.py   |  263 +
 dashboard/__init__.py                         |    0
 dashboard/assets/utils.js                     |   17 +
 dashboard/dashboard_app.py                    | 1053 ++++
 dashboard/proxy.py                            |   97 +
 kind/.dockerignore                            |    1 +
 kind/Dockerfile                               |    4 +
 kind/README.md                                |  162 +
 kind/kind-config-arm.yaml                     |   29 +
 kind/kind-config-x86.yaml                     |   29 +
 logger/__init__.py                            |   78 +
 logger/handler.py                             |   42 +
 main.py                                       |  289 +
 mcp_server/__init__.py                        |    0
 mcp_server/configs/__init__.py                |    0
 mcp_server/configs/kubectl_session_cfg.py     |   14 +
 mcp_server/configs/kubectl_tool_cfg.py        |   75 +
 mcp_server/configs/load_all_cfg.py            |   49 +
 mcp_server/configs/mcp_server_cfg.py          |   16 +
 mcp_server/example.txt                        |    1 +
 mcp_server/jaeger_server.py                   |  139 +
 mcp_server/kubectl_mcp_tools.py               |  108 +
 mcp_server/kubectl_server_helper/__init__.py  |    0
 .../kubectl_server_helper/action_stack.py     |   51 +
 .../kubectl_server_helper/cmd_category.py     |   78 +
 mcp_server/kubectl_server_helper/kubectl.py   |  183 +
 .../kubectl_cmd_runner.py                     |  269 +
 .../kubectl_server_helper/kubectl_tool_set.py |   18 +
 .../kubectl_server_helper/rollback_tool.py    |  299 ++
 .../sliding_lru_session_cache.py              |  121 +
 mcp_server/kubectl_server_helper/utils.py     |   50 +
 mcp_server/prometheus_server.py               |   45 +
 mcp_server/sregym_mcp_server.py               |   30 +
 mcp_server/submit_server.py                   |  129 +
 mcp_server/test_client.py                     |  146 +
 mcp_server/test_server.py                     |   45 +
 mcp_server/utils.py                           |   73 +
 provisioner/README.md                         |  177 +
 provisioner/__init__.py                       |    0
 provisioner/cli.py                            |  680 +++
 provisioner/cloudlab_provisioner.py           |  333 ++
 provisioner/config/__init__.py                |    0
 provisioner/config/settings.py                |   93 +
 provisioner/daemon.py                         |  505 ++
 provisioner/setup_daemon.sh                   |   57 +
 provisioner/state_manager.py                  |  364 ++
 provisioner/utils/__init__.py                 |    0
 provisioner/utils/email_sender.py             |  160 +
 provisioner/utils/logger.py                   |   31 +
 provisioner/utils/parser.py                   |  113 +
 provisioner/utils/ssh.py                      |  181 +
 pyproject.toml                                |  184 +
 scripts/__init__.py                           |    0
 scripts/ansible/README.md                     |   31 +
 scripts/ansible/ansible.cfg                   |    2 +
 scripts/ansible/inventory.yml.example         |   19 +
 scripts/ansible/setup_cluster.yml             |  815 +++
 scripts/ansible/ssh/hosts.txt                 |    3 +
 scripts/ansible/ssh/keys.sh                   |   39 +
 scripts/ansible/tidb/README.md                |   32 +
 .../tidb/local-volume-provisioner.yaml        |  167 +
 scripts/ansible/tidb/tidb-cluster.yaml        |   54 +
 scripts/ansible/tidb/tidb-dashboard.yaml      |   23 +
 scripts/ansible/tidb/tidb-monitor.yaml        |   24 +
 scripts/ansible/tidb/tidb-operator.yaml       |  306 ++
 .../ansible/tidb/tidb_operator_cluster.yml    |  107 +
 scripts/ansible/tidb/tidb_pv_setup.yml        |  173 +
 scripts/geni_lib/README.md                    |  180 +
 scripts/geni_lib/__init__.py                  |    0
 scripts/geni_lib/cluster_setup.py             |  357 ++
 scripts/geni_lib/generate_rspec.py            |   35 +
 scripts/geni_lib/genictl.py                   |  606 +++
 .../geni_lib/mod/geni_lib_xlab-1.0.0.tar.gz   |  Bin 0 -> 104018 bytes
 scripts/geni_lib/quick_k8s_experiment.py      |  104 +
 scripts/geni_lib/remote.py                    |   76 +
 scripts/geni_lib/rspecs/test.xml              |   28 +
 scripts/terraform/.gitignore                  |   33 +
 scripts/terraform/README.md                   |   87 +
 scripts/terraform/data.tf                     |    3 +
 scripts/terraform/deploy.py                   |  215 +
 scripts/terraform/main.tf                     |  197 +
 scripts/terraform/outputs.tf                  |   19 +
 scripts/terraform/providers.tf                |   23 +
 scripts/terraform/scripts/kube_controller.sh  |   25 +
 scripts/terraform/scripts/kubeadm.sh          |  136 +
 scripts/terraform/scripts/prom_on_worker.sh   |   18 +
 scripts/terraform/scripts/setup_sregym.sh     |   40 +
 scripts/terraform/ssh.tf                      |   35 +
 scripts/terraform/variables.tf                |   31 +
 sregym/__init__.py                            |    5 +
 sregym/agent_launcher.py                      |   61 +
 sregym/agent_registry.py                      |   41 +
 sregym/conductor/__init__.py                  |    1 +
 sregym/conductor/conductor.py                 |  562 ++
 sregym/conductor/conductor_api.py             |  142 +
 sregym/conductor/constants.py                 |    8 +
 .../assign_non_existent_node_mitigation.py    |   53 +
 sregym/conductor/oracles/base.py              |   13 +
 sregym/conductor/oracles/compound.py          |   60 +
 sregym/conductor/oracles/detection.py         |   30 +
 sregym/conductor/oracles/diagnosis_oracle.py  |  547 ++
 .../oracles/dns_resolution_mitigation.py      |   66 +
 .../conductor/oracles/imbalance_mitigation.py |   49 +
 .../oracles/incorrect_image_mitigation.py     |   33 +
 sregym/conductor/oracles/incorrect_port.py    |   43 +
 .../oracles/ingress_misroute_oracle.py        |   31 +
 .../conductor/oracles/llm_as_a_judge/judge.py |  244 +
 .../llm_as_a_judge/llm_as_a_judge_oracle.py   |   75 +
 sregym/conductor/oracles/localization.py      |   61 +
 .../oracles/missing_cm_key_mitigation.py      |   51 +
 .../missing_env_variable_mitigation.py        |   71 +
 sregym/conductor/oracles/mitigation.py        |   40 +
 .../namespace_memory_limit_mitigation.py      |   41 +
 .../oracles/network_policy_oracle.py          |   29 +
 .../invalid_affinity_mitigation.py            |  123 +
 .../non_existent_storage_mitigation.py        |  113 +
 .../overload_replicas_mitigation.py           |  100 +
 .../security_context_mitigation.py            |  113 +
 .../wrong_update_strategy_mitigation.py       |   87 +
 ...ling_update_misconfiguration_mitigation.py |   57 +
 .../oracles/rpc_retry_storm_mitigation.py     |  180 +
 .../oracles/scale_pod_zero_mitigation.py      |   55 +
 .../oracles/service_endpoint_mitigation.py    |   32 +
 .../conductor/oracles/sustained_readiness.py  |   88 +
 .../oracles/target_port_mitigation.py         |   53 +
 sregym/conductor/oracles/utils.py             |   11 +
 .../oracles/valkey_auth_mitigation.py         |   44 +
 sregym/conductor/oracles/workload.py          |   37 +
 .../conductor/oracles/wrong_bin_mitigation.py |   37 +
 sregym/conductor/parser.py                    |  182 +
 sregym/conductor/problems/__init__.py         |    0
 .../conductor/problems/ad_service_failure.py  |   32 +
 .../conductor/problems/ad_service_high_cpu.py |   33 +
 .../problems/ad_service_manual_gc.py          |   32 +
 .../problems/assign_non_existent_node.py      |   47 +
 .../conductor/problems/auth_miss_mongodb.py   |   44 +
 sregym/conductor/problems/base.py             |   28 +
 .../capacity_decrease_rpc_retry_storm.py      |   55 +
 .../problems/cart_service_failure.py          |   32 +
 sregym/conductor/problems/configmap_drift.py  |   69 +
 .../problems/duplicate_pvc_mounts.py          |   55 +
 .../problems/env_variable_shadowing.py        |   45 +
 .../problems/faulty_image_correlated.py       |   48 +
 .../problems/gc_capacity_degradation.py       |   60 +
 sregym/conductor/problems/image_slow_load.py  |   33 +
 sregym/conductor/problems/incorrect_image.py  |   46 +
 .../problems/incorrect_port_assignment.py     |   44 +
 sregym/conductor/problems/ingress_misroute.py |   77 +
 .../problems/kafka_queue_problems.py          |   32 +
 sregym/conductor/problems/kubelet_crash.py    |   42 +
 .../conductor/problems/latent_sector_error.py |  312 ++
 .../liveness_probe_misconfiguration.py        |   58 +
 .../problems/liveness_probe_too_aggressive.py |   46 +
 .../problems/load_spike_rpc_retry_storm.py    |   54 +
 .../problems/loadgenerator_flood_homepage.py  |   33 +
 sregym/conductor/problems/misconfig_app.py    |   43 +
 .../conductor/problems/missing_configmap.py   |   45 +
 .../problems/missing_env_variable.py          |   53 +
 sregym/conductor/problems/missing_service.py  |   54 +
 .../conductor/problems/multiple_failures.py   |   55 +
 .../problems/namespace_memory_limit.py        |   36 +
 .../problems/network_policy_block.py          |   50 +
 .../operator_misoperation/IMPORTANT.md        |    2 +
 .../operator_misoperation/__init__.py         |    5 +
 .../invalid_affinity_toleration.py            |   46 +
 .../non_existent_storage.py                   |   44 +
 .../overload_replicas.py                      |   45 +
 .../security_context_fault.py                 |   40 +
 .../wrong_update_strategy.py                  |   44 +
 .../problems/payment_service_failure.py       |   32 +
 .../problems/payment_service_unreachable.py   |   32 +
 .../persistent_volume_affinity_violation.py   |   51 +
 .../problems/pod_anti_affinity_deadlock.py    |   61 +
 sregym/conductor/problems/postgres.md         |   54 +
 .../problems/product_catalog_failure.py       |   32 +
 .../conductor/problems/pvc_claim_mismatch.py  |   46 +
 .../problems/rbac_misconfiguration.py         |   45 +
 sregym/conductor/problems/read_error.py       |   52 +
 .../readiness_probe_misconfiguration.py       |   55 +
 .../recommendation_service_cache_failure.py   |   32 +
 sregym/conductor/problems/registry.py         |  202 +
 sregym/conductor/problems/resource_request.py |   91 +
 sregym/conductor/problems/revoke_auth.py      |   47 +
 .../problems/rolling_update_misconfigured.py  |   45 +
 sregym/conductor/problems/scale_pod.py        |   52 +
 .../service_dns_resolution_failure.py         |   54 +
 .../problems/sidecar_port_conflict.py         |   53 +
 .../problems/silent_data_corruption.py        |  249 +
 .../problems/stale_coredns_config.py          |   54 +
 .../problems/storage_user_unregistered.py     |   50 +
 .../conductor/problems/taint_no_toleration.py |   62 +
 sregym/conductor/problems/target_port.py      |   44 +
 sregym/conductor/problems/train_ticket_f22.py |   51 +
 sregym/conductor/problems/trainticket_f17.py  |   51 +
 .../update_incompatible_correlated.py         |   54 +
 .../problems/valkey_auth_disruption.py        |   36 +
 .../problems/valkey_memory_disruption.py      |   33 +
 .../conductor/problems/workload_imbalance.py  |   58 +
 sregym/conductor/problems/wrong_bin_usage.py  |   49 +
 sregym/conductor/problems/wrong_dns_policy.py |   54 +
 .../problems/wrong_service_selector.py        |   54 +
 sregym/conductor/tasklist.yml.example         |  260 +
 sregym/conductor/utils.py                     |    4 +
 sregym/generators/__init__.py                 |    0
 sregym/generators/fault/__init__.py           |    0
 sregym/generators/fault/base.py               |   65 +
 .../generators/fault/custom/slow_service.py   |   42 +
 sregym/generators/fault/helpers.py            |  120 +
 sregym/generators/fault/inject_app.py         |  472 ++
 sregym/generators/fault/inject_hw.py          |  294 ++
 sregym/generators/fault/inject_kernel.py      |  776 +++
 sregym/generators/fault/inject_operator.py    |  249 +
 sregym/generators/fault/inject_os.py          |   85 +
 sregym/generators/fault/inject_otel.py        |   70 +
 sregym/generators/fault/inject_remote_os.py   |  225 +
 sregym/generators/fault/inject_tt.py          |  174 +
 sregym/generators/fault/inject_virtual.py     | 2128 ++++++++
 .../generators/fault/script/k8s-geo-mongo.sh  |   38 +
 .../generators/fault/script/k8s-rate-mongo.sh |   38 +
 .../fault/script/remove-admin-mongo.sh        |   12 +
 .../script/remove-mitigate-admin-geo-mongo.sh |   25 +
 .../remove-mitigate-admin-rate-mongo.sh       |   26 +
 .../fault/script/revoke-admin-geo-mongo.sh    |   15 +
 .../fault/script/revoke-admin-rate-mongo.sh   |   15 +
 .../script/revoke-mitigate-admin-geo-mongo.sh |   17 +
 .../revoke-mitigate-admin-rate-mongo.sh       |   17 +
 .../noise/transient_issues/chaos_injector.py  |   73 +
 .../noise/transient_issues/configuration.yml  |   10 +
 .../transient_issues/transient_issues.py      | 1094 ++++
 sregym/generators/workload/__init__.py        |    0
 sregym/generators/workload/base.py            |   60 +
 .../workload/blueprint_hotel_work.py          |  303 ++
 .../workload/locust-fetcher-template.yaml     |   28 +
 sregym/generators/workload/locust.py          |  204 +
 sregym/generators/workload/stream.py          |  105 +
 .../generators/workload/trainticket_locust.py |  152 +
 .../generators/workload/wrk-job-template.yaml |   22 +
 sregym/generators/workload/wrk2.py            |  323 ++
 sregym/observer/filebeat/.helmignore          |    2 +
 sregym/observer/filebeat/Chart.yaml           |   12 +
 sregym/observer/filebeat/Makefile             |    1 +
 sregym/observer/filebeat/README.md            |  278 +
 .../filebeat/examples/default/Makefile        |   13 +
 .../filebeat/examples/default/README.md       |   27 +
 .../filebeat/examples/default/test/goss.yaml  |   43 +
 .../filebeat/examples/deployment/Makefile     |   13 +
 .../filebeat/examples/deployment/README.md    |   27 +
 .../examples/deployment/test/goss.yaml        |    9 +
 .../filebeat/examples/deployment/values.yaml  |    9 +
 .../observer/filebeat/examples/oss/Makefile   |   13 +
 .../observer/filebeat/examples/oss/README.md  |   27 +
 .../filebeat/examples/oss/test/goss.yaml      |   25 +
 .../filebeat/examples/oss/values.yaml         |   34 +
 .../filebeat/examples/security/Makefile       |   13 +
 .../filebeat/examples/security/README.md      |   28 +
 .../filebeat/examples/security/test/goss.yaml |    9 +
 .../filebeat/examples/security/values.yaml    |   43 +
 .../filebeat/examples/upgrade/Makefile        |   17 +
 .../filebeat/examples/upgrade/README.md       |   21 +
 .../filebeat/examples/upgrade/test/goss.yaml  |   48 +
 .../filebeat/examples/upgrade/values.yaml     |   43 +
 sregym/observer/filebeat/templates/NOTES.txt  |    2 +
 .../observer/filebeat/templates/_helpers.tpl  |   32 +
 .../filebeat/templates/clusterrole.yaml       |   12 +
 .../templates/clusterrolebinding.yaml         |   19 +
 .../filebeat/templates/configmap.yaml         |   53 +
 .../filebeat/templates/daemonset.yaml         |  201 +
 .../filebeat/templates/deployment.yaml        |  157 +
 sregym/observer/filebeat/templates/role.yaml  |   14 +
 .../filebeat/templates/rolebinding.yaml       |   19 +
 .../filebeat/templates/serviceaccount.yaml    |   15 +
 sregym/observer/filebeat/values.yaml          |  279 +
 sregym/observer/logstash/.helmignore          |    2 +
 sregym/observer/logstash/Chart.yaml           |   12 +
 sregym/observer/logstash/Makefile             |    1 +
 sregym/observer/logstash/README.md            |  261 +
 .../logstash/examples/default/Makefile        |   14 +
 .../logstash/examples/default/README.md       |   17 +
 .../logstash/examples/default/test/goss.yaml  |   41 +
 .../logstash/examples/elasticsearch/Makefile  |   15 +
 .../logstash/examples/elasticsearch/README.md |   28 +
 .../examples/elasticsearch/test/goss.yaml     |   58 +
 .../examples/elasticsearch/values.yaml        |   53 +
 .../observer/logstash/examples/oss/Makefile   |   14 +
 .../observer/logstash/examples/oss/README.md  |   17 +
 .../logstash/examples/oss/test/goss.yaml      |   40 +
 .../logstash/examples/oss/values.yaml         |    2 +
 .../logstash/examples/security/Makefile       |   15 +
 .../logstash/examples/security/README.md      |   28 +
 .../logstash/examples/security/test/goss.yaml |   62 +
 .../logstash/examples/security/values.yaml    |   40 +
 .../logstash/examples/upgrade/Makefile        |   16 +
 .../logstash/examples/upgrade/README.md       |   19 +
 .../logstash/examples/upgrade/test/goss.yaml  |   41 +
 .../logstash/examples/upgrade/values.yaml     |    1 +
 sregym/observer/logstash/jaeger/jaeger.py     |  104 +
 sregym/observer/logstash/jaeger/jaeger.yaml   |   69 +
 sregym/observer/logstash/templates/NOTES.txt  |    2 +
 .../observer/logstash/templates/_helpers.tpl  |   27 +
 .../logstash/templates/configmap-config.yaml  |   17 +
 .../logstash/templates/configmap-pattern.yaml |   17 +
 .../templates/configmap-pipeline.yaml         |   17 +
 .../observer/logstash/templates/ingress.yaml  |   68 +
 .../templates/poddisruptionbudget.yaml        |   20 +
 .../logstash/templates/podsecuritypolicy.yaml |   14 +
 sregym/observer/logstash/templates/role.yaml  |   25 +
 .../logstash/templates/rolebinding.yaml       |   20 +
 .../observer/logstash/templates/secret.yaml   |   27 +
 .../logstash/templates/service-headless.yaml  |   20 +
 .../observer/logstash/templates/service.yaml  |   32 +
 .../logstash/templates/serviceaccount.yaml    |   22 +
 .../logstash/templates/statefulset.yaml       |  237 +
 sregym/observer/logstash/values.yaml          |  311 ++
 sregym/observer/prometheus/prometheus-pvc.yml |   11 +
 .../prometheus/prometheus/.helmignore         |   23 +
 .../observer/prometheus/prometheus/Chart.yaml |   53 +
 .../observer/prometheus/prometheus/README.md  |  382 ++
 .../charts/alertmanager/.helmignore           |   25 +
 .../prometheus/charts/alertmanager/Chart.yaml |   23 +
 .../prometheus/charts/alertmanager/README.md  |   62 +
 .../alertmanager/ci/config-reload-values.yaml |    2 +
 .../charts/alertmanager/templates/NOTES.txt   |   21 +
 .../alertmanager/templates/_helpers.tpl       |   92 +
 .../alertmanager/templates/configmap.yaml     |   21 +
 .../alertmanager/templates/ingress.yaml       |   44 +
 .../templates/ingressperreplica.yaml          |   56 +
 .../charts/alertmanager/templates/pdb.yaml    |   14 +
 .../templates/serviceaccount.yaml             |   14 +
 .../templates/serviceperreplica.yaml          |   44 +
 .../alertmanager/templates/services.yaml      |   71 +
 .../alertmanager/templates/statefulset.yaml   |  247 +
 .../templates/tests/test-connection.yaml      |   20 +
 .../__snapshot__/ingress_test.yaml.snap       |   25 +
 .../alertmanager/unittests/ingress_test.yaml  |   43 +
 .../charts/alertmanager/values.schema.json    |  915 ++++
 .../charts/alertmanager/values.yaml           |  363 ++
 .../charts/kube-state-metrics/.helmignore     |   21 +
 .../charts/kube-state-metrics/Chart.yaml      |   26 +
 .../charts/kube-state-metrics/README.md       |   85 +
 .../kube-state-metrics/templates/NOTES.txt    |   23 +
 .../kube-state-metrics/templates/_helpers.tpl |  156 +
 .../templates/ciliumnetworkpolicy.yaml        |   33 +
 .../templates/clusterrolebinding.yaml         |   20 +
 .../templates/crs-configmap.yaml              |   16 +
 .../templates/deployment.yaml                 |  290 +
 .../templates/extra-manifests.yaml            |    4 +
 .../templates/kubeconfig-secret.yaml          |   12 +
 .../templates/networkpolicy.yaml              |   43 +
 .../kube-state-metrics/templates/pdb.yaml     |   18 +
 .../templates/podsecuritypolicy.yaml          |   39 +
 .../templates/psp-clusterrole.yaml            |   19 +
 .../templates/psp-clusterrolebinding.yaml     |   16 +
 .../templates/rbac-configmap.yaml             |   22 +
 .../kube-state-metrics/templates/role.yaml    |  212 +
 .../templates/rolebinding.yaml                |   24 +
 .../kube-state-metrics/templates/service.yaml |   49 +
 .../templates/serviceaccount.yaml             |   15 +
 .../templates/servicemonitor.yaml             |  120 +
 .../templates/stsdiscovery-role.yaml          |   26 +
 .../templates/stsdiscovery-rolebinding.yaml   |   17 +
 .../templates/verticalpodautoscaler.yaml      |   44 +
 .../charts/kube-state-metrics/values.yaml     |  456 ++
 .../prometheus-blackbox-exporter/Chart.yaml   |   23 +
 .../prometheus-blackbox-exporter/README.md    |  113 +
 .../ci/daemonset-values.yml                   |    1 +
 .../ci/default-values.yaml                    |    0
 .../ci/extraenv-values.yaml                   |    3 +
 .../ci/hostAliases.yml                        |    9 +
 .../ci/ingress-values.yml                     |    2 +
 .../ci/networkpolicy-values.yaml              |    2 +
 .../ci/secret-values.yaml                     |    1 +
 .../templates/NOTES.txt                       |   31 +
 .../templates/_helpers.tpl                    |  248 +
 .../templates/configmap.yaml                  |   12 +
 .../templates/daemonset.yaml                  |   27 +
 .../templates/deployment.yaml                 |   30 +
 .../templates/extra-manifests.yaml            |    4 +
 .../templates/ingress.yaml                    |   66 +
 .../templates/networkpolicy.yaml              |   28 +
 .../templates/poddisruptionbudget.yaml        |   18 +
 .../templates/podmonitoring.yaml              |   49 +
 .../templates/podsecuritypolicy.yaml          |   41 +
 .../templates/prometheusrule.yaml             |   20 +
 .../templates/role.yaml                       |   18 +
 .../templates/rolebinding.yaml                |   16 +
 .../templates/selfpodmonitoring.yaml          |   32 +
 .../templates/selfservicemonitor.yaml         |   31 +
 .../templates/service.yaml                    |   31 +
 .../templates/serviceaccount.yaml             |   13 +
 .../templates/servicemonitor.yaml             |   62 +
 .../templates/verticalpodautoscaler.yaml      |   44 +
 .../prometheus-blackbox-exporter/values.yaml  |  399 ++
 .../prometheus-node-exporter/.helmignore      |   21 +
 .../prometheus-node-exporter/Chart.yaml       |   25 +
 .../charts/prometheus-node-exporter/README.md |   96 +
 .../ci/port-values.yaml                       |    3 +
 .../templates/NOTES.txt                       |   29 +
 .../templates/_helpers.tpl                    |  185 +
 .../templates/clusterrole.yaml                |   19 +
 .../templates/clusterrolebinding.yaml         |   20 +
 .../templates/daemonset.yaml                  |  285 +
 .../templates/endpoints.yaml                  |   18 +
 .../templates/extra-manifests.yaml            |    4 +
 .../templates/networkpolicy.yaml              |   23 +
 .../templates/podmonitor.yaml                 |   91 +
 .../templates/psp-clusterrole.yaml            |   14 +
 .../templates/psp-clusterrolebinding.yaml     |   16 +
 .../templates/psp.yaml                        |   49 +
 .../templates/rbac-configmap.yaml             |   16 +
 .../templates/service.yaml                    |   29 +
 .../templates/serviceaccount.yaml             |   17 +
 .../templates/servicemonitor.yaml             |   61 +
 .../templates/verticalpodautoscaler.yaml      |   40 +
 .../prometheus-node-exporter/values.yaml      |  481 ++
 .../charts/prometheus-pushgateway/.helmignore |   24 +
 .../charts/prometheus-pushgateway/Chart.yaml  |   24 +
 .../charts/prometheus-pushgateway/README.md   |   88 +
 .../templates/NOTES.txt                       |   19 +
 .../templates/_helpers.tpl                    |  208 +
 .../templates/deployment.yaml                 |   28 +
 .../templates/ingress.yaml                    |   50 +
 .../templates/networkpolicy.yaml              |   26 +
 .../prometheus-pushgateway/templates/pdb.yaml |   14 +
 .../templates/pushgateway-pvc.yaml            |   29 +
 .../templates/service.yaml                    |   41 +
 .../templates/serviceaccount.yaml             |   16 +
 .../templates/servicemonitor.yaml             |   51 +
 .../templates/statefulset.yaml                |   49 +
 .../charts/prometheus-pushgateway/values.yaml |  330 ++
 .../prometheus/prometheus/templates/NOTES.txt |  113 +
 .../prometheus/templates/_helpers.tpl         |  234 +
 .../prometheus/templates/clusterrole.yaml     |   56 +
 .../templates/clusterrolebinding.yaml         |   16 +
 .../prometheus/prometheus/templates/cm.yaml   |   99 +
 .../prometheus/templates/deploy.yaml          |  360 ++
 .../prometheus/templates/extra-manifests.yaml |    4 +
 .../prometheus/templates/headless-svc.yaml    |   35 +
 .../prometheus/templates/ingress.yaml         |   57 +
 .../prometheus/templates/network-policy.yaml  |   16 +
 .../prometheus/prometheus/templates/pdb.yaml  |   15 +
 .../prometheus/prometheus/templates/psp.yaml  |   53 +
 .../prometheus/prometheus/templates/pvc.yaml  |   43 +
 .../prometheus/templates/rolebinding.yaml     |   18 +
 .../prometheus/templates/service.yaml         |   63 +
 .../prometheus/templates/serviceaccount.yaml  |   14 +
 .../prometheus/prometheus/templates/sts.yaml  |  382 ++
 .../prometheus/prometheus/templates/vpa.yaml  |   26 +
 .../tmpcharts-91028/alertmanager-1.7.0.tgz    |  Bin 0 -> 13358 bytes
 .../prometheus/prometheus/values.schema.json  |  738 +++
 .../prometheus/prometheus/values.yaml         |  896 ++++
 sregym/observer/tidb_cluster_deploy_helper.py |   21 +
 sregym/observer/tidb_prometheus.py            |   81 +
 sregym/observer/trace_api.py                  |  365 ++
 sregym/paths.py                               |   30 +
 .../trainticket/locust-deployment.yaml        |   72 +
 sregym/resources/trainticket/locustfile.py    |  250 +
 sregym/service/__init__.py                    |    0
 sregym/service/apps/app_registry.py           |   57 +
 sregym/service/apps/astronomy_shop.py         |   77 +
 sregym/service/apps/base.py                   |   81 +
 .../apps/blueprint_hotel_reservation.py       |   66 +
 sregym/service/apps/composite_app.py          |   39 +
 sregym/service/apps/fleet_cast.py             |  271 +
 sregym/service/apps/flight_ticket.py          |   50 +
 sregym/service/apps/helpers.py                |    8 +
 sregym/service/apps/hotel_reservation.py      |  152 +
 sregym/service/apps/social_network.py         |  109 +
 sregym/service/apps/tidb_cluster_operator.py  |  296 ++
 sregym/service/apps/train_ticket.py           |  163 +
 sregym/service/dm_dust_manager.py             |  242 +
 sregym/service/dm_flakey_manager.py           |  243 +
 sregym/service/helm.py                        |  227 +
 sregym/service/khaos.py                       |   73 +
 sregym/service/khaos.yaml                     |  128 +
 sregym/service/kubectl.py                     |  651 +++
 sregym/service/metadata/__init__.py           |    0
 sregym/service/metadata/astronomy-shop.json   |   22 +
 .../metadata/blueprint-hotel-reservation.json |   13 +
 sregym/service/metadata/fleet-cast.json       |   13 +
 sregym/service/metadata/flight-ticket.json    |   13 +
 .../service/metadata/hotel-reservation.json   |   16 +
 sregym/service/metadata/prometheus.json       |   17 +
 sregym/service/metadata/social-network.json   |   19 +
 .../service/metadata/tidb-with-operator.json  |   20 +
 sregym/service/metadata/tidb_metadata.json    |   20 +
 sregym/service/metadata/train-ticket.json     |   13 +
 sregym/service/shell.py                       |   34 +
 sregym/service/telemetry/__init__.py          |    0
 sregym/service/telemetry/prometheus.py        |  208 +
 sregym/utils/__init__.py                      |    0
 sregym/utils/actions.py                       |   78 +
 sregym/utils/cache.py                         |   36 +
 sregym/utils/decorators.py                    |   16 +
 tests/e2e-testing-scripts/auto_submit.py      |   23 +
 tests/e2e-testing-scripts/automating_tests.py |  549 ++
 tests/e2e-testing-scripts/brew.sh             |    7 +
 tests/e2e-testing-scripts/docker.sh           |   22 +
 .../e2e-testing-scripts/e2e_testing_readme.md |   35 +
 tests/e2e-testing-scripts/go.sh               |    7 +
 tests/e2e-testing-scripts/kind.sh             |   40 +
 tests/e2e-testing-scripts/kubectl.sh          |    1 +
 tests/e2e-testing-scripts/registry.txt        |   86 +
 tests/file_editing/example.py                 |    6 +
 tests/file_editing/example.txt                |    2 +
 .../test_create_and_insert_1.yaml             |   19 +
 tests/file_editing/test_edit_1.yaml           |   13 +
 tests/file_editing/test_file_editing_tool.py  |   62 +
 tests/file_editing/test_goto_line_1.yaml      |   12 +
 tests/file_editing/test_open_file_1.yaml      |    9 +
 tests/file_editing/test_open_file_2.yaml      |   13 +
 tests/geni-lib/__init__.py                    |    0
 tests/geni-lib/test_deploy_sregym.py          |   44 +
 tests/geni-lib/test_experiment_creation.py    |   78 +
 .../kubectl_tool_set_test.py                  |  124 +
 tests/kubectl_tool_tests/nl2kubectl_agent.py  |  214 +
 .../tests/create_del_test.yaml                |   37 +
 .../kubectl_tool_tests/tests/patch_test.yaml  |   15 +
 .../tests/preconditions.yaml                  |   24 +
 .../resources/custom_nginx_deployment.yaml    |   20 +
 tests/provisioner/test_provisioner.py         |  594 +++
 tests/provisioner/test_ssh.py                 |   79 +
 tests/provisioner/test_state_manager.py       |   46 +
 tests/sre-ql/cli.py                           |  834 +++
 tests/sre-ql/codeql-pack.lock.yml             |    4 +
 tests/sre-ql/qlpack.yml                       |    7 +
 tests/sre-ql/queries/absolute_paths.ql        |   17 +
 .../application_checks.ql                     |   52 +
 tests/sre-ql/queries/fault_recover_checks.ql  |  113 +
 .../sre-ql/queries/problem_attributes/app.ql  |   48 +
 .../problem_attributes/diagnosis_oracle.ql    |   48 +
 .../problem_attributes/faultyservice.ql       |   48 +
 .../problem_attributes/mitigation_oracle.ql   |   48 +
 .../queries/problem_attributes/namespace.ql   |   48 +
 tests/sre-ql/queries/problem_lifecycle.ql     |  121 +
 uv.lock                                       | 4686 +++++++++++++++++
 605 files changed, 60442 insertions(+)
 create mode 100644 .env.example
 create mode 100644 .github/.CODEOWNERS
 create mode 100644 .github/workflows/action.yml
 create mode 100644 .gitignore
 create mode 100644 .gitmodules
 create mode 100644 .pre-commit-config.yaml
 create mode 100644 .python-version
 create mode 100644 CONTRIBUTING.md
 create mode 100644 LICENSE.txt
 create mode 100644 Problem List.md
 create mode 100644 README.md
 create mode 160000 SREGym-applications
 create mode 100644 agents.yaml
 create mode 100644 assets/SREGymFigure.png
 create mode 100644 cli.py
 create mode 100644 clients/__init__.py
 create mode 100644 clients/autosubmit/autosubmit_agent.py
 create mode 100644 clients/stratus/README.md
 create mode 100644 clients/stratus/__init__.py
 create mode 100644 clients/stratus/configs/diagnosis_agent_config.yaml
 create mode 100644 clients/stratus/configs/diagnosis_agent_prompts.yaml
 create mode 100644 clients/stratus/configs/langgraph_tool_configs.py
 create mode 100644 clients/stratus/configs/llm_summarization_prompt.yaml
 create mode 100644 clients/stratus/configs/localization_agent_config.yaml
 create mode 100644 clients/stratus/configs/localization_agent_prompts.yaml
 create mode 100644 clients/stratus/configs/mitigation_agent_config.yaml
 create mode 100644 clients/stratus/configs/mitigation_agent_prompts.yaml
 create mode 100644 clients/stratus/configs/rollback_agent_config.yaml
 create mode 100644 clients/stratus/configs/rollback_agent_prompts.yaml
 create mode 100644 clients/stratus/configs/stratus_config.py
 create mode 100644 clients/stratus/llm_backend/__init__.py
 create mode 100644 clients/stratus/llm_backend/get_llm_backend.py
 create mode 100644 clients/stratus/llm_backend/init_backend.py
 create mode 100644 clients/stratus/llm_backend/trim_util.py
 create mode 100644 clients/stratus/stratus_agent/README.md
 create mode 100644 clients/stratus/stratus_agent/__init__.py
 create mode 100644 clients/stratus/stratus_agent/base_agent.py
 create mode 100644 clients/stratus/stratus_agent/diagnosis_agent.py
 create mode 100644 clients/stratus/stratus_agent/driver/__init__.py
 create mode 100644 clients/stratus/stratus_agent/driver/driver.py
 create mode 100644 clients/stratus/stratus_agent/localization_agent.py
 create mode 100644 clients/stratus/stratus_agent/mitigation_agent.py
 create mode 100644 clients/stratus/stratus_agent/rollback_agent.py
 create mode 100644 clients/stratus/stratus_agent/state.py
 create mode 100644 clients/stratus/stratus_utils/__init__.py
 create mode 100644 clients/stratus/stratus_utils/ai_msg_mock_utils.py
 create mode 100644 clients/stratus/stratus_utils/get_logger.py
 create mode 100644 clients/stratus/stratus_utils/get_starting_prompt.py
 create mode 100644 clients/stratus/stratus_utils/str_to_tool.py
 create mode 100644 clients/stratus/stratus_utils/truncate_by_token.py
 create mode 100644 clients/stratus/tools/__init__.py
 create mode 100644 clients/stratus/tools/basic_tool_node.py
 create mode 100644 clients/stratus/tools/compile/compile_tool.py
 create mode 100644 clients/stratus/tools/jaeger_tools.py
 create mode 100644 clients/stratus/tools/kubectl_tools.py
 create mode 100644 clients/stratus/tools/localization.py
 create mode 100644 clients/stratus/tools/prometheus_tools.py
 create mode 100644 clients/stratus/tools/stateful_async_tool_node.py
 create mode 100644 clients/stratus/tools/stratus_tool_node.py
 create mode 100644 clients/stratus/tools/submit_tool.py
 create mode 100644 clients/stratus/tools/text_editing/__init__.py
 create mode 100644 clients/stratus/tools/text_editing/edit.py
 create mode 100644 clients/stratus/tools/text_editing/file_manip.py
 create mode 100644 clients/stratus/tools/text_editing/flake8_utils.py
 create mode 100644 clients/stratus/tools/text_editing/insert.py
 create mode 100644 clients/stratus/tools/text_editing/windowed_file.py
 create mode 100644 clients/stratus/tools/wait_tool.py
 create mode 100644 clients/stratus/weak_oracles/__init__.py
 create mode 100644 clients/stratus/weak_oracles/base_oracle.py
 create mode 100644 clients/stratus/weak_oracles/cluster_state_oracle.py
 create mode 100644 clients/stratus/weak_oracles/workload_oracle.py
 create mode 100644 dashboard/__init__.py
 create mode 100644 dashboard/assets/utils.js
 create mode 100644 dashboard/dashboard_app.py
 create mode 100644 dashboard/proxy.py
 create mode 100644 kind/.dockerignore
 create mode 100644 kind/Dockerfile
 create mode 100644 kind/README.md
 create mode 100644 kind/kind-config-arm.yaml
 create mode 100644 kind/kind-config-x86.yaml
 create mode 100644 logger/__init__.py
 create mode 100644 logger/handler.py
 create mode 100644 main.py
 create mode 100644 mcp_server/__init__.py
 create mode 100644 mcp_server/configs/__init__.py
 create mode 100644 mcp_server/configs/kubectl_session_cfg.py
 create mode 100644 mcp_server/configs/kubectl_tool_cfg.py
 create mode 100644 mcp_server/configs/load_all_cfg.py
 create mode 100644 mcp_server/configs/mcp_server_cfg.py
 create mode 100644 mcp_server/example.txt
 create mode 100644 mcp_server/jaeger_server.py
 create mode 100644 mcp_server/kubectl_mcp_tools.py
 create mode 100644 mcp_server/kubectl_server_helper/__init__.py
 create mode 100644 mcp_server/kubectl_server_helper/action_stack.py
 create mode 100644 mcp_server/kubectl_server_helper/cmd_category.py
 create mode 100644 mcp_server/kubectl_server_helper/kubectl.py
 create mode 100644 mcp_server/kubectl_server_helper/kubectl_cmd_runner.py
 create mode 100644 mcp_server/kubectl_server_helper/kubectl_tool_set.py
 create mode 100644 mcp_server/kubectl_server_helper/rollback_tool.py
 create mode 100644 mcp_server/kubectl_server_helper/sliding_lru_session_cache.py
 create mode 100644 mcp_server/kubectl_server_helper/utils.py
 create mode 100644 mcp_server/prometheus_server.py
 create mode 100644 mcp_server/sregym_mcp_server.py
 create mode 100644 mcp_server/submit_server.py
 create mode 100644 mcp_server/test_client.py
 create mode 100644 mcp_server/test_server.py
 create mode 100644 mcp_server/utils.py
 create mode 100644 provisioner/README.md
 create mode 100644 provisioner/__init__.py
 create mode 100644 provisioner/cli.py
 create mode 100644 provisioner/cloudlab_provisioner.py
 create mode 100644 provisioner/config/__init__.py
 create mode 100644 provisioner/config/settings.py
 create mode 100755 provisioner/daemon.py
 create mode 100755 provisioner/setup_daemon.sh
 create mode 100644 provisioner/state_manager.py
 create mode 100644 provisioner/utils/__init__.py
 create mode 100644 provisioner/utils/email_sender.py
 create mode 100644 provisioner/utils/logger.py
 create mode 100644 provisioner/utils/parser.py
 create mode 100644 provisioner/utils/ssh.py
 create mode 100644 pyproject.toml
 create mode 100644 scripts/__init__.py
 create mode 100644 scripts/ansible/README.md
 create mode 100644 scripts/ansible/ansible.cfg
 create mode 100644 scripts/ansible/inventory.yml.example
 create mode 100644 scripts/ansible/setup_cluster.yml
 create mode 100644 scripts/ansible/ssh/hosts.txt
 create mode 100755 scripts/ansible/ssh/keys.sh
 create mode 100644 scripts/ansible/tidb/README.md
 create mode 100644 scripts/ansible/tidb/local-volume-provisioner.yaml
 create mode 100644 scripts/ansible/tidb/tidb-cluster.yaml
 create mode 100644 scripts/ansible/tidb/tidb-dashboard.yaml
 create mode 100644 scripts/ansible/tidb/tidb-monitor.yaml
 create mode 100644 scripts/ansible/tidb/tidb-operator.yaml
 create mode 100644 scripts/ansible/tidb/tidb_operator_cluster.yml
 create mode 100644 scripts/ansible/tidb/tidb_pv_setup.yml
 create mode 100644 scripts/geni_lib/README.md
 create mode 100644 scripts/geni_lib/__init__.py
 create mode 100644 scripts/geni_lib/cluster_setup.py
 create mode 100644 scripts/geni_lib/generate_rspec.py
 create mode 100644 scripts/geni_lib/genictl.py
 create mode 100644 scripts/geni_lib/mod/geni_lib_xlab-1.0.0.tar.gz
 create mode 100644 scripts/geni_lib/quick_k8s_experiment.py
 create mode 100644 scripts/geni_lib/remote.py
 create mode 100644 scripts/geni_lib/rspecs/test.xml
 create mode 100644 scripts/terraform/.gitignore
 create mode 100644 scripts/terraform/README.md
 create mode 100644 scripts/terraform/data.tf
 create mode 100644 scripts/terraform/deploy.py
 create mode 100644 scripts/terraform/main.tf
 create mode 100644 scripts/terraform/outputs.tf
 create mode 100644 scripts/terraform/providers.tf
 create mode 100644 scripts/terraform/scripts/kube_controller.sh
 create mode 100644 scripts/terraform/scripts/kubeadm.sh
 create mode 100644 scripts/terraform/scripts/prom_on_worker.sh
 create mode 100644 scripts/terraform/scripts/setup_sregym.sh
 create mode 100644 scripts/terraform/ssh.tf
 create mode 100644 scripts/terraform/variables.tf
 create mode 100644 sregym/__init__.py
 create mode 100644 sregym/agent_launcher.py
 create mode 100644 sregym/agent_registry.py
 create mode 100644 sregym/conductor/__init__.py
 create mode 100644 sregym/conductor/conductor.py
 create mode 100644 sregym/conductor/conductor_api.py
 create mode 100644 sregym/conductor/constants.py
 create mode 100644 sregym/conductor/oracles/assign_non_existent_node_mitigation.py
 create mode 100644 sregym/conductor/oracles/base.py
 create mode 100644 sregym/conductor/oracles/compound.py
 create mode 100644 sregym/conductor/oracles/detection.py
 create mode 100644 sregym/conductor/oracles/diagnosis_oracle.py
 create mode 100644 sregym/conductor/oracles/dns_resolution_mitigation.py
 create mode 100644 sregym/conductor/oracles/imbalance_mitigation.py
 create mode 100644 sregym/conductor/oracles/incorrect_image_mitigation.py
 create mode 100644 sregym/conductor/oracles/incorrect_port.py
 create mode 100644 sregym/conductor/oracles/ingress_misroute_oracle.py
 create mode 100644 sregym/conductor/oracles/llm_as_a_judge/judge.py
 create mode 100644 sregym/conductor/oracles/llm_as_a_judge/llm_as_a_judge_oracle.py
 create mode 100644 sregym/conductor/oracles/localization.py
 create mode 100644 sregym/conductor/oracles/missing_cm_key_mitigation.py
 create mode 100644 sregym/conductor/oracles/missing_env_variable_mitigation.py
 create mode 100644 sregym/conductor/oracles/mitigation.py
 create mode 100644 sregym/conductor/oracles/namespace_memory_limit_mitigation.py
 create mode 100644 sregym/conductor/oracles/network_policy_oracle.py
 create mode 100644 sregym/conductor/oracles/operator_misoperation/invalid_affinity_mitigation.py
 create mode 100644 sregym/conductor/oracles/operator_misoperation/non_existent_storage_mitigation.py
 create mode 100644 sregym/conductor/oracles/operator_misoperation/overload_replicas_mitigation.py
 create mode 100644 sregym/conductor/oracles/operator_misoperation/security_context_mitigation.py
 create mode 100644 sregym/conductor/oracles/operator_misoperation/wrong_update_strategy_mitigation.py
 create mode 100644 sregym/conductor/oracles/rolling_update_misconfiguration_mitigation.py
 create mode 100644 sregym/conductor/oracles/rpc_retry_storm_mitigation.py
 create mode 100644 sregym/conductor/oracles/scale_pod_zero_mitigation.py
 create mode 100644 sregym/conductor/oracles/service_endpoint_mitigation.py
 create mode 100644 sregym/conductor/oracles/sustained_readiness.py
 create mode 100644 sregym/conductor/oracles/target_port_mitigation.py
 create mode 100644 sregym/conductor/oracles/utils.py
 create mode 100644 sregym/conductor/oracles/valkey_auth_mitigation.py
 create mode 100644 sregym/conductor/oracles/workload.py
 create mode 100644 sregym/conductor/oracles/wrong_bin_mitigation.py
 create mode 100644 sregym/conductor/parser.py
 create mode 100644 sregym/conductor/problems/__init__.py
 create mode 100644 sregym/conductor/problems/ad_service_failure.py
 create mode 100644 sregym/conductor/problems/ad_service_high_cpu.py
 create mode 100644 sregym/conductor/problems/ad_service_manual_gc.py
 create mode 100644 sregym/conductor/problems/assign_non_existent_node.py
 create mode 100644 sregym/conductor/problems/auth_miss_mongodb.py
 create mode 100644 sregym/conductor/problems/base.py
 create mode 100644 sregym/conductor/problems/capacity_decrease_rpc_retry_storm.py
 create mode 100644 sregym/conductor/problems/cart_service_failure.py
 create mode 100644 sregym/conductor/problems/configmap_drift.py
 create mode 100644 sregym/conductor/problems/duplicate_pvc_mounts.py
 create mode 100644 sregym/conductor/problems/env_variable_shadowing.py
 create mode 100644 sregym/conductor/problems/faulty_image_correlated.py
 create mode 100644 sregym/conductor/problems/gc_capacity_degradation.py
 create mode 100644 sregym/conductor/problems/image_slow_load.py
 create mode 100644 sregym/conductor/problems/incorrect_image.py
 create mode 100644 sregym/conductor/problems/incorrect_port_assignment.py
 create mode 100644 sregym/conductor/problems/ingress_misroute.py
 create mode 100644 sregym/conductor/problems/kafka_queue_problems.py
 create mode 100644 sregym/conductor/problems/kubelet_crash.py
 create mode 100644 sregym/conductor/problems/latent_sector_error.py
 create mode 100644 sregym/conductor/problems/liveness_probe_misconfiguration.py
 create mode 100644 sregym/conductor/problems/liveness_probe_too_aggressive.py
 create mode 100644 sregym/conductor/problems/load_spike_rpc_retry_storm.py
 create mode 100644 sregym/conductor/problems/loadgenerator_flood_homepage.py
 create mode 100644 sregym/conductor/problems/misconfig_app.py
 create mode 100644 sregym/conductor/problems/missing_configmap.py
 create mode 100644 sregym/conductor/problems/missing_env_variable.py
 create mode 100644 sregym/conductor/problems/missing_service.py
 create mode 100644 sregym/conductor/problems/multiple_failures.py
 create mode 100644 sregym/conductor/problems/namespace_memory_limit.py
 create mode 100644 sregym/conductor/problems/network_policy_block.py
 create mode 100644 sregym/conductor/problems/operator_misoperation/IMPORTANT.md
 create mode 100644 sregym/conductor/problems/operator_misoperation/__init__.py
 create mode 100644 sregym/conductor/problems/operator_misoperation/invalid_affinity_toleration.py
 create mode 100644 sregym/conductor/problems/operator_misoperation/non_existent_storage.py
 create mode 100644 sregym/conductor/problems/operator_misoperation/overload_replicas.py
 create mode 100644 sregym/conductor/problems/operator_misoperation/security_context_fault.py
 create mode 100644 sregym/conductor/problems/operator_misoperation/wrong_update_strategy.py
 create mode 100644 sregym/conductor/problems/payment_service_failure.py
 create mode 100644 sregym/conductor/problems/payment_service_unreachable.py
 create mode 100644 sregym/conductor/problems/persistent_volume_affinity_violation.py
 create mode 100644 sregym/conductor/problems/pod_anti_affinity_deadlock.py
 create mode 100644 sregym/conductor/problems/postgres.md
 create mode 100644 sregym/conductor/problems/product_catalog_failure.py
 create mode 100644 sregym/conductor/problems/pvc_claim_mismatch.py
 create mode 100644 sregym/conductor/problems/rbac_misconfiguration.py
 create mode 100644 sregym/conductor/problems/read_error.py
 create mode 100644 sregym/conductor/problems/readiness_probe_misconfiguration.py
 create mode 100644 sregym/conductor/problems/recommendation_service_cache_failure.py
 create mode 100644 sregym/conductor/problems/registry.py
 create mode 100644 sregym/conductor/problems/resource_request.py
 create mode 100644 sregym/conductor/problems/revoke_auth.py
 create mode 100644 sregym/conductor/problems/rolling_update_misconfigured.py
 create mode 100644 sregym/conductor/problems/scale_pod.py
 create mode 100644 sregym/conductor/problems/service_dns_resolution_failure.py
 create mode 100644 sregym/conductor/problems/sidecar_port_conflict.py
 create mode 100644 sregym/conductor/problems/silent_data_corruption.py
 create mode 100644 sregym/conductor/problems/stale_coredns_config.py
 create mode 100644 sregym/conductor/problems/storage_user_unregistered.py
 create mode 100644 sregym/conductor/problems/taint_no_toleration.py
 create mode 100644 sregym/conductor/problems/target_port.py
 create mode 100644 sregym/conductor/problems/train_ticket_f22.py
 create mode 100644 sregym/conductor/problems/trainticket_f17.py
 create mode 100644 sregym/conductor/problems/update_incompatible_correlated.py
 create mode 100644 sregym/conductor/problems/valkey_auth_disruption.py
 create mode 100644 sregym/conductor/problems/valkey_memory_disruption.py
 create mode 100644 sregym/conductor/problems/workload_imbalance.py
 create mode 100644 sregym/conductor/problems/wrong_bin_usage.py
 create mode 100644 sregym/conductor/problems/wrong_dns_policy.py
 create mode 100644 sregym/conductor/problems/wrong_service_selector.py
 create mode 100644 sregym/conductor/tasklist.yml.example
 create mode 100644 sregym/conductor/utils.py
 create mode 100644 sregym/generators/__init__.py
 create mode 100644 sregym/generators/fault/__init__.py
 create mode 100644 sregym/generators/fault/base.py
 create mode 100644 sregym/generators/fault/custom/slow_service.py
 create mode 100644 sregym/generators/fault/helpers.py
 create mode 100644 sregym/generators/fault/inject_app.py
 create mode 100644 sregym/generators/fault/inject_hw.py
 create mode 100644 sregym/generators/fault/inject_kernel.py
 create mode 100644 sregym/generators/fault/inject_operator.py
 create mode 100644 sregym/generators/fault/inject_os.py
 create mode 100644 sregym/generators/fault/inject_otel.py
 create mode 100644 sregym/generators/fault/inject_remote_os.py
 create mode 100644 sregym/generators/fault/inject_tt.py
 create mode 100644 sregym/generators/fault/inject_virtual.py
 create mode 100644 sregym/generators/fault/script/k8s-geo-mongo.sh
 create mode 100644 sregym/generators/fault/script/k8s-rate-mongo.sh
 create mode 100644 sregym/generators/fault/script/remove-admin-mongo.sh
 create mode 100644 sregym/generators/fault/script/remove-mitigate-admin-geo-mongo.sh
 create mode 100644 sregym/generators/fault/script/remove-mitigate-admin-rate-mongo.sh
 create mode 100644 sregym/generators/fault/script/revoke-admin-geo-mongo.sh
 create mode 100644 sregym/generators/fault/script/revoke-admin-rate-mongo.sh
 create mode 100644 sregym/generators/fault/script/revoke-mitigate-admin-geo-mongo.sh
 create mode 100644 sregym/generators/fault/script/revoke-mitigate-admin-rate-mongo.sh
 create mode 100644 sregym/generators/noise/transient_issues/chaos_injector.py
 create mode 100644 sregym/generators/noise/transient_issues/configuration.yml
 create mode 100644 sregym/generators/noise/transient_issues/transient_issues.py
 create mode 100644 sregym/generators/workload/__init__.py
 create mode 100644 sregym/generators/workload/base.py
 create mode 100644 sregym/generators/workload/blueprint_hotel_work.py
 create mode 100644 sregym/generators/workload/locust-fetcher-template.yaml
 create mode 100644 sregym/generators/workload/locust.py
 create mode 100644 sregym/generators/workload/stream.py
 create mode 100644 sregym/generators/workload/trainticket_locust.py
 create mode 100644 sregym/generators/workload/wrk-job-template.yaml
 create mode 100644 sregym/generators/workload/wrk2.py
 create mode 100644 sregym/observer/filebeat/.helmignore
 create mode 100644 sregym/observer/filebeat/Chart.yaml
 create mode 100644 sregym/observer/filebeat/Makefile
 create mode 100644 sregym/observer/filebeat/README.md
 create mode 100644 sregym/observer/filebeat/examples/default/Makefile
 create mode 100644 sregym/observer/filebeat/examples/default/README.md
 create mode 100644 sregym/observer/filebeat/examples/default/test/goss.yaml
 create mode 100644 sregym/observer/filebeat/examples/deployment/Makefile
 create mode 100644 sregym/observer/filebeat/examples/deployment/README.md
 create mode 100644 sregym/observer/filebeat/examples/deployment/test/goss.yaml
 create mode 100644 sregym/observer/filebeat/examples/deployment/values.yaml
 create mode 100644 sregym/observer/filebeat/examples/oss/Makefile
 create mode 100644 sregym/observer/filebeat/examples/oss/README.md
 create mode 100644 sregym/observer/filebeat/examples/oss/test/goss.yaml
 create mode 100644 sregym/observer/filebeat/examples/oss/values.yaml
 create mode 100644 sregym/observer/filebeat/examples/security/Makefile
 create mode 100644 sregym/observer/filebeat/examples/security/README.md
 create mode 100644 sregym/observer/filebeat/examples/security/test/goss.yaml
 create mode 100644 sregym/observer/filebeat/examples/security/values.yaml
 create mode 100644 sregym/observer/filebeat/examples/upgrade/Makefile
 create mode 100644 sregym/observer/filebeat/examples/upgrade/README.md
 create mode 100644 sregym/observer/filebeat/examples/upgrade/test/goss.yaml
 create mode 100644 sregym/observer/filebeat/examples/upgrade/values.yaml
 create mode 100644 sregym/observer/filebeat/templates/NOTES.txt
 create mode 100644 sregym/observer/filebeat/templates/_helpers.tpl
 create mode 100644 sregym/observer/filebeat/templates/clusterrole.yaml
 create mode 100644 sregym/observer/filebeat/templates/clusterrolebinding.yaml
 create mode 100644 sregym/observer/filebeat/templates/configmap.yaml
 create mode 100644 sregym/observer/filebeat/templates/daemonset.yaml
 create mode 100644 sregym/observer/filebeat/templates/deployment.yaml
 create mode 100644 sregym/observer/filebeat/templates/role.yaml
 create mode 100644 sregym/observer/filebeat/templates/rolebinding.yaml
 create mode 100644 sregym/observer/filebeat/templates/serviceaccount.yaml
 create mode 100644 sregym/observer/filebeat/values.yaml
 create mode 100644 sregym/observer/logstash/.helmignore
 create mode 100644 sregym/observer/logstash/Chart.yaml
 create mode 100644 sregym/observer/logstash/Makefile
 create mode 100644 sregym/observer/logstash/README.md
 create mode 100644 sregym/observer/logstash/examples/default/Makefile
 create mode 100644 sregym/observer/logstash/examples/default/README.md
 create mode 100644 sregym/observer/logstash/examples/default/test/goss.yaml
 create mode 100644 sregym/observer/logstash/examples/elasticsearch/Makefile
 create mode 100644 sregym/observer/logstash/examples/elasticsearch/README.md
 create mode 100644 sregym/observer/logstash/examples/elasticsearch/test/goss.yaml
 create mode 100644 sregym/observer/logstash/examples/elasticsearch/values.yaml
 create mode 100644 sregym/observer/logstash/examples/oss/Makefile
 create mode 100644 sregym/observer/logstash/examples/oss/README.md
 create mode 100644 sregym/observer/logstash/examples/oss/test/goss.yaml
 create mode 100644 sregym/observer/logstash/examples/oss/values.yaml
 create mode 100644 sregym/observer/logstash/examples/security/Makefile
 create mode 100644 sregym/observer/logstash/examples/security/README.md
 create mode 100644 sregym/observer/logstash/examples/security/test/goss.yaml
 create mode 100644 sregym/observer/logstash/examples/security/values.yaml
 create mode 100644 sregym/observer/logstash/examples/upgrade/Makefile
 create mode 100644 sregym/observer/logstash/examples/upgrade/README.md
 create mode 100644 sregym/observer/logstash/examples/upgrade/test/goss.yaml
 create mode 100644 sregym/observer/logstash/examples/upgrade/values.yaml
 create mode 100644 sregym/observer/logstash/jaeger/jaeger.py
 create mode 100644 sregym/observer/logstash/jaeger/jaeger.yaml
 create mode 100644 sregym/observer/logstash/templates/NOTES.txt
 create mode 100644 sregym/observer/logstash/templates/_helpers.tpl
 create mode 100644 sregym/observer/logstash/templates/configmap-config.yaml
 create mode 100644 sregym/observer/logstash/templates/configmap-pattern.yaml
 create mode 100644 sregym/observer/logstash/templates/configmap-pipeline.yaml
 create mode 100644 sregym/observer/logstash/templates/ingress.yaml
 create mode 100644 sregym/observer/logstash/templates/poddisruptionbudget.yaml
 create mode 100644 sregym/observer/logstash/templates/podsecuritypolicy.yaml
 create mode 100644 sregym/observer/logstash/templates/role.yaml
 create mode 100644 sregym/observer/logstash/templates/rolebinding.yaml
 create mode 100644 sregym/observer/logstash/templates/secret.yaml
 create mode 100644 sregym/observer/logstash/templates/service-headless.yaml
 create mode 100644 sregym/observer/logstash/templates/service.yaml
 create mode 100644 sregym/observer/logstash/templates/serviceaccount.yaml
 create mode 100644 sregym/observer/logstash/templates/statefulset.yaml
 create mode 100644 sregym/observer/logstash/values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus-pvc.yml
 create mode 100644 sregym/observer/prometheus/prometheus/.helmignore
 create mode 100644 sregym/observer/prometheus/prometheus/Chart.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/README.md
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/.helmignore
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/Chart.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/README.md
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/ci/config-reload-values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/NOTES.txt
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/_helpers.tpl
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/configmap.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/ingress.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/ingressperreplica.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/pdb.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/serviceaccount.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/serviceperreplica.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/services.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/statefulset.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/templates/tests/test-connection.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/unittests/__snapshot__/ingress_test.yaml.snap
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/unittests/ingress_test.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/values.schema.json
 create mode 100644 sregym/observer/prometheus/prometheus/charts/alertmanager/values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/.helmignore
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/Chart.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/README.md
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/NOTES.txt
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/_helpers.tpl
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/ciliumnetworkpolicy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/crs-configmap.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/deployment.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/extra-manifests.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/kubeconfig-secret.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/networkpolicy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/pdb.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/podsecuritypolicy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/psp-clusterrole.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/psp-clusterrolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/rbac-configmap.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/role.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/rolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/service.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/servicemonitor.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/stsdiscovery-role.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/stsdiscovery-rolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/verticalpodautoscaler.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/kube-state-metrics/values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/Chart.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/README.md
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/daemonset-values.yml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/default-values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/extraenv-values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/hostAliases.yml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/ingress-values.yml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/networkpolicy-values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/secret-values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/NOTES.txt
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/_helpers.tpl
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/configmap.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/daemonset.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/deployment.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/extra-manifests.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/ingress.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/networkpolicy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/poddisruptionbudget.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/podmonitoring.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/podsecuritypolicy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/prometheusrule.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/role.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/rolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/selfpodmonitoring.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/selfservicemonitor.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/service.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/serviceaccount.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/servicemonitor.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/verticalpodautoscaler.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/.helmignore
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/Chart.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/README.md
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/ci/port-values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/NOTES.txt
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/_helpers.tpl
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/clusterrole.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/clusterrolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/endpoints.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/extra-manifests.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/networkpolicy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/podmonitor.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrole.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/rbac-configmap.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/service.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/servicemonitor.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/verticalpodautoscaler.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/.helmignore
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/Chart.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/README.md
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/NOTES.txt
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/_helpers.tpl
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/deployment.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/ingress.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/networkpolicy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/pdb.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/pushgateway-pvc.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/service.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/servicemonitor.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/statefulset.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/values.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/NOTES.txt
 create mode 100644 sregym/observer/prometheus/prometheus/templates/_helpers.tpl
 create mode 100644 sregym/observer/prometheus/prometheus/templates/clusterrole.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/clusterrolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/cm.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/deploy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/extra-manifests.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/headless-svc.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/ingress.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/network-policy.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/pdb.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/psp.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/pvc.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/rolebinding.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/service.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/serviceaccount.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/sts.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/templates/vpa.yaml
 create mode 100644 sregym/observer/prometheus/prometheus/tmpcharts-91028/alertmanager-1.7.0.tgz
 create mode 100644 sregym/observer/prometheus/prometheus/values.schema.json
 create mode 100644 sregym/observer/prometheus/prometheus/values.yaml
 create mode 100644 sregym/observer/tidb_cluster_deploy_helper.py
 create mode 100644 sregym/observer/tidb_prometheus.py
 create mode 100644 sregym/observer/trace_api.py
 create mode 100644 sregym/paths.py
 create mode 100644 sregym/resources/trainticket/locust-deployment.yaml
 create mode 100644 sregym/resources/trainticket/locustfile.py
 create mode 100644 sregym/service/__init__.py
 create mode 100644 sregym/service/apps/app_registry.py
 create mode 100644 sregym/service/apps/astronomy_shop.py
 create mode 100644 sregym/service/apps/base.py
 create mode 100644 sregym/service/apps/blueprint_hotel_reservation.py
 create mode 100644 sregym/service/apps/composite_app.py
 create mode 100644 sregym/service/apps/fleet_cast.py
 create mode 100644 sregym/service/apps/flight_ticket.py
 create mode 100644 sregym/service/apps/helpers.py
 create mode 100644 sregym/service/apps/hotel_reservation.py
 create mode 100644 sregym/service/apps/social_network.py
 create mode 100644 sregym/service/apps/tidb_cluster_operator.py
 create mode 100644 sregym/service/apps/train_ticket.py
 create mode 100644 sregym/service/dm_dust_manager.py
 create mode 100644 sregym/service/dm_flakey_manager.py
 create mode 100644 sregym/service/helm.py
 create mode 100644 sregym/service/khaos.py
 create mode 100644 sregym/service/khaos.yaml
 create mode 100644 sregym/service/kubectl.py
 create mode 100644 sregym/service/metadata/__init__.py
 create mode 100644 sregym/service/metadata/astronomy-shop.json
 create mode 100644 sregym/service/metadata/blueprint-hotel-reservation.json
 create mode 100644 sregym/service/metadata/fleet-cast.json
 create mode 100644 sregym/service/metadata/flight-ticket.json
 create mode 100644 sregym/service/metadata/hotel-reservation.json
 create mode 100644 sregym/service/metadata/prometheus.json
 create mode 100644 sregym/service/metadata/social-network.json
 create mode 100644 sregym/service/metadata/tidb-with-operator.json
 create mode 100644 sregym/service/metadata/tidb_metadata.json
 create mode 100644 sregym/service/metadata/train-ticket.json
 create mode 100644 sregym/service/shell.py
 create mode 100644 sregym/service/telemetry/__init__.py
 create mode 100644 sregym/service/telemetry/prometheus.py
 create mode 100644 sregym/utils/__init__.py
 create mode 100644 sregym/utils/actions.py
 create mode 100644 sregym/utils/cache.py
 create mode 100644 sregym/utils/decorators.py
 create mode 100644 tests/e2e-testing-scripts/auto_submit.py
 create mode 100644 tests/e2e-testing-scripts/automating_tests.py
 create mode 100644 tests/e2e-testing-scripts/brew.sh
 create mode 100644 tests/e2e-testing-scripts/docker.sh
 create mode 100644 tests/e2e-testing-scripts/e2e_testing_readme.md
 create mode 100644 tests/e2e-testing-scripts/go.sh
 create mode 100644 tests/e2e-testing-scripts/kind.sh
 create mode 100644 tests/e2e-testing-scripts/kubectl.sh
 create mode 100644 tests/e2e-testing-scripts/registry.txt
 create mode 100644 tests/file_editing/example.py
 create mode 100644 tests/file_editing/example.txt
 create mode 100644 tests/file_editing/test_create_and_insert_1.yaml
 create mode 100644 tests/file_editing/test_edit_1.yaml
 create mode 100644 tests/file_editing/test_file_editing_tool.py
 create mode 100644 tests/file_editing/test_goto_line_1.yaml
 create mode 100644 tests/file_editing/test_open_file_1.yaml
 create mode 100644 tests/file_editing/test_open_file_2.yaml
 create mode 100644 tests/geni-lib/__init__.py
 create mode 100644 tests/geni-lib/test_deploy_sregym.py
 create mode 100644 tests/geni-lib/test_experiment_creation.py
 create mode 100644 tests/kubectl_tool_tests/kubectl_tool_set_test.py
 create mode 100644 tests/kubectl_tool_tests/nl2kubectl_agent.py
 create mode 100644 tests/kubectl_tool_tests/tests/create_del_test.yaml
 create mode 100644 tests/kubectl_tool_tests/tests/patch_test.yaml
 create mode 100644 tests/kubectl_tool_tests/tests/preconditions.yaml
 create mode 100644 tests/kubectl_tool_tests/tests/resources/custom_nginx_deployment.yaml
 create mode 100644 tests/provisioner/test_provisioner.py
 create mode 100644 tests/provisioner/test_ssh.py
 create mode 100644 tests/provisioner/test_state_manager.py
 create mode 100755 tests/sre-ql/cli.py
 create mode 100644 tests/sre-ql/codeql-pack.lock.yml
 create mode 100644 tests/sre-ql/qlpack.yml
 create mode 100644 tests/sre-ql/queries/absolute_paths.ql
 create mode 100644 tests/sre-ql/queries/application_attributes/application_checks.ql
 create mode 100644 tests/sre-ql/queries/fault_recover_checks.ql
 create mode 100644 tests/sre-ql/queries/problem_attributes/app.ql
 create mode 100644 tests/sre-ql/queries/problem_attributes/diagnosis_oracle.ql
 create mode 100644 tests/sre-ql/queries/problem_attributes/faultyservice.ql
 create mode 100644 tests/sre-ql/queries/problem_attributes/mitigation_oracle.ql
 create mode 100644 tests/sre-ql/queries/problem_attributes/namespace.ql
 create mode 100644 tests/sre-ql/queries/problem_lifecycle.ql
 create mode 100644 uv.lock

diff --git a/.env.example b/.env.example
new file mode 100644
index 0000000..8a1a631
--- /dev/null
+++ b/.env.example
@@ -0,0 +1,64 @@
+# Submission API
+API_HOSTNAME="0.0.0.0"
+API_PORT="8000"
+
+# MCP Server Setting
+MCP_SERVER_PORT=8001
+EXPOSE_SERVER=False
+# The size of session that can be hold at most; LRU session will be evicted if overflowing
+SESSION_CACHE_SIZE=10000
+# The time after which the session will be considered inactive if no interaction with the server;
+# Cache of inactive session will be deleted in the next cache mutating operation
+SESSION_TTL=600
+
+# Timeout in seconds for waiting for pods to become ready during deployment.
+# Increase this value if you have slow network connections (e.g., first deployment).
+# Default: 600 (10 minutes)
+# Recommended for slow networks: 1800 (30 minutes)
+WAIT_FOR_POD_READY_TIMEOUT=600
+
+# LangGraph Tool Setting
+MCP_SERVER_URL=http://127.0.0.1:${MCP_SERVER_PORT}
+
+# Agent LLM Config
+# Maximum number of retries for API calls
+LLM_QUERY_MAX_RETRIES=5
+# Initial delay in seconds for retries
+LLM_QUERY_INIT_RETRY_DELAY=1
+
+
+### LLM Config1: LiteLLM ###
+# PROVIDER_TOOLS="litellm" 
+# PROVIDER="litellm"
+
+# MODEL_TOOLS="gemini/gemini-2.5-flash"
+# MODEL_TOOLS="openai/gpt-4o"
+# MODEL_TOOLS="anthropic/claude-sonnet-4-20250514" # this one is ok, but the model on the doc of LiteLLM seems to be invalid. 
+# MODEL_TOOLS="bedrock/meta.llama3-1-70b-instruct-v1:0"
+
+# GEMINI_API_KEY="AIHaveFreeFood_LotsOfIt"
+# OPENAI_API_KEY="sk-proj-HaveSleep_LotsOfIt"
+# ANTHROPIC_API_KEY="sk-ant-api03-HaveCats_LotsOfIt_Meow"
+
+# AWS_PROFILE="default"
+# AWS_DEFAULT_REGION=us-east-2
+
+
+### LLM Config2: WatsonX ###
+# PROVIDER_TOOLS="watsonx"
+# PROVIDER="watsonx"
+# MODEL_TOOLS="meta-llama/llama-3-3-70b-instruct"
+# URL_TOOLS="https://us-south.ml.cloud.ibm.com"
+# API_KEY_TOOLS="HaveCornsLotsOfIt"
+# WATSONX_API_BASE="https://us-south.ml.cloud.ibm.com"
+# WX_PROJECT_ID="fe3d8da2-be7e-41b2-8d92-f0e855869e28"
+# WATSONX_API_KEY="HaveCornsLotsOfIt"
+
+### LLM Config3: LiteLLM not supported but OpenAI API compatible ###
+# PROVIDER="compatible"
+# PROVIDER_TOOLS="compatible"
+
+# MODEL_TOOLS="openai/glm-4" # you should use 'openai' as the provider to reuse the interface
+# API_KEY_TOOLS="HaveFunding_LotsOfIt"
+# URL_TOOLS="https://open.bigmodel.cn/api/paas/v4/" # the base url of the model, taking Zhipu GLM as the example
+
diff --git a/.github/.CODEOWNERS b/.github/.CODEOWNERS
new file mode 100644
index 0000000..6c3c576
--- /dev/null
+++ b/.github/.CODEOWNERS
@@ -0,0 +1 @@
+* @SREGym/SREGym-leadership
\ No newline at end of file
diff --git a/.github/workflows/action.yml b/.github/workflows/action.yml
new file mode 100644
index 0000000..fee558d
--- /dev/null
+++ b/.github/workflows/action.yml
@@ -0,0 +1,85 @@
+name: Run SRE-QL Queries
+on:
+  push:
+  pull_request:
+jobs:
+  codeql-custom:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+    steps:
+    - name: Checkout
+      uses: actions/checkout@v4
+    
+    - name: Download CodeQL CLI v2.23.5
+      run: |
+        curl -L https://github.com/github/codeql-cli-binaries/releases/download/v2.23.5/codeql-linux64.zip -o codeql.zip
+        unzip codeql.zip
+        mv codeql /opt/codeql
+        echo "/opt/codeql" >> $GITHUB_PATH
+    
+    - name: Verify CodeQL Installation
+      run: |
+        codeql --version
+    
+    - name: Install CodeQL Packs
+      run: |
+        cd tests/sre-ql
+        codeql pack install
+        cd ../..
+    
+    - name: Create CodeQL DB
+      run: |
+        codeql database create sreql-db \
+          --language=python \
+          --source-root=. \
+          --overwrite
+    
+    - name: Run Queries (CSV, skipping problem_lifecycle.ql)
+      run: |
+        QUERIES=$(find tests/sre-ql/queries -name "*.ql" ! -name "problem_lifecycle.ql")
+        echo "Running queries:"
+        echo "$QUERIES"
+        if [ -z "$QUERIES" ]; then
+          echo "No queries found!"
+          exit 1
+        fi
+        codeql database analyze sreql-db \
+          $QUERIES \
+          --format=csv \
+          --output=results.csv \
+          --sarif-category=sre-ql \
+          --verbose
+    
+    - name: Display Results Summary
+      if: always()
+      run: |
+        if [ -f results.csv ]; then
+          echo "Query results:"
+          head -n 20 results.csv
+          echo "---"
+          wc -l results.csv
+        else
+          echo "No results file generated"
+        fi
+    
+    - name: Upload CSV
+      if: always()
+      uses: actions/upload-artifact@v4
+      with:
+        name: sreql-results-csv
+        path: results.csv
+        if-no-files-found: warn
+    
+    - name: Check for Critical Issues
+      if: success()
+      run: |
+        if [ -f results.csv ]; then
+          # Count non-header lines (issues found)
+          ISSUE_COUNT=$(tail -n +2 results.csv | wc -l)
+          echo "Found $ISSUE_COUNT issues"
+          if [ "$ISSUE_COUNT" -gt 0 ]; then
+            echo "::warning::Found $ISSUE_COUNT SRE reliability issues"
+            exit 1
+          fi
+        fi
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..a66164c
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,768 @@
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+*.py,cover
+.hypothesis/
+.pytest_cache/
+cover/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+db.sqlite3-journal
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+.pybuilder/
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+#   For a library or package, you might want to ignore these files since the code is
+#   intended to run in multiple environments; otherwise, check them in:
+# .python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don't work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# poetry
+#   Similar to Pipfile.lock, it is generally recommended to include poetry.lock in version control.
+#   This is especially recommended for binary packages to ensure reproducibility, and is more
+#   commonly ignored for libraries.
+#   https://python-poetry.org/docs/basic-usage/#commit-your-poetrylock-file-to-version-control
+#poetry.lock
+
+# pdm
+#   Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
+#pdm.lock
+#   pdm stores project-wide configurations in .pdm.toml, but it is recommended to not include it
+#   in version control.
+#   https://pdm.fming.dev/latest/usage/project/#working-with-version-control
+.pdm.toml
+.pdm-python
+.pdm-build/
+
+# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
+__pypackages__/
+
+# Celery stuff
+celerybeat-schedule
+celerybeat.pid
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# pytype static type analyzer
+.pytype/
+
+# Cython debug symbols
+cython_debug/
+
+# PyCharm
+#  JetBrains specific template is maintained in a separate JetBrains.gitignore that can
+#  be found at https://github.com/github/gitignore/blob/main/Global/JetBrains.gitignore
+#  and can be added to the global gitignore or merged into this file.  For a more nuclear
+#  option (not recommended) you can uncomment the following to ignore the entire idea folder.
+#.idea/
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+*.py,cover
+.hypothesis/
+.pytest_cache/
+cover/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+db.sqlite3-journal
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+.pybuilder/
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+#   For a library or package, you might want to ignore these files since the code is
+#   intended to run in multiple environments; otherwise, check them in:
+# .python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don't work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# poetry
+#   Similar to Pipfile.lock, it is generally recommended to include poetry.lock in version control.
+#   This is especially recommended for binary packages to ensure reproducibility, and is more
+#   commonly ignored for libraries.
+#   https://python-poetry.org/docs/basic-usage/#commit-your-poetrylock-file-to-version-control
+#poetry.lock
+
+# pdm
+#   Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
+#pdm.lock
+#   pdm stores project-wide configurations in .pdm.toml, but it is recommended to not include it
+#   in version control.
+#   https://pdm.fming.dev/latest/usage/project/#working-with-version-control
+.pdm.toml
+.pdm-python
+.pdm-build/
+
+# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
+__pypackages__/
+
+# Celery stuff
+celerybeat-schedule
+celerybeat.pid
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# pytype static type analyzer
+.pytype/
+
+# Cython debug symbols
+cython_debug/
+
+# PyCharm
+#  JetBrains specific template is maintained in a separate JetBrains.gitignore that can
+#  be found at https://github.com/github/gitignore/blob/main/Global/JetBrains.gitignore
+#  and can be added to the global gitignore or merged into this file.  For a more nuclear
+#  option (not recommended) you can uncomment the following to ignore the entire idea folder.
+#.idea/
+
+# Visual Studio Code
+.vscode/
+
+# Weight & Biases
+wandb/
+
+# Project specific
+cache_dir
+demos
+data
+taskweaver_proj
+trace_output/
+metrics_output/
+
+# Ignore telemetry data directories
+sregym/observer/telemetry_data_*/
+
+# Ignore all dataset functional directories
+dataset/functional/**/groundtruth/
+dataset/functional/**/log/
+dataset/functional/**/metric/
+dataset/functional/**/trace/
+
+# Ignore Prometheus setup file
+.DS_Store
+sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway-2.4.2.tgz
+sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter-4.23.2.tgz
+sregym/observer/prometheus/prometheus/charts/kube-state-metrics-5.15.3.tgz
+sregym/observer/prometheus/prometheus/Chart.lock
+sregym/observer/prometheus/prometheus/charts/alertmanager-1.7.0.tgz
+sregym/observer/prometheus/prometheus/Chart.lock
+sregym/observer/prometheus/prometheus/Chart.lock
+
+# Ignore customized config files
+sregym/config.yml
+scripts/ansible/inventory.yml
+
+# Ignore cloudlab credentials
+*.pem
+
+# Ignore geni-lib login info
+*.login.info.txt
+
+# Ignore JetBrains IDE files
+.idea
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+*.py,cover
+.hypothesis/
+.pytest_cache/
+cover/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+db.sqlite3-journal
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+.pybuilder/
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+#   For a library or package, you might want to ignore these files since the code is
+#   intended to run in multiple environments; otherwise, check them in:
+# .python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don't work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# poetry
+#   Similar to Pipfile.lock, it is generally recommended to include poetry.lock in version control.
+#   This is especially recommended for binary packages to ensure reproducibility, and is more
+#   commonly ignored for libraries.
+#   https://python-poetry.org/docs/basic-usage/#commit-your-poetrylock-file-to-version-control
+#poetry.lock
+
+# pdm
+#   Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
+#pdm.lock
+#   pdm stores project-wide configurations in .pdm.toml, but it is recommended to not include it
+#   in version control.
+#   https://pdm.fming.dev/latest/usage/project/#working-with-version-control
+.pdm.toml
+.pdm-python
+.pdm-build/
+
+# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
+__pypackages__/
+
+# Celery stuff
+celerybeat-schedule
+celerybeat.pid
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# pytype static type analyzer
+.pytype/
+
+# Cython debug symbols
+cython_debug/
+
+# PyCharm
+#  JetBrains specific template is maintained in a separate JetBrains.gitignore that can
+#  be found at https://github.com/github/gitignore/blob/main/Global/JetBrains.gitignore
+#  and can be added to the global gitignore or merged into this file.  For a more nuclear
+#  option (not recommended) you can uncomment the following to ignore the entire idea folder.
+#.idea/
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+*.py,cover
+.hypothesis/
+.pytest_cache/
+cover/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+db.sqlite3-journal
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+.pybuilder/
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+#   For a library or package, you might want to ignore these files since the code is
+#   intended to run in multiple environments; otherwise, check them in:
+# .python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don't work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# poetry
+#   Similar to Pipfile.lock, it is generally recommended to include poetry.lock in version control.
+#   This is especially recommended for binary packages to ensure reproducibility, and is more
+#   commonly ignored for libraries.
+#   https://python-poetry.org/docs/basic-usage/#commit-your-poetrylock-file-to-version-control
+#poetry.lock
+
+# pdm
+#   Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
+#pdm.lock
+#   pdm stores project-wide configurations in .pdm.toml, but it is recommended to not include it
+#   in version control.
+#   https://pdm.fming.dev/latest/usage/project/#working-with-version-control
+.pdm.toml
+.pdm-python
+.pdm-build/
+
+# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
+__pypackages__/
+
+# Celery stuff
+celerybeat-schedule
+celerybeat.pid
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# pytype static type analyzer
+.pytype/
+
+# Cython debug symbols
+cython_debug/
+
+# PyCharm
+#  JetBrains specific template is maintained in a separate JetBrains.gitignore that can
+#  be found at https://github.com/github/gitignore/blob/main/Global/JetBrains.gitignore
+#  and can be added to the global gitignore or merged into this file.  For a more nuclear
+#  option (not recommended) you can uncomment the following to ignore the entire idea folder.
+#.idea/
+
+# Visual Studio Code
+.vscode/
+
+# Weight & Biases
+wandb/
+
+# Project specific
+cache_dir
+demos
+data
+taskweaver_proj
+trace_output/
+metrics_output/
+
+# Ignore telemetry data directories
+sregym/observer/telemetry_data_*/
+
+# Ignore all dataset functional directories
+dataset/functional/**/groundtruth/
+dataset/functional/**/log/
+dataset/functional/**/metric/
+dataset/functional/**/trace/
+
+# Ignore Prometheus setup file
+.DS_Store
+sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway-2.4.2.tgz
+sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter-4.23.2.tgz
+sregym/observer/prometheus/prometheus/charts/kube-state-metrics-5.15.3.tgz
+sregym/observer/prometheus/prometheus/Chart.lock
+sregym/observer/prometheus/prometheus/charts/alertmanager-1.7.0.tgz
+sregym/observer/prometheus/prometheus/Chart.lock
+sregym/observer/prometheus/prometheus/Chart.lock
+
+# Ignore customized config files
+sregym/config.yml
+scripts/ansible/inventory.yml
+
+# Ignore cloudlab credentials
+*.pem
+
+# Ignore geni-lib login info
+*.login.info.txt
+*.experiment.info.json
+
+# Ignore geni-lib context file
+context.json
+
+# Ignore sqlite3 database
+*.sqlite3
+
+# Ignore provisioner ssh keys
+provisioner_ssh_key
+provisioner_ssh_key.pub
+agent_graph.png
+
+# Ignore tasklist 
+sregym/conductor/tasklist.yml
+
+# HTMLs
+*.html
+*.csv
+kubeconfig.yaml
+
+# Ignore IDE relatedfiles/folders
+
+CLAUDE.md
+.cursor/
+
+# Ignore CodeQL database
+python-database
diff --git a/.gitmodules b/.gitmodules
new file mode 100644
index 0000000..8e15d8d
--- /dev/null
+++ b/.gitmodules
@@ -0,0 +1,3 @@
+[submodule "SREGym-applications"]
+	path = SREGym-applications
+	url = https://github.com/SREGym/SREGym-applications.git
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
new file mode 100644
index 0000000..a281577
--- /dev/null
+++ b/.pre-commit-config.yaml
@@ -0,0 +1,11 @@
+repos:
+  - repo: https://github.com/psf/black
+    rev: 25.1.0
+    hooks:
+    - id: black
+      language_version: python3
+  - repo: https://github.com/PyCQA/isort
+    rev: 6.0.1
+    hooks:
+      - id: isort
+        name: isort (python)
\ No newline at end of file
diff --git a/.python-version b/.python-version
new file mode 100644
index 0000000..e4fba21
--- /dev/null
+++ b/.python-version
@@ -0,0 +1 @@
+3.12
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
new file mode 100644
index 0000000..433b6f2
--- /dev/null
+++ b/CONTRIBUTING.md
@@ -0,0 +1,326 @@
+# Contributing to SREGym
+## Table of Contents
+
+- [Contributing to SREGym](#contributing-to-sregym)
+  - [Table of Contents](#table-of-contents)
+  - [Getting Started](#getting-started)
+  - [Development Setup](#development-setup)
+    - [Prerequisites](#prerequisites)
+    - [Installation](#installation)
+  - [How to Contribute](#how-to-contribute)
+    - [Reporting Bugs](#reporting-bugs)
+    - [Suggesting Features](#suggesting-features)
+    - [Code Contributions](#code-contributions)
+  - [Development Guidelines](#development-guidelines)
+    - [Code Style](#code-style)
+      - [Python Code Style](#python-code-style)
+      - [Running Code Formatters](#running-code-formatters)
+      - [Code Quality Best Practices](#code-quality-best-practices)
+    - [Commit Messages](#commit-messages)
+  - [Adding New Components](#adding-new-components)
+    - [Adding New Applications](#adding-new-applications)
+    - [Adding New Problems](#adding-new-problems)
+    - [Adding New Oracles](#adding-new-oracles)
+  - [Pull Request Process](#pull-request-process)
+    - [PR Checklist](#pr-checklist)
+  - [Community](#community)
+    - [Getting Help](#getting-help)
+    - [Staying Updated](#staying-updated)
+  - [License](#license)
+
+## Getting Started
+
+Before contributing, please:
+
+1. Read the [README.md](README.md) to understand the project
+2. Review the [Problem List](https://docs.google.com/spreadsheets/d/1FGIeLNcKsHjrZGQ_VJcQRGl6oTmYyzjW0_ve5tfM_eg/edit?usp=sharing)
+3. Join our [Slack community](https://join.slack.com/t/SREGym/shared_invite/zt-3gvqxpkpc-RvCUcyBEMvzvXaQS9KtS_w)
+4. Check existing [issues](https://github.com/SREGym/SREGym/issues) to avoid duplicates
+
+## Development Setup
+
+### Prerequisites
+
+- Python >= 3.12
+- [Helm](https://helm.sh/)
+- [brew](https://docs.brew.sh/Homebrew-and-Python)
+- [kubectl](https://kubernetes.io/docs/tasks/tools/)
+- [uv](https://github.com/astral-sh/uv) (recommended for dependency management)
+
+### Installation
+
+1. Fork the repository on GitHub
+
+2. Clone your fork with submodules:
+   ```bash
+   git clone --recurse-submodules https://github.com/YOUR_USERNAME/SREGym
+   cd SREGym
+   ```
+
+3. Install dependencies:
+   ```bash
+   uv sync
+   ```
+
+4. Install pre-commit hooks:
+   ```bash
+   uv run pre-commit install
+   ```
+
+5. Set up your cluster (see [README.md](README.md#🚀quickstart) for options)
+
+## How to Contribute
+
+### Reporting Bugs
+
+When reporting bugs, please include:
+
+- **Clear description** of the issue
+- **Steps to reproduce** the problem
+- **Expected behavior** vs **actual behavior**
+- **Environment details** (OS, Python version, cluster type)
+- **Relevant logs or error messages**
+- **Problem ID** if the issue is specific to a particular problem
+
+Use the GitHub issue tracker with the "bug" label.
+
+### Suggesting Features
+
+We welcome feature suggestions! Please:
+
+- Check if the feature has already been requested
+- Describe the use case and expected behavior
+- Explain why this feature would be valuable
+- Consider whether it aligns with the project's goals
+
+Use the GitHub issue tracker with the "enhancement" label.
+
+### Code Contributions
+
+We welcome contributions including:
+
+- Bug fixes
+- New applications
+- New problems
+- New oracles or evaluation metrics
+- MCP server enhancements
+- Documentation improvements
+- Test coverage improvements
+- Performance optimizations
+
+## Development Guidelines
+
+### Code Style
+
+SREGym follows code style guidelines enforced by pre-commit hooks:
+
+#### Python Code Style
+
+- **Formatter**: [Black](https://github.com/psf/black) with 120 character line length
+- **Import sorting**: [isort](https://pycqa.github.io/isort/) with Black profile
+- **Target Python version**: 3.12
+
+Configuration is in `pyproject.toml`:
+```toml
+[tool.black]
+line-length = 120
+target-version = ["py312"]
+
+[tool.isort]
+profile = "black"
+line_length = 120
+```
+
+#### Running Code Formatters
+
+Pre-commit hooks will automatically run on commit. To manually format:
+```bash
+# Format all Python files
+uv run black .
+
+# Sort imports
+uv run isort .
+
+# Run all pre-commit hooks manually
+uv run pre-commit run --all-files
+```
+
+#### Code Quality Best Practices
+
+- Write clear, self-documenting code
+- Add docstrings to classes and functions
+- Keep functions focused and modular
+- Follow existing patterns in the codebase
+- Handle errors gracefully with appropriate logging
+- Avoid hardcoded values; use configuration where appropriate
+
+### Commit Messages
+
+Write clear, descriptive commit messages:
+
+- First line should be 50 characters or less
+- Provide additional context in the body if needed
+- Reference issue numbers when applicable
+
+Example:
+```
+Add support for custom fault injection parameters
+
+- Extend VirtualizationFaultInjector to accept custom config
+- Add validation for parameter types
+- Update documentation with examples
+
+Fixes #123
+```
+
+## Adding New Components
+
+### Adding New Applications
+
+To add a new application to SREGym:
+
+1. **Create application metadata** in `SREGym/service/metadata/<app-name>.json`:
+   ```json
+   {
+     "name": "My Application",
+     "description": "Description of the application",
+     "namespace": "my-app",
+     "Helm Config": {
+       "release_name": "my-app-release",
+       "chart_path": "path/to/helm/chart",
+       "namespace": "my-app"
+     }
+   }
+   ```
+
+2. **Create application class** in `sregym/service/apps/<app-name>.py`:
+   ```python
+   from sregym.service.apps.base import Application
+
+   class MyApp(Application):
+       def __init__(self):
+           super().__init__("sregym/service/metadata/<app-name>.json")
+   ```
+
+3. **Update documentation** if needed
+
+### Adding New Problems
+
+To add a new problem:
+
+1. **Create problem file** in `sregym/conductor/problems/<problem-name>.py`:
+   ```python
+   from sregym.service.apps.myapp import MyApp
+   from sregym.conductor.oracles.detection import DetectionOracle
+   from sregym.conductor.oracles.diagnosis import DiagnosisOracle
+   from sregym.conductor.oracles.mitigation import MitigationOracle
+   from sregym.conductor.problems.base import Problem
+   from sregym.utils.decorators import mark_fault_injected
+
+   class MyProblem(Problem):
+       def __init__(self):
+           self.app = MyApp()
+           self.faulty_service = ["service-name"]
+
+           # Attach evaluation oracles
+           self.diagnosis_oracle = DiagnosisOracle(
+               problem=self,
+               expected=self.faulty_service
+           )
+           self.mitigation_oracle = MitigationOracle(problem=self)
+
+       @mark_fault_injected
+       def inject_fault(self):
+           # Fault injection logic
+           pass
+
+       @mark_fault_injected
+       def recover_fault(self):
+           # Fault recovery logic
+           pass
+   ```
+
+2. **Register your problem** in `sregym/conductor/problems/registry.py`
+
+3. **(Optional) Configure tasks** in `sregym/conductor/tasklist.yml`:
+   ```yaml
+   my-problem-id:
+     - detection
+     - diagnosis
+     - mitigation
+   ```
+
+4. **Document the problem** with clear description and expected behavior
+
+### Adding New Oracles
+
+Custom oracles allow for specialized evaluation:
+
+1. Create your oracle in `SREGym/conductor/oracles/<oracle-name>.py`
+2. Inherit from appropriate base oracle class
+3. Implement evaluation logic
+4. Document the oracle's purpose and usage
+
+## Pull Request Process
+
+1. **Create a feature branch** from `main`:
+   ```bash
+   git checkout -b feature/your-feature-name
+   ```
+
+2. **Make your changes** following the development guidelines
+
+3. **Commit your changes** with clear commit messages
+
+4. **Push to your fork**:
+   ```bash
+   git push origin feature/your-feature-name
+   ```
+
+5. **Create a Pull Request** on GitHub:
+   - Provide a clear title and description
+   - Reference any related issues
+   - Explain what changes you made and why
+   - Describe how you tested the changes
+   - Include screenshots or examples if applicable
+
+6. **Respond to feedback**:
+   - Address review comments promptly
+   - Update your PR as needed
+   - Keep discussions constructive and professional
+
+7. **Wait for approval**:
+   - At least one maintainer approval is required
+   - All CI checks must pass
+   - No merge conflicts with main branch
+
+### PR Checklist
+
+Before submitting, ensure:
+
+- [ ] Code follows the project's style guidelines
+- [ ] Documentation updated if needed
+- [ ] Pre-commit hooks pass
+- [ ] No unnecessary files or changes included
+- [ ] Commit messages are clear and descriptive
+- [ ] PR description explains the changes
+
+## Community
+
+### Getting Help
+
+- **Slack**: Join our [Slack community](https://join.slack.com/t/SREGym/shared_invite/zt-3gvqxpkpc-RvCUcyBEMvzvXaQS9KtS_w) for discussions
+- **Issues**: Use GitHub issues for bug reports and feature requests
+- **Documentation**: Check the [README](README.md) and existing documentation
+
+### Staying Updated
+
+- Watch the repository for updates
+- Follow discussions on Slack
+- Review the problem list for new additions
+
+## License
+
+By contributing to SREGym, you agree that your contributions will be licensed under the [MIT License](LICENSE.txt).
+
+---
diff --git a/LICENSE.txt b/LICENSE.txt
new file mode 100644
index 0000000..6e77f58
--- /dev/null
+++ b/LICENSE.txt
@@ -0,0 +1,19 @@
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED *AS IS*, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
\ No newline at end of file
diff --git a/Problem List.md b/Problem List.md
new file mode 100644
index 0000000..c52791c
--- /dev/null
+++ b/Problem List.md	
@@ -0,0 +1,89 @@
+
+| Problem ID                                          | Type                                | Origin   | Failure to Simulate                                                                                                                                                                                                               | Fault Level        | Failure Level |
+| --------------------------------------------------- | ----------------------------------- | -------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------------ | ------------- |
+| faulty_image_correlated                             | Correlated Failure                  | New      | All the image in containers are faulty, causing error                                                                                                                                                                             | Container          | App           |
+| update_incompatible_correlated                      | Correlated Failure                  | New      | The image in all the `mongodb` containers are updated to an incompatible version, causing error                                                                                                                                   | Container          | App           |
+| kubelet_crash                                       | Correlated Failure                  | New      | The kublet process on worker node crashes, making all the services on the nodes unavailable                                                                                                                                       | Cluster Management | App           |
+| incorrect_image                                     | System/Application Software Failure | New      | Container of `product-catalog` service pulled incorrect image                                                                                                                                                                     | Container          | App           |
+| incorrect_port_assignment                           | Misconfiguration Failure            | New      | `PRODUCT_CATALOG_ADDR` port of the `checkout` service is misconfigured                                                                                                                                                            | Container          | App           |
+| misconfig_app_hotel_res                             | System/Application Software Failure | AIOpsLab | Container of `geo` service pulled incorrect image                                                                                                                                                                                 | Container          | App           |
+| missing_env_variable_astronomy_shop                 | Misconfiguration Failure            | New      | `CART_ADDR` environment variable in `frontend` containers are missed                                                                                                                                                              | Container          | App           |
+| revoke_auth_mongodb-1                               | Security Failure                    | AIOpsLab | Admin privileges in `mongodb-geo` are revoked                                                                                                                                                                                     | App                | App           |
+| revoke_auth_mongodb-2                               | Security Failure                    | AIOpsLab | Admin privileges in `mongodb-rate` are revoked                                                                                                                                                                                    | App                | App           |
+| storage_user_unregistered-1                         | Security Failure                    | AIOpsLab | User is not registered to `mongodb-geo`                                                                                                                                                                                           | App                | App           |
+| storage_user_unregistered-2                         | Security Failure                    | AIOpsLab | User is not registered to `mongodb-rate`                                                                                                                                                                                          | App                | App           |
+| valkey_auth_disruption                              | Security Failure                    | New      | The password in valkey is invalidated, therefore dependent services cannot work                                                                                                                                                   | App                | App           |
+| valkey_memory_disruption                            | Database Failure                    | New      | The valkey store is in OOM state                                                                                                                                                                                                  | App                | App           |
+| capacity_decrease_rpc_retry_storm                   | Metastable Failure                  | New      | RPC module is misconfigured, then a CPU containment will trigger a retry storm                                                                                                                                                    | Hardware/App       | App           |
+| gc_capacity_degradation                             | Metastable Failure                  | New      | GC frequency is set to be high, then a load spike will trigger lot requests stacked, leading to more GC activity, forming the sustaining loop                                                                                     | OS/App             | App           |
+| load_spike_rpc_retry_storm                          | Metastable Failure                  | New      | RPC module is misconfigured, then a load spike will trigger a retry storm                                                                                                                                                         | App                | App           |
+| assign_to_non_existent_node                         | Cloud Management System Failure     | AIOpsLab | `user-service` service is assigned to a non-ready node                                                                                                                                                                            | Cluster Management | App           |
+| auth_miss_mongodb                                   | Security Failure                    | AIOpsLab | `mongodb` requires TLS certificate, while the client fails to provide                                                                                                                                                             | App                | App           |
+| configmap_drift_hotel_reservation                   | Misconfiguration Failure            | New      | The `GeoMongoAddress` configuration misses in `geo` service, making it fail to connect to `mongodb`                                                                                                                               | App                | App           |
+| duplicate_pvc_mounts_astronomy_shop                 | Cloud Management System Failure     | New      | Multiple pods in `mongodb-rate` service tries to mount same `ReadWriteOnce` pvc                                                                                                                                                   | Cluster Management | App           |
+| duplicate_pvc_mounts_hotel_reservation              | Cloud Management System Failure     | New      | Multiple pods in `mongodb-rate` service tries to mount same `ReadWriteOnce` pvc                                                                                                                                                   | Cluster Management | App           |
+| duplicate_pvc_mounts_social_network                 | Cloud Management System Failure     | New      | Multiple pods in `mongodb-rate` service tries to mount same `ReadWriteOnce` pvc                                                                                                                                                   | Cluster Management | App           |
+| env_variable_shadowing_astronomy_shop               | Misconfiguration Failure            | New      | `FRONTEND_HOST` environment variable is incorrectly set to `localhost`                                                                                                                                                            | Container          | App           |
+| k8s_target_port-misconfig                           | Misconfiguration Failure            | AIOpsLab | Target port in `user-service` is misconfigured                                                                                                                                                                                    | Container          | App           |
+| liveness_probe_misconfiguration_astronomy_shop      | Misconfiguration Failure            | New      | Misconfigured `healthz` port, making liveness probe fail, therefore pods of `frontend` service will be caught into continuously restart cycle                                                                                     | Cluster Management | App           |
+| liveness_probe_misconfiguration_hotel_reservation   | Misconfiguration Failure            | New      | Misconfigured `healthz` port, making liveness probe fail, therefore pods of `recommendation` service will be caught into continuously restart cycle                                                                               | Cluster Management | App           |
+| liveness_probe_misconfiguration_social_network      | Misconfiguration Failure            | New      | Misconfigured `healthz` port, making liveness probe fail, therefore pods of `user-service` service will be caught into continuously restart cycle                                                                                 | Cluster Management | App           |
+| liveness_probe_too_aggressive_astronomy_shop        | Cloud Management System Failure     | New      | Pods of `aux-service` service will be caught into continuously restart cycle                                                                                                                                                      | Cluster Management | App           |
+| liveness_probe_too_aggressive_hotel_reservation     | Cloud Management System Failure     | New      | Pods of `aux-service` service will be caught into continuously restart cycle                                                                                                                                                      | Cluster Management | App           |
+| liveness_probe_too_aggressive_social_network        | Cloud Management System Failure     | New      | Pods of `aux-service` service will be caught into continuously restart cycle                                                                                                                                                      | Cluster Management | App           |
+| missing_configmap_hotel_reservation                 | Cloud Management System Failure     | New      | `mongo-geo-script` configmap is missed in `mongodb-geo` service                                                                                                                                                                   | App                | App           |
+| missing_configmap_social_network                    | Cloud Management System Failure     | New      | `media-mongodb` configmap is missed in `media-mongodb` service                                                                                                                                                                    | App                | App           |
+| missing_service_astronomy_shop                      | Cloud Management System Failure     | New      | `ad` service is missed in `astronomy_shop` app                                                                                                                                                                                    | App                | App           |
+| missing_service_hotel_reservation                   | Cloud Management System Failure     | New      | `mongodb-rate` service is missed in `hotel_reservation` app                                                                                                                                                                       | App                | App           |
+| missing_service_social_network                      | Cloud Management System Failure     | New      | `user-service` service is missed in `social_network` app                                                                                                                                                                          | App                | App           |
+| namespace_memory_limit                              | Cloud Management System Failure     | New      | Pods in `search` service will get stuck in pending as they can't be scheduled due to memory limit                                                                                                                                 | OS                 | App           |
+| pod_anti_affinity_deadlock                          | Cloud Management System Failure     | New      | Pods in `user-service` service will get stuck in pending as they can't be scheduled due to affinity rule                                                                                                                          | Cluster Management | App           |
+| persistent_volume_affinity_violation                | Cloud Management System Failure     | New      | Pods in `user-service` service will get stuck in pending as they can't be scheduled because they can't mount the pvc                                                                                                              | Cluster Management | App           |
+| pvc_claim_mismatch                                  | Cloud Management System Failure     | New      | Pods in `mongodb` will get stuck in pending as they can't be scheduled because they can't mount the pvc                                                                                                                           | Cluster Management | App           |
+| rbac_misconfiguration                               | Misconfiguration Failure            | New      | Init containers unable to perform required operations due to insufficient permissions.                                                                                                                                            | Cluster Management | App           |
+| readiness_probe_misconfiguration_astronomy_shop     | Misconfiguration Failure            | New      | Pods in `frontend` will never enter `ready` state, making service unable to deal with requests                                                                                                                                    | Cluster Management | App           |
+| readiness_probe_misconfiguration_hotel_reservation  | Misconfiguration Failure            | New      | Pods in `frontend` will never enter `ready` state, making service unable to deal with requests                                                                                                                                    | Cluster Management | App           |
+| readiness_probe_misconfiguration_social_network     | Misconfiguration Failure            | New      | Pods in `user-service` will never enter `ready` state, making service unable to deal with requests                                                                                                                                | Cluster Management | App           |
+| resource_request_too_large                          | Cloud Management System Failure     | New      | Pods in `mongodb-rare` will never be scheduled because the container requires memory that excess limit in every node                                                                                                              | Container          | App           |
+| resource_request_too_small                          | Cloud Management System Failure     | New      | Pods in `mongodb-rare` will never be scheduled because the container requires memory that excess limit in every node                                                                                                              | Container          | App           |
+| rolling_update_misconfigured_hotel_reservation      | Misconfiguration Failure            | New      | No pods will be available since they get stuck with a contracdictory update configuration                                                                                                                                         | Cluster Management | App           |
+| rolling_update_misconfigured_social_network         | Misconfiguration Failure            | New      | No pods will be available since they get stuck with a contracdictory update configuration                                                                                                                                         | Container          | App           |
+| scale_pod_zero_social_net                           | Cloud Management System Failure     | AIOpsLab | The replicas will be set to `0`, leading to no available pods, thus making service unavailable                                                                                                                                    | Cluster Management | App           |
+| service_dns_resolution_failure_astronomy_shop       | Network Failure                     | New      | Modify the configuration of CoreDNS, making DNS resolution to `frontend` service fail                                                                                                                                             | Cluster Management | App           |
+| service_dns_resolution_failure_social_network       | Network Failure                     | New      | Modify the configuration of CoreDNS, making DNS resolution to `user-service` service fail                                                                                                                                         | Cluster Management | App           |
+| sidecar_port_conflict_astronomy_shop                | Misconfiguration Failure            | New      | The pods fails to start because a malicious sidecar container will compete for the port with main container                                                                                                                       | Container          | App           |
+| sidecar_port_conflict_hotel_reservation             | Misconfiguration Failure            | New      | The pods fails to start because a malicious sidecar container will compete for the port with main container                                                                                                                       | Container          | App           |
+| sidecar_port_conflict_social_network                | Misconfiguration Failure            | New      | The pods fails to start because a malicious sidecar container will compete for the port with main container                                                                                                                       | Container          | App           |
+| stale_coredns_config_astronomy_shop                 | Network Failure                     | New      | All communication within cluster will be interrupted, because DNS resolution to all services will fail                                                                                                                            | Cluster Management | App           |
+| stale_coredns_config_social_network                 | Network Failure                     | New      | All communication within cluster will be interrupted, because DNS resolution to all services will fail                                                                                                                            | Cluster Management | App           |
+| taint_no_toleration_social_network                  | Cloud Management System Failure     | New      | Target pod can't be scheduled because there are no available nodes tolerate the pod                                                                                                                                               | Cluster Management | App           |
+| wrong_bin_usage                                     | System/Application Software Failure | AIOpsLab | Pod will start with wrong bin file                                                                                                                                                                                                | Container          | App           |
+| wrong_dns_policy_astronomy_shop                     | Network Failure                     | New      | All communication within cluster will be interrupted due to wrong DNS resolution policy in cluster                                                                                                                                | Cluster Management | App           |
+| wrong_dns_policy_hotel_reservation                  | Network Failure                     | New      | All communication within cluster will be interrupted due to wrong DNS resolution policy in clusterl                                                                                                                               | Cluster Management | App           |
+| wrong_dns_policy_social_network                     | Network Failure                     | New      | All communication within cluster will be interrupted due to wrong DNS resolution policy in cluster                                                                                                                                | Cluster Management | App           |
+| wrong_service_selector_astronomy_shop               | Misconfiguration Failure            | New      | No available pods in the service due to wrong selector policy                                                                                                                                                                     | Cluster Management | App           |
+| wrong_service_selector_hotel_reservation            | Misconfiguration Failure            | New      | No available pods in the service due to wrong selector policy                                                                                                                                                                     | Cluster Management | App           |
+| wrong_service_selector_social_network               | Misconfiguration Failure            | New      | No available pods in the service due to wrong selector policy                                                                                                                                                                     | Cluster Management | App           |
+| astronomy_shop_ad_service_failure                   | System/Application Software Failure | AIOpsLab | `Ad` service will fail                                                                                                                                                                                                            | App                | App           |
+| astronomy_shop_ad_service_high_cpu                  | System/Application Software Failure | AIOpsLab | Triggers high cpu load in the `Ad` service                                                                                                                                                                                        | Hardware           | App           |
+| astronomy_shop_ad_service_manual_gc                 | System/Application Software Failure | AIOpsLab | Triggers full manual garbage collections in the `Ad` service                                                                                                                                                                      | OS                 | App           |
+| astronomy_shop_cart_service_failure                 | System/Application Software Failure | AIOpsLab | Fail `cart` service                                                                                                                                                                                                               | App                | App           |
+| astronomy_shop_ad_service_image_slow_load           | System/Application Software Failure | AIOpsLab | Slow loading images in the `frontend`                                                                                                                                                                                             | Container          | App           |
+| astronomy_shop_payment_service_failure              | System/Application Software Failure | AIOpsLab | Fail `payment` service charge requests n%                                                                                                                                                                                         | App                | App           |
+| astronomy_shop_payment_service_unreachable          | System/Application Software Failure | AIOpsLab | `payment` service is unavailable                                                                                                                                                                                                  | App                | App           |
+| astronomy_shop_product_catalog_service_failure      | System/Application Software Failure | AIOpsLab | Fail `product_catalog` service on a specific product                                                                                                                                                                              | App                | App           |
+| astronomy_shop_recommendation_service_cache_failure | System/Application Software Failure | AIOpsLab | Fail `recommendation` service cache                                                                                                                                                                                               | App                | App           |
+| kafka_queue_problems                                | System/Application Software Failure | AIOpsLab | Overloads Kafka queue while simultaneously introducing a consumer side delay leading to a lag spike                                                                                                                               | App                | App           |
+| loadgenerator_flood_homepage                        | System/Application Software Failure | AIOpsLab | Flood the frontend with a large amount of requests                                                                                                                                                                                | App                | App           |
+| trainticket_f17_nested_sql_select_clause_error      | System/Application Software Failure | New      | Too many nested 'select' and 'from' clauses are in the constructed SQL statement                                                                                                                                                  | App                | App           |
+| trainticket_f22_sql_column_name_mismatch_error      | System/Application Software Failure | New      | The constructed SQL statement includes a wrong column name in the 'select' part according to its 'from' part                                                                                                                      | App                | App           |
+| read_error                                          | Hardware Component Failure          | New      | Pods on the node will encounter read error when visiting storage                                                                                                                                                                  | Hardware           | App           |
+| ingress_misroute                                    | Network Failure                     | New      | By modifying Kubernetes Ingress rules to route traffic from specific paths to incorrect backend services, simulates request misrouting issues caused by network routing configuration errors or load balancing misconfigurations. | Cluster Management | App           |
+| network_policy_block                                | Network Failure                     | New      | Service isolation issues caused by network partitioning, firewall configuration errors, or overly strict security policies                                                                                                        | Cluster Management | App           |
+| social_net_hotel_res_astro_shop_concurrent_failures | Multiple Independent Failures       | New      | /                                                                                                                                                                                                                                 | /                  | /             |
+| workload_imbalance                                  | System/Application Software Failure | New      | By modifying kube-proxy, the workload won't be distributed to pods evenly and balancedly                                                                                                                                          | Cluster Management | App           |
+| operator_overload_replicas                          | Cloud Management System Failure     | New      | Replicas number of TiDB is set to be a huge number, making a lot of pods stuck                                                                                                                                                    | Cluster Management | App           |
+| operator_non_existent_storage                       | Cloud Management System Failure     | New      | The name of storageclass is set to be an invalid value, making pvc stuck at pending                                                                                                                                               | Cluster Management | App           |
+| operator_invalid_affinity_toleration                | Misconfiguration Failure            | New      | An invalid `toleration effect` field is set, making pods unable to schedule                                                                                                                                                       | Cluster Management | App           |
+| operator_security_context_fault                     | Security Failure                    | New      | `runAsUser` is set to be an invalid value, making pods crash                                                                                                                                                                      | Cluster Management | App           |
+| operator_wrong_update_strategy_fault                | Misconfiguration Failure            | New      | `statefulSetUpdateStrategy` is set to be an invalid value, making pods unable to restart and cluster unable to rollout update                                                                                                     | Cluster Management | App           |
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..8690bac
--- /dev/null
+++ b/README.md
@@ -0,0 +1,93 @@
+<div align="center">
+
+<h1>SREGym: A Benchmarking Platform for SRE Agents</h1>
+
+[🔍Overview](#🤖overview) | 
+[📦Installation](#📦installation) |
+[🚀Quick Start](#🚀quickstart) |
+[⚙️Usage](#⚙️usage) |
+[🤝Contributing](./CONTRIBUTING.md) |
+[📖Docs](https://sregym.com/docs) |
+[![Slack](https://img.shields.io/badge/-Slack-4A154B?style=flat-square&logo=slack&logoColor=white)](https://join.slack.com/t/SREGym/shared_invite/zt-3gvqxpkpc-RvCUcyBEMvzvXaQS9KtS_w)
+</div>
+
+<h2 id="overview">🔍 Overview</h2>
+SREGym is an AI-native platform to enable the design, development, and evaluation of AI agents for Site Reliability Engineering (SRE). The core idea is to create live system environments for SRE agents to solve real-world SRE problems. SREGym provides a comprehensive SRE benchmark suite with a wide variety of problems for evaluating SRE agents and also for training next-generation AI agents.
+<br><br>
+
+![SREGym Overview](/assets/SREGymFigure.png)
+
+SREGym is inspired by our prior work on AIOpsLab and ITBench. It is architectured with AI-native usability and extensibility as first-class principles. The SREGym benchmark suites contain 86 different SRE problems. It supports all the problems from AIOpsLab and ITBench, and includes new problems such as OS-level faults, metastable failures, and concurrent failures. See our [problem set](https://sregym.com/problems) for a complete list of problems.
+
+
+<h2 id="📦installation">📦 Installation</h2>
+
+### Requirements
+- Python >= 3.12
+- [Helm](https://helm.sh/)
+- [brew](https://docs.brew.sh/Homebrew-and-Python)
+- [kubectl](https://kubernetes.io/docs/tasks/tools/)
+- [uv](https://github.com/astral-sh/uv)
+- [kind](https://kind.sigs.k8s.io/) (if running locally)
+
+### Recommendations
+- [MCP Inspector](https://modelcontextprotocol.io/docs/tools/inspector) to test MCP tools.
+- [k9s](https://k9scli.io/) to observe the cluster.
+
+```bash
+git clone --recurse-submodules https://github.com/SREGym/SREGym
+cd SREGym
+uv sync
+uv run pre-commit install
+```
+
+<h2 id="🚀quickstart">🚀 Quickstart</h2>
+
+## Setup your cluster
+Choose either a) or b) to set up your cluster and then proceed to the next steps.
+
+### a) Kubernetes Cluster (Recommended)
+SREGym supports any kubernetes cluster that your `kubectl` context is set to, whether it's a cluster from a cloud provider or one you build yourself. 
+
+We have an Ansible playbook to setup clusters on providers like [CloudLab](https://www.cloudlab.us/) and our own machines. Follow this [README](./scripts/ansible/README.md) to set up your own cluster.
+
+### b) Emulated cluster
+SREGym can be run on an emulated cluster using [kind](https://kind.sigs.k8s.io/) on your local machine. However, not all problems are supported.
+
+```bash
+# For x86 machines
+kind create cluster --config kind/kind-config-x86.yaml
+
+# For ARM machines
+kind create cluster --config kind/kind-config-arm.yaml
+```
+
+<h2 id="⚙️usage">⚙️ Usage</h2>
+
+### Running an Agent
+
+#### Quick Start
+
+To get started with the included Stratus agent:
+
+1. Create your `.env` file:
+```bash
+mv .env.example .env
+```
+
+2. Open the `.env` file and configure your model and API key.
+
+3. Run the benchmark:
+```bash
+python main.py
+```
+
+### Monitoring with Dashboard
+
+SREGym provides a dashboard to monitor the status of your evaluation. The dashboard runs automatically when you start the benchmark with `python main.py` and can be accessed at `http://localhost:11451` in your web browser.
+
+## Acknowledgements
+This project is generously supported by a Slingshot grant from the [Laude Institute](https://www.laude.org/).
+
+## License
+Licensed under the [MIT](LICENSE.txt) license.
diff --git a/SREGym-applications b/SREGym-applications
new file mode 160000
index 0000000..00bdcab
--- /dev/null
+++ b/SREGym-applications
@@ -0,0 +1 @@
+Subproject commit 00bdcab9caecf7ada6b264a41b35e238d7fe085d
diff --git a/agents.yaml b/agents.yaml
new file mode 100644
index 0000000..4bdd6de
--- /dev/null
+++ b/agents.yaml
@@ -0,0 +1,11 @@
+agents:
+  - name: stratus
+    kickoff_command:
+      python -m clients.stratus.stratus_agent.driver.driver --server
+      http://localhost:8000
+    kickoff_workdir: .
+    kickoff_env: null
+  # - name: autosubmit
+  #   kickoff_command: python -m clients.autosubmit.autosubmit_agent http://localhost:8000
+  #   kickoff_workdir: .
+  #   kickoff_env: null
diff --git a/assets/SREGymFigure.png b/assets/SREGymFigure.png
new file mode 100644
index 0000000000000000000000000000000000000000..a1915e69efc18e0b8668528b868cd7ada318cc26
GIT binary patch
literal 330255
zcmeFZWmsHWwl$0fcMER8H8{a7gy2r$Zb5^)1QOhWYjC&1-6as*T@r%3`@2cb>C=7h
zJ^kJOeqWvnwX><(vesB*jydM63RaMlL_s7#gn)oRk$NMp1Ob6y3;_Xc4F3$+^GdQ(
z1_A<E)<R57K}t-FOyRw)sfCpZ1jL)*ICVG;<*&HuT1w<F@Z!R6w`9?yF@@j4Go3|{
z(UT*fzYRkW>4{)0Tb-AH84M{?!d^h^Hx$!xGEv;~s{E2w61r=sz8nD2xW}-Pa+t#R
zc)$5gXfu`1;gA?&OUJX218)k3Og@Gs6y?H9R!+_!+8qLN3j)y&=D^cWdmuOh6|Mrg
z&WEME98!Ev*IB{xzUr|JmnriNGXzBNM;;woydNTWln}1P!t{f1zO;eO*Cn2XnB^Zd
zB%cun)V~g9SFKkKo>0A7|03(jh_@~Y5jAz~38ID|@QO0SfoID^C4P;R`a-l4#!x88
z>*T}~o?I8E5~bSDVLa|;@2uRB?J+M&Fzf54S%khS<A*>ZvUq8SYlnvs$GgLrgyQGv
zT?A_9jG#9qY^I5IlDzDlu^PndbunlCv_UnH!uFMRqq@OKppYn-H~~w_C<lXK2&{Ff
zlSQ6obW(;NZ~-D#@b({HaI<;#=h2E0<y8A!i!pRxH@gO%la*n7h5r80Dq_&I8+F8k
zNvwAR`B?rMEJ7N4lYzsFKolpKmqxXYvTYO*2s)NRS0+cLMW=Z!S^{aG!%xF()lXf+
z8cN7(MXB6PZ&c~4K^+5gTYOe|f(%mFi}KP*_vCTjbB#~L;|*ZhFzfkL@IFug^9b(#
zQ>DHa1p<wMhUAM3B0-{11#I+!5Mr9p7YO$BBr~6X-u4yst~-w}ZjpN|>ctY4{1_sO
zNWkkxiDc^k6snvXnegT``@5?5dfeRIsCk^wl^{B5JsCuWFVwUnE3`4Ry`-%&OSAGh
z45VO`p9~oks@S)qpqvg8gyvp9(IY-_3NljsO`%x^DA=e+ju6%N>lkuQP7wHFUT@=w
zj-Idcqd$AU)?%n2#kMX&;R=I)EX2RwMeqCaM`zLA<K-ReZQz<PwP%nb@<@LcnieK>
zFl0BnA^I3Dce|Gz3qO(Wy}ncLTz#J%k=`CcBtlvMTtIOEbLY_ZI>j6<3#BmLBpShh
z{LRdDN9mV5hJ#2CF{gqsc6;bm-==mqo_dzlIUMjJd0QOFAbk8m3r0^MlbkOE3pO__
z^Gea`b>w8lgdMS>;?JAiy8=&H(y!buIc8^fi{)UJ0P9(E={>DIGUsP}era8rmDKH>
z5e7pVe9q#*l4^_D9XQ<lT6<rFcoodflCMvU<C0?erufczyj0FNLQOXrxG7yeI!4H(
zCdG}cx3hc<>iG;$)K{6BmZ}4(;O(PQUZ?)@!wOEo+(V$&2_eLC-?L}Wyl*-KNuc%H
z_&lkI9y;eL*77A#e5*deB7*!vy5jJlJRL^Y4kqAw+lgk|T~qxCkD$EC&;$Hw(a~Z$
zIJUfSwKv&Vk-kBPiXhNJ7q`1BAk_Nre|feC2`7wY4olNMvdUi%U*^AHckcLM^9x$@
zGg5RIa&nFUzb#7YAS%O19!jfjI0W&|XpI;6Qetcv2wB2E$)%&%j8T+=t;8&&@B0mY
zz`RG@7Pq0ej3)UZ|3e@obEg2+GC(u)yCT<sNY|*VBYkr4usG6~p(CuOpIUa)*y}SG
zcaoM6=gg5YZ)APT=UD7LM66uBJy{jljL@GAkSdf)h>Cj&DsZn-S&VcvST0a$){#>K
z`Py-a{ApI9JgHkD^di*PIbA8e5!=F6`fiU#U<f**^yQCU9KnA^ND2T2V2bh@(5#`a
zaV$zN1<Z(3L`zjuH+Hoo%6y|9redbCp+2A@p>f6}#k`ez5hM6D{fBG_#j(_N4(9ml
zahvg%<5WuA+f1NvD^X`^xM<~m%=Z`#soIi)Z(GH^MIVI6ax|3q=@hZaO;Am!OyF_@
z-}{ZrUJFlUX)3oA9#2~B7+S*C__-&$f4X@qD?21JB*yewwxsq=si<|vJgDZ@@^G?d
zYJaj}r*H@H9A~F#GO~C@#YZB0ti;^A8e3D)8n!gvImS8iLhVE5T0zGIx+UXe!MOQk
zea^AJT&C7I@0rD!s5|dH**#Q?`sXZ*+^<tV-Z77sjPsYc=~U^3W^#%!yk(Go*Pxa*
z&0Cs3|H7JKU)Va+x$?q!|MNT={`0QX4iot2($D#x=i@KE5+{B~oGw=@mo!Y0hMFd*
zW37X?B)&A)sM;v$*p&EuBIK*lPd0TnG}iK$E0He=y6`Cps;p$X5~Yonx5B4RC$P5T
zcJ`;5iY|3Ca!Cs^vfDJ<q#ny4ZS>91jaUcuLpv-!ELXlVYUxGnjgJsuy@)5bG&g(x
zj%UWM$)L%gExJ;%B6`w1drT@@*C?+t!@l<T)%WaP0cvC{Qmo3auRa@5k7zV9qB10?
zcD(A@VdvyPd8wLc!@kdYuWxD{udilYJF{2DJC$mkZqPd1Jk&hW*-g=Dm@d)M!z3L-
zwZJy`{=)|TAh+7Inv|M!X>v)r<}T>81gUhl^l*06%G26(US&bMl4>4o?O?^dpj$1r
zue}f6E81h8&Aza?FuWbQNc#@|oxfMAS2eQf;LAa~J*{1VOZ{QLBeDzQd#m@JFP9BH
z2d<{RkAyw${n&}!t?t^sfZ0dL#0sIVmbsdk8wRavZ+MzeSR0OZ2V$krv^rM0U^H0S
zH>?fVh1==u%>TUkI<zGFb9#09yUkkq&(^Q^ue3f959tmI?ur~8U21HN?HmtJ46(1A
z`fifyqU!SMI_b*OfaEb{=U;AT)+KSTc%--_pbgRtZF*!d>nZEC+SVLG3pog7uE@2~
z5NXMAnQ?Chwta5<_89d@SVrR_c<Bm(i%z6KFp5z?oQST0@5<88NXuRzSimyN>1uOy
zj4t{{qkkuAm!C4-SAB37$q6lu)SX^NfRVX`ZBL|Lr=GEy3Mw2vT!YY_W}Hn4a}FCe
z%T@7R_Q7i{$&s)Jx{uGXh?Q|pd7MS}nrGSV!|J!~o$SlM-+x!{U6HGhQg~5KHIAi>
z^$u(01?-Dbshwng?~}W)o1al)dcF?P<-~T!rqSIiL*<ubjHm4+YsR=+7oAVeDUZmq
zC&u&b_dDJ=KAe592&m4fZmf>HqxI%&6G}^HrE8II$FV}^$Gbt8LGTb?&f?6X!C%II
z$ChsDZdNw5_w{6meq;y7p(k!VVUB!Gt7_$k_{QD<e!uL%Qi|lT^dKMOSp1JSazm`?
zFFju8PwHw?>?d#YI^2H~1SMMK6Gh9%ac}OnlioWAhOZO$+(Tvf7x~v!VVV)AmU3#b
zHF-rWrJ6XTV?V=rV8zQ|NL=6=aa>+^yWDj6X{+VS_(pHEcGT10xbr}wBh(UC8E=#E
zp{BpkTy{)PIwrmvn-GVE-up`Si2Iz1fC?P5E8P-rbC3I|c4yrO4j$xUzSX8@ywCks
zSkk=r{e8!YUTeycPLB&T1Dl#-iKAA7366c7@l?%JYw^2j^HMtPQ#<SK`Cg|Ir`+8K
zO(C!QhW804rGy29*o2Mroeas`npWC1$3`Y<8&mX;MJ*}F+)N8+rd4*QxlG<#1hoX#
zOba&;9><s5wXnADN@|OkSL7CTEAEdYx{1xa^&b_QCiKnbhUJ@HG&NcpzLT43oSB}+
zpDrzt+{HN;Xi|33Tg0l!Z|KN0SkV2s4EEB`FkGp+x411QhUXh~j`FHllN==FCN?CZ
zw-zVZ<hbB8;dJ7p;dUWG6<C~JpL)MV)0g2~lU%DtJSG4>p*=T09`iE_?7NASj=W6o
z=RdBnc3;^4{8?U?7ssLKyW{M3l@Q#$=Lz!Wx5}zzGp!M~biO;J+l0JRn@z$6odvY}
zotxcE)VhdXqyxNU7I$r{?bJ!PvzWtNtORK0N6$c)jk~G-;<OpevZeZT_m<s{N4*m%
z4cvOm^!4X!7g>A(e7P>1hw&@y&Fc3l`?elUi;WSBX!R=(WCtDlpZq_KkbWig+GF;X
z@z8$g{voxmyqRArAR>U5A?r4MuYGeTX8ZL}v(47s;B>uD=<dP%FlBM(Ug_ff>c~d<
zncn`*;6{1v!`6dG`KhjttMZN7qxBHqMHBns=VhU5)?LbNqaK<Cd8Ujm!4>>|!sk&Z
zCU+frkjS)=T=)=o4M-50Y!Jw<HaT*NX=rdrS+6EgDULEKc93~B79q@iAJ1O493B3A
z1##;Pp$~h$T?ipQ0TFZwvDF<+>2$@&?RubsOTka*NqR{qz(RbNlJ)Ad_r~QGF0HCg
z`__ft4a)~X?ph6UAit0^(U3Bgm4%=Ow&5XQAPFE~fh|bjpCBaRKek^((n3K0+7AT*
z0fqI)_S36=|3m>#PyhS%OjSNj2W%5rh|8-0&%isLejvfXFWTSFz&4a|C5{QS4+MlT
zgp|05iYw$^8f^XK>zTe0^~EI}Ep4rw`r3NjIzzntdga9s+<I4g2HhNNmRuH8Sk1+y
z-0JGwlZ_u<4k=5rY;!|<%Pk3y{Ae%md6TY(_KXjQh0GofNvY7G;C&(f^M|hy)FYfo
zywOKi2q?1u{6P;14`xLdhJg8xAHtZxTVMDE;G;u8{>KkrG9;t_ALoRCd4b_eCXM+f
z5%NDjC&bgOKKqaF6S&O(yVd{QX#d}={(mo{{{!&<jxPRXtx}-)y_+cutO*=hD(}Ly
zhx&V_JL<*gPkfm@Z@S-)H{al_!oDhm1~qS6dLTJm(Bp<J3iAiUK1Ux-Z<tpc?3_8U
z*VGi}7mdQf@IY~T_9xKcDcgPa4wstLTY5<!3^eTi%_&!@{Mbwe3aF~H6M86hocHV0
z?+ysI8*x#ffP?vcq5dN9sm4e_eLCwsx-qC-1oKah7q-J}M}zE`V=2J-bJu_4e{o!>
zd5Q|>Fvfk%8tAr`5O{LpUl1dUf~nrDa7O;olD3TG&zKLRNb)E2$n;@mvEqNCFz9pl
zg#R11TQ-Mkh9|<n^KaSaxVzXvVfq34>*nFnpfL8`kVVv7!!Q@I{yb_s1Js?`bY~z^
z3;l<0|1QpueHIqig0G!$cI^g>A-Mg%0RLcNaW@jNC>)vWXHNg1ZaZ>cQfO_vRj5Bt
z^4}u@89cmrY@j}a%GLf<2<rInqftQl>H9n#4dXS&4*VZjuze1B_x$Li6HhYI-=YH}
zOt^vtN^7nAB0$YC>e;W?p-02RoSr`SFA3s^QBeOQkhwy`S3E~rz-omg4yX42Z?p18
zoECmTHVQV89!Pv?6kvhycrnn{LGkCGjLFeUvKZmP6oc?$e1FUW876wvv8h@ka-k|_
z;Y2R^ek$d7&ZDj8i}nEOe-rwzgjX-Z`78@lW*$9$gz|CQetwvTtHLfp>bR-xpN;bk
zG)umc;X4sH+r05uC;DS7!{E(3_4oVTuC#ruRphYotSBtt!QuiR9sdl~e!l2-6upLP
zs?nH-MdtxW^khqcDSvwv!Z{Rnc8`jZ>m~ZQCdW{9<xQ9svmp!5##D0%4$P6C@C(BP
zsmt=?3-J^Z%L7v0=1Ulmt|Jln_uvH~+^sy`XYgRXhk^C;dAO#b-RX!s>XEIb?(~OX
zFmJ@b`3ETeD?9kT5%KK-eQM=fchd5=z|bgeE@$a{W~5ckwf1}Jk4({z&hc>>)4^o@
z?(DsEng~zx3P}keqSmg!*Q!_n5B9uf>shV{iD%qPghc+^djzK07avkD0JJ9+g6IE%
z{AwK^Nwh?Ni+2+8*Psf^w<pwe>!X{9MCBezq<;7X3m$3+Kzs#2vZEvWGupNZiv;0R
ztoaf8{T*f?;O`=R>pDyHF*v<$w)1OmSrY?{YZ=1Bey=H8Y)IQ_oDXXa&qSsPIr+yl
zo~G+a2v9C}BO24homx>FLkZM24lUH22n$#PJ6^MYJ8;1JKDO@@x|k1v!)rqW>S*7s
zbq02mfcFB9%8JuoQK0=nI;_AM@w&8PVMTCz8Gr5bRe?e`mg?D7H(I0XKj~F<1`t~)
z_dVI$1oHd8Tl)H++8Z|rw|}1VIfIL|@J<ZvzI@;go$9E_RsM3l>izqz7%9HoBMnE`
z#K8Kk?8CQ2dzvi~NeKUvFT0o%h=KWJgJs25R*L5HUT^*@7XBn>U_U$!)UuVqbMubR
zOA?m2A;%O>uJFB`g$s6CzX0y{M%*_|=!ktJg1cW>D3tRXy0OIzJD6Vwh!TbHXQX=$
zZTO-Y2IQ<`A{K@dW#Iew*oT0>5^gV}4TY6&MkgxJzciUW(o99ghFgUD1q-qhtcoT|
z`7aqg1a9zP4osfkkbgrC00TP=@+BsTKVy@vnFw$e@_&049x{FPSRC5p&r2(MT@JU@
zaP^AVf2?MH_*oni*d0(wIT;Mdoqz}K*Nxc805{SH4{b`u58TM|@Y@7(&M6CRc6}l{
z%0HL+KMmPGM)N4{&v}aPf!;{!8a^yXHv&21V2b=AU<xwGCVykT5vio1Ph`^6va?Td
z3=*9TAhTgI_-eAjgM>_*dp>cZpaQzT4P3tMg!1hXw1X?6w0v!CH%+Lvcft@5zvl+H
zy08%ucyOmR&uZ@zD$scmgrjimZ#YN&8TpD%-DNG6lFte$QN<_!9Dx5Jj;)5%*xmLL
zYgSohM}0_Jc@y|rhHbXenkF*XP5k%T^c5b(syI!p`Yfp?M&2JIf$9AFFe*^X@ZjML
zAvDVvgy#E;g<7U(N>L_~ak@F(O)AyK1`Fqsum9cn!Q(=~U6SUCtq@n1M6~g%%w6A4
z>0Q=ZvHmfD!eqWMd;DlxwN_Hiadu=-Fd)A#VIEJs(@rQ30R3oxPans4PBF!(xbujZ
zub%JkN70uZO1Uop5#`E=+!a{9j{EbRgB}al;nU*~|2P>GI=TQBD6D5>T^I%)3?+hp
z`83mh+(8g9ptXg$4%&Wj_UlhBB}c^E|MpZ4P|nT9*J4prm|7it@u#hUu)n7(NW>R*
zfN=nf_~435xP<1<NJ$?A{R<LDNx&%tvp*}bW+8%CiKX9OcESJsy$JJQY1DaAE;W1i
zRpWvM9A@3f)n3f9l`>-f86TlA(FHEa`a^uvLg;@_A-YHuPHQ&Vb68Loi@;F?POH%~
zm*3$32b%wRBTDiqR92hLy_WuvwIaiW)I=2m13HS>c!r$tn|`9xg)6MI;L$+Q-UXR{
zzrd#fupMlC-R+XUY!ubaOW$3zLyd!$pm%={0ly#_{hdUG!JWagZ{(ORB2gxDIB$NF
zOHcsJo|P7@yZ1mllt?^sNCo7tX!OEvYm{8G)(T&z;eDXZQlrF6qu!iqiwULWX179#
zP~2E@v5yeby{BsE#%^o~#xmkq#vOcWWRh?Pu)kEw|CrdL!$bMa*RpEhrb2gM|C;ot
zS+Ru=f>CGd88bciCmReyUVmED03a{+=ERV28NXypMvm_<)D?PM9&mVG*(DJ0`#hu)
zaNEde)!8@&&*(LuPit}5tqMniZ}=YsKamZt1eET>rI1OVnZWro?mmdq|C<@^rbI8W
zMv~yeZs$|$Cgdx4`Rld5L{M4QNYKY&0c6s0dYy<*JFmo7GkhL0nROaR!|>U)2WHB2
zQl?9_@NoMKOAvAB3;atf-h_T85pW;v4#r}7f5n2}&-hqbW5k>Ii|RU^1D)M*{!o|y
z135szP!RYD0~0NxCQgV`!1C)lgulSUbg^Ulmk6J89Y8;gs}0P<!>uhM0zzhk!)9YH
zdIJ)eXJv1$O5g+}0j#ySJh?Q>xE>Y@bmME-V(aXV7yX!CV^Y6qcEWif3gZuc{-3V^
z5pt|HkgfJD=KV85_(M{RTp<Pd-%E-+)VJSWyf+L#IHTtQ894f9W~(Q_`@%wA7;?Iu
z7<Uo5i%bV&(G=LNb#_BB+ja#a;n4zwvW)8xOX|-kc}0X5@y4IgN`0%o$>0}j|Bsg-
zO!fwWXwfGY)yt*3+L^6eDQiE`IH*;I&==+pbi*4yq2GS<i{;Z=Se1urhBYWsDcqVW
zR{vNxh6Hw%?%JNnC;W*eaj`QMN-dK}HbBiu?9W)p)57&kBz~sf3a{Sn@>yEj-Di`B
zx~d;Jj)mh|KaV+&zg?4>4<4X6Za&DmU++r4P3GY>`5Ki*pkg74fcfHNigDmtc=d9{
zCp&{VEmL_@ZnOo?WouJUcXWg$V<I$xW$QenoKAP~3R}nq>Mc48Ih9mm?EAK~$de6P
zar^Jx=W8~!P*BkszG>I0)PbT6E7{@*Sc4q+bk=JPSaeM|;lG2{Kga=|4A4+e@Pu`L
z?&k*Xy8*I;>IoUmbTFb~VueP15qU#XFrYmg2J881$IAnqiDoqfsn6883w5^2XIo>X
zU@6%TWYY9<<>4Yx8=Pzlu+v^GF{aGvhDmL%YcU+npFA;stUH}r921P}%Qmo88uevL
zeGsL4*Si<*B$mYv#aKP>rO#)*ROQF4&6^Kj{%|(1s%6_E0b)1FXOo~;2oG_hGY!+w
zjgvG*5BdhP_pO|5VI{{|+EP_WJn!opGo+EUH#52B=)d6n4~Z$vgI@3T9kmoxJ9ah<
z;O*vYLSA;?!Jl>s{8vcw$3ho?lh~F^iDW`b!xVRWn*Sp|2wM@?z1f!&G09}R3$|^!
z<GIo)KdU}hSWHkC>9#bcl_;GEM^V9MkG%GmilTa-pi?d-`}VV7&4@LMqX?frqz^o}
zY^hPy`j#sbkoA4lUqNi9*>l+miFuSA_<qE<b>nxcnP*#H#mqiFsJ}9}3z)2UjZ~zV
z89|X4PToTu<|`~tt#9TXHzx=WF0oi|FdBj@{7uw<{nk$aqKvZ?Eb|Jm2)4GyvIUn|
z<x+WKsbvYy^+K@eg7n(OUD@Fo^;#FJGn=W^Dh(wJ;Sk`-^d;IYiR>E;dqNcRWRgl`
z$cEscC_3V3mp*AVV*8N|!oo2>Et>X67~N*qOe>c7_M_K#RIP5OKhHYgNEI61ZxlFe
z4s#gwB6l?t;bUToE;Tv<>`8)g2<vlwViMW>nMOYEV5!NY`<4O9pV23}#thG&(IeIK
ztBEA*Dw@dj&3>_YZ`RjNdfUXR&+ENC@vfo@y2e-E&)+3iUa`-E2k&HGvwU+i9*Px2
z3O~H$t(7|^`w+w({tMGs|C<5X%<z%ZX>xY*>?%;qRvL(<Q?*x{1Dj0MBqQUq@zf$g
zcSs3WA8?v}d%iPMu4ku4QiDhUm1W<(+pOn#EHOIC4OS6<QIDC+w*iP%Wq;aVVq6!K
z$K`-%qd&SU8#}ZTm4yGzUY-Wh_IPeK5F#uRnEL>?V-&b=DG%Qa9(#X8T*j@KPb}`|
zI}%vb{VSqF-(Nq5j_w%6mqiNsJTyOGZeqg2d<NnNRi4%(DyAk850*0w^aHxF*YO6U
zX03N-Mdm3@$rogcql*Ca*db(}`*S>$q{&aHX*~K>0k(5W`ESI&!^z~wepR|QT}7ci
zzq?kxxj!e(V+tpv5$uTwWFnJ=l<<Y&J1zcZDja1Zi#0<0PVfz^pFX+orcuQi%+9Y6
z{2NcxFnJLOHQ&f?P^Q2YF|_n7Z}H|Lt+v51pabn$Ewwm$)dGM8R2tr!xQ@Js!|o`T
z*wsZhmN-I1RXCUU4iCg2$AB$f+P5y64DjI8KbKJqL}<Z40?VOdk!%VVhs(iY#Z|F-
zxzf*XNnK@2^3!EH(oQ>*_QAvH0(?5nu47bX23;Sk4SNt1czkq&S{1eqQAFa?Kc+gs
zgMZj@fDM16C*odjqJC69ya*c?kMk||Jckc=Z5tBh`knD$848EngU04ZD~&hN9I#A@
z6(NS*K^BykDG9lkTf>g)VGRt|Ds)N{F<*C=`B|e2dYpf%Ck+LX4JK2k^G$n3AwqSC
zLX7n3ZzD`X{}sVX01<97L^E3WfN8wF5KSXbGGA{`SxYh@7QDKd<-`K$e^)rTf}1RR
z7?F6NSE9dwQ;Guvl0(Sie_|w8DSZGXlO-VbNTp^MyX@EDo$Gka+HXoVYY>~JGrB|Z
zB1we2WyZ23CM1<}-^Q8uMG!OFGd|2WIOI#G3bBam(Vks?B$JjG8|H-pz2_kSRZ>1b
z`a~AmLR!7E<g454X`sTyS>`zQo}+%(e8TaCtK=#WB?^0JoVGi@!!6@DMm5QHp*~Rz
z94>{e;+Vg~y1112c^FePUOV9^8-NfQAlQN?x*htG(Ue5UG~idSpEC;hxj$+1-w$6-
zAWoEA!@S}|_h+<G9?y}Qa!T^NK7nlvuFoKa51MWv>py`$dt<J|5dmz;=ZC_mXF2BA
z09uPqB=(myWkL9s%KQ11)6NgY9e__`sifm8Tyf1xwHw&>G<}pxH92o~ip$RwciaLI
zam)eX!+fk-td={J!rjz;eJXkuDC%Pi4?g4gkqT(>PubBpzj?NvxlfKXtCIcG*u<th
ze^ETQr1wqrf@=t=P^%;Xg(u}|sY}ToXgSl97f~@rT#9Z-OL1%M^C!psX`ELlT|Qff
zZI898!LIh->2%Yll^1#Jtv7r=vl(>oo?O;G1yNXda5u;CA_luCDmuI^l&j!J7qr!f
zf1=??fQB!4VCmJrz<?IhiFn_S9)ItnGnH}eK~s6W*%kZ+kvj>&_j5Smlz?F|vGR*;
zElSDy-@irQc+#Qm(on#{$a{uD;2QhN;V1IOK%8{=<9^)=t!k0V+1?y`q$kl!K>qA3
zw=_u-gxWJ}*RNvgRhi1pR~UTwdx#{Eh3=m2mbZ;x_O<0|UD_yA7bxPOxxJ))cVnf(
zI^ywqN+J~+sw@8@+ZJsfM^m3%Z6zu*mRy#)tND^-ITt4dcRXH)5M^SCvZ;1QmXm(k
zDbo9UdF3k6^(TOfIVGo4C+qVnHx+CVa;4(Z$Mc6*tt+{ih0^(KwG*;CFv1|xBQZ+4
z6m<U3R6y<(4~$jE)VUwFvHc(rGGy;>FVUFc3&Lk$#GeSoE&ME;k&HkRP=00_fL#A?
z2-;g|%Xk|{zoBS(bGB`eUWLn~DSo%giNt6;kS@?9eFDhUNp5Csin!3ID0D;=6sO3G
zg_<p-z=vLR<86z6ULbKtm84{NB3f)?{3!(c2Xb__3SOPY9eNw5Hs!oCkoitj12&(t
z)#Z!G-BGH~7W=iTB*zCBH9`gQX~~z4{}=#>pELa{edgqVIQ0ZTF<^!m`WGfv(Et^7
z{h{cP3!16lkOd@kfA;wh=k?bwWMrC`{$vcajdWWK<iGASA4$TWL9uZ{6HrdEWCOp{
zZUPLmUaJhK%JiHz4v6MXO&xqL2MV95Ww(IvLgL0lA)n6gxHCzYPz{KSPs!Z2a?%OR
zPQjZ<-ciWJuO=y%^)Rwnuy1ZfqjK}fH;Mcid5OYHgjw~)sowWaS!(&|KAen$?Mn#*
z6ta_<m`=@u`6cUiR5NUrT5=`uNmdvXQeR)D8z){+OBy~c1Hu2@t?t8v>D9|*9DaVY
zZ}<wVD!Jy`F22~k*~$-Gw#$1lHcs~2<5UANRH3T4Ik3EtV~uz)AdzK15hZ~!9)Ko<
zh^a8OgU8dR5&!b-n_sjqv~`CQCb;@7Cw#%vIG+9}ba(V&2Qsw95+C-VE7N+R_O+CE
zFqT*5=nA$!qW}u;Cc5$0HFIMsepqPk!)4YYB@OM6oI+anYIB2`a&Hfb$aF#ECazb(
zIFz_lvZ>!_zp@=1eBe9V)bmOHDV0iw&=XAD$DxyPwBCc%Xn#pB;C>QCBH-~RGVc4J
zo{!o<UoMP2mV*Bk0-Z-*YAlr)*NLgk*h<&Jsh(a-7D4GCVrb1x0WoLcc_nK`yn*%>
z>wKk8inE2QObR_QQ|eW2GVY#N|9O+=y+7M9$=LUNw5_jIG-qemMj@C~h*VOsu`yI{
zGf6(v$Vw$mc!WfuK+;CbrwiukdEfR>xpkHpoK5tQ>a3sPDaLsW6Ss+y=B7(}F(Br?
zjqat?#l|SGr@PUnkxC3R><igYT!M={n3zgQm>e1E%D+@S)<1bcr!t&0VUpb)9OD}M
zGW2TyQr&TF0OWpj<u{(N7#T^M$Hr~^HYE;h{Oz@cQjYTNWJz<$)lsV6(!%Pyw#9mf
zaGT|ZGEb7&YnkiIovHFz3OCDvR4ycww+V5WR5E+s43WF~H;bV>^+GO-gp~9d9Exlq
zI1^5uLXX$LB6E&75Nga1`|2@p(L7cla{d#W^R0@@Y2J)av$yOfOIqe_<RL=_#zqF4
zq=46PfZ^-NLc!A*>bG)VF=_I{w!sPm#)UHbv$E(l6MGJfM$PpzV>6B7A9<-}H?8sS
ziIGPnFJFH87k|P7hO8glN2k!R2M@NKDU;ouF0CrTEbnvN9uM?>xHcQ~Os#)6!wldy
zm6enYh6QrWb^^%zY*%2Fhs1yBnzQ&fc2xgG*Z2u1v6+~!w0a4~zW9@_nfMGkVRk0+
zBMZ~&mfb_kbediRL7#nyl27C*atZx&<cd4OMpiM`o-BB4U{4xfDkrdjirggVbis4}
zeC*}k{MHMT6P0Sm0r%_|6Fj)F)B6fZx(rCmrsTE}cN`W+j8(>}-<+;~T%Mh`mTw&e
zAI9yr$(&ju9Itn0`@5}V-;i=;x`2O9X5GIxt^~#5=KczC)gy*+KmwxibBrck(8E6>
zoi``)gl8m<iKQi>t)5`yS_prvgECT(LSh`d+G_r_SL{(LEUDAH`bi<$qteaJY*JVC
zX;Z1=>X!G-{pCu)<#*(5rTl!f!Red<sv-q{m|(`iu=JM!&ZJkpY?0i-Voi~mF^9ph
z&WneBBnep~=f1;Th1$n&Ege9{CrfKf)w0)%sdvYTxdkb(ARVoXJj}!Rml94t@6dM4
z>{c?DitPFsjW{H>KoZ+c7vW6`XIn47fq5g)My{t?PL|J*kmj9<XXUgmtiB*6j5MUY
zZ}{oGU1BArSrl}QR?)%X@(Y971jX7x18BQ1BbHgTHJO|rPC%M<UR3*h^`Q@U6RJl|
z-WRALcr58nZjrlHcq5}1_gdJ5eA}A|>!e+C!ew=*3L8qQg^tl7wSnCS+_*K$kG$~$
zx~Y>?Y~ScQ1Z@Wo4v*Xg8zb4Z|1eg6X(d;Az<xeVx~>Xf6v3Ubzq>k~th3cKaB?%l
zTE>ATU&ll*^#JTU`&+IkPQ2fWfbhR70ywDCpF^i#-{FK>52xL_bd&?(;Nt?erRsVe
z^VNQ+@Ut;IL@yn({_%+@2UL-GqKMaOoyx3ann$G?Ct^DbYb&KvAfAaY4xH{6cZG_|
zo$IENpd!}{@L`L29R>e$f$uA~0r=x-93^9^^Bf$wABcItk<={D8A=j{Q~S1?u0s{^
zBqpO?nP^6GfH1-vC%=3O=_6At(8?vRc{ka^LK2{XKAoe*WFU}-k|NDpwSl3^$(VMl
zzh%5j8WMJMw0eBFRn?G9bWZF6F8UHSbx?Yn<lY?JvRZ;C79e8Bhfw}RRhO1RQG&EO
zI>+M9!Mz_*GmE*)>ZcZOz?RpVlZA6M%%VlNXorOv9oa%e)y#YG$uD)N2_{XjO=ME$
zm?VZxT!+gKm?{=nHkt3=WSb)AHC-Oor&KgEUwTtXu+Ds1?+xCKW=Z^Mg8_HB8R20h
zz5(Y<B4QG%p2Ml7KDuWzAtUjTLS%ZsiQ8iGTZgDfs>l7=%viQ$zS_B1fo|MuT@NGd
z8s%G}TchT!h4xM7T}=F+vHBTx_hTz-$DWR)M)m(Fi$9qL;efVjwLev-OY&!2Zh7JJ
zaMxMHtlOOE%G4+2dh#Q<k<0P+!n)C66ZQD``g9Xp$lLR6GDqP}xk9FBEQ_9C`D5+W
zOlX~PHDaN1zM6}#{YclYnzmXosR!y{EFIRyaGKVA0)+(PC52Mi<JEVxSKfE7vtCIk
zRqF{&F*NdJ4}($U&^Ro*sfOK0_a<UvjR{F)yMSqDpq+@)c9hENU^=xeI-JT&XEG40
z>u^*PX|vocl`o&62C~;l7xa1y_*wbQZl_A={BF%fNOj)<N5OG-nrUizsmX;7Fcyl4
zYZI8XxZ3Vay*CDMUU^=z3b-B#mkQPS?RI8-P$^U@wARn_OsAAY%@9PQXtfy6QCuiG
ztnZ5?od6uWt=@3L9U+o;EgqM71&TT?t)acq-2RNMG>=t?-#UgvBh<Jk#FBq;?EtWT
z{;b@4k{to^_dFExkncb?@s$(36JYh11igtm@4?eU7ix#bf69)W{QfyRLXhw9HIJS$
zH{f^tYOL909rpzP<QZ$RyAhk`T)CwCLd`R5w|58(v|`CJ%x)UStUgY(r4N>c(#_>~
zjK<F=O<v#(YfY+S#cwpCy^}N>&H#VQrUGB)<2o%A>L$822__k=CC^nmF5$&fzf&)h
zPt!cB{+2DD%IX1Qy;3JZx?wM9d-oo1Z7AYiYrATWa+}3(h80bW8Y4F}J{vOa_45Zs
zl786DqbFW;no(;B7SNH?;~49D7loi1x#h`=G~O-3K6S;^#HFwWrt4lHzQxq2W_x#r
z`8MO#2bLbD!GO)X9o?6F_o8QLL)!dv@t=fTZas&f>HvZ#@P6iRa)4{k>VB}bKu^C?
z*M)B4(Rtdr85>9TZpLN7B81|^WW<N9(*rg{`AP1R=|V016yN_bQYq9I+M4COgE_Vt
z8^mgRTigbH?Kv6A@JB`WcOu9`12`fMAK94tv5oIfM}!7K?ZyJz7LIJ_fW-Br5r0p@
zeWBL6dzU|j+qU-1wH#kQ<^_UkiAJ>h#hw)4Q%z@ClS=IJF{qd20NGB#g$8_;=k@z!
zK9@53n94?kP>np<l-GbOP&r`A5dO%u*y6!$ujBeoO4k+(78fawMK9fQvOomL32816
z4`tEq0V_6f5NtB2!Ymm<RN0JzWJ)ccPSiWecKV1Z;WT!Mfi#^s<`0XcvWcSBBx*-0
zn<1EHIaOq$84eAHItuh{Se)-nodIHR!V@SxsH7=X;PDE&U}{Wq0Y!lMCKna}{3Eq=
zxG=RA6CVX1u8hjNO(|LlxouSXFw}p{RvPWp>(*Gtfl~r@-C2;Jv8diJF^L+d%s5=1
zG9xnbdmgr2s=Q29)xG%EM{=`#M)phMo_zQ#D<(y#s0eAhTR>r~HaKs52+fKk3ti!<
zcRe<2pBi~m@fZK1;sf&ag{%85t69Cb=V1}?M;8m|4D11OQB?xc00Wn%SwJT(3XQR@
za4?yUZ-}5~wg>Uik6+)@<(2dNO{9E+C>OJ<qT3gW0eb7o`vesBk04W8sKoPyHVzr~
zP?=b=m#VbKekX@wJ-ZrQRaUw^D;};1$xh`)JG>vmspJv^)Z`xD;v58posuq|^QmNR
z3Z*>0Sreq5^%yG2RhGzWkuzfvxqs!kqj)IH!~@q=kL^_k+H*M_Mk$|b#Ctxs%l^vg
zAqQK;IM_vcB0nR{p)K(H?vuP^VA)BiE*u|Y>S6diG1}s!SESZj`zc93sY!w;ES>MB
zH)tS%UNgQ`pk7k1`)E-niqmIGMzeD4+|9_meX##UaLo8-*H7j5Cej*wB9n4Hk$7Ij
z5>CNe4sXR1>+a`P{M-e1`ml$ea_v7KKhS}WNmNOYnlU1HmI2)(3={T(qT3M97AjOw
zR8+JX^Gp3gxn>RhvGfB7Y-}&j)`DAlXf6k#0es@a-l)-WJEo8+8%B3xUGPm*`@^7u
zJKr90p~Xbr&U}L4a*D&nGKc-T_>)<@Z%DzMOg5;_e7-xApTurfls+sThdCv&OQ|bw
ztd=h~=W(pjWcvw~*c@<Gm__L??z)cwM{x=~_X@npgd0@J&1wtn0V3qGN~CvnzrU%e
z>*+eFN+?R^d{^{60@f~zY<+OOI8yK?2(WXr5J`u`Z2+gLa<$y}YfO<DPjPL9S-sdN
z)abV63D6SX?6~-^eDgy1uY5BS##J#BsJ?aUl}Pw4S)WXQII!hNL;%m??4}ENc;3WN
z7KPI4oS8`I0X6%7&9Sm1)T#oHr@aWq&b8FTld*8?9CzH`Cdu4=>VN3+FrSTmFxUu_
z6HRu?b|>X}FQwURBgmx7K0_rp4cn%}Zq$uOLeh{r-{$eiRkH=k`1X*9IVT^@NQJ|q
z67v?DS*&4Y*met6(pXITkS{M(;TxCzDDpr;Rg_xy+12+z<;ndC=e+II(K0E#n*vKL
z&XFZJmja1McR`1WW{j0$d$XGYP2~hDKTSK-k577|$rm9jbh~SFf)C^%RjT-;A5aif
z+Fr;+1>wqTN>&>6yf24>?OJ47*S}aCBcP-&-@qachXFMQ?tB?>4-UCWO=s6)PUbMK
z-JULT?*h*k)>$~(aOzgy`4xpa3xOn?90pQ2Yzfa@zN7<%LYzMe>%TGgKm{Q(-Nxv@
zCX+`N+9L-LOPv*ND7i+xi3{*)sPJc~L~r&$K>~KXD0`WoU|;NU4$7fVv2$>!l&aU+
zELpkju{F|!I=Xsr+d32KGXpMS76#>Oc!3!Fr3u=Ip0}a6Oed}eleFbQNJwA}<DUW2
zKxuRPTM|379KL5E(j`XQw{LRfi!EIEbL=4i|E4xlf3?_yECp<svy%<!?2^uUjR9M|
z#g*j}oyw!o7Oi75Ni}`HaqbmQv2SzqK{v^DWCCs{IrN%U;O}T6xaI1T#p;pM<$AVG
z@0=LH+*R5QKOR25bDJQO!$v3*2P!H+9qdo<92NekR)o~^2(ofevnq<qTJs!<{m_1&
zBn$@hHHJ#LM`P{$3yv3PtPb)wz?MA=<Bs9dR7)lF3>(i6^;P+|#(&9MV@|E-dJPsB
zLt6NjU)gdBDYA;z>9g4ASuJnK=1=eCvR`mAhnz?*7vZPSWv<h`McQP^P=yh;wzA%h
zBhwXqn?Vgtr6i7sMzWMo=weHI+xD21#3o?+CMEi3gpSQFnwc`?GlXn2<g6vQZwv1f
zx>@OU7hTW1*Tz-KG^kWLHipnptn3bboX7h|;PB_CDT?FEB{HfH@^z9)Hp>!4id!`e
zlZSl@%C9`JDnC6(txE8b)3ebvP0qk_9Ue&%;Ku1!O~mY#&aooCV9;rB3vT5D%U@;7
z>|k4%AOEOfzJLbYHOB8sXARDfSmJnrr#QKlUioiIqXD~3tz<T~GjE2XYQSXh3iW)S
zb&?Sjj%M6eZ87UdFm1l3m~oWe)F4WMYC1w(`ZDW8Q*dldC+Zw1GFi@)Beb|$9N_91
zPsq7{*cmFY&X(&e0ngJlN5^znHJh72gYfp#*&>{O#&X*)J0Bhj^OKsK(OCWE{{k*H
zrZ3sxXDQd-eoSMp%O#f`T-Ro*RMkXQ1E}*IlfzsJT;fXgVxWYsm2~zh+$Yjl5tk1h
z9d_(ynD4MzY;!mbD+wcSBwZk7zNX6CUd1**0MqL_*M*N@YcM6P&U{RCi9&ADM)8$x
zq|15HdFYs_(`a8+e`KJFnutmQ;HnmQ{cybhRQGkU%||GlaC1>hFtUa7-LwWL1LOWD
zQtvNW5}}yo83U--CmY#7ISSKbhz(Go{J3s|uN48ayx4Z7wMb)PXL*rpd8b-55K(Pz
zxqxF#GnaOW4(Lbxvu0uU#`h9ZugSTzapoe9L0tu}4vmDL>;b9|?Hf>rR}Opr68SI-
z&$x0RbtxJ3IcqyZZbPO4Tyz!-gF9dx{Hw*-gOrf7CP4ih#|4{4^9i^<S67gn2bvQn
z)<yh>KeE4u(4ZF|-JFx|I0u&N-diS@+O<-Iyy<d!*Hk-@bv;FxAUkL$3Rv|8I@!!S
z&OSF`o+DFQ@#7(~p@BZ0C`z@=jLI?xq|cuWBKg<V*$bC8yTuz@{6INT<>7unrT9Jc
z+c@pL;Z)m;PwNp42Khzt>mRO;F-H^F>kwDyZ|hy48|`l!EeH{RFw0;)lR=X{WY1$K
z7V_fQo4*g(yp?Z?%)N}W-dpTC#TzMj3^;IH1D~UDIP@`P%WOY5rFgGy3C{Z%M}{`&
ztXS6(b&X~BeNmDaXp9|Wwp1&S<OOd`Gfx>+gh`KW&gYH~z@82#R6*oQrzv7I-HVvT
zTEp8ewQQshU2ultuY8ROUGI&MPAJpM$zV>$4cVIIiL7&~+IV0!H}kGpVhs%gLV>jM
z$KlF;a$E|0oZ)k4k||}qSXxEZ2=y{OFi}-<_;}C2#42-k^<agO>&TKe#@H2y$ANh`
zdfdzjK5;gk5K(14w^K+pN8X6>`ba(QGub@}xJa+3r3>IiZYqw6{Iprwcb(QKwJXh|
z&U~V*#_@VyV&eTxz;+iN?ec1g&d%+)+}wAG;;K5Q;5UG_NULkGH9mJCOOKq_==|rV
z2VrKQT=L_@(Q+sl;Cl7uybi6n$^;_ag-S%Jm=~Eq)3)Mb{o{SpBt1)hI1z8mGc*#$
zfuG8+X8h`IjVdElk4(M#1|n#gfK+X#_Ji~6?6Ej?V}|Oh(3c-kiGkLO+E47#lw6pA
zC0t|!ZBdhJ^yQ}iwNuML=l8=Umld4&LY*cq>)8sC#E}`~W*sVzJ2oWn)c~$BlSYNG
z4hvUt9qtIp&}`H5&Ni4QIdIb!@5u*<Qf?dCUwt(qBCD$%AG*<;F0$f)ym3Kq?;hl4
z+gbwDyxVBV`eQ~^s>~%>(XIR$%RI^ziMM}5_SKlW63sDShPq+W8j@G(n|TyG5Pwp<
z#*FKd(Qb716Me>k2H37rpV?3XBeX?<4gjvVYTua|M5E<CXn`Kuqp6Izk_F}$Pd^vh
zi*#o9p%pG1)jB?|35duY#w58_ic%Fw4Moy<{B#Kj6iblFt65M3{UltlMSRNCI7WaR
ze#-i}EITcNm*_L)TqV^maP=N&MCqtYi@p?L2{(S_{>Sxc{$zocEZAMyPUSFIC8z!N
zKtiX?Bl19oW;hY4OJlOmy%#ru%@nVLgSiDmK9*TCLa=PbZ#?Ji=6E&xrq35$O1}9M
z(R`e5spLpb7R#Y0KWM*56!xw7JcheR9^}A>csmAjH_meSM6RiMyms5~o=ei(pT*dS
zX6mOe@{CyE*m{FMVd~t#If9?|tS-kagmsMGc<`>44UU=Z8>X&9of`hwRV-b92nJ=|
zx>N<WDm^H0c{nz7y(ctZwQJ+*Y!1tEv?1A!aH=E;Jkg(yMQ5>Y%)D{!zk<5dXhtcU
z&OJ>zB#`yCfnYLw2;$N_;T;Bzm#I$#UTY-xpLo4rT3Os=%ZRi>``x_zTMf4h0Y2#o
znz~-;Jce=QzSSJKVbQ<NyUFX8s}hfa&(G)Z?q;{V5D=8k;0a*v3N$JWYjxwL)A<|d
zOV+;w>DV@4G@RXCJFI!Rs>dnk%YhC!R)=mPjz0P$@3|GqX9&hOpc22zVe>3)uHGp}
z2fU9)@B3F&GUgAru4D~I(_wqA9gHwwW>cpls#c)FQ*9D@Zd(u3O@8?vS6P%Eenrap
zs2f8m2^v?fo5RFY4A>rRn6S%ipM~H|MR4_!{7V39K?%r015TkmMhW=T?otv!3zYAg
ze|rkBe|ZYR?Sa1BdTK!VO@w9x=un`0juJkLfee#P_U^WIh{NFGO&6C%w7~pDKE261
z%LJ0X<EoDn+$%QcK{FJFJz=?s4z7wiNLl;GS@dP#eB?BSGr`Ua*A#(TGaOtwZCMND
z+`55vWde_Z<klbTHy2-uXQ(s68gL8^)b5L93rt#Sv6(a->n4G3-FRvdx#4)=?p!T-
zzg;xh)N)PesAmI`t4aW%e7!<@AzVd$_6{#v_EdgnJneRxr1RtX^L(4H=BD-86mKg}
zVm6qe*uj(z9lVLXxqyq-QWQ>`BgIY0VY!%W&0s!_seb5angqJ*CE2)Qe}_HGu6+9-
z%On7{Z<sTRSBOV06OtjAt0FW5DE8eTeTIyP+R)qc0*BD_Jli+vSI4yH#1m6W{MamV
z{F*{8pA6!<-W^QSQxaqVeF3Dgg|CTI&K;9Hs$bQUN}N95++<P*{pb~yE!N*`z@%{|
zI-fJ;6bj|Ba5}nlUAvtvl@?D?rdV$#4tn@0m~icB>;eB*!3+ZG;i)g!r~bxrstm}L
zZnc>K#|dZzq<*sIt=R#;jAprLh(1T^^XsLu5__YW6$B6?m&N!C0s(i97SHSPfq=#-
zg2QS<+-A^<0by#Jcra!xyP2F5Vg2LXrjX;w52?Wwv1$))tJx^E5{*n90+LW{x-9n#
zHknBYw$p()2IWlAK$S`Yq)EUc69bA^nLr;NC}HBtakj#M!?+*)yEqkBl(wrh|FYpY
zqpKF)14<*XPP!LlPc+u7;nPZnDk~yy17WQeX8=NIvHOH%BMmnG8sq{8M%*j3x;k1@
z0~G*ehidaNih(Hd50b4Lg9*wLd9s22WrGPU#d6I2$g~*CCsPahk^6i1Oz);kimn(<
zzxm8a^JMfp55_Z1F>#!8vFJ7z*sS$Ku@tvwyd&Yx^3a$IDzW%wAJgIeC1W5U@t~IZ
z_tHGK9UADEJK=#g;*X*?!NeWHtcYN5uk(-{rz_!OrL!iw&zFeU`C~0K_<4`lGZ`vv
zU7yZQrB8*l!*PG6I2N01gF*zv!?&)J)&!O)-8^b7O9w{vd>;4Hv7MK)t%W31)EM?O
zFTRc`!&&sMOF06W{#;&gT|~;L&&OQfFN0B$+k3egGKa+6a@v{#4ulesxI?V+kr?ET
zJ9|=H91)Dl&HN}k`~y@v)uV$+*J$pzDk>~`31AcVg<O8UR26YL7t-b9pv|CyfeRax
z5Y-%W#qiw{9L%XMLNpM-)B8a*nqHF;$&)u4Vg{~1xY>(q>8-aVB9Nxbv@>3D+;*QZ
zy&2{{4?RAcig5C@B>3o+1%HfOTg1Uc_NIcp4N+$HZ9G-KWmyny%8Uh5bN-vC{%2gn
z3%OQ>czs=Ju0u<j65`({%$H{dP83zrPd!yy3c)7UW`Z?1^JwNpR@|;%*=zv=ui$l$
zd%PRZvF(Q2xacvI>t*ZlT@F6Fb@03VG{5I8+IoCW!9jptNU4LK`uF^MqZOqJ)b*2j
z9jJ5V(&n9UK$A*ee2ZxuE<5L{%xEqijDD&npH|IeTrPXa<1E!D%#;D$s|D`g$IF%?
zmrD-qv_LSuhKyeI_TN8hM&4c??q&-NyWPH8?j2@4y1@ty5+?^*3W~0Jg4O`KEC3oT
zit5-H_`c0pw!D3Yx7-@DaJMx^SzM$5bX9NnM^omxH5W>Mc!n}r$_gUOL4!jjQjpMG
zb|o<yTLo4pe{*Y#(ljZ(TFDzLWo!*1vl>|wAP=3~7arQnkxqz+AQh5puE_>%jprf(
z&f5}@u$Xli1CATYscTn4pzmH`F;Ld9Y@>P`+drCzO9$R(?l;81^%!olTk|*VJkqE(
zSDddhLu){4M`myHi~fysw!d%=j|n9m&-hY1tW+Tr>Np`*81|_wB2d!0x^ud=C<utK
zy{Z$g{NK2*Py3zNIVW@RCR40~_;v}!(5Qg!5vAtlM2}5_Y^-OVa<K2)2u&ZCyP77e
zwe~CCWq;;E;Zx`$U<!*t{yu+ZEk0wT%PI5y%`$Uzo$Q&}YH3+wUoY{yt<m5^>y~Yk
zI>EWBW-;YwBh(ivCfKzHbHbm0YBmv)j5+v&akBCW&+u4u749QQH4x{+YEe@;Y&oo#
zTD}&%0^Et1yf2;CA&L(~fwbjdViJ#{XbfY(LtCiF4yJjFLnkKI2)b<Ot#iuw=y*TP
zxj%kX?{F>B<$BqFzMwu9Ch>VGTc@n4?m&8KK+C6B2N9kb=#qrOs*N#$2RCmg*k^W`
z_j#XM3p9+YE#E^4xa^XL^yVvz#B*n9m*Ls^X{uwuX~ACHU6^dCh2VG1LZ^Cw_?9=s
zm*FH*p?GzTr>Qi4#`g2u@}-fw@(%(<FCQ*Dlz(c$CVOf|eDC(E=BKTQ8n%hL@5#m>
zmWPj_yd>i+df>zTt(FaYZ`%?Wj{<imsM9RN>oows+Hbw<sFzImHBinoE*fWSPCF{f
zw)~8!2GJ2yxRK3Msc}3OqhCb27cN1txUH4yWoO$%E^@9nXN8S5OQl+MGP0Fsl(@LZ
zgZZyTa1(%D0L7^yRVD!*D!J4|prgu41%-3iM(1}2o(yYE*ZoY3hs%Vc7gT7%Y)aCc
zt7$D`P}PonZJ+L{Yl=u!`*L~f{e@PQF#(U=7kXCqp)W6vxDpr@z=%M<V=kBV{BzUF
z!GuAe`C?8<|ED)}v~>$0?%y}duIZXIi55rEDO1-B?fD^hB>FyS4(?h@AzXjP+mfhX
zpBD5_hVa3-IiJxJ*twcg*Hf&qoZ?@<$05HF&1_?N`t-{CVc^3UU1R+r09q>$!KjZ%
zqy(%7SlOn5Jt#Y`LI$vzNS#a5g2Z_l8$rj{)CodrKFxL^jb8I|>;~><uPaWk3eQu-
zfKptRMc2=iWoc(9+x^<jRn(h<Bb%G;^+=^}>h!9CHv!L^dQEM4Nu6#+$L}2)E*VCB
z<<b|F4`v@Z!;$VMt0NHBsd7}=xr<4P&yr9x?$V!y9cD(J?4%0##CevdvX#**^j0Ue
z&=-#|zU$zf?ah6|PmbBVg^!Z9$SFFf`R8{5d_pC9`B>?HI*(&q$zAVlRO%Dv_8Atm
zd^Q*oj%4vr1iC3Z;i<zkhIK!fRv+HJa@5q-!xL<C+=mK8Ha{TQe?QbYokWS-*bUN2
z<$Z*9BAs5QN5c80oY;HG?Nh8|%9j>_m*j*H&r8KNvLJVx0#{bDnZ5A|BKV(0MFh~g
zxA8nv1^NNkc$;BxISsI@Sk6v>)-&A3_ZuOt1%qxt6P^kmb2K$xGZnE1*$q(AkbRF1
z2---^I<AX5Ycnsi?jVeALpsHZswFa8rssfiMN_^rWJHoJ(`!43&Wn7``#y($e5?;Y
z?G*SP9gho+w}_!eXlkz)R_&i9X}b=#Wq7l#Aov}c_4e54%sSvB-IqXxZn)}1_l2o$
zO_!!LQspIS$TBQ6{6D(BJD%(PeZNGJh7nTPdzTR<dlgCcCVNx%7Rk=e4B0!IWR;Pf
z>=m-f%HI0jFY25=pU?OA&w1#aPQBl+*YkOg>%Ok*wlavhrQ-!$k#G50X9^5Biay3y
z+H(sO<y%gRYv*YyxHp(85Es8+1X*Q<W{s<t{^EuWa1fY8!o9p+-#<Q#e94duZnC9*
zUM~${yk9)|;7iwIN~se#ZuMWlmmdr3JIkX*zpgon+rYv3DsVan#5hMUh(gem?}@R`
zslAG)BNlBF9Gt*2d}5$@>$1iChIAwS#$p3ok+xio3a;_kdw+?&V}SR{0^g3>`TOth
z$I{157|lpvL{xIF0_L>0+(f*0v{PoSGKl}Pq~S8LLSHhi#gp8f1BUKgOuksQ(CX2O
z!5&m6Z-~PtmswQn(l^sBE-&9=QY@0;`O#GvspUBPDR=JMbdi_QsBj@ywp_@XT&6Id
z_-pc4oFb{mp)s5;{%SV*vMqfrclHy-;LYxa?j9RMRR-BB090=gD;7+hi`c}Wn)#x^
zZz!Z+V|p+nvFAK4+-j_hQHaDqh9BWCy4UtT{M=2%J!kkGb%ErO1Ob!Si;6&77GuZ5
zsd*idIh9`aI9%40cH#BLyqoP5MRAWB{o6jEw!XoMo;6E9Y=42{!Pp%{{YR_=4Hany
zQg6wP2prSg9Q;2u_!HpzX9b{O2D0k68HQiM=QRJu1zZuSfs#2-9;`TCmmzjl821|i
z1=MSv{L}rzy-j2;<)sHTSN2C3n|%<gP>Xd~_~5kt?&+}D){W1@6ae;jHKcW-IjL)}
zNGQ1TU`J1fG^c7*ITqV4sbptmsP^psXlRS&ZHeRNJlsj%Z2im_ScGdI%fIzTA5Xs{
zUUF$Dx~8c;;asxKqjvomb|X`>RsseE##VyZTu<ku>Mc>y%wAP)KT{Kr93V8}`d8<m
z1pNYhFI!bgWm@Q3$Vp!XbkIMuT94-+K^{S8rLVI>alo%%7U6y#8DKen6#9$Bivwru
zTl{Zkov5Vjq;_LqvY$he$SeGa*`C449v$IEB<<eOiIkbyP*x9JWMuttCHUzlU}t_Q
z#ZS5a{?%7hC;EHNKlqBb`NlF(P%IjhNjMFqUYV4#Rt6CzwtY8G2Fiw|*7UE(YS;TO
zX6C&Awzcs#LvPP{;9g4zQ<?3&Wu@yr{pO9qPMNk@8UCl(OvZ9qiX|8vxxENsn6Bw?
zOjjB6%ctAS6v_6r3f|Xr&m*jpyR7>SU!sa|bf1l&+_76w=9>OqTv^TRT&=f#Hs)T3
zBW8yeM~rN&S6>ICU4^_#L>k}GO*dS2^EdB{wchPU)UXcETUR#aNPzHm@#eD?+4O#e
zF&bUg((c=x2c!$TbK!)??7u&hTP0k;TVtf&$^wOOVrw;~IfOzi1E>PT?RqP>;Y4lw
z*ah8>y`Ae6K3~$?=d9+lV)y;y>AJO~O(Myg+DZdVp)YmyHGGP5^gVJW8-uQ|b+xRn
z)?MaHfyDVE`C*5{ewjZ3OH7&-ic=%&aHteD!KiHzkCHMP8?&0IzWR^8TnU6NmE||R
z<+ta-ZM%r|P6R|_j!ycsi#!2U(W^B;O8i=6&><J34PD9OAQsK)6eiVDCG*I6VUXh*
ze5|@?yBEmg^Q`7)>zcy2KT9>~J4}z0+(<C?>FzmH<zvn@1Z->%{`5z2hCmGWvYBSt
zv)#hyWLy+V0pjK;<=?4M-2VJoUB**GgUdz_$LKc9tCO_a6RHi#%?8YuZRoAM7}*Wl
z3iA(!nrk_VjOIVE6t_OVfna;81S%GT_`!a2=4%JDv&A;sjw&S%bX5n_smu)r?5Z<m
zbk-@W*NxS(epgqrXHxyb6Uj!7@R)o`6C?n%Vv5l{6zyxT;LP~--rRcSlX~~QV{9;$
zj>2A!TgG0*+l-tXwAm-uBUyR-uT?z3mNML2-MSjTp6#Trx8;A~lL+aoIS*#~jW-ef
z{VzKR^5W8utb+PA_b1AiCPy#MeO_8{WFwv(#&?l`5U}ktiypmXefO`bYsrGxtuQ{w
z6!Sk&8#e^CAyL(29LCnw>xhrjZ;zSQiswOFwKZf!8IPP&Zn9jTkqmMc#fAd=EpTm}
zC|4uAV7k8Qvu%KCVPU(KQy}KtxfjT(eMO^aqJ$y)3H3c~0ZAxLa{O>CLK+VVeMrMF
zEh0Ied_2`^9Q$lskaeN<&}fE9GW)IiW#x01iBmvEV$^UUX!LyH&a}bNx5eSIpn+CG
zi_M*l%w1+uFHR1h3km}GPGuF=^El5ca#8&E-d{xDLbP~E)=qY}I?x0n?p#kn1`W>@
zQC)YZ31p?i6}?RLXZCrVcY<wKMkQf%z{b>Y*<$p?y~hF@dXF_P|2LPeNk!LeBt3+D
zrrfya9>+W5-I$FB3%|@cn%oRI7S-a2`CN2kYShD+H$o<sns^x1Yo6n~-f83+%ImLG
zA5+BK+Sw$ozV>T(Ho<6W<FxhS26m#a=PGX3HN9cTzWNL2V@j;ElnV>hwX9WeKg4M>
zm`C4vxUY?3Hl)S;-dLfGqa<UvuO~hNf%1#>7c5n(pJ7++ExpEHnroUUG7_4NIZwns
zS&0AUg_&B*o*G*^az0#UmTujfRowp2vPeMaf%#7J?aW^%q)s-t#Aci~DECRpUbAU>
z_bPc2^C#AH;TeZvBe(Ud;hWAqpV<QcE_MFJPXbA^ZI^}w^8}pTww}~!xFf6u`4p<G
zZU8wl1zwzG9$fT^I8NE|_wJ0;xQ%@cHFTkQ?2!WsAL-%Jz8dAi$jqa|U;C=1S~`@X
zEmI)a+>Lmt5?LTtbjNDu>(BAJ`A;v-sT3FMK$*J89xP(9IR1#8dTGE>cI||;{pMe4
z`*%0g#YH0`;(R5h_?ud_&qs!0Sxy5-cLg5+a<*PZFCaAZkuS7J`Wue6JkEVU+$fBJ
z)BPh_wTERLAhuD*1tt}!cEv+!Gri+-oo;ufl<VA^*u;K-OOx!0fis_cBaTKq*z@y7
z^kUOl0{uLNBrFDfQ@?kMoy(H;hqETeeN~r$#QU}IYDeNQ{z`g=bkemMr=y8z^6+d?
z1y!=G6|R7m$c&r_i*KoCdF)M(#1<wVn9$mY?=yEO2iVNjpN0_!C(+$q9#BMEcx@J6
zA1sk)$&xOJ*RwrI5_&H02sQG3Xc)P>$d6yCar6K6N(=PH-F%hIv}nQ{^4sV_97ZE<
z@iifh)ad`+NKwlMr}n<=zXR$eq3z|7?xYJrix?(LD*XgB%IG&u2X59K9Qg&LRyG;U
zxQi86<I)P?W9q{k!PJ*DShchnd21!43#}|Qay&i-MHp@`eHfdx1*k0Mqk&THHtuU}
zdrUl+CB@RcL*=uEoTZ<9D4>egeirz8o6*fWe$GGhDE>c&TH|zAgG-wB9%Ik2!x+nQ
zY&$dIOQPD~dRLB~tWkReo+xe4dk=^6-8)C!7rT}7*`5kY)v+@bT6mMm73ktEu^I-x
zj=?8b?pSUuRr>a^dA$+Q7kHZKC8`!uHcPHwOz2Cf<}qBpm}B^9+ekOh*LrtP#CWVG
zIy3HuvK25q2%^&bagKH-?LfI9Fl1*>Lv+U>*!5`IKpHz}V@jMmQgYaES2XA(6c_UL
zU*J%x$0a5*Wg|zf8vXxy)s~!HCGeOegg&VFyKmYKp3!~rsBf4=_kOJJOc19Ve#^hN
zZ(x3#-!&n)c>u1UQUqK<H|D38{_cSjpa))yzFRN{<MDp)Dvs6L+6rXAOZpLEvUkt6
zWq!StD~N!FxXOOD_G|d@onzbzV7H!oTzA(vgh3(at=Glt#*wZ($5*bL)C9Qmr&k^E
zb3AfjUYTiCpRL%(EeGJS+{ot;yH<WITr6bJKEbUti<AnW+=1fr<8AjRS9EQF-waGD
z{fdjMtbWx|KUPlvt)#+<_c$Gm`MgThCMArInA14vn&L@OkI6Bw;J?hr?v|Zx;hpIB
z_J@!VH$h%}`lU0fSJR9_N*ManA2H>KsH%+e6UWkel<WrusN0%sW+;|mzhs|JQy=18
z=6UZg`l#qg%j*?W+=qA>Y6(5#NRh{fjW(Q;LHHc>E`)m=xx>|d_<7MLF?kZL@p45n
zF5T7^I0GX4sU`$-J3-#_`^o!r>Hd5}%+;2AiuJ_ZZ61c7qIoJ@2tV}Z*ef~bzmkYf
zSb!Mn`Dts75_z#%CoeYF)jg`B#A&sY?p*rxrp@?zYd;GuO83liCv$)0MdP_95$0zK
z1nC`dDN<hEN_vTc4x_2h4*59$ucBV2Z@ts{ImO@Umj67!Nhwdl_3Je~a^kq{WE%YN
zm=*{nSKoKUXC~3tj2LNs@<8kPU}FN{Ocb;FUF|%sLP5B`Mo`*&%?K}WyW{A#$8kpv
zm9P;kKb<ycj}d`#n$y&K@qV-#X%p*mKeUe-35hjFd#wuF4ZgVEYg5famDHbgV)!U-
zG!7H34Q0rqLpF7*9vCJj5lIAAPrYh9xevy1)LkXYu|kw;CrZ&Lu?W-)i9iIzL`5TK
z2?<3sA8u{~=jmS=8A6n76X{#pzuoOQNbxEr<8$hx5U;a#L}qjuFodFp$(d+@_Gi}O
zb<h@O4S!O~NyTe|!E4Oj9yP|4>Fz)pw|n9M&~`HO1P-!Ir!W#0I@UW~@6-`Kch_di
zQ?CG_ba`N8`;?h&P%jSDy#D<1QW+zTNI|(xrz;2^{ET?<`8ecJtrS$Tw}1+Kds#_{
zAny%lF|K?;jq!{E=$qZOK6E!_bFy@Qd(DP$-Cw4qU5Jx}S+GHjRPpyV3luZ;om?Xa
zCNcmb+B$3?472x*64zO|+T>-oxrUIv|N4W#r(CsyfF#cH=`qAGyQI5Nnzx7`3>|5`
zY^9Ii3_MetXlGV%Es2`R%|9Cd@q)ECL$N|YpZbPX*L7Pc!&oo>12Z%R0?gog;~zgE
zgxbT8;EYpjHrkzVFmP!eJ%(fOQoh1*lU}ba>K5Zzso8LbINpLfDn5(G!}geHr%#vJ
zsK<qitLp@@N9n&ldQxy7s$a$;jrUL8fyy`&VgP8rTy9K>;sV$o*q4kX-=EXjbjo?i
zjHOEmbKLd11PW<@Zt-mv`d*1gFdFS#--8i?Z`DWTmrw9@S7);U3S+kzy_Zd$VdVa;
zR8}dP^venJ@b<-j+qEMx(g9TEi`UrS0@2}YrJFFE4?K_mJs%3LnAsYQmwn4(*)T;g
zU%!3PSj{GpX1Su6bUH5Qr3lfvvJ{};M-M$=dBkWeo{Ii)(X;e0<|{&9DAI2akJEpp
zVj5%4>E2+>=#2I9U9O`n$hk!ZYrCN0BGIPSN1<cVX_?A2oDbg|N}Ye!IaFS(yX4%x
z5irl%SrV%#+3kPDK0$Od-Y~{>efi?G-Q820ugH@hDzoX!etuq_AJqCY=*F4PcIi6l
zL06;E{jYyBV}H#o!weh--GOk|;$J^CU=+G=(aKH+#C_@$0n8poYApw9=ltz!eahqB
zBlN=snj%eIbmrncG~?yI<yiz2P~q8Vgwb^8ZmYqjH1X_GjCEpA*6mejx^~v{`0%t$
z%p5nS5}iU@H-X2P3gU%lzTKKlf06}zx^Uldsm2wKaA-~bgG1W{M6d|8_(!?B62Y6(
zk(ym%BrcRWqfno#SE>(UTNdo-Levl(W@Yv1vqPb3y6dn;iAVeRW8s6vki}Sw>H^>z
zKYYV=i^pY8j%3=hTDKX;c&Ip2;*Bj?7$&N6yho1rWfB=g0q!QmiOCo>$;7+AF|QLL
z@+#<pN6wh*{wvTtFki`N2p|lr{&nOuZqR@;a6Opzn43!euVT~v7dARIL>uf80HhiM
ziMYQXQtWAG<zfBZk^x%z5m5`&1Sg6%m^D^yx=G&~{T^K2)PhII;exfa>zclFx7^^y
z?@>L^(6r-bgdV#=^zLn`H@k;+5}o-{pDV)IKG?5q+~W8l6L%zYPbm83Z!Sk$s97V+
z*bW+#634KD>(-mD0%a*bqSgV~DE+DB!(n#4PfCe5eb)(&alwRlcpN-ywxN<0{iO#K
zy~X*VH}lug=~cgdd$l(nHpZZxMVv;x6I3O+Zi`t3rt#G=X)H0i#@@J}w-eHe_j$VS
z;m!sonK@OnO3r$oj`N}u6fjx2^M(axs}Ndl`qD%dm3{hhpi=qt!L?BxkFvC?FD%FB
zX5%7y{kPna4kYiCIL-yx+J6qZo{)A~lRr~7t(RbvE1^jHE<!LDtK=oGo)CE28_<4*
z$(Y@xxV5~^cF1U~);F8ZENg?=<|{KG?NNZV-?iXgvRJl@?hrG(@!Qbr#Os9gpCW@r
z0N;YG)MAXcHEY$eou%erBGmgOZPF6@Anw<)G1mo|FF&+bMyu-M-?s_EG^aOrG@uKp
z*N}t|-ag*k)m~|T9hUo0TNagEvV}%bJYjTa#i*UwX=B3ddw>TLZXC`RD&(q&T)cjp
zU62Idz;03GtN=de9&{3N8IQ?;)2)2<Ofv4)dpj^o(Edc`aqD!*ckys@(_U9b5XCB!
z(IEO^B^>*WxsW}ykh0M8L0A&lsNu}&D)K)$jmWnye9yakT%Tb6U7vu``-$9_;rCMy
zLc7;GILohu!Ey2u(Y_uTTcJ+*n}$qV@36Du4*b7yg`xFA$A-H-C3+UDvD^b;ipYHN
z(RaL5y+hlc;;qJb&Y!F^tKDK*UwyY@%5Y^UB_3SN=1jM4L2(!gC!~Eaky78`4qCa+
zxN~K5J>|F?(-G5tVugH*QORjGD$=cvOJ>tc+@%ae+%^LW8ZK!-e&|-wYi*wE)R{|G
z|H7hKBfPYKy#_l?ZxNR@ivD$07EG53axSG#U&kkevI&z{Rb*b);45Uwb%ie}uVe9@
z>K7<NsUL|7U6E1+z`j$=>CL(B_u;$cm#9}g&skr`ww>t*PP5FiU0Ydc@w3=`Mk>t6
zRMrN1PxS>UT?9~gS#6FKJNtJK5K7_l;VK|PJ#Ve>91mv`_6&opMjh=8w{NxFE*<3Q
z(x^Fl5n-lwU!tGs=Y6Z74E1te8{^JyxQZ%&VDz**RE1xTVf3W7+2q!bpV9sZzmdlL
zx9{0Nl&Ju|KOe&6hxs^m9}|?eV5!09FvTE~f=<M1dURbA+(72Pm0N|wEF`E<6dUID
z=_IZ@pJ*Sv(g|q<ZOz5*cGu)y)?vJcr>-=r_=V{yz)<ZjG3hT>y-v)xzsUBwMk|Rq
zw9IYN?0Zfv#GDL4w8=4lT}v>gkPU87MF-!7fh;FOsJ#R`@vn2a>;We;w!cdu-$FS<
z-gWZxt9n&-KS8K@i~zl=<+vUa*A&Bi9NCaR;*S=c=(Ot@kJnr7=NW6oLn(dtg0=_s
zgQ&)dkQ}%PRwn<}NFcSpNk40*MhYz8*J>}m^v(@hSrN4BZ@vR5l#Sug2;(4C_1ODm
z>kaQ0%+Ev#l*5-+uF08*zFfPKi0UVXbM#`rxu_9ja~cTbRKQ6q9d(Z@d~GV<R)?uD
zF;(gqM<`IJ*!Xdk!&q)l3|m*(VV#xjD!1(omD>(4yuI0r4)!lCrD4mSi=vACd@{nh
za0?<7qB#9P_WEHN<J3Kis!e<w^UfC_rW$$t&E{Z3>l%AO+4NS_!8a97lL{?|>T}*B
z=SsWh2)FKa6jWV#AS>OIA>C7GcFj7?ZoS;m3Nzvvp>hK*y*<k>%$|cR`RoTv5j|P1
zJ^+@653;bL6701=Zk%ztdklJx?5%gQdC^*VR4t(+v&lO}v&nPP$+8zjo;w1=L{DOf
zslHZK+9&J%rvwgt3`DQRn%!o5mxzUR0q3Cy<MQ(+E+oLsknis{-NychlMg>k0qiNk
zD@%i~hf%0OR})vzPrsF+JN-&rvmbODor;<cj_wKUMxl@8<kBAzsZ=N&I8iwTh(|IL
z9U85&;yRIQKl7Ky%3VPf4{orz&g;x|k;wQkmNYMji0kR|oIa7L2k+F%=bFQ4L?tiz
z>#QnzUHHuM>bT)bCpBpbCSwN#IKTSl-NAAz8jzce($X;oHVU@KaLfY;uJufm23rLF
z;8~_?G!L;>uH6Jjs0mv#dz|A=EFQng9}XF}M$^e?l$4Yd@+Aw%^AHz{Y`%NnR-TlQ
zlsRc=zB}eMbK3q|Xstq#rhe?<&W~Og)!#-HW;jyXtC1YbqhFBNk4+&2&JZcL53hB$
zYHD1A*DoUN$vcW3vo_Nt6?V3RwPe-|#c9&;=mAk80lvkO-x_D$u-8t)$WQNyhU`T0
z9H-TFs|t}G=ih^E21Yi=&!l<<ij^gLH$?7lnI9#Evl?AP_+~N*>3#<JVF=-IoQFR0
zooLnY<-)dYH6zWc;LFZK@z3~Y$K~GHQxWWcVr8Z%vadyZ|H_}gJx@iRJPTX~NPNm;
zS0=5U?=nH6Jby6rZ2z?6+)?trXmi(uV2o|Dqx?0DB>=Ky-2-8E5=+X!dJ=8Y7iW{7
zexx|_ceIg0P)&^3vGar2x~Y<}5#r&r<I?Ajcn-hBaa)7I3^D}iuaRFZH6?M`2=N{P
ztwiSVysvBCN>3*4v%~hjC$9TTob;-tj70Yg4?Pya0><#;smaKD?WQKLFQt(B$C3QB
zHBC}C0<xG0RNAt`?|Nmq3;Ag%DLsMvlME7gK(*gFlChc8C|ByYT|dc#`fX7H(Dn5_
zy#@(#P5|nB_J@;Az(9TsRjv=;xg@L*RAt6@x@0ki!!pFlAlG<%jibII!e>Xg)cS;H
z48Y|do-snuNn%Oc0|UmtNW<<p7vS95{E_x#radF<)=P4j3>b@NWhkEACt^4LP*R~)
zRA@U1yfbKnB8px|+jhi_xkyeLTqHR9ls9eXIK@;7B{xE`+-i}V>!K^RT@WAEvmY+Q
zYl(<j91*|rMdO~NI-l9>W{?DVg^FWNRKeW(`1(s?LoT;%t);oPU0D_BVKE8;d;(BS
z5JorPmU7Rz5uV|wG2ZlR0++D%kw=Z`P$6p)5;>Uf>Dr?oX4*S#h|wx!pdw5mrf!&Y
z$i1Zi#FDyc;){>zdTIAj-`Na!)%pZtf4m?NOEw31)1i$rUR2y3jD*|I%0gf+JFyu|
z>nEn4{J6we-lp|dGP{c!v{UjycPdMWoxHWN37np5lby8~vjYvHi*211zHK<8a@S4C
z;_As)Kbx8Xr<~^9`F>`o+NHwQ$iW$i>hfenY+Bd^{`sJX&{-&J2Of=Vg>Aeb*^(D)
zISfUc9pDhu6Hn!!Y@c>>1xu^E#Xu|$MuzS6sphbG7+d7`_N(0_$0&SX&3KCG@!L})
zH5P{++8(GFb3l-(=cXq+kl;s5Uw)Z1m$8AX>ZF&<2{KEKisX}q{}Ab-P+dh2C-om5
z_#j2`!F3@^+Unxu5c`k&7qgvcCbWeTC8)cH%(5?--F;Pzqrg>Cwf&v>TDED>be@P?
zt}9`eeo9CcwRF~0W(n<Z<3d@U%)+QP3v<k;J^Aah`_$?s664QSKkOFUx2tLKTCfQ#
zmR`QzZ$UrpKvR>Oq-dd$21t(52USj1U3fK><2=k17523md~Fjb@OHP$VmP6=VEpt_
z!D8vEPx<h1JzE+>RJJ(E-;E!z-4dG=&E(=-+Gf%1>B>fH{_XvqVYk(vQ3aS0e!~bc
z8nqo78+yCZxGr4;;^u!91mJduSToSJirZrp3VS3V-eDj$odema2FL4{bPB_`AFeaV
zrUlT;SO)dKLn>8#UAS<8(8vhFfaz-%?O_ziUniE%>wFF{GFGJqzS})CWiW6`hZ<to
z@lFiS!0O$r+ZayL>w0mwk}wMGpMYORq>|5W<ae|Ns7kUm)+XwGb?(NG6{8|`>T)<(
zQ2cS}dHx*pbSHtVi@s(x?R@Lxw=e+n;vecZpo-tbx-Zc88=zM8*(s{h9-<bHp^VNw
zSdJc;><LHHF)P1d%VJ{PzBxZo$=&<z+ecbum2b#MdF`M8arrX3z3J70pU2NLbb)dU
zf7)d3ZZXH9^{SX^gF%pTlIb0zUl$2olTG^yGc_E>apWmgiVfMb`i1GEW_hF)A~!$?
z`gInQ#-1t|rjG@yKW{`@c-Ysbo?&7}UYoqn99+t_KbKOOXi&EAe#4o`L+|aJ!of$`
z`&ws=NAlT36lZ7w)ZmUgZ;h~d;AOFd=pip_@79l?+2m2)|4_%hfqeq4gnWakbwa^F
z5@S*+Gmo2Bc%gD#F;7GC;<cUavPYw}dG@OlLrgq@Nt<!}n1$~>VsD#~>(dT(btd1s
zO+KJAxVO2G3GADQa=qW>+fN|A=Q=tTEuug0#g-0kkR;)@W!zjD)4cCK8}gcAX(fw{
z{pu&SlOY1Qto~E4@!>w{&sy|agSo>G1qF~6uR2OF@F{jSR02rN%l3CeD*hJr3=H0R
zoDZH~v&%JF2pT*nKi_3=#^73F0g>J07mhvCE%f0DGPb(%(Jw+!02MB&H@5|j?C@#S
zq%l?WcdlLZpPOH&vGrG;(TTs9#gT5ej#tuVK=W*PRFeJK7elSShx2UR-wIk^?gp^l
z0NH$mxf(wLTZxwvMe-?<8Ed3-Ot(vawIy`<3<zYWftA?6JMa6!4W)G^YSnZT7%sn}
z<IWko_AZljqA5ca9~USEePcBak>=4_s6J!-eWzbVFEoDbrqfnvImUz=Wyr3_Z)mu#
zlcZe4q!0NgxH2|PRQp^&f~ze_*pWT&hp{vLe@}#}kyprRengLF2%X{!PB3hXWa`Tq
z>MJskf^mPSJbpqq%nKgYd0#GLWKkKz0MuI19@s7j+qLz>ekhmQk@McpWY9~I<M*co
z<@Zv7(%0)j7NSIr<lG?ynLhMQ+S1yuu5lOw#3?Fi=R4^z6(+^|%-2bl<ydAYYyR(a
zfi(Km3R<Q0yo@}?7xTNy0n<lllv=f(^|d)LL&SDF?fUC*o2tLo&I<CPW9xt9MOzUT
zQN1eP$)$yvAUhYQMB{AMjs2CH=$K6D0%jYt-eL9;`o#W>K<l-}Nd@Je;?bpZ($igi
z`|mMd9kA5B;_f$UJYp)ASdH1_$9_48K^K;ugi?N9HaZC}<8eH>t>68QI+vdblVhE}
z34vXiMUC?_ao0;%J~8K6>9<0bW#(_dj7Z5LEE;BJXxUlFR+LM&QI@`K+?{`hBd1d^
zs)POvi-+6#lERS9cN1-CpSWO<nq|p-pqFP+jFm}$Xp-)86Oky)?*xg>)dRu}J`?px
z0h+EZ4{ECSdK*eMn=}%@mW#@Bi%aNjBcKhNJuIKQ6}kJOOT!w+X3(4@yEic^Gsddj
zWL?4=9mXyt$TWnK*w^o0!_L^1&(>TxOV*R2FR|1$O<SZ{y=#m4DuJW6q58<9hK(uq
zgL^2AWMWXM&GO1gNH-JssyC5~xkbDu8l6!3wY=59hVFCv>cr>du9o!_nP&QyZ*Lm8
z!d@x;iR?*jbl46^sL-$LCg~6>aw7Z3RUer+5F<3pXXoYK@k7YHUI`{{()(LWRpvv$
z0qnH|TENDK9BFsN6$N}l#UZ5M7Ps}q&0X;Xe=3G@V5|HXC`kTM`7yPNR}C>kqki<}
zJ|LJS@+wG(4}eI84W!Z}03rq*-M?i_LWM4XOiP|ke(nSeJfJY+8Mb_I!|PcyNlZL?
zVTe#1W+XH}ZPS3DaNxG}<;*?5tc6K296?MhM{IPF9jp`y403gTevz2_(jP^`=<B_z
zt0NTovz}i}Wl-l2(H9D)SAQ%V&dh;|&f{*;;i+t3XE5_+v2D@Z_Sd#UZQD1ig_SR(
z>b6HtmpBZ+@|USmUWHLw$Ot{Sd*$E=yC5Y_zV9hFuJ4j=z~T|yEVYZ&YmG<+7Njf?
zwqBZBR4oj-Fzr3bS_Ic%s*6rQ{44aPP{Fux`bebFSGIB9bd8XX@_Y1DH`KdS;uX>2
zcM4}yz7>@FHr%7~k4&sZ^F!5tOzn6l@{O=};GxK@Ec4ff@bz%#@i!)mM$7__uT8gw
z#9B7YSQ1%DA624dTKiV`xW!Eh4;9Q3IF6egvdGz6l;T)+Ielv>kr3xySi4~x5vt}U
z9i61Eal`7dd*w?tH?$O;(f7`Q?ITWVwrUKspA+fXhFpx!ohd$zLKuC@P0NLT-gCia
z`bylL#@bHqxt8A6cUAAPraQvMHWh={rrV`Dr8@~7Vy;$roZ2!&yYS}kbpf6?;K&G?
zJa}_OcXitWk3k{)9y2^Ce+2#Bo^tzjXy^DNGu;qqP_AX4@W4yT)p0h?E<=MyhfnDW
z&lm;>XkmF*8=>RT?yPSex1}|qn+%xd8Nt9z4k*KQy-UdWvy{}IKo`tp5!>De_PX}&
zYG_cE-^ZnX_!bl<(r~5>0Vjy*Wh*50rzx>nP-vEJ1SEoew&^Usm!-1pPweIgP}dFS
z7J@X2UZCgL#m*mf=QK)1;MDsXPBpE9oD@(6N}OK<-wYL_&ob(r=VbLJv2^K-1`tyg
zo*SL#(RC?NUW_d+tqqi@+cotvj7U&u#$>3T{ZA)tA4-(#w^!0URgRp*11J@u7>*04
z=f99vC?O7)1Lgz9w8C);V+RKmitp6wJD$MZq9Fob5Fv=Zp{QhN=dXOt`k~0nClr0h
zD(#B=ONy+k5AMZNOU66~WqAhZ(nYi0x7L6D49<Iz-}*;s7WMo^%tUc8P2!zphE@5T
zmhamCBn9`7Z}+W;^|-p)Ku&3Rbg+w%$r8C1Mx9m=0_=S^#u&EP#i`n)#M5Wa8eS5p
zZ}?L1)6w$2WNy6+SU5_zE{4=NZJTGQl^2S|Z=;Ew1E)WKyV8zLsPa;8zOJmMdGzLI
zK`Y@M%c-}(R*?o_^IWGG$?GDpJb45Tk!sr|+ZdQ@N*k#Wi&G0D)p2HS8=YeHwNldB
z2E>bGETLh*IxAGwgUwFz9vR2BocQQZX=`E5)d}B>sdz%U1e714YZc&481HpT9gKEJ
zzg`>R4^BOOc90Y+4OO4<jo<-|ILp@VWsY0}O`ki`Zux(^_dMs%z?~c537L_+j{T#q
ze&+<6VC8}X%esT&)%0`M`;busyjR}uuYi3-SJ1)a#02FtC3sfz@lMN$J3BjAgf>sS
zKB2HiV`7#Jm|*$G3~(cKda4zE#(1F?d(;8Up$H~b!(T^-^(LzMPXwB+@bj3QxUxaB
zrw2g8q~ryPOSA}(s#|tf>93H&PkQTCh-lyqqeQgLti@0($hiW$q;SypVo>P`pau*P
z<s-#XLaA9EexR7APS$V7Vtp`$J+wcYw=sOAsXp82dB(RDPfWA2CY;qE5IaKT*sc5@
zFJK>36dmgJh_pNJ^L7aKLO!0cI`Qs)8VIHEmjaR2-_->vIWkOIOxhB$h20sRPmb?}
zH~Q0qiE|{*UpJqQY+8@FBc4YwT(^FXX95@G$t_8C41ov?CED{Sggzg`UJQ2@;A*eF
z9tw{)+-6@T`DgdbZ}J<qf5B&|c*!$+)@0~~PsL7}2rfy)7X~BwIKIM%{z`rPF@~6~
z7s1#w09PDYF7Z4UwX3Tu1C(mk8*|dC!<*&-Rl2=7%H7<<ohImoHyRjB!4Hp&{K_f!
z3lBbO3gB0m#`BopnznUl7W`v@{JTXZ^~)QOsXZltzkK%i-?;OGV*~?Mc;~s_T}{UE
z{M~j_;nl2Qu-+RyaU{e&H$w$|5t&0H>(CQxYj!+38BZ_)y5HQ~ESfEy!0UpTJb1MZ
zO9O9`n|5#PEbwlNge0-h^-zw^7oOd?A$pm^?0SoA-N4_V7(Xnp(OpscMuw_<x-Kvf
z`A?)t$Zmkn)}ZE-(~BC7kj@KLiFi?!6)=)`k<Yjz@D`Zs8{m{<*w+RYLP&@mDm9aU
z5RisLB@Pf;xEwDXo$sX^T>Q|ErT1&P#ewW9aqv;K^X?qtLk^9VNkqXgR;EWzc=(l}
z0-bY*K$F6;z!#Oz(}=TYIulLWbe_^|0}aKU;(HM3!YIAX+(`X1_v@67|M4{4v8dl(
z(OJDY`;bTgqlEtDPoG=tClB>0DJ&%6$|0XQ8E*tjBg1U+ie3kyV7=F*Kael?`~eE&
z^i+tkU5F&x1fFjQ@9q??`2G8jOBmQX;<&|FDu1H5Yz-Q;m<Fv|RPTNc=VT6Qaa9ve
zA~gX>I6Nw9jv_EyrGy@Wr8rK{u6tJ=Js32;y!e`*bP6L1Pq#O3BpAo(&>Iw6*Ve4+
zPW^2Z!cU5YI`#Oar6#nme|BX&4TUT5s7qw{_my}ng&+Wfo2mq=WKB41f*8j&!0S^^
zj{%3uF^+}5Hwiv_%$DKixHpLmjAi79Z}7R^LwcXy8Daetj6y_qcI;~toEl-DO8~}}
zw{G1s)*oI62RkCVYpCwQq)+66<%_?@Z7406_Y|&D=<4%b@_nF<^>@)v`W@@^Ah$xv
z!u&70F=AZI%gUDuM2k*-M?8{Erra5RpKo-^-!Vqv-xzcA!4rr;J^5Nfy(-|~lZJSV
z3~jJ>cXj#jm;hO!BOTOmb%xL+@a{g+i^4ty)}5Kp?({B$S=9Vw5MQ6!QJmdqB821l
zh=Nvhfe3ZV&P(W?`0l>~-9nCd*CL%BN3)7ZZ{-ZqI+flC=T;=9SNvg4ubGA-PpeAz
zJyB-lMJ>kf>xJBUelO~Lt@Y*n3*(LJKYA#nRbqKLzjRHt?WU{?IaN1*U3mHF<oN4e
z0CYhwz^0b=<ki)Nom_`h2#<d<1vQ2<)C)bS5(Eh<H$H=}R1xp4C>u1XVxXg5qx<3l
zU%i!PEHmIft}f5^H>(Z!LO&)Jhe{YOlJKgP1*nTcolEZfAEqA1S8)wJ-`-bNFjriQ
z&0&xm-@m}?iccDAb9rhxq@UXo0lvpy<vt+W3@MT4UYsn6K(|6%x0}rIF8_OBqbP3z
zGyEF6VX#y#%-FgC@pM^xrGMcDS1{MTL_5dt?&l0a;xalIs4f;m>d&Kj2(sJ{_n^*w
zm{)W3!JM!n084jJ1ZU|aV*dM2{weI>ss|V6x?i5%-aNde{MIMmrzP-6?-qX0KL0ld
zqa83kG{)=vz550}DCYL*->(5R=yzZN@8Lgz1wN-<%N56&Xai^ChQ`KjXv>k$S-CUe
zpOuI)Tx=wy>AIWRsm~bc&n}<<HSau_sP|6yC5v62*u)S92h_j9=s%y*ljXE>cmvx7
zubUG1((TcAYYWrg?f5aJz6`C>Sw%xt#=$u_-cCS@MG7w)4W0eNpCvzd$B*(|S4t*W
zIXoN})H=R?kDh=RL{FjK9)U+oADD9s(@4dq9PF+$6kSXJ!wC<CcWU#p@n}K-<!&_F
z(NlDxD&L^Cto6kBz||N)C<MxoE+(BwY!AkY`$<H<FU`NnQVpe$)(@lSowDzbo*YyE
zMtTb2>FV+^hi=iUnMo?5=3;c8RT3;;d`O*%oY74+>%A0mynqR=B0bzg8FvrHKlc#p
z_dR_0ANLRpkmXXv@p@Hmv;;SB>vzL|R}j!<x!kRqUxzGDMx*Udg-|zrcsh>4VKMq9
zG&EFh*NV0U3~+HUmr+6>ETige{N?a{5(37h-s)@%4;AZ`IVHKTMNm1FOava{={0LJ
znhRZ$ZvykwTWFNWpUa&e{5}|hi#rK^pM#Sbhiyk+n<gywh$l2g-rI936rkrOLuk$_
z#m2)EVQiUb=Yz3emR=<rNZlSn1)mJY;SRAW3*dYt1K&yB?2)c0oL$1@(W+Pt`*E~{
z;4lDbNeW2c0lEFrTLm**4@P;$rjyd+pT`Y9{Cx4ejMhK)sZ3Prg-F`V{Rv-R7G_Ay
z6ZsFrz%I@21Z#v{7LXQcyXH=o5S>DGKFKE*{xg<9v1-IjJtoQFqW}v!5nRcQO7TcY
zq@cs7zA_XnqGCM%HBl(k{+Kq&CgGqK`BKIG3aUsFslOITZsL$-A)u*DkBYiVuUTEW
zkzUSqi4f`=bjFyIC2{|LUUziLx75L*x46jKLU~jRg8jOYs5P0$Gj?B$;ur1kRT<Ku
z<d(VaOqtk60VBy2YQL|+M>9Cv;|jn3AouUs$YjYjn*zYFKP?C!y7SLZ=X%nmNVM7^
zLCgB$P-TGqo?MR7E%65r5c-(Jp2VX^_<a_Gg;c=Ef2j233rYxmQ(;)*>r%)jf|qUn
zBfmj4aSF8(qX~uPOP(!{2&+Yq@9RKY%-E@F-42B%DG}^#J$CCvwS;q=Y<m}aU$ry7
zl0AZ*C()?C3CQl`kiy^IPbT?&pnp;w7iQH=F|9BSyTKBEY?G*p{&b+0T*U7yv{<G_
zQrRIa)jJ;G2A-m4ONp%R$iHR|4!(66kFoys==xm)eIz}tJXi0LgND|9AOCi9?-GuF
zbK=>{^>LB0$6?lr!UbGG^aLU+LWXJ9-oGlIRwwuag?+yamHR=W*WKS)^2z1jx9$AD
zx9w-xM~1vg!IjGOz=V>9-YmtuN6;t+*UtJ%3@d^`z`oL6Hx3kPkA?mx44gWReOh^u
z(!cP1CF9f31r_YObafQ;Xvzz+=8wyI4rB<d(gNRls=S_Bz86?%7{K;=^YzQARTaYY
zLY_aIpy$X!B67h$UC47Q#F8Uq<VO>{DsimM<MS$ol9`#=^H$)DN{wq(0+XSl|EpK2
zh~N>n8kAt((S_$smVY)Dtn5i?ubkwUe~;p6tecYjTTfCq_!~SjFDfp-ZH``luv9SM
z+x@+IUTnVhBVXZL@xfBH_WN^!B?Zl!)5-EM=l{(0D(;^D+0FSZx=UgEb${GVNSkVT
zPD-^?D4!^fU$lZ4^tykNEI#@TUgs#pq|e~Xn}V-?2J-mA?NPU0e6U^mVTArwJ_WN7
zF}IeMmPQQVPhoE_p7mgqB7XlL<>GN)k{|TE%l~!RQ*nIm=BnsT!Bm>2iQ9V85h@i)
zAJ(F#Zg1Q(Yu0-`!SH3cm`XjMVb)mZyYorxf>?p9pX0>-<IBqb9T6NrRT%<>`k$&&
z1O)<BBBa>v4>k*orNW2@=YxP=*j(6ZwmZyEdA<-a@kP)As3^S<DKohKCWTT-$bgGc
zCU7s0k~Xr5QI%b_gsA>IJDfWG0#$bvmmq=A#p}ms{jH4oyqgkRPgC*CA2V1dTHaH!
znLcfdQK-Ax>%~-In7klGR~@=QALPB|oLpId=Xb<4ga|Bwd-1~Wllz_P_sNA(@joz=
zJHLv`wN<ZQ(4cpM`0CKO08lY@mpyCHWJhUkE@fRY^2mV+sdOZ>x*;$kvd}AR7DV%^
z_p-9ueIenzdFyxke}h3dsxG!%$pT&R+b1zyQ@orMZ8DCdUAXeiW_^(Fpfx7jq{1w(
z<gqP3m&65vE=wg5o>jb#SF*K4{j_AmOm<45_Kh;98cz10Jr9NhE+|a<=hy`Pj%jE9
zf>o|#P}0zJLvl6(5m0C&BmVweDnJn8i5LmaYY(y>CwgdfJ|85P3@!ox1jqT*NbB7%
z(QMv8R7g|(%uE4`P(p;ce?O={e-Hf95%sRERQSCIgJdnCXc|X8Sx8$c`eRkCg>ts<
z4Niv;zUDKs)L9l~^v}CL0~@XcpG2Gh#OsQdF8t3;+W*~@U_<8nb9{tQA?Nzk5n7_(
zJL0zaaRm|JD0$idP9@$5&DH(!)f?A5G}|H9fjT^~7;tZO1(*FT1O;69t2X|p`uY9C
zbK=vfiVPv7;&g@+x2viiMq}&J2@$kRcCTkqMUE#kHicGcUi=cjoT^4wEfW#hG3_`y
z8L{+xx!&{V_z>-in@CB1$Iv%4zi%j%;(u-^>30EAD0PUqZBqb?b-ekr`g^cfUe#8N
zT`5IB!1W$@ul~mBPCi!#)?>dyebI!~pY*9RZ;CyYEe8aWYw7j4$!|qj-e8=;@y!dL
z-c?(cAf)cBxbW`xk>dA<H?N`_d<@jU>-cigF=tbF{+rFPev)Dtc`#lgD1SC7dim@q
z0kj$Ez+W5Y9u7e|_D_DI|9e2$(VIqd2TbL{OU4!Ohlp_*N}2@IB~@+1H0Fd#-VG=C
zg%%QAc__;^9C2<%sWeeo2ss)spog+(w9svTsf^uf=3(#Yd#m-hJt+@xFAqbtJr5=H
zS`(XN2$<Z`tG&O8M=$5&hsPia(ArHE4#w8Fdk&!yjLL#WMn4j|fAnUH!B!MY>*WgD
zr6j~Eq$sG7#O=+*#02}&P0zEZT_ulz8`WjSRh`H60qa+4O3Gs(p3s6TaF^!lL<1tk
z=^~jGQ@O@rd<CiEdAq9@-c=ZaPYCaBNH`e+uqY`1b=>Mu5xd?4GNDV#P2=b9SZigZ
zL7P&w`uX|>bmR-nV%pl|n~Q_8|Nl1S6lwqtAX}Zq8RA>_sJ68}cjNVISt!0~bF2)d
zCp-`%rVzxthU%q#a*KG8W>EkqKLD<nv1l1Mot~4=lxfgmJXoCGS)C+yIMR@Nrxs1@
zx}#;>op!M|L%MEEpVhPqm^BE<&C$pQe&`53%dup8mDp+V7OW|V*O#sNb;KR*5T7)N
zb)giO%V~?T>emsFQ_~Y*XecIGLIO1;sLzt1p@13vQd1k7ge=iZrSbjc3dCw~g^fO*
zZ^f>XM#LEBxGehiSB}(2`E{^<8G1N>gl7$?XK1|=WKH6#eB*>)R>8r+{9w6A<C=W&
zweCz^d$r5Hpx%IMkPeJ0dNO5c+V>Dl5<FQXY63bLb(24}xsie;rk+kmwWKd^{RR8X
zG7GAy|GurK&~@)aAJCeUFOJU>ojc1;>7e$l1ByJZ5u%}!g?#9;NV8&~1>VV`AiY#r
zI&eQn{1#@ay90|?bm^`eNcVwR2Q4qJMl?|$6yPs6*Y4iEgTGL9u+|EGF;uOG`E!<2
zO(Dqsm{zlwj%OA_0=KV~^c3ibA-1_ObmVKo9rPl$*};E33u+W(7CX8DxJmB(XZh@G
zK-Ogda7@*_5rr*mRAN9i_VCv@X_K}B$RpE&_>Kn7sXlyop$eXJPnJ9bNvtd(L;?}~
zrT>itbJzp<4xBbWLTK@BF}%~ZP<-V0q3e2C#490kNCWnbUF4q5kPg>M`+oiL0)Ssq
zz;R*~Y(8QI&Uz})Ni%L&!lEDJ(aQ3mb~*ukyLxFUNMSrbMz~pBQ!WTZbS%BRaM~Sw
zb{_{3^B6+i?GXxzfmM&Znk2z#`HmGHo05_3N9Y*Pv^y+DeF>qN_eNF?nfdvc93!Xa
zVKH7ds`POnWW@Q-*$no+UnN+ogb&>7#3wYJAA%9^+DyAiDxri81&pFUa(Qw5`Z4p-
z{md02B1yY37fx`RehoZq9pCi97A)OpDz9UW)L+R3E{ZMoNm#_V6Y{##p_V&BT88%A
zu_TBTisA^L;KMBvw}TM4<S9c>k<~uX0cG8$fsE-5fcNX9_@@4GM^91)HO0Pihi5(#
z)fR8W7wM3M@rc7BQypJg@(q`C(Z#K&@-?n5k`<=kv4W)d4vU@VpDp&~UWdA>j)Fyo
z`M6%Br}?Wa;D0WJZFyl5fIbz&h9YC=5Rg%afb3ndEYemhJP$iG0fnCf$p-&hw<O&P
z)9>DCp06?O$Vkco5MxB5nYfUPswd|m0C(l<|1237g+@!yGqg&Ni*g*ob@tF47{bgo
z(<I21pa}*y@XgH33S8#hdHdsPEfuau&Qs;)k8L_|1Vh7K6c@8M-VN~cOM(k2amdx@
zn{aX6wP8O(0k(0GAOS%|-|h(71f;9k=-~VHetilz{uew*0r)}@MdULGRee!G;IHtA
zhT`k%D|4WYDVd=#t?6JoS{Yra-=1Y`#|rHv&Ai_*>`!V#r~2Jc9Cth?KffXS2w$%`
z5i?s|DiIAW&MAMQo{`IWBC1t6_32BMrGBKre~+s2=Ipj4fvM4Jkz-`_IlnG~=HxGQ
zbcn!SiQFM0#4iVW$1AwF$;OvGN&UH*fq(|7EU4|Cgf!7pbOYF=Uh9wRA*8c{$Rb$T
z3xSX#3+AVEFwY77IR~mr>%%=8AsevImcS%nW|zAi{BjXTcQs1W?a*d##qC%2UFWU%
zO?bc=L$!BgPX<#^_y5xsV&oGr9O0pQGg^}uI7#skL;|W|7PBjb`YZiRvjzmA!B*Vd
z|6RbGfg9YQc)fHn>D9X$N!6|frO{NjtVqWAbN)rQ)yjopy1Z1CFZdUKmu%f<{>Xup
zroxE1Axgy-ECWo08a~5z2wG8uQIPeDO~fMyW*azVc@Gbqy{kI&y%PYl_zJQ8wSK!5
z@g(TabBsFX&cZNd@BCTw16U~t+Z(MXKVKYqgo}eS2Wp5k*y)4i6cg4BjOO{G4&G$=
zpSwZ(K4scY!57I0c3^2dSI=^zDc2lsU6;>zEMRjDpoO$E=Po^lyehvm9z%D0I)K{s
zPpw9Rx^w0%!~0jRT-(W*ndg69OM&6jk;3*#`CgO@&E20O;Xm*9d6dFaCW})Wnt9n6
z`2!UA>7NGk#2Y^pM5pS!KV;jp&SIxZCTBt~u3ftH(HS{VACW;(KvAK}8YD@iBX1}9
z1TNCzoQzT6Sr2&*X&yMdo5yRpa<1}ys{tEn{X4hWjeC3$CB_IV;UKK$6xFEu7<dQ{
zj51L?RT>ZkAHo?Zq5RfG-<bCcniX-4pT#XtVdAu&2^FQI2#R?TaHC($(uzaxpZ(*W
zXuws0I<JeeB`;0Vj)wx%f1#kRSioO@nR#_QXNwtV+XY?RckT>64NB5<zG~hiECBe~
zN6WXgsLGf4MZ!)>fq(yrrG*;clXn#ZGaqO9y(q?@x%7L#ya48^Mafpx6b^$Q=;9gj
z&4z5hLm-wuQg40pD1724WSL2I$;x(b!$|w`EtTdhQVDZAn9ObfTcjm2s}Z6%rif}5
z9@~9tRAoZlM8PLfj1Nt_Qhb;12RMeSR@gH2=4on{<^DQcaod>iXZaC<QQT=R(1+}Z
z1p10%oM_x#8$<ZYS*1_g5xW!HY!KA_(>-5CfkHP8@CLymeXz~QfUH=*8UQ<!BoSSF
zMh0!Bvy4pWl#C_R0y2!>0S`1R4TEm5S^eFp8!J1*zLAfd0Dkt)?hA^FecjVUn8`qg
zVrnSZ!cEoeg)#~AI{p9NtM};Ei}4wRjyGj0HI>V;hZ6iOy*YB!i*VXwZ`X=jWndns
z39Pfn&xpL#q(2Z2e##ITUsyDcQ)!mumtu+FhNaaacc2b5OJ)-*lSc5lxt1+KkSR9k
zAVvnIPQ4Rf%`LTq_+fci#66T}8Kpfvaxr&pvP|)bVX`U?H9!)eZx7tQ5!2XS`WXK?
zs<CQ&R00YtoYHCak2$0ZaD=*so^jnFzFg$%?;l3q{*$fHo7nOGwMaWY$NnImt*bDS
zkSb~dfQ*@^v6Jzw&XYc5nbpQUpT^e3NAdR_fH!(bUwD5B@Vt<*ff4at$;=qxZ501N
zZ5<t+AIr%4C-ZM}8d6(b3Z<sX$YglxmTv;lYLQq~{Ufr0MAYpLY}cJ#9jJ~|_P$;E
zHQgL0mWR<@3YWSISL$A(YEXXxG}|Ba2J9g|wnVd~Tldf}22o&E^zTP%x+X#%E%$Ef
zaME<ylt&(lnBW@z#Z{HthF?GGNChuELzmCZ4>-6GxuWbECnmn8Kg(kgGEz}F2)#uc
zj?nSG&;0w}p`H)tw9r6Yfs7@9kdPw9yX(nCTu6&B5D}P?j<--@@b_pb*EV2A3@}0U
zH`Ti{vGvTpuQQ)~@?f`JRGQ~wYH_CNAZxM=Wghx_I|zctxc{VidquAR-M{X#=!b2F
z&a5K49P`XyypLZhGGgBvK)M`KO9Z}*DyathHcHQOa6vQn7DXkpJzppqM9jofAx+e_
z^blVUxchbL!j#(D1vvhUTgxL77L}`KU3RA<>(?W~u=7+Iuf_1X+$|tr;aQFRMoqFC
zeFjs1V1a;*HB{It8Vs9xpi&MG4HX2*SvpAi4SCrnj|S%XfkHvmAqta^pb)ZP$ea2d
zNoC;A_CTAelV7*94KOnD4U|+<iFykFeM7nEnV4R|brOWcd<(EB$wAK!hozwsDlu$i
z7ev8o6&GwMd2q!JINKx@Z$5bxK@=A^p`KOdf%V4W#12!~Bl-i?u<2lgwJ@Z$Apao)
zH1{6ouh72L+iJ2it^(nR7P1oX-rm~mL~;;s64-_*lo-SD^$~G2o_}$fH~5W5#$fF&
zspDkG`d2axLp?fJmwNE}ox&@(al}ALy{z1LllS1K(2tRdvX}>ZSPdkGXI=xI&_G<U
zQ}=d_k5|0!;8UO*Mjdm=ng1_(F8QP_Wsu#~@&kb{GKUIA=^W?L!Yo?f^5e*mQuL%P
z{)j7o{2IR<zec=681`iVAd?kW5amq~WbbrkjoCCEOvCUQKYW!K)fx!!c{-qj?Q~uS
zH{KW6<KGe5ix2E1l+x}HI$-pxdgU8x$PBuDcX{9_zZ4|b(_AE51dpn8AY;%L$#*PW
z(H*ID2vaKll=vOGmDHgG+OWE{g2+-3jQje9`j9x)YO|;@hN}W>n9oyw%Bezo6~Ab_
z-b!orI~2o|4oYFIzJW052=#Qik=kfHRANE^ZJx-$Ly(1~78KTDriXPe5TOh7K{lfD
z#x~A@i6AwPKbZdO#Gg<x{z@&>7&*#CqL#8*3TD7fsDDS(POb2%$bjkSrKjDs+oo4v
zUB%`i*oCQuBXr=Ynql@<iW)`Po$$fwif(WN!hNgQ@alh~zvO<Wgq8PNmzMBM_!F4f
z-&+tIiszrSCBg`e2&HK1;D#>Th^)A0Q5;*el;Ut(l-PSx{f}l*E^!VN8_90x3zNTr
z*YH52jLSJjr3);4u5#iVJd9y~kQ*~!2|EtDV4JqQP-^ol-<hsFO}>daW>~ixsn+l_
zr0P+@&BbVg_|9CN$m4Z7q3C8Xg8Ohtc*~OZ{uX+}sQ(7?oHMnbMaA5d%2O{D5fj7p
zHqq6>^?zf3?}&0M3f>jFTb5(b_?@dZh95l&!J|nUx|$52s1Pp=*kJo?UV?(L>I)Az
z8)PXdrL<@Xys}g@qdcSMcMMu){sme-Kv5y7->th`)43nJb0%l#obl1uj%C@CqfBxj
zT*LoeGv}xGBtIoQ8396<|87|Mb+Mk)O1Q*{B|J)Pj_&3`K?Ydg@g(AKEl*GuA4u74
z>L0Zhiv@qK2BqE+PM{s6YjT9xGVk_lKfyfG?O@egj2$loU99X@q_jjZ$CHnzw1ebq
zsY9+d{!kOvnf~ffVYjmNeOA5k5*WXT8xQ1@<*HZoRXEh-L0!w}fCg$YAN}i()+fJ4
zGWKxW|9m@hRroCa=K?zhTYN2!0z2+4O9N_n#t2t|K_tIG;tgKL@gr&o1V8Lf;g->%
z0Q-t=Q&L#|bBvVB0e|ifQcijL2(Rv~zzb(%!o$~IQVqj|P#K2T;yMnK*ndA=C{(^O
z@~+PY=Iuje7A!75`zJo_GWt0!mGp1;4d??Pc{|(?{lAYO|3{HiNjYv7XW*XCSSlcR
zlU^-DUybS0v&TvN?IU2O*f8795Z|%%1i4D$Af>mi&SmK&U0^u!bjW4N`9iA99HinC
zD|g;y1(Hv%`sXZkF^E2+K}a05Be9K#hE)B0bb4P}Z+S+^d|cyb!$514LZMJ_gGT?r
ze$2>x_5N~lg6p2IQcp?*$|tE@%_0Y93nq=q0aK2IwaUO7q8(%PC~U--c@DrfI4~1k
zD<n8MS!7R@B$&iV7pEp+aocvRylB=*|1^94Ur>-5;~@;@dtVznJ6BS1?1Abb<62Cx
zj**q=PySQ@nhM?rsxSOVosD<;^3`o;W9X(aJgdJD(tjJto8nLEW=484#ggPIhc>UM
zJigg(*qcvxE>B6TC_D-sX&_L;0T%o+2|MOjGGUE)43P`OgAcalNw7d2U-?=6g-*5?
z0RDD?gk|boYO*}`B_}n6aaAFS?^Q7SHYJ79E`A8ZDb{%8L&=n+cfv}(K^#;`4?J#_
ztXXOV-nf%Ok{wAeFaE`nr2WgwD#ik<)A4l{HHV^=`mpW7rYzm25K@99SrE)Qyf+bE
z2rP@1%yw!CqY2v3amL3TvFTUGG1<Dd36?Js9t`b%%yqCsC<A_1mPp&0j+P>H8mUh`
z5jRw`?)%go-kRq?a((;Cr4XSp^(sesStb1xsqzb$SqB#rXv;n|BIpZH_)=!`+v*L^
zPdQo*NTo&vuiSF2`ayNcE)$uCY^*ktn2i2XD}^so?7VBK$FY59%*pw(sNf0G74TO*
zOL^LLeUejPrJf{ehX6N6X^RF)oI7>tc0Y#8@~(6YbB|>%z)Nd?b4T`SV6cci?31sN
zZQ>b%`Ouk@?cRTNz|gjsQhqIPA~zc<R5gC4zd@LFJ$CSOpHLB<eZ%>7n@<@?V?&w@
z?5Eb<*D-7cmykdeLsanfQ<D{e8=CTsnE*7#F_&$ksv}r;E67mdev#;II1tt5wOA=?
zwZ<=C1_JoU>>I^(f!IG<TU+~^83;QSc7&c?!UG^lj^wfqg4}H`kHiALI$<ug<SE2f
zxYNW<7$>2ocH<Qxn->>qQkQBEbc9qvVo5h`s~k6z09*K2;WR&#MY`~kK!bGaUD|6d
zU1H1?AV#LEc=mJNx^;N&qA}WX)wae^p`L$?Z@`*=U?6p1e4U%~FUyJ9fVQ6fBblW+
zTYVT(&%ajG2oZjE5WoU84dO!eV1V+xNt3ND7X&2Q`9yExH7t5%qp-pJIUh|EI7et!
zRm#tsJcM(n@;I{<HC^O4H=7T8a#bUdt&+LSb@ZCYHAyWzvp)@b7^)JH=J7;-(ae{R
zHd^xFQwFr5S-o73?l^Uvm-Ay6z;7JX-%bMlYZ<-v5f%q55R#9@jRqu60MG1yk+>#Q
zayrk%va8v)?c(efL+FHPe;lDmDFJ-K3YkVhrdPn!%qUHs@f9z5%OFeHG~sBRh^>4o
zc~+#kf)C&C=Q^rI5T~dx*J21lO$&YgfUbIN`9&VI6pw%trpWfd0V+hwt@HH(JzXH@
zonNk4p~g2bqT1rG_qdT7<=1*G8q>c;$)|QwPNFUR|B?3AVOek8*03T<DJ3BtN_R<j
zcY`3^At2o#NF$|$bazQhw{&+4(%ndZ>jr(E{harl^S$5o{j>ks`?@yw`mHtRm}8DP
zrr@Q;T#a%c^$G(Zs&k_YU`s)E7X~arq>qD{MF-HIf=~adSkKIXeGhDt&j3)nGloZW
zwfI!31GW(uY7arGTELF->>U19n{5NTk^+4lace@kX`RVDPCLz;2Aa!JgI58Z$T55!
z<q4+1D1=@OB>RRsylP-o`*sRyLKG%N$!0C9Y-qKscZYx+SB)>V^EBt4P$~@f0t5x5
zw>tXIjNt`Da`N+a&dTNoF!&gT2de|SS|P7O2YNS6tj;QJG*5qyR+y`v4<G1*wDDpc
zNL2%(R)Iga_0dX&+fpD|#)&~pqnCsk!F<KVDpITr>5%`|hjb?nrLN`ww8*_@7Jedo
ziJ=-Y2pE2EdFWm<__IM1mpItyKKHgjRtWYN=OkgiIQ`U`hWfHAfUrl5GmY_TRtM}m
z=4l5o29(MpAU3`#e!~-0&**V|qME0a`&qSUjRaw;ybar?3%ErpfI4<Xa_nWWc%7g~
z&}z%G+_9rw9Z+w7{@u%|?cA5fgh;cV2)@nhcawz9$cL7S4X?3dMbKov2=;Ry^)lI%
z?WPB4@6J|l<QF##hx7s)8Fjq@RhK|Kp?xOt`V7p|&@K0ijqEm}-`i4vuSy3!t(nc{
zz~saOraFK;&!4hPZtX-8Zb6VLt>)<M!e<t96}^WVuU-w6N&Kf!e*YsMq;>~J=y5Dl
z^<-4T=O07kC=;phIqbwPQjP&3WLDW~ua=W}`cSa!v#=m&%NiI^P*AiTRG(wg;%2KK
zBcN9&C5i%RRz_guJ*W52f0n}vm68X?@_o&;H~!NW;}Zwzn&cVS>*s!|b^#~|B^={a
z<Y2r{8KASuCWYsUriUasFaD|pi$Tw4nY*(#X}ThZ#v}Bb<DM45fQp#~gCGWmY35?9
z{|JCY+DK(No*03>Ks%NmI{g?y#7T2<$V&x8Jbe50!RC&4U|u*Cp4}%=Wr;pS1eYj*
z+f`-c(Tl2`Vm7cGZay7YyqG+b?Ou~he2joGO5Gaz(#b82*=b*AX+K8Y6yVyLg7QtQ
zF5^8DH#+x&cFf8Ef5;|V-kaYqOJ0b_de_g(z?DYRY148WtMn^7Cq+gIZRgU?-V3Ey
z9{oGTdm#V(I_`dPj52O;R<;dQ1<2LUm+BZ-SHP2aSlh;?^cxRC&8P3L&|e#*@x4MQ
zmC~^(06b7=s&MPS8KA%Pm=-j#bY%O8e-(9c{DYYLe_sQrjNx|u;1Zy#DF>z`W0erG
z>Gn#On2mb4a*+l*U`_CVkqMtY8!^fklrR;WRu`?-@4Y}~C$r7nAqHvdu7mX@W7OUA
z5tEXi8K>AW5$n&upGOsc#<qqWYBn$fF72C7?ZkN5ieLejQoE(YfxfIdCas2CqMtl}
zv<bBgeCe{+5$<m_vc_mN1IW1Wl)*)(d5^wImQHb%qBpg}(-uU5@?n7abHGhiU;WmF
zdB+zK{v*F4K^3gh0g#&eeaXY_W$q8q-d&beZrlRHqO2TmDFGZu5MhS8gMNR{19Ad7
z;Z1&hwYiF6Lb-N-n&-`NSXEyYBHPQpGTB3uj1D6qL|PjMN8D=`-#}I#pu7CoBz^U2
z5Uj^kM#vBJRYIs?Ohh#RKsRtQ7}Hf*59N~zDx7vNY^l>cpgP7jgS4Di&|S6)tC)8r
z9=Q_yIxx=!#E}>=R_0uP^|~|PFCI0i1JF>Us*UL{ge{%C90MW4eY%`89kNzKzXLJZ
zXlJPdzjRVDTAdNhZ<Wje3x~pSpGZv5BQCYY&@a@gkBg?&qzo*FfL3ONfg><#AdCUo
z++F+b+r$h7|2TN>fxao~ftM$Uta-|>U#<n;6)M&L(Cj7y%5@KHe)?r>VO;^(mFFGY
zh<1})u%&J0zYO4j@E{|&@;>VQ^R<q`3Z;>oyLUgswq>WX2opzQ_d)hEb9{1m{~rOV
z)eSy5m=Q%&7AnjJEz}`khCC|8<LrP?%0{gYf=D32=>#B0vU&HO)(WxB(gtThRDN^5
zmoA`{b3CdjTU~r21CTVQDZaWPWL-JXP9D?Gu*XbjxrWTU9Z83sMqxr!YXCB7$C4zz
zMKK6$VZN|iH5LJwZv(LOJQX`jn4utm6aay&1QBdDSXg<qHjoVxCS_mT8pJ9bq_~=$
z`wRpuG9!uUtI0O)Tktz3gLS@>-F2tBfqv?5ck1d@cwC$W#D@ti2)vx~c3=tRZLpYm
z4N(p|5cyMs^bb9*QwF@BpndiJ&zD$<Eayk_2@Oe2;=P2G8nPip*H7HL0_Fq6{QAm0
zg^WX&VF1UfPS*rk1SlNOg=hf841q_de02@7uhb#OQPU$NIe?l+gYs9WNLm(uoYeW1
zxPza2-1#zWKbO8_G7nfU#I1nJh99(555LWTcZt_Yv{J4B%Gh<l(H}8@a~dmrt7_x)
zb0nt^OE?%Ks*c5()f|(zenLd#1lYk!H1N0_lh*@<s2^9n^$VHI)=zg2vH*Z;6j$95
z3F^vsv)@ai+20-B4^zSZM>{KO@2V$&$+-UwXlGF(q(O%9xAmA_z<C$w$lX@S!j|3`
zdNKXG2>C01GKK>rtXO>Ib~ML^?Jw$Q6v#X8{E4P(z>^g8p{EkUgl~likGu#W;MRHl
zD)BcUvr?z!K{FlF3(b4IClx^$ELdet&X@gJlNc9Y8)#@U-&?BdU;q4w1R;{ujl!<L
zF%AMYYCR&mE=Q#>ZkdoT)_6@rXb57*C`CPeD5C<chQxbC?|w3-Ixju#(Ra2B2-V$@
zBF!se@o*ABT(<XwAq2cy4NBZV*Z!qVt6~{#`@}&ayaFWNJnhB?F6rc7V3Zj$U~<rf
zRQ2@!4n6w!9im2Mvss3<-<^#G^GL=eB*dZay?T&NjJjpd!V^GI$0Tr{fCvYs%>HU-
z|9x14q)kNd9WqHP82Wvmcm(bBnaouKkb@PzK9*PUq2|cC)2%{*1`^zZDIH5lIS*K#
zicI4q=ev!l%JGgyY;dJXf0Aik_Id+I-sE7d)v$Y^BO}<+vh?kPdSJWu{1QnmwD2rh
zu<`He7!|!{JcPZvFX;T^wgcSRt_wiPD9ZXN{p?M7QF?khh2!olk5TP!-x@-5KuflS
zI|DY52=tPA{UcO<cs+tyFRI-gW|TbNuD1kK!7k$;z*l2X5~~7Kg=mmG(}Vl^{9a=X
z{cr8^Ea`iY6_A80P@mRjt{{b|Qvk^C)anV6@zV~rQ_J8v2^r8Ep2V}He-5qIoFNO%
zuk!vp-SOY&b$_{F9igay08RRJDyBa<Zo;+MWMBy(`O|h7N`@5<aaSVWcd(o*agZ9+
zt~5kHHkFXa!1*)%P~Ec#efL5MO94%|a^>Q<IU2aypO`-lnVU2PeI0P`dfx+<>Z=HM
z1V7M0m;eied03_5sYhc#h@ote(4~ig(MSG8)0^0`Og>!%qEx4Z<jD8FxRryPfJ$^d
z+s&-qYnZ8xv+LVF7SIfR!Qc(tC9~8gLZ$9bHCRv+6k7_ISiG!wj0ORgSXTPE3YqJG
z=9{0|1*LB$n)MUcdeF|}alb%Dc-fZ)h+xRLmQud3u<#IwR1}I?QhBHEyGLgboRf%a
zl`)VF)JOs@AOY%qd=u~Ol_2h(8jZCEuuTcekL5c2{N+pLEp9I;Ne{mQ5kRB%wli9t
zd-Jumi2#Nxq>oo9)&yo9;Mr`#5Q#bun{?0hgwi*oXZRldE9U7z1@gXoj>-52YH#5Q
zf9eYem#~gJI33d=6({|RY#`dq&o-dtgn~8at(ga&08sdpC1-P#sP-xgn1V<C0d;Wt
z42lER4kH>M6&nvVm}l5RU_3-|C&07w1^|!T={lxX@$mLVbilKi?orefpT~{?p$IvU
zGVXF!d;#4Ru+Wvm+Jvd_7*c2Wqbrd{q^v`T8E`wj7>&ozzPbF~*QL~~VJ=a8RCo-a
zi(<Y?p<6FlGY(EaM<$Vj=Y&lkq@uR@v2xU^KCRMEuZ)^;$50VI=BX5J>Z2aS|Dor3
zPU@HhG{f7s;(#2f2DAgt2InT`mnf?E*D}D^J!HD64^^|qjtGOQi(+z%2GzhhOclRs
zoedO?eV0CaAz#R3gW_NjYVTNDUw}0J>c6VsCW$%~TBIZ-h!KrD1!!;dCnA6+MvRd5
z6~QA6{U~yI;^k2=e@&svun+VoQ$4syb~`J9<A3rrU+{-Sq^A9wLSd})JJgf#VY*?q
z#5IjmNS7_R<m+eZPRhu0%CUayp=Z16Coj&}lW}V!+TGm`MO4nJr{RRu%#^}mpi%|-
zEEYy^@OW%Dhu}QpV=uviuC+ZF#QJQE(ok2hXybHe=Gimi1ZXwz{J$g-0GeCTb{EpH
z02j)9da7yhfws#A$s8lDLlFQr_=ZB>#I(KM#26SGB&Px_W~1bN#M^WJ$;m**)tUW?
z{M|1gQqKX6B=7+~o|oi^_LxEi2Y}X;7?{gZDWo$#Wa9A%&5oM9oB*kRPaop|0h1p?
zHlY>4<|}_aGoWzi$c4IVfHO=qt{VAK-GH|14hs^JNwd}-kXXwB3cb#MqX9H=FF}*n
z!$up2dvSuc(Qgd0kqn~xFw6SZ^ZX8J^8FiW{(Swg_OTikIxtIX)?^1I%t{#D#P)xj
zbu0|Fx<%)?(`~f)Pgn@#ym>CS+k>0-etTKXl3~1eoyo(W+#vM}?)1Rz(Bmwl*yULT
zQKXK<EIo#4Ev!)y+hdnV&Y8Du%G9eh8>h1&kkHe_0M+e2AV&7P*VIShcQk`-;~i3<
z2Mz(!C4N|R^oy@L^)^B0FB=r%rnC=&W8Ww#fvrSij1cnoRe6oeNnTzeQw6jYF@MA?
zp(};n9<Ny-_nQM;TCFQp+&xVh*_=brrbYF~7?ntSAH5xG3i?9oV<bdFAU#0@4{?Ua
zZQdHWj(hWM1$AEnv_bxu22&$om(PL7PuspTIRBlVM9yob8pnqXvVKSeGTZ191L@ck
z@u0264McnR($Ii_3IEZ;T-dhwn7!`hp1hF)XpxwLiH|&GphXbaj-^8VeBYsf{^#B2
z3y(sC@-Fz<@Ctl}7~TervKTV;zdBDEC?k9mlM14>U)OI*z3wIoe#`RB$3zjqL*yZ#
z`M(LD_vSrGHbh1Jtm@{3u!5UZg;5Q~uFC>uY4S!1?cnP*ios(&xAjNhn6;n|8;r}9
z-By_;D7kuKtF`a&>zjHP7LdrK%3dP6cFczgQOrWCiEuqGIU~iOv4-VYDN6)Am!ww5
zo5;)<Hl^hc4<ES&1waei_=2f}JAn-7iA9ph;!|9L(WP>oW++J0NKE$W4`1+7Bq3~f
z{1ICyAkF-qVl73ixgV^jhoJ_mEdBZwC`?Da|GAaC^tXRURt%(v9q0-)P+Rh!xWAN4
z78nmC)hrS2rh{#L`1a=lZFJ!A0h%KfM6L^ZxgK($i3Aeku<mFYNl>1ouCJS1022lh
zq_^9qpXxIM6~+tHG7oWm#bUjy=Rrv}h!)qSzw8<*?05AvTri|G<@4hRw^0cfS9Q=m
z3_J@E6T8dJQ7He+&0vy%19rvVVW_W}p*vz5;*?p>b+8gw&ozYoR~C&zf5a!4|BRhr
zZ-EgG7g9ttc|z6EQMJFZ2@p_w->yd`Q~FZ^<1N<40hn!i+5V2MRe#MIi2~Uo$AWf&
zhK1L9vc<vq^RqF2B9Ik6Nj7b-$-AxgemA%1=<J)N10j!JqcH?XE~413qE+;)WkCim
z@7;CdK7hi!0HRJ3uaH{rJ~D^E_shBv;u!v;(JN}K;MB?Z7rYDXz>zKyl=zk+M{jEE
zOet_P;{3^nH0p2+bunCFm)73J&}oz6*OK4Kh3T_a?yNJEY8@=(nea~mz?B1|ml<5A
z-`i4OsO_i60OcS5wne^1wGCux4aMvtppr96HpcXI2Z87`m%{_45dZ~-mly^m^i;^E
z`#+nRU5-tXi@+z~deJcPsZJ&8(Ji1j)<INKF{&Oo*P@k6`EWUXx!lLP5a|;>f4=BM
zbElVy{kLA`ZU!auBM>-!rvs(h|6Np?#J>H&DU=$kVm47A1mpNFB5yYKJdTQa!G6PS
zBs0Mdg#XXJnnu$~R6TkWWvNK_9jGHL{72AgX3G&UP>X*)#M1@W=FZ+;$cMlpGAn%Q
zPX^2;!?OZRfGVyn_1E2d;nKd5cLQw>uvknoZ6m(4Y=3<%*)w`tC7&D>Eq9C|z61Z;
zlV{i&Y9aMXC7rzi-=!>tC_0z8lJvnYGrM|?F8e-w=WQ;SidRdRmfi&b&L{#P@C@!?
z)CsFke?S2jUrsUyt>9$!014;yCy@|rLpw@^YRHat2+SShfUw;x7Sl>&KVoq$%YgPF
z?({w5-H5?|;vm51Z2)EgepeEVk+`1!>S1wpPGk84B?pOhR=xaGaBO(y8x2wKB-|gI
zp+t*CBdC)U^8380WbDmUqC?>hOU4_uC`L~gLnx+9W>#kX+T|2}aom3UP6?#;ifPnp
z;q86c=zdY+{WKv^x(N0dk4TYWpF<h(hUM+p>v}_t(DOC*UV}dE!<5%(8$;<ZfS-}B
zAi)^D0_HAxuMLgZ;7gr6a5?q@$&ymQtN=x}`9{KHL9n1}{GH${^5FuLL5O-5R6Zlm
zCVohlAk#504C&+x&4cx?zo*TMQCy#wG9A=cx?eg->xKtte}^mmx&vgxIpF_e2MAhD
z`Pv!1FawB(2V_7zG1~$4)5)qeE{9zJqyoon7&I9M9VX0gm|9N!6}ezWNGxf#muo=T
zg8ZYweGAm|-!0HTmy`bJNoct5X`>q?j8pu-hVid234=?%t7ID|5v#pxpMZmJM%UgV
zsc?5X%xzJKiXAeR3d||L&`te2^`L^1e07?gCWfUx6hJOn1ZXrQ8G{delPL6;&Po==
z2%O|!!$}`9odLhyxEB^I)M}+dsJ1yQ*f=<nYXixcL5?lJkwl8kM+@}PNtz?DU#2@-
zTU#@OsYzW}v51s_$H<@`^?L5Rb*st5t_`SQ(t)&5p+v8J)>)lwn<O8!#r&Y1XZ^sW
z+!63h5EJx!nz}VHQr~Ek)R+qz$K^mh8x$5c@eYJ(+{bE9e}NU);VrzRBqXM#2OV;G
zN)+nf-xD3w>%V&JQoq6gl%j$ziP-3}n{cHZ4%=dYu!xC2WdpieMfm2;2&^BN_jS^<
z|05Q|mU>@)2F0<~&2O7Ntt69Yf10D^uwR{1Qpfxf!p^MzOoIL7eMog#I?Y3kP>R@=
zc;+crWq$E%BPhRnDQ|OXKyto@P4?BMz@$Ky4>VK+f75nDcIAZd6N=u?a9<&*5x$qZ
zRm=WxZ9o=;NR^#%!L$-pl6tg$Z|bBofcXM_Ux2Okqpc~X=9Ax2mwlyV#a^jmzy*Qd
zAP7z<1v1D3#OEt!E&70@$Y3xSNYZ?xLfe!^hv8X&)XypK@M|>iUAq8`a>l{#LZi0j
z^e6)dhdSyESnBN!(qR5u)iyc}aF)Jc<0a@%!LOP8cpHg5$mM(p?jzefieR|D48Ec&
z8x6=>TJG!P5rbu(5n#ymKD?FD>_FdI9Z=y>bABh)_mKM^)N2*oI$SA;+#&@ch$3LS
z9HDZdI*X2`U^qJcXdWJacxF)ho|IelDl3Q5-?>Lc=w7ZtWR_27RwzVw(jY#mrtXIA
zdZeC3_>h2PAkF*;ri{n&QWV15ABP0hE$@GHhfg9reNxF>{b4k0{yX4eHQ`_I6BfXJ
zoja>LtNG^b)dhQh(x^-2g-t+EBLNlwsaRMweR#+W#*UTa6Vw1ntBKN<z;3%<(t-aa
zc*Y}v$Gzs&<dE5KKoUklE2}%CpW{~ha38!UZw11;EfxI;bud|!5$+E-kWrd^X3%XQ
zE&#n!R9;p6RJ1S>c6PNXpGz)a*7EtR3{px4w_HhsR%jX^K$0Na_9!$6&p@ru-sOtz
zIvf-jm<rZnDFQ7RbFI#RFhCy>zroJx55PhpM=ko<Rb2tV`lCS7A^t)MWY@XFQu(%l
z_4=lyRNxCs&bnnytyTB^{dG0e!Wj^?e;3tUc^uqv+@ea^6US~$rv}KmsJeIt+w>Oh
zqzTXrmxavbgQ5(@weyJeu~~h6M+b2Wh+0EH|4lY$MV+;L8FdS$z*cGdi*Y>MUC2(G
zve4rqv}FNQ$^@t6qKYu{M{W+L*!~iFmd^*D8$5nK4BCRiK=F?_i3~3H3$w9MF!tNN
z<Vf0}afE|M`KO=vfdYa#1F(NwRs|q$LkcQFQXNC>(|LbG{%EZLzRXUESKmJSDj!lG
zPe=9a%NKQcQ?t`>VTzJj8AQ=mv`}=PAXmy|`MreoA$wSMnRKRwnWRKd1(576Fi$Ec
zpH40&)1y!?C&y#A5qeQMcq8v?8BG0JmrfZ{SKYihZVpr{K@Pr!2hxndpoFA$0P#p3
zb_3CE<~OhH<qy8h+abY%S70z=V1wwZWwI{=wS%7Jm0S2@LCC-akaC;WaTz&8BM0fT
za!(=W?1L#7<OKq1(j{IQa5Fyp2ya_|VlVsI7XZWRne`=NycVLqoG%+i_1`y;*Ly{B
z&t<{?^Y{Spzypj;v%5IJBy^rk+C|sKH)p2~p?_;o!jI2?%liNDGlnG49QiuWVAy7`
zi32$o8mfZMb+5H_U0iy<4L|3HM!&?2{>}ADjXJw?pFx<iTfNC_{;0#xx1Ys}5i!HJ
zNR;a1qdyVQjz!!$8#Kk2>vmWTXR34B<OuE-YgNG8ut4A?<AaA}XWV=Bw2yu^AzQrC
zS-pi|L|Cmsv|wfkjS8nX8dMsS2+(+bEU0Y3H`L|-;2RBYkMX#fDOdr(Y%)m5qByx4
z2w};U>HkTT{1<=_e{KUD`dz2e?=gbcC)uVh7#$ZoP;QIDyas4hj1)P?eae*}$t~}j
z&)m#W)G!qWLMB@Yy@WIx36|z<r@fz@m1rRMbOd$QFal?%ef?I~PFDwtBIfYADMF^C
zRoGh>J=$s>NT)beys685z_obf<%hjb$Ll_!eYv0tFK8;VhEPsm5mjEIO=m60M7h)9
zcO2j%7%RXV&s7w)r`)y=ZH-(7Qq3{^qS$*J4^rV@e}GvqehF~=f1f)5>&14$Cn$un
zw{So8Dn#kUx6{+@{svJs2TjV^wfzu7bps4XS}EJ$Y4vzN<B*ihQ<Vjs>nG(xYRCrS
zP6tSku^X9P*Y0{5XuzbSqz-=Lv<F2j`sB%6r3DTcMiQ(T0Z~XI^*k*-U3uqjn%wJ?
zjLy#{FJ>T095a1-uTaP}Ls*l#zk&bpfd9)4bgMR^lP$j&`yi`9C%B{#r3L(r%*0WA
zDW`@jkhEt|tXN7PG?5~=nt$A!Q#Gsmz>q&uL&YKyj2lLm$`+o_T10PA2y0vZ+Ig<l
zNdnJFUe!Jp`78Vqee7)aZe+Qc<mYlj_Ux8WnGd0)5IOU<%pACEk3HN8-1hm^fpFWb
z0~84vASUJg`6yViO`t8G3*m$gmV}c{4f^7ufU?GlQiE;IwM5p7zW;uL+~hxK2iVeK
zesEs1G2oq@9(Kf-pB@UCL!!?Es0iVvTo`QPAg5al6mLAB{7`^{Hq%zwZABPpAL_zU
zBe5O<BLOC^QUyMZE~iIIWT)^H!th&_dzqDw7Kmwdqo`LETsl5aC?IO)tdR74N|BI`
zG*lWS34;OVuU><Me}ACzu6<hRH<+*wiVzg#r9A=)npn^&%AU3cvnr;bNX&a}0Ev=(
zBBb<y&jBs}ubXHWr#q5BpsiHl>-tCA{vUbve<|++sG(%I2a)C5{zlpe2|~HcQXBA=
zx{oj?x6$(*LW7m4Nu|}FWQsKh5lSklVi-_xn{Uj)*tlx=J=XhJrk!b-drpzMIah9Q
z^}asu8&G}wAVY$~iWXU1sZH_oC|_<T=!6;wn(2=N-Su!#6Q@rDQlcjp^hEykd+s_u
zfEY>x(^nTyc|mq8_q_E0c<!u3SitYUVJ!mg<~5(P<xft&fowc)Z*PBGU<D+8e(Dv#
zbxx_|cVZyj#FdDD(ET?g<b(Xw)b{`UsdW(WU^ri@N_`#|CK2JS0BujWTUYwkjuut9
zORF?8^-1;8MI_GWuR#ML@TK1iY`EO|K!?Q+@i!(kBRu4HIu|pw2vkpCQG_uz6a5?o
zMTN@yaa-Uk1es17>&Ia+6M}3%&wCaN`8&c<{^htbmI}C@MBx9IXBO=9=f%PPGv<So
z3Gqq-W7ha61(1q~5i}F&JpV6Vo-=_8d?|h?=gw(R=JFnm0{LW0nZYRr@S24`ftHte
z7**Op-8r0}kNf4Un)>+j5oU;M)TVMiq4pBs(~w)B6K2nr>-#&8>(4k|+RKsd|M`Ab
z>fPMqK!jNNZi-mj1(zK%VtvxtdS{GppacaN#uOlWK7Yy!c<^$d3}8Ik9?Xt-nsh(9
znT_<{lTN*EIbeVzI{hQMdjQtHf|clHRk}6!kubu*R}XS#AcsN1%TnNfh8Jf7EhpN!
zw~n=3U2&cD!eHB;=^vq%rYwfRvyJ&sRM&FbHP__M6ZYPp-rgI!C?Vq~mXgjiRXxst
z%Y`%r1>!$^xlF2?z#{rtKY^9|k<p9n{uBP3P}sGetFeddj5#0vH3<~3pfF1i#ixaE
zzJ%$hPDg#L8^;?XJgszq+J1)1Hb}<%nel$?5PYn^;!8kh{(p`u(PxY46X{CzdKBlb
z!Dt4HU#bWt5mm`i1u5zcx-0-wy~GgqwI*Cd_HDp7-|oj?INpct&rS4haxG?3fH8!U
zZMsif#Uw6&;q$#4R?p6FS1@X<ZIg4CmbC!wF98Dz;fWBGpOS#scpUmqx|KNigCY{M
z5Zb{F4KXw)h&vgmu%iv{3<*@88*~xDIM0ENEgIk5O5aPIejWo{pG8<;MSB@~RlP@t
zmO7)y_xHGv5qD%aNM=$wt@-(-8Fmzw4U(5KMR1(|JWS*l_qIRwk^c(}_$N=`)k*ww
z^wBdE;r~QAZ>RhX8I+T8j7`P7OiXjH4&Ez&<2TNwb?w@Wj??B~C0=E;vD$yJm+!(l
zmaoz*W*rF{f3U=mqoZ=wM2<)?$Ah}dEgO9PaDQq#+<Qkg75{(O>s5g+^8d(~{tqEF
z3Z!y&a@VS*io=f9DC+Gche=KhvRY_01^wT^mxWLe`Mu3TS?Po!tP={GST+Qx67L(e
zMBeKG1pMv|hZ14`{{ae>Q(YE*6~KoNe~v|0>RLpqw(;&sM{jv5vY8m>EXw%jC|(td
zlMl?@T_8Cv`%m}vE#d6_#J@7n|MHdmhhxky9p9zdl7+=4>15@Y1ob7x*Z}9t66Ztl
zwb-;Ysj83g{m9?Hx<z{|l!jW)Nh$86Xq?obsiu6(>)Ytfc;2!8(~5I_oxpWt`21B(
zf=xtG%}tSZy@Xn+VfMRf8~M<LY6{f`Z>3TJWlH4|Y{Rak)(u@@rOTVT-M#NGpBwgn
zjygo6mT(T96=(l-D2!J2{_8vPJp`k34gj#2L*<-qdA>W6C34vCF)Ph%E8}p9F{qVI
zjca|wu5sF>E_}-vFN1saMWLTWK6KVON6yVOZz2m}#i4$|M*#kG+6Y>t+a7ht^k9Xm
zcKkQ3A$kI*7$jqkfzQk8M7Ya!{=6t0<!~*BCEjtcr))w@i0a2$Hi{;;#G1p^7baTX
zInCOJ+T7<bXCsU5wV-=N7PZCAr)Il+-2cNK87?D%R}{v<A{D_{X84>bdtG4IbmE|V
z>y~FNV_@V89}Q>i!WIvqW<I!ESrT^ow$D3&qSbL{xxv`JxM%-;>-+ob>$}+JO>sYc
zW$^cDrTz1xeMlnA2VmB2`>QjNu!s)=$XKcnjC~IIe0$t8<0m?dQ-{!dop%0Pi$<1|
zY9*A)MYj*;l&eWgOb{s8pkEih5$oYi%$Rasi<u|JFnmm@+2EA)+N114<?a46O)l4d
zr7AZobQ;CzO`hWy$~hz9y>$d%H_5%>XAWux5?BycD3rcRs21_ttCy#L_ZB7&(D{*I
zma~JPLVov|vcPA$(OFltJN&tjmO5=jaJ-lhjzWFTNr3_78Tp%9v(~LWJMe3P+QyV4
zZ_1V9kIPA@M3ml&KJrhI=ETz@>c{KS_UaCDD$Ug&A@$GOIsYh7BWf&$@9vP7h;p{t
zEf2{5!EU*CfNk8-lVLVRwOQ}hk(K*;yfOLLT8MMVspXqB<;{g2k6&4SZTP2q0mMgO
z$oTE?#BO2v$xN{Z?<X}`R>d*T7wN*;d<UpXl`eRBb4&8wiH+eZ49os^I0)>!h1G45
zvwZ%3)5D7pq3W(h3sHRkHzs1Uz#i$d0FZGhtboR{CS(>ok7ky!kL$w%@Q(a0&AWaC
zCVJ*cU^D3^mSNye`@_jyixQNGQXh_)%mxKT-tgAOi@HKVrTIq!zi*2-ufrN{mzZj-
zcWQJ-^=zAeJDH6avd$@IMt`T5FhTuxX+MxweOp_FNK(ElcHpQww2kTa6BRboy_pg&
z8&u#w(BbzMn$dOwe*5IPH~+pJF5dDO#nn1jhZ{9rpNTu=!}6}K#PW@>p%HS$hE|hM
z?@xv?)2^&R>PdZKERviGkRb`ZQ7d|Pa(bv%SXyS+V@S8>6#g9F;imkvM*?f#it|Or
zN{L8^K^8~hwEVSbt-_}sS9*nYR7f<enee5p=){Y?1H%!nvbwAH38VRsgNN}yI=H~W
z11K1ga33~8h`Hs|<CVB8zUFzXn;C2bmQC&pHkQr7))fW>qGz`xzqVu7i3|y$)l749
zk5@7r?FhUtg%?9PbH+vn6#I-UuJS@9gk&0aaU8Zqo@o|4W(>YWhQIXIRDz%oY;E#7
zPZ-7WmrKv{PT>X|vofBOG5g2l^Lb!%IVWXt%lYXPS%~OnXdnzFJ>if39DTIrH62s9
z+geJP548VaP(l(;c`xhqg(&BP2Ye62h4__7e)-2kWnAI5Yn7U<eHUxj>va|!-a^JN
z1qEny$Zcbp-Zb=d>7n@y%#ZnOf(=e7cw-Z=;$#rxE~}n#yd@0~c}H@GTcQhle181t
zN;je1nd7jI#Y*S`Je)#^aF^3SV+i;>4)lk{LAp8z3$Fz>dRSH-`Fe_)+)gE~+=NXd
zy^wK+$EavLpf@`>9{N~r+D_buHTPxk4Lm}w+RsY<<8Ve~?}B1pEa}DqbyDoSh0`p}
z<SdskyYWIROxZaZ#+0Fr3HS7lq?9K+wZ?pmi`>g{lbGAY+aPBT{T5if=KPw5hmtH;
zA&Wa1(!cKGJP^f8@a#s%W6+=A{tXAenjUG94oBZiHobqn^^euSJv!vhxjUt8G=1w!
zh%cM#=P$+a!E61)vqQy0L+*`JOmCu87==aU{rQWB<|=koOGJ#KznGgv=Kz#9R^Pv^
zAvf=QA0*iu9oGM@vMj&1LQ<&}IU?$0lz?BkKf$LEw|HdI4tOwBPd6=hVIzGGu9VtE
zB`}G5?cz2$;|DF=Q1SBRT2ns_^HHHtU)T7%`RNrrvu|0NuLJNEIA}UKT(9V*aYsK|
z&ef41b)CL+)!t%qfk!7-ktnmMbux1Z=YJ;CxXUDLm}b0i{Q*9PI-VcSckSE9db&yR
zF;H@*G5EDyI?@Ys67!^*-P#P_nyiK8v-qnLrQ+M;UTI6araW!dnEBKqR*jLyO#`~7
zsW-8tclpSvZPb_9Wm@2@(BQQOk*eK=EgH1i?n;T<(&*OeVf#^=>uGzLcytH3*#}<L
zDx7_IWhs+al-MW^+2f-GP7t_u#^Jg8k)t2=E^hTq*$Zy{!D}g^_s*Wvul2yh3oHo)
zMgaj3y%czXtvR?9Kr~tZMiAVpYyxtpFFhzR@h%~80w5bZ$G_hp)|tTU1@TD+p%f$3
z^NU0AW%FQMsT`f7mv<z|TL%gD7@@U+q}2G_A1w`$#Zi2Tehr0FVVYbloSi9te096#
z%ogHE+-Cw$NYIj65l<U*$dvCw)r)_Js_UyM#bfIwTf2=b=VT(IkUsu_`b(4*3N$yQ
zq(7(iA&na(JQA9<fk$`QVZvfT(gLP|<lzC?zYgnku2|+;Tc_W(cz7><e1=tyUs66c
zJ@?ipHj>kmh`(!}m9rx2CfxQeQk^pqj9N$E*X{j9IO_LCCl4NS-`g-wRHER3mNt3n
z)4PuC2VL+6u|!tH_yOW>$Cl783dAQzBiBlhh%8=y`12x)%8uc@K$6Qgx<8p+nzcyt
z>{~Fc#Jpl`5-yM5ZfB&p67$lwgL^Zzi`Yg6;g*p)cKui;`<zs5Zmox7G>z!Vj6-_q
zn3*B~V2)Gfs<cCudoe>7#j98sW6q5SBjlb#sJj>4&ug71XP)}o4sA6^RbUqllAp{f
zuCPe+xPSh9!!F=|wv*YjM)%!9oovc>B||rvc8KvMFD$foHQgk)=G~cNfivf&iQ915
z<EFr-w79gaE{bU(Hr!21%k0^x{6gYN&9XcBF-^a8J-P?>2Neb8`daboaNx&FO%07b
zS;tv^Ux~=nOZ;6ScAIwJHZ<@0N-VDko7Df3OsF2K-S|)$d`=sX_g#{#;et{<z;P+D
zLC+m_m!3QMo2DC1c{W%rDOVbq<~eaDXrW}Tv~@1Sz#?z)J*=f3e0QqR>g1r9M*qVa
zpT?5vqha5&?2WcmUQJJ!_09%vJBle)>Vk2ns3+1JLmqVbvBZ=Efh;GODfe+>fju?J
z_Pz+VvFsaU{L^+1xQ`n-?h#;0>rYSO0kjk(Y@pH3AV8}1VMy3G=37ji|ClTCYdr43
zu;pwDZ>5!;v*1Pa&16l4Lh-^Nbv`rm_GAdQ!+L6OOLg!EO>O#M5I!h6IUG0HLiT2q
z9l3w)<qBzP<MPLr8H`ao5^XR`J6F(Yvbl?tJ;mX8ieH4)(n_0D^QiNK2vxBw;!x>v
zYsB&8>a&*EMm7ry!#)%$YJVs%BII88=3T5ih}AFWa*GiX<y+#i*M;X_x9cJ{%QyOT
zn@H?|d3*yo<arb{&DVj{wKM6D@OquPS&eyDIZw6F+f+`4M>KY~SNWkgwP#M|M9JkX
zR9E&*Y8M@s@I<i&I%1wci~DHKFU6w$O%j$Kty;IhXg4+i)%R;f+o-5#_$LhLL3F?R
zgW8_gPK?3}g5rzwl!MAvQ1cS*t}rybRZkWE(+;MWxQjF)r|HUw-qbXVo%hdbAL60q
zq5H?AA`%-Oz@crol=r8<b>nz<8|{|%8hx53Imds7trFX%Vp7yL=wNVX*eQgc0ACX3
zUwx@sOh<Lw%*W3twYNM5q@waax;hS*Pr&59x#=?-u7;VrHL3DsLNj(aP-4cy$abjP
z<@GpF<M8+?tBLR4;gNNTEK$Yysq#7OYJ<+1!5u0vCa?Dl{sBJ}8X)(hLf>L!LZ&<$
zINeUVa)D@!clnLFlcQqQwvlk^fW2F)19<18uBeUg-Xc(6zmHt@8ZN_J$iKvQ|AfDO
zl~Bz8()g%bxZLK#Khoi)a=MU<L&Xo8^@#aayB?p~p<R}WmL5P-ht~IZ&&o}B+^4gt
zMirC4euSUyR<AjvUz<b$8_?jVhxbL~6~ul=d-7dA5dT<^XZk_%ek}p{w~hkC<dAfW
z1zJo2^V2q4rL)uypOrd<St-fPkFE|1!@222;Yh~odc$f!S{IlGj78p+R8!Pa9m@?V
ztmKSxk7>+1+qkG!*|`&Ke4;9Ev!rNi8<WJ`Fq44Stp7}W(nmzDceI>7`MoZZN}Hcj
zvxGyq`bS1g==FKL`S#kZ@Xfg^?=`(~4NzeC2uiVRPR_l&4CQ2$?}At6u9FVLS8zeN
zo0#&~Sjv9xe_PjgTu!yDgS|qfK8rq_8!4%zC;^Y~m4dQ6-KruO&s=42De&c()NUQ(
zM{RrO3bXBoagN2yjU6)e;l5GkLSj3sGL_MbSfbB!6iIQ3wND)up3l1<&>hI)T?2nL
zcg=45WD4$(662CbwUvX;ssYVM#xmkt>v;2Rp%d4RwpoMIz86T0m!a26HIB0%S)7)R
z%{AJ}m*<ozNZ&ey4VAL(x20YWZ@pZZ#gdSe&a4v-l3)Bitn`hok!Q&QuGQtLY0vIz
zk2fRyo12v;NAfcK2G$CEZnVG6a=)PUV+6(6ZWapFc_{o}Og1Rsxpw~UjkMnM@-umw
zdVE8Jov)dOH?-BB%q?cIEwh{HVk_s0q#P<+OdEsn!$Wss8apvNAfgnn!Z!PqWhlu=
z30(PIi%1v2nVG&sM`e1n@!{RGA|1CZ`M133&iAjI0BfIgtWezxuw_gf++j8jZlQ-J
za_<+*343;3Rq64nrUE?@-RAa<8|4SMHZN`$NX~FaWg>4`<;%=hEUtH{E;d_B)Qu<_
z-{%gGnlGcxG0uySEoj$YelC{9y9o}({~e;BaVy)nelhEIFsoMMu|v7ii6vU%d{oWT
zv6?-54lka%6?GdHu|*XoQ<Pgu;Mt!zd$v8fbrt)3lTGxF$f8~we@b&dBJ$xwz#SP9
zJdHU8jK%Nxc!=H!4G?Woi>3ASfW0Sv1|mX&Q%aLS(ty^UtmxTw76SOyTqn*}d6rn2
z2cr><rZY%ACTG)o>k5a?nc~;8=;K5U0>S{x!o_@8)H-2&V(VD=R+_grQDRLdf&R@$
z^0)nO@`k@*&CML^iuY!ySfADgmV0htuzbm_QyD-^i9_OADthT6MuAZJX20C}9O}aG
zM75<FokG)Zn&-AuPUq-ywSw7rbZfUHCo!_N3d3H;O|@_N%h^m;^7`~x56`*H4^3rr
z#RAEkmM)4U8}06N#WSB$Bp%E{Ly)pFE`zlRc>9w#;Yq&FleE-qSdwy(GSzdqW?sh0
zZadBGY19TaB&0O@7585J5TssZfQ<^~tN$S^<r;Dk0C45jp+fl0#pI@o`ztuDOW{4r
zEf@E?v~zXU*dk7<jW&jf`O{}RYPTQv?a5Usl}gc+b8jDvSq{mNUqx;OtOAOGFs!*K
z9l{0vLdZO`8hW#Xx)ZRA<9SNBGWn<^CTKN<Y!+qg*|A6S_O|-l6^?+_+zzp+P&fPl
z_r6euBjXhGWa()CLYH^L)!9AIvmMBdvgd1|&SORFmq?ia2Ae5C5)6-O_%1V7oA$P&
z3v%JMFIS8&^xEFfZLIXh#5`%Z^<5k=>iz+s^ai~D<QEwN_JZD1wy<to>Ehn2A0*>p
zr=6;`ux*$5r9cVQxof{LT$HRb(j^EJMcQ`+;R=#2vE@%lX>#981?8<IXef>$N*i!g
z?@g6V#D0Yjdh+2Oy*+%xW%t)48vD+7Rx@3#bqa#le7)}x@E@NqTSJJ@#)90v+Q^??
zFhu5X<N5L8VD`o)i3QQKi7x~Oc|bOK5Hqqca4EGOB1&8AK<zARXvV7ZeFHg=4Cz|D
zhX+sA-*YB?ykN0T9f?PP#uag&VsG>gA5+(LzWx4!hW>?~0=|=y9W%?uA=;Ql;m*`{
zTk~~M1*ZRc&Tt9^i)SgF;Xv$L%lX40illBYc6V9w%O%?(^+R*=l`Hl*)(c*{>!4zP
zBry58FmN5|p-w;J`h9n6lFRzIr6YKD!iCJsBP94M&&lZ}t(7agbR*AK`!X_D`9h<x
zP3Z{>{Q*0!Xe(oPf!qnJ??-(JZD5%YP13qPIdqQ6yv#0w(W*g40pwP=`ww4MnG`q#
zItZPG@VX+0afiF+njpI9y_BEh+rjKUsWi8UvIx4n6*7cpEcyELjqWeqZ+5BdwpM9Y
z(75_<i;XNck6UK)@R1We_Tbx$vBSF5>mY1%2M?Ftra)u8J_Bj?&22^nw1aD>&Bgp!
zoG9Ui{h>XR=eDQD(s^=u7THRbOBV0gyK#}KPe}(b6SvM2y~&xXJ{O;o1RhI9j#EGH
zJX3W>ZnRQcyO_PoT1YmoPNaNBkn-AH>($=g4Y(4{S2y^7f=?pmCcEIz+bK>Yw%owi
zpBf#HU5-J&L)Zl+gH<>qkPw!fP+CYHt=;eOLzIjeWCVC`LgGyriRT+&x;kur_cvqq
zl(fT_UeefirL$!>^dmi<q*kYl1O03)5Y4MmogC#K6zL=If$aNIyT5|JJT@@OS|>!j
zuhW^mnqnA59&gXr&yZtVV?ey+9>(!w(A8_$+VJaktvxsG6VT@uDXhfHv5sk|DKF9v
z%-s7?F9K8bZdm%cnNUqHR_@V}m3+TIyI^;Vhcee*y5m#KO##aFMj`2%vrKFnj+|1q
z6Ytn6F}1ab{&I&QB)dzaZy!X*`0!-ICU`ThNP5hF%-48?%zLCo8ENR~94b-d+Wd-E
z%H_8;T`Pq08p^tsIf%qT4P_^qAklW#?^+!j9>|tB8f~PCPKeP=1SNX&$|&Z=;7N~a
zq;l@;JNZn_MoeX0b$r%cYy1(B&+G5o&&p^P2<qoA#LiT27#}$-Q<Pa;vRZ_He5Wa>
z_F(yBM!Z%h-xfPIQGIYQM*@90bFC^*7aLzb4R5}#MDJsZg`~4PJu1$@p<k;OG-7d1
ziE?z$RyNAZ>V)?*ESwfR?oPaYFWC7MJE_n7cb;A>ZxNX89=`}R2Cvd|*(0dNuZPyP
z8Ikk+?8~@Q0GffX{;t^xk;Vy!{laX$ZTyd86KO}wx$#Xcfj67S8z$?Kdx6&<+BerG
z=XZ{evY&&eA{$GoD>`n6#b}-dcXkxTqW9|-W5l~l-~JY3=v|JCP9{ved_K=Wu8^8c
zNUqFtsmGkAXLUMTQq6pNv=6gaL7P|OSnRIJ3}Q<t%1^i=rvnEZz#M6Mciwx%ra*8T
zyyzr1vO%EmZf1<R3@v#A*SGkrr=HWuT7jD^nTas-gHo-~q)gg)e4>t61nxPpYGm}%
zelIqejIc8YB8AD?8=Kz^{cO!9U~=2AeDguXK*<ix9-AjFNI7pK*naadlU2m<#Dic&
z2d=k!RoUySNi3Uc9ChyTmUSvZMJ>WP1}8O2X=WBZOVrs;rKf)8GSH<ZoY85I)nKYD
z!W}|zMAt&`5Z>ht46M4`A{ooCYMi_2sv}nITGvWdT%<kid7Jj?1oygxk-YPI>?@|p
z0Iw&E?+l#D%&l{tTyd@?ip*KOF{T}k5m8I-<7Zlmb;nn$70Qt&9lLdK<@}bD3R(o8
z+C=K=>a2gZ`|Hs`^&qoUcH1~#GwZ#Id2U&2RMDqOr<s!b@?v<UY;8FUMsvitOG>u>
z1TM4Z1+@$8L|ISQ9y3241~M{j?e=5N?d1hobwMJDaP*>ToJs%p<6EQdwu_?-ar7x~
zbtaT<6j;pU{fW|*br+AnAGkeR$#E%rif?lAt^Cs5Q~P!Hk5N^xXZ~Lt1`sOypI{q|
z5&j%?^CFad^xFFm^F}BI?c`0RRX1k@G@3DlhxfoG2fX0S78D1t+(IwHbz>!N1Ofhe
z(vAS8Ow#D%ueB!frp=OXCyyq=w8cf8r6>B#S%_s1P)CnW0^>RcIt_15PmaSw#ia1Q
z@bJ&JJNVYvoj!GBEqppvHk1;m-7^-hNcYt_II`i%<a;g-gI7^SLwsdE?(w%-bPG=W
zOtg_rQtUQz2YD4a?+RfkR2NZG4aCKMp~<Q^eP0#QG2RI^OnKoQHBh@}i%BEm+pT=S
z;!Bg!p2RI}9Ez7V;*WUIa)QgE&MhEab21Wq>RW3cHe<NC^}*{`iEgocmzh1YVu1#|
zzsI#+oKZqzQ>3ZF$j`0?xgaG|=3qF{#*l4qqjc&g92F_e=Aki33w4!2s5_I1tX{7>
zpS|tg`WP`85EH|SnA(Ojg;02v_CrPOb#b!Dr#I}DlPpvg4X&3M3`4&U>RqGeRI8_U
z6S+k_g{F=$ReXDr-gDO`T*<sV6JBP~aF{}H_<F{jCspVYneAjM>6FiGCN2JjM0Ew7
zq!WH(R+&ZX(5Fl*dpBN?^Yut}F(Tr2T=znqs%PH#vaa$QHf~EU?d*_seG^%=+o@1p
ztjxw8%Y_<Ka-S$QVY0w1qGUHoQziomSQ|5`m5XhS#Bx`yZ}tw8gjV$TFS)q@<?jge
zB5~7mjf16~O5hn*3mtK9KFuc#7&7$GZ?1%$sKK+6bQ4Yp@P$eE0#P`X<xhXsB8d*2
zDpT1VmEpnqN!`$r-xR#M`fc#WDyY_#m0Si<XX#_j4na2YO1}ImuJiiESdZOBr-%B@
z^_rdC8X|k_Y7`mviz5T`8taujBQ1=t*-qjcIqma#`j?XomW>|gfx4b*^9_5_sko1W
z7|HrBe_L>TJ4uFSz0{sfto7??Dq-GU7hWNw<bbP)4t3DMT}HBsP>{*4%j$__SbUR&
zkS&8USDXE5*skm)iTW8{7FGw8@J?j2*3X#SvG6=*Ghqg`(yj3h;)JEHZp4WM9eWC1
zl^+VRycR#69?vSB45ijxYQ-)T)GE9*)jA$Z#<X#^od2crwe<2M-gEH!#EbSnpOo07
zufmBIbzVmmugT(P27Ywe53>&pO6z5}m8eXE6_z~vJ@w0fW3>5^4MWWY3@5L+{j~kq
zr>f~a0}2I+YYcr%W)MUM|1*em*U4AX3_hvW{hKQ&FDYw<r+`~~Q~tjaM%8xQ)a!*W
z4Kuw_p+PJcTG;4#(wZW5nHMsd%V_<^F<%x;Bi&I~5Mwk?z406lT}SuTjwqC;kMnd<
zh&tidW|d#_%tF$}ySFDeeb@Wah7;bi?mwim5`2STeEq2iX9p%`Sgi)%hE)yjB^_&4
zMjY3dtABBb<Wk=Bv5V<X$apj}J`zOGkRh2pu)b<>vCMSLS9S__0J4VV3Mp~I-CZM<
zBQ%ADPKX2gC*KDI;(v*LA}FqAbh>%VGJr=Vk<ahTeI?M@S6GCt1!Az0&iZ4Ukg60N
z)$o&}f`f90gRq(hQ*=6_{pV3odj}-R(itqgxx%ly1tt$1G__sA6taWmpIpv*_9aXA
z7!B;7Kf+^2K$l^wp{Gwcw-Re9V&I-O6DIL71mfbw?>waauvcvz?L)^g$*IpTj~%s4
zri{a1(VF3XWod5oJmR=m3R#S^rv7I3C3-Y%0(s7f-MdPRB3oayN7-UH$gF&w536iV
z0=B_<2i`)fB+?_v)NNVat8^vzl8T^P__5~Rd^OF^gHtHH*-{Gfeu)QfU(u-5V~kmj
zP%LYf2_4wk%J^_Zf1-F!5nUvo9Hf*ZVw$NRJuKcxEgQptKq4M3<(uHRkdNxWuKQ~w
zZ%-%hO{4SRb%C-^{FzgZ)X8ob4OPt0k|}|yeGjI}H;u<GddqK;wH>JAnL=(ZbVIkt
z>WuoM-j-VFlj~P{?uoOb%s5*vMj~a*b@zAk^G`Hs{*Hv(K7H$>DOcGMIs>_S@qhCd
z*{E~tbZZ&E<<#E{cF4x2OSfG5s2CFCXdy9fw$$8c=IWA_$)tUDs@oE#`t32km@-Zk
z9DK~9SvQBk3rKJ~z7KAbfqU|YPHZHdHs-rE%Ei5kqwZy!*;XbS#?!SNJ@(IH4=q~y
zyGnTzR9TaXjYIJ>#06b89hgL$1xC*_cjk%)64?a4ByUCS>%S_5%40E??n}naKo?H?
zp;Y$%i<itaH{B%17q;*O!KU1ED1HnWuC)8R#Mi|C=ZcN|=M{r$$Ik0~FaQRz9|`=d
zkObka7JBUbU$?FOxd;Q}fOPy8=jRXSQ;1Ipct*TvlQ{?K_>&DN6bDE4q|>E_i{6MN
z)6Khuo?1<(#An=oSBoTZyh-`}1;$|{a#0q>x91@el3PUgm?gFA$D;UXy43UM3(vse
zU^{Hf*b{7!x+<&6-=)5S;a6Rs6)wH#B#E<Y@?Li)wKH`LE%4HX*Yi(+G%49Zhm9b)
zD<-N)eXWOD__l^TL$k`8atJ=$!$Py(`K{ULMy?NDefj53-882fb}|7hNz!-k=FJ}{
z7ff)8xsjB~X*r+OGZtbw-Y^<w>XYI~++uIw$9HtwUg9J9QtaKlxmYn!KhfXc^<bnc
zy!?3Ls?iwg=S@k9vGe-yW6B)EvW@Kag7Ap;rtE?Bflc@Y<s89FW4fUP7~%_>7TO$~
zcYSN4-cO2Iv|K!nrYR-LpLf^6jXkM0{2R7Pt>3q3y$FGT-0|kEZ2Xt3J8`kEt!`{7
z`r`LPOMCb&=dEikd25B-v*9+sr+j!nWk@%vo82H<lKNgCd}VyrK3{7k62pGs>hQdy
z+-32sJMH7_%f<`gqf1pe0T`%Rr-mf1@BUd_3#wJD+qKOjd$QRD&hRE#u@?eX93`H~
zM!1}(W!EXHEWd<8a*Y;AAKhm_QfoqX{||~sU|bc^N$4+2^YIS`$^zZ9{}BUWTk$s+
z5t^T*S#89~@-jfPnGCB&5}6}v$Gxnr8tRQnJ^`^uIYTo|-S3;^s29!F#?jD)Xm-Um
zliYMJr4y#l+-*S`yS^4;!T6fz#kFZ9x2JA0?_jgJ=LyD6j@sEnuPM~4G%flg46xu>
zLOjv0QT(x_>gYQdggUoH>X4nIua;ahD1kIwLS*7;@gku*#Gl*CNC!*iYL^LTCZvX~
zExEOl33s5P)T*fEx#kj{*Of@caba=4-nOSyPpzT#Z-Sk7C-^#Fz?=SReCzlsK9WY8
zsIQ>TwQa*Sp@TW{^4Drb{;`bXPU7yH>?z{Wp0csCj>W`y({ZYgEU}$l;1A+&&mWDf
zkDIXSXprDkxy=P>^)l=>vUIr{6OAryfp|wi?vXS!8w5Fd|3yywt07o8%h5C|C;YPS
z+Fl$Tav0Km`k^{HNxAj&L@_KP-hpQHHNjLx6pyP#&LYDkN!~<8hhOOH*~Ot9<CvU1
z=5A}ujen)GNPtnQR*T-AP_9+vTpBHoo|#@32S*9#&wVEJ7_Dl|ZEab%{dMkgEkRv>
zX~5a4MJgGQkjFI|METl8X6g__DU<uV`%6tOTLE-ZSNNDhN<8Ic>C?O-5LT3Pgv0KE
zGBJk12#`lYfHDl5_n)vr`1H>uA^qQg^8F>*sw&PNNnY?Ygxz16;#C}8rf@S=q5Ue@
z=)usphGh2*FROdZot&Pn(^Jqz{9XBoa&^tKjm3w}E&0E{*V<jK_N5#ye?ZF}c|kj=
z$ziK7{Wv=~foom8-WkViTwh0y4FUPC6rTEhke#ElB@<^M_oQL0kbSNpbzsR?)-y6R
zM<TmdZ{4V+pfRR5-6H=+)X{2zK?+C0pomy_qicdRXEls5nLNp|A8!85>&@XWW>sU!
zRucH7@s0~U8`~OFP*SxwbPBmJn~%|dopSf<V{cwJ|9au%S)g`>M-$7!9^j7~&Le4r
zeRaUv))p#~4DF#UGa>a^0QK!D7L)QcKfR+|U5-a^B?AAmXGBeqJTvw;Qnbdi8odjD
zTNyb4!(D=+-`lelSx=9xEw7(n@Nq(xTf}m@LT*~4PJ$-xbZNxy`VigFQQ7iTGp!@%
zU{;fL&I6KVz`AKZ+3(w>nA`Mw=T<QJ|GE_C!8KL_=kcfQ1DM#m$ocPLOsd`vOjISC
z@K+Trz~*uS{ggs#X%vNLt_>V7d{EbC?hH4tK%o#*oobb<`<y~06)u{5A0gaV1OD1=
zWW()4tJXQy?tm^bE&uX;Z$}Pv&m?_cZsP-69OAR#9+r7;Z%zJjZ;HJkKSSOvD5==j
z&+6&TQz<>Vi~$28%bU}Zu)j>FDWd)%UMFuIAv<)W`ip2lU=eK+I|&}QL!6~Xtw2@A
zoQ<VcBPm?9<zOKW>w16R+nN;@Fl1Eq4SRB3Hfc{d8xbG&>FN2S$7Bt#p}(Tr%+CCj
z%k}$grmL(IX{^T|72;=Q&0Uy}zX-)Vl^F<>!$=@7xydoQJ%MsQ<L<#sWOiCB`(118
zB5dYYmT3D#>bJKZW4`C&?kP8I&_=K7lfj6@8J5d_s7HHY+Qyy&RBN93@eS%_uSc)M
zElRR1NuQ&nUF<|^(hs5AnDKv{ctXeB=xl*bGL6Dw<+Niz96i19F|n?jC%yu+yUxoJ
zd|2uUGv2v!^SalpP6ap?n&+H}oDNb`%2Dxf&`B=lrJL*Tl%ae(c8pco8b-)#%%`#L
zDqr00GxCuKw>>|B1hlYvOQl}oG;KHDUUF?D&Gd&SD`LWL62smkNws>iSs5N}XHhkr
zhdO$bj4U{E8`#e>=DrDF8V6!4rdRr6uVu^~c^4u?JsS2ExkC#oCRY*ge^iqRgnz0Z
zuyNvlt$rLHt7$h}bM4IRhtW0_I3FoAmL&f_ynO{wmv7pxASkGGN=rxz(hbtxC5@DH
zcY{hwcS?7MbO<6yNJ*D;clUXIpu79u{m!1<nQzX_Z<vt*dEe)`<GQcA^5$1UJd;0P
z9q}r~p{1Ce9Skw<^vz@ThIozbugG&W*gn>5bP7mJi6x4FQ5_OKOj~e0S$Ck6wMtLy
zCz}6Jlvrtbz%kLdO*c`$XIY1dYZ}JEMiouEj>~c6DxN^&ESsr7x7o%{?)3OaTHr>M
zRpHEuq?MBpN7w#lSzF~&N!DOo5i=Kb;IL}8gS!duE{4I;;_WrQ&G760@*+{uUBLx<
zC)62jHodnymNGJTD!5*pbF^x1M<b_8zm+6^cCPesg9SUV*af2!eU@74LVy+R#VtDa
z?fy6SNPUsBBpuFyapb0_+fT2iW~>@F*+-kxG_-m&YUcD?F<ljpFwOIf+8_21ONwge
zN|LROEoA05%!arNapa%UDa8#Ac}~%EMQ}DVh%PzYg2eIzaKoB|vy|G+1=l<Ug?_d5
z!ET|Cq6_e_Hv@S!`bN94ehhr|o_^vOiwOH_JH0(~I+0VHb7N%XITmyFR3N|Tue+;;
zf{KW{qdL035)s|)vAPEb_x$dvSwNie@2?t0)p2Jk+wqf`>8a0Wo!Uo-UpvdFS}L?~
zMg6MHl|Hb~iN&&`AzbMfTMUStnB`<?OJ`?rI<97yp+fP+@Km|(?b%sP3QwFiw-0Ws
zddh>K^*jKBe(PZ~=~e4FpHOGB^Z?!FbR1d(?26T+a%iYe>^5FJ?&hU)a<VisH+!Gt
zV*o2PKHbzIM9)lJdU_e0W~Xx?Oz8JYr2egT>c0JHN7;kr$HR2_vmm+>cKhkr>=)CY
zrkF0snZ6uco;de8%i&yyyrjI(aO(quWvV*xw%t_|GOSxTCB0qO#<h>5OGKx&u3u4$
zGxh*4ySl@akX(tf`jg*QC$eGJF)GrN7xp;zZ0k|^R6@PQaDhI>defVZVj1_jrv?Lj
z+Z>^G*$+97A3b8lZMpUxxeyc*Qi#Yj`I5q5Uh}D>a2o=MHmiO8-0afI8@;z%F{p<!
z29en1v&FEmmkxq(6tulr@b1hlu2GoMyE}7>Fb4N~jhy$(-{fK<SUdf1$wjbDC-Y)`
zD;8lcx@6RU;)pO!oY7oR+gK%=JO3p)mocMZ>Pof=VQ|eaG(a%S9)_w_4gqt`pMmAN
z{iG}-jDP$^k@6(s&l-u@R3D+HQb$wiUCg9ubbb0?W-B$SB~KpdmOOFN?}wvO2P+Rd
zw_G*Q6)K<~r-bD#l#b>KR&nr1r{kxe_il*%`k|A4@ukZaViJ}A!6Yso*S(S0I{YH7
zRok~|GNMIs@Ssj8xTsvC;A(OFKKb2^tkq5;U`sD;unYt#f2hCOL_JFu9;W9@xr4>z
zHy(pHi1mMv&(pv<OIiueuOR>umah^y&O~J8u56&aYwd->8>{o?@w{T6rr8wT%b7_M
z1+g%a_`<gXC5x})dJl~Udf@GhHVoN2_nF_$5&yi3Mxqp2XG$>e$5H5Qm3qK&$M?>^
zvO&CKiSTy)|BS(Z_}c?Y{aX)6j)m@Vx{5GS-s<FsT!dd^*vy!8T&zuwSto29Z?l~F
zmb?csP_=3oSMB^PD%GmdEAxA#T;0cb3Mt=@QCtR8bq;I9$vkeNbnL+61qn0i?)B^)
zp7imWeEaUbw9X@ngybZ4d|sTcHCBIX6)hf@gMdzC$IjCDwBWREt6sLP!{z*2`|pbi
zqMN}HzF;jrv4*o_+87VbXLToi`8rNpvDq2=379&D&#)PW!DT;Pp5?IIl-wW=eWx#z
z5<WCQS1irOESM8xZ}?;Tl92>g4=Q%78cD4MLZF4*-?$)Ff6`2cSiC-q8imKb-dp>v
zvvShcSLkEf%hlAsquz+L&Wq(Xk5IYI_=>K1rR`PH0Vb<?74%55M5?KeD}P{OT-J`O
zf{$4Yz$z`i+tZaXpJ}wkU0Dk0FDHp!YNs}v3@QIiU-{MY3#Pe~ez>qjF!c_o!aUL*
ztf_a*BH7xJ9n}AxwV)Dt+A3gQlg#_mK}~E0f?&J5jEH{k1%~r~_S@BgX$Jpy`<J99
z%U0<gX%{svODtBHcJd}jr!D&m`EWyJro?sJg7ZVS(l9m4;_m7y>7X^7vC`Uj$tPa7
zI<&HkgO5C$x$XP*gz0YW-Ll^{YsHK+oJ7>7`g{r_AD;A&?u0V&ixjyaWdUCBX||lO
z7MuOY=TBC%pFFZL#drUX8sPM1=Q!!t3%2?fow`Z91cS*x2)J955<W3ht;=2Tm7LE{
zHFT(w2;SO6>wWBr(+fHtMDLLG7ZdUo+kFonJU$3oX9b0Y2=HJig|x+lJg4ofv=$ju
z#W8<8YyTD*Ukr#gqRPH2RHFArIaq&e#>Mg<Sm_Jn<~+h@9NzV(i5Uad(0_-iNt*MQ
zl}Q?VX`a?8XIEbHC+G{Ri$B(o+Ez~`{G_);TPiL3ph*ssaIttQm%VB|qq$8<*4NAH
zX~|&@@CGpN&l@EVj|O8U6gx2M&fJcwCAR|WZT*fdHAN;>=yD+8V4_M%9-5WgCij=r
z&=uK<C-FY=fp|lyKo!|;Rk7#SSi?Nlx$TS@hv)ozCf-QV9ffVV<4f4w@X8>2fMjcg
zYLh=rzJh|kCEDPz@zDR|gE8;)HE8&}oG)xi0P1e-y%!v`c-j4u2C%y6AcAOy6jF!)
zy+8^9ujH8M7PB?dguJ6|yI5bJ$gL&VuMK?3@G-i&?tP+0&+4>7#r`IPmOIa3lD1rB
z)gF>O3MFhVQ8xrBU+$kptiwhFe5}EdK7~|BRjDyDV*IQ>$fJb19wzX1QGVzw+?^kc
zk7O$Tv^NHNI4Sdo>(Ht#41AD2g?og1DBobMxrn^q)f)3_9ok}lW<nFqB?Pce!>L6d
zi(Q*eT9#SzgTu}WkF*ppCvAZ!Fi+JRwq#a_N-3?FuBiZzO6p{-?ILTTuX5`Zx{zF=
zN1sAjAhXYY;Ci)cJ@QXvC@AR{M!N~iSu3n1MR#5@@$*k<!p%jckZ@Jkv>x15Oh}rh
z=y*t~9@8Xo^pYz!rY9+L(;_T!e3q8(qa6I^eYCyv^~Do~5loa>W9SRgLBd;@O0(~(
zNTJt)rhjx{^}wK4LAILWE<ok;Z?OD<$NnnP_gEgth@ns3^#V@@$ZR}p--DJW7<+NG
zH5@v>aOjB*0&x$Q<#($2=~He^`8eqd0ii(|Xb&9*0ErN=m1=J{DxDm)uG2_jDHM`d
zCw#y|zLkPyrkN|~aR$gCt(PjS&cF7Kyy2&R5RMV#TuS$Xj+`VM`l!1dHTR(1ZV9mz
z?RVB-YwpK0BFwv_?cL?0CE)?q^%da3qz-+cCwo`xk+d@+A0FGL*%Rz#XB++cWbk-3
zhjPL0AU0plkK>866sy+LFPIx+5;{dP-trg}Z@=i~=k9cbW*2#0r9Dz`F{!kWks|OE
zeu}>6ARnf52TY?=Iqu)**UWs<gSE;^-JnxA&R;gb?~~$0RceuS^R6khKl%VGnvbfQ
z0Bh#4Yol9N>vRfQ`ZxJ;^6-<Zk?8K#3u{ZtAS9bnj~X=Q^}{H-sb1G4W`2k>4zh2)
z77fY{f!O%WzJw1CWG)lpc869gjL%RLc;&QfhSN`8<xkW|$%44We1sN;S@4yY!eg9<
zZ0EJJUef}KfskD1h3pqqLk~HfqxJOv;-c+_isOwB90^0xw+fUg>hTtfPmEMd`sco<
zTCum>*$Nx&q?)_bY|teEM%U|I7*&}j`e$!OwHkk;r$wUkrg)~xhso?VuT_P@IBknH
zel8q^QkYAAOJ!^Hf^hBRZ7zc!6mkwDNZ-f)0Wu5A2TH?X$lNP3cxkiE@!zYygH-tN
zB}&vPJwn-d!uLC#Js}wpPM;S&{xa!ir@?C##xlRs7$kpdqnMlnQ;n(*9x``+xp$kq
zMMT62{Nv3Lp;CSYV)ap`;3Dv0VxgddCJ*q5gN(F&sy08wA4V3F7pqkqpe9>myYbxo
zY(wRIsp7lc#WyM1(l|3!<6rMfC^*C-QY*_=`uhFcIUfM(a}(~JmZfwiNZEApC5(>Q
z=AeZT{`?pPeGp44z%48#D<tDtONc*NbW<?hA<{&RANyJ;n!LYForsB}e0OXHpUGYD
zriIx3x`9kwzHfl=;?f0C3zwgJ`A6WcuEveD-P)mXV>a3Q>a`O*rNY^%m%(`7L+Ij8
z2C&BqoQn=b-@26Q?b3}1?b^9Y`{PKEvB{lWozHrvYx5+3ZCp`5!k3IDG+Q$D0S3hM
zJw>)5EM^YUP9!Fc%LSVeI|0Edadg4-Yw9j6mX&EN<CD579?#T_$<C8p+1f7eFRkb1
z?LczA8Qw~c;ol|aqFqYeBnQc1pQ@v?uu*my!7d0#-Jn+aVl7*fametq>qZoo3prj^
z=B8t6{XvkWY?(Oo{dZ`W5bo10XJ9ifwdD@v$<1c)3*9U%0&gA~yZYSIuCrUQPFP^t
z>5nyOvQ(x!S3cjq2q=Ff<@ovXY;7-gHV2Z;|3-b^QmdZ-AWN^vu}CxP$%x&FlRMrL
zovJj(%E&=<Z#TYaOu+=Ps|_Zt@U-@s?6HYfvxg<j*12o2A>QM{>0%P*b-c?))x)@T
z7NYlXch&_C&Zu{O$LM?E_o>Xr*?7U)N3n3AGweF`0Xz0BH`e`yPhjA8nSIM0vS4qw
z%>XT*#Qe~AMX`(^ufrf9;id)%5{4t-W2hfLGLzdd*@UgL*@JFR;e7#rUwJU)$aM8b
z(d094T@m&}CwH!;7s_g^S0BT#o`f=X#sS~#?#PiPnhXkMnwR^s4JzKQep9iSN>V%W
zkjCKM%F0<gCAiX)snYVHe*Ai`4eRg%?}#3?%W0Vf40pl*1^@<TT>DCBU`RS&<g%>f
zvRTv17k=?V;zgG>aTs&$DtcO}V4>0rtTb1HdWEV@=Jy~>DTrSl2{t{POj@hlj)k?O
zyG}90VK0?xeiPAB5Wjh(`A5hI(Z9c0YI=KSsnJMtWpl#@s+^NpN?wa!uv}))D32D|
z&(_$7RtN{`nh5E9fdMUxJ3|K1&jmh`qT`FG+N_L9w!JUm{phLAD2<56b!Hm)9o39P
z@MtnnGi>tt`Z|PRcmKnik(kZYoVxunQtcp)pq_>#X0nq#>I_DEKA-grykpvG&p~J|
z$(D>vaA{@~I;o*&{iI0@NR<waO3vGq^Vs?cML|!j2YbBo)oHTDaRky&z_vD};r0>V
zMtan3$nLXWJEqB=dvTOmmS}v~j=u8GHHjQitT)FJkK_@M<xn1(1su%2B`+h_x%v-C
z>URA|co)fb>Rf$kMTWe8Lg-*=Ij^{IhlEF)^y-u<k4j?=AbwMT_!SMpx~^oac@!&#
z_3~dXqi|>QVZ^~%4Q@Ms8TsHdzaqmMvHXS0LY{jrck-+j0W0p7t%+&j<Cps_XgU%1
zWUShQSXDJ;ZNPkrFd|S+38|<=gktoe;XEQLafd$He)^bvbEM@0l~GpBXz#q^E_p3o
z`qQ;GztD86Z+57U@trms^$>cV;s=858`Lamtc)iyUpe<G#U_-Dzbu|0eBkPJInG#@
zB9vQN!iSenpSb_i`t|Of8K6<qA*4H?_X@g(_Oap1Ei{{jEqUi=#YCxjIY$Z|CZ(gu
z-g=0KQ(@3wbcSdt64)9#gv%EYU>XWJSzBEQpPT)ZZ6sEjlXQzH5i~ZQW0Yx~C!eI>
znqP~w+xrQxyQI<RBo?jJ9Z9MxkHcoo0!m_-Db!$Os#o6UmMONvFEz<TC^mZ8gl@}S
zYHls?MjJe=t61um>2pJ-k+<6*c)Nwx{xh&eH@R~6vr&S}+oo5Bd3u8i$qvbR@@<%d
z+$p|ewnu~Gk%ub{<CSx)#(q!Ut(XBOWi_w5($NBW*pk}eS!t-l6$CF$Ed7so2?OAz
zl3Ozu?{K~rqggSyEbB0>&pF9;w5%^4L!5;w=QG)Ri=+AQQL*ppSb8o9hS%4gDT2)Q
z8$0J#3}uuH+$_=dhZF)Mc<A`i@AqS=WV&`h$AV_{dh{Hp^=uNavm%GqE~S8Vjs|ai
zxpik8$wR>RG0yF<JeRMt+IMQ5<x0Cw4Tv5xKE+jR5Z^`gu;A8KxntRbnWYXCYQql~
za(LDWc`4EM9o&Y|cG>8&yBy-J@2Z;k-=GA#>n<HST?rUFR`2r()g|-h@*zF|HE-J@
ze98sk(Rg_9=yw|+bYfdt2XHqrt!Eckij?-}w|qd`#6Qu%Z4h4Jv~2+tJvG3>dRX>k
zQ7C8O*b`hMvZ77m8xPvb$b%rz*EljuRGO?{G>xWqUp_+r`|AFOib|D<qK(!(1>dtc
z|CRC3rY94|>#=mt2i9S25e}B=6k-U%-fK|G=VaB?SFi0B7eyd%kk@&f1-{{79~2F1
zAC$zIcn6Rs4LQ=<M0p=k{$OquT~V}<xVGVkw)|b)W$OE@oj<k$Ba&>DEeApp><LrV
zy){!T`rzgC@?g+^Tr^F4%_%lnpcx#&TYx$!<ywktWf)A>63s05J_q=5txWMm-|eX;
zDIopuy15wrZ&nKw*S%fT<bYQkrZr;e(oKcnsb#0X;i-T0ih;l@s@zf@lAKp|-NmZr
z2d#NKL+9F9)b)gmwCeRx+zeLwvNef)v?JK{v&KFgq%Vp7)W?Wd5^aD2w!!e_^I7{U
z-@UW=14Ujn>sz)kA^`2Aw@%wLQ%IqMy1@FUW`l|S`eDN{Vjd8L(49%jEsn9i(%CbK
z*fgqObqU@U%2+G6g=BTswZ$~|!;^>|<Bs)ayMuB<9E7t)T=7`Bi%t>pZ;I9Q4^Zy7
zsdvQ}=^>jl!i?G;BP*jerH*ucGM{p4>uV>^swOrR<8IT4Il@nt?uJ3FLYir0d?5vr
z7ZT;mK1AI(tc!PyRzCz-Az~vv0Q;Z_(Lq_{!V8LBS2UME)L|3Z$+ucRxzlM&Gut?;
z`*SiL;BMPs#E~n4w4gZ|ip*|MTN@|qP@&2LKedlpc3gZTbe}vW3$Q#a^EWXYAIcAZ
zGk0??q?JE^blUeu$;ny}HP8KcLRPHQfwfdL?Rt??VX$Iw`?awi!+MNqY|f-D|IgP{
zP#-p$`jl$mj$CXbwynu5rWQWF1D6hqX?9ZGr%f1Bn)t~^W3$c{okq}oCO&`Sg^X%;
zu7`Tn<F3zR_MDLXUhJRzo__)>B+zy*jZ|S5R^Iwh{$%`xiP_Tr*sulfbg8NGq}$04
z^Mq&k><;@a9%Md5jzi?1(jF#MAw6>37;neXJ>is+eGBv8{cUmML6b-Tn1wm*IlDFf
zJX3FL@fiX-n9z0$fx2jt>MSv(2&wUlt|K*q^+u=K0~JD5I^;lljcLQ`;EZF9ea%nM
zulFiUv;qyv+ofK<`+E|OLhYq&$?bjC$+Ekh%u!4<nS8L=7uIx@+hR$!Uzq+;GWqfg
z%5BgDgM=P<H%#^yD!9u~|Ns0h+ho2tl$i`(Jsn1rzSOwMKHb__J6t)@{*b_xX}88;
zkjb+nJ&Lg>i8~M*vNMe)ud0l?2crs#X`&n+ZirP|PCco0DuFM5-F9Mro!I2zsNczX
z@qTLj2DMy!f`?_3nM%3L_l+_NB(JNCl@y%%exa#PHTR{x$6oS#?Ka%1_FxD#$q5}a
z9MqJh%`?oS*6$yyr6D;|`12q*G%JI%VwJ4yMNQaauu1v(8#nx;>78%zcp;FqjeT?J
zcAdc;N4bPNS%%eR6L-rPV+{1&R;D&NEyGAXo$<5KYRvwcY9j*b%gD9xsqxDcr7?bR
zS#Z_AZUi8s)F$bat*ReyOquQyzx{%MOf9S(`;ys{<wYVl39?_YHdu&?TF>k_ogaHN
z{{6zRjW8%PBez3g3jeLg`v`WG;`cj_c|+}`#j74uE=?&s4WD>$xuc3Zv_{Mm$Ng!*
zy5*D6=d0I6Ke}vfBzr4I#p+jJ)v>68AmLL9AmHsKu<}Bb-*(uuIBmiMdLeQfN%%Fs
z#R^i@Cx;<+NF{SQC&TYLRh<|}SC;N=DUx;sGZu{MNX;{>yM9MRz=_zkIK9O7p}9_V
zT3Z4sUGG`k1@zh=%q)j1?T8Tcp0`Q;L=L@uw#I8K3KZ8CNqqVJ>0=UG9iSYELBBgM
zac(MrgvoaC-lHS9))pU=>J8BXOg9NoN#QLA?~y_jL<TYgpVm4;XNP)9Fjj^5Filsy
zi*Q#b%Sv!)olK7WurMQEP}}33b1cy)CdD#6o1v9qU3s4j`<9zcdiKO%gDG{y-B+$0
zo$@Fl^%2qu$lK*<dc&G_l+)!5B&$~|arL;2UA1iD^!*6D<->xJ!8o?0slTzD4nR$5
zO2D2)+&1IU&5+)0PvwCmdOGTX2em_nJ+DA5*bo;B^;92it+hk*Q0J0=69?pCrSC3w
z39LKZieTQT;<MB5`231A!GoI*Q)2VBW@F?n`A#C*h2sDq`!c&%epKYYcS}#tfFQ_2
zogA$wVkI1lcwnAY+aT1)rzRdje+p{7<4s6B{KQj-sLjeoa*4x9<u(SvFS+sFQ=v`C
z84@{GaC5^0d#HSD&?)%y2D6bQvo{<$n=RU4gl>z}QJG#*Jh+8|MEa1Pak)K6y4F){
zL<0<ySn$=jgO3~_9vOsM_@V<m^}G2$p4vwNLK}4bG<#)W%AB4A8}xv@6xqgYRyu*x
zgGrOizKh>N{8Y&B!+CI?^=Q-Aix2b#UX8DBlqXzn2G<y$jdoye;qcDHc8xky%)Lh8
z=2M~Yp;2B-+e%#RkeNZq>(j!}FY}lJwdu-NhX_U2#>IJ>&97%#WV)F0^7aLaazpGE
z`MQ|apfeDz9GuF1rW4Q{u#&1$*{o+p$ffw(sZ?@YLb=|oH6g7)E*j3e{ewb>@%1A8
zGrCf$j>xSU`3xo3{MjZ~(Ro(6E1=%&kIpT??7;CFkay^D2b>0s;Mn6@E;`WdgWF~>
zD){jabs0WjqID2MA;v8nJj&(4n$$;Yu(0WoBNs!~wFOB9U4T>&`i?84=Hi<-K5WzF
zMIY6}X|zAH09H$!ZS6cypB*rOK#S=Xxf!@S>^Id~A2FDpnxhnHf0ixx9=X;sFxMw^
zSaj^p@f96Ky?OBd)Dx6^*$n-_;}*5;Xrv9Opdrx4#t{0@ts;5KCn6cMX;U^;5UJNy
zq#^!0pZ5W3@V)e1>ULGnE9&kxbs_5)RyrZIt5;;IwxD(=7}w@*mdGkt2qN+D<HL6#
z8bt~OL`E=SKRf9c8J!X!jFjfS*lXI)#bYTe?0S=SB}RM<s1%w|4Za7s#`G2mOtKDU
zFE#i7VD=POpF9XX>`rOEhe4wfkk9=ygkh-@e+)t327n0TB_H<6y-+fA*W*Hq36T0#
zSbMlWaQ_9t(Us4*KlLPEf!xYW-4Z3qSZjA#<78HH_Q+5ge&TA^hl7ZgHIC^9hZk?;
zgrz4fTCAwFs{=NpJz$$&PrTW12Q@(`>-+;bgLHdH=98##++X@ah_HEVdB|j<)fjnR
z?w&`#p7^|8{k}b{jq~$h)!0}IX~MN#Jfob4u`~vSLU@-LakK2k5LFMAOf3!TGKd?Z
zE?SC(4;131yOW9Ssl?-1USvhUSmzCO$kH0emV?)qYnnIUM};+xru6%;L4ehMxN#!f
zU)(&}*{h=2J3~m0w3%&QaFdE(5IfX9l%r&j$2I7ql%m_7r$5Z0m@mxT755^RYN8Y5
zlZm%{<XnU2lhpcO=0~<ecoOrC$fC7x(FJwi>zXbRF(|bGff$0!Y`M5U#ys_#ggsWx
zY{VupGK=0q8<sJMm!4!sF%JPGXx|JrKP2PI!rghb8Wx*p7wpS7M?<91SKQLI<&gtV
z(^t&<2P&?I^O2x>#OcQ7X<Zk@()N3sZ>+V%9NDe+^VB(C<yYbs9qyb5zh7vL6ZJU#
zcos!mwf95(PHMT@tY`6}uC+98HlQae-k5jt3cslrkIhx%oYNlRf<5w0!6n#UG1Yk|
zO)y1$Rn+wUbJ1mTvF7|uQLM1bC)qSU1%SDu^L8q`T-rd4aUNxHYrm4qOROfrkS<6X
z=6Wm@=8hDx1x9H9U>?#uaUD@u3*6E-gxb6ESUWhjXWRXGkG`<Lmtqx4dpK$9K4?0v
zj2wPUi3{3>^%`7PSU^Eg1g!*g7Io|oF*-Lo`SK{rwUkP3o=GTbrHQ!rnlAj~2-Hy{
zNgS22KR$5@tLV|m?nmWi(#XN<Ru&G*eH88>^p$tem1+wasd3w;nXbW<7$q&kyqF3X
zbda=)R^yoP3VxHl$qp(-Y+J|UakpKk#%JQFlLN3yG}x%eKR+Hs#C9axTSHh&=_DFY
z`WVGy%VO+UQ@Q-80Z9P@4Fx`|u!e@6IgQC5^bpgF=$4rVoQ-49)<5Cg{0M7xi`*H}
z-$^t&Z&9_UaK5<eb&1jKyP>XWc3*g&6%gJu+O98NQ;wh3gSUaH5#->X*r)Q`q0#Ob
zoqq4vu*Bxh(ZN@bLaUQw^ED9-)vTQg)ht4LvC)sJs1D^L+ukPvpwO?>eumJq;)R__
z6KF(oAPpn9BME4MXTOATHjVy&cm|(XQ#WDJKZz6<7$D631u}>o2VkoJH3TH&!UMS4
zhFDPB1_qP;B7h>_A}~vKU07G_{U`1{RRolo@;-%dtvhtz6CV4}m`;V=%{F=E2OtQC
z4j1+lK1@&9U7O%OILhBe(yzc!#m6`<N8jh1Ji1A(U?C$bn7si_IQE9w@f7^f6bZ14
z?}}_KHInnkA?2?z3M9V2Hvk_(tRi{a|I;cy(kkA2`s{Wd9(bcw6e|-xff62eygo1w
zx)@?$Q=fy#{RwB`G9n?ImzOIHpqoqWw}T55m^p9T!c4x((%vB^0?4`Q-?ou7lbX_k
z%}>?>w7=Wp??E9#&BVre)A96Dez`Jg(6IG<(tk$}dUt|BFg_1L;ZkO~`29gim1rSM
zt3m7=KeUY}0?m9azyIV6u4VlT8<Qqd2fmT_Z$3@p<NPka3WMXi(5en&2k$G=u3oVC
zFHsj5^zjS%mwSLWQP6$lKU5|19OOQKz4<ba9f~{;iu+KhZ;y8FD@R+uCGzg?+dTO;
zX%TdrR0Dp+(Sn#4@~STZv`|fa*ia>|)lj8&1$1}6!t3rj0SWbr2)rpaTscgu@E^MB
z7auf)NT~~Krzd#!6_lHjDnrkecbB#W*!!l<68++a29e1a$4+qdH0CWt1wrHXl%NOX
z@N|HkC}%-(f{3eW)j9BQOK+j>Fe)JHy<UNx3G`s8)BE7`-(u79?)J^>F@p5|lk<EP
z2Fn*ST^n!-x$G85%bq#G?g*9h-iXQ33V4n_=)d2gHw-XEpc4cRSLn{cdU-vBhtzp)
zP+@jBy+;P!UtzEBl!AQZsjtU7uM;?s!PMDkV4ZPLUxZjdAp7;UXtxFbUXVa}g6kKA
zN+}v%?*q^A3HCQc0}lfYzuWZnRTvpEOW^N%5GW*6AfE3=m1sit;GO|(CMrXPi`DeS
zmo8*{a`gae2L*75Uq+lQ8@4`o-j;*Is5-1XziVb90ik!5a|=X3)C-0`f#=|TT=V<L
z?!myI-U^5Wkr_Jd?F7er&;+Cqu`DTgjkkcp&jkhv>XO}RLelHE*yjk)Gk3~&Fyl07
z9)3#!fWas~r0#@L80fp{fmgNi_n>O!0$vbUcwk!nJ~B{%L<(3*F!1!%7{#CRGcM8F
z@<^33wr?cwoxp_Eui}9Gc<R7b_T%LtE=+?+i&*_b^_9lG&y&QrSsXA4DLL^jjQI#G
z$jCC3Wl;o{Ws$NcP`pc;Uw@7a8Clfpgba+u^)8h|ztz)wa86;j>5F1r>yILEd*G-8
zqF>c)GHhDuCcjx_g>wq^0(Au+iw+2$R(8^Q&v}}`)q*L&V4SCOIngu7|A7rzw019q
z5B>IU%G!y_f%>EO@Bx22&YrvD?52^+ysMGC2N{642pxw4&lsea(R4ALOYs$Q9xd)d
zx9@q{l)$q31Wu3%7}1oc>R1EF15Q#v&6EZg(=piIV8f`YX&~Q@?llCX3=Lw&n%8a(
z_<yVs8uu92i{snrLFQAG7__VY@*ugrO}FM=yu*hu#Ibkp9Hil6R0}a=AVNsQg}Z(D
z9Eef`)BIQG8~IpAc$&F_4Rl4Kh(X?T%JR;r?NrCVyY_muhzdkCzRW&c0{O)#5KT-N
zRTta)a}XW;1sMxa7{2shsf7(xPj0;-W(P>L5C^aU`MC(bz0%z)7TbP8WPc5ag<<?m
zYXhIY<N_>;50QkW1<~z_!6ZntCUg0JXU%B6p4yN0%!7LoCPe|>&#D>aRuh|M4H3`p
zLx)QMd42nBM2MEJQX>?|C$j!pFT#6Bp}m&^#Gnbs{8zg19rk6$c7iG%C_3^dod;sJ
z&3b1*PbPc#JYNynzymYWGgjA0<{z^G%nH!%##(PHi2bw*gs4a7{=YM6+pItt?f#~W
zsQ6Hfk8!xz{%HO^xLx?MGGMOVnjmlhm}^6br$71jGU){aqxQFE?(tIN2FG0A_$*N^
z4=t_|x1v*Jl4qTR^FA+cA0fi)DPK(FmTXL;)!~Dz(MXFK+b}H4Y6YOgWd65?7u@?j
z=!84-I{4N1)o-^c8U@osW3+qk%^yuAY9ZI@0GQ+8j2QTAU|!>@ATS5F&FXV!4=}GA
z2Uds(>k#GlzJQP$BfkH|K@%r=#e*8{zZoImH_=M<fG0k43x@{T6<3&^J2&-)O<ms*
zfGSu%Www>)kUv-B2~kUPv;SNviCW>~RQrGZ-A&zt;(_7>CNHiJ3xa@v$twil=3oZf
zw?fDe(sc}MjIBjF@J8Mjv5;5$_P_dSn`7KNM-N`?quwh2{-B$n`Zggnn0K6J%330R
zQ#?>K$x0!#uNcLm#34>{C4q|Xeq)Euy$5k(eyvgOAo9$r6fdj`SI(451a}KHAt@=I
zJ2bG#C=3tLZt$^cMn<l^_uyH}6$5oY61ZvBJL$3r!CME3`BL$gkm(9F@_jNyU;qQK
z^xf+>87FLw)H~5As5k=Uvqh!WhQ7*5PDm=IzcQvuX{N~%jUirSAbvKtWEyMKn#B4p
z0f#KWcH-xbsKFzpCxI0>r5pXq3H3BiW|3qve2o)NGJEJ%i!g)T9>B2dT=_W=Oh{fJ
z?xZtf$(Uw;OsD9Ie-X;mAt9INvy^4}wAT*qBNqhl;4;prk<rbl6<q@|<xI8ZkDnwW
z3cI%>@dQQ{`b`GKZ@Klif+oglA%gMW{qD64wBE_b3m<~~1D*+zfV-7ME!8`bRQ|9S
z0P$U4((&sRbk-ZnD$Qq~tGAO%MMP1>=JOS8@CdKT=Ts}js4!?ZxP@pXGYD3&o8#JL
z`YI)uep7{?YH-Bwjk^gq9QmRtEdNDAh<O3oD7fYOLC4yp_S=E$3|C34FuJ!;CR+8}
z(NwZO?6mZEF(I}!_~CzU%LUn>!XN7(Lkphjzd8Ugk&CY-1R##%ugK{r;4+_st8;x`
zz`rjDaru^DZ?SQlILC5Pn}Ce$QUvo-s(&MY7)F^u&gAatsnfaflH=jU1R1&~oiwW^
z1&Wl(=WNWX3BL$*V=i$BWVqk<2cJmP5Scn3;9L*R-751v=p)P$L^$sg;I=R@?3?Y^
znzs7DZXdiY+}pDcnHRZr9zeX1<zNJ9z4+je<pe^%fs}+()ZN(+@Cj9bvws44VqaJi
zh5<AnxsyILEPNSR%)tca4`k2Mm55!M!1E5Y<&2*SQLhZr6<`{HlXfe0VKh;wj*Kqs
zT!6Zj1(<)41>l{5f<l#dD*+(Be=jbVz=wv1hK6+a@6m-n5s?kllRirn5+4TeB&eLX
z`p#C?M{r08LmUYn6DyuuxS$QvbG-Aod`v?}1RK#+muaadiBm&CzzK{KfEQUe@m49;
z&K}Kvk~QgQ32!QbE;Mk!J(D`6y8nn84fX@X+l;(Efbf3*2o7Fh122y8pp#YwlxBC|
z*GYE)<X>rNSj*e@=)d)n$j7S__9a)d&_}o~;5bA#VK&DM#^%2Axb}M@`%6MQY-;Hr
zV;3P}0U2tg?i5d9g3Xdj{=wRCvfZw*IXo5?;##1b{oLMsWHgp_5D!^jXu|(#wc}ns
zq0#rQv$}xvjC9JkBU6em9l^NO7j)Bg?uo|)(|nxA=4q~jo-Uutg{b=#%>7n{NT%9u
zK|k9qG5wDU_dgvnT4@;iA8T`$2LJ0<Nsz;!ZtyAOOV&>3uMH{?rlh3}kxt?jZZ1rb
zQ9mwJX{Y2ii!GFM|0aLV^fc-V%7QNuwXQE!rmyskbrO>{t5J4u6whOX)l*`FkncF?
zp7T@m=ckE|{#&J4M`GbLWR0vw`O4_6T+%HciA-BxZhRh<<bEt-+9yYsws<=m;sQjb
zcjenU5NDiiC8Q6mB=OrZqRzmiGJc8QtyO=0Y#<=uLwtLkLQpOl-1ako@3M?Etc)R&
zh~MqNuwAXL;-!A4xSeADDQjP-Ah(sc{XU;^=0`=NEw`15*wwG`83_TLtUF>zQN=l+
zN9_cEQV4CiAq)5B8zZ4uYa8~olb}<i*V8mGX7ZZ;_EG=B#Lz&JKg2a~T@Uz_7oPxx
z7S5<_^rwjcpx}T0yjq0#0(GClnwt8<^U61NdtJ`G-+vard21qDn@6|(0}Nv7I483^
z7_rxm+ssujqc;$ZjURJ8PWJoUALD-0|6$D5?rg#!Uwi49z?Yu0v5Lc!kml9Q%0#)%
z=*M<z`(%MZ%@S*a-$V@zCCAQk`3Le9*<|1!+4qtu@?oNFTvphUB{x|G>e6Xv0%OyK
z9l18k5u}na2up3X@yA$x<hRG4G9bn1QBuS(Tx7R7Co-QoU`>vU(`dq!h%M1b*Z&?N
z_gRviQe=55O5r?~+!d-T;aR;LeG^*-eSuOMib0G+tS;f_cR%a!sn<I5?xVYIp=w5d
z3&wYhXOx(EPjasys!+^~HLnFJQD73$EaICRqh^B}&zxuv1*P0^Pi>~#S)N_mqbO>L
zloqq>D>@mRuoeO8g*GII?DOc$1E!Y<xI=FiT+#GUPTz2TY5Zv`*}ttOJVj7A5;2%5
znJ9~nThd&8Bb4)lF!tOde7n6}!8fiaicCN`|8*e;MxXZc(yp+}^c8Qdthcl&=?L}8
z5?j2_dZCP)G#g2$@1IbZC)h>N+MmCtr%}iyUW#5$8ih;;$3=mVGk*!6;O;~8{NDHy
z75~*j%aUQbO8^kwxCg(j#howzr?0>8!0$AWb?TCE>wR&WXi&dc<$s>(Qp2Y*`~D>=
zJHq-ULzZ~FuVD|a2za{Vr8glXN1U=5`7e~-^w_R0@|;_r;Z1njS;{6U-{VXu<{Qpd
zEEyC~8_0i|@%giPf4E6Zfy~fKXb!iZWBxv@OSyih@U+@-7BqVhjPThdF^uZXriM^+
zv8E__AHhj<!HR!6MZRX<v#R_dZ~5mkS+O+Fru+qNI(!wH@IDyL+!zkcs;h_-*RV~O
zWBU;lT@<`$_cXr_#=JV?)~vTyVkJc5s>&bbBikI3GDCh-DS&A@S%EJiI^QT+N2U?+
z-oyH2{@r{exzuy`P#?z*hIy9Eje-a->c{S92j~;dI_k3VU0!&qHgcoO?iAX`K3zJR
z)d~khrLFi8MmBSSmTRYLB;Ilf*Je*E6x791zkgNLI)k7{(pwJcADI=<bqT`H`}(m3
zK*N@xUdnO9s6N+u_HUFCR56l*xaI^#wIWtBt4jT55bt{e#=1hsH<|PKkAhT1>)hhq
z%5<5y)t2Xj-65~|FkP{l&8B54joOjWJ!Q0ENLP>=VyHAy2rNeu2Q$SX9V@t1ReV+1
zl^6XiYj6#EO^3oE`VmGe0m?E8wZs!0tP?2u(~Yiv%h!ACMH7`%x$p_rPX`TC5v5$P
z1NA?$Rhst)C>P#D(`xYKsCwuSp{XE5I9ztoZjCUn#6GQjvog^_T6g_GDN(lmT+?pB
z8D(fWG^@z9Ds)-jSwXC|(swvfjKAI&o|AL0YoQ(2T932i>a#=mc8I380l7?qk4xoN
zZ0V$$PSU2M3qj{mX>#*2-A%&vRH-B)gME>F{sZ8c{J<g|sU=%tdf+2-_y73F51L`H
z^uB~V8bnsSsIO-leBV^-+<&q+g%u8b*pHV05U}fgh`Fn7_-CVcYX$`&5px51Cl2dd
zCVaN+MggTEwXIy|UWcXtLsI!YvOz1DN9CA>rwK7dnuXyEheV$b`fW9}a~8ixm>QN(
zDEGEzzIrZ<GjM?4g&O&SA^@Ln<fpTq@g$FXnw+cw4%8I~SBWcAiV>nDObnN5V5(+6
zQ$p4wan$7ZTH8k!{R3Y4f)5BjyN<PD%s$OLWu@Yvf{&)sh@nC+p#tTl1CEtMta`7Y
z2d3h3Enzru_L@nE@8^@`taxk8Vg->8)om3Rlw_G!F))+KDQinO3mHOcHl+T=ARxa2
zxC9EBqydm2#Bc9C`_G)$466PX@8?9G^Ya(RvH7kEk$DmaT8fQ!n%YT9;elZ9TZs6@
zV*QD`!GtxJY%!v}#eS3_it=Q>>X@fD*`t{3w-ZQ6;<`#<RVEvRher{rd`pz~(=*1T
z1yAfc{Id*1j)PbCSjeIUdA$kA*<eOc@|#W8a1Nagas;G`#T~Ck>~WZ#k*6Eb8tx}j
zrM0$=Vf3g+QK1)!V+5(>92)zCK361FVNd?0Tqo+hK4g)bPp}N%!39^9lKO28hU;MU
zC6!!ip|qKk&ohvqh=&wH{DnP(fn?b3eTAa~+ju*lzJeS~VZZ$EC;)({fBtxPLU=ew
zu-ZIyJC)Ak{5`E^V<u;~ubq4JqeYs{AXaL5v1A5>EE!w@fb_HFVY}osH1HZ343ITz
zF*m3c)*u$`bvhMBm%7hb2>)B!BvH1m9beLK0~f1Xh!`g7j~8hLmBdFPLU<)5I{NUk
zqj5b)xg6w*Z)z<{<eD~N4J=!S1Brs*KWfD@g;~rtW>HBTE7HgXCy3Wa8g$1+Znt*~
zgbzJ5{t{@(KhrBoORk7$ET5f4d?q2=poj%3^d^D}Y*405>wd0LYX5*99PnFNTO41g
zTVoWf7YJTwRAx=VDl^%*A%&Wh)MDs8UCpJ)^CZi&$nwiAthB|n+@e*qP-QgC$<H#C
zm#pg<bmNvb{d{TMxqU`1tN>a^-OZnja@E+cU^ZUv-K#SoGNRT>Wm@W%^8)r;N~8}j
zy|?~4Jkx7Jx3~2yaHyq2YyYSX;UPqw{{`}T-2;dm-V1w9Xt(JnWqq~liA5Hc1r$sm
z79D{NB>?LmAHn|{==G|F=?>`XiUchw`}59|mi2ykEyiTK4Y$Rc?=G3fm0MfBl!le!
zBys#)LjWbOR5LR_wphR*ND-bx+G^t(foaRnI-emrrD@Ag9t4xoe0E#Q%q}|>;Spmi
zNmLrgFX!Y#m9Gp+c5pz7m33X*o|<Q|yA4l-Om1Y+ayF}gwK%ucKxQbxJlDBMME~~U
zOnZ-)4u|KT=G*A^2{5b4cTeE!m+W+nyyUsw#-Fft%Au2VC?&xV;pNssjme69hgzIw
zWh7t0%v?M&!K$^lx5u<sUu`^#vcOyr@u3T1X(<5EY2vt<sf}p5G!E=50d4sOJlG78
z5rP$(&4unUmaoMRJU*G%=wX-Wf6f@o2>z5B@qm+SuZDh)X!5McW63c8Iw?l*J)!#*
zi{=OlK1;!LNW$<g;eDK9=Td2$SUS6JA9|B%dtKx}JgBsam^}5V^xaHyy`$n>Puuy;
zmtSiM_2sZ+4iu31PsbTDgzFzY->ZAz5@23^+$9Dh_#A=Jv5Dn1`OT^Rt9n7c6Aw_z
z9ESe)sUnU0q15^YyMk0emC`}byr#@*J10_UJj&5~N|j|ITa7u<F}}rB8U5VzB*l>D
z`E%!rSwZn=;wq|?(UH1nT)7M1X+>xKzCfvNqwSIjy=YEX9-Nsi1a@PH4w(*4(N}K#
za!_LLY5U4g$Ib2=K`Mrd-T@u=()?%Cvjpot2e<IR#TR*jjPosm%%MC#gH2*RWuyI^
zbxX7|!y_L;ngyz;c|=2*+%(99BNlkhuDK_ybqY3>G_}{Rcnku*XFp=xV0Sr3cE8x5
z;c(ke9WTs3tfFE`MMQEKoqEyjk4v4YH$<RVVRm21xx7PEKbrR~AI`)PGdtx6Qv$ck
zY3vDi3a6$r-%0>tP#3EXtHjn`*Ev94Rq7Tqbgp>htzdVhQ0DXzT0j)Y|KBJO2x+(P
zfq^8no<G5c!hZsN|L{)+a9Nc?JPd@?qj?A420yze7U~c8Dipsqa48?Y7l=6ay;C%E
zFjY;#M5Uy{BA!O~^nFvN{iV)+Cgtid4<Rz=x%7@6>GJwjrw$bfzCg|;c2$+tjPB3o
zHaIDI6zYZLt&PDwi-`_+2B@*u#<Ao}9pD~T{Tf$6Y|*8QI%Vcp#&Q(Q9ulABt~jM9
zRi{v7gP>%9V{LT#>amH^3cZp`*2<FDeI`d2-3~F2m#<wN>0&(hx^|4e=MzQ?olObU
zH4)>#Q~kP9y{=RLVT-Hb!}V0nM~CfMUFVL%hXt$|EcTqR%x(Va@x&Opj-2Llc+~#*
zNNn;P1iRVa_Po3g$Tbdromn^9PadevTGyS-08_ep)h7bG_Xetui{qm>_9jDiyqFFV
zIB%W5;g3Hlt-l+r|K_|K=sKwqnqiLIPuay|m}<GqnhL^2v&`RxfO5xPcjNo`)u4xa
z<=fGtC(^s7TO1g1R_))im>kDry}!U;BO-C5RCY%ue=g_eJwJXi;p!A?=)QxP#1DqA
z?6=2bfN_wc2MZVH`$0BLxf7&waC`>N4s0J2850ok9`j5vfO!5;_oO;{ICpBp;ZjJO
zCL#Y(BzHQDs*Uqzm&3tC<y-tRYc?ypP-E+nU$i87I>qT-#0ZY>7JBWK!v;bWcMuZ9
zDI>BZk*`1K5nxY)t%<QwUjyj!&k0s*3#|2@Nuc2;lZsY8jT;r?1!uPUzjbDSzMzB`
zOc-{KTUT}ybzGs~oKLYWd%Jp+*Y{n4&;EsW!=od!t3oQ8{)&Zu!}G;@BxumB@|&+J
znBT07#yA{L7pwH>z)^}XC*K|8uJ9=w!jc|LWc2NBhpz|7SqpUtK`HvJ-@6owVDe72
zW>aSO&sOF6_~jj-n_GjWUaQ{v!)L-NLG=^!)U6Aaq3N3XE-<_DsJtpqVrV9xjdSWX
zpEga3;KpauzE2Q#BKuI40*KdU))3ed@lxqVUj{(7JX6NK`B$}W<Ru`A%jkyWyZ@3)
zga)(^**)F&Sb+AazYq32)L+VhtziEez5n@6Cx|rm!H!}4Ps(hT)>P`5#7Z<;njD{L
zgbAp63-H6cywO~ZrZ!obx{E-Z4hijg+1Pg%&lV1kCAX5@Oq6p)@NrL~BA;t)fkWE8
zBGew-_l(K!isJ6G#}zs&$BJl#=VXNNmcZ8-Z8h2bI<>$#8BXld=bv)6S<G1>BrKxp
zM)VU!*Qez41o-XT_2Q9Q-8p%k%T+mp_>y!a)r-by&j_j>L{{bghMV4O-jS<xDuv@t
zi1M|p&X`i*Gf%|W{>+`SDA5F{jfMDMXe1&p;3J@kgq={3^=mo3z?W{qs^3$P{+z>K
zj>rov$|&4@R6YT`bZz-!^xlnYaA5jR%0byWrZr0Q{6l?1gtidTrOvf?hu145`IGyf
zN<gJtMC!U2<a9dM?#o}xm8;knsn?=ZS&m6z80Hierdr1Irbpx6$VOAT`kpvN+ECXd
zOh4Ngi*GyJeoL}6|6cR)GOgr0&Vr|tbI5BxG*4;J45d;yeGxygQ9Ojz>_AN618YqW
zK1|MidqkhaJ3R|HzyrCOW$(R4EE>Z@zTKMp5K8sy|6L~DEQiK}7FZD{%f?YR5W%oM
zH$wTJWkV3voAyJUh`jB9GV)6yonvnqsjTWm?At?mVDAy|Xo=Rsam?*(%U_XJJ18rb
z9AP&)%MP7dHt?MH+y@L1ZG1C|b8eUBf<?kER{+M<EtnKR5RJ6DD%4$^$C?L3#Paw;
zv??)96=V&Ay0QpT&!ZE&l;Z2M#lsWI4SLeL^!(nbz^Dc(|H$(ET%vpgpewCXu-b@+
z<ng*zHU5~WLi3F*>$TDv_LrVPunxNeh=}jNrSn2Od=!t=gGT^ax@|?+?HCint1)@P
z<Mh9IKV{xajaE5bk41<cOCx3@o&u(gIMqNyQgjLb4(-!8K1BARaXia#_-BkS+5<y0
zFWQq4+T<GVr3&?E+kh_g`GjGt*Z9R33wLCFGA+Ilz+4;cK9rHaY^+H&j$(gK-8gaa
zF4fAQh0b(&D4o|+_QBayX!WLmlEldVS$vzQ>`?lTwx5gMpYspBQwE0o2F8PO?!Ti{
zn|Nck8K#PkkG~bfh^mjUd5DVfBLlO&y`y6&tn8yuX=j$=-2Ts#xwNM8Esom|JRC>a
zxLExI<P=prWF(ZYa>svsTw@q8b?-3#MtNWF4w_KCQ?y{Y8RLrL6`oT2=`5JQYrdG7
zpwf7TCNy~Ylp`oY^j6t&Q=S+z4sL+a!<+XXe+;UZ=nHlYoS%QUGpTG(_DtWt3R%9I
z=pjIE<qx9&+rtF(bE#M2*xP&Op1jDV6|xApR=hp;4(B{bb&i|9HM;TsfIbv^u5;`W
zcAyG!4AD-os%AeLo&_ZRF!E1&tx@9lP_DK$I*xJG_TU)7#q`@_J2BK@BlnaImcV@j
zy39ZZ)SsovnJJ#SmEv9*Jq;_JhzX~?oLxkpIG>w8z_~hv`SgkX^XBZUA<uqH*dvn@
znrLcyq39In!`GQ&(JXvPF$~W6sa!TKq-&>*6<9wywPvI7r^ixl7{Tv-WD^9qWa}7%
z$#u_8sW~bItFBqBw)_EJZ=NJk?WmcywDyY>6y)=g*nmwQY_3QE9Or{r=f5rY*-mR^
z6h1A#7^KF(2-(hr*KRI)vR^xtB`srloVa@6XG+j;{++1KY00NVD=S0W53J0+W&jU8
zxtiNg4w$emGSl-x-$`KXndko#vo|Zb<y33zi#Z6`4N|b3ssY=tQHrMG;T5`A%a2BX
zSLsF3R2pO}zk6n0oKtetaBN~No9@9YwUHU#<<pSUFP+qaD@Uy+GW|{SCk#=%BelaB
zuzg|-AKs*S{Pe17kG0oLl|es4CB=o8;)keg8|q3|Osub+2lHwt^JkL&%$?b+Mn6Z`
z=<m?^u|)!!2|QVWoK|kE!58aNN^zUUvQ_X^1+zk6-UV;bWk^i1+Ufx{K8Cnr7P-1H
z;ZA2rt*g+)nwY6$5zf+ve2$+BWl$X*jOs<`R`#B4<yrX;hH#BoLm9aMXagnpSZ-HD
z%Zzc}zAzZEl_jEKW<3yt(yFg7JaIlCca2G6s_f29J?mQTTilt=fUu0~Vcf%AKQoJa
z&%3mM{WzTqrCam7p*b2Zu*;M|6QDbG3Igm{&XbrB$_5d%CikFY!ttU<vD|9>qU^MI
zDj?e?w+u-F{H2-*3iw#md-SbAfX$nR0)w42uMJH)x}_K^!$4CyQ5mw;d^_8wxo$l7
zYK|zh!?w_rEwKo+fwvbYjL!Y3xeztJ7BOhU9aFBpWITkZEf%PXlXug{KnZGKRaf--
z22B-?LKmpzN|~xWcj3EY=tWu;^*Hse$~@p-oSE`WM_vz|ui_JSp#3Z@e*|1iDA#F?
zrDM@SY@b+bGG(QVh*#_Wp@;s<XiCL!cK1)eVa>&*xQLx1s>$m{N{mj`xIyuH5{w?z
zsIj_%0Nak$WL1(VF{SP7stNhXb#ujf7R?A4Ax2Ee)HZU&{K2jiKf+DPBWmX8MtBtx
z#PD(f<s`eWB$Hx+y@VMu08D2lm+#B2N3DSjGdjBK5-~ozyT8NctXWhrRdk{BwED3^
z7XAEl@}Ag=d)$M&)>Lr?M*PU#jIQ6AH0d!V(Ahj&nUS21N}Cj^6=KD)Xk<3A+w|Us
z_WNLHZ#+U9m$oR85D|JVk)ZJn<(L}a$guw?)?ut#Sjv8?CJF`!guRAi+tbB6W-03-
zI8-2o;yfYVW)COvE`Qa64_ykiZ6#7f^otbS19QrXbjX7)hs0ZR@A|A$d<vu(J)2&0
z1&o+$>#;@4=ST`TZqGdXJQ+43Eo-xEceAw_$)fX?5R))4RhZUq*zszadAz{YfRn!Q
z{O7|cCSwMr1SheVhx1=S$8XU_zSRpE&o!qS-5Y!)R)d*`mF}OKUi)w1C{tKki^mg_
zY5H@=5`_c=g$_~0#O<0cD(pPKZ!`M(OddwHu&to_MGpHQtx7uYW=$*BC%44%w_RCO
z6aIi2TYPh{@~wBHE}f6Papn?mU^?b;r(2W0y7aZlX&Q;c79zbSm5<5t^o$!QI&BIo
z0)4PTW>R<K9d9A|0du}Bn3cT@1u2q*6fTX!I1%dm0rBSh-xF_GzL6qM*0t$A;X&a4
z%%#YmXRh6hJys;O6zjF=fiq!x+z<C;YFadYap(h@aa(b7G+)BDM+8y9si#jN^{C$3
zRy@h-dN6f@aWBkBq3kCP77qrBAQV4QRDH0DdZ5F0mVT;{CimbO%+EqunfVb$iY%1s
z)UVGT9Gde+iHmW{!g{pQBfU<JEzwLr;qm+c;`m2qK9rsSm>Z3uWl#o_3fdlkx;EzX
z|9_^Js8iS0AO91J!S+KtIS!w`E^;wDRFl~n>S3yrR0{_ZKB+-cv9;pLi<o$s;C=hN
zA%RA_3XQOk0$0;-L3S70FQ%Dj_$fPeuen7W`ahnb@lR+5WsRPrcWXzuR1y%u>kmE<
z!nO7%<pZNGwm7Se*DuQ|SNcOzJrWT7LjtoWqH*LW>ymvOxbzI3S~IF+NoeN`zB|md
z!^@fJSaT*CbzNQbNVuGKjak9v%(oI9RiQBT^$f*`?zUfe1Ws!G|K~|Xtn}NjIW?EW
z{z#RoANkJrOtS)#KvF-+a2tP&lg$bcf!_Vm9W8+Z){>Vr0wHE<6$s1)XD|0gTp@|-
z3M?7&=RXE70GI!|?m+%r2Fp#*Pln)UclOg1F5^cgn$7ozi^g6vroiG@`!j(9>(gAL
z=;mdiNt+#^MO=#$iy_}tcqxOj-k;04^do`pW!DPp{7Ck-9(=vjRoOO{whK2%=F4^0
zZRJ@XDZ7Zd%}M{buT2&~a=b2-P+|9cYpldmBb%XdlU6C0#@=Y^-58>()+r=mg#IrH
zqrcN;PTKv^)02&^)q{_#e-onF#Je_(lBseCpr}(2<<8d#N<lG=kicwC1=Xx@G58xj
zfEy#ahpTg+pxnnx1U{~@WRL4)^;NnmKU`cR;ifXUJ14%89A0-xT!-ReJRFC@*E42k
z%nOAu<r%}m(m0}fAT?I*=(Gx-uc_tPk)QhH1{RN_Hgv?|CX!|QwS;75)=@x+I6v9r
z=xmcLQ-%1}XbRQAMYZpWZ-mX=(>l~aew5(cev4nN$s>=nI6!I1fI#`}xGqMnM^-k-
z`tGGVHQsX|U5IhtFg{5$w>$j_Rp+t5F<s-_TTL?hn`z)19}joqL^RKaBupny%=fd9
z#3^7iC6ZGDu_&Z^O?mlMb<2&(_C7qd{uMkP<xD7Q4v)FD*r(+0>+p1`fTX|7{^mi#
zaa#?TICb-QdNxx-^}ys?JbZ)m#e<@mbKVJiBWirMx=?J#45Z2NJU~<_HoaELS1XT^
z8+^}3!WToMuU=+t?DKMSKKe1=QrVe8niI%wXFUb}lZ`@)t|iYoRf%vi+H@g>xzc&m
zWm=C>L81dShEhHScs;(XM=*rdxk?r_t^aW}l9-22$J*P^uLg?5zVf#OU@eqZ2N)cu
zej<h+tHrYJ3&4Yqf`#5j_Cm1o<1~SVBEP#?M;j*D&yz4cGe{1Tk0Cc3GflrIeqD3w
zROfaCtr_94Qw!pzN?fJ?!`WMh)%7)5!hsOD5D4z>?(QBOLU0KXB)A86cXxMpcSvw|
z*Wd(qhkS?d>z=p!duFER{g?Z2IqY4#YSmh+_F>7BP7h|v9TEYAz3i=lTOt~2x35=t
z{4U~)68qkY<P*5RRa>PQ)hIRcQ<KHss26parE54?OpyNO=u?&0vz0*lnI|1Dw1~M+
z$0#rF|2>JaWtz?P5n>)Az1_;YT&qKR&O$5hIyX2PLY+PLE=C=ziv=ZyF6TG#wGg6y
z720x(LqvEwrwF?4*hCz50;TAAY^)5|D81NDD)iNZhVd$DxzmsPAHFVCD)bU!m|8L2
zffJLA;RBRz$r!;=$897N6Fb=W{(v_{&1d+3-xvQcu4H67JR#+q5h3l1|C#VtcZl`;
zQa6*!xLnlhQ4tA;7z77%0R4b$?82?{_KX1*aqe6Ct~Sl{<UoFo83HKi$L2_je{47@
zlMBDEW~HpqUvF&^76=kd4iTgjxn1;;yt?=06#w|2kl!6iizBVeEDCflh}~0w1o`#&
zl8k|BS7=|MqD2_i{yQ*hz;FAOU;}~u8wI5`lGSHV-5sZJ7f$O@{)(%`0iYGtCInot
zL&rEm?g)U-7m)e|7qoDJh1u-;pDm2V&USv1P1N68l!%f%)86T{xp%Ds<3}8zJ>*JT
z`sAkFO3xC0NZ|6=35d=*pn)TB-ui?Gd}wtJG;pP3xQweLzqX!q8i1GUy-XK;Amj)6
z`n<6BnP!03tGe`T^Zyk&M?*J0y`Z#cL-<9yXo1F8<O~NOXAS_RZK!6GAe_R0k-s44
zHl{%%u|kN{R(v6IA1$u`<#?ulaj{6{WUZh9Tz1o`(95m>mR2nu2({OF0)`iVmO|t4
zQ1=UaRQkdm{c9T~!UWc!9on_}@%&J5NfZe*_qUBI%%VX+5PQQWfFl(P0j@>(YwM+r
zQu&B^1d8*Fxe+cjAD4pqPaE_vQUF3Z8MD+b0oEZlbS;XP+dg*V#zF!JLS8NF`7fqy
zm^rs3U_RF&0QH56_}9ZPPWJ2iC051Ld5v1c!T%VZaQ)J6e7;3jx#DiSS<Mz95A@w*
z4MZX_`5v$b{6GRh&{ss{{e(+|Y_>x|x^1fM^M%Hrg_VW0qz3Mmn(b@e4Ca$3t+W&B
znu}EjcYc)-QNG>O1=CiVaL)^bU#6ZHm0P6N5Ipa|cz0Pn(p@C!FYM=oJ<~6K&azSD
zZTiy4_J790)*MAVC4t}|9Ex!kZl_Hb?@yi(Tf(v&YkOoo_vImAlT`DiR&EWOp&$c(
zL)6F-Ld=sm^BtIM|D?D2^5EuyZ|R!*1Ki1KTh0D-wZRb4m*(%vHiqwkFI))RSHW9b
zo`%=ZVgi2Yml~+iMK86YA)OV^(R4Y$vt)-T!}j<<Pm5Vh01m7jvM{S_lLLG;2zbI|
z{;@V&>06tUt5o>#jX`L&#SaI#J!!kUAS;MN;a{R#wy^0_a3_8qz`F`&;tN$TnWY%v
zTQI;}#HH1PK7W@gFYHU_0v<s()0)Zu9RW{2;wdA<E!HnRTsqs9cG-Ta&$%Grq9Jp?
z;Z~=MPfa!k)J-+-QX{v`M6ReKEG_l}Xz7!Pe;}UHKrFX0j?QU}VZpbu9t;0avW*(!
zyt!hmNFvVkf1~|&dVJj)2kb;dV9aSGV|SI4%(ZF8c@#>_di!N{ZN9^vJ>r0=5F$LW
zsmDj6{z8A_GWx7JqorNahlhkruAlS~O6n~d^{Qet8~$8m9vpjm2=G@w33wt`qj;VX
zR`K!=(tT-0DTpK-QT2mCjh>0@fmWOSveM>3Zkh!zal4ZbZ^zc56z&;8{OdT(x_$Nj
z_RUs<rO4}Z5^pVcA)Zpa{NM5`Ke4+Itzf{NM@^r393;`tgfs(RB4J|b*S|bz_!}`#
z1mFkeo1UVLx;>^PGqEAa)zYd~_%Hhh@e(D_1kO%~?b7|tb_Zz1%4JkbJ|XDzAMeh$
z4K`CLx3H>HgYw%A&PHV1&bISxAvnO(eLP#(d+(eNIQ6_5y4ygFCUobVyQ}Uyb+!<(
zFF}gL^b&zu5SOWQk50#Jo1H2e<-4v{C<?Ou8@@DReF$S?h`)es2fc(G+XvN`XslP4
zX#$?b_uY*(@F!$n)+_Z*b^`kPkZ<XFSAgF3U|cnCqy3S(&o#}0I5`X_;ZTsyz9tF~
zjF>uFJTLzY<3GWO$Bg1Ayd3%(j26d6TD)QcU_dZZyy@z}0i*x;y0cn546e1mUv`%8
zUw8I@x?aa*`fbivl2IsmP_^>%@{Z?Q&>wKQd`na+sFcs<v^@xIcZP${MuUN+HzX|b
z;B>WB@CbE+!vPETG$eT4S?6AkUu9PO;N{67uA@yI6;AItz->UMtO6fU={7-*?5{g}
zb6m9^QZ{GH#}Q0Uu5T?ApQ9J}_t0>F`@SL9H^zpd0dBn2(kRQ<OpP??^nTy~#{nZJ
z_yMgZ`(|P&#EPBp09e1mPg&l5S&o-`@+30JiZ}Ma_Z%Z|mw~r8{br$X5`1~AfPVtc
z`S#8Fh%M$nk5vj7RdB#sUbgj%)mb+VScSkp>&FP;NIZftZp)Xblrt~{t(F>@XZ-6_
z8u+R=Vn4uvt*w63-AfQ+)f3!Mh1H`Ed<=q%c-i*amxojT6r$k-Y<M$&jlqyVtwz17
z*dD>UFAc81Op$ndQxS4ytLn=aZ6a9R^m1rh@>+<WLN-Bzsf_eAa_l~HKEva!x)jda
z-i2(5-An&Q-J~TZA||r7x)GGBQfd^MfdRq7)JD4m6R@$N!5{Pe=z4%hyrP1s$k8I+
zF%PYBA{|5#J4Ye(KfNdzvwj@6?rslZ?M-nxN9p&GUSLWJX<Qos-F9OANG^dePKGs>
zFEkP?$duarGaSTRZ14^eDyy?#TWQKsh@{LKeN3yn1HJs$T@89*sAEt<=UU2~B|<6#
zC@6+RFj`+Cib#p#9Bnkf_1y&_hkRwZ47>+I_<KXTUuQXej#$qaa-A749&)EbM))(h
zRHgKUl){L~Oz(vJ><vcJ-*KMrd~cK~wbnmLKC$vqgc-Nh>g(BUf{Ep!`aqERa;otD
zjZ^g#$T_(4*`n`Z@p$IBgrK0w^?$!9mK8l8kxBF1?y&)mAYQ=BDQ`1x%j+6nnzL*v
z#iv%JrAOfN4!z=aIfupeSO^5}6WvS_$P|y~NfL<e4^<B{g@#Jc>iuqmHw%`pi5E?J
zD&?t9IDmkJ<-L_P0B6@LhoDW_MAj5v-xGol59Z}19>c~unJcGfl#@TmOA=GElie`F
zsnJ|udO_Fe>X@H+nR2|A{kcvu_$(e#jRp7Xf7}J25Fqz6sEeGYCz@fT1##-*kFhm5
zq8r~IO;fw4b0<qyJ6o6{9YM-wlbO&yQ3X19!jIb6e>$r<`Kj{FC$dP3XUg(1#)xsm
zexT33nbjmkc?<rQ!TP6&*N>Raub=uZvCRo!i%?ObiBOp1$397I)HepABhJ@<#kRLx
z2`h-mn4kIJ{Bfs0?d=S<t5@{4WM_ICL0zz}uCCR_IP~G-Bl~DNSHR85S_x@G@K7Y@
zTPmfB&~v3hV(ZCn<+FN_>Sq5c>smZlUH-)DW-6yT@tpw2>h2c>c<M_%2oEPr&j8BC
zFAxIogFJJbN{~vaqj_Dj4RCIu-yd%Rrzq7EIQ^VpBJ}i~=`xK{33QxK7Q7Ss>+t-K
zo=gUV98X%?Fk8MfoQgaOJ7p;;^*BZs6{Ebi!*@a@W|$c^99B$$I8>uCO)h%NOS4OY
zUm!PnXRt>P-h7mpN*G~4Dii1K{bk{EN_8HmR8An+)ff1iIFc@>8jS$hTcs=*aIP(x
zWE#wK^nn1IPA?Nd!59f|2xyegOJw#Rm&6t1_rDv%9^JKG?}{gp<(bF1h*JSr#xljW
z{yV(s<Gd|Lhtt!yQq9{KlR9W*((b~foJdK6x6aYTBU;RT(tW^2nwy}J1N2tR5YpY>
zV@NcgM-?lS@cgAGGyfp!NsQ6<^7}U}IZ}P|CpYTZ$I6ccO6^})-%^7iil?|uq4))(
zej`;1CEu9AH+=>M^ED98HvDwCG>8L-)tiNk5f+%`qebe!G3V-q5xdN~wouJRs*X9~
zqG#-45$ve7f&hT!lfz&o1Uv*Mm%pR?OI;uq09gse*IWM}(yZF3n=u&#wu+3VF#^~r
zD{x?=wjmJOT0ye?(e^rFSgZ_o`-(-M`VfGl1uBmTxt<-7ncZRe+1<hAaIUl7vk>Y@
zyEzr#$${C87HcNA2^4!v4a*gY{$%E_Y#)w4v*jpfOGAIhUly*qNMnVfr52B7ftFOJ
zpfn;V4lU)ZQUADvVsF1>lt!Ud%uzh|r?U{OKi|KRG3q}~kuR&e882{6=SBy{f+5Lj
zn@fQzZJXQ`9-coDX)r~;wMzG7QpnlOP8yra7_=Ij@OHFsdnIJ$PBG{B+g>;kzMq%r
zXy~}OVeUr{gpcdQ-|Xdx^`jt*-zn^r@SP;Flg4<?mREF`hRK<_QX!Yn5fR-kL)%*I
z?@?a)V(BWp@19K;b|%tOUXsbK?u{xlZTH_<OcQ-wV*9tl%#Nr)eS;G7`ggzzQ0Vr5
z0LWB#G?f$d;R74A-8FD9M&EE(Ia;nP>zm7lAe>c<ijv&U#DV6y_>Rnx$$jQS5?R__
zGnySaVaZs-*G7+<_S&~2LX;2}vQzGgvyj<yI4CIsB!$f~`&rK_S6?e6gn5^gJDlFK
zAUyM|G?~yjFQwMxt*LJI#dqB$&}->_n)7me+^aH)gVSIWYWsGjIMqmeK3c|&F<!*4
ztEXpPo{n5?=08XZ?e-N;XGF<1li6T|!YCVC@8-gH@YZeSM78A*{bB><Dg9&r{ny#g
zhx4_<Rc+xPS&WxZ>ab?2n=sTh^5HUy?;pB$I#H0K@7Ax|mU0yDKEqJv>dtah8;m5x
z7ix>YF6#Xi1pNZ?OF`yv_V{<w$ck?%xm>zu;HTW<Rb0AH^Lx~4)g=4VMS8ckcGy6v
zo(VLq7}H>9S4)}N3B27`+1<gg>M%vDG;}pF#w7PK5`+Uvbz?(W!!e2e)xkKrgXN0S
z;T{U*JE2*o8^r2vf8cG!@6#T>qYXFZA&Cx`tRDCjL>mozS<h%*)^i$$M@46_x~m3U
zTv{+0%<Jc0C+Ow{X9Z*q^rSmb<*{*V@VRZV;BY$*m+J!HkFN2%+~IrEH>Tz4-pj>P
zbGN0}hVi;Hr!lAGdsF2RBl*ufL6LTUM%^xt#-UF1u9oPt)`s+U!-f5&F%_+I#qUQL
zYx@vd!<|Q@4?-c1oa@ATicyn9t9lVlM+}vJbwfCh9yH$aI1pX7QosYvz}>ICBb$FC
z8@POc2k?IG&<Y->4aCjy%2b|NlaP<McO;LKO_%m;shVIejRPmpSfHO@&m91Xx^%?Y
zmc;d{#MTzJajgzC&&-GWvbysD>HitLA<`H}EA1*(K2k8rq|G1piZM=#ImO{XvKXOS
z!Y;&?S*^iGj1l84=FmtaKY+X)#p&|x!i0D5q_}C%+;%ixRyPcPcKtEKlwEfwTB%qm
zPbOoQ!QUIXNw%fj#D|7R4deFV0b4pGAMu!&f&=sn21cQsm-<sq6c8EdX;Ln7M2qru
zLO#&SmszmJcs`_td(xMJm0FuXn{<jmGa8@iN3tnu;3my-R~~ql4XjJ}(zq<jjx7MM
zzQkm4=XbdWMlI089T*39lt;k6CUNA~R-NcFw%#ykwz<yml$1Xc2)f+OH|a$&*-6eg
zt8NC??UbM$Z;A8n+G)C`b7Q(|r3MhbK%YxxPC}rW!NC>g;Rmww4@3f>osnAN&_OI$
zJzF$k1-u<J$Y{%bKpo`(?&R*b0T0yD@+C*8Zp9G_NCuMLho8HX!>i3r1B<Ek5EFCl
zTn()rc=oj5*Wq$v>U{$Q^*Ou$nU;yl@O@f7bcXEGmvV8)Z-`)U>g8s}QPnA>Qdn){
z<Z=NskNy)ieFSRaOjXdqDk`;QgXnP+`3LO5=2i~A|0LymKUVkY54#nq9p3V8V#Ue#
z?_puOPmQ~x2yH)VByXOx08O`W3Rjs@9Rhp?7tX@P)+aM;a(zmn&1#Ug>RVM?r4NUL
zGt@ce>`Sv2$z#Nw{zIra6c;E$Xo#7Mv!-v8$4ux9S5pgDa_NF&DPW1PL+JLEQ0y(2
z!bT3*yxi$4mwn$MN73nV_2^$Gx`pEN^9?Fe`QQjGeSY5|EF=_7%yf>5x9SlHj5Fy(
zjF<N(L<QR=iEYuR;;%&<RTKwBvW8F3x?VJEuFt(f7wUW8xph9E(}NFRMg2G06CnHF
z*b|WJH=%pDnB4p=k+r0d?bkC++fRKnR?^b2T0AaZfxC$Pv9!p0k=@9tZJSdQY_?2+
z=Ah<R=mJ;5j#2xma(t!9prCjl%dDxISfjkOxQ9eK7Ic*|C+3+s@bP;TV$?hdPW|fb
zNpqI#y?KJf_`PC|ARLKAez~A8D-^T-s3*_6i$EpJ@(S&?-Wu{TfkpOCe7^bxh*(t+
zZs|4l1+OixZe5x984-nYy{~F%X47Wcc)HbchZ}r?-`m?j^jQ*Cy^TLE;$4HOO188;
zc*ypzX-x{MsyAYC-L*RegfI{-s<lUCluk`*lzE{jW}9VrfEPTHbM>wJ5;6D;1wiG+
zr;Q|&e^F`N+vIfH+;s-i(Ndd<kC;h#xQlue<zK4ga$*V)s_|Ale6`G7uujBAV=6xJ
z`G)QJcnVCNfDe6_!{_fg)#~zHql%!-A^BQoceFE;f-$LADTCEO<*tl)l{}+B>MJJt
z@#}$q+5GJgzT?GxST3#&*sPdvsdaAc&d^L=gY;`jalV0~Uuy&HapL2&G5>pQ#_^E=
zaPa7#ucwb+lN%?j>voB4lS_mY6Bh?(?Jhz%K1Xm1xS-(ow0rxH3z7ysnHm+PX9EKS
z$G`C$EJIxmoQL*lCvDEy?#pzmEqt0cH>>ffdk+wQCi|4W9Zqau<ghzr`2d}tDT~9G
z<?OL@RI%0yh6VC48I7t(Ec!NZ*~4Lfny8NI-+0$S^Cl{acLJ#7y*-=-29F3%dgtR3
z9JHavtSUKzGAs}EN$N-qeP8%IFp0Zjp;Z9H`4K>zic16kx-&}PTq^CF7)(xupKAr%
zcPn^RIqbYlu$si>2=&vr-9BvIN5q+C%g^eG%c0PJS;kO4*W__Q%y|g^9L&~_?eRpq
z&r(F3^6kFxHwRg(LZ#+Zy^MT~JgqX5-lLxfoz6xi^za%y&^z{)#?_Ew{Rs5~;mvaB
zKBY6#OIdcLUvSa!ja?nXYqh%|{;l<f|3<C%My_67@&XX6*5gsp%4<!x!MGh%*|oXB
zL)X`z)n5s=yVV<kR8tVeefa*dX>e7rUl%tWXd3v4XIHQ{SDRO>or&p?s)tYRp3@!@
zdEL><|G2DZ(j1V}x&d92BI}oaXZNaEsA5N>2*O5ZwJ*$rw|B^qd<xDB_RSi5#Z4IK
zyQ%SK!pZ8&^k2#rk09YJbKb#OLT{Ah>xuFqv&?EXTVXa-tgs~>1p`gBiZ>^{hldBr
zdl|Cfuq|=CWSlHYVL`k5yN4n)iOuEZ@0255+6fg(!@|jaSoLNkK?Pjr=!2H6?1qTd
zqiKBfk+j*Qc1ch+Tcbaxcf@|Dg(W#*^UR$51rWtoGJTb@6e@YCW=KqPbGu6nJRaAY
zY+5o#68+AEvDR0EtUWZ(V9ykvay@lh4Mfb$XaN2pB5xi;Hi3{9=wCzHxUawd+;aNZ
zlv*I=A*iAKuD+h{e&o@-%Tke5(@lL-q4s#Pw>WuDzG9+DjhxK5*ka1rXj-zlTosj!
zm;mW;>uZc+UEt^X_MH2yPgO!pq(GYik_3uf$W3pBH8PkA?`~~o-(QNwVEL5im1049
zp;$z^>lyx1EM;ihia@Iv3Ky{sG>0rN6bqI>h@M(2kh9GfSyH(jMvI{!;qgL;lbAII
z%n@nSYe50<`1O*Db*3sPbei*$$7WzauY)cBG<X5z;j#dn_S2ar_ne+K(ipNglc3D4
z4J5*$M?6l<ZXCG2$KzFuo7t;)zh*q&(o?AQMz@Q4vzbe5ddr`!0P_+XMoxHu`Stzp
zfmSQ7(=Ti{Vv$ZC;~$E@*t*L9dEcWyYP3`_<k4fvU!hX!L)1Hh9|4=hR0#AWxg|Tg
znyI$e;Tc1_bb8-A<O#BUqotyl-hCX!F+g?_FADW(f!~-jFg^RV`ZkY5*=7<}L68CL
zBbM}(fwUp29Qfp+9ngX-aJcyD%hvu9dk3eMD%igW^zQLv3jE^_)pp3!&(-z1%vYV#
zRYLH=r+%!StSU3j#7zR4sf|WR-rhc?(Piq@FdpSAMx+g*IuiXvoy3T)Gt1L?Q;|$E
zl654#9PyAX!wXD$mxqiT?t2{hVTmTg<hzv0#Td>Xj!4lBNV)BQVPr$t#6?qoZe@rj
zlQThe6BzgAbm+vPZfYVZ6Cfb=u2HVuclC0tmm|n5;$-rhFE?~qAbDYVPB0fFQ%R;@
zt80wTZjU3y-#*DQ3AuXOqk}V;{vYzx^)F#RJN18L|4zw-l%F5(1e3LCR_?D31g+II
zn{2ib@bE0+>{eTy3N@Rm<CYh|feg)-eIK{`nxR>{HLqrx)Ujzc%b~Rk{<!?s=7IB|
zdgT2%MJ@*?!DkdD?iCqJ*q_eKZL>A<HEAZl606AzhQP*WI}1MP4dI2S+&go0pbQBP
zFFE+XoeEWB_I{o;5QmzC+zbo}4(+^S-i5n)di-tM>Ua&y$avx_9HS2jheb#!6sf_m
zVso&AD~-V+TSw&rQghxM!OFPCd&xT{b4xhCU(nbWOSLx#g8eqJ4C{xS;utT)9fHQ*
z548~kqz|cmAgEEvQB3otj*B-tGK%~nTD2BcRK_wzZsn0Jf78C<*lmy_o|o4bNUZdA
z$tTIh97s7F@581VYEt>QwPyPv0p;8^*zm@&14ZGXaN4rqQxTzfT6N1{==|B{_dDv_
z?&QD2l28NjC|+Y{!1W4u{iZCM_`*@2Y;2jg(FOmB>snzNGLBK|<8nKp+_!ui8fZ0=
zgSjmF<JD#<EwwojBVk%>nX9UPUAyFI(aj2M>{WV5drSh2jHb%Rg6)acFYifYljk)L
zS^g+`q1X!%1Qc=B-F&Qb)m_ecfS)M%g1_*D$0(EC9R&OB{nKM9D<sfix1FHqra5a~
zrOsKOIhBjypEB`6{UtFRfZ}DH5GiW-KB|KF^jyhT2WAf5a`hvjgw<yf*+i6Qcd+me
zxc~4?;xAeOG!7foUs8Sqm68PDklyJuCIaYs-2a7d?xLl8!PT<;NPWx)V$wIyY2CSe
zPFJtcP2I40zr?nV?Gp}S<h8|`-mQuHkw9;2YOQxs#Ce9YfL}2x?2h~J=JX?tP1l~9
zUL??&czs9pDZ{SUo!d!kq{q20<m7726NVuzLo;!TIOO(j^R6$cDHz4tSCo=ExO=!c
znTf{OQ1zuz*#JUA{ev6_rY|Q%BJ>tpZ$@v($9|WCk%5fz=N~j<s}L_m>Uc^8q~<Gp
z+hqm&XyN%2A_a?XBbh3p7xSR2f*Jx&jXI81KT54pjejJ%WR+Oo##X-QYxwXB$83hn
zf4Q8>;z;z&nPtWo$}o4%gY*#0!ZU&z=yjsEFlNLUu~;V>5MQX=kPOrt#A*xe4!`v_
zv0rwIvAJnGUS^y%Uw`=uR{M&p=zLp6le>EO%VRzD!To4_)<gB!Bm?MCYui2__lFRR
z!O8&+r>$I!Sj`wRso?lD^{>|)+jZLEk#)u^WRI;zdAT$f0`WL%jFRJ-h9L)Y?eNE|
z?FEV7JH4ShU4)&-p)ilI8x*7s@eomPLaA7bf5nXPTNh)lvRABSD#V04K3tbM*&*=*
zC{CMCI9`=fq8~Jj#f=<rqi#yiK9;Xv4<LISwXTr^2Y>BX>^J%&HDSH!75kaW_6KYD
zmKq|;S#3S?X*Rk;&RPBmaj2Tbcb!Tch~z>(H=y>-c9JAkNG=WkK>SZE0TNCv9Qdpn
z>Hl7xI5iMbmX;3vNt2a2OIuDj<g8;Wq-<*X358^cz3fw<bz5Q`=MklL8a1Kq<qvt9
z<mO1H!iw08TD7|4NwjUM1SLtLs2Y%3S3az;(E7pQ!lvP7ug4sz(+oJ67nsqtxvgT^
zU6DGI9!?Zy{IIGwbLd-LJxG6Yj;{<tLNV_bYlX%$MTNI06UEp9O3uE8$(03=r@|5~
zwXwb5X6u!E$JZlfDO5UW<qM&!H2>$F^%cWF0!VE-j@r-XV5AeQKDlJ3kuAB_m?))t
z;>v5*i*N;!cth0J?2d$F(&9l27iDt=myjJjZgHz$Gc?3@boQ*~>lNhV`6d>rDx3`y
z>U{kYd$DmWk@4fzZ8KE%TC2RIZUc|jqvIZHEj!=+EwP@K9FcyT<28<OGyKm@v52sv
zn#;($zOPgM*tM?ey-hI8L(aU6uRI9dtpTCCR_o^(6pN@0Q3ST?h^+U&8!mhWkx^P=
z+%=-VEl3EHQRPPwzkDJ1in^WBbhD_Rj3$SK5Nu3|XRU*u8#WobK_sHQb$4h~?=7P@
z<;;7-!>Lj+e4ki~2gcw8%3}u3gVm#!y`}bwDqfp(rntdO+qILe?8E4&rcF|2w2~d;
znLATg<pbst7ND27O6x2pA_oC7Adr%dA^M#V@j_n}${pX*M#27U-ajKybGo||=8o7o
z(sc3I^!VFP7<N=_f`j@++u2Q_e<|?!7nutnf|ZES)`L+kl`_+SdR2|gke&*B{7DRm
zvgxxkKUHlq{WMNnNPu{aKHAwHO2`3jn5ecMMX`zT8x>Jlt8TTkjd=|wjcYvPO!X=q
zPW#8EE+$EZ#tlQ%GrQec0^QhTJ;drjj?;(YwRd6g6*Ix|q1bE&98;+qM+Xgz)nlL$
z5|)d>0hIBE&Yuc^vNPPH?C!7*<e_k!mlCDKzC=^GjM1@!Zrq<jOBSVs86GK63iHtM
zLt{=O?*VbU{bPUg^NAhoF`Ia++X6K%MobeE=WhSK)pN#$D%-A@60?ekNfLtx(Z#7|
zxp{fC+NfxqGj39dwe{!%le>7%XyS=jiAnij6gd>63<fNdT47JwmwM&fl~ZhH)973Y
z#AGTI`HJk*y`RD}Z1P`=CUZMu^Ay6ionZ*6xwx?O?!$UL5}ujsM<#`nUHxV8h!X8a
z^)U@VEilXrgS^svf8j6^A@$A|*n1F3et!bKdqlsTLdDlM`9{aDuzSne6SX?=hib6;
z1<d55^D_O}T!!K4Uc?U({YsXRtY!<Km+msOAaLY>U2nTH17(WEat(auK#9FqL4zC?
z%My0!Kq7^YcF!&Ik~}YpR)x)_#wWc%uLD0PIRaE7qG>nH+xQ?rP;#YA`;leWC@B!g
zN=^lpr9%^yuZ<6GPs;9%*(=|`Nv`k2Pk3N1%@Y5}h`jsETjs<80Y%pBAahS-n|zo&
z^b3;{&_dTfz9gb6{uh`$r(8mb4v6%XzxZCnMd%kkA6ek?oX9mQQZ%_L9Ea08idbx8
zf2ITwo4<BJ&I`v!({@8<@!HMn1`qpFp~h6YcU!@!m7!MEgr1VYsimLKG?Drb?a*~;
zdzjUraHG&^=kaj)+9}fdi1vRTF%#B5esp4RoYd)w9mC`AsZ8%W<<L|s@zwp71Y#l-
z(p~_tHR~>2>lF{rx;{c3o=ODs8U{JjEbbq1ea93Kfat@qsb}Ya5+;^m4=~nZ3#HUi
zU;Jfo>E7d-y7ecqlf$6V>JMXMV~3nVMZl7jVyjqUY)htN!I{7$zfYkQb@5$xrK`s3
zhF1IRtGc;6G%IsD=Wp(Kzg5JNqZTNg5{4oj>6Z`78nd`ds-R6ztVQ*0FpZzRkaj1T
zTB2oXpR~lvXpFGO73HhNx$V!`I}VrgR7ST@9W7}YZX8k)T7jKWZGyBboXIKiSluVG
zYL+zd6RMiN5j5#=$_8%t$6F9KqQ6iNOo|Ha84zX?d3ac_xas#7;GJ0vs+){<%`AoI
zq6Vc%JK@pT9PS9`XoDeBeX^!R`cJlx_|iC~rEVcC@DV8mvgueW4k&c#adVEMBI`**
zhJ*muHb7gLq!UY`4>1YCh<nZr_2P*mvV-}!4?h8AkNX2qBowETD@2Q-%>xfF^D4i!
zD{3+SCQh;EUDAl_#u5XBgm;)c#$%n$cA6X1pvHa9f_HMV{papNv(0JLl?REB?YdT;
znWB77k|Yv|C;+q2xoNoWh)G(Z#@Wvg;??*d+Khr(3riX?So5^^QKTb`tu|=XR}!tz
z6GcM7SrOYwj|1Eq?#1UYn^RgN`G4>^82gsG+#F|pX|b<Pu|gr={hTii4RpLs6x3>p
ziYV#)9v{$}i~#~!JcX@H$^AdwIOz@U=7Wo=*SQs=J*(V*+Ytt1H-zoc#%N<ICi%QA
z)c{_}yTd34{AFZP2xKA~i`8z<`Hl-u%~*M5&D%j<m1j-yU%Q43DUJf-av~6<eM|$}
zvaM<W%hrV~3n`C<x^Ht4cINgI9xjNJPzsk>L)R@TlGXH(M#%;;i8iI)teM8O^h%H|
zCQL|7dVE3EPa!&KOjH>l7f40>C(eXV!~r#lC6YatbO|pwG*G0EY><pGsFhKZVF?`r
zMPJG2utgR2gcnwYe#nDI2y?o2GL_Q_4H+`LhDrrRu}o<ulT#6P=!;rM5P+gP%5PCS
z$~5U!V&!M^O*On&6nZe~FB_4Whw2@L=Ku0$sL*OG<dD$n=$2nvii%7n<Eewn-?m_$
zn~>^HoE&MDxfHu|FxroDcugnD*N4$-w{|;d+bKV;$cpr|=ai1TZ4Yw~8R#NgU#3L<
z{ka|-+fO9)v2nStaG?-Q!E~1F=jG{`H?%G*yKN7R+C`3uQ|!il-HA_2!}g6EMMRU6
z<OLI;?@l<tTr}fc9dK5(*^PC|OFOxri2l`gsQ}Ie&{@R2G+Fhv<bF!8L!C!);7#TY
zdX7oW^ojux%IlPe#bNH`Ddb3uZDV*l#*zM!+2Nh7yYKatOHxSd<e#TuS;wozT<hAu
zHmT`FluDIV97`6lAHs+Lb~nfE`mgHb*arxa4KLpA_uRp|5^WejD4uVO+J2roQbPxX
ziLG4qxR8Yo5B|k^^ODpb?-;?rz&P9=IrfSh0B=|uqP^DLD?g3~&#4+<QGUCh>U_{s
zgT6;?)?JcBlJ#AmYcD4vgvhRWI@9iOqAdU*<505K#Mw0{%9`GTV7nUu9-qqG#I|Z;
ztn+8$_%JeH2FUak1hhB4scr;=oQj*J?@zs@zVNFB-u9*GWiG#fNl9gE5<tv=C9*}O
zh}K5(*zCaeuei$KccF_40V66MRpmntiXlT2?Ja3}0c~RNKoihCKV$FI9cC@hjb^ap
zOVdISD{~m)TZ($2qH}Pfp?^m36_BSZzjwj=+buI8nz~g=TS_H<$TI#ym|e`<;bl&#
z5y7&dS(|4D$hX;Bd$(DJyO-O{kt9XU1KP%AlL%4@dIjxi^7Wt9jLB-oS8*RIb<TO1
zgQk}XmGq{~)m5k-J^E*SX^3Kwi!?_Tvg1b65{v3qzF5CXs<-7rZdPZ*qM^s^gU832
zcRcRT5bHM{RKi+izBGfa7Cl_0+D)=maFS$K6kX39H+rkNO~Fpw{&qr5RNMNSzj1eW
zd#K@dmV0=$7JThNzd2RQEbLgGo2#<bZZgoHLS+t~6=~zrH{Ck}h(@i5yFPB5J8ioa
z&~R4k#%4B+PgeCt<(#0zUvVPM+G@ERr27#&p0}=sy?`-!eL&i4fmUmgGwZ70Ru=ac
zOhz%D0POgYm_n=#yIX9fD|91LzaQ%G{9uciN(`=UIe-wlrQ3iD_4zA@%NqPwxyA4;
zc<#>KU|vY0`x6!txvaPA-376E^QEkde0>%)Pf!3cz)j(;3ep*+^9IPb3-wbe<ion(
zu0x?`!nX_)ahYx^{q9xe*KHi=oRu6`8{n0A;y1Nb=h-^-tr&&w{|8!>GO(g=QOCj`
zxi|<6PJgaj)IYZTU7E*Xee3IFL+x=ye*oI?YOjrs`JpU?mV{EIe!=W2-_abkEJ{)h
zP)O^23sMF{XnyZP&_p^W)<Og~?SL?;(tWnko1YXWp(C;#;Ed-)BpuN??oDCk!{vP`
z&rK7Z@e{p`oR}dtD2{13gePS|g8;&dRYy{Rj{y)w-B|*ErSor-ymGdF!-~|f+=0BE
zBnt03zCyHOB#E)eNpR@=Ve&jU5tX=HiwK(;LM4Fe8pYrjl|&IdS^t_m;6fge3Xz1R
zV57Gi%9;!nD`mU=h#CrtVgD`hyJYSGd}N6|VF*SAshTdMBed$Nj{vYTnQ4ftW*_$L
zkr|Qewz)JTGxzkiFm}GC!ZoFCi$q=vw5imBMCDfX=v*8^{V0hEEpulolV!3R&lt3!
zv4<qRZyWvXUAi?Sb3ZZ##xFj}>ZLn%9;lRmU1&9E1TN5OnkV#Fgf(U~>eQiD2vXde
zRFgWr$?rfNDsad)z>ZtfMq#EB3B_hmRzg-?yfkLCo**e%F16m;<MvbX`|uy||IIW{
z3Ho2h(&aUv-vSZWaj5FwMqV%FFW8X(6veE-7bH!2dQmUR;piMe(kxL|Azyx4fRxnm
z4hYaC=g<arx))Y+(K*UadEj4>93=SeSXxivSK&(2z7L!ED$U=2kMow&W3ik26JXZe
zh7vh_#}NTA;D%1YqLWmqjP=Eat6wB48rnC86eIT&=es6<nzl$g_omlO$HxCR(xB`x
z0|78aVXyPa3W1C!F)$K^u-aHlv>l1X?5YQFjp=VnU?el4D0n17PR8o~HY3!ZP`OTf
za3jZ|i?1BE09CxQh!ogjozvd-<pWarsy*~6EwCO>RU?wJ-o8Odx~s`|y=&iXg1A^L
z;F~=-RsNJf8jWXrDaHOvUMn6lM;h<FE&5U5i20|Ck(XQ_Gi&_tOjKw#ey#pj!Mj;)
z^b{ZQgDTRW@f&IfK2DhGkGXeM1(|lA25MvDnbOkwlmZl2@3F<;EN5>iRhno%9C8(k
z7b6T=+{-Xeo2e?mF4~cXC0J^8$OGg#{mg1lC%$ivVG3UGokWccpz`W(ei7}b0@zLe
zYYcC|2vvPV@b!9mfzj%bKopK=2XiGT$%&h%=aoxO?kM@x!2|8#&3AMUQn!xVjd%J(
z3NK+na5~QIy9b1yJf{AK*qy{^Y)&_l>YYKdAhJ%~g8Z~oE-FbP^tZXR5w$xD`{mHx
zrAOF*koX`uK}^Pbh0McK(49PW<4EoH3+j*U`|L9t=+Dido!ervZz3Ol^Fhp&Q>2)T
z#L=VsOXHa+!I<K3-phVf%6bd_k7oRab!`9LE0^I0WG@S$S??<atLrs|=&uY#eMAtq
z8Xo#&5|@8|+?f_IT9(D?e96<dn||1$Zrai!1`1)tZ>rUCj=z4(1L>DGw4zK|fljuc
z>FZB7D$sJ9Efj6LS)dd;y(Alkam`p}vCAOKTS}>8g3o!Xc&Jc7VJ_vEFS1{aUL^E1
zkZ%|0C#v4BH(!b*lffEVnj;;CR%`xIES2?-6wR|`wW|WWu6<4D&*+oVLj^!Gc^ikB
z6dQ*Fd>C+C3-f=o@3^2m7G^48p%GG3aA36gUkkN&4r<RJQU>?SONL8-r@b?$+#ruc
z>Li0t^HmVb!~Up?`CXjJbrHl!;exwtj?h0HkxG1_nM*pf>;%4AdiHy79h%%H@uu<U
z`P^=QGu$JWP<Uc5fdex#(X_uBm#-(bUA(_~o511BQmXWWC$z}yeI}?D7g4{rUN0m3
zR&{)JGidamP%9f#-3&;lkHF{aeWCcNdv%m;PrC{Gqu2vXxLk<wVe;coR+<9DZt&M9
ze8hw_I?tFkNVBy>G5craE3~i!u}ysG9FVI4A;(u39CK@QggdxFPJd{9%74h@r^0Y9
zLKgcsn3-m!e+(e)C7%M!RNKHh9vge}+oPtC4k!o@PFK4US?%+6pI9M~44J)#jgLoD
zIeegfdQ(D3p81F$vaQZKk&<Y=3i~Nid7P2NZg6|}`{bBM8cO2sM18Ps_ceYCUR;MQ
zoo%M#Pgj2(j4t|U8~L}7SZF2(q~Xuf5{uW(@cS01V_0J0?Fy<&d!B$Z_QgT=L13iD
z8SIs|&p@tjO^Ianc+yXOxT)30xHM(P!u<R#x<3}2K8J|GZH7YP`_-hKJdd^-kE=62
zIUQbXH|n6;GM%kIJHBSuT}l2^$M{x}Jd-x3L=sA%;}v)x-C^HTpTp^8j~-8mBh0-g
zA&D`CP)wdkapZT3qz;^D()d3{ae)TxCn<rW9=MBv4UA+&4)K=@p9mhrqMey@N4<qO
zgC+Fi!A!dN|KRn+X(XJo5NR4MA&ZE00Phx?7EfU!o_z12HnlC1JboFkX3#}WkK5@(
zeiLfFz`P}RJbVYYK0mLT+UAUuV42RWbGot33;_uNeWfqJm6h(Q_MVufXxiIbb-b=c
z#n&FMD`wYsMQ>d%@m4&BD2-6NT>9>4pSenUc4mT)nSKo^VfeQVL5Eex)@obG&!QnQ
z2s2qsD<`}&=}(<Vp(q2Nq33hO7KGwZtr;tXM^6r)<4QK~+dQn#C%^Kz<5}#b^s7XH
zU|@wdd?li|SZDzzGITi!W?niwwxmnp#dTap{@)DdMFb4?TUNtqoNpN!XQ?)WT+ghF
zJ}0&qK~Lt5WqyW<IDhxzibr==d%^=cp5U?RA_e)Jk8uA#FJJ98VE}grmtj;^e`+rv
zZtAmYsM+5ny60H055JSDV$^If=4CON>Bm6hEoGZ8ru6aSHg1uO<%m)(TbKM6)~^_m
zIuuXM{ZU$lTpw=lkr#NmD{TTUDt}3!J#QWf<7`_qxFwowI9~dm1f&xdz51+gh8YwE
zh&K*4x@>*dAI-u20mJrD0poEy=kw6&J9agS_aUX@=+J6X-)MSAX}Jx~2nfr3YVig+
zXYU1^kZwsU2k+^2(&D6L5D+jtgWi*4){+<J*@~r>d?;$YVh>l(sO*L3)uvJ|3!HfR
z=p}tz#7Tr2mdv`i-&7VaMi-ub2KBrOKPi4MEgDmxsl}ND)NmVfri3WS$}9zcBH^9T
z9o?44^6ues|0as67fVo+$z8e7c+AJb6K=PNfE&ERYltUzGNH`v^ne^+no0YaI#Kku
zL7&UPC_m@@sKqak$_|_s*&^dikY-ro*1MA~iD2EDEFK8_A(7l7i^mnNASS!sbAfI$
zP__X8%TP?}Z=L)<)-W6ne=thpvyNcIU%+Cpf4b5`ZQ`+E>a26iv3Go!{r<@;sobQj
z__o>BREjaC`{@6MOHAwkc)F42kvZ_wYhc$6vf6()!Uz=3LBENKRiLqys4ZU+B~o}#
zv&!(cfF75bOadbjA*Un7{1(I4m!2p?Z)FtqcK6)68`O;r+_?Dz9v_`1WIyi!T7;I8
z(fH~*Z{FkcottL)GORIEjy5$V<_OP9IkLv-&H9Mr^?6a#{2)I3*{7;*!@@7mQe;KF
zpL5jmkTP-vx6wH05Z2fZ)rlk9@igM-VZ0xG##_H}qYN0__wVng4H4ADIp8g$#HfAQ
ze7{wijEa?QGN7*9fm(*NL|~<yk)&b}B-NB1H=b*v;RSNQlk&)bBl<wa+1#;lCzUl|
zxW;hCPA?qs%u1ipZ`X06<p;G+2A=NJ+Qe^dg*06{|Hc4Dx&AlJ51tD0JK$JoSpGLp
zvVvfygirH)i)n%`jPrn2gEcY?8eMjxzt}D0i!~Pesnk9pJ|)J)c(dBS6ovA$&UmIE
z9jPATEO12GHh8E<0T)6Yj!ol1$%VH2qv-9%lS5B9{g*11_J`GaxbPV%6`$c5N={C1
zq&$PDShI<7(e2P<ZWzFPPf}4DL#$tx*a5ELu||}VKI}QHT_bRo=`Vik{}%RL3~6pp
zwpNXEbTuy+0D-<=o{Cs9_1kthfJ8kZR4mDTq`$P`FwfFJMO8T$oC}8=4#3_3T6?s`
zEXt{<P<-+ZKRBcC4iH#!T6%%ASL-7ObB_17n8(Y_K5x0NH@l;dGljKSRq{V$em{Ol
z1N<Z1P5Y698XlX4cEM$v<eKBstfwtt!DJpiT#~VrUdKKzfr2gNf4)4T^V2_LCX9Zm
zrpBkPDnPD=L8T3B&*?B+@i%MbW{5ElO!0f|9&rdmn*I8nFByH3v6+l1Y_`V?;=1L9
z&`@uuyfZ4d8%C53LcFuQ)!I_Mop>hzDS;c0Kbl`!F=a^C-K8Q|#+y%ep~aj%9JE+7
zEiSubFx7(AW*Zc~vr(zl)tz}*=WhFxrTKKXFvo%1IpDKxm^$mnm3+Ih=*qucqcSQN
z!9P<6Z$Dj>YI(j=_`AL|CuI7FMfxk@anWB9v_C1zS4c7|-tO6w1mbHW8CrVQ8a_D;
zUCKj6Wq)*Ie=kz1+cY;JkHK)j4Lwn;IWY)6ksn5Ax^*Bvj4;@7Bd+$oOcOU3ld^Qi
ziUdZ|EYzNi@F4AUNp}Wl2wcBqRJm&KP`*3TE;F%XF&h3XX(_=&rI4E~m@?y~&=Om%
zI*_7h8fN2H^6N)Z+O5G7Q)@`wkua_8VHr%F{I6j?=88$Agy?reSw^d$Ra><_^>z~M
z2W{(*MB?IN`AYQqVHmp4)OZx(-J3Vx{o*p?t^C=lp7Q8ti!PS3_ysq;flVo2m<V9;
zAgTTvjf@I`HCGb$<Z?}sFP_Li=)P3z2TXb)o~Hpm@bk2G<z@xIHjT?+^#+$qe8eQk
zJR&?Ctu2~5Nw;p7ub<}Y`PKlOhttK5C@>55soqQtL2YIx9JyLEtnvE(Rk5IT=wC0d
z7)6&(ifCK9p|by+MrJp0Yr53_?ZM?jmL{!9wW<{0S94AZ+m+8oiS)zpIX)Qr(ND*v
z;t(F3jCi~^*UF9+9p5AMcq528Tc#RtMLkEkQ^%v3<(uxwZtBYA?3m4tNy4B9YR8&{
zT4^^6N|#Z`I(2};^c7dseG2yZ;SY)m6_xlS^}HPE1NfQWjP{ZMLPoZs#O}8=h#J!h
zR75HY1h#uh1h&*VzGXBPsPH>?79uSQ4_-;Q)Jh$qNdxJEd1VKY#($2*RS@rHADTj+
zqDqOZ_GZmuMv;;!YJ+1h(cxnCkmNC}7gmr@?Upoxdk6(5DJ}EPZ-Dz7o}#*Yr9)<S
zRAMJ%mcIb>%D{inE6Xjx^Y}54a^1#1r882gFC>h=ACvzf3}6PSIasXr-r&YT2V~3@
z`N!k(KeDynt--+_a(yaKf?Rkp#{w!ukE0lII!L5aNlIn?7hRDPX_Jj9Yk3%%c``=M
z-);!oj>)85$ca(skw6cxEZvSD`h>YNBU!<jT_=n<&(*~4H)_FdYk0_*ZQH$9!U5)M
zt0DZi)lkmO<TUDU#Y4Jq-AEM2jfO-G@$lbp8X}0w^b!l<rb<NAY?m+o-E_9Aog)+_
zm(+vH*?~^|tVtn(K5K%(R4`x>IikjmhhC8u)2-ksuASRPWt^=K$!zI>zgjIBLoKEC
z-C};M(Ae~7ZK!g$vDII;WcUv{g>nDA@sN;Ls6m?{_Am567Ro6iRe~H|=krg>DX2+V
z*pn9E-r!r%rt#gxdG$pDF(5mX!7nIKvPa5N-%!!{wZLJG`Q>Yz_^HN|+`g>}NNE<9
zfme(Nn|;*tNkx(f0m-b*9$9GB#%Yf|=MC25Xhz69%xcU?flub6X%k4?lb-gaG@L((
z8SoeT=4aH!jhy@zdSStZ|C?V$5dmYmgFc@Ai|(gQ^Q2Jm_oBgQJ>GfzM0)wd@e@3U
zdM_MPgk9tC(W0=vjh{bF5*e20-Ni2ZyaYSU^NCuAJ1@m3HZC9q$yGQV?2rLW(eKDE
zT<x@}pM<ysRGcnslVj;zA!l!6;fVnEeITQ4>84shM7>G>q)@*z>K)9AhMfWleWWoR
z(}aAHIw>)9Tsy<P%hZ}Gqes)>y|^lwbnLheBq;;MC-5@zUoUo)%ciXzU(b?$f*lev
zTiy71ytV-X-6v`>X^|vw(QXsgFC#Lj(e^YpKw*QHT#yFN3YXm_N+3$n&Y*`n9<H-P
ztjxyn)%tnU5HOhGYsQ-$`QiBYo3)t##9`VC-0p$hGWr&*ySpa=Sup{GfC<!OAk-R|
zE9)Kf<HzixflnHf#>4W~ABZ6mcl^fhaShI1v7$J<V<Dsr%pp|WRPZ|D&{bRoV9DNy
zBpQrbEUm_HGb%tVh9SO|l*twtyP+rUn|D)wPdY_uvArw4cgRtIa<Z^$3rQFPgGXl+
zey=i4K)M?pK+*>=p|Al`040RZmwu~6hdKFP<kuNE;XJCvUF$Y57*%4Tv|R!k+h&-u
zy?c7N*;}o~PUmwfPK=oCEs`pLK2WjgVJQU_8|ox@HRe_C$YXBqM2G=K{L)}x`bKP(
zvXsj9Q|9aWfm+{L;KliCTxl4ERvW_c8$Y^Z$5oA>eb|O3m~MnPLnaW*U+&Ln1DzXE
zd)HEyX3$HrpRti)`Rv;FQ46NT?N#Rv`LELYhY0qRkUEje41UL$-|?9>noPfX3Y86X
z!#5qyAQR<sReI9!s*IB%P<NXz$m&mlFW23U@2MpDW@m=u|ETsJ`@93WmcozUgXDG%
zyE6w}YG7+-a8@wLbsN@t!{gcgS$QkB#DVVX;^2fXQdeA{Y8}6EXs{?h^RfKr?i|A#
zKYLmfmcTDjxfPn#T>Bp9aUx`pG(lq7spTR&#hTezFgrB<ktA7-*zWJq%b$GG#OjH-
zcEX%K2W2d(sE^kwRSR(DN~fbCMvYk=?;Cq%UZbbCf)aAeR9mUAl#EHE7O<@BGm_>?
z{H4yj2@93WKk$vJ{M3n#ybd_wZStY*Y-DE-pp2i}9%}DT%gY3eC0EC58t~<M=jZF4
zjqxV5Ih+bNG5P(8WF-Q#@7Zd9|BP{&Z?p`vg6|_WCxLT#+m0DAO=wJNWBHfl)zba1
zByWNDk1*4@PZi(ncp5#lql4#bwmycZ1Xe7$>*-5+M4ta~Lwr#hdbAQ&naTAf&aCVL
z|4UUXv+rNuuNV!u!U_IE_f#-1u>y4?62#Plx;a9us-0aRo&-J>FT*~jd)g8cDGH~P
z#Gl0?LN=7dp5Wyv8Xy3SmXKCumjIefa=p0;>It-CO>Y5l0C_oyPhc(uc$5CmPKvaS
zKoPyTbbW*>i(-c>E4%ZM83G36!0o_%7|Q)0Lk&ilF-SprPiGS;2sP7WCvqwt4DV96
zE&x-b-2-rDli7{wuK%=YqoUPu9uHr6eQ@Sxv4|*Ckq<s9x>0gtF`M|rxQdHd&XpSs
zI6GF)ke|q~0GCE@T8e{W3ztkY3kIhxiZ`<RJcF|2<K>w`WDwILhKlVwJ}OTezzJpX
zvsP{Ydl6{>=3KcZbFBnr2hdH4d>%_8C;xbj`&BfM(b9Imwun);SDZvLwO`Y0+kyR?
zGTiwaufL5|@pZY-m+u$*GOfT6@}x$PUsXJ#DOu1k&o3IG+48cMO2>Pmi)_+ouuVuJ
z?R8g-NpptsCl?tca>%XWV1?zdKNdQR{l>aX3#LmJ<^t*-=61l4tiXIjn^MeF^5s+F
zb2N*|x0xQ_9ju=sNxXA_!mqnybl|{z!Nl}!Ah61|jK47J#o}@8($)Gw<@VKec6`Ve
z6cmJ*uEuzJ126ChamI>zVuTsKGdFDnKa%@0un`Y1zYl;w2YJZ2Af}%IyeB40HT`pc
zJYU0>L({UOdV}pdd)y_mAgpowQmU$hyv!!k@k0wFUCA^_?d<)&I@s;hj%WCtC!&=(
z%*!JPQKUfyFIATHKEgoPr^)$n;AXlU=cN1I%BJ0iq%;ze>W@kqSRkbx<E=;J1o+;v
z2lh~Tk;VOoD~eob8N=8lm%XQlfUp|t^9{tDM3B|fJJ&4`t7LZ$@RFabFHc&a%LI2F
zNx#9QJQQlF7$RCO_Wh8^TuRZXGv}jYROtufSONJ5fzLUC-;0<sJr1gRS*{%~51C0d
zCksY>@kSsqC8T$b@@~dhx!n<1{EnE=i4Avn_Ga}nfmCpLy!N|9Y_lUJp?e>8F8fY0
zTlDJs^yYnJf6tHmFZ^G3C(3lkt)6nbca2n={6uzMHDsy(Ry{F5I9!$ZyzK|R8tj(d
zc%EC{K0XuW3WnbgP$8K#`f*>}F}D~mLl)t{ar{>sex2|K6%RW;<3Jtzt$E`fi@W<4
zwnFuovgZ^S9o$;|f%JDd-y}MYvt3^X-JPBwU+n8VwOMS7n|pjva#*1PKNU;zE+Afn
z;;1fUl^DTfSh%jJnm-s{+2-Q&$T3BxO+-;s=8Vk(;qYGIqo{)47SJ*X{d5`yEL7-Y
znk<RXC~LyopDy7~`wla92som6s(Ka<g#XB{Z348LjSOS|^solyw@J><{~)m4X*YMT
zuQY&RhQQK%>x*VHOlp_<lb@ZG?}uw79`&QwOYBEpW|D%Id49q9(wO|Ihg+(2O~23j
z5``o>?&6rZ|1-XYk-2YG;qkQ!F17^Ey6d))`{sgBYllX4(B#ORT3G&kxP16Bs&tpl
zwC^_aW<}jTE`+T=pC&0-(O5yPXGxc;@;Cd)r<$)aC9NjjfMQAT__a|tn&;iQ&Up9F
z=v(UD3LTNe=3aO}y_W{uRr1tHxdI^qFEaOSIe!d7iHKIt2A~l~IlzSMaN+!8_3iTf
z)A8nB{8t1kw$;fsZ{&{geONN5#y8i6d`cLUDw)mp90QKzH8oYo&zvuFlP57Re&8j}
z;0o%CjAmC9(+2vkkp5jZ6{)S#^Pb{tvvo;vlvq`^H6L<^uSM3y!I|%h)4kCssPxB*
zj#M8KpqFmXHuOXajJ+{C;nm4*(pJ4#m)v8g*|RqlN#uwsu40hr9&G8t)A)^s6&QBK
zjOZg1w^GrBX7vQSW>4RJ7IHWW4m(pTTC`EZFc{P3>*@D%BULXgjxYA&LM`LRh$F@W
zu3v&MH+4`VIYc-!8jf~%yuI|Ql0Da#O+Zb<x|U}ZGY(R-5<uv6P;qyNQT+cH`>KE{
zx3*j9PH9298)@l~mX1YtcL+$AbeFVJ(y;*Pu0=OUcL>tm=VkkS|2g}=I(J-fv*tUW
z8qXMG8e)ytjBPo}r0_O=3%C2qMkB_oZH(OJb&W2*dmR_$$>Gjhv1rR!6aV>|H9Cmg
z#Y-B|@jJA#y>zn-yaKpTL(az)BM<Kyci1K2OFc#m;%B|KKdkVrJ1<TnO%eb0zQ{pC
zZ1KLuzHGZ8#vjcQpEMnq@H@e*wLXtV<MYHe5Cx*fyWmIi%NZwCJ4vDf`Xp$x-Rbqe
z{ODQoP{wwC0|6iMPj<`Yz$?i_(-Jif8T5S_QV*B?23p*jP2omwpC|fB3DMz4%(mQl
z$Rig{<i|?@2AQ-#%X3^{x}N2rQm6d5QgC6yYQyPE6saDphc^Q)<rZD_rbI%LzA5Gq
zf8AFWoFTTk7|BB*a;ovOTrP3N@JN)dkEacIPq^$d2gtQb#H?I@uS&8ElDX{MiDcBR
zavh?67S?bExRH|mLRrbV%M|W2<jM6<eaZ(o<(n4wIqy$4{}fnDzS+<k`_cG%XRV_G
zCSrRUQyOOkmLnwn98U~yxx1{o#?j-Lylzp{C*bSkH%XXY&Z9p0Y9srozuX<rF@ttf
zKPZ@~#A~89<X5Z0(<8OaBvsLBOTfl^nWKls5DeNckQM0oq&;^Sk`DlCbC#r{t-KOF
zj3MMp0bgEW#*i$!+qNpRC87KK)(u1bJU=O*_6D7R2k=Z7B-NEee)RLt9y_NUQPpGZ
z^_IAi%^)uaS{M+Z1vHmKo+{|%pZc#C0N;NaM+?{fu}HtZLW5^Dra`=#nV6JyOW)o;
zFVEnYCATGj=t>Yd<H#vONFTY0`dN<pfsWX5w^Jb_BZ-ZToJh?sCgGM5vXj<ko!`T0
zkRUO@mb>ZNNo?#re=+6zHoUZ6q443%f;Bh>+Ed!q;^}=r$U#04N8~nhIIFM&igje>
z;`11Kr}rwJiCW1x=iWHkFah_qCAsOLP&Hcnk(LqD7kQ|dV{T1jp$P)3b<pLUv8Za|
zZ+DgTrQTD!<s-b}S8^LzY2bqiTg0iZsmbUX$FnXh8PC^VOqiV3AipH*Z0V29v%yE_
zWf0jN&!mUXS83EN!9KA&L2>MEcm+EI+kQs|k>v>71l?P=h5DK}1DDkjh3?NsLe=U7
z!oo89wkN+ei`2@RBxvxfh=s|a*_|3hlrFddsB7VK)c=Z)XhcpMC48?>$71`_R%}KK
zuHG7lC~sWOOxs>u2X4h!OIP!Fu)u(PmD1~7j?WdLn3$O9rhpy<36#AeUU>C)5?e?_
z=lc)hkS0=pk_?bYn=rt>PW95}h+ugewF-SgyJk@0v|vCSE+JO9a0r^oU7%(u<Fl1#
z96dSLxyU~Ng*Bgm6D{G^TI1A>b(qz=k(OsLIV@rB!-ynyJ03?^(R@Uh+SbmEAK9wj
zy?P0^fl9oj2veTr1+eL57QD!KpzBjI|56_w2M{tPM=?b0!Af{|pzo}hU<mQ#AEz4I
z$uoTJTnuTOm;@k%938L8hY5w{iW!1hJ|;F<KDe38a8|^){x^m&r258OJLP{>2lY=!
zAXs_4VYkaS#AD90ZHhOdbi92qo9D%T5ep*wswuH&Q)soz2y~i$FItbxZZ$oN=Zr1l
zn@o_*_u$*LAKqHnvQPV`ncJ5+W^mqIUq#VmYq@r8qzj6wUB~(@JqnPV;d5q{W}g<D
z?O1mZi2kEe-j1kGi2w9<lB{%RpX>GT^-o*N<gHXvzs@f+?K%U@aP!XQ;((LAs3~U(
zWsRMLzxq9y6ceRXHZcLWI-$iZ@8sD>^4Y^brT=AA=F}Qo9hX%oP&#e&d~Gv^hlbu7
zq2bg1l6One+mU#F@S^^6_=f?`bbflWHXxYU=8R)eL5x3qqK7|>kS;%$_T$}kDx)@%
zLdj1qe8LAQU_%uVeNKILh31uOc$JGy2nT6d8^3L(I^%Y06Ibq($lc496zHqEZ4Kd;
z@q15&{4t7wx?SY7#Y|)&q?VsKxQyCwxTiQ$Dq4L9l7zCHAzNofM9D0W(nCu<<)6}%
zN8uT<nZf_(adq|jA&MlF=Zy_@*JOS+O0*I6*l))Es+)Sk1WT@|xP)LlD8c(-Y<z05
z49P^)&XZjXcH@AgubSnyB-2cD(h0i9Pjyryx6~)yzbah5=JQ!^<yl}jvOc6#xB4PI
z#0zJfy-i^M9tt?s$mxXsFT}eBE1=KKW_|6+M>?JZx9?+SFj3vX!q-IF^Z&a*Y7LJo
z@TFZL1pIMUrX2q6cdzorWAt>~jZQBlBZ4SE($1YYeG;&=NjwhJ=J~7x0P&#6I$d^P
z3+~_~QTpS?dY)F!lG{Uv6F|Kz(@hfPb^v^y!P9_62D{fEd5M-VrQuSXcq%IuZ`}&s
zLG@z)B{*kB>UV?xpxw3CCq1trWE7p@{xk_w1FsTOUU3;G0%4<-S~OoW(GC0MP8N?T
zYNnf(@Lqes<Rh65Ak7Ac7X-5dPGVvoGXz*(gCV+8oy!QP0M-m_=_8Po2B(YJJWow~
z6v>{q*>Km&0OmWt&Vt$T=k696S}Mo?gi6q__*3y7OOBjNDqT<{>P!|O{fqi4q{4<m
zY&nBNVF|n&I)IkVD{%>G{f85u_s~ygoR%#C$>m;d^wc3ULzBG7;4yw(Uh!fO0wK(c
z<JYq;<#jhPpCQA*{A<mVeNmCiN!51zE7r<>jDs~zp0cJjJOT20h5m7RUDa{p1Zk*D
z!)VfaMw{*M<GI|ZWNSp%f|(6m!Y+49th%tP{c0%;gIe7zwAk2fz$#itke5o0i1Q^J
z9Kt#POKwKO8$hsY!oup@@AYl9E}KhkC8}+^A`q+6YAo<1H8f{=8T6ZYg(?jBPku6p
zNXDs*b7ul>Gs!qtlE3*XH#g3ggj~y29RPn4jbQ_O5+ia#dV#T;ok4T*M@-jRRH^eJ
zZiX1d7e6#HfS-GZ36@r!33%tXxFnc1Wh!-r`sa~31Ep4)fDktTWo~TkVP=ZgYnw{H
z-N!Dz3#ZIrn^BF0WoG~UAMC@m8*o#NLP~~6EXLaRe9<dhz0N<iR@+TGIZr(5F8d{b
zAvOAzEyd!u41hp3*5HYBX7<L>x`;~J>89M$m4(Ea6~jdh(#Peo>3uyqJ$GEfXt$By
zJ;wJR5G=p;VGfs)B_Kk%Yq!`vW!8GWmd*R6AvO!_ciAp~#P@k`O~^uWfk`w?L$^rb
zLR6%Z-i~^!4R|bbZK$N2eqj$7cG7J6)&`>^`|c+5r6U9EXbHO8)&RRFyVl|VMOXX)
zyFXJB@OXbk=2kNOmCcOEdbYyE<YV?Q{);rpV9)H*D+(pJ4A3raOcuxi95ep6!oE>4
zB=0HcAlh7q0IT9;Ggg?wX0{BHK#d}s%n(8$xinM)bWoS4zh$cbCj`;?Z~mORxyOM}
zsiiXR%lYeG)VX$iJ;Z`8oE*ClWA&K#NTApw;jV8LFsBTYwejL;`Qp)^NA{7lc{vF6
zi*kg0V!nO_1a4zJGT4+>XZeUoXrhI-X(9&ei~9mEo2J@ivUMv{%y>F#>n!YW1>;o+
zR*h||W;JS4L?QeOoKA+PfT|+GnQR%RbW=Gn&SsQ%Od1x<GGuDpyuH9!xJ?9>p!zk}
zAO@jO;H^cUFu2Kc%oK1H<7E>nmhEDbq7@B<B@l3815|icEI-d|^hm?x#S!{2js$z2
zNW4S~i*22l0;8DCc;83=XTwXhqTL^>wFB@s*>~<I<j<h7@WVO`f1Agog;U<6>qJBw
zQ6O9pOilqC>xqd8Ep`XKPxkZl5jd6E0N(#)Avb_l^(WBQm=Qoj!%$uC*bh@hpT_-T
z{?PbR!(_XS&+kUG8kMXgB<aiPSZT_j1kGk&v1eD{KQ$U^g$|p^J^_ejfIL|tmi%3T
zOirJON1=OUXyDG^c^3ldShkSrpmoyy{k_Rq0zIM(mN77)R{&NC@jg;)bCT>B$x>TG
zYJiCZ#Q0)jSp2&Jpn<CYyoz-W(fg~aR$d)4kEU#Nwo8uxS;<$rvyh&d_VF(zLtcas
zDJ-ddn<w!Kr(jF(&RvooZZi92q%tTTaT5K<o{kj2r$gf|RmeopzEX2Vm(FSeZ;(jN
zu_6>vJ82Wg_kMi#!dXPO>j*mW(%7a!mW_(fD%8O$@?CC(ZjMc>O-h6(lTD@5Dq(hh
z0E=R~ggb8$lq4;%`#n-2h4+@QKjSN90Pj@A7y~3<&B6!6taG3{jMkn;z{mk3&CA-=
zCdEG4(<D&I(_q<9zXhdt*CfZeZ9b{X>kG+G!b<^S$d~x)dGm(z2cy1(?=M!Wc_~lf
z4~q+Wy_VhT$4?}!wK=9j+oK5>dTnZRy7X3t#DDpjrvHZSXhS=i>%)BTgRZ;e>;=e$
zvU5lmIBg=jLot9_gp5ieh-UyO9GoGyWl_Kw^z$H^XY}s7y*!;q*u|F2QTy{#_rvY^
zX+No-^zf^=GL-^Z4FwWTOHAL}ZT#>SkJAmyxe5{n%?hUYW(I(+S0T1=`uRWF8>>)a
zrV*7|^9geOPo1_QnUt!07nfIy^$y#)XyD;4(Y3vK6Vpw=0_o0kV(eG#kz(nm<Wd!M
zl5T#`Ko+?p55Q8Qmr^;y<AAu=^sfV&9C&6>F1<+n8r4-6-^74EM_A)0MnK51ot_BR
zi1`}E0k;+2Phk~x_I3A1)n3n4dcA7Y>q>x_PSM%+nUXxxNAv2(&3`n><{to(1l-N-
zz04rF*zx;-D(lK2s;^mZ-dSX}&bulemxwbsJVxiuLY19TUVB$FIV>v%(wnWvZUbTu
ziCczk>H%MUCV?rq^KNSvgYVuqE%scnDB5<$!K=)vV|sm~BYulz)KjmKK(6g_7R;Ti
z8Pi;(N#$yIfayU>$L7Bx$qMKO#VI#DVVi#bF`hgBao}%H2WrdLb;6$CYs(XXRn~0S
zzibmZzZy|5)oyj=;(j^{wI;IoU_O>bB2J5;I#VQb2@rlM?Ox0l$6fqZ6b`u8cO_{K
z>1COTIE|`uX*i{Z968%nGByL3)W`UkwE**^W5A%t>Fnb;Q|;yW@h`AnD;<aa;_P8W
zth1jjYU1wG=6iw~30XF)8!H!Ym9lhpk~A6O)`lE*`Rpo<ZV{r6En+L41wZp2<6l-W
zjXo5`%P|gu%^(4lCH3L}i6|GcUlI~G<ELRE@u9VrL9WyvVm*K@H?XQ5E|m@BH>Qid
zcjXOXKJSkDp&IT_eiGntmTpU>_N~6@-kNCk3-_0ike^6~7{HfX@7MG*&#qf(zATd{
z{{@G2?Rp=Ztgh>s!WvWLkkf3Wt@#DGR~k@UT{8B3Xz#oyxO<IG3db>vFoJ!I7PXf#
zS4qjC;$he)=U+?sjzTiMHVl82^b{Hzi<OPQH}G*CHaxML)rsSV8oMGqK}@M~&E@89
zAI(K9rShufcUx<6TpeIXiP<UpF)>Ckm<cPK+iu~TLA&oTt4z<uXp^&8N=@8!JF$ac
z8DL1|wLl)qoQ|uKFCRd&$|?CfqJY}v>Q{h?R;wxQ5sHCcY2(hJ&bQBk#pzD$tw7<i
z-lF5L9ijHV{755Z9J2a3U%gB5X1_&b0{UC!7z{KtDovu8>K8;!8?=CpN09z<G_c9l
z{y9fzq?sUk1t-kOIj;+Y8=naoIaM@jz@DdfFG1A;d!&%t9{5pwA8fH@uVgMnkv!CP
zzU_4;rZy!JaPCu@p5|j5uW><1q6bMcX<zP_AC&JaAjN0K!Qn8fqY8#z8H<{Qxo_Wz
z<ZDv2e@=J#%U>=#H9;X~ywWQZeLqs*vQJtNHz3B*oeFr&Y+^RKUSWT@Oiu4)`@lc2
zSsYweKjFa6VGH{LMPGi@`D7b1cHnI<4_yB!v{SO!zrzr4{bjp@3f4yiNYn5#FQ;s8
z5Tq4w(tcn)rj8l({dzKio!kjsjm=$}*PMjB_dLZ3+R>{67n4j$DRdX-{g_VRqh<j#
zMSDCYIc4FhL&yNs#?dNh1ZV~kn8)Pg(w9F3qiNa^v?`A2^GT6OBMcR~{7)~YcbPc_
zjSoz?EaY;;tiraL(Xa8*BSpLGKHT0F=@+(1d<d`-j_sLQ)Qmd&hrd&*+;@_5KWBUp
zfY#@@ko24V8`^yk8AWJT`zK^t*0+7V2fHU{Gbkp6&Tl8b&eZf`=A+9n;+GGYuE#Yl
zpZqD1nKE|{kWXe-Wtl&-!{V--eGB!ZqR{vf77`Hb<K;A;LR|c6W=gy-<PY<qJ~9a}
zpc={kHC`T?X6yYN_~Bt5<-19@Py%<)<%>G|!02D>RIFVecGm0-g&PtH6z)$Z!IFtx
zr?7AOd{1HD33a8mAHykVRYS`#a$mIu_%KStmTTqXM{bm_dnzh_!6BXOeJ!nd`Wn&i
z^bxiqMWiDFpOjq;bPTuH>kBP9B+QBSplT`-=O~gSLT2NH&+|fZZJ4jTT1w`@25VI4
zhOc)g^QhHgf)Q%~j|r2Fo^b5IP(dwg8DJLDR&r5%`#+I^K(c{$$WBmSk<qrMyzj(6
zOy=TK8zU(Y*)f#*hxI4Kv=5Mq<M8ObnB(z#M;Klm1Wz6=F#Qk@x=5R(G+2M2(`~5|
z*-}}db9$)}R_6+fU&m)m<9?jxI<f3^_suxBJ0>aE@_W1<_-H(3$IebySWrqt9=YKn
zaDQ^ISD~w+KdAVT>J#oir2c|8=A<gGa=$Red%K<N3G-4tkO<ucL`nW`a<`AsUoE!L
z#T?2jt*@xxxhC7ab`#SG=b#?1(DVwLr{MEuGON%gmA>zb8xR*Q#1R|;s6Y%XqkOYB
z)gf_`o9hF4{RCu|D^cEr#ry)O<~N1N<~Oi`wR>N#iN5%;J~6^)`Ch642pnCS?3*RK
zI0k#pUHGUsVZcQ9rrL?tyzhfYT>n4R{>xf-+=6wdogPAY0#1E;ZHniubHx+8*iYDL
z+H1q%er#?%YU9VB1c~F7n=p<7D5$sUO0;KXNPEk5s?pmYZOi$3ILc=o0ip1Cv4O?Q
zhN+MO2$VuG9BiN%K(pynWdpha^h3V<UmG-b8MzvH+JHgP`pY&)(=HQVs_8{3_d<vX
zjg#E5sV7|yBj}urWo8jCVbUNf*19cvc&8a7m*AsX|2_eEknWGu3x#wN&4mgyh+7^^
zqrNC>io^Tamo(+MQH0`n?lTTY{-A9f2-{>|!#Yq=xPo4040-(g`YJD@!SS#bSSM91
zKjBv&o0Nl#(>$kh$!)sMIvaeRzf@-j@(GLG-~IG4H5=|Zv7~<MNddT&XpkJf)Dycs
z!AqT%=y1FsI`tyxbQJCB;jEQM8<1~=X)#;vqv<(KkEifU)ENJ-sPR75mt4DiJn-<@
z6_yZg32|r5p@<7p=?dchz}74>tgYP<ZgUx+Lp@#z8@orF941yP9y1uhiX$t*ENtWw
zRixtpm!RRj-Y+YX9)&pi6(zt5OeWezg+9~$&I|p84#(%SUXkMQhWr5Nr7Xw41sDmc
zb;&c5M-IMWH-=5;w8~Yho!SQe&sExuaa;$35%Ap0_JBAYU+JOl^Ak)stnk(e57f@Y
z$%y~MUvUOPW1-FsA5YOB{}*>T761XkScMGg&{f)E9rXYL7PB{H%6lvv5UzIVrPF7}
zI0u=*T%8HoVQem4`m{G{9C~yK)kXFNEjUsiqvIq^Yb=mfC`{)6V4ux|W==jkWG+(S
zvWWqH3LN%B7F?!qu<*H(p?F2QtsE#6GA)d=2->7x7#QN<I1JbiGB5&UYbD|(fQ16!
zlnAJA&|oGzWQdHkDrBP>ET?*1Ma0dMWK`7vLo5xA`5S(P{f)7@H*nN@XXd<uX>pP~
zu4fP#dBVcB`D`XCz7HeBAzR-`(IHFWX|}WtpuZaB&l}AVOI6<l=K(3pMzzR>DIW#J
z4r69)vOKom(S_$Qv7lb^7TtiM37Ofx+MZC+d+^S%wF$Z^cr!G{WTnT`g9O(Mo4-@@
zeu&?4x+MMts=A8SJ`W%xyorog=tBa5t2~lV0HU83wdLf>=`Q+!KE)vhu=2&^BAPXg
z;rXY1(uA^?G64!kO`c3&er8<Va9BvaC-;#~kR1Y#Z2IzMsVF47^8(ACN`+j+d=|2l
z-pH6<NwqM&Z_L7RlehZ8r0Sat!~O`P$r3HKkW}{|v*URum%KLjG+it!T_3@ORr)e4
zy9w0uwSX^HOna<-*UIZf<~+8tZk%8m1uN<~F-ZFLfkbAz_1#*`V8L0|?^^6wfvh;Q
z@c7o3qEW(g=0<fl_J_(!Y(|Ak>4&juxcu=`R=Yj+=;L*4^~ViT`Tc4{U*AFujp%s1
zx9OT=`a<#2sx)#V-sW-~9xn#mwQkV=V!NH#lVX*k(jXd;?O&O-v^haJyj>D=4D^6T
z+HdX9j>fH3kN+(?WjE<%DX?xtlB1>Cl`Dxqq1;43K8DbgLgzM`3?cFrD|mWB3g+Kj
zPgYV?+LuQJ=9K_Km+qWei(dRT8oWuTU7we+<@z$MM(2-Ra2X!6_S)V=UI`no7(_OO
ziSVcGeBk)F(hPqlE?{gjDyH)6+;Ul!07(0bLy7O7RzhzRclhc|+K-lq)NRz&nWwUX
znfM{!gN6W2ap_NGIjS@X@=4JE3OLi6W)xsbPqHh^5>q4tcmrj*6Rg$Tbq}3QeC(xv
z83c%*xvl8E>Ji4W`ZUFbif%M0)x*tHJWE3rIg+Tc8>i)QBa$P6nK(+Nk30i03}#!S
zSf9BVmkrW99F%Bo1kpeAzWZuctN9*pX0!Z&xlV87Hup;zv8VGl@#7e5ReNiKwEo|%
zLP@2%cy`S`Hf&Hf`T)CD&rKQ^f0r1r$rXp>vY&RB75u8ULU8eLB^<{s7)<3TZ1&wI
zGLK3NkivLNXvTyQpOo%%k82tA$$mj5eti3PFjLbQmvC7psSS70it~&9-0<O5UJAdv
zQQ?9#kL2AyHYC}16%;&FvyZjt2O+{-QiXFro_H00iPiaGa4~Qo14JY42R_+A3We^R
z*|LcAXzPWt5ZR-)E>h&s&WxwN?Dng*+bIlfqwUFR(~Alfu(ymF?n2T#0~QVEQV+nH
zbkHyqxIlki4Rt39d7a6R_xKDMS_Sv%rr3hw=mtWsiFGoLUW!S5UDis%=*tk|@$%8J
z!RVRu;p#dmvQ4e)KbTKss>i4~G}b0+5C{NNLA(5{e@3Z2q2=nh&X2V}d()3FQUNEE
zAdi2f=Syp8)%l)AUW-Uf*FVb_Ji+`ZlUthKLY6Zsb@4)GAK1hHxGk=u{c5l%r>Zd7
zWZN3k)}qMsrzS7;O*SvmeLyL7-3dhV(lEL=`YrVd*t>{)^NaK306j0CEZ(@Rvi3D>
z$%svSQ$g80_GK4iJcTR+0$BiCPVH)pTwiPwl=!7q+0R1U0gj$Loi4IQQDb7rLil`r
zyniTH{k-*2M(4hcFdCKqos6k-K#;}t+V03CMyef&m-BX`9FTGr;w=6(r|bWY^tp#W
z&edPPTz-bdp7oSiZT&(O@Z`bheR^|us3VG!5*{FVywighO&j-puVf2iYBc=bW+qAY
zcimvI*>nUf^gAY{n?R}#Rw#<xT&y@D#y|k}GrS{~#>_-KMZ5A#UM#Ki%~m9RG0h~^
zZ7o*w;)Z4gB*C*fz(`KocDwV&{LPDEYyEJcPF(BjWh7ROF&Yx^&oGwugB#_c$$(X<
zqR<xE2r>%ISpQI1D*7cq3Ga9(qup6eCNRTH{{+nWZj7!}{;d4Wm{Duq1Z=j)EhG#i
z6+lNFKutPqlZiylmVoEOy}^+%1t%v-)>By6$8F`NFnUR=tKl^g+N5-+cqeIadP)1r
zS$u5E<)wCsy0Y%i1<X8J3x1aJ8IYS6NGC%V2-63Fy9{=SLDOW)(NiWq(qt{&c+4Qw
z%ZwS9BD)eacjJ5j0o&NfM7b~IdAsEG?bn;EdpFTEMOnr^oevUHQYMzy<PARJ%lXcK
z1&j#LWm+FDGAwOzIQ0&35m6-cm7Gnl;(SZhN_EgWk%G_$rjLR+Ex7;%uC0^is6l5~
z)jHUTs*L`txi!OAOBI*Dyabgg#+~1G<aNEsUh13hQN1DW@P})(Z<{ah!)$ToCAi%U
z&1dNT0kgkx_sMvTw9K4i5#a1iuQYgEQGB>2DbO-sK<yIHr_1V(2p^$1T5XIKI-I`7
zvi?g>{kjcay+7-f3%adCdDiWaG_r5?c<L$?113X?SVIcVoRfeLgzJPPIKx8Hb;X9{
zSXO86J-2W^**z_?ty-Zk?uP~Q`#yPuh8bCJLS{eF709LWQx`sU%qA2it*TV~CFIFH
zc<|c)W4DS!4=}p)#b&qPSg_lSzz$%Ny|W5x%d+HMOp+*q<^H1=eHi+bly7+fVpMyO
zei9$^iaj>`lkk*qu{wPaVNhR*S^FTsHMlr^7?|6*eNBrndK4I@S-9Io9MGpV{w(++
zo*2)pz;=q%CQ$<PPT^6|l=zpOc|Qu>^T&p!#mdhNv<u$h>$bWOPHD*c@ysX04*v2n
ze&hQ{>a`0+AXyi(o?|*CPDHKtyEOtDI)Wn1KT!I0K0Sl9GAs_0RyBD9NiQ_RH&-=G
zOej(cg?viM--2<l*pqLLvyp0=YwXM|<US?3a19@Bx2q;(IgEjL=33sjy!%8W7KHLV
z8;`=&nP+}!-$g0dH`x0rRuav0qDP?7BBhA{8jWDafx=p|`Vgv9x9EDOEh=$0Hp61Q
zx4-bau6zr{*wnq(TF+bWHfbxaMw5ezhRVlRy#lt>comQEen;94OcapQa`tyoR(|1Z
zaRm-Pru`Y~oPF}rwb|p$CcFHM18qmg<i+jJJWX@>gQH#}V8sZmuU->zfL-9^lO1Y3
zaLLvfDZ{p3b>;R(?o9IV50kSvgo`<*u=P_f5v7QEI98FR!^HVAzcS*P7I&PvLuAnb
zHE>1Y*kGBr^4`=!qnh4cTzQx|Kf#(#h+l=0`YO%zzK!GZxpVb?yqxRGHO%f7Dp4=}
z!eukdTeevt1`l2;$ltv`ox|Xn(YL(kh?8vo%=a7YLCE|1{?p-H-N5CWxzw_nq-fUC
zVjpD~P{wmT;i?}y2EC>V=g8c=ETAdssc{f=s86fE)Oas^_;Fe^pt6f>YvVX)Tx<x+
zS|rJKURJ-5`s+4ooY_&6($QGFI&&jBi5Xes8YA*%cTIjCpEtFc)&phzlnF^>)7jj8
zc?hb;Ks<)P5hh#K&7B0NmC+-!Mrq72hb|n=MOz0IkJtqJL_!9;GZ)QcQn=*iPPFn5
zBNDw7;o%f&$;;7bqSwRNScKt_BE%#Xl5iq7n{fPbG^Kh`y_}z6X2k*Z`YO0{Hlr$v
z2GTkFpO68)vDALD8WION<JJ~OjY_iY_+4`ZYgu=O3*A8asbEKjMf!nBv0$QAa6O!d
zTBEhu9KySU09_v%TIwK?^3sh^=til;?2xWIMbqDtVU<cNrPl=Ma?ZwJ&Pu@R%=l?8
zM!3JR_55&eskO$SW72%`AmZ~`)6Q;V1@rm`$s&K+N(9Z+UXhe%XppC8qsMmSDVfrM
zK&|x>9>$8GZesI0Fu3lfo^NBh{EVb)N?gAa?UZYzS-ofVd7X<`*rn$yJ|1?3qY1%V
zBJwhGAJaL##a+48?tna+(%X@P`ktyI*<XXdZZE@_F>N2dr7E`?GY^$ixhl?mGdGF)
zBREl#?FkP$_cQ7v$d7bia{ktC^g);n%gw=($^t}Eyxfnn+A%TpOgNNFX~HI1w#uOu
zC<WXtPv<cvH}d7Z%-qN5*iuXSJod-2)8(&?9!=~D@i!c}r(IRW5dyLvpZ$;)Xbsr}
zhg_d9wYYzOpX()J0F6kEO3OEfS*^-{F#ou|8<%8|=gb`Cbz;^Su}Vw`nXFg0?nu^d
zY*SV!CxCERt>afOF@{6<{ZJdBdj|R4QL(y+G|WG;IG-UeV_~~UvcWcztJMTkvuZ(C
zSKxjlTYZg=yscbIO3f>$hJm%pjsAMacd90MrYvFxlcIwOoQ{j5v%*XYvB|-jbNv7X
z56)Bu`kYHzvQqI-bYAzP%#mnB42*uDQJpAJXPmBN?NEY>TtL1!yaL{!HXcl(=XKqS
zD`!wyVQqg11mKWGW_L{}7|@Z*<oV;xL1;z{5Jyw>qhmRIq0u(aJv)~faY<jd9J@_6
zjVC@d+%}eP+7+p^Mszo&gjlnx)M^EN6B70~^!f9vsT=G?uh8Vj{p?ceP*91#N|*C^
z%9LTZHJt8dgUmB2>Wtmk)wRE!&zKO2c}J<u92Wu=cmfS8e@y2g=ODHFBk%T>5!IP+
zo`9p^<V~UrYB+MK%FkIFjNyc3bZfZM;d|wv&f#5Awp1c-GyR;6Gp%wRZmf!uGT}ef
zWe$vomDf5tHtPZ!9k_5UmkAM-e43xa7s1fks{Y4N*;BL2f(8P9SggXA3F0SBAF|Rt
z4!h@;1Zxd0t`8L3jgN-;N?gh{O8K>a+JqykGkmk12V*zLYWSjUyxYYznqZ`u<hyn*
zfx#1nQ`Db(5MT{N+a}jj=}4Rll6(C+nh<g~s*V&{`*_!`xzWG6t26T5JehxQwgP`&
z&Cc>XYdg7A=4-n-9y;-&#mvv_6Ku|=W2#c`^Qd-o+nyzZHqJ4X9*5Ry$~!lr639En
zvZWTBQl3Z4>=56q(2ZGh5?oK`Kp}*Oom9o@`|(eFas(4>h6}$~gR#(p*cD@#w696H
zk8~Mn3!3uogn|~--w>SJN-{AkD`!n&O?>6u;*yZ+)8_i_S^ldQGT8NtS;678(vpeB
zC37dGA2j%%(gEq}l}zs4^r87CMrZ@^yAKdP?cN7zuo=a^zx%E_<h9L$Bc*tJ>}+Ir
z#Dikv62Go&jJ9b99fQwm(D5fnxDR-r75994^RwE7C>AvVWRkXp$gx19!a+@y5gshB
zedEeR%LfJefkCl5-41DV#Ut;8H{IPLR}=_CG{k;LCaXr#!@@@WZj36YZ9^XBrhr)r
z-IE)P0iT{MTE?j64{C(wf7hcSQguU3y9EzrkzC`;d$WcuyOcx#VQ|v1uQT+60weZN
zkPT^sMMwAMN=7Qxl{6h&H42KN#tJ|2LeO%{PZn${*8>oAU8oI94Tc2Z!A!WP%bb1<
zzu$O?w*wZg23V^<+n648v80gMyEx>QE^{o6%6rqiGFZ$0{3(9tVZY__$*-TXlrL83
zk`6KxRxU#NDf7J>y4(&6utiZI?fF&me!H8#NdL!|a*EQHjgtBqvDUBTI`z5abz&f$
ziV#Ch$9&Eqjp&Sx%15t)1`V=EhU-QGx;l`qzSi!gq2mlco<j6-{o5t7qlHSGlUX^2
zww;Il+O>fcGPs+!Yxfxn?Lj$$o_IMQA7M?A29*gotm%%Lu34niBkTwp&2o5k8)Re~
z^1Y(nkx;b7KcG)6uV@ne&DNEFIL5?Fp|e}w){b`S3&MjR-arONN4oA;6+8J*zKO3m
z1f~oki(_wZGLW^C8F<gLBj96?fj~0}2M9^XJvW`K3&B!b{I0`Tk1aRziO8i|JKKsF
zp6VAy&*u%QNd0U+qd4n&GPjKik3`XqrH;v3#k%TAcw{J`QVLC%H|~|{T3fl**6QVv
z)sM6p7&cMQ)i!8&DEJXO0kay_-eyVo$IdV?&{(*H(b@IFmim&GYX0uKEtYT)Si-=G
zpSL7Mn&nu=6q|9$iQ&OpHNUDhd1MsNKSKA&o$QjPF+`hWD>})YKyv(<6pzvhSazD?
zlffVAGQMjhf1c#aOv_@?#d+HuuNpd1D&qu>x%@NEV=MMqt#j&LPUE0(#0O~?j?sva
zXx29Hjw_v@M$v%x3kkv#_MHEjTz|Y#!RcVwH5ReyB4SWA3~AI$XQcY?&WP5;vkTSy
zuKj(y%N^TUFzbrQY1{yopX*L!YACFcGT^;;z@}jov+0K-%4CEkx8&!I+XJqH{@ekN
z0EdiS|EiOH+ptI%0n1H?OuC2fCg!CP8r8>{k<SdkLnr<D6f&xFzEWd>ad%mBIHk)f
z;I=<a?|Lw+0A@33jA1wFTMMTp&Vc=Cn@2k$lJa&Yq7com0mRvqnxx!*>&iX*2p-*W
z9$1FZo(s+VF+W&NEi@WirFp%Zk`<HANn~g5V3Ias#maEfF{CJ`gxd%`jVwKo@?*=2
z-{g11LR=jq@~C!80+H2&RCb=eX2=<vcYAX3nu&~NhYoA;O*-Rm3!=(ZP24pv|Kr2q
z0+iIKl<di=NvDlHr1iIKI&Qh^SnD?@&9P-nTP55~A8^r+g`<jDTkOuy@tKEA$>j8?
zeX~n#dbqshpd18uFUrybn4aOmmSa=zDmU`r92SB_GWlo``H5y-P>E(ND~jhgE?3uM
zNoW|=obw{O40~NLTB&Id-`4+G^(WQvv8!KF7L~B1>O=cHKyx8+$Wim|WPkV+f+^+o
z-B#YS<>FVfMlaI9F1yLPnr>UVt$HDKp5l*AOTRojwq<OAGg`99*`s2?n&}WSrZWN&
z%<r?9wutdda<fHh{YI}9k66*XxlcKTZr7PZ4#YxVb1<TEz#6%>%M^hcD?k;`5-%Nq
z=D#}t)oSQ<1g_1KRcU<ThR=j^$iZApP!zadL0}3@Mx_VKFQgJW(2dB<#<$bXS?Q<&
zAb96URfbnkSnP;cJvOF!+=!@1ZY87@e+c0SAZJk(Pt&D4UI|)i%Fv*LxypVBuwa#K
zwwYsz8xj*V>hOp9)#&m=U3KvKLOcuJjBH5ubI!;b29M7tn~2^X{j3v)7~+Sq9qoOt
zlF)%E{aTPY;}q7C<fVa!1;;*5g+nR*uBS2-;h-~KS;BW(i$%}RR%b1inTgM3u2#Hl
zt4&m-JS-oOJr1aG4P1Kn^49@L!b^7YTJ+riMc=}<<N1U3lVXn7grAn*k44;ict5*^
z7{!$b={fuuLWqj+n;XxH3aq&kW}r%EPSscgsfZMk>!Ua(+rQ5|RAn{ynGxS!do*$%
zaIRPECof5<9=_*K^?-L6`}w5z-6Hg<;e5w_NByu*(_a4zSBBqDaFSVl039L<dapE8
zxmu;xkTMssKs82<?*oCU<gi8+f~oRyQti-<_ir!W497tY)eKKq*vp2zO8;v9MW!F}
zK-yUKXVMO$y&6_Y#k<t`?v}WCdI^q=OZ@Q^@(NtYE!M#8YMLCq!-AlASh*zJ2%A;+
zV3Nt}B|oYn*q6c*6tMhOeEAJg$?W9}GOFqCMZ!Aw8td)54_tM|WJCEOV?E%I`5`rm
zY}Op9j~Xc+(hSTXtT-HkB9b18dOy>%CNhHtnu|2`CLydqA&9J&qcmFu(s{Bn&q{ce
z^#jMao0;B0KmgO+1tWU-BOF8<Y>Jfaw{jPo_Vp`)?cz^`YYq8KUM%6qi$rxVcyJk2
z=dWE`7^hjTNDFiz2?$)zXlh*c^~^b0K9grmvBMIwJ#C+o)rVNGZ%rh6+~3y6ec~Fi
zpCJ_X{xUgHaG2r};Ewa_Z0xPT&E&gD!_h8v)5F2Ul!^;F5f-e0^4!wdYD?R;)%|%W
zdsSlGzcngibH3Y#0Uh~7u;coZGDe&_e+lQxlQ%=Iajv(6s3cq7YRdDMW1;)m-|@f=
zNR7(b-6wKFTUF`M8RHWyH76_ecm+CJq5VO#p}4+sycYh*o9d|D;$HW>lT4QKdFIV}
z;TJnjo!*50_*m68Z2Qk42-JMAh$gs|(GQr)SQE}E`|)eZXkEQ)JIinWG>PPY9PI7O
z^NIXux!fQq7SyeFUx1w7f8_Vv)kgW=>8gt!%EIgoS23|43=Nv+vc2%d(dX3(lAG00
zE?(<y!R)2D*#!v?`TeDm_r`gHgY(?6t7SJh?=jL>j%#t?1>xOQ{V<HI(jt}?TKRTV
zGfci(WGnJV)|(4j4CnI9vBr8}I5C`aa#y`}y3U@52EW}Gg5RQX>g|)fx$c1qQ6})z
zj^7}*r`457kOWVzFO2b7ABR6C?@IQ28!ee%w=Y(it-?RJpT(WFysH#<;>XaLZilN!
zi5nwb#!0UX4PbKNs_mb7nad9;=PL$8Qtb31sOm*-VA}4+%(uc2B=t3DoO`2tIO5Fc
zz)=O%aqP@zGqQNq5ng0^fq~+fN_FJM_D8`TCy<Rc(;Pig7?4mimwv|A_E#X`=ZAOM
zo`om9b&b66K~SdTjJ#So&wEI(X$*TKaCh`%Pw$VKF^*f#W7ON4-~AFxX~w<O^?O(^
z+^yZt4w%mw?z&4pIF!Y*MC`H4vKJ3+e!uobdq(71h;Iw&`WLLR-Fy|?n^{{C4f8@>
zQ@66IZ|M4;kIhQGN9l;*Rt(q>NSQM!(S-Wr_FUqUHPn}^NFw{T?#nf{8}*(3TWXFh
zuq($5{+61|w`2zc111w-JGoUId92YrKR}Ts?0qT7F?rZ556*lG14@a|`f=-NUyihU
z^AmdI^XPBofPk_MIMcKon61H+$>d1sA^GGbqAwxAa&gkZ{+`CN{qt_u7Av879_f3}
z1!H{-OwL@zQ^c{C#K%Qx%N)?ADpRZ|VGJ@2DDu#a4teea)yhs`;Y^!2TW0Q<S#ZBW
zR(+lm`Cw-bO!`;f2#n(LjMD}eS|xuIuWDvA+Kl~y0-ZIfPN_PQ|Bf<kjAAmEL|Gn^
zNR_(%>S09HchOj_yE>ou<63iHm|B^?asb!FUY{km=T<z<DCy*<x-K*f=<bsWT7wGX
z98XCxE)0l<If8}eEmPwLO+5Gz9~SvMk#N2dTiQ&Be1IW^Tm+10mhHg!@fF_kH@R1#
z1zJL)WLRC=8XvWAj2D)I#*t?N{6!>5K6>Z_W28W3b!F@ttH|tZxemMQo>GQ03-B<5
zLPm*BO!dr7w%1W7;73~)@dfS87nwvF(023tpa3R!#{I^pn{I_Mt06%cgsZneM7I@#
zBEleurU2npR8$nY18ir$q+wAh?}uBr|DM~xzLaFw^COfC-GQZi#4h}q;aFY8*ET09
zJTP6Y)jW=!HrE6f!>WVZKwoskci@xB^v>zB3wV0S^ol{XA>6ER^TU`<STMtcVstHE
zFCTiLoCXjU=*x7Tg)mlGJ<{kZD5z&)!GKDzPg9AesW*s(3jOP|T|TFbh-jR`fq~b7
zMr+CE+)8<vRXIJ&=2R_JN<%1OUzho(LtBfaXnV0-qX9K`vL54K6<nFB+QyR)!h6YD
zVXqTjWz#4<P~{6{j(LO>zT=7m>qni2%~bn^+HnV)2*ODx3i1?-bu<!V2d|7EBBHT=
zx5gO(6G9k>mVK<$fH4JNh<>TiYhFmIa6ex0I9E6%3tAe;@p}rFdh03iks$`w1S@I#
zcZW#I58O`%&kx{9A8lvFpSU+`b=TD<2k46-_K?GO`K(6=emQSGZ?G&CylQ05Cu?SD
zVW&ll9MaKQcAN9a-V0r#{Wyl0yo9@OunLlnJg&b=+ImO;PD5YiluL7Rlu5s`ov!2h
z)#@UBxrj#j=eltVO9M{(m0#C*>n868hlaYJ^zNPhoUmsK`6B=LnAx|TZ@RU!#bCZr
zr^zF5vlkR0;3x0#4-_PvjYaJ>3d|O|>L~$C@W3gHo1X60v1V&D5JZJX;U1l=NPQc8
zZz8zql(A9%3I^0`;`h=f#s2G%*Dtkv&50(j96rnjFn3K;^oVn58ac=7zJ`w=^>Xay
zG6KoLSJRDtSAt5Q(9(JxiHIhu@6DWKKY=C69^->t^XW*{KY;1l>UX8!e6z*8_89Qk
zteu$`H7heS8qcz8;&OFg^qWwCEx2UgXa)tPFa8C!vp_DDDKh^8fz;a&|5eSrhy@J{
zh(Cle(EMTD94kz}>&x)KK&OSO#o95mU$fixg=9cz4#AiAM{V8ZkIojOj3TdQXCJ+)
zFFW2oP{;fX6mDjr;<b@8|K5DXJSRphrVStzoy=VkcyMwy+TQJTZsv~qGHU<nn!_#d
zE9XgZ{^^=koQ*kzydPl()G<e5gh<h`3^>tHFr<F(O%~}l!$TxJxYms`gKUuFc*6gb
z*~WQ&LN;1A0+6F4-~KvK<H|zf9GCEz-YV%)XEU<L*=I*LYE)D9xa~iDt{**AwNDnA
zh=ubmdM0)&$Sqe}5^I*7d^BF6n&QSL0w?BkUj(mPoP6+RW;!B(DG^UUdRre)D8#+I
zzs^M}j=t@CBJC3$llP1gFB)_;G<3Nh4z?{-fEI<Al&nitrHHEsoipVIrjx2vuzImg
zJ4I@P0+3CXXbM(8ZLx~rAuat-B>l5kKUOgdEN{B~p<u?piz5)A{uC~fla_wf$eStX
z#f^9d#)XD~skWM;>FMiRVEAMM<Zk=qsl2Sy(2Tdqsqfn>UbTAssxpW11=T_$?Y`EX
zq~@m~sz*UQ7_D&6mA~a+x$KS3(iHjWd)e8=r(&Y>3J=ti%O=z^zHh$>A*0vJe42o<
zD$jaCF|LHONiZ56Y)s#GqSojj{ilU_BIzd`L(g`RQ39|cYNJ%oXlezhzc`PTMdEYi
z902o_?z6=KIA@BB<x$C4d{#zK4bqP|kL_Ib#D*fU$LWMSCV}O>V2C=*s3F`ijv?8Q
zJgRUE2QVt0|9e!lsV+n5kFRziIeR@u{!a6&+)w`!ROlXx1FfBaj#B7Tj7BO`8?Bu|
z-k3!D_3xq$c*HSPg@;(6_5!^~lNhfJm2zZY097yE&=~`!-N2$1-+Q~6k+AS^(U}r;
zEK*WdQFYA<-Oggwu8Y>2f#G2_J4M5}GEj}$L1P|JKaP|p-us+{W~@x4NztqMca$wJ
zx^J#!2k|=Z31{+t?z%a2^dgd!_&`R(0>8a6^j)uC$H`?e<FKpv>Tb>32iY>9vd99u
zY9VRxLq=7XFkJ+te}TFv;WW55pUdw`&3p1$uzVS~RU;}+lEQzlx;wG30H4Po^-BUz
z3bWghOksl)@YFj$Zwbzl?=@_ENgT;QV*?Ma%@iN=X48EI3NfgvQTH2fr5rC2eXk>#
z*^gYr03^f`316UqGx;p$|NF*<n`QF{y9QRPVD|>qjZ1(9*wPBnsR$w|=7M02kq{#d
znc%BU)iZ_R-#{xf@ZuPuIf$wyE=pVOzF)^n2fmeDqI_>tf-n@wbh*Um{_5>&EbwkN
z3Gf$SG0O?$EB*L+<{;qE?BnC#PZYmu+;2$#j7vyJ2$6p+49$Xu5i8;=DrCHAOpVD%
z*Kh;UoTN{kOBXyjo0`<3p1Dgd6$4-%OII6d7S#S|qG0awbpPY}3WlM>$jJXxI43?6
z50YL5;DB)INwzPmpaERn#y9(%aL3`FcveS&2Lolv8GRlGjM_z^u{tU~QFwZ&-L%eM
z=C1%$EHHiKs@cnJ8~XQc+hh-{25MGF;04as);41wCGcrX(yFx}W3-s1{>#`5Ns~Ej
zu!z5y=@5<3v?=%d(CK>31ur9if1`#0q4&^}OTMgPQd({{BDESEzxRLo@#%0u>!&SY
zU{GD7tg{;hs%c}%x9f#-;6_cQOBusG$Up^xP01pe4CC)R6Kro~hgRa<$~ryGqSgCj
zh{8_u5QwI{+qq;r<FPCLQ;WJ3IrZDd7=T)ovrLpt!1zt)CH6)I#@tx_-+-Yd^E+Bh
zRz2KI{~ke?;PZfGzL|b<$rtz#iZ)$IH9A$o!}R6weOw!x-+>2J(4TO>wm!W6!+()l
z-Qt$0!(KJyXp&C(^d0z+cULn1>YfCMh5%rm{!Pk;wnjQbl%ze<d58`nIHtF=6&V&;
zGp+#kD=tf!sU%N()_11sLB`8IkrV`p%NmwPGzi53+x4=0&X(`^vI+vSjW-G&lSm?s
z!qRfx@)Phu7^BB<dC%8rn#a!?4>ysjq2H=^5DyY1X9Oc{qrN2>%XwdKfji`_033#9
z&?YqqO0lh$Yc9Ex&xMP36d8bkyfIF)TG!I5ppRZ)=DK%dF7D-__eO9n1;7ufU|fFe
z#Y=yGyGICwO;~b9Dy64fZWFmExpulEiH1lG^zH2}gptkjhyxa$T&ab1cg^4>Z#cC7
z`+k^IFKxk6Ri*{0@DV}=2h^j)*TmvFUAu?ISTWh~619-ymomxdhRDdmtMEv$W{S`-
zJC0DYl5aW!V6>WC>1h<RZD*1Km>6Z2QmRb{urH357wsNBODO$dz|x_DURN*PYLI~e
zr&6ZP{@DI7EXt*YAKDhErp5GI@3%+28-V%c_|KcMVBC`w=wsHeL9uwF@n1~nhP2(l
z5nO_l(|ft&lME@IC~d3hrJbh<W&X4V3+V^@!(0|CF`H$t7}wq-H=N}zq<Ou1&f0wM
zHTv#U5l-ON)_q6&O7YTT7C2T-p!;(*K>=Qh_|50gfX3K?Tm_v19EDkN*w5O3FlsxT
z`#Ru*RYvQ`I!{%Qd0y5d4mL%Urh&Ssjp$9<ci2+c!l*^cynjZRsrA=jIb+CdIY=zt
zV}hCqaoQ*Z-`5&kvjl0m=AS%Xuj-ToiR|SxPS=7kWPN}}Zpbj@*5{+$DIgQlDBY+#
z3qruy7@*B@jVxetR^&As#JTu0KV@^CieOA8r_psC`*J9(4Bmdio?n1pi(^PP^t0qx
zZ?HS+8;6R~L5c#K{WMvvmDws$!MkgnMM`HDMx`?x$L$w1hWglh9WYD+&={qMt0c`H
zWL_^I%Vv(HZIt=f02NI8p9)sGi&<|0rv;_q|C0GuJ-_`cm)ghTnp%)MEeizaQ?1Er
zf6*ftvMSXAvx>iK7;-)f_NmTdmQ$CvnxyH$q~k;uvE2<oELR&+gRnEgF^MuY0u=^~
zy}~yrk|K~^83=kpHjS^ava<5{U65Mkye$g_*>8@VEmlQvXuV9)T*evPg(V?`aA<bd
zZ~nau4#(7EF}NrB(5Pl<({6nXDaE*J!;iBqB>kWO;OjH~gEtOXpjWmw0L`oa1~{<=
zU85r(_<2ABq_E&rc0<4R=W?wC08oMcXP>X<5Cr^CT(Xy@-u-P6l;-~f%y^k}ZK<E-
z2zNSOktM)I;Tpm#VwD+^@q}#X33qD2aqHg=iQpzrU^KEbVG2+BIr~h+4y>fGol%u{
z{4v0y&J+Rde!jir@SI4pDRCDp6u{BoQcuW`JxrP(O!Aa`Praia<#bLsL6&0kJ;K@V
za}`noy8tI5oTyP)qYazbpc>nojJ$k*K}<Of;Ld=Mj)|EAm^{@CU}_!+AqiXx($XDc
z!p~7TzIRB^kJmYwcGm=N-^O?yH6r-jU5K9Vj2zCMe*iXjD@yZ%CO~mInuzx@f|Ct|
zPL<nU%Nb{!RB;%V>E1ZIr8b(6;NrKz9cp1;br_jh<7ND&0Hygd2K-Pkspv(%0l(y$
z?dA2xYUn#0$E%m^u25EEvLD^cQSO%zKmZ(T#wBdA1{#Psk(V@bET9BaF+F%0ZEX$o
zL^3G#eJa<F;lo)6aakEZ_EH;|oKvO9Sq;|IIdlt(s0U%klQVKy_i=Eb6}wuqdt8yi
zAS_?0revm5bz{#e`swdKC*<~#T}w&P|4MspHboqD8I2~vXk{BuzAb}P)43HfcV3A>
zNt*9AfYe)ECG^PX&Uh`-A>}U(n}Qr?SpO=XZC3SSomccu>PyHsvJ!!fBcia5D(QYS
zS?OY;FzO+obtnsVkGb+^@^m$Ts)>M!qqdRl@9B}yZSlZLWzkEB85kHqL_!k1J=+Fa
zC<lRr3^4;l0E6#hvCM$+YbaKr1<t7oIs_Rr$&G`T#0siWrH@#gV&MZku9xS9b}tA1
zm*aZcMi%}5dI9WMJ7(gJ7yiAlQ-$nv#&F)CmjU+d=wwL?%I9xr>gJ3t4GIHC4s`75
z{~tGY(Ku~4W@Epv0HUDyI;9*r>Jgg_ht7}*>`V=6PT(sz;3^U@cqImc-k>00q+`Q`
zB`U}_Teo#a##X7I;1ZNe!o?AjhNZ>|qlyXGu#Ef0JQ$?*mW~3-IeRa&%vJfZ<JH9R
zC3i^wD<o{j;LIZ7MjxZqB-TgTJGA_pOVWTa87IOo3FpOvGkG!jL0b69GFG1D6f!+{
zBt;M$<k!yGumQ^CW(ISS=-@B;tTW^gX01I*shW~$6~VBp@8qIvY7S8iSFO_r_?tx9
zqD&xYc(5sTi;EfzcngHX^_5!h_{>x-<|R=UclM6HG<-D?xOzTMjx~F=yYV0>KMg~7
zh#6%P7XuH{>p{W?Pd@ZrdnA)O`*~QD_O$(~=yI{P)diK1b1kTTpe(%XfcqDm=^58B
zUZ6?RPvN@|WZoZtb4Auvs?B{W^r${YMMca@@2M*o+93E(b;y5d6h>jV)?~|dSBnZY
zP)*Zn9p#vW-;roO)xYAy|0uhb<oN?uL7D72C?!DF88$dMEs@rcp6nN9SRQ`DY5Sv8
z)ozbxW_xB}Y1%ww<Xt0gJ~uY3WEN6j_*#idLDBI6SyCqL+-o$%00wG!vbFFHj(lno
zdPOj=x(8>cW>U&Qf@H~ol{G7NZADi#%9L8_8XE&66Mjdk^pOA8B-VWhW|}d2uD;Q7
zmk`PjasYdY;yDU3Q^;NzTT*O{M95b<3B>v!*s5(ryFl1DTx>uavDdF{hCTS{8((Pf
z7mBUEm@xZa3!e&%GY^=;sO38UhKDwgez+y!%qK4Mxn4#L`ol{gYgVW$&uwAwM1Dr_
z@Yd+?!{xP??w|kWY6aCxGMFow-pok+-kPj0_U+#E&gtVUePaU$BN_eL;LGmvh6?Bh
z4PI{j^V>6IEhss-%+?A3jw>en5t;b+=(GNRj{eVJj2q-vJJPMEC$f8RNJoMXL1dY+
z+0G6!=8*q%6cf`zErQJ_(!PQu*8w~7`Ctl2C(Rxigc3|pK>e#slBRG=ge)ZU|1kEJ
zQE_ce*JvO>(BSS)aCZm}!3ogNxHJ}myGtMt++6|$2~OiK!6i5Z4+M7!Zr>*7Jl}oJ
z`<{Ep{R5*J{e!V~t*TiyXU)y~ff3TuRZ54(7{iRYF42fS*tDFa2P=P;w5QKh%IwBM
zZY9^KWSmt*Z}#?*%HXQKN;&4)OjjUU5e9K29uL#%cRCl<5);C8MA9?3V>~>Zps~+l
zk;OR58U9sc4enCQGbog1j45RWS2E{;+E4%)56HW3Z8OKvjt(vuC3&+9{Sp%7jM<PQ
z^)Um$$YdFV4$$37=Lkj*Amfn3%X213H*ce+^jt2iIW3>bw-o-BJkFLyPvlDd3!erB
zg$WzJ;DB89j=8<G>@DefEn(;u?w{--^Zz4z3;~@deN3I1fTMa`5N(OKv>zM;Mh1is
zQDqS87~~0Jl?V*hEIoU3WpqvcgTB-RH&7AI7+iNcT64ZTGGkmlW?lfM{)80o92tcu
zU1;udVswkgfR9TFCPKmO0J+=8<hJF(4Jd*dB;N5z5<2Q@>jl+US!w~OK;f^8K7|4q
zs6N9>(Ig2d&B!3pYx5?2_3Bms;Gl$@9AdG?*TB$F#5c<|HQZ7%GJ|jNcVYudsS;Pd
zc3yu|DqLS11d5N5WI!B(SuC7qsTmM#y#wFCrT$^C<t<;<td*tpSk2+@#Gb;flkNlu
z3_}kb%~LIlhjnske+!&h=X4LpQxE_DjeuBt$~QKC4$f%yi!>3>b;-vI%F__~VA&$0
z#3Us~imkpoTB%NEH(Mpjkdwok$qv*{Q+Z>pSV_F241)HaH;|54gYagcr{b!hAb)7h
z{tGK}j9VkbXep@@+t8x%q8|g>tQZP-AO9-(`tU&R^CTK(d<jg&&FMg8I>BYS^(MC$
z2TxKS=IoQJ&2+oK8XDCS)4r&;zL|n9V}Pm$m6#W`s;a8DX&E4+H<W7iiNjwnIxD@l
z9r;tF^jH%=_(@dAeIj<6sBCCC4X5l;qjzE`aT%f`;CqKLU-Qny?JF>jVnV}z>X!Zj
zkFI7Lu%HgRr!ZT2kE@b^I|jh5+1gF<1}Y#c{?Gs#$Hy1Y3-X0v@>xGSC%?=QRP^YM
z?Y2=$8iww<0#W_P)<!mJE+)w|(^n_uwRU}!MP8C8UZcB{=^gP*7k`?M@ISo8|J4)b
zYj37f%gr_5^nVwN3U*=kBE?4xW#Hk`J-u?{6@X_O)(@uM!p0;ddjFfqvVvu60Yt$?
zkI#W=obsdOxvh=r^Xv6C)o0*U*x?Cev*2Jj%FiaG-8Fkr9qcQW?xtR~^G-`>CIi%5
zF|<spnR(4X^{>l<eL`1M7{F3KIEBk13QlK0XHIZXY-VS&aQv$}y)-T~gU6&BaYt6|
zXD}Sl`D4r}NgfZ$^C1l^RRZv5n8hp+hXJtmWG%1=GSRYMJ=%-XBRIWJV#5M;c);s<
zSPji)oOwE-fI4QMj<VtaaWn+iULQuQ+<I1ai%dHp?r8w}fDXC$vFB>jJ!xD}Ugzuc
z4(qR+u-zNQ7fk!Tin!X!Fv*|zm-Hvt5W;8f7=&vCulM$8Sa<sM9~kyfTU?p<ZT(}I
zHT}g}@w3tzILGMZq)etxU4bs>WC_a5&&zvR3~Vy<$=aMG(MIK*Wbr^Km4xK+uK#yS
z%|fEnAYAB#F(o3NR2?2ecqxRk!@p?ZP!=-M>&sG7D8>xN`RnRB^8smWe#t1Q9Tp4+
ziX;;u0?Kq!zJt3n9Ap43<Rxj?R<@skvgby>SdtdRb%+8OTeEOF(wB;T()vu(rM;PM
zYs)f3me6yl>(m4Ex0dSuhV$<xKUr77mipJi-YwS71UYHL7^?bbAGB4X2#3TK1IL64
z0cYI;KN!2L01!Wx3;an(16rQ<)UoJZZtJ~#4*tGlR_%Jxqb_%2Lk8<u%>(WOpilj0
zvA}wXK-83W2mFHjtJhK?!SnmsT$$?rMlsH-2vEmV21T!;7sZL;iDJxwP&uz!u`y6W
zkuHXzy7s{CYBC5a3<M4l=U;(S2n5c>ArLs2{eq6`hzO_z{!>#L;Fr^RcogA+sqDtE
zAJNIn=d+s`fy>BBE3$&#UUb~jD-6q|x`@jjQYEuNXDlHg>0k&QIZu@YYjl#Om{oIF
zK%da`Q#bn0Ut~`=4FNi=QsMs=#$8goKMXOFee~kCfeZy~U0)%lY#UYM>RB;WJZ{5)
ztvPd4`xCwrHtSDp3>N<*Hrlj($=<q_zlgevOmL2WB_o@OtJ60q9$;UXoRSvRXU^Qc
zQKJY4k0AK2*G!o~4E-=6LUD1rhSh-hhx9Y>EQSd?;%smi>6ai2fkS3F?EyxNE07-0
z@0IBFIhc_%p5ukmvZel&#zfE{110vj!>4={;S{B!J~uzt2jZb{X;C@>rN_tirTWcy
zW`haiQxzqN1pSVh;zzX>6hmG*XL6-t4(dN0zmjC2D$DAKmDkh=e3Yt*L}j!ca`qJ2
zG{TbvD-ZRdJvFPq4fy9T;m<%g^kDbzPM?T#mrr-?aM95);N*YH%dp+rL;L*<JnAcq
zMF`&M%|GAaCOEKb8A{ni1P+`57ifFGhRh`VY5rYEya1E~EsW^ByZfy{bH|Mx&`8*i
zSN>uewp06hw*1XZRhL8{yY&ID_vsMbKz>%gtHAo^77CNTM?ZFD^05!Y^)VM*0@mRT
zEGCUVjUiI-*)aYYGy8Y0;~U`*OWZ236;Q|1<ISJt+YBAd^Vtl>!HTGPVUSp74$PeX
ziiu}cHqChno%M$H9>m>oqtt(0x8Ha%v=uUJDI0cxB`RBse@{66(9n$c6f#6D1Q;On
z0;kJ!c_1$hz*e<rK;#I7(9c`s_t)0sH?M`?q-{qESP_tCY3>`9isC=7V&b1@knzx(
zPk7rDVux*h^IRTbVmPOCh9%u-u}Iu<viQ>?Jo%qK`G20VHcSNo!$Bu-P_n&qoV4v{
z&=${A4+nMxXbS@`x~9p~QLfCC{3GlNek2YhJM2tIucI8lVr6~V`Ki!fq@9w7T0z|l
z779H(jZKY53B)72b%uEmN=DS8pc#*xB8QRP$W_QQ59Zfk!H%qqF+!3MOiu_iMS8=Z
zoxxaY4^N@DjxYWB+<bkVLRakVMlQ7)R~u?^Qh3s)q|<BqO}G8Pl&uX70?Vwfw8Roh
zAwK+(cc9L~Z%4AWz5&}@a@vE)8t_odMI$vfHg?2~LmyPaS=5O(L+mej2VRY*C*{f`
zEC=Dp-Es7ze}Um;1n9b^0E+oFc8tr-Z>vS0%cThseS?abJT5WdMZu_bwo8mlm$era
z^#E1jnfS}~&n>=cgPnYx8G>#x98V|DJ_9u0ZLh6JxfU~$!aF@~l&0c&Ime{GRo60;
zrgtd)Go1hawD^?dfT8M!)ai*bp!PXITid}!`NK&@{(~+v<^xfb@|Wp7aQW&q!G*je
zd!p6ZMP1Nf5S}j+P7x|Gb+5ex)!Ew@k|Aoyjed{y|D3ml4Y;_Pd}TXNs<Xxk^}s-#
z`TS0p?EMOCJx}o`$Etix90*3zXZZkBvkl~MaI*SD)%h6G@Ja)UP*fIP+b2mQM8wLa
zuP+?Wf<IbG<TWJ@nReK)*n9m-V<09DHsTl+b3|vLOOriQ9O*E8%<8x#c3nHlv%q-u
zvr3F__-qohHCSeYw(P6Qq}vWD8?T@+PWXdB2ph<@n}_2yawjEV9^5L}<Z=`sivC;H
z(lX_jvaqVo6h+dDq;CD209c()W<ag_#CHs5i7b@g1avhSmFd*l@BiS~Au}^jLx9G`
z$Dd58s~A5%+{>x(rOxtHD4dY{-C?2;aaRtzdI7?+dWAvKzpe{5@^3FotU8+&`Vlh?
zTP(VSGt#~KLp(X)0-|V5JtiG^m3^G^6j7P!DGmf9NP^8x>=XW14gwxphcy6g08lxr
zTt`I`3LsXT>=0ItKX9kypK!-~f7|bIHP|A%GwJnX0&@{YhIGKQyg{?PO7}I%uC+LE
z`Gx%s8FNq9x^+?e^C(GovxkbNGSdwtCVj}cm2-U^!E!!nu6zh}jQ7D@PUI=PUt&^h
z<k9S7Bzn>#C9})M8>e~>>3Z{6F9~Gyr8z9>rdr9l6gfD&K}(US&-2J|a!ItGYa30n
zCX?=8>J&2Jbz5fUHP!WeBh{tk62gy#m6=?xQypfN(4LxS?WmL$HTayu1VaxO$74A~
zpuU_I2CA=7OYmasq)2*dL^9RH(1roI+}^U+QIFr6s2vk9$y9gb0_MV2zqiK$hMpXx
z5g))T5N}ipNJxHOuJ|Qa<MaXI0plN)#$m!LG(dO<6))2NDT304&l(xL{d)DNBY65^
zwD<LJ=HJ%OBwD`mdf5M}+)P3<vTlUrSZg&mwezsvcGdsC>gJ#O$6xa2_6RtA|58x+
zb2vX<PEIf!<#)V0-dC%yp@`998d9jaRHkE<GV0vLa}w3!;VW*XSj*waA|m6r>3HXM
z;*BZDX$7^OL!73q{{CV$@7$RHO$g!HdMF;nUdM?DzsqXMB3!$TK4nDMI??1b<21(J
zJ6lEdFOJvmSerk#q{W7{qua*)ZplasV$xz$IJz^<Tf@ND2N4K<Wtf?MIUZXTR%Ju$
zO1c~tw0_o`OUyVU@oiTr-`Urf%=PgWAHdfvs4+B@8@spzMY5^ejzy|<So6F){tXO1
zc&h_Wv&+;ACo4PO8oYVberHEyWV}xZXJWf450qak^z4}rjV^&?q*upcZ$%r;uG+}S
zzri7*r4*qi&7sT*MU9rYZa}uA_}<*4NsMI5RPNQ_=xVFit_twAzcZ2kkzH~^W8q8N
z>ufuZLqe!dCTN+MK<l0rD`k9ZnUt3l(%MB6CZypA4Rj9*LxbWe&wSdz?WEb|i(gQ}
zsQN!q<bRbs62EjE!HA(pqz|l`3UnVsp48SpyA&6Gy@gLxP_Rd2XhYB_tm1E7GxMoc
z&?x3vF05q~q)ve))FTO**XXQ`n&5oSL{E8iN<;;UF_U9O+9FUy3=Kk&oZC(M2$lo&
zS{C0I_=G$L3H4B*SnJbR*xQHNlb#VCwjTMyX(yDhs9Ots(AG&@^IX>GAWPX`69c_{
ziv_$})LI=%pY4s6CmYS1WCa5);=F&m*yv=DA>h>e0~Ccy!2T@Dw`fuu=-$K5V*gzD
zM=k%3+y``(I6Mj4tKJX`fuO2>XaY$cB&jROn$mG%yKB_YzZ@vE`2u?|(1`FqDC2*^
zIv_k%yZ_1*N$N4n3fTO$YtcPjs?s@qWU>b)a49abL*;<9u{^5yjoGLlCy`aER^<7i
z&B}{R-AncYQfX$Gm<RojNR`_!OXzg`OX008Oef1%%H{<Ji~d%!so^%8!PT?e`><X-
zG)ro#OMZr7A+DEB*7c;Cf#E*yf$se9gVZ|=yYejuybwgg{yYUU{IH`Q{JmFxmKr7>
z)?WSFjQh`W*^I!nhk7TT89UuzCaYwYW{odB=`J<x*R0O%wb|<TN3ZKpUfZNZ2T5UD
z7Ht1u#v}w0UDg~0^F|7}?`Jm5*^|_&cAR?FFo0-Yd&)ev&JzFP=juIuC4_73#G7+r
z3o2WjJ7M1A0vMS7^WV$*&0~dIt#T>~)dK>t3!UiXt>_{;yjX|GP8kT$F8D9prssIW
zI?W?iW1*!^vBd3s2yW8ks|Bhl1JG(@p*gI5oX~8(qaFn(tv9UbXk9GH&CeUvzxeho
zdlAcAG$=LPVV_OGnx-lReJ)jk9V9y0p&FPrjfwKW!kPKvDeZl?eQ$CF8-$V^3<r7&
z2jvKR-K)Vso|M)@wxAaag}&{nm(K;=4$OJIX7f-@8p|m!e|o?(1EmNC>iX%{8z?np
zaK$>cjDXL`D<g%;^K#t&-0z#isUKzy>mQ!ySkIPU0aQ?Fuag@Bz`lbLZcU$X>}N}y
zl!qN*nETOqgk*i3!4BL`5Dw($J77Z~VdivnJOzhkdeI<cQ~7LW_ucrS&1#ojL6eW@
zBIUny3{T+ik7@}W-rdx%CgS9>bL7glXDh5Y`rLESY)Hv51QKcay*TyiXq{3(;jGFc
z1g2OO^ac((Q9W@oemCpzFaaLXc`FSyKmQ%0g^Bs@wwhOgqD1qTYeSW<wRh`2wdS@$
zmfZOu4@d6oq-$Ty9ws`w--y<ax+4_<g~=*FR*l+t=`diDl!vg6`+hnp|H|cTG^%)x
z*;?n4PI&PiX#_O?-nA=Lndv8LcQ-&77(5ME7pLOe2%dv^otxcHs5}>!kP1~YYmiJa
zEpZ@--O;0>LGli2aSLL^OFxFGx>A`T!69&~zY_h{bXSw2^~m0#!69y}Z?48R>lmA~
zD<fiVQf3Bce5vZU$hL3fb6K^!@*FXw+9S#cV5k{RcHW)H6%{4$^;<;)H)u^^BL_)W
z*!eDn&BEbGi-De{<~vf2JugwtcT72Px8sO@i->}Zb#M6sO4V&pw!rkcauiPh4oamU
zyOz8%lc&7osXYAMVVYJU$={d161J^W?Au4Q@e(bzvDiSaODqLG|7E?cCYL?-cT)@{
zl&|dee^iBeTlkj(gy@qmQ`kj<<zxZc(_V9lx0?mfHQGuyzW&qVv{Z<-htLt~;|Owj
z0%Tvrv>oNF_gYBc{;4WLb3~%E3}VtdV#0Ney-U^&V;NOK%gpD`!O8<eiT?`Uy)}T;
zPSF2Wh-c;D!Xu;Ey|<VM+*z!bL)6cx7FHSMd^fBH*)o5%J1#WY=NT=TM<lQ1x0&b-
zsEk`4gzl<L%dV$1etEJ$Mzn=-L!ur{r(c7+az*o~a%pG1w^+04iq#8sd?I#5kOFuk
zg0x}5Ko;o{;#d{Q7qb!$?#(e8ohO7*ie4`CMmH0P^(bk_VV{v1dcP{p1b1S_M8Ql$
zk{ri|jQ{Zs$fbYer$Th=hq0gbC7c2u7S+n{oKiD1NCxKdJc0oV8=UFn*i$!hB=*?+
zao~-pr}$IN`c(Q4>azDoN?(ZSTy8MP7I_1Ct_$AaesH7eXKE)_rF2YUk{AJ|xP07@
z1kAPf@fpJKt!c8l7+$2lN{2Lg)OPR<pN9RiVA7n_z|B-@crwRbJUqYmX0GllP#g^}
zCr)+mOR-;qnhq?~=?rMq<C&qzp}T9-&JpR2sD32;yBJ~6X(kx33lj>3wUph-vHi>b
z+y~UPfcS)@05ZGp5(WM{`;D|Ti1`OL^~S5v>`d6V??>i1qdS=ur1=j}khKG~Pc!b|
z`*ZhpueY+33vGmzGX-&haN#a^wTAkq199G+dNZDd<+kYX!u)%NRpQYhDj>5eW4P>l
zf<pe6I28E7oWf?-8eScm=^#3cA&}7Ad=iLY5JbM|0jE`q)Vzt40EjxKqGvp&ny^^V
zhHOzrrnmV2Eur|oe$^p{_Z%Gcebz7PsCT$$5?8ZdaPpq?#m|D91Dqq<$?Azp$4RXB
zi;c=^?QgFc-CeiS!-UU*DxQI_yKqfS25C8JyDoR_yzfh|xgFdV$Ql~Og`^E)C=nfA
z>LD^R8md4xAZv5cGV%uT>!(i}mqy954wBwzFgmHI`5E&3ACI*BSp4~EQ_kI23dbuw
zSMf<VM7J%GAgRecQoU=3t|DX5PMf$PF{qe}=ruFQ&fud+$RlqBV^81j^w6ehBHa!3
z-m2=5lg>*!hC#&cU0*N5n)Vac9<OZ$E!I#T?@xJ!kLpuLW5p<k?f2r+SsDD9_OM4I
z9-5Y4;0B5{O9O6gkD?h*rs0Qi=`>a3M5A&2SaGa>Q1T^5!95p!?AJ($#%+OpQNaMP
zRHCW>0QwSPHuG065H1cPfgyJ|mO3X36LISTZ%<7~6ZI03TX2%tObxkTUsq%^CKWTU
z6%w34>`<$5rq1fMuN$st1$URx#SI%SUW6O|-N)1}A1e6F{shfSkL&C0@g@#Yf+hS}
zsAG>_t++LabRZr}b*g3MvA5*)9ivD=W>p-J&F&dbuAIB?O?+Vcu@0$fb^7DBB$FBu
z6thEG`$ofF#N6LgX<PRu8|L)gw{8^Jig2cEfCL)3GLe5guUbC@qVNXrROGOlpz)aR
z{k34%9(jAzzLHW9$|W|l-0C%6Z)Yg&C0}Db`?A`61Ul&UkGj?&gp9#m>vC&g#qP8R
zO2`2&=t!kbp6%O2V6an2!RU35#o%J9OoW%L<!fnLA-Vx5qY#~D!*o6~H=+Rnm$1S4
zFQXn{FbMJogxg4vU?go?-hxu~!eym%yH5SGW~O=X>NWL!;f9eEd{xG0dE_aff|@8I
zaReykvi)-X5j{sgkCF1v3$<hwWlKrz2ekZ|hiZjyPvjtovw@D=lU9{*!~<5Xeb0gU
z>6!EqW15QZZ_?(UV;fUaEoTP`Yngs&RZ8``N3zMhgO^eomgxP(8f}bOMC@~j9E3tx
zn6TA&<+ljwZjYnF#I<%sA@t<#;<5Df1tT7qg=`rK@m)?@7<4avNKYJaBRw`T1=+Us
z=3TbgOkF=8L(dm0>))5(euKCBx&8H9Zxc>ql{gdXE~j1uZfSoq_Rs?#db{1Drm}qB
zg56=nGAY8VQ~p(fr&&N@**~@`<*Gtnpmn5amh9{F<;uSz1iRN=W)jThvrJSwaZ4%!
z0k@zqW4x2((^d2NQ+I7j6xACeHD@V?WukdfxBB;?)^o7VjvNWdXuVM%`cC@$&U!x3
zX`Sgzeavt4y>TaZwpxIjov8k;+ZXo&8M%Ae)Pmz8JfA-+W<NobBTYflSZQB<RWO!0
zA^61$A$SO;JRT-d5dLO)FE9Yeb=D3QW-6f$V5qOL38x*>(n)OO`q0VjRy^Qir74Ei
z9d~<zPhkzn8QiZ{LpH34qp4*gI<8KBMOuaNKZlHD3gN34D5}*I!igKed3gu|#nLLc
z(eF=?+^N72_6rilubr-+Yd7VJn>D=KFABJ_?-jNpd#8%u%;N0P-0=M0;wgaY?|9k~
zC`+5Nit6)ZToF-xe82_PdWL`KS9|jPiX~GanyjOGp|bzYBD~;LSl0d{$vZ8Z&;9Y(
zv}pY|PNRa%dS_)V-aA+GzmBL2oC&3~Jl2{GMZc}QK#ojS_5C$J!g1%jVW8H=Lcyfd
zkd(o`jXUl~qFF_F8cZ3VY#|yv<veNOw0?MeK>xbdktv0yG_>`m2TuC+(!ynJ;581e
zRN$hH^0gzC<0&*!I#b6@GWy~kI2F~_WKl190x=FkbxI}(o5)4EKAYN9)XeeCEOu~-
zEYuN1unV&G=eW;`kN5sv2`FK9u(ki8db9uC{y0`|;ikv$x6C{%=*h!HoQ>E}s1SbB
zW%n-21zt!14zhtl5vqsx5x~WE%sS!ObqBMkkl5+3I=Dkdz5Tv{5v<YH0`q-!T(qZs
zA>1&EOKgiLnK*zn4CdAT`5PSDhG(sy);j{mq;MBtX~+SUV^ralRm$-O=liQI0tp@+
z+`J19*#37qtyH3(zXfAxYtXThN)@9Ce=+b<W5v+Ud!H{Dra<k{a=)P{anF}Ba{}+D
z4H0<FELDxivaji&>#OzwyyExRI<3R&Y;Brok>zkJKgq_uc}=3F^|SMZO*)>Y-Hr}g
z8AXzC7}sSiU@1E^(&8)Z`J181g{g+XMAUs_FtJMBzmbxX?&>X5jC6a9>&^sxp>ihY
z(c3U|a#0d&ItIT_b;au+pUNx+m0RainHA%BE9R<I1n)Z^2S&yo6nKD!3dBfrS_QX2
zE<eyef{`3Yemt&9FeOH9_K1Nv1Tj5c{h3Srvl~oM1@15)_Yys~fdRAmT+oz%(T^?p
znYG}#dZ_F96m@U9awki;5-Z2PT}F0By6DaoN5vsP4uqPp4O#ESa-_p=%El_r*iU>#
z^<vrRc@OkMRvvX&=+#(R$*4U=Y!rtu6)3_N5k-0IIg1l2=(MW5?#w1l?wYPGq_3$(
zvc;+eS#UjwUCTS;T%003xO=DQU#mChaO3GnZ9ZPqR(98RrYzJPD!Kn|170O0&AWf6
z`P=Zy>`mimt-coyvf-?b6Nlr_M{StKRz@Sfm&<BT%#`3i#=!7xndi96?i*%b@>3PD
z(r^{j0wWzyPucD6D7Z`1kQzPamz?FqKmpI7L7FVEP=m~Ng!VfhF`*dRj$C4EP;av7
z4N`SHrW6radGxxbay!WXEy3}3w;#UiIIzL56t$j%zZC275?LGikch7@v#p?=;W*J;
z9n9JJbwXLZxSKt`)MCU;>+Mg6!1m`hN+TYiDL(^G$;!pRSYO_S$7ZvMLyC|lK64IX
z;Ng8diO=fUrq6~lpK3Q1bpY&(a9uvH&;@VI1|W}6nK$%jZkk<jo>V%m!R-THz-+v)
zJ<0YJXu`jIp@|^od$~}TI*gL;cC!}FW->-Gnr;g$UFx|+{gF#`AOnmTHGaTmOd^pH
z?FUULGzwUf8dI~C6-y$y5#dH!s5^>}yI6cRc<{p}r<Ca5=kS24_6f+xjcPd}T^_fZ
zu77bB_I7;jc&0=aTbxj`IW~dClj}CE(s~=y)ioaDMcy}pHqUsI^pvWa9C?r`hBGKy
z=w7X;$OcKTeFy0~sNeHagsXZ6(#DvfxI<^{Oa`S}E`qU6o0@IV7bnZ3a|cQ{$W1SE
z4tiU3H1~|&KjKGP$;Lh&=tbu5DfV(RCY3~Nk$EbNLoUKpD)&AQ)aFo*0gE;%l*_>(
zjJtF4dQEZuXP*iqr9XC1aF>n`r)-8=Jdp+2ZT}cE1r+v)2Eeb3#w#ACnla@<RvA^r
z6jA73ijSN+VD0A>{iL9L4qo46m-3fqd#psZb|u4W(<b#p(Ldx=@mI3h)%u1H+mB4o
z&`<gq8wT8UGxhCg<Xi9aJ`4siTCL|WsxC~4xOh+*99LRyCjmr?@S99w3tGJQi}{2m
zc@6{6A4;_)YxlB;*bY8opqMes#{m?A<7K_oL-w&8+Nx(c#-q!vCj-M3dIojXr0&GS
zfDUes)Um9s-k-UZBB@0Xm;qR}kqWtXr*c`We`SgSgn6A$bPYgxX(k8zJ>J*Dnd-N=
ztBr?vm;lnUBHj9Ok0jYOREUQZ=<u&;a=WJ3$E^1-Dv*G8o-z!s@Uld+7A0AF47#Pc
z+%RvUiA=IKMdgd-0Clf@HKH-diQwUzU|d2zHw_$&%m9Dazs*5^$^wI?4MGYgdcGIw
zmu0iwbc+~<*gQ;ox84s&AJR{j!bWjTMeHwCxyyGl3N!jE8H_g=RL7%R;TjVa@RBMK
zS>=_LB+Oj}El1X)Sn26yR}G?Xo=CIxMa}GA75C|hspel#t4@k^TVw5&e!!mFT9#hl
zH_*mRmo6)H^?cbGx;K~9mPYCJIy{*Sc_mh*YuAE(FDUY*=yvt)6~E`rYiWZ#9VJ{V
zuTNhRr1a#3Etp?&!u@J>7`&V&XY<B>%oK){VjC8~8W3DWag1QDXg=i^uRpZ!Uu!C*
zdpa@cUtioVMn@9!rc6~~Qa8}+HB{+vS|P5P%7>>Hxc-oXfgpt|#BY^#2^zb+VTws)
zvYldihlm1JX;_f}J-W5^L_I1C{YJBve3=f83ohjxzdD%4M0|<liq22xU&_3id(vp9
zWi&VA6W7C-{$Zj2i-<LN3!#OtG{lx7T&y-enKf^8%8s@^9&SSb`3c;RC*9HLWqmrw
z7eB^J0T=-{zS&7YY(kM#`Vm+y0C)%v(d%_=k6ln7pmX82o<U9L(|uf92J{>;(k*@u
z*Druq)`4tBxQMtd{ef?f3lEt(0I7(M#clXci)YBFTBgQlwVaexF<fSX$siq2syP>!
z`$gg;deIyJJ_N5lDIh6>u?ynwtml*uRYV6tEetkR4nvs3wDnum|JLXMlcSQqV}<3c
zcs)#IuWj}#h+O5jmw~m5w1}?QjA?6@M7+*-7;u;}3l`-3-KF0`m1KuuA6$gwo)aA)
z6VnL)S(`evtm!X1NK~K!EZ(P0w<EFaE(Ho|5({z<t|G@sQ!8hkz`dPRkNCh>v4Zuj
z>9w(<`ucfAR%g!;Qkbw7mR-aH0l?cv>bG!sVPRp75>L96@N}g3juK9ioaq1IzWDwt
zZ8VijJ33+^{B9$^z1ZjYYDz6*uc9Hvkfi91XeJ*bga+9_N)85=S2X|%c=Q^+{YWU6
zus^rT8pQBnROV7LlX1gA>6tw13*+loEF#z<D;bgM_-sPn{g$NRzE+6nXuX5U<dXT0
zRTy==wY;^4Z0yhQ)hF0jhs>@dwNH`Ju*xxbKI-M@rh86v9IPJ3g})JDMR^YApJ>0q
zc!M|_wF91GFT&W5OykBBo8e4g(N+G%ETTR#X#_OXS#x||t)9sJj`*RpqYJ?P4m3&{
z5F3zY`CNd7?~cD^k;&|42QXLk?^lUmkPm#j<0;s>4al=~|LFO?Zjl3cgjY?lThYwj
zjnv^rFBQQ$J;fT$Y>YF9A%2gZgj(_F{BTf+wWeb_x7uT+rK~tgKW%+=e!8$0BUcEp
zl~LlXCpl$vUR+iHY}EV{ll=YZvvHZkkYuDau4mwmpWC>%@v<Y+AN}uXMx`P-f7^>8
zKGv?eAoV2av`Ijip&*U-mG|J56fmm^Einhgu}bR7k%P6zM#+5`<XQs>R(MXh{hqfA
zTMmc01J(*lyJ#E*N7d%k&qjSXk#|z9o}RwCjBn_++)3MmXQi{ThtoG+0>@Fg#*}E$
zQh>|3;g$U_=sH`=&tx!&zO#b=0-c2YuP2}JtSU*_6H#q7CobE7c>2Bh03LLr-z?`D
zH0$0Lp7+5?5%(}wh<ZqU92UXLslRo5q8PK>EZrM<$R$H033#05EYZKlRqznU81SPG
zM6Hf87g4^ux9~O9*o0Z{fHA%#U-Z_!Lx4BA9Iqz0?0HMlo)UraftN3O3in{n2F==J
zcgzb=J%`8{*M>10Sk>DgV8kS5Bn23BNr1wh{ph#J$s7A@Ea`pwO+w?V&a@g&MWP4t
zQzfz1Wk6fEr5IZJJ3(-70SmS!_nrp@ksB`WM3P>qBQSwV#q{(tX6RU_O(}+Gufx7n
zp&D~|Yto#aeJ&NN0*QUhfONd6(~u6Q>-hTi;04C3C>-WJ`Bc2esiwDAHcjbG%$!O6
z2g5mRrmN?nsE*UvVu`|8W~A~%K5BYdTs<2O)AQ>3FaHIi0^#6aD%Sp8oZ%gN_>&%G
z{cL>Zq~2zz>JEK!i+R&!dkHd^a$2NX4rRx~V)D(!Ai|<sW_n?~nr1gr0v(bFCK`lm
zHGFOF&F4xw|51|uL0m_s7#b)Y#%vx*{2Obq4^+tjqX!Q)xIML^F=({huU9)TCvbR#
zGfkuV8xnJD_8_Jd%S;RQ)>Ov^xS`A1#~`WJ?zbC{(7Cr<a(#ClIu957GY2gHf98Nd
zWylclA(DLYdlC-PBlQtT1?ZHlREi<NrLY4Mpvq@ZI-hD-KQiHR<jejA>1E8b3S1-Y
zz9je6fbYR`U2929IU3sR%c<=MhULp^czfEXdi`lym!Qa#)ooE&66_?=4EqCyOJiZI
zA=+of0(*78YT>QFyuYE9vZkQeyO60po{5p5P>2p@hE;sa1%-<_M~ka4FFFK&lZiZD
zx|1%_XoSvKdFE#|cLJx{0=4NCUxbHvJSh)$?ZiNij+~ws`=5f~E>rz^W=#N<nkCa>
ziYF6L&sp-9xW3;RI(3temOr04OhvnVD*nLI*xW8|r_$f{LN!vlNyQLrt&0vu!cFKj
zh^#Lwk=eqZQCBqy^tq(rfV?8)UrB5cWE|S3ngtB0y-yD94lZ!}hh{J4-fcKekG0q;
z=+h?@>fw<IU9ySZJfM}hjo=P~BxdVG#y`t&1tElhM^c4xBYoV8sIplguhuKmDGt8t
z2?l@YVw~&z<>hcUjG5yXpy}hq$_nTm=~^C(jyDrbNh$!N4R%%Sbx!o7VGm3T)(mcQ
zp7JG<Z%5>Iip@k-`|XO(0xiOKB3jKG7Y3?N5P<5xT8zCWyku5`?hfD9O1~q~ctKth
zI3nqwkBAi341=<=IwCYS+#KeZ5>iQd6TxOB6p|EKS*;|x=-H~lUJ<0Ba>@o|yBdt)
z=pmO9AKu~WJHF6n{NX=|^oHPMfQm%W3ljlGq>*Xtd1OazMYj7hr9IHM+Tr*2AZSpt
zgd;xxLsN6tu@QDpiCG&Q#KlsN*bep3+?=u`VG<7-7ZhB&4BIb{i`PD-hsSHROoEbh
z7n-6Sk0i(9bPghQ3jp*T9@c%xeGa(&r`(~mC98H~cq3lX_F6*rKgHHJ-`)OFGANlp
z`9z=9k-}j*Roqyc0Vo#+cgDXH^qv;AED8X101@7`^sr>C^JzOOhY46+*9G=y>PyW;
z>&zCh2H#=3qJ20Uln1o}O+~&=hWY={PW=&^jOB`{i9h`>2>lb#t;6D9uPCg?o9wC_
zwgh{)pWMg}+fDu5qu)R37Xfc(Ub6A}ndRz(^J`u~8<yg}8C7zD&P`i08_+94HX%f3
zw=QI1y6G<51vb)I_wF>D(1}QCA3-#kTjC?mf>z8o@=Dz|2TVPprL{zdiI|g^_?n>D
zBjlJw)|s0O?P`zhsU~92nj^cc;L&8oZvm!s1_7I5P7YcrjlcEpoSZAFgg66F57iAj
zjSx9E=fc<5Hxc*r2g25%;~T;HxR)FVVc!LEo_I$M932|bfAEehpe?;WrU`Dg+<Wt=
z5dB#iKKd8;UYFfTO6jGVoI{k=AK`v6XYs@FC4|H0*CIGk3>hJI1XcL;UOXy)?Go9%
zpOoa4eI|qMV)<!{tU;mS5WD>BxAp*54EEfNr!_z|nI9NVV0;(D*>r;9)7u={s*xYP
zp26<yT%*fMx2q`rc4sY7!lq^0s~bKmuOk3BMGDe|mZ?{Jy8Ec&KiQy3ID)rHVsHsm
zk?~m#6ZP=SH`e7@(MgqVE?&B=-S#Lfy>l5JclR99gRcgre<dw#uATwRb^+R_#Tkvs
zB%<EhwxIRCC*knKmp2XetARsKNO(WDxkiOQbbff@buS7GsfQM}5?=!G6E-Z2$fTN!
z8$<aD3>R2M(y8d^<An#E`ph^dpVU|)PUPjJQx2!DrU#%>myK&xy_fH-WA;w|qQd{z
zEUhwMOic`kp`8%e_Xoym>mJDco~AQ2G&Grftgq-e5de#p{**d=2fTjIo$4ys+{X9&
z<(j|h2&T>*Oy||QvC_tnA?LeS6o;1MJ!-R+aL~hcr)PqTQ`5%8wGtEN-v>u=rv+;d
zqvXv>7*3h7t?TY1aQ&D;kk`wXR@|k_8nG5g5T3FH*y!cUgxsjspt7?fl|pe?iRMGx
zJ<o61k15f$3n0d()Qc&6L?mR*^*Q+r1>p~d58RC%5wA!?4BSv9J{u9QR~j9>e?NcT
zoRJU}Pv-kPaR~JE)%SCcFMPGn6LaPE7I7l^a};2P_QuudfqjrEwWswbC6S$Qz!<e)
zVH-1gt&mnh_2)Av)}_Nb-n!{SkhrA=j{&>P4Nyj5q#|#3>Gy?Qd##2vAZAQ*i~RJL
zdqJIUwY{}^j!2eu7_~(d`U8S9aj#uX!t7yE(qa#OlT3a5d<sj6*J+*CRNI4nxnzJC
zC6I%EuExl%okAkwe`5H^(1?o4OTe)3HHOK*l$CF~kLmsh&)JoX%H<gtBC?-SNjGCR
z@785QgR$LVMkO+JgH94;MPBqcu|6dstPN&+O877MdSqt5!-AI)s@7lK0?+)c-SeEW
zKruBCSUh`U5H%?~;WJ-jRixisH)*pp4rF1sqU~!@PbGGrv%a&u6GQ+!sAA!=*K=xC
zOqYb>0GTL;<sE6{8#Rr@C0s$+++i5TvkPGDp{UG+y&CS^<FFrA4_8*eQa@ZTJNo|x
zc{IXSM52oSn*ZKz&3W`KmH$Z*Hz#D6bqm3n;F^r+sau>SL>Zx4c({Ik24c)1kYz<#
zNxwu^&Jr@;&jC$05iIyYIc%6Dj3!n5?)=aF%0M^^&!GnQCa`gDSqb;vRdw-flvvpB
zI0jZJZSh{NE$iMAPI^+ac?%+FalMTku@P74?b?f-`i-NQbrMA7_4gvWbQUl!LF6{l
zX#Z5CpWl|7Ro3n0WY{}!)`u(2Cd!MpVX}tn(f9o!9KFp?KekXa9ZhJ~XrQSvtnMfx
z^Q*m&$6waFJGqsATklE>0q;w<Ztu))o*@pW>Y_TCNg?dzmKA<dG2Q&u{Ktyj@YR*1
zV)hL$Cnx8yV_BY7HI&^6V(9!{N7gaGLjRlVOK|@nF1zMOd$63?%nvrd?!#XeE}g3D
zf*exXnV#jNnFJG!Xyu=3AOV9g3^XJ15xVl)89GhCdrGvAiQ|HaMFX3Kar@;#mZ})N
zi(X70S0-P^xiIl4fTdcIh79v10xLbwM1}b*;8_dJsI<3)2P9@%S%}wqd^6!=03RI~
z4@^~BnQ;=iye0bY#y@{I28z9eJ;-lW1=L`QzBb4R=srITaI;6;@Sd=5v+h^ienv)M
z_3<0f?s%Zlt7LT#CNkw`12Yq??{!|xhHb)4t_NYZOHDc8YIB47Ff&mOKomWFJi@Qr
zcRJ#;3a)yBK2UAx&R9+6A)X;n`6dC@IPV0cKo0@RIDHr%R(s&bPFK%Y56!PF+t3@H
zbZk%P6H993B>8Lk^?$%1dr-i~TG*2t1{Vdc?-$k;qJPC4pTUDS39F$JCtiKg3NpG2
zxvAnp*j>}P>>bqMt7a@Uh4r5Sm{CqW%{u~se^Noqh}gxo@%t+L`Zc-}Xr%l5hlSGK
zsuvKSCQHVb*;jqq?P_HO1mk;Frt_fg2_C}_X^|YzODSE=%)#3yhcbKT=qjbN8y1ez
zW~@3+JcH<rzs#iy`^jE!o8_pnJO!b2urcN8=O%zt!gU$Jek56mObstgx1elOlx|^v
zUrZH^1>xTeCN#yV%wn$%97k7_0{qFq)5%;#|8c|}0Egm%W(%~n^@s2kVLB~#z;pyL
z9nd%Et*kSu13zXs<5C<kC)-k)muoEu!{2F?2RoqS`65^iuZQ+Mtqo__{8vNHX%!&S
z>}qoS+$T0A#WKm7v^6d^I2ms7Y+Iitmh~s2tbLS+HGB-M-cON}4bFWL2Lt>V>3cjx
ztzeHX9jz7D5e_wf@Wx;-vNgC7BX#o|GMBmugo6y+Bj1|wF*@ln;K+A{wHOHnWN^I0
z*zB@DUd)koI1Q7?l!SSP^NbKYM0GVN46Li0h<Uyf6urAfAAUGs8<+rnMmeLQ*lU}K
zJds#Y?#H>67Q+iL#-mOj?P4Tj{8^tU^wMY;e+UD2^9uj`>dKv2_nN7Aw#axox*cNq
zRA^5Rql#g`(!eUfJDe933I-^o*jQLJd>`@I3=*=?fz_qZhzO}UsF_;1o&ZLKX1;tP
zRdD6-)({Y7L~Vo?d)jS{Y{E>S&ke7{X7X#adpHg2QANS9U}&=h55eG~e9~fwkUw);
z-un}U=zNwl9><LT5tM(+v9)guf@Y<RD1b)Hi+&;G%n<)LVh3dv5L<8<9}g7~87>tg
ziN6i^dsJ>nyUo@lG~<Vb`p(r5wA(&_$IAf}9YK6Wl}lw3aSg%U8ymRq((Zjr^4e=E
z#f}V!OmI^tb%(_l`)jSjVxRDX@EM<wNTFGx=HybPb037-5?=Prolm7WXNIjiveJ|P
zWk@SlVCQ>{(~NGDTphH8@w_1NUV=bdO=q$i9-@}_WQx)<3I~`o%>4)<ne+Xra#!hz
zciK&s7DDFsTe2|eGR=bU7qRODBeVVpSHY{df>cD<AuV(iCEC)Ww3cX0yewVwW$g@u
zwpO0RWG%NG(qyzrc6$CR%)2rlWk2ym^Z`cFWxIwg-Z0gE4+Iu~*-*myAwOb$y=s%5
zhQ`kz-9O{zjDLhFWsj%Z(Z{lMJ{0AC(en7T)JSo+nhxUU%~UK*eF78;VseoDPu{3e
zc=n^6lSuaPyt$o|JtS+UR3{xae7UzHXli*9gm5VSp%l#GT$Cye+`=w9$i7Q11h4O^
zp7&wLVPX>HdMx8%?a0Ta5zYxPux-xO>vK8V%^}vpr{I#1FvFMz$!>&sWHlxP@-(BH
zW~FR>LV1ITf_H{9WKX+}C|BmzT#zzVlE+FBzDY(|>N28TOQ@dw5VdW8D+cm^*4MP?
zgx+=ovU)j@c#UtS%k$KmA00-CPz-4SyE>6;2#|rj(`4%B;I>xv_oPGhmmwB?$O+Ey
z?_t2uA@PaL0@iR1+PK@8GRS!&L8yLbtZmhMY1NtOb-xVgO}?OU`TyQWd8+SgIL8GG
zfY~~*DB%`xe=&>9yi%#EM)Dp}yim6($Dp<s76DmG##}HeLm+g->p?6nl~`1oI@TTz
zLYq&wcFvZK>B<>Yg<6e4fDxLexko`&T2tBUjGG*XWlwtm1*7d1iBRlal9p7xzrPGa
zfP7+VdoP_3UE(ifclePgahGB6@kcE}_$=c}Ay&d4x7g@1iskGVRE(TNB6fbN<H{@!
zjH?6%qp4H|u}rhN?J|JPL<=@!VoBHptSFUR>^hnKuftk?-_6imT`ybG0~qjBN~tza
z@e*on@l<@x_hDsxR^;f_{;%J{+FpszRArIge8fGb)uJ(_Kl<)5j_i-j372PcCe(dB
zj>r+~02pORNt}Y;|2QFLrOAp<SCHjYKE0z>r)9x~r;1HZ4!3eL?79YCt{6U6X^uTr
zG2WfxchkkO&o73ck$_-K)#GvY$557L`P}I^?1`X_2mjZUi;m^X4=8Oohwm^0#KJ;1
zAteqBdu#>D!)hbvQ*}quSoT(|Ej8`NRl8Rl&+@Mr=Sp51OARlF0ndgEVDoLFa%{1~
z@N2T*e;9O7L&QH(gb~nh$OwzaXG3vUObCIamTGwJ+>s7eSyU2$18r<>pp=*hm}H5Y
zWK|W>Y!Xs#CQvh*XST<Mshec2W5vy^vTB9FLC#yt1hRJK#Q9>RLA6h<ba?%~v=vPC
z9112TW=gd^rmfZFcLUt^;rbWmfb+uAK@A+#8({aRfnov5wTuGXrXmk@WHW`S6;c#H
z50pi<EVF-<kR6lA{h*>hJ5r5ZcF%UJ>}yS346TYGwAS_p;8*45`U-pVmQne?h=gqJ
z6|5iiqW>*Pe!gP*sZ<~Qv;}K+6ebUtiB8RpA|dXEwKDRaE%3IJdOa@XKdT`Dp8UYw
zin;OG;p5!?sDXJI@$TwWqv_fbD<RP<RKOs>(eHA8_ypO_)sa}x)oumft@hA1i*|X=
z{HNwPog~RYFqC8CWWw}lo~bUq-Ru$Ju5#D9c_Rv$N`jihc1(d+oDN`KDVXinZjAop
z1;9CDjMOZ!oBdhH@wFvV5xDLRASWV3DMYSM8UW^~6MuKfP~FS-YgTvJt!K|7a_4WZ
zUeCoXOG+HI%4?}MbxBtF8y%tHFo~++pzMa|XXnC>-gJLN#tWk=D#8(Of)y8wF~FMG
zvpvmhHg<KZTUr{hg{F(-8QY3nF0W)lhVHg9z~rME!K}^;KXST0^ZkrMQXg-6;}t^m
z9U<-+3bbZC5vd$<J}*;yZX%u(8O+0T7&xw7?U~4Pl!8$_#gDb^&2u30rKj)h_Uj`l
z@I_#${9CCd(OZ;#LFX>EKxVV3E?fBEZR{>K$0#$0xcowPf0@>0tO6A)tyv37IVO4s
z5PZ+q+VAlOmCR>2S*>^O37F9(2<Kg`_%CzuU2G^(g2UXqP{=9vesV|=qS{)x4df@U
zoj1-K{9GbJ%SDzo#zTR=b92HG2UQ|h;Se$Rzm=OBNreZyd|O&j6VS`4|I$E;Z3OEg
zE`}sf<X(^Eq$;e(V=F`!Ij?;DPA9BV;Roh&RrhM78%srm6E$52T*@=x>x%wJ>@ffN
zz(dm!Segby!qu8Qi(qiihXNJu9HfrcaKdW~`XGDh_0Ie&w()Peh?bWYu7nYVE2&|o
zbF!sAkib&d)AIA>T=13kqp~%*%BLJ3*|jbw)^ER@jwG`(jfOKR6n@;89?`X2P7^yn
z&d%+8ViHf<t~OoaZ8_VpW+-961s6(|P$&@SKs_mw)QV(eRlv$0e&BW!<Z*lol3^jP
ztzxRBC4~pK3SLM)+I~2>=+e?JUzn*Dq!o5rlF30!x2SV0bxg&d?c0ZETN|tL)0=5#
z#0jiG35lTRnDHnt)--E`pL5?zpRGI^Gtg`-RFsz>Dkt(mndfsOkD5^TE1y*MhX>F9
z7=Y7)dfMd8dsa~l^>(GrpKOsgcrViOd#nX5j0JZMO=rCM#ZjuO8{S86M<bORxkgzM
zry&<_?ibbmGW&N4#ZVKXvNjT;_{{mY8<W%R0FZbRTOj6hr1_U-TfgEgma7r_gZPI|
zFr;k&FSsp3RtcGJAETzvSt}5$wPQ4!b#I@xcL234MqsItsQ2~#;Gm=HG!e745Fp&}
zy;^+%_}!uj2ng`I>?UkvWM`}7Xi&$*#RY!+eY;$wM$K(Aj{~^+i35%vyWTg<{l#Z2
z$NVsO5RdL}iNKSd;(*Z#Eah!{lLWqIEP5+}&!})(+ddIJ`j061&j(m>qt0-L0QNmd
zya*(?jlz2G5Y63s)lb7q=o<Q!M($+v-v2br(fi@sEe_b2=`{RQ<5y?|#t&z^6%^_l
zeIulL`ay%w_D+u^bM$dZzcv*PWiIPl6HAAx?USm!?@dbY?uC+nA$DqwM)`0wT*_gg
z*4F)SH#x+CY-Lu?H~S7BY)_vkS}$`@&f5;(p!s1`Q}?0AjuoS7{$6QV)iSoPh>aRy
zxh6sW+TbxO_<o@kGbHN4^njW%9m3l;Wu5IfH<~U%$*=P!2UE+=!0M!bqg>@ff+FfJ
z5A1#OONkneUVW|xEQtPVb55z0Zs~UKkNUTD@y{ZJ3;0P+Xu65yau9<1ii3Xa9?g@a
zHH?7bOjB&Ucz+f~4psI^UrFYhn&@FQjk`D+v~$S4DZS9HnDP)zAMhC5)CUIib%}VL
zSwGmcLVloBU4D48-D8ZbkBRI}2qYSgq<<tD#`BS6l;b0>BXO7|cYHS0s1U?vw_l+T
z?)y-uSS>yImq;5SRQ-&s6_xJgX?H7ZCtDBH;`IHDuh>Ec^rQoyU#Cf-h|8)Nl;ysX
zDXsTusou{9NyNBdA54Eyvk<SuUwsjb^2Y9E74P`No{Qhwa(%l5bFh}Pa1eW*Rds>8
z&4u6i(Qq|M$v4(^#~KTS56PuSLUgNjKUMJ{iIXes9%q}Ydll`yfM=)oa+CQ;+Unie
zXx|9mN<>f)T=wm4-g6Y_oj8X*uXYSBf8G03B=&$bY*jdL*F@I3uqBdK(Qwx?NaCGE
z&CzAh+a8Pmq?-Q(*`Flj^5^c=Q!ENYtmrqqR8}#q9>+yyqTZZ*wM>|qI)Wv@WIeXL
zpiCK|YodP-MRX6^%DZ8#!OShVqw?GqeVs1x%v>^P5xf3T9ZNlyBpZR!{B+ZvzW?nF
zviQ>Y{)ctV{e&LVq#x}yUr-@5780_7^=V{O++UywRsIvFCf)HJOmmKz+*SP8MFRwQ
zw;uE?5mF2?nB|<Y`zW0{CVGxaicW^FF^t5Mctbfm6H5&iis}rQ`=M3#@+^12n@i7s
zIFpDtcE3rWl{l!iUVL_T)ZRNWnm9i_{yFAZ>Hrsr@>63jnx|rVJ=|;C1+)*!TR&>P
zpLRLTj*;1nHyINR<GdY9my|tQar#XII{5J-{wwFU6j&mLw#8Im)&MHcOo@`$l9h)6
zq3w}cT{&XwvM8yin6bo$XoincjeTmt6*=+a;yBLeT>e>nX#?buqk8S84pm$TupEfY
zWj@@|=5zbSI)SIZzrQ11Mbzpfjn;ba$P*88onGX30A#v$;W;9p7(CEdt}dM5<?-M`
zkf_6wnGL&0Z~Ua+$NpD|_`lE1p9{z<0$e9`LGa+^xHZ@FNPoo`&6Sy<JtS6G=KhH~
z^8ayCNTb@seumMr1|CR5NvtAejI^>o68VxL7^E#C9<VnxHuA<OOf9F4H1F|}lBnqh
z{oS-mzY!~dC<l#-cnRPh)80_tjo)kKX%&KsC{_u|CeBJNMby^Ccav?r>>qVeVs$m-
zm)mK4gmr&=*$@UNd#?fShnOy*9%LHEi`H6xnM-|Mf#IxwvwzE<k@+GA0TiSy5z4z7
z#^f;6{bqaYRfA-|N3(%njj4FjYle??k*YY5PwW|!1xjZ^SLwD*Na(`H{woKboc)2!
zD$cuYQ9$Kwe<A!F2xwt!RVfYfZIv}5^;$2dvQ-3JHZXJl>2QX1>i;USik~l#Dk&6%
zobVu47JVX;=>YVQ@OqT+xp+FW5C1%~^ueK#o=qj<s;j+<$^bZ>Ir?JLjRG@>$r}6z
zb|_d_88@;2ivr%QL@|vp1gW#@`-eUbs|$RCb0;Bz*IEhjSC;cvm<=}j_8NFNNYkm#
zL5Qam=O>reC+qYp@wd|Isz}fv_b6_St0PkEF-EQtXa+ylw^zA>D&g2o&2Tyk+4RWA
z+ZIf*PN!d_V}MtgW1|Y+l0=X>Q3|>q2Br{PRt1U7RaCeDb*4gS@4iVwDW=x_#6&Tb
zvu6N1_mb&i@vZw((>`=anD5k-1xOQ!T+a%CH1VwHeH;){?N~sX5E(+L8X$;H`$&v)
zK~&$0dV*6IgZ{5cqEq6jK)VG3Kjs`p$LIj4GPc~Vnk@pP)Pv88_OvClyv1esDA4!J
z!UaJVOxT|yi~B!lczC2rtD3PBsA*<|V6WWa3p&9|5lGHat}B`0AXk2Af%Vj<vCXc2
zru!(0!)*ZV7UYWi#c|YDGG6RKS5`5c$H3H8)EDrp(0(+7t<vEr=QDCU!-d5Dn{=5S
z_i#9{i4BL$^W5Kp8Lp0W3#>FfGLkDtu-oabmHW-dF=pIv`y~ZY(7|npDqlWK$0GnI
zMNbU=V0Lxt6`Po-`62e*GEXvG{Zq+)^XAP+WMkFm*}W4$e4giZd1$M1Ri6S6e%RQt
zvj%RYh`oMsdtvv*pNz=}8~xgY+!a_{mX6`EU93&9-*NdrjJ<VKm2I~@tVnlvcZYOK
zH;Ax-O)4$jjYvs%w}5nagLId4cc;=I@ZIPW?{j|7dC&I`V>rMu_P$olHP>9%Rmjz9
z_&}+p!*_L>gHUJmPiXf$Zb_+57w>q#ai!yzlMZ4KjRL0oF%)2azyieb)JhAIe_REr
z+ye7IK#-_PVRRSRwT($+vz-XDbd;Y3EQ%YerzuI!D5z#J=l`CBkt{P(dE(l8*N}W1
zoR^#AvbP;Fmgy>{s+=gCz?_4~Cx_eC`~G2&>%=EY97dOC622>TX`YdCBxaN(kU;8O
zip@Vxo-#t6FZm0%4`YR}u>s=C9(g|@q46VJ?M%SXjGPfRL;lgE=EsW-F5kOxUbHIg
zq`NZ%#R%)vw(A*is#rtGFa-sq2TM`}?}=0RUp_(FX0p@Ug_F0)_q4s!Q*HDzLhOG5
z-M_NfGYnXK2<{=CH`xtOQ7QEQBPz#I>3OelDiemYUweM+*QTqX5SQ!TqK=JDV0_`)
z-}u-fq0w??-31**TU4C|fuw@YX1n<;^l$=A2CiZ(Mx7Q-Z``m{)K&&>`tX{-n(+Z^
z;gUo|o5M9My0qDeAhC~MO<x;vIbGoSdpO&%ap>*|0e{kw6fu|HVAB;GI1@w(zvWd0
z94j$MjmYi<k$l+7p>uA1V4s-B?cDS$w}Q*$9pFDvNlAF86+o=nbaCPXal_fsn+7DK
zd?<(mE~~ELn3KxzE+0k)c*VcL|6gbF3Ki|Gh}wm5pB3fcevJhk5MQr1gf6^+Ots(1
z{OK59BQnSG#IVfwZ=ft{KcM|4uz70bnUqs@d9}8g6l{VYC2d>%B>Jt@V+G;j)$$Ba
zl$I$_csO6nAq~)p8{pkn4@pamPAiOYFwL#&?7Ms*<5G6%C>En(Brl%LU;TcZ^SOY$
zqk|&;G~DrMtQGsa7DP~m-?I?{-uS2v{A35{FB#5AS?nnc#y5vhPZ;-kK{_`amdLdC
z3mDd?3v8?cU;6?}u96!)VNvPn;lPb0v2k&0vlRyM8B;~-8%-yzVpOg;=MGP@qx#Ev
zb3xAUazsFu@?m=`37i~jwM8P3rG(MSaSWH7Cc^4{KV1Khe(Cp-p;`c@0JTt567*NP
zG2IRLFfvWnD|wQh9&=Zfzu)0IcysH_PoN&wIF-Bui2+LqeAf5b4DLj+Q|1Iy(;-k`
zE^JO&KuYuJCrB@IKzl7Mff2uC$gmc+K8yBzWkC39wE;?4dA3tuoWN(0Kn2frkUpnj
z-aS5;y!}n}_$#1MI12%_g!xm(^E9cL57p~aB66scl?T(TC35RCz9SQw5A0JDj2ycX
z*bN<@lDyF?g9W0WLH?pq8Soyz$o)?QRyIvICTWh?#2%+24u`YjmIOKLr)!-q8)4k1
zb0!&d5{f(Kr47&#0zU#(8rl#vBDbuw9%_1h7$1Kanggc*`RUcwa}zDZHqHak`N0$e
zt8Y2zUz0c|DUi0!Tz(&w77*FLkBXGMERkMeI%l`PAwW?)aorbg65{EYe1RL0{&7r6
za)89BQa->5+|1@`ATOO1%pgxorlbh%Nf~dw?9aPW(w>>>0k0>mPlL7)iIM>a%choR
zoRlc^pj}OVq8mrqiN0Ln&^19I5|3(4MvpDy+e4l!qm|K%a)r#;2Y<!zkv!%0w2py+
zp=jiz=flkos&0`s5%6wY5C2KC@2=?zWD<(tIVv`z#_GTqDuMMB>(;%>kqmzzkJ2bS
zE&$BIV^XCA@YR1Ry+SjztrvZ)G79-Cvi?Q`t0VwMD%_@RiefC9sU!euzi8OquUIsb
zd@6I-{kkwle~}RqVJZ@Lwb?dD`l@eWJK?K##z2?8SPAN%L;b*weXtg@_NXWKr~F*s
zz)Cmyq-XI)!Y6O#)YXDm{kL}Kv(S$5*kN^&O*EV1s3Pka0Q4D$E4M2h>L!>qe<Av&
zO*wE3CZVqKt--OG5M!U61Xc5ZC{R_r9z5hTgqF6pe*%ENZ)nH?yi+hH{!UjaoG=Ku
zfrXEgfX{)}cr^V;_4owh|ACU;WHz0f{ks!YH~|cZh`O}{|3Wu>_~i_Ne>g+?FK0k`
z;v_yB0}+)ImT~C#TCL1dRf`4Na86@VK*Hy9s$QGu+%Xd+<V#noXO)PuRw=UbQ(47*
zfzqi%EM1jMO{c?+N3+fX3+ULd{a`1f^83)qBgMrI`Q=)4j3|9r)z$P(XKL&B79X%j
zHK+%Aqi_eM7n=peUBo;^>Cs0UaFy|fTaJ2;4xd5<Su&AYOd|4PBSKhzy(>tuX|npg
zO0h;oN5SF(1lqRET8F>lFbr@RlJkn^Ou^y`6yOEi%8&B^g7k8&<OI9`LJTmb_u7Ek
zzW~9nUQcOb_>B_<Sgp)R3i!hQ_*d_qs`g~)6Cd?GrUiLmzb4G=pxcL$0HN&*{SU?U
z$t#kM*bFf?!<MUPDrgq&BxTX%N^uQAvibpL+K!VZl(!cn_p^@IJa+K1jOo>WG_>C{
zcxb_CwT2P}X{v+YM!pT*MleMumZWhy@+lMT#lM`K)s(^(=ksZHnj?u{+;h6*j8Av6
zWb!N_QmU&yc$-jN8%+fXvj&#8v5HFy9vnRmvUjhRl8^Q70)qmxt57RJG0|X*L8=Ht
zWy;lk2kdBflmzEhY-RxE4pPOJ(<1^I`SNJNwx242=V%zuB-L9<_<j;NL7%*g5BQIF
zE03wkAr<Ma+jx0)UO2#iS`oiDk9dMT{nG%{fkk{y*5~FtUHlc-r08D)35c{;z!^`W
z8gWM(U1-(<@K7_~mgFh<yc!0KC`TYXckub|j_p*7-mBM5)j~HsD@#Aa5<W^<rXi>c
zOf9G9%lwU;mY$YbOxG6fhui>Zvj`}9Roca`P)I#WikW=~lUf-z$`8qw3#66+*Z#&4
zOhqq!Zp5YH33Aj@HpzO)mM$|}J&SsjpFU5!k?60`{qWvBPSqOSD6h9DtLhrfNMB%F
zeKU?1q<IU6mV_D})VN=5%7FacI&RmV&$)3n83#_8M%?JOPnxo)=d(_>L+I`}wu!Tu
z|K_y@x@l78j0Di~o$|?N8u8ppNpT?|C6iiia*p8{#Oe#(Ndspf1W^<)4EQTZQxkrz
zrZ7KWx&{Fl(P=a}l@tyo429ycpRNUv@HsY|jqtN2S=qqc0%iU)+{};=KrHq|xc@6W
z`lI5BJe~23_n~BEvF_j$03Cq5{lACmHK(KgO>aKmPaN6)jkvOaQ*0yh3Kehz9u{Ra
zx(}5ywu}!MnM1j~fJBa}%6*#=?)XUjYxjEeEzzM(4^<pBgv|W-o~kcQ5VW@eg-q+T
z${!j_8(TGhO7Io!+sO$Q`s?Q{X!?N-hsn43m>^ZUG({1qyWWY;Qi<z`ex>p=!hW8F
zYOSnWjRnE76;K)YayK#_HzfCczqC?tKsYu?HoY>o5!W{zS3<R{-L-;Q4$^zqPrNIQ
z9lIiIq28j?e;EKk@y@CH_C>GJ41)v{g*^GTM>9^UiL6_1sDbxiwpE!KSflDMo|q7z
zwN6cD)@j59#79o_SI*A?1fek5b_vu-y>yGPe`}q8l>t%#AVP}VR(|_!DKSv(GJ8CK
zfqPC0pfFng{0GA7D5FyW!&Tz6Az`LgyIB61s?SP67eVniDS#(a%&I~q0^J4iF-6<G
zw7^iIW0Jrr5(s)pZq2qaS!WD2kb2aOE1RUiVa$|y8Zfm1N=SW}QDn=luAa>fjaF~A
z0*mWXZlhPS3;I)sP9O9$V7p>cNVgU%&4vX9eJY)J_T?O3lO1*uC{ybpUmvVLhDxfb
z#TU!GI(WQ2U<oA=CZ?jIDzx>p*)J+<^%*x+jT?LktTT23RKwn6vDf1Rb0;nz=egL^
z(L7`ONDY9iSM?Uj|NGHc0D)WNR`mO5m~sEFqd6(~h7n-1e}{qwR@VQ%`UN)FgGhRh
zrdoDNlp?3AhRS_Bz6g8jBCE&WCJ4GbD9M6O*>n(;7u&pLfhIzC_9mpGP>N3w!^~nu
ztKyx>;(YmhX<=PX66#yHb{Jm7DnDk-H3a`F)=agkd49|86ct2&Zt<8)Q`Vn$*2(q+
zZ~#z|dFC(TNDEil<y5TQfDYV&PaffEJavqS&jDN3_Ru(!#YonZ%xh2W?_Gk-TZ9`D
z5z*V>k1*csYM(><*#z4V3e!3)tctX#2X^jnjPU<5^sABnd1cS%!VJMJ@p3``N2Y_7
zF5EpiqSZd*e61|GhM-_23Jq;&svwCa6PG&@o~B5kVxj5xR<>vVWS}CZ4*@*&K0}ua
z6knK$>Jf<Dk&BHMug@sN2fsbpBTd1kW~f^HW@rZ=;K0<7R;OZ0GpYN~XWOpV5#&?2
zhTp@uT^)zzrMnFn<hOtO_D0}#Hyb-bGaTA4pkzkZ9SP`fZHwVG(xJf5#SU;ffij68
z$<^^Mh~RgEN8N^;6;r!_BK?Jq?C^k|6oK=&^Xc#N@t$De2F*WU;d42xLyd^_l?3HO
z5f$mcN(gB3M8ufS3}o|x!PgF75Q$;L?0nxQ>qw9KLxIU!JU=9P=pa<u+1uNW3SM0|
z#{+L^*B=_N;*J3iwIn!Zovya~^4P3?9J~d@H{dP}Acx|z=|jF`XV<AcGa&<<SZ3m}
z7Km@J+<&LWe#iIEUrs#wM|>0hA5KheQy|L@|Df%=9wr<ql_wjUG(>za24zKV0Y*jj
zM#3=2Qbvml+-x^^XE7GrejNoM1b|KvSD30HJpguvd3I9meZrRy=c<60tHwT#0$s&(
zDedg%0K%Z~SOiGfe`|ez<#vsyk9jK^xg;GwW!{hqe6954ISWbMak|8z4jC!9=na)9
z)D&s7*kUrjMdxk&r^@;f20*Vrp7n~wJt4G{_G)zy@NamPVFFOn08>`+Hzr}RW?c0#
z6p|XHSAN`~G@}~Z`H+-|&8Tc)S~Cxn`!|6A`rRQo?Ec|#^A=!2w)`bll7Y|RJM*=W
zvBI#$>eyavE+w&vBzd!H`1J|UGrV3ANf-W~^Qyn_z$?}#$Gl+fYxRwrGM|$J@M1m|
z=8nNpZQN|*oip(8$LDg|m37>XX^63dbLmhyNl8uWkwZRQ!TAe+#k?x(j`t{#x~W&V
zva%seOymwxfSy6K+IqQL45d^b;v(h=j~x~L1CBxpfQ(*}c`dNe-q~ZxZvnzHHE0ic
z;#Uf!^QN!FEg;rM@qH7iEvMpA&kz8gy@4{2CU_?je{f`g0v^!@j(JF2?Z<I;n4v;_
z`hPLcr2A8&u&n<(=n()1{@T8ASK+ZlZn0F;zK%4A6W(Dk{gM6CTj>)oGG@M!gwl6&
zPWxU~VsNemD&cTDIssMgi0YLd#t`qG!03Ff<|QBP-&C0yQ(V&?O`=n=2v`Pg==r7M
z8}kr&Z|_hyBJz!BMfV;v3<!4QVY*6E29B%Yj4ET1c=KeSN!af2VKkwxM8`JlhqV>_
zZ5KZZZ;Cmr>pL6&-kdr!i&xnkzP((f^e7p{Ut1~CEkiz}X-bk&k?~~M=(d#H%IK>f
zU>I4Z;73JeIjawE{bkGF(L?*II%*mILUml+i%{SL=i-iDxs^+B;8tIwh%7a=E*}(9
zGy$KQ?Q%F^pToB{FN>e3)rHH!fAmfzxj*V2KUFd@DC=tXWfeb*!BI|fjEWkg$|Jiu
zltYahXZ%X>sm>MK(EsWoWU7jE@PZR4zb4GUw=^ba08AE&I`bPEz2ZUFs4Yb$@zPqg
z-4o=OTq}huAYR~6!;Vk<e!Xa6xRXRwl=@@iQ}2e4H=N>D`)krBWzNr1999jqRJgeV
z_Wy%D(8Y*s8I8l!Jk>vPp}rj*;uciQ$>sJjx;MHYrrF7TsSO1NZ5kSUFB~nm7$)a7
z{0MY8l-+rxRCIBWT3A!>5b26Dn<%*GvAK2ZaOOD=4ohWb6RJoV4q2W<+ay1^tPXtT
zj0m`;R@t&eBhtt~`JiC^p8xgf!W&iWt#)m&zwBlF)|KFxgygHT8H$%JaM3W@h%bUF
zuVEPhkA;f2rqwV3JXQzjYT0p~$o{A};Cv+m4}Nzuq=aygvXK`9d2_STAZCgAoG`R2
zog`Vk=8#@*pOeU?e0>qM(<8jm!2fjbSBkGLh189`p};Rij}JOQku?s(qKx;BnR2W|
znojMmCgCCn)I>~*<c9=tpxCu5qBi}Td8+fTqi}cha++lm8!Iz{GP-FgJX5yM0W-D2
zC%)o*DhW;KhCU4c@l~7X$Xc^l%m*tY$i0YyDisOEbLK+fZ`V47A;kklJykgz6!=Li
zR%my#^nV&8mbd_uZ^j6hj;zX3D6qf3Kdz7m4^SX{gMk@%YMn0>ctqZiim@*mZQboD
z0RnxA6ofabp=VPqY6kP!p`%>6qTKXah1R!7RE*R$_-;ZY?m~@7D%$Vu|5@cw%^(d=
z?2QhdoGS9})&|p%s9(r$XC>npGnbW&3#~4+1qPUPJE9yqgf&#6w^`_Zf?^P|Gh4{A
zWmt6YHVFI@DD08{<mAJ?_G@xa;e4q}T_627k>nWvG65^wbfJuPsRb_zD~FbjTco~a
zv(p*ECpmq&Se(EiKUhK3A&(txrJ?QQQ+<H()2t@6blIWUTqOQkQbtBZR#w(${bXRK
zyt}*makM}z09iKzZFdHLE(HK$t}USHPr&3WYZda(WX$l~3!&19gt3?X#3+Ww`~a01
z16q*vsE4E4!qfpw!suT~08|I~__V^uvp$BGorZRgp6V9zl=`6_FA5*@;F?8$pC~YX
zA|rLrU?2c;+%Mlyhy=-q7A6R%d*26K6@I4dqFO5*%p+s3i7M2N2e%y2c-$T}<!3z}
zMpSf`bw%oCABONK{9;9)W8^=v#+K?nhq^g`_kQ^ss#w8~%i$fuYGmYBv_t2^)(t@|
zMmLRg<C22(bU(AboAtXL1rf%Pv~JCO7G@%W7&3z`Cw4%A7Eu%Yn(qqt>#WrH!qeWc
zXOaTHG)i$n{lg#FARaIcv0{H^g3Zl-;fNIvTXblr2qZVn-v@BZRLqUxVYMuCIIFeh
zB#89J!R2@avF<|qKV1a4ANH!@(o!b}9Jv)7>}<3~-8UawgMISh{u8_+B)QF_Bl{R*
zwtwN`!q7UfiQF`$SClM;m-YResOl{T<dv9kq0EfvCn#{uv!no6xF_4zD*R)n1RJa>
zVZ|luWc_M9{30+oU;N#B*VjV~i8N&A8+`DOxFnY1NzC}ROVFgbAnsj#3?J9|3nwd}
z1l4IBTyy|si?i?}hoK1Y4*l&gEr3BjMI*8Ofi23>PZLPxTu?l>CI~H-s2&N0imee#
zZ`3Otk=s*$rvug#-TUMed0;&dH7Ma^xL7Y_d+Kj!@|@zA{ehXsANIevoGH_nn?9i@
z^=wM@H<wg;6L%9$mmMghG}J=k-+fbP#jR(D(^z+uO^<;`2G1XF-=(>nDWP6%wm1^a
zLP~G|TnoOD7e3Z0L4$@t6hOe7Xklrd(Z@2-*^Y5%8!F05j3rEiLe|DgVq0PRgbMUM
zUh>uLhclPBi>Uja2Hk}p=JGy%vPf3465$FC4nZZt3Uh(~o)|Tcnr0e$Io#+%B~(;E
zI%vUVaBzHaeeeof5i7N;;3r{hLPDm988m(_w}inh8W|0{3c*754=v5Z(Gz|(uuI0k
zC^d0jA6p0>T~L9vf~=HptmN*DD{1t)$`=DZU6^5l8j+p&C8ql!V+^hn%>dy`t6WZF
ziZarKtlBP8rh?}sRcz1>1i_PC4tuzz_><6LUb^h1)2~Seo~U^oqyNl=XaaP%zF;>C
zVfebAh&m%=v7p4gJc!mnLLU=0@3bIPgKk`;b8D>gVZJC_bJ8q7^D+Ep8Q8<ngEmKC
zCiEy6Uow`^1_Fb@FYUEYD4viEY;k-F(5u9IpV|C@*RdggQUT90H$KZ?Vu^iezA*H$
zU?x|jEF`iP=@ayC@BgF&AHiEr${=u=q~8BWPW)U8+qb+kunjPOcw|=>Ym|NTWwgE3
zVCUDW*)JI)`(TN3S8fHqaRh5&iZO6Acj7Q?(}4#Yly<6Yj&4Ro%Nh{$I!KzhwHCsK
z?$AT|4$v9FEzbsLn0<ndnHU04R|T97LS(1yuu(|w>)+8~-~VhVEGdlAp-%Dxi`_mT
zbl(0PELBba3FwkMYJOl4^1sK3XgI(kiTQX26V?sZ3HWBIbCo%0PTqI>exvSstuCjJ
zNnpzgKi+QbyT$7ad$#REINhKw0epTPx-M&k52;cpo|cg>XAaJH7aX5Srn$1g)hveO
z5|;UT3kIxKqH#yhTJSI5?>l0~W7el>8j4f8IUh$1j<odWaY84*BQ3?NLltd)ns0Kw
z{zp<5iO=e5&xOYXMg$!S!sNA;h)_mbtV#4TiCBgzCBA!OchI=!QGsFPWg6o$();X$
zJ=902GAtS%lT3iUrkEbz;-&%9>LvsrjI|yr$H9?Q6kQj80xl1lRTPnFJ(z*hA$Q(<
zOr?7lp6GRo@7E=J(&00%rdZmb-xe&rFC49UC!*%LtfNctNAmZcr+Et56f}fNL%+qD
zfS4zd(8~Ae4s{T#CbwmPdud`R{X{fcI<QlubJS1YgB$jk@)Ozt`HG*&pJyk{Q79|4
z;@Wu2L{W?%zS1wC5G8)3UGL7BuO<#lTi_hNOdK2+7pKu^?5%<;ndGUw(&A~o$hxgq
zN8C^i48Axrl;T_bS8DI~hcSySzs0cI96@0)5my!a<D*ODNVr_Y<k@U?k!84rv@|`=
z)1cxIom6IQIF6MaygEOeC9$61G-DaCpSy8*H%MJ#yD)pV6rOpG#L@Xmmwf<#e*qBJ
z%{!_7(-bL%j4TrEwIJGIO_Y`f2&zq{qBoaJwqvEa+ZZ9Cq2(^!FZZ%h7cL0991ne^
zTTY|9rGE7$tcRjYBLM1g9L#w7p~vMm3<(Cg97IW;7b6GN?&%S=5dZkQ5<CM2zF3$k
z-)9#s?DniL168C@4i#INv5t}@TrF@c;(nW?mZ+%h3^2+4l9n#spC)M}{bdr2zf5wF
zq9@dSWsXzyHWc3mO%jDLkA5QAb^AWR_WJrc=qkV}HAwQkf~rxtDB+sUKpHotl*lyu
ziBdKja^Yc6=&8@tmv;!TTCRZ7;>6dTR$rx{P>0eLuEA&#*d*Ua1T`3JFK{AMY|i+H
zcgHuM3Q-BX-E)MdxswfeZi3jpwX>XW2r^;vDMo3#X9=qKpgf0$N3o<eB5xg-n6HuA
z$E!$&Sd}&(SRNd){DUw{<}~-hW#i1G;_O5?tr0;<L*ZqLic24*9FJ6Q3l7nI&2HdA
zuL6~F`kC+B@EPyZX==iTM24vqlR(?9HN`Jf;x^oR4s|(UO<oYgtdTRJO`QI2yieWR
zKNSK#LPqohH1DR%Xjkfp(6Fd5S86-#<kVb33Qq!D*w9#Rf!Du5=McC{tvKua7Xi$g
zcOmaQP1Mv63`Ep)qEOOp#bhFDoKJKKc|JdsW6(zHG&xCVYHEHS(mJXn9SkO?#YhIs
z8&{3}U7tim3BEhCnmk&F6#^+btWSPo9L7X2fD?IOX<O!Z?R;g4mLEha=V$416GLcm
zSES9iRP+${5zSLaIEVg7I{?Y>2~C0mQZS6g0DwQlm6|a4M-C<Z`U_HaRsq1g&(o6!
zu2SfyQ)x^>P7|{itYwO$9ZFw7G7IgOrGb@%0yp{e(`WN_yM^@jnCtoUbQ8H?evW=q
z@6gy!9Cah6smqh!Hb>jI4MuiY3X%~{<Ps3uAX@m5Rb6xF>6yBsL3*nRVGOEA1STBa
zzBBh3g+oI2tFuDQ*X<aawwg@vX5;x-%=jL>$;P#mwkn}HgB7V18s`Td7X9;Ytvl>c
zT;>%<HMh$OKZln26t@Iao(@PU6%E0XO((W*u;uSG6rOxj+9d9lqFkQ0Uu6N^W!_7!
zMYpRL4m1zP#wV<{tJ9#Nd~f-15tTFzs~+BnH_Wb8(428^Z^07wSQ|rYy?%W+-eBaM
z({ypT$0r@G)ZXWflVzP}&qxO64^v3N8*qBG@85OjT!cimw$G=s4|vGfOek<2krU9?
z))M_g|0~h=g&tlpGw{JC{xJsXHKT?KxJI)fx>Xum_+kqcg7G_rnqgor&i*W=c+H`o
zAMz#|1NC_;WEsmHxfaY*=<R!X0)*i0`JS&2#1&i3eS=n&$!HJo^zZ%qZ#hiZh7Dcl
z9R95cm4(995@R9nAO(-mWl*{UM{T1vvnaxK@wK?a#Ot_}&oO+fDUlZlI0%L@ehr6M
zy)~&`V~9*=fuOGSB{CgaO&lY7N^tU|7veyw<h{OmOlxZ|DZ1}w4x7o@gXJvs*7+1k
zsp;R~3n@Eg55$ocEvg0yU&gK(rq8YOGPdPMw~mFq^2H<y>bNkS>ig)x2eVE~%eJvA
zgCSU;Eh9X&kq`?a<D-XwtB4BB%ZTUr5F+opAL5|5V@KK4VUQ3DNwma4T4(AMaGG2D
zXbL6RZ&CYm_X3T_>s52i&YPqo!%Cu!w_1qy*M?BxhAEK@(+USHOhuI2ZXA}cl$1?y
zzqng+gUVvO*VD92CE<ow9$XHJ1P%pv)0<93uYg;g?wI4N%i6dvp&@F7?$`u!<OUhO
zqv)_V_{YV2Vrl=NE18gZ<@ZWKruczKQE568{AoOfuGHW!@eAP-#Ngv_9st4;E@%b{
z02yv)Av@&;CnWS-5lffo-_X-m>I(5)lWu?_uTj2E0Xi^et`8IEd;u~#_Ty0?sQo%i
zrrwAZ*iyIaXtDS`Wl9aG+{g8Y&wu<}oYOSUKt*9{`F>;HH=lQTd=6Q{+dZ88c(yk&
zOK}WdAQI%i=$y*7@)tR|6+G_95bBCJXsbGSj(BWO+=JAj38H@43SXK2_?8cuaLKyH
z;4`fpiuM)eOBDj};30<ou+Kzp+CgzQ-z~YW3q1w|w_e22U9JA52}^#Xpxv3hm1Ww1
zaL~@O7p5p`9%1%qD`fUaqj<mO=y9oU58g0s=r)DgT1w3eDnC~9hu|w<e^KeO+jOD%
z#c|`|J5W+I98l`?*a!IjwbYR%yu`uDGJJH3CF~P56hR(9I71DRg;j{}*T#!pXC(Xj
zZGziIbWB+${Z%Mjf4;1=n0&~{`2<>&@)Z1j<U%oPGAlx5hiTOkBWElmIE~-=(_HZf
zv(Dj4GwmUOU-5Gm=IC!IPfzHB0-uvJ>-Oyhen#m%e-jv3Xl83ylfXzoy5-Eo#Rs84
zus>cThAB9O=^yL2pOP)xQUa6rYfb_nm`NoFO(<~F16^m;$<COG$*6Yn_`x9scdoMO
ziyEF@P?@E>?Dua0dD<ZGAhk|%=!dkHI}84k1?^%Db^W7*L{zj;6NO<1x?|<}0V~xx
zgv#)Ym+$)bMT_sUW4kzx+sDdxm)ir+Zo4z>i%gAZhfUZmJL219zaPY-TP%Sj*RVHp
z*Y(NA8)~9jzl4h&^pv)3UKvXC82vEn-(AXd%eW+F?)~8?q48)!=ed$qdpqC8PTLj0
z7wb24X}J+?W1L_Xu_D@4=cdK>VOhh+GeE&?1G!<-Pui`JFUo4f#rdAcq0ZRc_bSyt
zuiPnxZ!yRb0w29DLg~_Nsis0mNe*@6v7s*ZvL@DQKh}qE(cO_ler6owjtzHA5L?D}
z-+X}K#p0j*%d14R$d;YxHDI>&i+w;h6ufJbve}&#rpIMjJd5vs5morw!1z8Kbp3Xm
z5Ofj}pd0?qQ?h748_t%mcHd`#IVtN${g-|5qy!;1!aL-n8tg05JREKvmjuoe`idtp
z|IOT4A-%J1yLf)5)Jk(N`nb$qq-;ltl(lO+dhTmFdx4O<mr5=7&jfevIy9$RC1`+x
z6v<ge>49bl=dLuAmgP{B+KY%EVSg8)9LH<i#h3o`<OMBv9JomGoFohZM#pN{J>}YQ
z5PnGSvbFFgG>C;F>Dal6|Do<$;b*I7SWTn(0=vxt)fM<mwqwdMQaqC;Py3!{P6?FE
zn+A2#yS?c9GfTic4c7U3NT-b7-x!gjbH3iVIHcGF4j_>hUMH=}{;fFhvnULH2#hCw
zgxQk1%Jdll-SFnq4oSp{Sfd#y<?DLjQMSrr=_NxCW)4XS?3sS%spmu2j{_yX{frYH
z_=N-aWimzbB3Lr25NAD?gM{p9hDuhU@I37c3wdO5aq-6y3FA~K@UeAe|E#MDi#tZA
z5917`|4&($&dNh%!It&mkUAI7h|hV46Vc>sm0pOSE);AmQ|12D5=@FgXhMQ-HurWb
zcxn0#!c4XzQ11mk$R*D#e{M!IT;k(`GjS}z-sr0p1BNyCdNd+xjIINA&V5#@bUwv;
zwU`^7Ij*!ZQr4<SQ+09xOUaWYG-H0(^R9CQ{in69kSE)rD~qZxpJ8JS`+8wi(0Nx?
zJ20YD>oFn^%Ds&--CwBjKR0p{xo~I4*#_XaRXr=5??_;Gy4Y4?6)6slB5!`PcBp}#
zgK?dy_I;Unm&6_Od;!z)1HjIQ%pQVya?Q;>!#C(}6q;mDm$^Bc(g7!bE~sy_bR(m<
zJQHhsJ@glO_N?;C{-xv-0cWR2qUclHYrG=2Y+hBu>KC{bcehfrZJvA$^l?M?>qc=&
z_M-wM1|tpfpl#Z&_miLDa<wn~RB<nNQ=FsfrnQSo&PMS<qD*uxhMQy!V|sIGw)4AR
zacgtn2`*gOo3+|)IBz=Mih*us*VOf;%ajXWswXM6dZjdTl~k+cM84gFLuckCZiTH>
zv(lD4OETdk6U7p8pGhH>Fqbvxy#cl#2%aG5o1+WYh4irN6CZWeBX`Hc0Jxnc>5L^E
zK;vL`0ROZ8Sj#*Ex*!Qq=K_!WM%y$acikR0?4xny*u+&nalYS|_RB!SR*lz+=cY62
zAZ*i5HMYa~*s2jPpGcjgO82<G<#$=SUxvD&^7{nCe;jtQW(Yt`6aX(s3kKEa@3T-b
z>?)7I^Lxi@RM(ctdv@k5{=hMSdmf(-sUhikffFE+vlS@&{+Xwl*zN>D=PMJ6dvVF$
z8!p&7WO#r+f)BRLpO67m8Jr(3fsqA3&H422sZ0L|mhcYPD<GqA?LvRQ6*rNTQcUTi
zJ2ydFJ$&;bbaz=OzT<Y6l+f+^M-v@^?;m_IAQQuQt_KAsCu|QP*;yT3N{^FTKRakq
z&v|Y7_C)ZNe<3LY8#DS!Df4u5$x$)^?W9O>OdhQgbhocT#$%*jw(ZeTucVY{V1Dxw
z%N$a33bSIRU-I3D5))=14%8z`u}8grT6(K5e?6Qj_>y9{`@O4VPZz<-EXCOp;Og8x
z2ZUxbyp}XWo#_}Ubml+s-a3T$bXD~0o>b^T8&TBAzTNsn<Z>RTq#fSiGU9s<E;U|0
z)yBWfDle~x+*!E{9gJr`ZXon^ceVqo6Zj7mbJ3pR%9A<(2xGKg4H$_0L1HA|EQ|5j
ztw+N5$X&G}3HrC6^;XcCGcDiWBE`|E6Q>dS^9b^tQ!A<4RlJ^l5Z-MqA2u?dfMybK
zdxMUFmXUPgy5=_JJUOGwiUusky&hIET-M=0NO3Bzia&648)`m7vco5TB=jV|!VOOq
zcsn!mia60-14wu{BGddU&7X$(XBc$G0cgMIdE;QdtkS{e@ddR-(BWQQNk@BnEBfQf
zcV3lUd+*!K?D|9(#DgoAU^`oEKO8oufDOmh5Yt1$W!s^|B5c<%LL0IX5|;uqdT(P5
zf|*b=kqcTNM_H!OVQBaNrA!KOODJSy@+ruFmg}RE-^c4Su$WCNY>R1ZCxwe+^d+Sg
zEuVChK=g}IZdG?k{1$b&IcBM!)^V!=x@C8m9$D)*3CRwZ`4{mnXe?R1mX5YEthrIo
z7)sC_`jf_@2qeU`AwtTvvr!7(027)?Cn&?p)<B_IvG~Wj&rj4e0hU+H3)jBoF25#H
zxzjpGiZ3&AgI*4$%hAavAzPe@&8i&3fqwN-6Ad8DWG>Qo)9=|FNUzc?{}j9ATS5Q`
zto5em8NvtJSVjB8a+grv1@5w#OxnI^pVLZ_J8WnHhcstB`j8V6U2^5cOTlyrTU}&J
zOG!PE)mqzSf4|tJuLlYznOqhL0gDsleFO3nYZ|rIx)sGC)pFYQA0R$mgx4|HrWGSB
z*U<G9hFtJQW2a9FQ7M@{2>Eeyta&p>3o)E3Kf?Z`gaosA9ooGM*%9*d<3l&Z0@lb%
zO09)P>aXAt3&cdQ+3j5$Y{)QRwE&jb{w3=l=@8MU7+AxCN4xjEli{1>7_|tSR+#6H
z9jL0>9_=c<=T}8Ck@t|GH+$oF8hPV7@zSGpaeG{bqs8uA0dw7>yf7gfwO30dejrds
z(l2a~Oi4pjAT}mLf$SiJcG9VV%23bMwSnFveRo?i@?!qyV<*7RXfm06Ygq}f_83XN
zl6vwxFCkZScjTWr__cB=$A!&J@=nV#go3WKnwDb(-`88L!Dp?M+e~R;j$Xx13se+T
z7)M%8A~UrufJ|I{u*IP+?1<jXjz~2cd$l#eN)@hq<d_!`LsHwC8v^yeCcY1OL)5Ck
zE$h*`;tCQCtm7fUdy}@RV<9DU+yuGn9^&I+3$(x%=7jnpCAM%}o>$@S;5S*EWj^w5
zCd1n|(t%A~31Z|-AG$~`Ud9A{DEv&58J8}KiXVed`jYC!r%ea?Y?c^AN_ckhs6j^0
zdt(ygB7gu$w5$)=3T}J8ObkrD<72Om09stIsL_<yNfxc8^;-<vIUk;k&ldgnMwv$t
ziD+QXmwOKW%CfwfE6Kg6-EW!^x<pxHmA0|nDmfXFZ`uDO;`UQNviKAi-y69cd-1+O
z;re63C{)G-pah6`^k60E<G~Ds(<vo8<<z0@BDXbCkK5rr({EqTFb+6dyz@d!BqDRp
zOZLDnT<+T=(1C1?C}6st{6GC}?qn%Q8-v*6$nX3l*po!>+s0^E?{1X`M!>Cp#=<nw
zb8MWOk@TdSkx+M5?_2rLxhFdSoqWF!3rs)W$vn>;ZtOges5T!*b5=~;c685Kd&F+r
zqf|_`8{RM-FR%IbMRG?1c-q6r9J|Ouo=_MnO{-8)VoE%aA~eLkHRVw=0*PPEfCVld
zQdke!*{3*fB`w$hvqFX!ASC?yF^Jz(e&D?$?{nKP@!H^#i1;xB3^mH4q=ouT>_r#3
zOx6(SE0XysY{$Rvj#qGdI(tzABTtJ4pw+QdDD#zCuE)69te4;&*`3AV4sTHD*Btq;
zN$XT54O>fO5fxjQ-0z($-O%~EIsK3nRZx}qu9&?HS>eDSqa$lvcC@$-=$yg|3*qVj
zEs76a6%SR!ikG7Q!q89^k=#H(Ga@X2nHsL~TAVLtrYPT39CjQ8*<ZIC@KEpoN3#B|
z<|%1SIW=iBB2;SYKM!DZ*hW_*uIz%*{YJM@S>S*EQku-2sgc2r4GX_mlh2QpK~N$f
zoar3bMUpYuWM3wcN;l=65uzyP;*|AIH^GEhhOaE;7lw-%#Zr1UvGW!s;8gb<7tT#T
zOCUsBI|<fVL`_?s(s(&aQBPyyj)=Q=xpV8f&AGA#ehP<#AgE_^i=9j{AXNZEu*4#l
zrf$pnGd}0oMnTXXG4L1X(CL-Ujlk*?aAgK@1Ojv;&cP(s$vnE@)YNV4J<g6&!j6oX
zb+GfIC2h4yUc4kMna+DxEM!9VcN^hvA~)P3q<mG0(o<5`Dv;DaQ9rp<tM$;3v+*Jz
z={AAj^b`g}<45XJ08iDbeS`Kv<EjLHx?7B;w_GS2WTeSn=JAvAl33N<!ELpXhVF+5
zLR^0`tZnUM3)ITbA9%<_cTz?Z38DOedb@irr0Lc{2w^5&xF2WYTP*;{h?5=pgLfZl
z+rnvR?qOuU(<KkV?NAlf-UnK%dj>)9qs7t~lq6TT$7NfI7@HX+3<D_#)_1g77%3ov
zq<Y?JrIMXG!fPxUC+HP>ahSPe&1bh*U{qT>9Q&UOn^1Yp<fN_Fn*?>bneY<;CWW5}
ztJA7wSr2c#jJ!Ck8r2lIol{uZ`I01FlHu_Kj-KAab{2~whDJ#;1e@tC2mW}Ivo(k5
z*sB8g*(5<jC`8LJM3PbFUYZrq`cBxU_nZ83>CYe&n3hliB)9V;i?9AW;+Z0{@@WeG
zFvfrI8mlM}%dnMh4y;)|UE`IguF8_D%IF51idTm^{Y%XUzN8GCG67ylff9p~l3l&x
zt0d@QKP&PO+brm9>nuPG@}wM|BXES2De2)ruNg`b_3`<VK4_R;9-!K5VdXy1i6@;c
zSc4X165Nn=G-3!`+`jEo^&E_ma-sthe)w$Ka{lUBD>?nNp1lrp-twKdP{_nN0qchr
zjdGVq=wS=J4Q(Q?)tk8u<Hjbg_9G)wVhXyRJ)=aE5f@Q4uZwrn#%PhK@mp}JnO^hU
z7|Vsb_u(US1n8aj0^BE*PKS<OBEi<<$BB`^iw|il&O10M-+xH)&N|PYopi-uOzh^S
zp4}epwC{~kd|fABxeEO&WxX17XLbjYa%J9{7GEkP7`Q7TC?dYO1Y)uRgtPczPZg9D
zFaO>Zj@aYE$<F7U%I-mbd-o9k$}3FXj&k8@c-z*;BLa`JGn32Q;`eAbw1T`ZkO(+3
z1EAmR(x8oRdWe;=zkR5@DmfDGNFzNM=ROg&dRJOwxih`QYP;B0;_CI($nuWRBz38l
zB-cy`gcV6H%dX_i9D3FRGpB{e<xmBFug(!qudGPIY!^Pi-eUK%514p#NNLIMTaYou
z*dN@56}O4iD|f%u!dNvK26M8YdmHbX3ZwpS;0r+!V31dT$+2E^p>m_i`Y?KB>Q)-U
z9k*QR(%26tb9VYbAw(u7?yBPC11f!};9_g1?to(SMiW=YCiKDSl=5Id4XT{<7Taqs
zA1}>baj7h?1lrUI_GCXW^bbh%HOFSR$DxlUe@<!hd7oQDf|tYX?ye2bk2V>TPiwvM
z5h{BS!+R6GZCQC>L%VLh7BvD<u(4b)Cj*@<lkrabkoL&;91i(4!)dmS`QsLF3?sQe
z_ga5H%sk96*mC(%ViA$<pUgRF&{J|u5_q}=ogQ`W+QKJk@ahV;+RTD9Gua*Gtv*xh
zEVh2TTmV&8fmmR7%qE%zbV<eMzBBhe?63=$pT;u>h}6qIA@cQ<el9F4DRjwhj*x@5
z#2)uNEhlwL;`XV{r-2t4bjLGs>V`dSkM@h?_>PA~n<owAc!Klq9~ZvNuG!n5y|s-x
zxoaQtFzFFYeC0{K3V4({AyD6+hVkvBeds8%EP8E$LKyWpJqu;IGQQY6*`9iL<YnI^
za{OIfrqk%h0eYY-rmih`miFQWr7m8zdA041X7klBffLoM9WFsu+hR>p3Vc(v^+UmC
zgt8Ck9K$;I`BI(dJ?E$+-Mf>8Fj-+ECu|bc0Zn@KikvJ!rQ8upR78n6tgBU!GyB+U
z<vIQvbj5FYG}a2fsMEE}5YAo0A@DhB$9Q}T<I1$~{Yveprw#W}#F>eZGZ|NnHq0eP
z#*ZJv=MCA5nv-n{y!F8Xc5@_uy4JnhzDn}btV`t|v#wNq2>GulfS_UvCXmdEoDd4E
zKe+6=Lj)V472fNQqZ<f3c)eV~^A?a!K_Ql?f9i&zx1C@#&%isVO{sXtAE}2cf?Tn<
z^7;FK%`<`^n~oq`wB6<9kL>e!d(>u_=)2U}ENz3&Q;Adl%xa`mt4bo%o!q&ZmMTX|
zZJ#Ph4+_1g-ioidL^R`+(0|2Y5D4%>UH+)sAp9bTxdVGdFDf9XD0nGcWIUEF?DDgt
z!3{AZSm)ztynA{GY{o3>a7`V%we@P+1Us~PsJwWn@)6YF5qW-x)<WlP&+5LijMa*>
z<zo{j%Lu=O-dGcff?rVTh4qYn#@lr!wN-22rj6ngZ*Z?IdGFcXeSbn!Kr!+NcT;Sd
z=XwbSaf{)Si!%Dio^lnzhXD-_WMT-Ia3h1QPif3Fv0AU?xd&4P^N^00f*`Y)bS}Tw
z*ldh=ay%gCSwXiD_rsNz)wQ?qXMv5ARWj!3-x}9QB=^39$Q1dyaHV~$1~ggDhMQY}
zzeSIJ^I|d{&Ir=En<`79xQ*!X_hp_D2z2>;m2^c+`R-9UE{s8H#gDxSQ7tYg6q{_s
zgkiatg+M*uB5lc@hZ)ZfO3-iPfjt30mb?hMUo+fmHG5HY>vZdPn07Bpg#*9@Z?c-R
zQk%`UW^u>_>3o}^i-g^8$orD-yU%7@ol~Za&Gh+*+m5Krg=W#`ZfL%D-cnU74W{K%
zZ!>LMdzm&M$38rbT6b$?fKj`XBN0sUJ4<c$LW${YL}2V@nfs5$T%K+~JW2v6P6ts?
z#TNZo$io|v!MoOzbxTeJA8z+(XsYaYM!HwqM@X_#@ozH$!tBGx{BiO3NpR+M$=~l3
z(GBl){1+i!OUt7;k8*@#<Xc5Wp<%yMOEGpkw;)l_`$4b=M|T6W^J+NY=+_P?z!RUw
ze-s8t2kn*6g>R@hM{_Ttn;HPB;b4*7z;?@3<~ZJniG`kXV>v;<{RdjuQjpZK*9A|d
z{St!u2&uKQv)=Yn*ax&$oAn_B;%?cQFqy8%bld5h1)AmtZ|-1GZe1?Xk?!SEX?KIW
zEVA$QF0XwI)bpC<^C|e6g*ao<N7PrUQMcN=w1#?DfK5GchJ}v)(YYFdNld-9>B+v$
z=d7WJ*@`m6-ld;bu$k*gI^w&yWX_uu+OVO`7w=;+6L^`N*Qc^=w(_4VZfU{`-8yj^
zkKRoen9EyWwx-;btGJfquvWcYAxkI0I2C?wy=?D_9|r|a-*qWP;1-!?(NbGw4?z6@
zjZUc0cH@f9mgn|qE7xgin&foP`J}*%g2KVY?FZwn!2VA>$q>|?J?Gr$)q_CC(9LVZ
zp~Uk-&J*Uf5YmH*trPvJToO=j?(!)Iu%)XK*Dz3gvti=Ve9i=#I=dQjgrC`^?ZfB)
zDT}zrDLbXq?{R-dqw%nSPG!#9R9RqV!)JfJDZ=<Lg}tnNcmxbo#PZG_?w+?F`%+bb
zwx!NV#Mbsw3I_<;2S425hkSU@1_{{yyx(1{Y$_c3&bPbVieuHfOAI1#P6D2*?Rms5
z*m2qmECPmxu7%A14d?&Q`Z(fK45+<VZx70x=S9eR(6fr?d4S0(L9C@gAc}_nCYt$u
zIQ-9R;2PpUyl$$GbL3s{-2~L2_(*@YaWvEDg5IxI%9{iH__l{^gSC5484|cZ$NMwI
zY8YvenA{7+Z8bN{7jy^*b8PU=3S*Z!ZnW@~Z!q@c9v3EL0*@GXl@n((c0Rbmo7cwA
z<M8I_z$GbeC!e0EEAiCSu;6kF5aS@mhQ!7SMGOgfi}fnVPVafBU70Sr*#@gL&_*tO
zJ(D2Z=J`0}bTTrY=uvRs$~%91qMldo7GknoD&P%8U|qqSWYeDz>EB-6>Ws4m0LpW+
zuY(j}ei=Fo_~QjRXh$hhWK`{U1OmFq?Zf-ee*yHMKLENP-}5<l=DAxyxJa?tDzpd*
zHo`JWycrSeBeRygl!_VJP83)ZL4WOf$zib~^~ITF)_X3a&Cf1I(?jsfs4Fi2xmoXa
zd~-Hxo>ahc{a#0tPAv$Y<O!6^TIl-g_~)t2&u4huotb#li!;UA;Z)k(wK65%C-I4|
zojyEvNcfhPbML(r^ty4scAP+&ZUoq=q10mJHCp<NM1H6_*V@r&3K;FcGZ<a7Ba@6-
zcT*hQn_ap)@>J((sQT4IxF@DIjvygQYS*=}aOXIE<7IJnVU*bR+6+zhXPy<!ec5xv
z5`nZQ{TGGxVgY^Yt<S<(*~BYQ(uU*bnLXP(KbXD=XDJZBdJ@i#;HP`32Q`pF+m<Vb
z^oVL4)bG3oHT8ezHE|w<O7X?pQk|w~bxOw}>ot9Kmyv-X)wT+xE;V3&kE%Mw<qs>T
zy@Q2CZL$2mLu#<lW_5S3-0!(lpi!>epkX2KAi_zfFYi9ob!153WVW&!We-w_WZks#
zrkSSF8cxy7i7%ejpDUH5pCJLdA1-QY_xbtOanl?zpk>5p(N~2SIoMf9*w3;Cd=UCP
zu!jl9l?EBze6hR=vTA!L_{)L;>0I+%`}ULc$Lpl9Q@Q>nsW|U4aRb!;)l&GqCU;KW
zw6$u0%j@|*tJRwUi3*01hw3ARL}}m-p|=}M_17wqSn>x8l}&zDw=NH9s0Yr@9A=-T
zNYM8#vNLj#X2nYQ71z{80Eq6K`UgaR4akK?skBJ`(59r2%0<pzjAkTW>{Thg#y8>U
zB-$W(C0gv9?pSsC=-q&zn>p6CMX&W<2I+JRiTxc%Ju=lUZP$0n$cx!SciTeJ1wO^H
z@Ozv4#Qy2#qAq9iwyt$OY#vYphGCF9xu~?Nsu{)yxTvwogA7ri;iKV~ZSQa1aCvBv
zdi}=A{rU?ihO7Q+pf{F!`s^S>Fr?ViOY=-;-l5mh;G}N*2xEPDsMA_r4Q`wq)tjH$
z{Uh<GUHui+IP81flt+$B!s|iJbaCSD^z)AF#G1~%F5u=V{kwFg>2-F#%kD6PNqq+M
zt-Y?OLow{}49^=+b>UC(Ve_*%y#A$_acs&JsFr{#uwZ`P<l(0~`*tMk*h8PZxnF>_
zLu>Af;c~80ygSF~JdP*n%73e&PrlYQeQ_{@;_B+E*mS*UKf0C`!ff~FCYq{cnNQbi
za?E$rt#*uB20bI5wdH<aRN!}`FiC<2r6{w#5;Te*vSH8EH_6(@&J_BR6$2ei;>G;f
zEf%z;$kg=58f_7y(aGPUR;c{7{*DR>*$i9}Q>MQ1Q}ZK~@N6rs6St=zZ*h{70lp@u
z-MvwL(}y+EzIpe0LZw!tyEiLXA;(8y^;dR|yX_bJvZp;J^AZfDJyCH+xqGKWM0m_8
z{Z^|`A*ALvx1t{PvCALbc(maveZuMzTY=KuUfYUio$+-gVA0+DtlYDZo@``auA|s{
z$sjT+OMS|gx*4{-zVGVZ*tnH_gIJz)67GqRp9YAAUxYkuA3BGS?j`oL#myXCs4|H^
zAWP~2=!T_FteCn1t$F1RUdMC$lX{r)trmq+?UC5O*vw!^$)@6spvXX#Qdh*`ms*;G
zv3_$F9XrAg5gjNGUoZ<sjv>KW<J@f?!6!4!YBdoN3SC`tCt_zq(}i|XydU;y0luH}
zhm*%E5VzI!6z-xNk&qIH4Wca#q+Seds$P?E8t6W5XdrAQDz6A7u6QdIHNg+2G|l^q
z%T7R)-?R7Qfb4(q9g>NYFpPS5vxHG^%24za!s$^V3rK+`)tPAIm`xj$YuI&t!t^1H
z_(8V}bNt1en}FAqHhe<<gZ!!s5iQXhjESHtOb&VTEKKm|lNdIl%@c-t-r#PdgA9W;
z>jdgjV%p&|9`tQ;1@o75sweTN*gwRh?R0>;`PYK&hmW}H)E(f+xU{se=P#h^7u)Gn
za#yFdtR2BSqoRN+G$waAzF#${vv+v5av{{wOOo{9L^g3))Enz9*7P1-U_}qILWj=A
z#GWfLy7%~~Tn1rpmL9wa@~qhosbl=u+Zsz_@lj+q2P>m5C@zw>HX2$O`DsQ!Xn)gQ
zsBVxzYYmF_xxI0no4s-NcgTDaP_IurxXn-A%{1De8g6Z-ux-U{5Z~08W%XurbH1+m
zE~)Wle>Fhf!-7(`X{9DX6Brr+x6MCQ$uvN$4YhEKoR<I9{&7%5$e;bHH#1L|e+MbB
z+kc0WbYS&<h14r_n9IlaSxAV-3XJhKKl^bzq-fg5!~0YV&p)X5QXfXN##3J^YyE@L
zFy^&gaz|;U;aB)U21AsUGNE#$D4@JZ&;2h0Dsi4BWYPFu%bb*bB*uD&u}+xlE*oSA
zca9;a!vi<;TA~76>qFzaV_6JAo({CkbREaO{Iv47qqNlsReAg3cuGEuF$F$CCc?oK
zG|0S8VgThZRsrHRzwyp?uXuOI_d~nn!wMlFUG24YpUVj-C*k%8@fY?mtRX{>LW}B?
zxAqI2{De)WUDR__eBpDCKqBvq?tynMi9UjqS>r5X=Rq$!C}+dCgQ{kAO)RBETzgqo
zOXB^WTTl)~hC?;ZJ?3U-R=4@QJ*HZ+s?fDpO~>XEk7BG|g#AZ;yy^FKDnB=1Ss}a)
z<yfu8a-vx9xb-I*D5;M}7v>VlkEWd2(*3i-1hT_@lJXlhaWeQT{VQSc<uK#>HKK#|
zgLEf!4?3h5|3!=i^`!SWeeondey$&w0&5~Nz1|&SyW)A(u-FdloZ?U9DLMb?hsHG}
zzETR;jv;s{PRVo}@300Ym%rQ#e?|z&F#@@m=|g|IP%NKj2B$>it?+u&ZoKDKn@;{p
z6Z#33qkk+@E`>IAjw)D4ToUTTYhv#|R#!d}Kmh!rUyurvu>ju=rRQAn1H^3HO{-3p
z?H$h!jj2uzmJyKfUPitC8J`!?DE5{PN56LGSk*mO^HfEs^`@cEK-fzifA`&b!-RH#
zB>?0Q9D(lgJGT3Ql872>>4~%xl<vbWref-w6_<j3$ED&-VifI|;A>pFg<dHQw0gUJ
zM$CkH(QDd}wjVxKZ22ZqR9e|*qbW}7*%EDhbAe&uJyN4?$R?YUbg=M=U{nhTC2zRN
zm(S<!c;_7cz;oKb@Kzd2aI?x~$|E@a^Cj$7di)(en%Qw~$jSLGp4{HiuhI%q)$}u2
z@q}&gZ*`@|UT&>Dp8tYw>WU6f!o+;8&#Hvd3*dF~hjg5{c9H50I#jEzzAYQ6pds7#
zq~58nAsrEf<8cu0T#^{*iHjCdxEMTCo!<ycfsQS=zoE^HxtH3vSRPMW4U;f@|NgBm
zZJ>oNFeJRUMO}FR4dS*75iFV-rC<dUq{cF_Xe^B=&wR+N_Qh{WZt1kjzX{xb<)~)L
za?d*_Mvd}k5d!PQBY>VS0hN>E4tS4{)oPIkNzlAbt{%QJo<%PlhS=qqghZ+JOC9GW
z$3!km&9B_RdJm@*qmXLI!F3-TMysAlhxGz^WQ>U@6z?}!2Mtl@Di(&a4g+rPudes#
zB?{POBfUdc;hm<%DKy&>xMH4$SZ|_3cc+x4NM0MzDYlIN$nj(Gf+<E=|7%Ak4AKM3
zFz6lEBgp5`<8UeA+l+4H$IO=XmSmm(kF>7<s%zV}3<L=tT!Op11ShxzcXtU+aEIXT
zZoz`Pd+>t?f@{#=?%Er2|Nr;C*VV79JGJYOI;RfFUVE-N#vD`Dd!UXvLAmjUYV1pC
zI3S&8lwufpK1hLKJW?WI?x347yc5CpokI#NAf%af38Om$eqzl~Osjp!bnLh*1Fa2A
z>mq%wH7o7!o+;=gTr@dBzJ$=Z*Mn)lwJy_ruf=-$5mu9Ro}vEB+#43St)<l_Cg0TO
z`95s?e_9H)f!&nYWpP%1acw=4B%_lY?<Q-yx>Tfjmx*ORYD_P}QGUw>Yxm4Bxm^Pa
z7)@8D-n%$-(9{$&Ba_>7f%dk+7CX-gkCkwT_zcRDV5)_?7r$7xo{d<{I-6D0WzojO
zMhBLNt_bF^&a6TwJbLdh`CqlWz25xBoDXtyA_Ji$7#!4KwgwCJKUUQzkol|abP=uZ
zv>cupN#|cksQ^<wrgXVo2Tv!Nfa-AxQW=Z6!iXW0$e9lS^ZU`Upx4@Vtej+t8}VjL
zt3lqZdn=_3w?u0Ta3?_Z?+|2w3(&AzYxVUXy_>e7z`lk76A308UAx}SjY@X|6bYD+
z71;9DQ=kEqXb{#!KaoK&yp+~dwaDxBRzNm7FvOhPo-u7?w!@p>>1a6uIP=g2_XM!7
zzM3(<y{ZU)YV~Mkme2$TzZ0~OiuT8*@U`W=Z6Wxj^Fn5IVbMwmxY88QvbKRC=5p)|
z|1^5>np78ieRe+WOtHh1G7-n<LW~L`L8RPr6hHSpyXBOSjZ<|~SLOml@*bf-N`?Ry
z$`4`?N;2O)J?4-%O$-XEPU5$f^gt8ryu%n=!26t%8|g2YK=F78HHS_QN{hH0rFkf)
z7?P982l>B$YHN}Rjq34Kon7Xii=t@p#oWbzW>|VhFAiwz@s^sdqGx)^SgoTCZQ+qx
zB!x$^*weY-d@2`}u{FxMORiv4OAeSE1Td`wqraGz(o5;XbSM5x^*_)$*=Mp6vvh6z
zli6~i4m%%xbeYbI&Ntp)31uuDXo3hNqFM&3yt?|_!*u%l@H*5-E)G6pc<S;Dq+Z2S
z0<9mv`CFq7-0KyB4|oc`3HndAc`}4=JNuHQXPO;@2N2%>2Jywz;sQNC96--cnbA^a
zFK^sPi&uB570t=aV+PO*riBO8i~kgAH#J~{$qI+MF}2bs;XZ<3H+cx;ce42&vmUg~
z>y*;__}Bc<^1u&do>lEuV^H_CcG#DVZ<Y!iB*UeMW3(9D2;JZnC^zyt5T8eg&h+n&
z&`|m7RcY2BC@?b>&b&E4;(9aQht+TZFx7Gb7Hr~=YdOH#$K{?260f#~c{2UgUQ=o1
z9^WRsP1~4mF9{W3f!|<TH|NdP>H|tBS}6WrLh(nX2=vK)EA<KZG(h+u9sNThvqmLs
zji5yIRK65u@<(#WPXc3#1v0%69LrcgnEdU4dNnaEHKhP$P3q&RLCJIw)6XEbSiSKF
z0n9AjS|kO(%-8NcYXh2;CT-U|B4=)9m-6?QL3c=Yz~uek<**b)h!)W%fJe(6uaKf$
z%ekTQ%F_P~{imDlIK@Zhg9>E8vis>l99pc}qgSPVGh)<AY$T=M@0oglZ5{Bb$;e8X
zx-S-F;^o@T_$w)=(QPE`qlc(g19drFb4!NG58w$g{|$6^+kfnAsZK*ir=}jpZaPw-
z*;Oer2gS8fNlddyf~(b5^>rA9Za>#(5ax?4vGQNC1ndipas7cYV2D8Z99rBjat{7?
zoRAbdEygS`wS&>PNgu(pSlxWsfaBfVD0n_wE%E1ft&czEx|jCFn(0JLq`J|CRy&;&
z6A2=0ZDizC`pzW=In#VZ7bj(keoH`xk~GgpdzSrxe1@!ho0N!2lDS24`AuFU&Zm6_
z1DG?KqX^>UZGZEV@{l`^^xMSsr=D)^n0O!&*`@I2Fw%se)&&}Mxu@sx8<{a72`4Jo
zsgKG}k{|GX2dPC=4Bl6Ok7dvKM<d=ZG@xMv5n>UhD&FK}mh<SGd~|*|j%8P=9Ey?S
z;Uc!6r|!FcKx2;t#t=YyPy)|eh_(yOtGN_B%$q5<F`f?wG7NUenlnQ~Z1v(URZX(z
zoV?BUZOdiSLfxBK(xMuJToRC?3NAfQP}Uk!toG`smn6<E8(7&FTCh!ka%3jEPtY8(
zEx&O9-22Vij>&RElUmhi4Q9nmfeA7DV4K`Wpk_SHaZXpj;)%8|ogqD|xZZ}P(HXv+
zU-tp>uAOAlWvwGKK&$(%7m(9;y)K;|QZ6|#@0xCYUY=eAT-$!~ZF4O+ALgDIj}|_;
z6ayHKeH=_R%0TX%_u){jZs39gWBJ&D(E)YO&)vHy6}`I^<JoxSKwjup=ZuSqHtY@M
z52mIOajW7!y&~;LTr6i9*jIYs*@6O>nNszL&)w%u6~NlMvukxjfJ+FFgJ3siEn5y>
z`oQr)f1l<2MG=T3(#Z)?4XC~XflhQ`Mh)=vnB6L$2QTOE2Or=P5JWldO^>6#@qIc4
zDlXU$+w-Qa%f9cONmJ4zgY!NG44fDvR@c+vU^AMUD`GhyZ!9;Wpl0#=`}MbW_>$Bd
z9o^0*i!Xkb=W(lzI&1h;-~U(nqJYR(@-MXd+evi2F28BUz)6e+QlJa?FB8{#T?^v3
z=*POn9ULN(a&pzPvbvyPUAJ}$iwJ4x)PtT{c=1Hr+~t!Vt{FVjrHN*F!nzo+(1PrQ
zP!3v%DnQ}xIy~jn_QSPSGTDd~SA0A@k)FoyGxr|B!c-#8%`$gxsT}4Icyt5IFD*_A
ztjb<=n`;n+Ix)}o;-`px`DSV8_1i_6X`$ZE_08mt9D!SIvX49tp49UkQKxzlC0)KR
z(U0+eMLz*P`@Bh(cz>dwu`je&mW_ch5YOY&!6i7Zt$-$!1^j;ukId1@2YMKrRKjZ;
zea?S(eMB==J2Ix#wdqH<<|ZL|&7g4X#J9RQs!5dC6%45k8#2#11ff1iyQ`55481a@
zu>1|2D{KIa!><4GJUMiedoeVWdhyNxCNlkP)hj<h85MX_jS~kAj|Uq%0tD{kai?#k
z9P5Zr8oo-Hkm9#7;khx`98XVaxoZ8@rfUTbbXJ8-jp^8i3WB*~@P#;ueil5(3ZS=4
zFTWHe-R&XjLH}v$ehEI6oezejv#0K0R9@NzEp=A;+0XPy&0shc=u?XrH|;mLXLJpQ
zSe3V&-=h%0jOx!wBFj|`!YW{wZFK~{Lu~PWB3@?Z@f3S)l;?sesehY}N-F1UQ^5&S
zo!OZ0`;$l5cOOaz$ei}z_=Pkik6C1G>a9mI$2hnTyAk?z>9}9v$upM9-pjP!h|qr|
zpUEOi<zUrYn?-BbLq}h`ddQEmuk?&E&0f!wiW{$}IXg-aTh~%QdckKp<A1^DKS~HN
z&|oakB3XbC*c~*{4t^`_&*D<dKN2*%BIf;pE0tCwl12plp+E;Fa~hl26LRi&q4B$s
zy&+B~w0A1>-TdAM!mgiS*5VX?)Vs@`V}GWH?=u^5;&{3xak5kkYfZOAamD_Tyftfc
zO_|4GUOY$cJSqBJl_-%J7Ool%rOy6RB|3ljTe&|lCRf4f>#fJQ2<B?j?@UEZC`LfG
zSy???R1EE34)rZ+{c$x~H!0*#xxdVZ!>}}!th4fg!^5XVhtod;ZP(vH_JjL&F3Rz7
zoxoY39qSljrr8gajgUWGRX!XL_e3C+WeS4a9|06HO;`1K!}$_{_)*L0TNAlT>X5Eg
z>8>9??OuBP$z^M(5m~mL^io+aZK|hdV_gLSL+hI#yGY^rNK}~i95Aw{mkC!xh7DEG
zK27P|Ig`WFL(ECdpy@qcWv<v?>|+JAkmqql9H~WXn)SseMfugzT1Wkf5N8aq0O{eD
z5CluUY!J7s9Uqp(;f8^|{8FLq=#4jT<HT5MGjxd3dMaQ3P^<Lm<nFl74`GM5_4ifR
zvWsBL(=M9Br?Ln4_ftLZQO_apJ<s6c6F55%_jzsM`y)56jUQ7|ip-XVIX{{y#Urzj
zN1P2|)qV0$nIgBs4}*b#egRP0=f2O4b^t&R=WG%F45EaLwLV^W?tbEp{d<jz2&e#K
z?2ciY{vlRaG5^~8;Q<a?*aVW^!Ql6n@v-cvK4YyT@my2`eTLy|y&hNhP(Kp3*HhrW
z0YpY?@4!g+*TS-~x9K{d?-ZmTQ=7hjSj<PA$Fk1i?mRx&!wdu_LV;bdFjrPpF&)E(
zF+!NeGZunldPK-9#$uFi6p}j=VGNg#L#kIse?^ks{X&~uvfaiQ7T@ZAwk4g+0_{IN
zG4UlSY0~Kx1qFqWf&z+=h6c`SXy^y15iv}o82q?*mrq7&)d&3D-oHX3{9t@A^nJIi
z)C8a*?oExh2a@!DD2jeu%xt@f$o3e7t4!sWD?m;Do!xSUg{_W7yf}xYHS#8_@q=@J
zgvNUu@LVFsmlsPx9~`)90bjeT9frWm8ynw(skewY?uIgf5H?_?uxEEV%pSL2R^I*~
zj@Wnw21O^re*H<H<MH0`z1IzQcjUS*woWTiyS88%r25xQ;`U1(cpa5R`2Ett8O$#j
zA-*!mEw-rkcCXwBlg;cHje_)aAubM4ZIP!S?q@K*4BIoV8U>$i^mEd`f-Q**u)#j$
z@Ac%u0Hq6v;Y0Cj>bymL{WkUcJ4Co@C`A`PV!f&5DENgaukK(tBd`yACV{lSB;=@>
zXDd>LRk*S4ueLWC0&i2UWqYMgf16fL^>=_QM;>M2HIckUF7csS&|T^%%YWW5qD8^N
z-@LVzvNFCt!Fvk%Tzg6iO~Kt=J~vg%oN2NZ8Hhdd#cA@__*<-6B7s6)G0<u*T=koP
zx7Ihn(`)QDQ8HnLFvA81-ZaB*_FLHp-reX$&W2R=-x#Pt&xU*T>ebWJJ^gywe;pLE
zp8=hWs=N@GwM3eBkdUv6yecFD{E-u|q*U2&3xixJnB{Mo<tA3E)DO^AqMhY-5)qDG
z*4KBJU3f~Tt&w17Ng2qqbUGV$q+{WHSOjLpr*I!hd_sZFaq(cY?uahKyY56HI!pN!
z`CT^4GniA6z~|?t=pLlBw1jW3d2ilbmS_|n6xN~M&@G$G-oRbe;YzP<GcVYMaGbcb
zbnmhuV!yvsIr2=R&%GSdRy!j)zt^?5nVACwdX2h5OpI=@gyOfHO8ca*9^}G7-vNz^
z$#fJKWKY^(s$TP@_{>@0ZEPV~y4!9Ma-HM-Nx#rz&#ib&2O&JZR1!U#8Z&z@6cRps
z!vfw^AGh;ixO}dtK5(2RB|Uwl`GP3UyZ5$VV+@v=<-OqEP99k`EMdfNW!d&3pgs`P
z&s{t)u>a~0827|aP6_vTuts5MV5j-f1Pa8@DBadD`k-Hq-jsq7{w_1@oOR`?;#L%C
z%S$sLm5ZZZxw$HTG6X@h*D(MNe>~D9#rjMr(rK37Ny|Y?KP@WYH6a)ZaBVk2Y&|LY
z&F~c?a(41U%`xo=Kg{I1uBfgb$XW>2=NsvGc;H{oaVomber~@Duu^LuojZL$8Q@X2
zPpfmZY2oae@NP}^wlb=K-1);d?Yn@dbZ+*5DHAUl>dO^gp;n}-obpaTI%9fTjY9#6
zl&VhY^ynykKNi+I4>Ogb2Hp|y1r|5QI)lYW_1UH@JkGVYXpbWe`Sng4slAicD@V$*
z9|U6;rsxKG1TE&OZd!pyiIH%T^m1h-NmwKG{0~h~6<%1kH=alN89i=uN<j&ft((8R
z)RcmD?5UOe=eWk{zbVGs1Q_4-OH<&+`)S`5G|&guXX>_f`$-^K!rXXsDBp|mUmW9x
zFY=;(n*Q}v;$30+-LN7lZ0!8Yx0zT%R~|1b%&A+t0GILXH@KfWm&^)nEaN!yO=p?B
z`=qTVoJlic)k)9Qk|5?Oz}l{~+-g$K<Pvpa3O4{j;V03;_#Hf(k#S6ssxE_Wg=gLU
zNdvsHl!~<b{d|(r&lGWR(zkrRJ5N`Y*Y3AbiJ?N!2;Fn*3>L1#VUf~$6R%BiGWAG1
z+<|kv-+Q(?|F#MIU8W*;<S56WTQ*`lp+IRA;77wW#2zARebl_Iq-3)IpHxs6ImNTZ
zS_1hx@G$Jmy1D-c=>~MhN-O`nGk>1V(>DWB`RZYfKNpHLopJe3H1-?!4g=@uR+=HB
zv^>GgizoSg;+BlQ&Ds8fF<pyBjd)UEn&gCYg)B7-R)dv<1<2fWIthApynLU=u(_<@
zG%#;@udOP#lF5B^WJKg>xoy10RCe}Ym&0SY9?zN=R(%z@q|o8lB{qHO#d3j?YZY7t
zr(*u5g=OfEq85yW%BS+RZ|jIV+X|GzrMM-HH_6~>bm$m%m}1MIPo9k;+EFeCHfS7Q
zs4aLYE1V34LSA<;l=RDbbA0_6tU<Mw86`P2E#13OwclXM0r%*xQJySyj8L2GFeobF
z10n7M5gRGM8bEu~aQwO=aV;z1R#4du$M#O7cUz0l(!686Y>eilv%%4es;Vu#J{o<%
z?9QoSZOfk9b*06uPLaH)M)RB1*`SVw@#Ms&J5fXw&t#}!0U!IKtqR2yPfDTl>x$er
z>LFd4%oP~Aq>XExv0oWb26@`niHQUbONa%?yY9b@Q1wTJ;hcZ-fp>>>nj4RlxhbkF
z$am{dt8$1y-D3}8tg3I|GPrU`caG=$Am^+{8yyWni5bvAYlOkaGEL}vDI;+7kiL9R
zX|#hpF<KCvKN84E`c?{@q4kQ?OZQY!3iEEC3%mf&Nq@*t$H5YORs17bwZ|AF@2Vuj
z%1mq%4XpZBBbic}w1vuAHq9tH!AJ8I@x(8}CQgXfo`-a^`?nmzd&MQkqxQ1DDs1@0
za{E-zjne9CS#dodH)oHcPXd$gZ#N5EOmDjj%gUx`88)jjUpw{XU-3oS_8^Wxr64;Z
zOMQ?ek|ILRvaj{0HLk5fsp-1$UYJI%M#HG$t5B-~2a=fElM;7<a<zQ|L^M3HVZ9^M
zVmfxNz4^9vWCbMyG_(t)RBIR1tzHQer{C6O+J4$D`Zf{A3S(5WDC#GiCPWvu=BQvD
z3_62VH^Q6mpnOYg<-FKDnsT{HGq;@II*nus--;)4v+-!|(c09n32Ca|z-plcHLS+2
z+mCkyHCl}LJzE2C83+)j3MS&}h(x?=;HyEH5_Fp8c5}ACh_=L7p)s=Zdl#2A8#wRw
zaO-yPZa@}|NDAulW+gymdrtj{?Ww<GkI}0B7PBsVcuqX!-56DmkIuYq;*S>J8F_!&
z0cvCy8VjefVJo$I6<rslK^jv!BB`y0i~Gb1=U<t>rKCel2JZzk4%Rv*M}9jB%ANoP
zwgW;wpXIMDq)k>?3=vSwjv&sL$96`d1QYRz4m@Dh=Pi?kz^h0JojvSaJ#@D#H7wWQ
z<kzC?@FhO@2qrcePotKfpN?GYmWU7y_2(?<l--*me_L`%F>#>fWOB`YKav@e_N^mu
zztv-@Nkui@@Uk|jYUB6Os_l(e)tzd*)nFNHf0jKAA{Kuqztq`nOVrj{H)hrc?Tq?p
zW7L!FFt_u*x~L8TBB{8%s&F$a>B6aZ0km|?RT5G4fULnhZ=j+Hr+#s9aedfw#OSoI
zW*lne=Czri%4j@@#&gnxipA^ZFx)Q)JoFv{?-jy&AG_T0c6A?S1<hiK&v02Vxo3Kq
zUnctbl?`{ygH*pTE9fRxg{IZ_2B@Ul3-ci^lDvE5u#2eAR+T}nHQ!ruQMI(XzQj~6
zMBzx*JP^dKPGM#0(C%%xj+$k_R3^^pw8&C2urG>k5u83X9=w9Z-YI(j$&y_3FlK$|
z7dlMztLIBNMxZu;ma{fsXzv763M-V$W2Ocr!%usBv>)YN+POy%v}__%VRxcUw$ILp
z*Flen=Sm^(UuxKIv|fnZr+Z{NQqe;JXMifP9~`5;)}~=C-s8q`%oQ6=_Mw)|#+Ye3
z%&fd&j1r-#H%npq30D#nyE*UXb>yKP(WHyBa5(9$<2Lh|`^-WHQ`6>hIuY(-UeD`}
zRG^9S-jSr{IHd{-rq&tU?dbRUmKc##RJ0Rc0Ie1KFcE;)zG}!{qm3g=Gi~#eY|2%2
z>0s6QFb*z@4J=>|o351_mt>~OAUAvR@HBtqb6b1dCYW$bnbt=Jx(&O#a(Ugllm|y|
zs?cRnA6A<f8Lub9Rdi)S<L7C7b6lHP@$MYDS|RqQy+G3599efb`SjC=_o|z7W<`Ri
zgiXLN%8<^0s{1P-u>_BCst6`B-<pM}ThSRM#K-GxfMVVsHm(!u3NM($bru&>FFO2`
zPUiP+$2_V1^pnzvO1A#sH;r}jEHzm>60gC~O3D$N!6Op>`|j)5_HeC>b4OmrLfJEE
z<R<A~_D4yp>jcG)#uPWk3FR4<SS_X)GFWj@rQz>A+>KjO>Lh}dDn=R3tc@GX1hwlg
zb-_x4?;VH1n%?i(a>|5Vy?Y8%<yf1z<8UEyxk*BBq$3H&W2MCdz`uXyLhfs_7&xf_
zIH_K$0IfeQCl(d)*wcpxo0)09w*5SheNM()vN@_8<>i}2b|KA}I;GPV(2z`TK>t?A
zK`^h&WyX(~JYw`}8G<Cgjzo^NF>gFC5=Jj7kpmdR8Yb&TJ8Y>>4|g5A#}ju6YxdA&
zWYsmeLsUVVzkcb@H6!c*4P|D6i4YTstq+(RVJqgxyU@2s84r8gFzQyk{7p+cds#~Q
zUT9=ORK_~4lD^JT_TCt+hwmZM(Txi=Ya|^7XWDP*c3GY1<jUUm_Ix~<+kZ_FDQCr0
zBg;Q~3a5Ow79(zQ@^zR`{OiNpAMX4G9H_ABZvM4rR7Rg_^bwyezbEun0Ij{zg+EQ3
zhke_vxjg8!3TQ(eTlOSTc|0N6eU}Ct_sfe-#Tmi3V~Ok0g<V#|O2BZx`mXhHcFC5V
zJ^0=5skQYl{hGWSu_xd67rSZWMVe#ZKSqej1ihC1*p8MqLmQ;%zio!6FBFRVd8jL{
zq8+^jfnP2co!kOBI4L;)T=ox8lm^fmW5k52hY%YL-0ZiWjk=r;P>i>^I~%*%aWZH%
zzE#zBM4ztEU6~*VD8)dd!vsuCS%veYN7MSgspoan;GWiyfTlLc>TZj7a;By3YpgOA
zvFwOT1=?AA*@<Yr(!|3U^ZaCG28&(kY^H4k9t)upxe{;vog$d)slCh1!S!^IMze-z
zex{HmZ=;?(-j;{5Z-**tAR0&pD=nx-xHf9o!H&Z0Zv2;7*Q#pSM0&2m=o9VlrlD8d
zqx{rjmIELwmHWBl)E8JG<bp6DGa8`tIr8v&H*GzEnNlMx3|gS47A)Xdfvf+y*{PYO
z8iWUFew6XkuCGyR;|<YmLGOjj?ZJ<jX2786If)2_L`cgU_)1W|G%<lmt2Y5`fu4sR
zsRikHz)Ui8{H)JPhUdzfOr<<(cyPX|0Rgpd11pj=4`3i9u<D<s=R=+Mes|B)A@V%w
zkWE`oK0T4`;UHHVHPvUXR7maiCa$stdf9+Z%<=qg=WNfxIO%l3$Eo|zFQxSsu5|S+
zG(74XA~1>!#HhLIR!!@TFv=2)xJiF7z1eQd`k6)+K+7vQe}h(CJI5IGf}$b-`fyge
zbtUMuH|coRQ5xN-)$WyySg5YvxLXTL@2H%NC?o~PPtnTdhqiomvV(4z`AYPDuX!OR
z#_IlENyLTY^>!WR@xxt>h*CH?vP}EUYjD@6S@OK1NmlO2c0H6!Y<m~A{lv!;I1}E_
z6u5P42He8VLuzHjmch!k+%6sR$+joT;$y?GB}+#1xHiaA`qF<as}-Oi>?XaX!YI`n
zTClLN$H(1BhS$fdgOdhMi5>2`E~}6{=RbsO>*fy=1XUO>>oKZTN*(og7i3D8-!4P{
zBCf<Z%$$Ynb{>I!8&=Yr=%p~|_GD3|EI~6zt-V-^%g>D2A2oQkT&NsZ)mpK*U`5?D
z^6T^hkycASO8Fh$wnlPbSR~9N#;Kycq`byX7b5ROYpklb-Ke-lWHVU<oDz2r``K*e
zh;I@<b-!xIOvrEZGk2)`(o*Nx=qefhS^<z+`x~9=Nin!$#?4-<w=Hl%j^{h{^`^L4
z5zE@cE2Rh}LKx&P!J9ZWxbA~|P>SF-jN^Wb1s6S6J)sivRO^Vb%p$wzI~)XvC>)Y{
zdY;^=>456-4pp{a85QQ0`e9NYA=Jl?synP4H0TPiaGKo7o5Rdf2T%4U+<0yR>j6D!
zo5xif^TfI1h)uJoB%Ptz85NgEt6*>J(kh6&|8^j%?%E>db+*UFVeguhuDh|`6HyAN
z(&DNtyc47z%DO^V+Wn;iM_#1}zo^BLyB8AUzCah}5<fjs+ezFe1Mjp7KWW_E^w&pZ
zs>xyGk@}9C8pN@&DKD>~1`i}H`EX)>>>r@y^$|^rkEc(wYswL8{UNc;n7cTsatvNL
zIK4^a_m3?fxi|^j_l@q`j5Nn&FQ3ZPS_n4Jng(ajIJsHSNt|T+3$s(U6}InqzxGD%
z9Av%P%sHNk9_}*j!y)|<10x4A*U@f!H{f<-l1YMAJuGL4_Z$ufhd(>W`*R)Wi@&id
z-7?L3Gy*tZ^Bo)hE^@x`1Q``YN$S8zJ_tjK^vJH!rLIgvz+HJ=Uu%0@bv|X6S1-0q
zMK7)uS*$!_IqnxNQ>qlLE+?Sps$KrJx!xGTta3XMB+_S#no7+K(Kqa0^*KR}R#n2i
zREw(;)C^IBwfGZft<xD%)xfF_OR^G4jglz8$(qr!M;PUQ@-Wtr=TAyXS_cZA`;&CN
zissn^O7&>1sEj0B4;NPO*0#z}(WgFJ;#?{mSGJMa_pl4jWX)mUA&$aR%4;5Vo}CRc
z-klXET0P*7l7HkXdV?zZ+d{Ng0cVcTda?D)k*pn^Be5Zv4yt#k@d}H`dUV-KM>St<
z=;qr_T9v?JWBgU|hU^$UdpLF~S-W&rSQoCYe`F%87iNTk)>x}zC`Yf;$NJiM4Di#w
zbqPbbo{=d5@~j7ih#*}CbPiA#>a0=H4JVbs-B+!BHcGz*jN39WhQGqKC?7PI=@5{B
z0&7gH^M`UsNKOn89js!V<u3bo(gq`)wgIC0j}Bp1lK3a><dB>xRD!ovU+sO_1aQJG
zk2mgW%h0QJPZZZrB0q#$G8?F?xP=Bce)`}f3hU-rpRMS%eZ@VFuPJ6(k$YyncSH3s
z6x@7zLpzpGhp*Q2M0Mk(`S`?u)&ac{b<a!q)0GqnY*1vif-NOrESydJD+%h?=&9Cb
zH;!1qIC#V;jZ(7vxSrX>TWl~O$hzKXL)_g=+nZ7i6HJT}32H1ZDHk3HyqIlvZM%Nk
zA8Orpms4oroR|OZ2}9rFEqwv%=7MCU@qsz(<P32|CDzj2q0dKTD;g1TM3bo0L0HSB
zMtoyUcH)uDNP6D8uV1B9?G$IN>j(0RW~PY~!QFs?=7YvVP5WcIn&ngUu+9sLbSa;p
z-hdo!hPn%r6M_X3yACS55xaS>7X3;~w?%*5UCij(T}-JO0#p1YRX>=*s(%pwktmoL
zetW&FirC7uf^fo&c}ZjwXB50GA9R=&kt@29BUXi=B6T(r$3;ZzS^E`-|6ZHMy0O`I
zKKll%!@FEH+1%4zWbmg#xCWWE%VXB8=<%7ZxkwK+6*4=LL}C($B@#hq#GcF^F6(HE
zE^TK4|CEaegZ!{N$R`n7u#(He1u+uMaF42wyg|xxsezW(27;d^$IbJ^g6{U}V|VZp
zGn07~ZeG~!X|yJ8`P}~Z1zn}Jk`;4E8f+Gp`)(8I&Z^uR+hacUwTF<KE5y~SVVvg&
z^7kt``6ZmD|0|r1{OBX7a<;p>BtAXFafX{6Z5)WR_Z$}p7(oC}biLq;tMGrgHQtt_
z*IhZMOknU;w*Pc+*M91T_QJu+EP`0$n<>X3wccowm=?i{@t9K-k)B=gkDN)zFxw&O
ztM^`N%?_WgU;ikQS5Wv8Ln3CLxVzH9pXs(sb-p(vTN6GGf5UAFj1hA=9~TRlCH4{v
zd{1cv+5Jh1sHA#6K$XvSZAdpS9?k9Gi`b!53`5g{+ia`CbYb=!Xbf?2NLI9Um#7{u
zwqn>^a8j}gZ?%B<bh01LJhfp9IpBV1AW6Ha_ZL;r)@n{}SnD{0aq7e}s*TN==z44?
zbsNJ|d$ucqGhMY?Zz+?z2@Dg>2*Zps)k3UhG05(gK(kjRIO|El&$*)vMU$4ZEr#j-
zth*_(0~2wU1ff4_09l?6{0^o7FOlp8gZ{{f&#%6bg3qBWjl`c&b{hn&CtF4Na)eQv
z2g?{Tthz~I)e8$17JViUUTzhBZZ}(Q7gIUWn}(e<DB^11XjLdqpJLtgGz?U7;M6~l
z8~K+$7j{A8IYjTU(bCcN*3IaI9kt($%DqFY{=!t35KSi1jG(y)5Ghewb#$I`TgALL
z#+b<Yfd}a!aFNt+7k(Fp$(AiVIO)^r+~t8wsc^WFC|fyaz78E=O$t_Ud>n^-zg{Vr
z6-{;<@5<798O-uKp_@3zz7C_>NQila+Ua!8QH*<(tMygO0ajzLfq<zO(xdhaC9!G3
z>Q(;5a<I0!;TetfuWA^-+j-k9WY=v4GgL!NzuzDJX@mmc5+9!zCrtMLb#dN5FOIdu
zdqQ;Zvfff#;jnrjmg5hQqHlr#4yJ(BL{zWT1A7F{-7(mkE_)maX#EzA9$rue1Ua$2
zG+Hj#=$L~g!q-KV_;>rUzT6Dk^VOc&8b9fgqxZ_j22ZAcD;E|{AFUi%cPSS*bTL71
zK)z9Dj-O7;Qr6pD$QNu@z^smc%zsjfw?S7>;p;m{+DmAPZ=E)6+FU~zv+V0KMgSXc
z)<}Z8veVB*$HYqt18Zw!vuoT}%lu1s`J=u7p$ST1=I#4bj0bF1u!de()8^Y1F$<}Z
z)`b~p<q2`y;I=)E>B1+^Ic?$3GBsE$Tzty+53?<ls&y2aLL{`-s&YDm^esfcV<kT9
zn4p4&X*s7!d^d;%h)P`BF04uSHq%_E<v`3r5suIQAR#k2fbAzg-SH-eIA%&JFal@^
z;B;aHx{#B3-Pt#gkWj>pz=2b*`t17gpj{Ki04)O@9etS&4i7Pi$PyaY_SN&zX&alH
zJBdk}3j+s;o3dw#CC$pMkeAEuHawTJhLqIQ%qm1*6kbCkvTAXsb7EOfR(xGfORh($
z)>`x1C3rOJL9O8EJU}MO%W*L>&Re@>39EW4S5GZ#2XGeO-7szSiADj`e3n!GUe8%K
z?eipaU;N_X@#t^KR^)0{?(?DJ;G4&zdwMLodeuoTzMCe=@CtZ^;m|Gpx^HW(xz$xO
z-pmM59H|dAbk79l@0S@IxH5+}(*1?u#}*9k(e<;>RY`4wOy9mEoIE7Y;<p_7Ew&U0
zmmx8S;YhLzgX5*X3Mk#$oVtToVOSZC^A}9SHZK)=w&R!=)gfzn@9Y1t{o_ywl*CuP
zrT*HfdH8A;$Wp%J(}1qlA4?`>+l#KMcd<J)SSgt4e!0JsPzr^Blc#Pylt{N+sK)<r
z9%qs=ja^h!)Ce3R%4oMH4BB(SMXNri;>MLuK5Key<4s<Feg@%PquK#^fU;w-*TvGm
zxxP^anHr$ACN)IxC>NmmTUAf9N$N^-Od+TF>C_sFT=?5`Ka%&%+ARgg9<0pi&=2iU
z%lB6x58OsE#M*XTI+2Rs%QU?U#BNF5*xKrJWK*GrVsmz&_BnA>V3hDb)(u!gaVYTk
zur6I=X1FYDi)aC6lxO7M{R{b>|If$|Ss_li3L`fxc}*r63T7UnHn@TM0TgQp+;Asd
z!{QetzH0$&4UoN?8`oj;9zAf-4qxFS$BKuaMMWFN=H})HR}Gk@X2&zp<$2(p+Rz@-
z3_%sMQf6v3$1>=sj_Kf)q|oX$yIMqK0R(phnSQI^jvt%?Z#m)~?lju7kr_PIB3BYw
zzt%73Hbs0D3qKiny8KT6F!500Uh$-+6GcO?OzF>$%|LS<{c~tQrnj;a`~B}=!Sih+
zIQmIy<Fsq@i>J(`FTFJH*!m}nL$iaZsETGiqtSoAp`xYXowD_36pE;M`<ImVM^FP^
zNhzPH5(E4nsziwWLa-hGBG}yjXM+7jmGp=88@XX~4ymbZsA38OsyJytc*PzAZa)yn
zFT9f}P?Ugm<vSZ@VRAh+QY%ww)S^F9@dL`kk<<$uw>qH-_78r7*n`XVL~oM?6Ztyn
z^63|EYZZkHLJt!?K3{eBmmdZ$-I{JA8Mud>Qey(U2+F>_SWqIxt+pI(RfE@CQTBW%
zcDhwITX%1W<Gt-_+unl$I75qb{i^?X(=r{bea$%;Q~u>uSSpE)df9GHk^=pry`3-m
zOh!sn4v!}j?P9(9zj!(y2$Y!TphGp_PtXw^{(^_if8inCf5byGXNY-?;pUsIG{58r
zyQQA5tWW++N8a;KL>1kHgt;7bz4}T$3Vn%yri42KBqiH4v4Gw*6>JkwO}IH(eyRIW
z8)nDDr6#EQF~z9`k7LpHwG8Jb+S5j(jv{EHzioTPZIO=z5<hB|n^7_-zUp#?4%J!f
z2YR9kV%%`t0-}bdX>hv;22L+VsMIv8Uf&`!tqwYFg5<RO=A{nhXbqHbY3z6fdjhB3
z^ugXQ>&?Ugry#_S{WoIh`ay@EDi<^m%<o#Yt(oYtwM&%i74vi-uE}XN#(!{GxJ%np
zgiU?flNsxZY-7eI8p0KvCjJ-SW%|O}^!{RPMx@Uke(Em|fB2t0d<)qR6@%&L{A{u(
zkRpCwyVv~JoiA%=yIWKcD9?48vl^-<85KflG*C4_2XE87L+$~vu|c_9w`BkiPCz74
zdIcFyq2?{C?4m?cS+o1HdyG<i2sw?~*|mw8ZQ0OH+a^e{Y3;Xd7z9sB5t?H=U(Rb)
zw&GT7^OY`sSdamgy5_U@#ENqw84ZWK5wukZIpK-<xSy{R>a5dU&NPrmq^Z?Lf)ur~
zyj=L`d73HnJ}NK#>ZD^~Utc7FtCG^K!pqTJsLtn4oLU_eV-Guc+rWVv5tsZu#PFx>
ztXIIeS%lSpZ@|C)A|UwI>@(;1@r`M*p<VkKMx|H2xlS!g@95ces}?WyX)-uR&y~A@
z`}rbRy`hZU0g31E2k|N>F$r=&c`gDsA%-Dk0)m;5unK1qbpQqwfiU7fz`#7OuS=LZ
zTJ_ppd`MEXu}Y7E8EG+)95_l))#;3<QiQkBFPwyP<lD)Mvjt8bCFa!@r?c{q15N1q
zaAy|vWj#sW6(;!R=_=Rxqvbkbju+ymO!888)GtTC9j$CHMcVoYe|7YY&TGcdAo5eF
z<1^w`XuRDhpl;>rKzY~D{0ljx<sd#Xh#t;*p+qmlo1C{9OiI|OObJ<{#98&-C}+;A
zZs&nh(G`WAzIW0Vo*}P)E>m@nh3zqZO~Q-P8OKw&S3sPr58q`w=|oVg??Wd1LS;Oh
zvFTCTxVAC6Ra}GdZ@!KY%-NC6T$a0dM09#fP$f9UwC$FjmXq@X8Ho0cgwz*|nndtc
z07Z_UVdGx-M@vj;lFinRFwqb^+w_Z$4|)TbaKG$xCU-@vqFn>X*wMO(fa3)UwD!=#
zs-Jic_Go}Yf$eQZ+8j;R-()sUe1s9WH&dY+XtkT3mIl|9u#p{vZ(i(0ODzwY_%=_v
zL0<4PAmpl1PW>k-xRGlD`2j4H{YIkyO!_>G7~&WLO49OEIjo}2d?;&`@mG;Iitb3G
z-{%CA=c|IW6$fLN=rvb@$GnPs7Zr}9^*OO-HHDWa-ajHQ;0;!*?-XIxm}1;I)Vce4
z--!KGD0UM@EAP#@hdUcQ{yhOj<N?N<GtG<IVz6PYF3EJHzUF#%2Ft_SLR&0f4SP!4
z_*6|iZc_YfGwwS$*YDT=inV59z*hgnkeH|?43OiW<(;@F;xYhlOP$d^60O#0PccOb
zpk<j<dl4RqNdy3Q!QVFX;eQltAhF}{9=r;phSI3_iVBs6h(?1rQIG_;(_m*JU$U+-
ztE9I<)mW+I=InRcuKV_nY?tlqpdW4Swj0EX2%<$O0i{0(lggZa^%X1<-^MY<<v5^i
zXxLV~O?5(v`F0=0RYms8QITWyC?SHbsxi--wJ-}WNp{=+0}(0BT%;mMjX5+)+H(fx
zsocMD3Rin5r>5;!7LZ!n*jFf3`)yXl&|A{xJo<eJ(+OdgS{~!tUHNsnw;PN3UQYiI
zahKoHXB~Ps#}U9%s$rjv=I@u;*z?j<;6EpTG&nVeYX?~}AYv1qd0N8EAFH|%`p;IC
zC{X&BRS9c?LhFO`f0!`<8Jy)L9XFV(C1(OH`lML2Q`+Ag02kA8nlmO|ivd$4H?kNX
z%Ztt*RSF5bI83^5`IK3in7ZL6hMyr}y~m*?oY=gZCqp^f0OjxqoGQ_{cT+};lT?|1
zkJzNG4+H@X88g^^cfB@gLj+Gny`Bs}4`SUyOGfrebnAN4UJm_-*x4;+%tQBlh>kEb
z4f6%s+XnspW*Dj>mGsY*2+#;aS1K^Sodc`*)I$FmLij+eNdW;QyA54aFaWLJwEZ|q
zqtjo&wdF5x#s81sx_t}`@Gy}Fg&rxAYY3{83eyINzW*$uDGE~PqZxz4r0-Ey)rM@N
zg9j>h_9H^sEN2;?c3~U=joF<uFW&J<ivGU#2NmqVwqgu{HFEE6`U&KFS4*&opWu)c
zDF&L~IrvJ1bA{R%Qr!9>GnhUH&r&l6YF-VvdY>z@eQRw*&_J%8IG}oOp#>(xRj3}T
z00L3!GI(o6suL)?G-xSJkZ^@H9dgb_N<}dQ7h<dY(R=^LG<=1L1e(O%$tZ!;&iLTC
z!8hg19n$F1mqlp(YY_<k<06RTfRCg6wQGu^(E$>lJr39!=jC$>&$b)k`uwMCLJ>rI
ze>k?E`(YC_BxDF(j2sA7t=<QkjaXqS0ckorrw^RWKt%uy6=~zrT{T0&U+8K8Avy!c
z-{0{nO!K%~*U`XT_#!aBJ%OQ~o9FD<1Gm+go%tt%u-2J#3-|-Wl#KcAQu382+jD%b
z%!czCnJvGN&8@=n{%X=7Pu&xt#ow0w=#HA_(WFT4+k8M#4>7Xz{w3ULOo~2>a#q4$
zapg;H|0U#$0bJ{Z4#NMBafow)1F5MOL}Q{c>XicAaIGppNT1*sT794iJSvUhgwjR=
z2jVE!!&ye<LP^h41QRb$X*D;$OaDy$<uvd{oo`3HCD2R8+KIZHyAA8^AQt_{+HD!)
z;)NhgV!53^ycZc>!53UO8BS6HvHc{HJX(FxPq+roJw9fd%*3jN-!-Njt%q-lQS94G
z1(nMv^gPV9;g>rjpE4H6^!7xk^gYi^=?=XeX?Az(0_f{51@qO**cV-7$Zws7;FZH&
z|Dk{ZYS<6@H_0(!?A$)OC6iB3JhdPMi$eZu4f!Gmu&ksK?*Y?~zVBS8RnP@_976aZ
z`015xEXK5un!g1Umd2t>6Vc426#X(rfgxpk<_1H5af7)3%nf1_ebkx41XVn;m{$Q<
z!>B^Tc}e7{xRGd6tuxs_0*5fmX=v=0&F6|C0q1IhKC*y0(zjn5z+*F$64GHH0S2y^
zaV5>G<I+#ZP7@v(PUgO=V%hCj;Mf)Yhz<6667aOg-%AxNX=6@Rw}m9tdx;Gu@i3kG
zzAx{j=HBrWsnT7y$ehQ4M_v1P_|NVh7a}(mM@Yq(uZFrUav6pZVM|43%c?RZv4k=;
z%DPFVF+W^+@A*g9A&}*-p*~XL6%kj@ehM-*IM3W&k5b^U4E#4|B=|i%x~>RWO)j6F
z4^MsLi}d}H(RuK<=uNa0D7Ox!rC;+LGZEHKxw+=_m@i8iAeNag@pb)0P44?Erd0gT
zG35@7Kg}PH)mIojr2;@)ZdpKSY%EGRE~f&vOjmk=bXwqeu2{bZ50I!s=4UTKTzQ};
zHWFd@f$Fpyx3#oY;qC116MfNJG38<|!#TK7um*(~Mh1DMJrC)=A74am^gx|gnD)*3
zL+(&P+?)s?zR@2AYTw>KQ0LQ789lV-A#wzBi8h$h(pMTxgow;~&(P*$AF&5WO|$<3
zBQh#mrfhG=%O@erhq*gS4788hMa##Sga23hREq}~(fmG@k%+9p&u_#34`?6#-3eT@
z_YY5cPM!mm39LYs0V((xS~a*UNKAE+k?B2?C>2{B;^IvyG|jXtJe;JPP|SF4AiQ{g
zU4fI}n88XW0`r3(K{4Y)2D4IF8MqK0#)+|6*!A>T@DhvN36scnUUgK@JYB^5r%VLf
zCO^$sh3OiOOW`P)`me)Qf>3FE4QRSgIuxX}<Tej-D;1-t3k*6QmPCki6b&M<arWvo
zm;Nq#(<=9EIZOgvaJ!7d{_yUh!HiI#131@zW9{zbdRB#<0Y_PQ(`d0|^FPl?OuG^?
z@p=M>zeLxPnlV{WeTM^>0fTRT3CZ2*uk;`fUCD5=iT*=RE~B%U<u}tM6-fl2ZE;f2
zs#(7?ro5zR#h+Ey#(z~=34K){&Y#&pnNRO^c4Bk_C2=CN=X1X4J4-;R0RE{wPe5sY
zNxI7#0tLHOLa4k0B6fgzl<!XC*5ukNBFS$ZS5{;ut(uYZZh&g~v)9^B91}&^s~kP!
zRFUaxfwpk(;CFn%{lP)GmEyGn2I`aRcMJZFXr+ox!acM=rZncR#O6VDX1jBx1m}1!
z*6qHf9GPsBK3>&TZiTS7cI$+a^)s`g-6~T67RMrm(Ln2kW?DdLz>}ydD0W&kPV87h
zLOJj|%fA_w6!@n|4W7#5FO_|nw1U%hLMGp1Flc$BQ!amsgrztkYyoSYOazce__{4F
zK#!;~lzygKjL%ep^YcFv*?_bqF5u^rm@Gmh^;#`F7ElF4$PIvFRe<7`H#~|!GZGO&
zuOjHy$oF-H*ROf}Drz-LSo{pH(BqWUfKtUT0i{<RsDjgrpOt1@TgQv?_9q)Oah$e4
z31!hcogWzsb(A}8n3hPXJ+?iyH6vp#wIF_~*Rzv=RUcbg6bjbv1QKEmL=_hPxb+&s
zEgDtr$QJC}Ri6z>RID6w1m9>(gbbo1R|E0lTd{o#e_DQFI>BjXBBMHM)|`GSLD)D!
z6$i}-Gx5@o|0+R~zmcP#2>eEd8KZtZTx;>1$^Q-y>_wA8wizG~l8I*#3*<q3)Sore
zn4f<yECUo80dOt|jps1W!AFEs6S*2ixkurf)N{(+1yGtnLVTe~(VNKf$vPe#$OPU;
zzCW>f5NoIuK=b(>+Lr2S;X2wA8b)L(k0(*eE}QF;4h+?9`E=MYB~sbw0h}sEc?E*|
z3TD@ZMfU3(Ph~<Gy0vuqpS>a>EAA^WnMKmvf^d`eRYd#DZC&J44ls~w($#7PLRKEj
z`fpJ%WpL8MgaU7XN)j#$|DKCqr6~7p6XVQcZSC-zaL6SRh){zd_$dRTe^6`S*^9pi
zH`&NBKY>hhjM(+YMI01X^X3S}+dFY>y2bSBLu-sNWsCf{?-E7kxVz~-mlmCi(x%?#
zU~kSEP-<j~5z2A~5RNViprX;kL=pkmLNJ-nSxiDNfQF?QmQiT!{C74G&;)%T;8EnB
zHy)I)NYO0NrXH{!$&IK0lHBkUOuXF%Xw?=915rtNJB;Fr6HxPQ?Xp2JB+uitow9{q
z?X+u*^yXZNjFfs#HE;<Son1k@W^Z>9HHQE%3V+iZHF$g)gszkQv3}Euqm!Hug8z4+
zN4k@3wy$VySfg+>b(Gl{5xqhH=_Z4-gs%C(yeN^875aEB?#N-hlj7>8WkYwWY7cA1
z@vYIPe_f?uFfbND71khR0J~DxW35CKL7`i-^CUH9qghrluV7vQ*1``5+_7nY>ND-o
zOMFhDZ=C<V#^|~9P5|xApJIL7KgIfUkAOy~peqEc-l?@l1ho8pv<MJqwW^06nr63(
z0-^C>uuy$2Xj|5{YTVtBnXU5<bX^_P`>hEiGtSN=?<)&2fUv$R1bQ=D@x87+`>gDq
zfp?kZ_wEXt?s;iM8;7##n=Jx3A1Y}<DEkmP)J={iD&rK>ftUZ|-|~Z263?*&-~i_>
zYd_Z}e@Zar0`>ss^B%B^1L|7-FK$Z?6bjzsv@8tx35D+|z^U@=mb1}vq_W%xtnj$+
z8Mh2!3!=6T)(kjE+c=m`P^!H&_q$l^aVg6fIaF;RC{ASUNei~DNQ@kc@qqEm8&x;6
zQu|~v`cYcsvEzk#8|b^XVP-0b1<+1uvzKzFNrId@8C!ymQ?WDKmR%K6drTHyoGRtc
z!3T%|!gY9o6Ya~5nmCG0Z&TC7l{FNozLWmz6BV}w?yeS7T#B9;5Pd$)=mA+dfkp_Z
ztA=0YQWM=}CdK!LSA2NYnaieyL^NR^+iu-%+zv`M6+sHQU98W)Etn2)8(Y`Ae@}S7
zn0Sr=kX=P1tUn{4*8rLSz9z=!13<<9vqeW#yUq8ZvqgiJj^jLnrcFJWL`Yt)h3JeF
z;=B^24dZ-b{)I0&S~O4>b%t_B4%#8qw!*$qi#bu%<{XlP+Jad2+4jC>4YC^qP!E?j
zc=gJS<4r$8M{iWnLc}$kG+oZF2#Vr+AGKE~bHdpS(q?C}i>Lj}tLO}^giwJ1L#?AX
zpjxt_oOEmD+vfxH>Q?sDNd0e0zh02?Ic)f^3nl#3Ch-AeHc)0QN+TAQqT>23?iGx`
z?5`dn%l9`wYL97B3qKI;k)cki1-yLg>oX-T3&C<Pectcy_C#9H{;OP*@wr47#tg3%
zHlVa#TMky;_uj&M(d8jd)Z;osJZU1TQ>a)fXg?{!?rt-OkOH0Ef||AqQxa1lPFlF2
zT3rEtKumIyW;LL5_4un+xM{Zvg-VzenraB$t4(%)bT<4+n5rWAje-!6CMJQV|7)i)
z=Jyl749?msy21!l-hhqxIS|E2#L#kZL-x9|pYIxobXYst)ra(B%!*{PvGu+?kxXYr
zA`47NkCOT*`UnE4%c!2o1|-k)^Q){s*c59LhkRnkh>jsn?4|NjsJGF?iXMRe-vk!V
z;THMd!Yu*tRg~Zvr-08|1N250M|FygL*1u;zDEtAQhKLKrp&u@VlgsQdGfZSYiGTU
z+gmX!uT$xzU|o+RwHM(0Ir>n*F2sJ`g>rjpj+91q2W|=g@OHSSy&D@Y@9**!nicg`
zZv8wFjd##^)>RG~sjU_MuCPI^u7w=0p^V@{X`CNGvwPBC?MACHx1CT)EzC+gCsSOR
zwZZOvs_{vR?=qMU#`(~uKTh@PjTuckH0ELh{?H6pYge+RE@!+I<Ys+P_0Q69wDVo_
z?qBUYSk;D5mrI<eJD<4H<2%_oR;|QRg2Iy>&%#I48cUJ0H|ULd2GuQnDCdzMs9!5F
zyZl?o?gRu1TBJ`pXJ#Jxy(n8NV#Lu*d<+eR6F7>$0^g+KPOn}*8BSD~6wg}o4QCUj
z3aV7IoN2=90H7=^K$tmRwZRyt4GPsOQcHNTyziud<?-3RP?riad(~%;W%!%~L;#kJ
z^*gCN^RwAmKAT-qncZq<(z{+KA7+%etPC_Y+Fvn?#kPyVxLRHw6gK`;BJ#0yc*NB4
zXi<X!YIRDMD-=<9Zh6_xRg2S%$K5tms?uI=BwiYmucY)68!|0tyoFDzN=ZoUmuy8%
zZLnFM7TN6K_#T=th=WxH?#dPvZk=0vm!R|4JBOOXK)Sy98(K*=W<9ZN5yXOO)K1Gp
zc)d48pn=Lau2LRo4DXPG(#1UeprhKG5Y8|su|n~;$|(7UZBSZch@oO8iqE#d@00##
zi~iZGD49OkL>6(^ai2dV+^&2O!)VfjTTi1ON2^X>v#Gt3nnEb|v|oDrA*q`yhsubI
zyQcDc4I^Mv<iMh(n!%ffcNiD0R?`9vH~<*D^#+#AWB8>mR#$4P9B}*VeHy?gH~^G?
z@{!2dFv6(zy4l3^0Lo{IOFV~}`o9A0j>WFyAM>I&b9XSZzk1y)gox=}1eaYHsZkmR
zo!8%9RO+AZWB{CaiRPUI)2F)Y4d>NRU?N2${*W+4F_c&w2TJ^Lylp2?g7C?*{l45*
zfMSKAxEDdzN*=u$9M;;Ka4C=CX#ub0TuOE5^4q`(6>+>qwnzz%?VR5`1hJynnAXGA
zN;px35kxbY%d=@r^klA<k65bG%Vs+4RmSUxygwN&Z3Bag6Cxj%4nQN-Zl(`osZfho
zrz)0|c7eFM0u*Z>BqgbNtP2|75(-I|I*Rc9o6$l5lv&E1i1NRKHA1jlh&4LH0Xrta
z#PKP8&KGd;H3Krln<PcgF7Qr+*%@d?z~y*O>HHuBzW(|n3K>Onw6ZQkeT8P@+cb8o
zuD*zO@;W+^>FKx*yOS`yZs*@C^}C~EV)V^>Grb>O7oAr;iyi-pXG^w3SYm*Rs&5NR
z{<4_w84V+8jPfXTBfgjTdLAqv+#B5&j2P3GY8?rLymx=ib>ph4pfz9RjPvcWAt;z}
zGl?iQ4!N$}(>!jruc9;Bg4G3@8^5DCsQBaN+qKEDr^%25q<58fJ`V7B$=H)w>Atut
zd1CB(RkP&sN705WMY1^fE!AQ_0DorDEk&Ram0yAfW{9cW3a%pG-un)(RLXaX#)3{~
zDLCPsuzH(}@@X26L4<!a*(NRizd6h07j23O7NF6!S$M-lzSk&baM)6#(SSlSlhOvT
zDIiJ#2$jbe_&?frs(>7X4-{azIC`;^obmysQzfc~Kz1vc#T2o)q=ZeCl$RHeL@csr
zGf6knc7uG55J25hHyeZUMtuXl080MP&5PG-rW7W_PVQu6EF+rrcOMjFU>(I_b}r$#
z4SS-$Qz}-ER$oLUpC5~|h6Zb7BT|Vi@m9eF9>wNs>@yG<EIsaHC{4S`MH_aO{dSxV
z&%1cY;aWUD-+C1zSteid7KGnkoo3F>4|}ustq2$`LDga=jyya}<Zar>ODu>1Y^c?K
zu76n%D_H;^FLC5RIly@o`v42+i4xEpQ2QJRC~pm;`yqeuH3guPD=Z(5bn<oD|F>@L
zGcm0CQR^9^b^DFU`wWF!MyFXz_KNubMcG?GRiSn5!h#?rQj*f$9n#$j(ri*`2?6O8
z5TsK=KtSn^O$$g!Y)ZOALb@BI{<ZPE-}~M7`|ln1Iv5NNLp-dxW<2wmv0QF0*1~sI
zSwDaR33_|>89hDdPv}~1rBEh0Xz68gcslF<KKzhogBo)^;lsv9ufm$EzJ?t4llMxx
zC52P-s78k9cAq?)R3|%X{H%q~uFtw7&rdQ|74+4?JC-qISVr?S`I5;DS+CPv);w*Q
z@McgRBv`39V9<6&{_MbKa8+lc$}+vK?D?8P*x$a&hGE#&6-P5hV#n)crvD#;pv5+X
zBQg*5e@i00W#NY4vv&x7!*>3`SA*?fkYzlIm_okGdnG90o}b+FjQQlyhb_4w6U>A>
zu>sm+g$)KY5a>hW@Sejww=23hT{bmGSUAmK*w2!=k*_b$ChXozX;V@I99lsD{cXi>
z>-cI@A5#~qBo<b(O+)h%+&K#vx?#y@V3M0V>(RbCuzydgFi4f9oF*(rkw<30h}6<z
z%cSemQ2wA+g#!({+AK|&eLW(!!5k&KcbfVsk%f<X)Y>l=ow=JAiNv!5QBMXoBX-kl
z4`20CrF5LV8(aFu!2ctiK;Po6FpORh=k=EYh!tDb(%*yK>HlAHgq9tgaoR?j3N%xm
zRsxD2`w60YTb#UpxNgrj5y(4R|8f8ljliZ3W5*kG3X=A0x@Yl0@-eF$4$t6$;$U(r
z#(!3j8V60Xq2cV`7)}1Xe*N10cdR^^Rho>kgKI_>&<t{^#Q1En>k1tEzOyeiDur?t
z!r4#xzPOR>ek*4YB1H1tQbF2kqv+k-hds%ee1S_^P{KJ7HWOsP2ROr+Bu%58wv}kx
z!||hutlzfZ2xs<xkIl6ceDJ^SuDGhq#i{){830wn@hKb|%7KL`Qge@&-<nBHC8{y0
zYp=9D2mMoVV^Lo!7|k<Xek!Q8etN}3Bm{e4!-B)6=Tm;ym;7($AAoN@fBHNOCS%{+
z>F29!6fN3NF~%|#@7P=!8pewA5zgY~uHP9xfY!ZL<AeA5Fyt*t--y=BT{p<Ae|}(A
z=)Al=i|1n6S#UbUyGfZn8Gs@I>TVjyeKMej?;fHZF&fKDN?*XdUbHUI{na-ExQt)@
zpJdD^rS0Ov2i$saTwGlKV3IzO*vY8I)BTqFd^1@w_#tw8&!35aX0*&hW-KGmW}IKQ
z8~)0+D}=oY5Plo<D6)j`qb@@9R+w=HB1ziwa}}9yDO|M%wsh+sv(5bSe*{}DXJ&=P
zWZ+$OpY~z(a5@<US!c6A&bA#do?eEuNt`dK$yNho$kq`oK8iHT)>FImndXqoVt_Qe
zHq4K%gKO#+Xk}}o>U`3WrD*%>Q$Vbju0tozYgn&hq@j-O|40L-V_H^=b_0)UjZK6C
ztN=yw!1~EI!f#@4!;=dOU0~1fG4MdDKg|SmbjNw|sVzJTT6F=ia6zE@fACb9s1VS!
z(j|>0`dI6bTYa2oK;-@6kKm#jWhxfzaL_j9js|(F`9#^keVdO#yZA`LcSayFI6};2
zDv<i&FEG0<mDGS{e5>{zbW+P2HkD_z$9_x*>t%S1F3C(-P|}#a@`S{(>xfRbneJ&}
zB6l!(nqA$=>`$V>ky2WZ0rk>9R};)42d>10HmR3!h~qgXwkTM=k}24kdKBUu1wTxw
z!zMaQrmw3@O;;;s(;V`?7kqMtk{JqDr&J|BfZP>e|0`1hU*N{W8(auK{B3ZNKnw+B
zn)XsDro0>+Rgr-@CF`%A&AFl+^M>F5+66G$dsc0>8wN<XH^s7uv|r#k(t}U5N-B@3
zw$7KMyE0|NGgZVuIODPCgM)&AX+ST9$iUSHRHmTjCK%smGVG+J-|H(tDk`C7BhnAD
zmzx2l%Tb^4zNf;<{64*SHJS_N^U3;VvX819kC<7qj73jZwY~R!_-0L5FiL(<Q#+D<
zH|8%DDR@eWo5<R%vi;8Swn)Fi%7aEGMxcVtL}$C!Dc4#fRmspqxufL#V((9RP3H?c
zR+-HB3U2P=x@D;^#$^(rtTKESe?#`a`CN&HyFotle+KztB$ja3L!`#rw8XoR&z}z%
zo7H9Xs(zbyfDq7vQm=oM%1ep8*4(_O8~!|)6MQVbK_gvWZZ{V0BG$+!yIPwoMb*SA
zBtgXvRu!xO0>FLZw-6z3e;I7(c!_>+g=yCZvovNYoJdkZ-0MFlM~V6ku58~gcZGTR
z`9Bmh@PI!DhrJx8NrtXyj6limp&WyCR{F3w-0|9GVJ@F2WzZv)7DLAb8^^+n8@-Sx
z$YdNKLAAKdip)`YmZlL#=9Rs8EWJVy{M|%-Q?Cw6j@4X)xy8RFU$i;a@u5g{BarHv
z2hof<3A^6tqV8e14xh=AqwM;`b3^Q+V#nnUtX{6OBIdnGADYk`Eo}>QdX@5*&2x;V
zvKj39a0&dk4+Y-4o;#esJ$Im`jNLy9RP@77&-Fi$?DiBtepz?_uheL%u%lSbPu=XF
z`hYo(llH8LA#_xVIEgr%g*`u7eTRe%`hb{|#bAo19+omqVne54Bd?txu-W#DPMHyc
zIWr5(!D_0#$>wN5eo+wy%;x$_em<&w<AIz6Xe&l!qDukYE4%#{ky0XW!-1A1Kv_Yn
zx~nGnPdxR+If6#fFQlr5?@>-7(<xsU6^=))ttEhbxrnlsd{kIn_DDVg)>@xg*2pSe
zsjNAxzAKe03I-MYH<VJ<r#)SKiH%Z?(Smtuo(+#^ILxj;CKczG-blCnUqk`KvOaj%
z0M+=n0Sb_n2JmFK3^R!JXj}Iq92)iEqRJ-%=%kvA13f0LKmsHV5%54k2u1G+o+D9h
z<s=!k&AI(5QL3w}BLWXF1U)XSih{4nPq8U&HGX%Uqt%|uo@LW?I&H(q$ha>Cw=))i
zEjLN9=Fi(hqrVgC6ZZHZn7U5}hVZ%Wu^M<9Fqq}$k!&iW>o&8N{D@Dg{o2^G0v0Zh
zJ_>(}At4wE3Yzp8Y7tE+=2A$0JkC!Ip1Z#?BA&nghVByi{KZ7)L%tk+MlD^_WjQ^E
zHX;^i<=6`6oSg2zxR?KOEz`vQC1;|TUG^C7<qeIoRLwmczJ<ms5$*$G_7}tyeRdFa
zmef_Xz+>qsI%0uiG8>aDV5uAL#~alm#N^kpuK<H5;RQOzdanxAVB7;yd~jN}g%uc&
zMR&nO7U*dRDgX|O9uSb+Xr=eHl!3HBH%;5|#)wuyx<eaU-BxLX=Ft@%*&`JC=P7|4
z-_P5`1=l^JMNeD8IliMd%sm2GwL7jBEbi?{C$2zx>P$$`ZP*U7^puLf2KR}ATp4_*
zs#K_+sJ<jqr+{z$aop&Pas2WM7K<87jdpxn!c}Zdya-dU4jtYtY_T`vA&$>x)sI7m
zLrLUv$h9&vAL0OJ6n%yHlD7A`58Esk!N~8upt%Q#Yh-C3-gFRfQCuG&M<qu8m&E@0
z;)^Lx{>?Uu<}4Q-^G86)C%oG_feBhQ=SNIEqcOAiJLymbXRKCrfZz3SEmnkkY74j^
zlvSEQ?cas{8R+Zhgp;C*4rKXyPcu7)bCgZFkM!TvcQl-Q(OZTOX2L79)x}?U^F~79
zdwP%72C#aLRG*$NygvXw+;p`sxej#cUsdXr{*%MiibRcdwD`Aqa=Ewb$tY=3DYqU?
za5Gq3W$42o>7SG#!{XC+48o-%6-1)Kc^+9tOv{5p6QlJ96NL{z1r4F7_Gv{)TV$ag
zmccH)E*q27u99q?HwI`)dbQ@eF)4dRg!4VSvAVh~C~q}>=~6r=B8M+vJ-hc8n&`Le
zr6n}&tGo<8p-3qHf0~)q+MSvC{maa(yza~l;lG<17`aaT><Ly`Y#Mx00t9y)h-)7g
zgkDqwFP!@<Ie^f}T{2;l*z&V~s{MBepDNqX%G*~<?V;yjJZlW9Kdd5t?R>mG1duld
z4&_h~YxLxk{i6&+_Z?{g=0a0jI=eNf^Z@T?ZhovEu0Lf|KKyaTMVDH9jx5t2N1fO^
zM~bP8ZltYd7zR0vF<%+F%D>RtF($^}Ix|0UxAPUeF`8PBEY8tp_k8`F5mvoWMZ-!|
zofjEfk%^MX_8;M?%IVI<O8m>kR*Aw@VdDQz6{t}mUuzzLP4uE%Hsi(RArli5%f*#H
z+cMtW5JQdB)NquPm9=^~!AxZ$nDr+5OtkhmSi=_U{56fmJNm$4B6~wduq5U|9~h_x
z^92B(p)ZT*FGLP7b6$os$H&*lq>u#f1_`<@>0*FvhH!?l^Q*Y)|CpoL3B1D`VgJG$
zcS+<0AGo9crG6EsQ3i(R(=arE=|2N)c;>hUD20irQsa#tM~(WJ)~^z9s-i?sbxUl=
zj>E#xKfmo^(yf1+WBuKT8jR9Og;JVztBr-&-OKRl^0)W>MeeI4@KbZ&piMDWeO%JZ
zd@<4KTfVjp8L@J8On1Am@nit#o#U%A&+KNe(XmPISbqif7i42XOuS_O2MZv9C<bo9
zn>E5H7A($Y1q10Z3h;`NF(@IePF2vuA@?Ub;JsJ{Pdpz(N9#EO-*-p$(YLyMu?D{y
z8<>w~`0NlsKUP)6`z&3A7?1v$gs0~>i~4b5IJ=_AkQT_MUsLsS*ykA)3y~UtozJPc
z6Mrmr-ljX6OzCm`%$>A1ero0i?|;lf4jWA>w3&nTqc=sqQbxW{coIpTotG14hv*Z;
z0GcVo69xX@nz$syg-QDO-x|i#Q=4{konumK`#=r<hdIG}`GT5t|1Zr6mwRk((yyoE
z-B<6SJ*&w^oZU@kFgCYXTq^Ui7fspqk!}4&`N|4S31A9^_o4!*q+j7}#FAETO?<K5
z5Rc_uEU{4pr7N1w#3Tk^^q53rY{%3glGGvp$Ga5*+W~A?cJRD<idI?W>C&Aa3y?+U
zH|>mQ1&NAujq!^YemFF8U%bwC;fV@WEzhVhe3!I_swjR!LV~C4{X-@*<b{1P1$a05
zRN=`Zk@GMxBHyVEI}BM{8v}zfYBYz9hQbEV&&?Id$lp~yz7Qk;IQ_mfibbYn1?KCT
z$GYkojW{Lh9aCF;inWR)21{LRZFb!u`s7?@dA;x1R@hk$=Kc0=3UOv|Jsr9af+lTV
z&<_{)ON}=C(q3Ggs0lkYVNp0)j|;O=sr;fE&5O)2@So&?1fnmJfq8<J?zc9Mj;oxa
z*3kam@dExq7YPpC5xYW<MfzN<Z7iEtN57zp<B@V6+~E&oYk*y0+rwQQUf%z|<tVph
zD-BsMTT+<z$~&o5UQzJYcepAok}iF)(Y{R^eEnN;ozEAMb%S_u^fb}%@?DwfSVUJ_
zX`W82(JZoH!?u6G+?mwcwR~$za*hriqqw#y#-^2*)BxUq)NLilc#p+5Kn;egz6U<^
zH?zo}^(^;48+n)<FpssgU=V$OzPR}H?v~6l!-t=QgydmDQc#>4EJe_XUc1bwq}!_P
zwS1QR-fqgp!B2<!)cqeBDt+Dq?|ZDVvL^|5q<b`OH*C7*2;F4A#*}@Q>in}*Yb_$0
z_Yj}2pIY}LqZuBe7U<pgX~_F(Y57EG1tN1?tZCoQ!lcpdN~$7Yy_r&8G8`E>^I5lk
z$Ujb<VN>>Av1Wzz7w6JL8HyxQeZL{E)fQ_-NssC$0xB~R@3aLv&1R%7Zks6ukS!?^
z!hBq-L&fT~UR7mC+eZH<Z~d=GeGRA@bKjExC@@z39^F!dsjtOh7d#P94(8)fd7ovg
zui0tZ-!DCY_fuwoCOWv|jlishNHzoUT+v#nCHm{_z`!S|;*98!8{W|}CbI%3#oSRD
z9O!tdVYuURXX}PDNgG8}4BeBf&7v~+v`rmm7!*v;B~cB5e7sGF>S@zi<b4Y7HOc38
z$28{Vxp_-aJajJCJ%f<6tMdB3Ao*XDACSX0HIbP%0-20HO(GBK%XQYo6@H3`#?RsB
zc+<Vpqk#7LHdrhbeiZsziQOoJ&F1~b2|wMt=%EYdP=;|$OlN2Gv(~!nk(gvf;-VAJ
zeXcuN;lHsx|0GZnhuD+lt~B$$E~Tr1m!~^h*Gpv<2=|G>Lt^?cb<YbbmRd*ppkjWb
zd#<X$ZN>w)DeE=`I*F1jHT8~AJr;fyV43uG?aAddjYpat?*`B9dbI72dmUgy<GFJ2
z@l9dzc`;*I@NQSqfr@T_P;{>+oqvW7`4b`J8483(yQX98gYP!$7)<qh5gh^@a+~)+
z0dIWrkAgbp%V+Re0X1#y`hz7AhVPd@Fq2r^XDu|cIbHU}rt0?dsUNTEHD-?O^=>+B
z9mjowsr5YN*=DL+Zeu6<rje^N9j68boikw<7}kyIV1i`0atxi6b2NY_N<sP!zj?8O
z2h{hH#$lAItGZdzsU6t4Bh~)ym7wEBaN55!%sZ*k5`e%RTY?f)3_Gvjzl#`my)Aq@
zptq%Js!B0xHqK$uZX$DOg2H6Fxyi<D+jS2Qww~FnrP-Lnpf8Ez+Hm_?T3x%b3ye10
zzE%YD4Qlcnu?kX&W<FzDI*aeI#0ERw$id<w#m;7(>TYi?U1n6}sJ41Jngg$fgieVo
z1Ww87leAq^bM0B&7QuQi+gaRI?N*YkM4S@%=<e^4aIP<wPVq{$s4q^g8o3+)yb5v)
zmy9gLVepa>2jipBPSLD^(Dw_6n2~jRD<!($=MfTG^m6}f&&`G18oreFWjANlxCbei
z!()85H@&;o0zYN@2MNfJ)k)qyZ8)R{42&p(()Ernnjk!n#6-MOm*V*Z-jofXXugKL
z$K|vhW!#H~E08Bn`SBs9^N@usC?yhmx`N)AnD#sEIk?lF_L7o}vv;}&@i&pzA;P$r
z*)E$AuXyIM^^tOeZQ19CKaxJvd&TuZ^el1rH0Xf*Nl<Z&D!x5^5UY<IS(8jA8st&%
z{b-RxR8YLQh*|H4YtH3vgK914D`-8(gTUgl4C}}Jh0|TKa(|9M?OyJ)M&x8qsXJV)
z8yHY#ns!U0>pil>WB>l{zP9~ib<L_`M*A)QTNoSGrK{=>o{1B`=MmByn-Cm28?gMy
z>hW^O?-<j8Ud0Z!HT}U_c|F?a73^qLHo%`xpBy^w(_(9YFHORdB0=psMxuef<t%2$
z^Wv#HU>vZK&dKYD9|aX-tK!~=ETTfLy>`sL$P&QE5<tC%rrcz%*;7{UkfQlCCvnSx
zy)E|pe8W+#L&_uOA_n@c6%;-q3&fyePX7+5`^Vl;<TX+(`HgX1SG+;jj7oO7Umt&>
zE7)990+9{hJ|Z-ZG?GvIBBCkU<z@RAs+mMZ87rlIFDlzR#!4y?ii$zNy8p(w&ZGmK
zj%k53G-ix8g0S9Yakk#+{`B#?m<Xxy&9Ndbr`2cg9wJOM{c-Mc%p)g@NwmW9{nP7T
zU|;{j@JVu&<|oV6NK1ULTFm30YP_|cPBiSFpa|4YE&8y+kv}>5U>)y_lcp)Vo^K5c
z&0a2P$A_|!&<GwvH5@h+`L_ip2^4vXl@WK+@7d>8U()>s4LlY|?mWyER#Tu}cn_`0
z3(*^EYBwnc4=x|dma~@rm!K#pBKeR$n8u9QHm>8ZOV5P&+lk%zk|k~G*>zor@FSV|
zQt4Q2&4_r-aO`@e7Y&|t%)a`RQuag*j<(%Bonjn){%peXPU#1U>GA%P;SDb{)+}jc
z=ViyAE{XDkY7fR@(le@FEV(!%dN5JL3LmcIw4WF8zCM|lgqmaY^!7GEVo@PbgrwfP
zNnm52lZ0WdmSnh$6H!1LWW|aQ4#%vCacjM?5a%Ti770mYQ%zw%4S28FMs+Xn+V!V(
z_xIZ|T##ixf0kv+l-6B~9E>^8`Fli&Me%$UJbHZihhI}Ol@JPNE828fIw@WT$xdNa
z<e(VENW8^a=&$;%Xa6%1sg0^7Rc&$51OnG01$H2^WP`2#sW=I4oCU9i)iK}g`8;X%
z%PGr@$nQRvA6T=J3J9m9!AivInm*u?6OX3^;KE)9O|dxxps!dgt1jVu>*to*>H9yC
z-nWtpI5vZPx6-Z|zBk=$6DRuoCjDC+a93ZG9rSH-amhx8wh%2vHbOyl>i*4pqrA^0
z(;vDPWqzz;=Km^xl=I66!OgJ5TClp^Fz=b{VvOi0wDEOp)bq+$kr935J~4Ae(Q@n`
z>3~!9CI=HYW1c~uRTw}%6PuX$p{=cLeCm~GX<1qD6?m#s{024OvUcX+bjIE^FU^F4
z-(#W0AHgTslaj`(<Imvb`*;6<lL~S<nVlq^Z~Lc~D&Ei*Q=yau=kQ>x?)Hu@SE;C&
zPxH55NjMsH9_6u|+I)F7Z~eTLICyP2WKnS5jwr85<3k4FL~{B^+r7a>rca!mQ3e&}
zRA64&6|pfnaeLt2&kUq0w0(<s{wMIx#uy1G-hvm*?A-&08`?ofw0%*|FN9>urQhc*
z^W@U0Jnhz3o@`{5^Z>ey<#7A1m>vO2wmAc#|A_ixnCC^UwFm5m+w<(lV6bIN%0_tk
zSFOcgucKd%G}v34*Jitsi6h)+Fd8|mI|;(sD0n%E`mlb-e_ZQ5xo}}o`R2;T<kijg
z7m?~f1fBW7-C)v!#Fgjaz*h^ulGBCrQbAyE%^Q0u?JC07<pcLD^NU)R<Vo9ush?~B
zh}4^Zo&EM=%L;3Tpr^uqeicWbP-y?`?a@$n_N_%V|3_?cO7)qRSBD{7y6Q5N&$%87
zk{^uny1>?se+uWCECup9?~Fdc<KnZ{ruLu21!_5YXud@|m<~jw>18Aul?IO%Cdz($
zRHnU2CBQ9$F68eh<AhMTND|}=yp6B$(zX2bJJv1G-bQCw^Bm5L#NKIR%s(P>ZPT4w
zSM&MVi0Y#%HZ%Ci?DxlvpW+CZsr-Sg8RE{y+pZHdDdr|rqHNzT<?O3i`&DW!k407t
zj>VS|`%Nl{QY|d|IAws7pn693?FAGAV%Jm`N^hn}tgHn28YT0q<^}O(+q*RPMMJ`I
zyHlb$V%>u2uRqn7Hs?g~*CJ|PP9VG{vwrjWA)1VopTG$9*RF50gB9@ebr~7|jDnw!
znhH4j*g;c}mify7r{Cf??-~RKt20``r#praoExs>e~y{VHh996(R2*SzNb3GyfJQ4
zZN7J{BC1pSS$$y-<;{;84l!-=!t{}bvv#q8?>Q+9c&1dMg0k7gd#Yl^f+E2d0}^ZR
zI~T<#W-}qw1g0a~5yT%rk%&96K$=j=g31Pv(Uad?iZ=i3f)ymN-d>IVa0?SJ5TAb3
z1oe>k9E8U}SHHc`UsH>V+x?u79B>p>vD6~UWJ));<kUt5PNk<H(nsr`O%L3PV$;=U
z5x92<qy^`rI^YEK=NB?Oh10W^gXz*2VzS57FE>^g4o4!Sw5iJ;b=_4T07r9e31}Q2
zIY*|U-)|SUvakm6<GC+Sy5?1zOx&NDW4x2UuowTpnj!42^B8N!xbj(Xb{>WKacSfh
z-(>=^EJ{QN`^2vT2)#BqT@3Lzpu!u}oBPOdS}<!{+jif}o#5$dy)nLYemfGmXz~(x
znO6o6`g>NWrzYqvyNV^=&7Kp({8c+$rdfC7ZQK@o)i6_Vj>(n(>vG8RUAIpLu%|P$
z)GvQqOaoN)Sw`lm7Oui0M9a^PA9iIvUR%VoQxX7YO6gBa|MIt}8Se7pC;&avT>fV7
zu!<SXPIhJpL3-q>sjaJ8H{2WDLuoRK8dOZ=Z(a${5V7e11UQydhYedkuEiDq?E9G1
zd^1+-3T0?#{UhhXRd1|G#W_RQwvhJlNSRK0aLPNvU{be#rDv>oMHR1IVGrSTX=fal
zbHr|Dv$4_9mjj|_qXxe~Gfaf7{$zTl*_eR){*u?p`8ETF2zl*lid$pE<A^7*VI$Gy
zKhouhi<V0`EFUu=&<KnqvKx}T7AS_p_LoQzu>Edd9_H4>h#z<3kbyu7qGnQ<pWffW
zkoQP&7oz3q5p+0mHVvRo3SW1~F{3aF7_`jNhh3m-B!SouzYlRd@QEi(KlE2=J@(k`
zm3e;i@ov-LS_H<BdHedOa7aZ=dWwOHxA5XichX3zHQ|NA)S>GI8s6S^6Wf$Dt{>RI
z7(Q^itV;o&B`Ha2{Fw{qjE2|AM%1#3sE}E*Om}>21qq4hC+-pd=A_<*M6!36ZSnD%
z52w)Tc8e{DSw7#cg+kwuqM)^>_{FBa2B516-8KVh33N7SUnN({!=vH40#Za{@V3Iy
ziUF|ExM0A(L89j_t9GU2HR6VClsSyu%I$Q)4?JnJoPb~5OFy8zJ_>M~?I>v<1}V+a
zW#x~}fkb1!rJ>-=Ey?AW${&8^n<Q+c7#juNLm9g6X|BIn%xxP)pORgeD9e`60E^rV
z-{^!}WM=_Q61x28x`IG1F%`>krJnta6r@2^wmU8rpB=K&emuoq{A-w&+T3M!2SY=a
zv)E`(!(r&ab$fIs;PHbl^lLNAH^aD`Z+S{+ns(`Sq@0#$2f-S_Vr_}@n7ibbk`+;I
zUYZ&6?WIi+5}ci|lWl>y&h<<JO9^vxX6@F8>!;2*D-IaXz;)DmN)MOHKD=Yd^s5W#
zu@8UtBzwY6FFIpDT<ya&=U78i9R~U-S?JPY){FAqUA6Gf_;wrJb1$NscN@tQnr|P!
zO@AGf#<_hlRi2&mIx+kd#2AwguYjsP%-SqR1}QLy9k)CzP6j9`W3Qp(4;c?@!r+my
zKx7Ou_m%qsH3_L+J8!V?*w~+S5X<Xw+7dpo)t=VfdDZ{4vxW-TBPh7lK%Sf`fyJw!
z?IO{6>Mp}__P#sk<8veRyXFH4eH_lic^zVXD41-DilXz_LeufQ=t-el@>nd)Fcm9K
zO>c%dP$XqIH~p*8tXtx)+?OkOSMKxL`}yl(k`_xoeC1HtxW!YTKW$&}gQ4NMvjM|p
z;*oU>%G&&4r^5Hr<jKO?=1wCNeum{9kLrHI#ISF8;KFh<mS%dZ%#gK)(-p{SX=Yon
zK^z0sqm>_zx?gcrT`M~*Gd!9TlfbK7BB%z~YpXazSe)kft3&0zXrZsGqo-9aUr8OM
zP4QNJH(D-#xxdiaBVZy^)U}qfkYkP#<HTRadKPRr6aB_W<VG1$QKbde&pR)pe8_;7
z_lpXRsGcdISRhO2cYu@nox?G|6OZ9xQ?^t9C};WC0Hbay<E}CD#uBj{Hz?MxRFnMT
zNzP~e__r!A*4=7|AyQ>8Tb9p^1{O4}Rr2hlcP$<5fL||0U03f6xtE^L9F!wo+C+qz
zDj+i+V{B*hhCD3j)7aK0yx5`YVB@F?Wtw4)pYJ}r3_jw}uq%IMgJ!M6jwgPbxtSsB
zFri(Pc%)k8wiD%(+wA|iXbjYFreTu-%*hI{i-A(2KZDMAd>_lu-=Wa{N~ulf3Mw9#
zNukhyS+BnQec#VVZadOPemCb4H-g62rl`AxE6w-oxsQHX;kF7{r!`AgrnWEz)yQJ1
zae9ARO1Re8XVSIe`D;8ALX>->M7P|ZpY28M&~|6haelF9F-jxe90f7(p5reis6-xn
zMG<UM^Y@=j6~2IS9Zu!94X#7Vo;P`CT|1AyeGC=a?0IVhemE4qunMV2nwSRBeWr-t
zb}m5t#tVm}L$FX@2^~E+Qesczr|i7S`-cK#92<(nF>D+Z4f7{NZ~yFN)4on$<^y>|
ziZXV5>n{XJg*bM9Fl!J8KcWe(QX=cre0Fh)9#-kQ9{+y2H<iLzMdFUrj9QK6616|I
zXWi;$WxCPX<ZFkpr`XVFN#SnX9gl4>G4ejOf5@Ez*a~D(f9QDt&wwaH!I`iM78bk|
z|Lq36jLmJkkI5(VBk;r5b>nK`p1iCW0!;@knOi+h^KfqgYE57yiOE#v-auJlMEuF#
z2-er_OO9*xEN7-&=;_m4&12zZDc#}YGm5aJV_Hkgy;*$eT_42cIZu)l+r~~gs@}o3
z?idGdevaB?)wDsZCkZ(*E6dy<Z7eownoj!SI0lZ1nL6iw^_)T5-l28Hx>=u4k4>UE
zy`b)jmgOd+iO0XT!20(5y-j+(1$QqtlLl>$<}E!{JfpOe(tRo3Phk)6NkU|XzdVf8
zR8ZqKi!w_$Jo>zNC_ZpnIzxOqZ?jVwTsa`vd~)G_HopZ~cH5b6+SO}5Dpv1+l0-bp
zl)Q)3hL&%e`wEZkGfBE6<qh}`CAtv{&8uie&wGfJ_YmiCUnEP15xin&QdmGoq{L=H
zWOgzhsxeExUldmHDO|se5mL|HKvZegBo&iTOcU+<{vIl@6C?=#x^%>=`{^p<*WrYN
zf6hJ(H4E2n=<dj_Flr@QV-YJ(VdSL{{0>@YQcm~Qyt;jp7p_;GWs8iSQo}I0E;~~v
zh6)WRzytZDF)!HIyg5;3oKLkMc#9Pxv83A$x~3H2T$t%fy%shS<c}E@>`ydCc!h3!
z4(`(P_-dCm;y)Ji5WVkF>n)2%&gqDoxlhrOdD5~1E`E-fYw?VfL~7(aJGys<ef%oT
z<0B<u&V!k1B}UB3dmo9E_6w9Lfi+d_k%_DtkN{;2FOueJ4B~^;xB#S5@Qn)UFWhJN
zcFG?F%kjAq_2(--)q*!|D#N*y$61gd-9m@!0;qlxtY{K3=I_PYiTD?Y%|zebh>+<X
zqU@ai!4RrD7kGQfnmwDqp4)3gCJTXD3goB3?1nUUm9z@1&(;`Kr_evxadOwq@vCtl
zK?oI4sR)b(pQZ3_1W>KNJGe!V<Rtyx1X!GETuA(i<tqXpfcsdI+Khx_Sr~#kBB9Xp
z)c!8QH}eT9sjlf+_vI@G3p6%}(*{WQ)nBhP$3{f(zo~mp8nJ2aRb!i6;PBm<S%;e^
zfhAU|-pS*a$`eBwZR~wygoJ)x+sq4-{6SP~hj_o9Tup9UIYD&%Apd*dbhtP`Ezn6n
zDWl`o1%Mk5^Xr+_sbU*iYw^V~<+4v+P_iI2O)S<yg~qx39<s;2=dX+FN7?(pCxpwk
zMFZx^ZHKjU0n!?A`$uH@Zjz6)V)}U%tw(ONNJNb}pDib>7dU*h(5&dqim$Xn`%x44
zq|sU*iUDm4(lsHagyGUQ)}u=%=J%JivC<3$Te<D?#S-8}lL^bYfTrDDBbX=>gz9Nk
zunfMr<J!+OVfl?UZsgLa&3qavp~rZGp=zsrG7#<zEQ9+3sNg~q;U+*g>^8tnX?D*a
zi4K1M>#1sJLRISosDAfQ-GP2QVj>Bs&!+Te0f#R}&F}M(ox$~ZBw{}7JY8d+w_dn0
z_IyA$)8y{pE3{kq0mWuy9>-6RBq$S+C}B`ZiU8Ip`>Yn%ZpI`z{g=t7w+9$xhSd>2
z^KRGtf2gbZM^3PGstSmF8)O;6s}-a(_WkAzn~Bdekj-JwuVT{}x79qJzSUqJU{t#y
zsV<PIOpWM6dty)9j!X6dJZiqbO2Q7qt^V`;6S8C?QSu<r!>=Okcoc>(d7{D(?uUsv
z(+t`75wH~=A~L7Go|I9JsF353p!@{CR%&}W<jNLN_(A>rT!48is4@Sis<#X7N0kU~
zM0<pL({+L;L0S{~*gIJvW!S)3!m@tBje_=`WFqDtY_lmpOPZ}Iysp>3mXNE?)+p8&
zGA|N4AcS*AlnM3|kXmHsOoq7#H906_(fs-Vqy7Rj2D2TDZZp@I=YbYPtsDg>2CYIy
z9Tkd%W?w27z^c|@90<WS3&lYL9tOXM=A4N{jbN>LsqkBC#{xN$#62VvC1Ad6+NoA~
zDrwZGN-)Gp!v<ILE8(}lQCE7CqR|Q2pMecmnuVH7*0Xh7hG30EJe_jlr$gSN&(V5m
zAW0$<ap$Ba_PW>_Ezpo@3@QJp6A$hg3Gc;Jyi$9A{>uk-C<xg15U@ki{d!2%<H?Ka
zv-2r*;NN+Xe2K0U%8OFN+-~w<r6+;sdPdXX?GiJ1Y;jwqiYmR=kCG)_9?K5=e25Mr
z5Dt+bD%7^ciE(S=N3hk}*@)F8As&+`<)}JZJ+t;#PnymxdMzB$6;^$JrP)z+hFcFI
zr{A1u^UcwZ*e}vlP#Qf80;wnFWyZWjIGz^{^P@tuiFk1H(JN#g{1q6tWTKU9aS&W!
zv8ewDEEE}$wFgSFz}Cyml?{FqhmU?e7AX^{R<~D2SU#W`ImJD+L#NPRR_}QV?^m$a
z(63Otq%ftw(wRZ!^Pr5WCq6VLVy#N9RmCWa8z*BHNs~VZ_caf5z5J7=JHf1><@Zs^
zmKY7t$u_~gfuA2G+(W*`d-aGk5<C2Iz=Tz-Fs95132q%{nUTJw_XAkPqaRH_0M0cZ
zZXR4vxZ<oijE~4i4;piv<^1R+P*%1m)70@5k`_qQ$Yi+T`?EX6vyrjLF?7LW>AZy=
zRV=XT)T0G`=AhZ$q+u7%__Uk47`+0C{I4Ji16YSrbkQnJ*kD55=bR@SBl0izw>?j{
zAt}OcrLTOj&4@F*IdxCs>9`Y_^y8EgnPk1$T+|eCB7ubilZWe6f6;T^Q&P~;&M~qV
zhfaEvTWdQNm+pP2$gExbNr^ypcoIizs(VXu?S<kj4qRCR`}6Cb5b+YhwQ?yCt}M<S
zaAm=|Qx;SPxKuorTpqE?=*~vl>AQyQG8#hy%~z`-^^_QB<^e3pb5dGp$&Uky14*@=
z(UBxt*6ySufo&#>65XWNEu~aC8!u?14S`}`UQ}9IN#<!g|7rOia~=}>Oy+s+tx~eO
zI`uP^@bpuTi}%{1XJ#^@i#T*|nm-nbn5F;Rs0pg28p_DRH$h{^HbcXmHz+}e$`myc
zSaj&cBqS!vfexC4_3!qj*k%Qo$P@(~x7$dkpF8}K^++j)hdCGCfnyoae}N{icF>ay
z?2&tIb4^#62Ahfk7b_4+E}F7Ae$u5@;VPr$dMNZ@G#L3H+VUsSl@-0sg8d7YBVh{H
zfie05TcwUIi}<327f=7X967jiec{2C^w?z)AdGv6o*>+Qr#2Sp^M`oTwNV@qysjMz
zDVHJM#t*;sATxtYY3uY)2>=LJ{M1%hz#(&EgV@r^C>?`O)>vQ5OO4JNkQx*geVRR7
zTf?oKX`_ERjy=ue^sSWbDfA|Igwb*cX8gT@%2V%pGrY?FXWzmm&2HuIZh0NwLo#!8
zQel(FvsS5UhM|w`bwcQLC1U6l+?^t|W9anO5;%K%KBPSf55+b!Wc^^^xzevA{(wOS
zB6p2T%|;`<1OSx;r5@s$n}<TmSmd6OL(VVX%aT>PL*QCkhoWZJ`jS5aVow&6gx4Wk
zL^$Y9gKYBpeFtXhoh<+C)c$f#6@1l(WE|1(X4xCN0LsL-`d&@UiYes|jZrSh!yWX{
zo7%OwOmYMG|E(ni9(sSD9Fa~&tt%aKT#>MF5!6c4*Tqf!xQw$M04{naB&!+7)t3^u
z=two-l7!rwe|ZU~%_mu;)SHDj<R89Q{ggYzvwLGsa4njhk<LV0dQ->2WLW{rN}t6R
zC7Xf9CW;J;W&1V-r*Jes4`OdJ7|8CZAL9SfgWIwYkFEU0?=A>g>i`*T)No=1uu2LY
zqho;}WTyHi3~J``;}QI3hp^XwH8=C7rlwkfU7%UoC3?i3f^qyRRFYAof>wvWyESu^
z@PkHo=_+Unp&uuj$UDB9`MSXi>oeG>Q0EFWnL=Boru{Yy;tj|9@P80|w8Fs|byKR7
zq8bVuol(973bo5}$S^|sDVp(j7P=`uTxCSHcTSa?u+1*aX$KzxIATT(7sk*BxG>(G
zdVh*4HF}dGDBnG-`R>><p2^8##CfqZP25-cwvmfbMCe%Xg~i8>=5^1kx5~#=b@~iK
z-*5H?T?0k&n@cbauV5puDsDx;jn&**D?|wA1?dK$BS8WJ1$6R|Aeq%~&?*6D36uum
zGU)JyPXMQK!sB58qX0Dn9I-wKT&fwlplkM{(giXGLAGACwOTT_IivA+?<$WY3%v%{
z5?4{T-OrCr!9LaX>$6`;xlTO(WNHa%jc-nw#?67+U!(qm+mC5u@!;Mk4)}Od^%%9}
zt<b8!F8K-Esxs%zKHcvcW=UM=(}6o<EOr*+Jt~+|r<!~QP$rY-_W(?xxhJXZyg%M3
z7Bg(&!_aTAxVWpC>tXX+DAq4J%VcpR6mv@^ewWW{Xvw)FSi{BcO=vp5_pzAW?eF_@
zLb7I2OF8+iD8?aOAw~Lj;rWazG_$xSXrzA~P8xw(sJ1X$UjWb-%)9vXV-qhBq8&;F
z0EpiN2rVPC(=uLQnC*4nC$3yWi-R$6U{z4*#RB1#g?a}x7F!K|k>qtLy!nOHN-Xwg
zou<&Z+1DXH@9fU+cup%uv%IHd@myd|Rqrk*#ut_RjRc~%|8M#)+`*3nXH%5J4jqx<
z@thbTp}vffCU&i58#BB^x8gXA?&*;h+;HCaDs_4R=;}B+WC@3^cyRZEDgk#d&od&j
zN+=?=dkm_k`ZWb9`;>;J6wufg+Dmt;-n73EYP5B9sM_`UuDms9&JjIYT~FsJRON}x
zws#TpCapF0q*Eo=fKCZT-W)7quZcikI_|WiN^C)tOr%`wA7ca2yGf&s6@;*%zZfpl
z!-RwVD!Ky#$ElPH0&w{D#x^r2CkMx?WQoFrD2Q4%Y>*+tJJX|sTZv`~bT#I(t)`23
zsLRM2fQ~DrE5mTDa=0}KXkVXX8lgfn^NInyg{7(ueUw&#W0-pgcaq7T{iGZQ{VN%K
zc#@~4LjBYKn!X*k7#^4m<3Ij`=9{+8J_(5Nmu%nUO{Y%3Lh_e^L%&G1Ah;>r?#?J<
z>@~dqnIV{^DRD~Ok?*|KQZ~~YpJR~I^Wt<gQ^uc0P9=9I^P{la;MWA@*IlEEJu3;{
zEAh0p^Esk`aXE{Lrma@Lky}%_wwYc-#}X&oM<16Hh*X+^;xj+<C^9Te{bg-ty_~Cg
zwP~SU>5(|kLY24<l0dk*)gnVO30>jv2QBU^NIs-ICOvQiSRJc12oCRniN>9VP0Cz?
zw-+|ROd9{T+<c=4AD1@JF3gd@Ct^3}rX-v%CET4morW@HHzthV^}F*o2s$j>y9Pf}
z<+v<2U1^C0(&$v(ZLK<oS8ynBS_WQB9?e&y>4~EYho}+r3uiJ5d+?B8yH=X_5&*ox
zzB64Nu1nc<%Z(Bh$YK0lM5|CU6#QhqA%tj62L8l*e+plCosrtF<d$Et-lXPVrGj`D
z=fI*b*|9<`p5ixPU0jt#f67DQW@+!^9HaHg3e$FuW{&2ow}pDug+_-VPX*=?O3hjW
zkf*)yjb14!p;z0@@YAIH0!vCSqiXDCawBn~<)g_(xwl>I;qc9or-xnO_g`3BCjpPZ
zy7eFen=ju*VCFkt@mVJMJ_d)b?_mfXQFzf^iu*S11YJ@a8rA4_y?eQ@oST5@y9dz_
zj-ZSQxdSSN0H|Qu@4$4d2HXy5q>im&k9D2JD6q{c7<;W@pLq!RP)T(@vDu5w6*Fh%
z1)Mz5C?PZ+>$fMU-=6BqA#X$<w^OKo@Nk4pF30X0aaIKDTn&xZ_OU~J{ao*AHMa6G
z5{N8qsYN;f-KAOuK`IE$DuQFcYN3%RGGQ4VZ%4ad-$fyis*su??M=?3TwJ?rqcuFE
z%J#9XKWY?kyn*_U1y#S9OVKVhU`oMp^a1@{8()Ku-?`(&p1;EZV#;ADYm8G#6Ecqv
z^u4`ydwyja{}O0Jy9pP;K)R^cI3q+(Bs?KSz`m5M2$o4*`BGlfoWb5bbux7lyq~S2
zoXCnMupuS@mMuJZM4JD*;8~g9RHY>z1!1>TwiEihvkHe&(Dpvfl>n)<z+{3-2R~{z
zeQdWrRz&EsG2Fr1kh*tI$9u-EcIcbS7WH(C$y0(<GQqcj?s!(9fjOT1oGS*EH9nQg
z^n-hqk5;l5U5`b)oh~B)190>a0QdZ6Z%x^mdOGpp-_pEGR|OA5P%Ln?_r-@8nvL$D
zX4&;&p&_=JhpdptmOmwnM;E!M06j2et|tY^0jx~aKadzkP6w$^<M69=Z9h#)N^iIt
z<}Zn25hdnRdxmMpRKFfZsd8Dm{NPea<#f6|>V6m<&qU{p=WoYsx9qHf+>8b_p=-w#
z0dL}heBF}`hT8;X?hC7?RIU<+lxY*l;Y!Bfi~Vdhs?^QykTj@9xdK@39%`Ko9C~j6
z=pEzy15<$LG(?oXB7`C7cfL~-V!FpFaf+DFw{*quCjxIiuZ}T`AcU8Fz@jJ(&C0s?
zSst<u2&23|CtJaUX$Q9OYbmp80Wl*4SrNY8IYj-t1=f|_NQu6{bH<!aoQSO_AoqKo
z%q?4=z7S~Mo0uao@BZF;G(Q$+CzrA}+|5tegcfEp18VE}XgE_m`tATdeMU`(11}IR
z72$?6y>@J%9{(hq#Y^9OFG23B<ogFHNoq7+#miI58=tsLd2!A`V*&4888G_0>`Ez~
z5oc@lt1q@gq+fzdmpgD)dpZxFp_aEd*<c$o>cS(Cp_RG;{%hG7t%_#}b(>E}wy+Ri
zi(B&BDGb>Z3+r>SVas8M+(&#;BYOiI&Yv>Ix*CCHKjyf6)U&OW@QJqPu`aE+y-BTY
z0A(*XH0EK0MgJF<ABbJ=p9-^5xgd#~aTvvIMtzoGs(*_jA3R$WlAeigMutjSQU{&L
zqB_|S9VHd{jBcpS(Uv`26Y`9o`idGB2F#BV(3aoo`s>Jb-|SL-8O(9v9$xAsK_EZV
zeV_%Wp(;q}pudB97nvk%g-dmX+aY0JVjcpB%8fwa0Sg#OwSs0L@71r712!+C81l_^
zo|5P2sy(0pbdP-ay+X4Go@x`*15Q<;aSSD0d7q-qZO$d>jrN^8t><dI=ro}x_%Vg%
z{hPw8VQKlK57CRoW+WHWZn~<QHF-2q{GD$K=PRjBuJ>=yppBj=;6>N~R)UNYqb9v1
zWmY7JYnN&*O$Zzf044-D0sy4d@&J&Y)it<qH&53gMkdIrWY86Vkd9JgJr<_ROF{m2
zwNKI5_adjP!)(#6lLu9o>ZNSV%9@}<Id-qo?RAQFO)P8WWwo(Ub#EADZxR33^mghP
zH)*YrM`R^+<D-vgP-%q`P@!$}_rNDVnS;8^B*^g@3kOmZ#nql}5Mx-ZMYmcZ>ln$o
z&<d+j4{u4>I+LEHw&%+c3*S@==bJv_5&n4FsVHXgK{jd-1F5;ELPDx3dpV?7pP<I_
zA)vzG<Vc5WObKfQZ5Aa<P1gHqpq#kLem!Rc8_%m={rE7Hua@<&0s!o|(&iga>4uRH
zV7q2$XEep0LItblpWh!<^8paYS($<-v%Q$F%21j?Ax0)OGxQ~g8S6_P3@}{sX?3TY
zHL@_WDY`<3<8*i>5uDY{@6whY#%+p=AxW?b>LiFy;MPkkfRG@VP5Jw;P1uNFK)<=|
zsr>RjilnLm5o~D2zS+(y7y)T1`QA9$wV)@QO4=PT@|a*og*KX|74u2{rICeY?*$Zd
z#sS2P5PImiM{#6z9r6{P>oO{H4rrejZsl)&98g#KX|RfRUmJf&qbh*4^lD%iYiNj%
z<=IT^QRboMZIdF-Yt3nb*lszQVk8K*$rKT<nM<T!EGG+u5YO<wUBye*2wkKPzwe+G
zHbTN4cu>m9=g%>hXy-1l_%Dda=ubzbk4(;ClfmSkFkT!UW~0WZEB&cSt~=AR+t=N!
z@$80r!u(vS=^|9!+aZP9zpue!%I@t+F!lC!5F~Rd2`oDFyDSt*0(R59LcUk-3YQ)C
zy<VK(T<&2;S1&HNYDICG9FXvcy6=BsoZkNfW*A<Zur>q~1CKG>bT<D)Jvs@*f`^jY
zsJ<dVy5OUo2`=FElo62dykRXpV1+Hw{OE7Yff7y$I<2-NvTPzDOrX7-8**t^)1rhE
zQEFN#63LV>r7x|=uXQM4hZ`+lAdb>Nyyag5C|MqcM0PnLl&Q@$r%BC-Q>a=#>L#4f
zD(rDnv|}DwHBu^>ctKa6C?|VtCLdG1_~WcftcPUuWt($PtR63IveJwc_oVl}UJNo-
zVn2ekt14<BMrE7}*AU($dcw<BG6=YF@L$^x14;AyI~DuP3b!1Oqt%U5dbi!#V-PDh
zr)NWc)0l%u{95-oQea+T8z)Rwo4OCcp~<Y_)14Vv&2}x-b5nUud^@942j_miiNW2u
z2AXLYj(6ZP81X4Y`x$_@JyWZ?b#`@e^gfGcw_k*jlczGvb!)6hzRBw>mszXuMUCxL
zm8p~1)xLDU4G9HVK4DKHo3i-T{`>K0&_ioM`%2XStS}yMfApQ0^QGUoI8N7|P!itF
zPp^wd4*HtN5ZSQDRP*5Ghek&=pWmDKB6)v^Y(^)co>0VWsxt!dF7CcU3w)>AFSL1V
zFkH-DYX>d{z9Iefj}Mq1LV(McWYv_flkkHasBOtD=BB=(PM@G|M}emx>u9Sj0fCoy
z37K1S&`l{q0PDMGRqCoo0mU*zvd2_#1{pmIF#JT=DC8rm*UDameOc1I1S5+H?}kBH
zg()dT(1BDoy)fwoAcvVw!ipG;bHWpj!UBaYyk)n7n_0<S%D_9ns(hZ9gVo*CXMf3|
zY*yki(!)pig)R^Up@f<sv+|1<r}M%2vxaH5iJ9rwp!b9JCK&Jr^e>t`U986n@edND
zq3ra3%p=M<my%*7gu%JvBL8|CULHxM0`(lL)9tDBhxhHF`<?M>3-%*m%XWyUU{J7D
zk+vF0N7g|D<s$t~@*1H=o(g7#EKA{%RAztgQVlSupekvRa@g8dS#z#b5PE2S42xIk
zQpI$Go4rD#`zK+yH-RxW7l$jOHFo;3v`anmYKO52tnKJn#@+|W6*2vc#kv(z!Zn<e
zKb`6UWe3l&R6lY0n<3Jd{X%&2dFpb&mEiWEQ#wm7k`Vwj(iNo_$zHE`dhm}KAH#z=
z?j3G&9^I(VW)vWpa3=s8{zjoK>-_@1B9OI>$1i~AQUk>V%$f1;K3<-HHpSfGJP*IC
zdk{Ijlx(}cgUAiPq~1*c5Y^npfTM>ZsZAY0{Rg~>3;ftnFx=QMqVpbY=Pm0C3~kT^
zZ`dyUN~Q^3H~0g|Ja&qY6QD51yi)E?iiQ%hD_t-nMfEy39!v%8epMht#J1Rwkksr$
z3&g09d2iD6$^Cr))#g-Xo>i26>9$8EaN(u3C>S)QG;+vrfA&RLV&!t}n10%2!q9Tv
zun>rJ+R^=6q|4JoU}j&==Dh~WM+d|%BdjM%?W`!c%}^ts2>cxUX~J-dNGDa5$^4VT
zZoc(B3LeJCW2v*<xef4^!6=V;dn6H8fLs)5@&T#$4<E~+7Y;;E9VnlFe#-Tfd0EV9
zwQrj1srOZu+RN5)Kxnx11NMsz;2x%S3!Rvi6XBLf0X#FuTe0(n`yl<%RS=(Z|9cCV
zhm3c;1@3z|dOiMcx3Du+8LU@ht9W^~7cG$lLi|owwRul`XgQq?5)veo?+{*(H0|?8
zMmsCJ3nso8*M|3zAUEV0GFD{ZZ*YdKOT&wC_;M5=qENacA)ug1d|IJ=_86ZJfrcuP
zk#jse6f9q8$MEvSXjGf4daW^$8We;xfs=&@M+$><Uk<OGJn<q$l`Cp#np%ufBci%T
zl<gTxfes&E?lo@_w90o>5OuSbD-?owd%V|tyGj3q*D7XJR+%UZU(4~v>S*5QY_7_z
z8+Rx$W(z!fCGD~`jv0#a?tCLJgO@{Z@!+bD9AT12!U1G<G;F%%lt7v{;E|0Sux>_R
z8M0>qc7wO48ZY`sLrKNF>s+0U%lk_yd$-*DX5P@lmP{SZOmS!537;`LaoEaDQAISu
zRUl>(PK^cl{X0^a7+sl45RBadj7<Ce2-xJ9h$OMc^GIY%@liC%L<+gqdVY9m%WkO|
z^B|(g3+aw*ZA$Er?*<^F>uHA*3l%JEZAg0NS^^$F;9TNERC37{WT2k)_wZ$v&|rbO
znSQz)^inZ7zPxM%a_#!zcZB*R!(S<u*i4kROHnknbloQ*lgvw+S0Sa)fys|=AfIAi
zfDz5DWT~aTc0TaT2+eL0>QGqW(|1)K{UR!%uCiX{k~+=4*HX|UH30zrABN&#fvzu7
zm-RtO5uvx$EU?2rWD6>(O*|RihiHaiDN<B<EPf`GDM&CWf_nQ-B8_(viTamB*kNJF
zmF^{Y0mbfQg0AN!YX8~=aP3+I#Gvy3q*a7y?RuZ^zdN=Y8lLvi<cgMFhh3CiJm+Dk
zk8P4}r-m14W`NzIN&=v~WY~U}nl;k?m5N=9A3}S&UqrzCkh9$Do%TwG%q;onO@h|+
z6ul~|uQnJ_@CP7XgT*?nYQ$$?^n=0CST;mkv*RMGzgM0e&iC-P4%sYsM!w#jte`Sa
z;WCdl-S+6~eyI~<K5hiafn8xFh{|^aMvT8nqBdL*nRY6mWK&;J2MTK#n-v8>4wDXU
zMcSy)S!$ay12{ogtK)UG21wGIuE9M~z=G}31fE``f%5(<8YFl;5()4_0WXa9rSQI1
zm)YCDMZi%Y4PVH5+xSpBNH^22!suBbC18UO*q82z1tZ)S7dL`Up`Bfe-w!&Ue3+|R
zRt%jH0&l0xL8mSWF!B#qdgbA4XbPXrX6`Z!4UhiC`v;g0ciLLoj-ti>D2RM8C~Mdi
z@?1-E<6g=HwuLbCdnM~JN7M0e#Gkb9AOb1D96xa9ilCHf<V9umm(#%FswW~r9)~5F
zm{oQU9TY)<O^4vXL6p_MK$I&IMA&uv%gNTn6aLhoCGTfW4!Vu*TqTALi6EY3T?;#{
zK1|>+PG{CBeI`P<eA$=GgJQ|mC{UEqRcX}Z8P8*>^5e?$L#5@wFxV1dHB)0pY&Q#7
z9gt8)q7$&@UoX1|rRyA#&Tf=jk1_9@%Nl7czcX-4WQF8AEVi}FbAlek6cRpbnT|00
zkJ?RdSCoVt79`|^#KsRm_~~<h)V$bC*Cx8j-32mR4FKiaKBkH}iGz{A^wyZmwyz4Y
z)S8X%jwROy#wB{y&w7V=QX+-()+*56a5USn$}M|0xb4xCFH=c>SjQ*RaRe;5Q{A0u
zXEYs_Y5@wMO9)~EupmU9{Mt1Pe!H|(ov8N%<gxc-{3hUhqzLJ(gq9H+G!xX0Nd9-X
z3I-S-dM<@BJZzW(PSj*boA(uX-t-vsqd&3mxxGFsQ2a<g-PuN$WFRHirB=SiaC(mp
zV?g{?#OHL%@>};Cu;*auGz2>`zei;r@FQxGBzz%dZ;;r%dg7UgWsfW(i8WfqXx`r!
z0QUtw{dVxkA&Cn1_T_>a5*!%&N%Y;-A!*XmmBZeeI#$!bOt30i=QV!Ji2M9;h7)C{
zKm0@S7_6Q8`cnmh88AF7{C@(bCljqw>Y)%8^v{J1f>@j$U3q!Lgj4gMO_u3e`wZT2
zY-Z7`{U0e3N-3?h2;t3jyLXhD?UYH}p}0o1^;kXtw9^MutOO$%vo!#MuP3v191vCJ
z89-jX0TCkS^+;|q`bj|VD+F?{1G_0`P8=-asHZdSmVf!J$20jTQbqBb^Q_a_xcsCJ
zJywG7Gk_k%<zK*Afa@uiJ-up^5$Zi=>F0`yFBOcJDKxla=HF*1DY38fqUPh~Ykg0*
zR-bc*?tSSi)z1%tJ@XGbIwBZW{wM`rpbJEzTo6JigQtk~V)0b?b!;#wOFM34<cSG2
zNQlfr-Ei(IllyW1fH*O!G7!OX<u?viqY`ADT8n)yPutUxBHGHDZ<J)i3C8+#j68A{
zAK>0f&XgJoXPIy>foBMcum3;R{xT}duI(Cz1wlYmIuz*+DFvicLP`YbP`Xj+7L;xz
zq?Hr_X;4C>TLh#9=|(yw-fc&(>wfO>eLtQt-ggYf`Qt1+j<vR$b8d6_3enOm&QG|n
zXTjiN+T?PpZ8}&>t-^VIB9s^H7xEmL+DF~blT7matFAAEuc2Xhnf9Q$)rT+KuHCx(
zEu1Q3+x_I)(-d4|E_5^`J}>yV09hJ9=;`1FFjiRefTH*yObZ`fquc<j<0(}BaAH)i
zus%_nWv`LIDRVEfS;AYyUtkzJ-%{|Nz^ULQJja&-y*gf&!`vFx?~B;q0nN*bVH84$
zmG{bNB2B5*jW6Q?9S|1&vs&sf+ZMH9$|PLMSblo)$7=h&)}@h8rMQvJPoNHE%(O<x
z5JD@5hA(wjRty>V1&0X<(V@qZ6sxGrsT}&CdL<n?$aFd?1b|UdPl~$gn}3Dy6N*n0
z?PLX~yj}DKm2CI*DC<6An{FjgH=IBO3Aybs70cj$Ibtpfz_*PbtMACJZcMbUtoGkJ
zr}cmf`Qi;wzvKEu%9q1=GD%**h;Q#YWW~eoWY{RjuR|shsG`|y&@D7J)v+yP$nG>i
zmm$+5v>gfzUO1n9h21X-d`1c&z2)|QdDpqz5q64<NCeDLQF?TP>^4`tmi{Svt;%N@
zQ8K_qfxd=Cr^j^H5BtXs%Mk>v#m`UA@EE+5wZ0R1DTE|YSsfp2I=~BRQZYm~r=XW}
z1mZ~u^*`DOjdMJOk8eIY-MX;Q_Hv2a&Z0Pk%EymP(phO9*3JjI%y-ii-p~>lgWe+2
z<(jDX>G7mtM%4l>nrm&)(4HD9cD&~M7SWGSX^P$~eXRa{nYja?1<Hi(*0W8`yLj-9
z`!&Oe+IpF5{_(72&cyy#$pvEi`uiJ8ErH}*G8E60L^CF9=dPCQ7UP0ye+kXl-QCT-
z;L<(n8vu)5Mnz(T;$AGZ7EDw1J{Y*N3aG%$?J!_LbnIViXRuMXa?%c@U*2ytoc6hh
zp^IlsF5>Y95L{VS^?cm%M^z;YAy9(?5#T;%LWu^mWc9nG{&_h8VaR?@m|__?4kS>x
zEmHUUiyqFt-hqdj-eluRPy93olnSbeI*>9WWPR{ZLnPkWVn#$CJOjm@`qJ(|lRzXq
zqFG5Ag72!sN<rlf3M^7~7sH;%<yJ$yEa7ptbfh7({3w@6ia+d571pWjV%MvBP^e$)
zU_<kK=%d~abaWxDk*s#I+&Pn9jXI3-NZ4z49<D8tmpX^@p}O8y;kZH}^hUeVmfUb!
z@jY~Yeoa9bBG2c*2!bS{N&^{@pqs9e^pX7=es^gf?+N3q2b0;iZwS=5IjKgPRN{cR
zin^9ZS>>a`8zY7`!yZj?0f)CBr3sw2HW-m4rW|3c8A>EF=QX?CX=ZAKhky1)3=ITq
zP{8{JN2F4ebU)+#B*~y6bI$Ofp#UHsRf7++jW^oFiEs23H(dHtTB@<J+eyyH8kc_~
z@kD<fPrZYzTjD^$gZxlV?5o9-xCuHKkoWcJMlu!4O)H__JeAT@NanLkoeximkSfDJ
zT|YaG(1+KwS=8P~##*c705fIj(1wYy#TA(EJ<fg(OBr#fBhQYl{ructcH-gCauG*J
zY^22GwnD4S>}KIlvv0{3Z~U*?)$S5+?kl2+5c}7%Uq?SJcWDhLckHfVZnjU(l8;{=
zEj8`Fe|(kw!CSGwl!e>Ubt3WP{iKQ$%AzM~e^LYPOnc)%aTwsOKUgHrcpR73ti<Ma
z`5H{1G{ouG(M1}fgiWCD^?177%|}L2+?FJVj0No-GX$%<Y{PAaw~12{{4{GW;u<G}
zVOk>%>;=@#b1mA@bPHh4Yr6wIzHFw*!WV&i;s7@HlW>Sq;7xa6p?aCfiuE@*EDhD%
zOE|&w^?vY#;cjpR3QW)$aFrfF%UDM9lh}9@M_f~LUK*1m9({<KY=5%MZ6AV3MLb#c
zZ!oE@iSfg)J^B|+NA%Rh5KK4z29sh+y(<J$wvRimEIz8ze}f4hf~h2NoY*kvh`@#`
zDuQ<!{rZG#IsVo{Pod3E0nb-a`B!nlSiAmQ74RDun!?ZJK^0G@Bovcr1%oT3g7BNj
z=s+X!7Wz4h>3pNs@Lm`vmq7OU4#*z)2q$Kp3byVyT(nIyM3e+SfqFAs*LI`U_z3=*
z!MbKHZ#bWz7Pm5FAkTXBZA>-Nc3maorP~Y4B^e$gIJ2BEmt;w-(ba%NdiCC8hz5FM
zdJ|xF(&dEWCo^<ITheOnib+Z*zoKqfef-=~Btkssx!FuYcsjmNr75=Ch$D(d6924c
zeaWuwgqWJp8+x9yXWg=-4yvGE=$1#r?g^D(n*iK5RQlrPzjFgt;~Mjk(VckQJ(nsV
zLk!nd*hoifTua|+3_kV}a-N}NSwv6ZY?X~{)_(&3Ungz>;^Y;>XQ~k1<*p0&Nc5yu
zb5mMVA|C73xD@N#b5FZ`>#{eiEdq+MYAHME%0e6sPF(~j-WXHIvNJPrD_!BG%LZ$g
zIa*Rmcq_Df0{ZI68PY>LG?DCHwvFD9dTPKy5(C^)y)iISUvJ|`!dl8CrQ;o&(U>>X
z`xel}Chm`TpPdY`CC!_}*N!fqe3#(;osEtW3UFAjmpP66g0uU<FG|z3*b`67I1*l~
zzgMPwG!hc-R~D3!iPQ=Gya9nokm-GW^I}zysgx`}-_(anK8)a@kC+605o=dp5}jD&
z+(aHtQrY!^)mU8lA8E27K{dkzfcw}?N$)7nb&$RHD0>%N?Gn3{pIP4!NTe-`jYPsX
zJmlJZ4%!1Nt?xjH#tJsAnY{b4Inx@u{ZyiM=J(xHz9&fK{4#L024yf;m2sN(@!cX^
z<Z)v_X+@W^Nut>BtB;oRnvGfpRs)5Vnv$5<=%(G^gOg3;v5eN#wBG@kGL-k#ucGf^
zeu}H_UL2NS6oUJM-Zqn|)6dO7JlZ=PW>a(RHP}T=dC=@@dm<X8VkT?2OH=nugi3QT
z_6~3<{I6V>fUAZb@y%uaDxC;RR3V##QFe_A$;}!s3?zOc-2XK_^yf{Fy*)eg^2YMA
zA63W#+uB&=kWl$$pQ}CbU*OHeXq&26l)dC#_ZYgk@QvH&b-*_(6RLX}%o(J*dM(0Z
z;3!rey0DQ15AeQnDbV1k0TeRvy?hVDG~~m#0|xN?GhUY7LQh(uYvXvak&LXz#>E9L
zfre!7E8jocFHFu-?+ZyoSMDL3+<UP{BOycU({wQFB9P_T2v0*dLn*ZJiL6|eZa$+i
z&Fjcw^Ubr^Fn8&OuUD~GhK+7vcevO@M#Rp#mL*h9Pab=HX|2i-m66#yv*4~4b@x;E
z5u3)1Tw7aOD`!wz?<K$u6h;|weqdTTb`k0+zLXcPEa-$T|EDZVv@zIB@wne=!rx_V
zFr+ziiy+AxPN|MHu%G*ul60Vn$Y!u_rWzD;PV+xkJ5TX95Fj5EM#pQ0QGg>`>5}1{
z-V?>H+d;K^S~T8f6{}C7^|PRI;y(1WRkqyWX2o&$C$A;|fM!A$#>?T3KO<5?!czLR
zuFXt2VHNA^qUOD*G(L=x8B%vDOdNnOvIN&_UK`iV;`Es9by0|NRIio<(yda5MU<&s
zb!#PcJGmwnnI)hti-Fuys!6l+#>k5gh^A|WA8oNqG!GhDMYnsuyZQJjvOVR#EF^RL
zXzGQ+n+(Rb>2mtL;WDcs_HmZO0Q_Sk^u0x6;@@>=UPn;iufFzxA*!k2!{k>-17OCC
z8QvRmkreuD-c;u(if233nOPkvbu(RS#XP=<CR`u&+Bcv0miC*|+QyaVT~t43;>_>3
zJDMmz0aqC!6+Gl&PAeHsfA_K2FhP<g`y()m^7)kF#zw;u(ukQacx3<myqo&JJ2NU&
zbw4e)*JuD8xKkUy=2fxJM+&oxfx_&)Y_n8X|G`27j;c(DxtR!kx23E=gGpu+Cr&(K
z>6@>DkltDBD=KnqV{mLCXB5J2Z`_`he9wx^T%~^u!ipwC+6-j9ybAis(5|@Y!}o-#
zNn6>$`jhKC?o|)*lmf6zR%cCc)Bq1k)_<KIZ1jv2axkhpxlxa*655`^*HqD6)Q~SO
z8MeQ^c)HC8-W3)nX588$2mH!V6Bp(Dpl}1uF%cbGz(j=gb;k*fH;*@ggUNuIo6O12
zj~|LNPg!Y^Kf1JsgT6~7mi-QzmV7+>KzPwL4tb$Gw;;pyyj90RrlLwGVkLBpz0+@V
zN$9ByrIpU58$VQ)djZQcd-KZM_^bWF#$*hY70eb*+oGj!TSbIU08z-*skEKyrS4e`
z3W+erxmNP5CyEvWh@|L)ai!T8jxyfiAFXM%O!v(Szq8=V-b5{_6|SuvY+4d_Lq#oS
zJa3hp++lXq^KHXH#gY|!^d^f>4j`La5(!?55JWs7q)$R{sNq%fcpr$?8>iFCJ6s1H
z*zCgYdzshB1<+(#S1GV*xg;Zkp%;rzMq1hs#XH1Io6;A~>{-ez`u!nu8Zm`m{%AH@
zX3^x`1U&@z-O)ZznA6LQPMdnUr4t@SSX?17e&*`5wWW&;{|>)@@@Hf-H#@J5KB~Ij
zgkHSw4-C8HvQ1}x-+XtHl_#&eGH4<tJrvUKbK)C6(=SBIrkeC+3*=H<Ks#3Yx;l1q
z!ii%(ddjhCcNIu^>s0)olv-qPwKK_uNs<HBO&V?rtKhn)-4JjvcTu_C!{#)7n8<ch
zz(H29WRxi-Rb~w7+To>V;}}1Lhyj>pFg%M_fspelWoXUZ7S|Mv=>y?caX1>8#p6N+
zL+Uj-iGPo<)CeE{g#4&o^w<aF2JQgBm1nfQBxqY+pls3Hyi2C*Bs6X`4tiSpG1)j|
zRxi7Zh9B_4+D_T7kms3OMCuE%RjjrzFS)D7DPR{Qo@(o*7%D;Jf4d|JQpM3@nkIbV
zh}PyN=ugb`iy;ZoSG{wXqxE(XFR&gdxxZ8^`^pcGgDC?vivU|8aN+iIf-pXjmT+=;
zaJSRgq9GcgO}`(@qH=b6qF9TuI5$>iL9m(q@J=gZ2}w>)nwR!cAP%u=#P!?K1ZgS!
z_R@vS+R3R@ol5%bF?>&l?PEX4<W9B_v8c%=IhR?Fz=7_h*18otv+iAaOi#$B$(g|(
z>l_m?KXnhY)JXS}*NAiu$vQwp>Jw<0=Q29n4OR%<QuFF~U?g*NG!jTHHzw<UR5@CW
zFPk)w3X8|+iyt=%5bIq>XGGVM^uI#AS2gPdB0dzwH=NX&H%6X~0~^5sTf=;G5wCHS
zuu2XvE+0$Y&v@E-tJ1tx?Z(K<854zJ0uJ|joNG$8&h;iOGr|aWY*`X!oG_kNE0HHg
z^$e4AZ7qmmd9D018KMH+`}f5Y|L2Rx$K}K~U4oaD+McibVWyQGDhATKQ7DH5t&SMN
zTs!L9z0{v`k0et=<l|C1V_GK6S4<~cO4@H<VgcC&WC6_k7f^|j@xib-sKWD)QzG1c
z#Wax=pswiGdZ9ndB-b0t*Sc*uRXo9Ut4{(I>wxS}E2X#jM6}nz6o$aF=~qv9Pk98-
z64Po?V^|(_aHd50{MiMT4cBh(c)LfmN#^^;W|+qn$^dwC`?W2+`a8brwDtTDhK#<W
zHksW7*RJW$jbNVnp|}=|sF<MJty<#>G48#-zX>!1BeBvm$Z`={wQjqCt&#WS(JvEz
zmp3JKULEFITND?;H-iDEDV6loM*uX;W?iTJNSHiq6Q3Oa3L9I$;BGsU@oERPZXIC-
zZu3**aPL3l*Y4l+e<$|0H~9pb{s2Pqpl02NKh|~zaD3VH`==;5NRdNb6<z|`j`u@H
zu}f+^@)7~{T=Dy~T8-;|kosFdezUv$^nPSBg?o-dLb`?@acipnp$s*PxYHH>y0qiQ
zh{+4$gXlMa$f>{jmq|ks9Z;d~QP853URa+<K|p;DdbdwC$@Z^VxbdH6fd+M|fvr{!
z6;11REv{kTyatE?U2E7FY{x1Tx9=3YY#R1DWU+3Wk*om~uYP~sk%leQMe*h?vc&|n
z1<S8GO}q3I0mopc^@#$k(t{2|W8%w1?7EtN;u90^10HMdA*&@@X4aD$>J4)f-F&m-
zrsy6i(Ynt)1%SRX%gXL_R}=0h_^Gh@PoEaw4g9mFCabJGRAc|lb2Td@!t_ZLNrcJf
zbaMv22mb(X?Q{G?@^i}T{(6Df&2!xH0s*p1^{^OVOQ*Zf6nVwtRs)3?-#ouAgp&-k
zr|dI$2{nzO0w?H-o6B1H&>cMQ2Qe9y5GTeblSbFIiVE?KZTbi*#3LPj@<9q7it?9E
z9+58T`t60SauLyF6jz!_iQ5$pFx^5V>iGnbo){)hD?I-5Pyu5wQX$h4Vq*Rqt<hho
zFiiRRA)*j$-{YIpPq?DIv07V65?og>&AO64fSpj_9tS-={m<1TGq%tJQ>O2@fY{N|
zLUNMNR4k(-({~_2y8>WrZP9g;K%7g+1(J0`+8`9>sQKu2hPJBhZ-P8M8HQ}*RglMH
zykN~QavJ(>`ObI_oFHs37r^)LaD1$PrZmynqzo-^4xoSf+FALOFd0?MQ>$w~psF7&
zx8lL6m9~(FoGyBHY#(^tHy`^hsGL!6{{Q&~K+fxa-1}$v??<mj$P9LIL;;CO4SHux
zaQ@lYHl%T1SOjg7Q+`xzeXd$=^gK}>sP)xLn(2VbGV~>nJr|KiJHM0~m1>NHRYzT9
z)1|?baDw<eN>FG~z4RryEK3PC;Zsh}?0{Zx22G%!`+#ZV`fbx!nXZ#Q7z#u6npc|B
znJRr%ee(ee;%xY%@ifVm762lrdKLeDkDvVZT$e%k*&j}iQy~e*>JP{IwDG29<kK@2
zq}GhvQClL4X840Yj}UdEbUz=*Z7VTgi-tb%7!nmVA{nTUiox;HQ#b}oVRImu9Dp&N
zdp7l@NPdSg)y22Oq%%92BMz&W6JP%5J+i5mfCbqNgd+2NXr9Vya9%(r(l0M&7$AM@
z<1~bs{Shr|-)>A`3>>C?)5K_40~le0zDQcybk1dOF_q75B68=ru?Zd^4QN6ag(ozE
zpl2YsIk#A=>dU4j>T>cs!7Nq9@=sF`fd#nJ_*)cyp1%Rihgu-{|I5Q0Gn@vxI!H8o
zstz~i>NjLw23=(qq*vXz9~yg7I;0~oY`4T0PETlj?IlHy>wwY+Hdo}e==vBE%SvJH
zkOOe#_grN+6IV{dF^io3LkA$GzXB2qT-n8-JMjv<;)5{snFCyG$VB@QUI*da9VU#b
zmw1(LE4&${zlm%$fD&~%;f`HBsB^jXJa-51oD!%)_;L+gru+gurtnI<kOyp=EYwgd
z5g_4?LWhjPR)oMypsY#EfqX@;1bjDW>{V49s|I_9s0Zb7@{^4NX#{q5|Ea5nfhs2h
z)N3Z$bBAFwG~-|53FEfTut6n{dkBFofr!+7X_+aH>Dm&7-FY_)arf88%q-Z3AGyO!
z$_%(x+}0s=ajYL+oz1n&UN!s&P<X5&3>zN|KRvJJb@<4NMwvxWSrEe-8~zKiXjpP{
zKYa4d@9<G{P2?g2@GP+G1Utb>^nJSABWPNy<RL>jp$$M(DS%V8e-uAms-O7M(h~Kv
z>32YmHMOpx2OvU&15JsH2PMXGFp?3Qd`li-3L+K-RTTJW#Xq@0%vl`CEYyak1%`TL
zi1G8(2u<opCy9GI_vLf6AvA$enIeNu`xu0@xiD%sq2A8e0PR{IZG;fMp+D6M>NSwk
zT*#p*Be0k`>1b%t3@%0H7x$WNnLpxRZBV^WcH;|JkS;Ls*XkeB#7*xO_|<uIk~eT=
zwg1Ks$xYA*V$q1gN5q6KRN^V!+)GL{Ex`OT;A$aS7Pc_)Abk2jZ~CF4CzA4q$1%el
z4S|%r7%xYH!XyHVd~=bFL@IsQ#(;fN2JM<q>`^RKTgdP3&ClT*j2*MP&~Yxhc0a#U
z{!)qZ3`ta0a5O(M<p{W9@P=T7vy!<1xtFJb_+~Lof`(H8D*tJgn!45%x97VhryD2_
z+L{o^UPxf}GmNANp5X@pSJcW}yIV%Ys{R1PHomX@e-7oU27pmCA%4#O*DE6z<40<i
zQ{8`a5!pQZ>_JGqKg6a09ZW+jDg<8>WKLfjZmbfiw8M_Gu*4JR8_9#Y?&oDhP4K}r
zOga`6Vzm(>lh4ib;ex-Z5NQzAV+FB2@|ck@dG%5ldRwq^kxBw$i!4kQpVzQe)@;aj
z>NpNjc1va6FAiK`;*9GuOV!LD7>b~B*-g}lbN&9QtwqYE)AT&Y@hHnM<3Sp>Azb8X
z5Z0J#)7Ydp4=uher<$Yyp_B&OyzU!=&wTSt*OAd6nGR`4cK_W%A%73uUce`so=WSw
zj+=vndiKggP-1+^<;#T*Eo#F5Aq1xd$o%mfg9CvY0%OmJ_n?ZQVVOOGyZZn%F39&f
z|1CwnIfMi!BD+ARvJa+iN<0pl;oBtcavY%a59F?KTI%zg?@6;WU*M73lUC1Dzcqdb
zzU;mx3&7U~%kAk3aZ0FIg~T9j2SVB|l2;ce-Z#K3X?n!@Y~{oLFVClX-0n}ce?sw)
z!hg&a*VXyRnBC4$O{#mM46Xdd3-5oOYpVF)k>LX7E7)#hMU#0b()4#rucm0Bas#+F
zmHuo+J-fJAzbH-XYyKA}@9~`<31GxZ$U<xsZ|}5c&3BL)Bg@&HEBqw$8cJd89ViF`
zzJE@Yvf^8?CxrUu11Z|~)#qaK(`9|F8ZL*$2P_DpeF9>wodFF4l{690!1XXxO2uJd
z_b|6%rnt}jOaXQj%8ZU+St%>1!R55XsP)<nVYf1d=iEs>KR)Uu9hghieicnN=Fl|t
ziBR;|sK?0lINXYXhGy+RO2m!pnDn0M_fj+E()7UEU-madE^)hrZ9%*Iqsf|0n-BZg
zs2dWgG@TDbHa<l53r6<^sVb>2Ti*TpfhFgWO%s7~bO}`nZzCg~&879ZrGtu6`oHS#
z@&B6<eMtn3FZ|R5J;I9N^*x}d4Yj3dNbH7FYOSfenwM4XAidb#^R>^g_0)_Mu_sXV
zkj?P>uKWuP#~oX^G#8P7r3rT7Z$7-ki8L}yZH7<!5Siy#r5%an2lwuT+l=EbGhvB$
z0iU*RlG!aD)~@hsusD<z7gkn<#e#tvH6XtpRDRo#C4O}RP5Wrw)1-;*wkTS~+Q*ww
zLF&H@hzpU`jZA?(>*k3sY8@T%9F#~qN?<~M_vs55(+MBOO-RB%2+z8v+r&0?Ta}ms
zth)_Mz<ql~lFo*ND|^cogw{1e_1cL>U)OAzLC1z|W~AlYn=DEH3_7$MmTeaycx7ST
zOY)AK5p3^yzn`LB5oNCld|&eBz~I_Xq(6RfhAhVCTHidV%Q2^htjLKHtH=zD&Km>t
zh|9krOvR|YV7Y+$p55Pz#6}?_Qc?tEH(UQ>lZ#HR)AA3w?YAZ|c2f<0O%}k_g+)sd
z8GxAZ2#5*V8ZC5^|A4nIGcxxtUb^xYptajH<6wduRO^xg16G46BMo?ZH>EbQf1br3
zH>7H-dT|dv?**W@WpSaUSNgNQUPo%SevVa@7KmF=MSem%o~6g0D8}Cxmh4IXhm7c;
z{X<5ma3!FA;@*@y1gzw=NHTJllElUKAOih2<P;d+|E3-KZ*A`wsUAnbf_w~#FI!jP
zY8dTv2-&~O|J1Pj50R7a%SO>zIpG#E;krQ1l^?DfLVW9ktJAa*Mt8$2ECO>FgH7ew
zMqoJ43VQR&tMsc3<%H9ijl=Q5vr=PfURuDQV3$Eac)RO1_0pP1k;@|BGQ4b;AQ_t@
zZ7gu~zD<64Nq<k3V)UU9oC+!4#%tuhbKjtEdMQSCJ`Y8(^=e;1(;9T4=7Cdt1=Bgc
znA~G92JnuA3-Z-Z*l1If)rW-bZc&KcIlsQa>H|s}`J_16B=f#+G$@#KSjf@B`qUc(
z`u0wLTj+D?=+1@4E;QZrueBnZXZXRP_Xg+$5e(sq-H)NmL@eK7y&<q!g~iA3Ug4Lc
z4>mZe9yOFhc}LfjlX%12c9*mIq;7>l_d~F8oC8{bOt&i;D$NKZCS~cNkg4?oVw)Ud
zd-9V-Kf|-62O7^j-Vf|5`cK9&$s_#^<BtpPZc|Niqlmh+`#Q75V_a`$y!m$k#D+y6
za^HYcZ8=8gweQ8Rq>1Y0-8x{e-<&R0jH(?fQ0y#+*xNtAWz_+Hrl-kPTB2DWLde!I
z&5DYI@j(jUTZLXHM_%ifMgggP9Cd;6j20VsYZqH6)YfQ^&+GKrx&6r?(uBWKZFmEy
zz;}=tqfZ2`fY1lo(8SwR8mI%o&hkX9Ac#BY)33z_viW#oiBuIrysNzxLy2X(ZUGxu
z($E93<#riybDyj;(9`?9(F0<K8RQ>Rru}B7AT=?_66r+K((Q!>qcX3qB)*<9eOlTx
z&z6R}L|jR#GqykCT!JcT+Me5ATV>Q&Uzn*GY(GoBa*lztSG;Azm32V%+Cbtx=rrz~
zx6;2%xCU%Xz@%^Zt;HV`!UA#M-!F4~k-oQVaQ#LQBd+Xo5T?=}V&g7)<&zNf_w@yO
zTP#&ZuKKdEh7jNy9<Ht3bBCx<!_+)H&5a4T0~s+$@@qjiQ&%DW0=c*{{Ilrz7qR@t
zG*~6JpQbLUs(gcaU@=a|w%3y@TPfv(t8^dFC7MIoF96e%CET9YdVq8)CPEm$jJp$K
zPY-5rI#L9kpO!iGOcVgoP71Xa&{i23E+Sm+)NbAMxu>!!YzafueVL<21=_JNDP)ot
zYGf;1@82?!o=`glA-zRQ==Czk74^p1<5Ybxcld!|Fv<^C$yrCg>equtN~!MbRIpeq
zWM~tVQ|Twzd!#M;HOTUoS~nyb9)IvAC4vRL&O11ig>7>c=Doh4^RiCl9bWw5PNHin
zG$9#jB4nvPKMyd$^Bs)$=U@3JjUu>3i+F)qNHF%1;WhcZ;6J~cd>neVz&MBY)<5dB
zXugdT(7Y^4{AF37Dzk^mlh#n2N)EZ5nHMR4tbtB)%W!b9H^ZX!+UK0cx2DxzV<0Xr
zDKW>hd71xXYH<Fo{us#ACGpv7cUNh?g&70|{aexG!-6yUJaR4ODo_lfsJ7joIqSB5
zX=dCzpVeaj9ZLT5E!87%lK&1B=4#Rou>JkOd{~<EaVLv-CW1cXBUa4b?{Rr>w9e4|
z{9FaB`sYzXY7t5l5w4l5y((}KIf`gj(d8R*g|t=h5jrPi31YL?%L_+nVS2B0f$g;Q
zWa=wTzF~8)#aS>Rv*A)}rq_Du(AxG&RmKq5%%~EXY(}VnRgGGt4PED|Qu)QX7h)y2
zf4{l=ag|q29HP(3!7&?bke;Cpec^ev*Og2`oOkwyU&qPv?vmhrtm7xIpxu1x1G&wG
zpy&<hnDf^NY}yYYc(_K*d*kA3@Ui!hYdVsL^%?0O!@g!KCfz(i7uu)X&U10c{(dgh
z_|Ev)<QgblMI;N2x`nKs=`bj#Du9M-t4ixV4w?}4WUHf$vViS7`~lah*ZSveMz!B>
zYG%NS&M=!A<cVvHrgks-EMg+CuDe6|X*{-X{+Z@?#EZeJT8HW6p!coj_E?AVZbtOb
zO0_a?50;e>?p@Et3t1RmDaM2)^X(Yo`lL6JWgxmKT4Dkt!9_1!Qk8@*u~4G1{Y&Lg
zVul$X&;2p0<BfsOi>r(VS9D>KWAgL*8-wP4vKJNS2m}`jtGz7H%lvL82{7gfZ?(~8
z4{YMSI^161Q@luv*~E$>`cd#GDl3?&Q;tKcr0%M*lPI@TlGxXEG{Y&RI3Ay>zxDL`
ztFUnTgD$R)TVM8TzAsU{_NC!$<so~4WPGjlYPzOA>cfMCuYD7GOKriTSCih<YGPFx
z{v?!i=e_|*L5m8`+HGP2NmrMX*-AgWSai(5;u<gc2e4}Sf($Jmq!#ZfP2f*_5dRgM
zqvkDEiA#TT(2K)Z0z#Eb=UMnATvR$VtqFjq&p^ho1ow0YxX156PAQVrORy0eQ@;>P
z$KM#M%1GnSyUFo8CjPv|`E3?%PKJ4q@FHHnWRkqI#}0LL-uWL2;*D#Jj;G6C#7BPM
zY5O3w!6sYb$KzvUVMU6XE4qmcC4q|7s=ndJ;*8yNfzHPYsP7t^E%&B06++iI4{e@E
znKXW1Yge+CK|_v%4jYB_SDo<_UoZF^x>R35GiJ2uA3}h#&C1A>eg(l1HZcAkM-64^
z-&k7~ZL#f5M+bq@k3atD(zqLeFMbV@3okpV4OmaqBxuH%5GNmziC0vxlqQwq@t*f;
z`ff;#n|byE9nJWBuGdrl(sfOI@C*vBQ;e6LH+G7sy>ts(gMNj)2Fp;Dq*RRoO}Nd7
zEEK@Esu+9y35^(tFA%d#l%bbJYT+1)c--!k4^^i?sZ^&=bJKA6`(MP;#st@0T7%dA
z_##_k$+U3O7IX`ku%MBnz$~H)d1<YmIZC3%|HdFUT1o)<Y(USRU$q)a4p!g%WPbZT
zgsRfy%CB}8efYkY71c|}dFR8g-ocpx9A;y0%C^<sJ)A=*41qQ0#mJ>!>?_6Jnyn#-
zho*H#`|0G*QrVNH$oDSuEE-YEwYRxG)YzH`d@&+J+_Ac6hH`7&B|hYC?bs(WvC`q=
zQ~{LL*KBwL!j?HTlhcrktD<o=#}BWNnA}kQCUQgwkgNX1`!QlCql@;6sxydIj<fFm
zM`w&$z%*n%P}S!nLF9TSqKRiL43Gcqz$Ul*FWDcMs1*1c{Z$zO;}wr$tzQoX)!`XC
zwyjnO1a?tH&Z7PO0CK0%@BUQ$8_F(;Med6F{_~5V;OP-q_fl}}P!ANSdwt#cbmOXx
z%RY~Q^Ky)BF``K84SPi;PZDAQ7d+b~x*-q_;aX`L90HlY(&xGGThD%+>t9GPH_jHQ
zp_<U~`2a|GzTZT(ksR=nAT^J(uJ6G#;=3Y7^#t?r)#hK4xh!o}fd0R?`}HN}mJYAC
zGiJd>lq9s{vft*Vtf?joM%af35*d?CzcA11)O(viXk;GHPG%!@>LJ<1OjMNHe*;Cm
zA{cav7qVVkxSKy&AeLHq6uFec>?nir!NEYoGb5lFR>GvoCU`}2K&-Wk0*ypUtSp=Y
zRaA`z8$*lJ>PZ<V%^0VHVLf$4nTjA1&wqc8WnS=UyEHa4-KCapJ?;o(|7(jPf`xp5
z83qF5N4XFEE?prNgU8<z>I8iUeO^c+A7Jr8ye>ye2%G{U<6FUf0Db9Q6uw&HdO>yH
zI-$i>#(#hpEp^*v+@HrIE~DJ1!jf?#mx;1zhQ=iX8I(DdR6k+raXk^xI;0&fD&lMm
zN*P<6{jKM4G>IbMX)c-~>=wg~;brr>-~nET{@vJ;9OB*@`xJqq2x8$M;onk(@YE$1
zGaiW#BHK9!gWV36XZmZumQE}j_J+Ccx2FV@%y%j?A6|a&g=K)ru9>Cc$lK#j+;@L}
zVH2DkK6;IhMVjeGJ{2jLv%=*Zx4wVzjPcsKJIACSyoDAXJ?lMkaV7`<?)r$>#AMN4
zIf{ezxIw+jyZwaH2jlx9*TS%cOgf_dp2sqg<Jl2D<K;A!;mgl}*v2@Dlr}rKaS+c>
zPtW;HsO4UH@i&!xw7FXb?e9qqnj|CVLY@R#(B>bXQT<#K6jk%mCXG5l?ZS%x`Hes-
z2<Zs^{@{|MaPaDI)&<*IN1iVN9N)iS#pFevfW3AEy@3Tngh@iTm22D{tyW>JWf;X{
z0MnNoNJe*^8NUnQK8<{lHb_ps8kcv^b(7EcoTeeVa2dmgj(XA`xnTFB<1xk^QvQ{5
zDl{z=Uu?=RNlLck#%(1B-39Mw6)XGGBAo9iH2NoUL}W_D4{|AHSPE6RUR*molo{o-
zBR;9NufC%*c#OW-H6_{SkSumD((!avYqZ*2WG(gZD!J~lVDD!KixI8o3t6b;D=G<t
zYs_cO16fOr1Z}T`9=Yx1;49jFFUdM{k9O)#yl(#M4&v3akuH&1O3bD}MBx=2Y~ZLT
z>v7Py{H~|}%V$x48JQE^wUK(Yvdwb;!=9X+{x9_2-&03^_1B}<^?mL?l2Py{iOev*
z&a&s-oofs!R>wzTYW|IAXUpdDI_f%sgapA?LqqF;A!TgZVb0LC>K90MMS}JMS`GbV
zvnlqx#zZ)?<@xSGB@zWT4NR1PEX$#KX*)ZV7}&<mHUEp(?$ZowTv=jNTV&+PH+FUZ
zu3Y&q`RvixQmrhucrW&}{^prudZmsnP@bu3QGK<a_$sFH2jP?CcY4iF_nMw*i<+XX
zC2;A{yQ*3E`YF1hXLg?@3`X4iz_!uHN_#eU^?gUiIJ1VBQ05I|iPZb!saX%toXN=b
zs}l#Wc!n#jjbv$;#j)=$ujJkzN{!)B)*ts!!Y=8$yM7h3=+t$EUMG}!G9_=ZobTa)
zttXS}{b1WPLp)|O8O#zxE|!VGpk^sM*MOmU$k8Ko(xy1;WdHW%k#7VV5aVsK1ie8~
zEw2PUb&>PE9K>ew>y6;b8Wq?fej$u}D`i6jcJ`g~i`>=u<t4}PSC3)%PJdwDT|&B-
zA8%-hFyG^zvskeLU43-$&7|%BN>5Q0<uQgmI#HgZS-}p%r*g+Ve;O}Zh;k_;@oU&x
z-dPgtz`v`+nfUZzy>7A4r*_d{a#1`-0x=$JxOzi1{A*P3i0Va|U+Cc{oz|1m3BtSu
zl>67#lDXTXmP^rG)K-K8FAvp9<O(H3<}@^pUz|(M3CsBPaBDbA!{QtF-1`YZf^u5)
z#x>ZKa5_CGU}#CVUua0e9k8EbO?ntManbP);Ugd3+wCoQzHCV^W~c;_4p0^eS4BhP
zz2Rsnq>ugg^El;&wHIw^r)A7s{D{fiUk4?s$y+G-?_4^`$^i-(rk%`jlyMi{<gK(0
zXD{v4X6@uC?d%93M-vkZdjb9HB)NPT|3jY_m(L5ZMs6dU;zR6`Zy0D?*uQNkaK+a6
zjMa9IbaF>kJ$e32@#L9n?PFZ&FPWNtaUs`*U^`=T=kncRE5TcyTV4Y0J4LDd%b!5Z
zmGv{L^Zs@zsnwyqa^I9mNS4Jd`nH%L_TM}Yf`Sy<US}9vWX+J7tmPe;E3<f7<pmmp
z?M#ISe-Lj3Ii5=8IOg8zquPa##HZhFwVbv)k?*4V)kzv<NKi33t>~@LHU=(kcWb$H
zC#3)Q`%|PO##<LPV#3q0)wx=-_2hgu$K8m#F!-QmE^HJo)+!!S$!k+xl5}`w;QK0w
z{qMK-R_QAiht@`T);BU{aWTL1+?4m@NgP8iy4IgFUD>=N;U_HtmOGTvxw|(kExx6R
zDr5hCf)Zbhk>|VnF;n}*;P$QCKi_yQ6W;ngDz0Zuc=tp2x2yn?j6ca4F3cbPOwi>H
zeGDUL{aztw<k(q6mcZ}sRJGduEGEa=wLjfhf}+2RI8<w!<n57BU1p5#XNl*Z!IbW^
zJI1Y=LdCD`Lx+)WDQ-+-hbk;X^AtJ3Ayqd=?!rbE&*-Q2^OhkNX&GLVCJ0y1{hw7<
zlaVUvSKDgI4U<C?C#}QYQ6P8ZU@tC|xB89&uoUlMU!%_<DETpv*mt~7JsR07tcJob
z6EZzE-+w8-mx|~-!RT*UQx%{Y#lo7c%kVN=D6-iO|3L;~LIwKr_iDKh{da+s2*_4W
zQ(E$&<XHBDi9{845q1><FQRm!75N)pzs?PXzv;X-7zNfpA1L9k>SE7(5NBW-ABzKx
z!3zNt#u}*NaRPRkXedPI?Z?N50a}Tf#Kr|)<)Ujzw;Lms<9@m>b|`<zQDA1iZgJ|h
zz%zQ%9e=%NiZ7wW_#LarX<W%%C#5a7$HeKH+UUj}tG^Sk@wceg9TVGBL^eNTo)a=l
z=S1AhM*L>8x$JrqBrz1X)xAnMVr!<<8}9@R6}&T1#t`ym4y-xAY)wXq(9yys%<OmH
z{~koHv-Go_z~2O0GW?-Q?&*8EY>H$!H<dVop%QY+?B~u-SC~6&fR}HRFW^cD+|t*5
zy=9;cy#R;o!l|%$D{n#0MQpEk+h*ThmGK=@yKhE2G-I@^o4UAFrkc!PipS~9o~W`T
zu}=Jd73(rqX3si-G|A{@?`}nXW8i)AD3Lvi;3qsmwsW|UM&|Sk@CxHOJCsIW-8*d)
zuR&q)FrHoSrUeQ%8kkrD081Xs!~yh5nRzdbq(1Tnz2n*_4^3Jisffp2VZdFcVezNv
z9u)tI4eHx)K&@!`T|C3}C=KYS=Z81L^xstS^#+RI`H*$PD)Z9+Iy@rdthA$eFDqwz
zv5n__k;<0+WVzClq@O0AK5l-fJ@Th_@_pc+%Q((C+}%1dO)K{{G99KaI$x?WvgyBV
z^-ODPHba26RrOnXGi_fozZ>18-U@|4Eyt|}2Ab!O@+EeqLrEg=hWv1TDKb{t1_$DV
zw`mt~#;$LX#(w&J=9|HMvSTrN)GReB;)<Gr?Q+D8J=*K1!FOAMhG1*aq)VrqVXo%=
z&0^f&i=(j)hTHxxFj#71-aYdxtchb^61+>ty;k|T%z0up@{^~%H|H%5#AEfK!%AW+
zFrcrp{N3>YJ6=RtS&xx}@nLl6LSWJh(!9}94po(uEhP*oXVz5j;PApTK^mQ>QYp?1
z4^y8Lz044*iw~nk(@Mn&S|Bpy>b0MxCOWcsBE=gNH6khCkMTeG47^)P4#T?GSJK()
zy4YDowW}4(32Z*o0NW@9Ygv`zYoqTZF^*s#_9{UoSdn}=et0Hh1D=(JFYD1!H6@>+
zumppT2^h#gJEpgiiH-iZRLcENsm#YKnn6lsezCMA?gQ#`eISeDn=CnP@xk9|-kEg<
zt`nhGAGv!m5!I&4$tG?ueCu6bvwL?tfY$p7BmR8u!<Wl7{L(^+`Vn@&Btj@_I`1gP
zQgA#Bva*BbO(LD=r5oAk$al`kC03ou_g^-i(ot<_jTWf7IJDiSbZ_%5f=nkl{gN`=
z_BbF;WW?`VnlRZ-^5<!J9``=%?=?k!n#4$mWV~xr?-ur6BL1U~5iW3C{q1FXJ7$&N
z9C#<iyV%;KENRyNK@ZJFO|gEKVIrptH2NIV5r4G%>#Cg=6Uy$2+%HynoE+M)B#B`z
z-b$RETJoXp;095yca{oXYSVdjQTC_Kj(yC<m3?s4d#+%JrP4c>A*rct)y+owp91F`
zi%9reZ;u$xuYSbfHF5Q_*&o~D@G5Vx>X!c|m@!?s9eYbBj@ND?-zoq`J8T*~nio8T
z@n6$5;cPX|9pcnSZt9uF53u}C{0R7%pC>=ZZ*3^3EPrSFtZSur<XGFZPk;71n76O{
zTXUQBh=++J$!V3Cgvgfe6;PL%&F=&rOa{6cF{*yV&w82Ru)fcptn6JoEIHH?^)oy#
z`x{poc4OhKLayBhkN$MyFnPyX(zv!bo(xBo&B)IfTzNRpruJvIH|A`5`MPVUEw8tT
zPld<9$0)6kLcyck9ePJJ<9E2JBihuC=hfA+tZ=xsi|!UV;1#UyOMNYkEzZkl`@H>d
zrX6KnBYHBE%1S(5aPf!jHto$1yJQmg$n<Q6KQyCkCMN(Ovl-)$E@&Q!-2H0}dlo9v
zXEw_``|EYxwO^Lz#FP0^{#EsASLG*vHG}76{R}U%+s@cYD*{{@&np-#m&1FuB4C>6
zQ8tA@maHJ-y2WFGe>5Z2*hGA_WWTAM7TfB_d-3B=hm5Bny6c72D2ML9>tFIvi>C24
z31K^6@-m8OfnZgic>Lwq?q2wxm;U_~MSvD)GUA3Iqe{uQ>-=K>XFI@*uH|t&woYzK
zD-dtnmi=_*Ym`%uKZOM&{`#3cb%9}hgdCIozNgx|#uEl+_BR!tJPEvC__{dtK3<N^
zooK`IcX|>@F6i=XU0kiE-4Tu=R+v3yw3=~-|2X?`Eo-j&*-%4<W7^?CgKI(JrBA8-
z<@T^t@20Ypq_a3`B0=#jv*Qti?sUn=<YU^b*>8=N{`GR=artZocnRDpy(@NE(UoQC
z$FX_RWh-AxnjQMYel)l8#+kcaG`Zh?BdVtp6KNaf=FFS2*<n2QuYNxO^GJzYXczm@
ztMeWFztedWHp<Acv}ydV>Un*pEYM>p3#!nK!jT~sa5kQT-6bh-y{i=?0|8rct9er(
z9&j8|Z4(3_^wX<ycn9*7>#!vaT>f6dM{-{_J+?rHAZWyNQ9}^sUY8naN;L!)AHF-U
zBv$Z_J)}5F=;i=7)!alFie4^h_WzZW?u!prETQ22U^2oZym%X*vp6hbF6q~A)BB=c
zF_eyy;n7*S^>5m%Dkj?sR7JBC*XxLG5<O3=e)#Bv;7=D6IXe9VS$BcYCK)cFpY)Hr
zF0gnhF8YqO3kzC2SrDY@yCf5{cEA~1U260+X6d9MV6?a0Ch2N_roQLJfyDuXA$Ec-
zLQ5B(0T0_i+lh^~fx<88w*`;>;{_o5XTIx7#5Gsm?Lm6{4k<PDa5mlTdHI;V#-Vic
zB_1716&B4L*sU$QM)WC@cTV;eP4`RyTFEoOp>Q&0ZOMw>EV3JDE&VI}PFe>4y4Uj%
zsQVWJ-v0>!6Nx1APNGAqHgL$S!TvBrF6i_Ccn9;I)HX_LVivVPVh();Sn?UVb?yJN
zuRfZw>U**GAnEh=7#=dc!;vc;(X=^F66^HI#N5ri?aa+2*Pa+Lc@Nykw&){1maw|C
z!>#Zd=BcXXkhCjn)^{oICfezDW;^`eVQzFNH}Fo|(x|3u@-pAOtUa;)F7j?|fVJP{
zm3u2KDI!G%eEL#QTT-C5sKYY9iA3s;Y`%wKsT}^ZTyDe1O95pj4NSD9#Oq)a=OmP6
zVRW(OW>&|;<wrvgi}R9HQcH-8+l@@m%Pbe!jUJX3!*sLvj;ve#4T0A9w52OfxKaNz
zLQNX|E3=9JEwho2s-0}A<`b>bZ>4_xG<|uR_D?kbT}R_5B`$5#&U2IXFYj0nb85qq
z%-4iJ{L^)htOh>Z8?ScG0pg=^2n*rMIX{U(<HRm@5BW_W&*u)S6o+?@&l5k7+<&`X
zu^luuB=M{7cz`LZ+Bs)XeV^RaB3dcZ(QtuR+reAsHiO#x`bTQpei{n>t0zVjCj)gk
z7Kzi9KgCI$*PbNK4-a;i%}zOGTYL}}jS1H8ZQ|_yZD88_OY-PC6yK+P&M^gI^^tch
zwoUsJ<B$BCKA$|E=T~5uEv9LExam7zP8Bl3zBHH+USMEFR?6_r^7*Y;bEn&LEGnZ;
zu1dsI$jqLcxz<yHFe=YB|9y$Aadeh{C#>^3y7G5oSI_vLFL7>G#i6%?YXXYn+&Cs=
z9dfH5Qi%^9#5TfqR6!!)()p-QbPjK1y<{h1Ny>n^&9wc$(;HZ+2O~*1IF;kM@BcZU
z_F<LqdfZ8@@HX^9dkj{xOv>enrau=wj<iP4LOw5ii19eg?QOC{P=_a43m5CY>yY9G
zo>aRBJW0$)p?;K7DVn~DPAmNAq}q<-){+|z0Di-q-XEV6<-%-EyULQD1%7t454Yxr
zY9f}1XbHCHe5qE3;}px%_cI*kH>ict;%2x_+9l|9$}+ade`m0b*lT`Um%enKTQ50!
z$6|@ATemj;%d8YS(eGi}{tws#y4v%C7Ixl-9h<L#9j3gJFm!dx`K#HG5I}KSDFK&9
z-JJRsq9wpOuo&kWWXu1-asCBW{ZEw|rhPn*v~R1$_iX=HsuU0(q}0<+3Qp^Ke9tKF
zblOTS^E5VFtI~59-Ns|xvHuSA)mdA56gh?{g|f^(Mpu+6g(WOR&t#KY>*SXh!;|I<
zcBBkg9A^sfEO<jH?~RH6;iQ@94ph)8eTX<5t5ctUCn17f9)F0nN7m)Q8cHW#@=g?6
zRkg#SV9YJMFXknJi88$5xW@d!WAT1Z5I}zVAJ`LdOYSeI{Wk~)vD)VO0KAbt2YbBA
zoa!)3kO>nu7ji(nVc9yc8RZy&LzxW|rYeY}Z=c436GkHV)`C`D^*1-Ad+XeaALx)&
z!TLBxX#5y-@($BYSha>_dx*nJRfRdaRtO14c3D|jDEDW|lcVeIT7?>g6n=Fw3AfF%
z!5}OVEc_Bwl<x59e_;es&O7jiTH$^Dr*Q^;Kf7M_BXQz7Bh_pL>OK83kT8MW6bBL0
zgBRd6ECV|cZ^vw_!(eCRold-drq&q0a9wr1QL+7k($QusWze?GSVh>kRAKp<mV`6X
z*v@C$btH^OoS>hY-XCHDk?6~hwR_sM_EJKWI{fgscc2TN3M`0z0AaDq&T23ZVb6mM
z8fY9bFyR{X`uuiLmpb^#Qe&7PEaZ7m3eiTPPk}&Z$@G8kLb6F%pO{$0Ie@VeYeCPR
zi>4JYl%H-gPFd8@>NMJ*p(hi+bKO{5=_uFRVw09!7cbZZv3jiC$1>^FGX8mI>Efus
zre}WzzfIT8jcJF0AN*C#9j}CfXxgT~<)n!yj%6#P+oXl%*!yfc)69O*^kerv@f<I9
zO7|GxHbw?nmi7b10EA3R`M(4uY6(Xd%Qu1a&jJN^D!67*3YXgIT3WKeGI<b%%Or{+
zwLe=MnhFTNa{zN_5AH>yB;&RIt{5L3Edhu|Z+ZK&LABGZrITCVYh3LSnA)+k44)q!
z&~*b%S%Gno?8=<G;UhJopPB<Th*T52c=77I8I@D7u+z+nSWUJD!7*h`)VlYB@d&<Q
zzkB3BPXmXSnX6Hb_u1(k_;W<=`}>);Mv$Gk^oN}3CoeX_g$qLWmG&8;;I$c*0<|g6
zeSG{gFaYa~)wpqHj<}UI`Q9tM2<Q_-_z{9W;eJoDB8_!EJ$9v4?Q1?C#;&~iZ{vgV
z2W{tk1n~UGgz~>C!TreH{WcAYeP`7!m%Fx|P=5ir{PRMC^~7L2=yJsRu(W(yO+;S=
zC6P)+VZz1KGIn<(wmIgEI?m$1G#YNdTM5zqte9hTg?>#g)2lbDHQm1_RcQgRD}`^2
zb-_$I^{pqicZMfai2CL_^d_yGSIi%*`~uRlxx2@tVux}S&RZ4czSCP62m(j;e}%wh
zl)E#RVcF8UH@F>dwg&l;IW-U{3yIr($*ohT?uf-o2gCEs&_akgZt?H1fL-n^Q&`U8
zs`c0rcHR5ICLvejmF-RU@@a#wmFB$?L+msryW7<j?)$cuV3h!7w^GKPpKgGQ=ka=T
zt_Z9EN)n`+IIyqI$7<-m1BHw~h$>2`!fS1>qwn411G603Qmak%!3W?hx~?twfD;+$
z-s5V1diw4@_pPfyJHCsCIbiSXeqY^d00wvE%PBhbh4A3$cCd<^=NtU614zS!I0NV!
z5RqSZLdN>43{e=ev79$(6vJ+T2DRpQmA92QD^gGb{j4@)(^lo_?E;0kIcpkT=Ee0I
zymadyq1_vMLr>N6VQ*Dl?cn*0=#PIR8*R;X>YmuNWf}UyI(oWq1<2@&hptu6)_>73
z|0Kjar_8{t_Z_{r6#chO^>YHNs*ek+-cit%<G&?3pN(OQ!yPY~9&~G^LMk_qkNEdT
zlbTAW3D8l;zxDO}Z18N1IYbeEhMgS;Jd>59K^;4biSW?NK2+EgB~8_v!$uLvLZS=+
zhJ-2|8Y1k-s$;)U>2;Inpae~!;S3p^HFJqtZrE|uKii*Hqx8Q@CJlYi&`LIOtBeP`
zR!P%$3hVd!wE_iNr3`mjW+&P@b!BNtDDv~)eR?2_pc5BRhF~JzrPM|mqq9P~6G5a3
z)Tyl$A7pEp`QL26HwjE;1_-GvQ}oL%i8gT<aN$5^(N@1PBf@sQ35jh&Ioh_-KdnMX
zd3B>4*<DdumGgOy{Cd2zHWn=xJLA7+7t<~cAC>o&nPOcYw2~rmUXer|mZHySJj>5A
zQFh=}R6QOPT%4BazNeFouE`0>?hBzY5tD2fgQwZMcuTpSG(j1e!NQD}@+5tyzr5cW
zt*GajT*<V=#WkLjt=$mU_%{1k;=K4%S*H=3%;9iA$3!Uwe=)OEpN8r4PQ(>hT*-hP
z6|-Y`dHD<wxvGFXQ}T3^ixeCTI9VTBj)7x1Y>JIP-7bdVNe%p0EcjvDz!q<#QLsaw
zcG#!^b}<6IZNL$aYmGD)MDutdmqHtYiCE1~j}N6y!J?0xh>2>Sg3RW`pQsTS0$e^c
z<B+>hSTp|9Y3O5@?5+PQBv&<cVjDXvb*7knNT@|7G8;Ne=i78oO6);2yXh6|z+e<k
z*5LP_9vg~3iKPmB5oFN(0*{D@^DPYvsTjJHiZ7E2-9qwITH*NToi2ynrKQxT>pu%q
zF|w<b268`C{`vMp!PApvqIkA5UKug*V_l9?)w^86)b_lJ<9HSdW}CK0E*NhaIVyI|
zYPQE+ztwiX^_P5l3&_GQt^D}`?m9NKp+d*t>EGPMt@|8G{znrf{yD+~9xL@vF82*)
z4zJQ@ksBGo^J{dtkz(JQ`(JdM<t>li)GM`m*}H7z)Lo|`DB52WZTR`;{R@U{fhCa>
z9^2hNgMDTgd_G~JrKp;xy-XDTeNE<38;@_k>&rhK+21RkTFAL>$!=><MKiAtAHVZ-
zH<=3bDPbnO-fq{SQS&OsrdOLKd8CDhC2suev><7&`rGf`!uvl2<q|_lZ3^ezY7Q4h
zO3c<QjS`|ASLA~d%gNUgBN+uRmuwL-Q5F0;8+|4e)b;bTM-ZFql*Nd^g8P6?qfA;<
z-_;v=bJ35)s>2D5=|epBHpzNOI4+mqdyg}<-52UNkHENgvxs;Fo@RFiTcY5b*MiJv
z<c6IxK+yjjj80|YZ%*f0#tsnk{j4wus^(IsLZL+K^NgU;z6a886VS7B)pDq$zbYR#
zbu0WqJXR~EgxTk%5Rf2_N*6hUX)Zc#?qu^-+q3)Q;l9-nnifdy;^4*}J&$lDKx5nc
zQD`8ltP?VYVTU<eTrdWAFw}RiXdU)5z{g&`AqTH;)C{eXE%fW0OZqq?$CrcjpP+3H
zcbw_I!cEz`+%iUzv$c@w{&82Yp`Ezw#9Ulm;8Y)<|B^M%;WxqcyYEW2in^&P$Q<Np
zWx`|NQeO|DS|+VvSCk1};EQqCiLi-==b>L1po)_ypHw7~uUObSbbkz!%PSn=0n+_g
zVf%jY-1FP8h_S)RmtizFU;V-;B3|q}zuzAJ`;nP7JBLGE>NbH-?v-7O4)1RAKlVyw
zxuKBWllRM|`sS}qOPNYsqk=P!hoM&u(^%FDBWYUI<2~*Lw|(g*oBcYk`26WUJM)8S
zQsxIALJ8UQq%X%8GPNFOe3``(?!Io9I6mVxQa)T`Lh6yqeRPXi`|}6Jq1)Atal+p0
zx8rVUXH+B$Ec3`zGt9~bP^}CFtjBl%s>c4P9rj1z@+-7wwiZJMtj6N9gf1>;D6NLg
zmP4_ZYBBDPHYCVMjB$2(Zu}~_MdxNOf3_(6fTjFY=gFEnyB6=7z{AK`wylv?J0XJ_
zFnhAgOZ1eEDRo004D2DlCJ@wnqmO|rQExlVQqTp&MQR&HB46&HD{5-iEPu#j^9D<r
zy;UWhpKqx;Z{H_Y!1r<Zl`;Hf8T>vu!+-b5bHpO9pS>S%Rk-6Bqg(tcR_&rg!EaMR
zD?1D`9lDe^FtnQJUFW1|J~PCzY%@`#mA-HvkcN0L2E8#(W4H*LHZ(3*b70j@)ouTG
zfk==wzPd#kUbfrRUSlC*R22LL3|=^J&jjfUJp0WE(Ue>Qsgl9NmoZRaHjc`$lu-(Y
z3|0hSle{IBe81Q!ZB|X3nBvo2;3qPl&vgvOxj<v^nTTKG;vH}Vl*t~|y}upem9Ou)
z^Q7J3xR&nul}U$sbQ02laWLR@6ko|N{T2=GYWzoEPinzek2U>+kq@0&%Qo5l=xT|5
zB!xsiKy5!A=X#f-SaRDY{NqUZZ;M@?>iJ)JDQOn^a>cr~3@-xw@rx@WldeBs{T%V1
z%k>h!2Oe-6Nb{ug77}TTC2CT>C83f}<q^zx!gYkDwcjo^WO*;5kUr=1*9w=36WfX8
z{Lg1L3L@Me4BYc>dJpV|S4f$#d+$4HZASlb3N}eRQ&n0%dp|n+MUiao&kB3ogZH>b
zBPBU0x2_%u7+@>5y#}FIL)1&-lbDFm8J~B*YtLdk%u?31O&hzGN+#>(3n;h!iRYBP
z*X7$^^A+Z$i86-2Hp!5winHL{!0J)y(<MK=V>uM%%a-=o{sE8IW(PkB>mr>rSuSr-
z?`q<i+GwTC7z3`B$4=BAGv723*e#T2P)cUfl--CfYrcB9q~?Kff-%1AzHsoO#&A_j
z%m<A^cIe2R@BGnQtq{cS`!bFb0Z%+XXF##>$`~nEu{!@23-t&_4|YS`dVTYOI{YMk
z-S6&v0Hs$XC_$U=xHIj%?YGEDF&!}qJ?j)B{E=k$g})`=Q`%TVTzyB3irCksEe7%Q
za$U~NQJ5Dy9QBOuN7EW^aRJ2f`MBedoc`E4KiD!xhH!k*1Tpb)M;<sNY<1o4X^QEc
zf4FxUmvwqV2;MNeC9auuKQ@2J7ad!>xo>wrx{Zs9<{6k0przke1)Xo|q}?y(DdGQz
zxAy?5de6EA6+x0n5=0O<AW?#Xf@C=4j0hq~PJ$97OU~htb5uY<f{Nq}0s;~h1(l3Q
z6eOb}nYaJI?XUZr_h#Ny&AckBtLt|6y?y?_wD#I-uZ2BwhhD_>Q>S(48?mivayi}0
zyjwJim)XjQAQIMzM1Er>YMv^7oWDY__TIqo*MEO&1d&`|l%Ff!KkrLMgHYlJ*dm$k
z<J==YsZ-bY3q*>tvI__*13ozZ=qNg<8B3b-9K6odahZ<n-q2^mc$SVh^&XQvfAg+x
z`*hocTSU}~v5M`A4KbFiz4t$EJM;e9KKpVc?7T~i&!~N73X5ilq?-1==ffLAHJdl?
z7=A5WzRV{i9FjQ@C^AoC#^r6FP~d(=OWuOs>@Dxibf8#3j^<wc;t*-Oa1!@f{FTDc
zj&QLTzg8M<<*1CzEn<GXGtG#-y;4sdd)}+>cTLsvP5ZCeWg0Gp`f>!Nw_Mo!`eWw3
z7;R`xT4b@%tUR*q2iGj)so>#IOZ0-_jXvl`-SLzA)L`^>6^vk#U^M4t;o;8F4CIV4
z!<ui9E1{|~dW$v1_UiU47Vt~6E4K<?%ALF9Vu2nGp)X$p-S>#T>_yX&43L6@$5tTZ
zvhI+4n!S;xPZO$TSZ1}qH_Z1e(y%fAJXZ&J{AE4|vq;%waDGYz>%I$1MQ=9J^gLew
z3b4<=ZutoX!}@B<UQ5^f{R^nfcrL)+i3dYNN%ZKw+ViBLXC@ozeRg?*r36mJc7V6|
z1+fqAUuSQzX`_A{&BM4VCy%zaXW~qgOH5&7vUJqR7Pq-)A+1Y$M7oqF3zB((9WPv~
z+Y$_X_8^WUC%p5?Z_oYUIHy)?BurKXJ8rMeG%a}Ml}^>is{&sZ?`9vpun&G%q}{p2
zDTic$Gm#McJ#{2la=cmA{`pQ`>4hsD!*%unyT17<&uoH6Z;g4-6UYdzpLgGrpHp~!
zA)PxeK)AAokD=Y5U*^HMlbm$w%)>@T4g)uS#*YgM&%zR!AHJ3JpHp-rq)3vSxhy{s
zc3V>SA{}dv+5_v*>iW&?nic)hC04KSS6O@y6uw3c-0e*!pwqY<_#1<|+#h`5vt(Az
z4YToJ=Le3gL|fwQpI6P=9RR|>&@G<^Yxhda{=(q+oU&es<P3*W#_krUMkI}GvO`{F
zdDOu-{$Ku|DpPxOiM4~)r(@HqHWDuXsCsm6+$Qas#;mwg(L(>@IjL7wEW-WK%MVL?
zDi-7+BBsNFzHxUl(W@}1KmIA~q{ic$XpkYIsXxuNOOygXi&MmSCFyV%jn4HZ5ghI!
zzRxgI5+N1zbROoaT#!v<fUScbmdoqAP}53Ea1CyuNyeui9$v5OPx<fL225z<%5AK?
zQ;^sm=SY$5u}9+yue4rA=p#d>XXwR5+6uj7Z^lpraI#3%sX4@<2r~zMJaJTgPqlOb
z8DJ5r3Nd;K5Pjo8)`y%hO0LV`lu(srBBSXfpfE75#Mtg@%pgRWWyWwfN#iBJ+_jU`
zRgGhyRqlpablOWl1uNnsL}06&dHGub9v@mfrkzLai&tffygtp&rRiJA{Rg%|vWel>
zFpxN@KJz;JV8eC$rzZatj*da)bc;*S>u=kd>*v{jwsvTIYi`Hw-u@`&#1)RY!)4$h
z&e)YunV9}c>YaAJrwsceSsKB@mc(26$~va=Zx|T9E{@c8JR7TvFuzEI*KWJX(E7qN
zbUX4n@aAi&hk(WEpz`&){trSaf3ZB$njbRZyR$@YH~GExYCLjc_#XC}+^SV@RMJZ>
zvNIlP^m=8T`8R&ipi=s^?!=Su>A*UA&2Hv0Ul&^T4n>x|#fis;^`-63t9{|H&aa7V
z$g%;ybyk`x(Qx*Ec=94ViTrCa;7I~XQqs5W35UzAJe`tx8CmW-;CG_(m_N~Z!GxZY
zO(QqreTL}B-A|5_6O~3G>qje3bI!~UiyVJi4{LZ=w#@3%z~RkoSjSSnws8JW7LLxK
zi}e8aua)yDYBgT0=!Dj(Xz_1@IX(wF<Gc>j9aME27tm;}Go>kKmc%;Q{W+yIBsH12
zz*b!D>OE^3OGR+ziiat2k>-LAIl*UXFN52Hp)~Dhg<1s62CoisSAWM!6>)Reygp0O
z+mUrCX=%LC5XSPZz|dbbd-NIU9?38DPApY_UpZ}r+r$H=l{i8jmIt?V3?FA(xx6m=
z-?|~vzV1C3dNZouaVuBGO7O+_O;)jtU;H2T4QBr=yhswCkIl<b&d$}DA<?(mNFNAl
z<qt1gC-aJ7_3?h;J!W%jue3*Yz$#BARwjDm+Az7X<>p-3ty=V@Y>q>GK`A8sV_Da%
zz1c8wkN*OEHeD&P*>8^FSL~Bt5P67YJx|}=48K+HuHxa+6@7SyyRIm7(M+E&O1SiQ
z%;=LsM1S$o88#ciC8py9XV^bql=nYb*nlZM66%ojDH|r;N?{U5r`G93h4Zk|l{aQw
zEbjKftV`hgVWKDhh4Kbl$GT*yd7J`Dcr;sk^CFK)AnGSJBm4KV7hrwq0H0o|#$hI+
zWdMp9ywdNZ4|npF(3EUfV<mc+4-Y-R!|R571G_sFR+2Q0-s)HG#>~tTIu?P{sS^g;
zUi*+3KHG<3s{$VqbJY4gNN6H$**a>aGTeW%U&=(CKHLEXuCpVcpNR)opbiYt$XRgy
z5N*zQS)<8&U=YU>4DQ-;B=cVqP`3iKKV+=Fd8tD4D+&*s&R*ono4RC%ip@S`3uRIC
zfopy!NTSr|(R=Qx-+jb~@RGlL8{qlM*Pf5pi=JyoA?I5jMTdp{ac=m>(|gf*MXKi4
z?#5I&zPq)>b8bsPskiyU>-u<j1n@u1-_d_6oBGnumd#(ir~^;dqrWJz=I^6quZ4br
z8dYtBcj4Tz?vGM3pYH4p#g@(n*yCG$T+aVVF`)2zp>C+mB#MtgtrmQ&rTiNNMGMdC
zO}WN>_Nw^(=e*g>;Q1;0sTbB6SU5Rvo7!{UEA)(@-5uhdN)9_eM{%H^mX*)|WNbUn
z`qB#Ce)VM&)e41(d(rkO%@L4&Bcm$%NAoTD*SpOdX2c?^zC4p>f10il6W-89+3B7*
zQ}qX)_HMYW>BJ&kRoW(HrB8`4_yJa27foY>v68@ZW;oB<YnfuakI(O?f1TfXh%Z3Z
zMrJx~3|SDiuH*(n>b&a|(H6K@nt^v=u1Ur(_KqwRN33Hi%(}}Ub@J3+NaGN&2y%nu
zL*9W?pA=s1!<wD;ywT!;40C0Nn5W+<G8iK>8IFW?%==!KsDaS!yD-Qdcg0YQ)v;@R
zlSZ-YW*GzExpU+Q=wqi-eL7o?fIjM@tL2zr_@9G5OLYI_dAZJ);Ng#9HK}X9I=I!c
z&q0%yCS{R*u`=6=Z^N|nPO(vS+MimV1<I}c+VGhUzf+`Jp<-L@d#9fFUHCygR=72(
zp|ks&M6mv0W{I+1um~ex?Y{2Iph}f5ad1B;qX_r*t@^Na*59vwqKphFH#Qqehq0%Y
zP1E1xrL%igWnDO;O`@JA2kp<T<L{yMnV&ZtUdDK{)=PnK8UL9HozwfIpd5HDgdDk!
zY4vhBUjdR@hoSKoOW-u6ybK{s6?)YtC<(6AuS&k%V7A34^#phMsp`#?h<8L)4WDGO
z*2p?K|FYretQpuOv7RKuupkG}qr7p>5sqN=MsmKRN=#x$hunnN0nAhMSK5F~%~^nh
zq3E2MI{XJU%HY*+2DT$@9>1c5P25;Z_v~6;?0YD*QC+2!7M3}usj&^?uFv7<>fEzd
z3zK(K?fhM}tjVA12IPiPuE#bDg1O5{1z<e(bH9s=l{Rvh+K3$ArO_7ps4?Bs9<=1$
zv2f>}z-J0+;v3ML8nXXXp^N}8kLCPlMr{P8cE$~j8zw`I_XCXQd@PVPvpcoWcyO0e
z%+qJ{%jS0Uw^KQ{792|#g(XKQ_W5^>hu-{-E~q!7Jtx|b^kmy-nXw|>hdWv3(&>(#
z@$=X}WkcOrJJ)WE&I&$=ht<kM5u#i;iS+YgPnrFV8yB^=Co>D;D1>H;R{hqk?^Xu9
z=SW|<|9C7lV#JSMr@Hg%aH)2f72R<sw<Z&R_Y|MJgFx=W9x2)5x3lz;|Lq_G3eDax
z0mNc##NxYlqhn2#RM5sqlnNP@X+V@0PhflV>`&>BHc^TqD5Y{mr{Y1P^<Xg?E@5Wv
zC;2*MxkfaJ(8p>oCx6%mL#yVnzFKAkm`;*sCNO$>tHIOlEoIauJi&ZcN-@B~wk>?q
z-Zx_NXQnhs=G0-Nq94|;vQ0k+q~37a*~v<<k-+oDYptGA(5`=5tvruZ-w-}&mfFi-
zDT96k?KFbz;CxGPSL?Y<?sXGlywKCcMff8t6Lh>epq)~LJ6C14z*8?9z<W2CFFvp-
z3gOzYEApku!U;Tp@y^><d;Haj$;|{E1fUfC=`yxH`+);&7$`rBLTrLo{nFIFcB8i!
zrGj-CCf_4BaL%iDC6ns>@~=hLqSUsxo@5=GSiL@(y;ENnduOsgR&1w<4jX3mXmEAZ
z{^{2>|2@|m`qMj*K3-mGCjtUx3M)iykt5=%YWi(5fdqficLFW?+N)^fXYMsJ)5|OI
zu0JkqERa4g93zf`9_8}(iFTqJqo~1eqZwpFV!OFhE6ly7c)xUtjr^XtPKHi=P8q0M
zu2rJ**|q1O_lXDEB#NE9r>Xu0a1;|74G7zXfP+3fON8ihRz3!UYXyWxkL_8GO3YEE
z@AL<oAwS;Y>UVz;!{w{{5k*aKuK;DW(nhr2;=CjiMJ2o6xac$bw^&o?noG&&H%VoG
zZn8OTL~wj0mPsC7(EILFbDMjf$+>o;xCiCEy_KOm^QmX4&^fICCC64cMKoK0<=v2t
z<+C=<)mmehdkxmUoF9+PN(61=#pp+cdJI;1%5g**;<tlrjB$f5YsQ&Ur!!LA&EznD
z%uj6L;l7vKlIq~vD9D>!Ig|A!_8*QUgTn1%*yva5_t@-YKOffLA9$HqYTlzfwEl~8
zsBZR(V7XP^#WQ=t<ra_TyoKFczOMYuPk6YdcIR*PzR$G`&Yc@|;kYeP>&XJL#eZf>
z4r-;tv;?`Iq}v#<cXaV5Ltz^FBmB;=P-id~a#pDSby6C^+_VpplkfZ`d1J)Ww6Z~|
z?drBQldL~d4W78uLFWxH>{HJ6r<zN_RI)?&;hUMu+#Dof<*wjkE|2)fLs}otQjNKU
zFSY^V2Z}V9ZDq==nH3Xapzg$P8z@LUn2Y)@e(ycit0f@0?rq(ml_+*-yI>&?R+2MM
z9HR)PRAyp}O4_33COjsdh0w)8XoWOqmgMhi&ObHpe;XBHZT4WPRP;0YptKE6Oq}T0
z7o3#os5u_yQDV%O)pq)C^w_@nOVHR%F4V8PJH@wk_J`GIu@`G)v_ik=&x$=epQWNu
z?Zv37J>b&1fnc#*2`-uf=C$Xp9pCM?HxO>c`_@IwpfBRWwdwNDs@EvLF7uhnP|KrQ
z@GXDQd?=haBF+sxE(h@+bFpsAm&Kyj1a(VHWY`VrtC>e#9#=tOL{rjv%{s>j+56(r
zOZvpO29|N#Q#{Vni3kV@FI@b~E3Lbc(6RCPkYpJg`d$r#!v6Bws`x$&u2-=feWY1h
z>Ic}<?V9oX{|d6w{5mRe<WarYhY##__94euwBg#114vLYapn*pUBice^!M6Z5filE
zVs8cp(A)l`BGY`$qjlM!s^LprUgo)1KO5{y9k<AIw%5x_&1b7*4UMG&PDZygCpG);
zWmLQ}8_$hA*r|F;h6<AOkZ<@Dor<HF5a-{1@zOi1FL8_%Z@5^3cbW$p@h_U!D{R;d
zvElMROxn}sSFp?(C!3_Wd<RVsvaeHQ-mQ>v)7wSGlenYs4vX_%7;L(q?(dSG;N6Uw
zk(QZ`Q{s*VuM{DggJi;!h~iqWyZQn{SX1EVb0<$acPFr4BB4fKHCHpByn!mNoy!V0
z>v<x$@v^WT^ZUBXqW1i!X8~3<#iUqdm^<Z5=UZmd4H%SLC}r2`AEG4BdCOA^*cr*=
zdTHV<O^+wwqWftc)*ExZPwPS%nnva=+edOk-s@0<sFq$dj*&FJV|XB`?T^Y4TgL^(
zBqFsvsZVB#xg9o`KpfI@l^@Q;Evn-xdtbMm^Wj}lzp@k%q|r6+UjW8m&Cd2~y>j%4
z9xHDK?$7bKk=$o&e$37gmOMhKoa_Fc)lZrADVK|-OJwwMeXYS<?nia8`IhuECnXGT
z*y>*rTNGoySK%5IT3zgUPfQ9_(Udqk=vlJf8~qSB#R{eL11FdMtr!NW>HVEc*-NZ1
z_nh|MFg-Y<^VAv_!xkJOtc<UFViJ8unu1S;_}wFX%uLEZTZQ6ytK=VT6_=eSy04_r
zNwOFh<c939#sWN9-Ehv-H6+Alf%5Ejbcy7*tas19(!?_vS}sr(-S0gRWw8=>|5)KV
zR=1-x<H&8tC3OjZley{diN<N(JUZ`Pv#tx+J!fntlHNb}8X8#aTzuRK?mu-oV7OWO
zs7P=)XYYkoJpGleJNnLv^?Ms5g)-@tTu{6qY$cLWWDcxQVMBU^YuxUTMP>yfgWyn$
z8w^l{jY2Exr-@~C{m24W)u>6u{EXaVC~tLoyPKFTo3%W_huiOo=X$5?9cnA<5C?Fp
zr4kIp(WxFFMRz9@TP~U_lRPyZk(2(yn`8HdyN*`9q!2!(^J8TX+A33wH;LDWgzL7Q
z4RRG5Eu^(iwlhED=wO6gplT8(`q0%<8BD_HssJH2$w7qYsl(mJsJrKUPm^`rJObX@
zN43d7#%0KBL}7+46$jUedxJ;C^5U2~nzfopeD8Ov<kOmUOG*>Ve4*#MuS*G)kv{m}
z<<zX1t9|wI@4-nW#(qIVbXr%u&Py)18jqNLP$O$t?FZ7~Gx|X$*5-+;TR8QV9h`Di
zR%5VccT|b(zI)&{aM1eff=@>35jQ4*h0pr*LoZ)lKf_@$=TYIYWpiaQ9MZY)4_`@%
zWhM!<mhXZp6l1Q9qI{bDUM5jZ>Ko-{IcURVo4*&+?j9^9m)aHYkQ=ayU6<@iAMSg`
zUnY+dIN5-UZ6Qz06vK{Peq|?3l=kAPsRa08>OGb<<CN|oNGqmgsPuJI(mvCYl_GjS
zoMxlcJBlzU@H-|~Gf$Pa{U-?zLs-)1$zW3);#3kofXeSHm>5mb(ipBCvP4J{G?O81
z@sH9V=n~@WxC=h)v8=-~=gQ%mD?#+oliJwCzu@U64?ZxZJ=w&?I80rG<kHp{CVzST
zP{qNQ<bO|Q6$|D(9ev_C{HxqU(@H!ZR&X`sUHjg%*I!iT!N>d28+vuMItx;rdjQvR
zSyI%nYSMi98+#Y2MUE@qJVncZ{5!V4ig%XlKJwMlxBa*ilM_16Q{@;w98g(hJNCfl
zpbpxtPuiZN{5h>BX8G0dZsg*ZlJN}?Ray9`z(Vo|yvHrC9qc<la!XFGv?7|K-DiI*
zkK)<VO}6HGb}w+cT`%(4<7h6ZSm94D5mr1}VEX7is`2b6m5=075%U=Eo5dkMDUbu&
z9?@sx>`#V`=netS3H(8P1mW2JopCCFL#!&cH?1Bs6GFXk2!H;4ZGVOA-QibFw=TFj
zT|JdEAAhBtf?=VGHMpa;bA`sM`P1SI{;lVd%mcjF<DgIINxZ5Q^+z7{3(wMUgU>?<
z^L^e~<lS--QWtUvCFowbQVC%c+PXtEiO$1h%DSU=zkYmmfl>$JgETINS6L6;YB<>U
zkkb_)_rD<R)1<KgJT;yLjbTYjP`(;8udgQg84-pTgsN)a+=1s9r}u4^#?5|XH03U%
z$!SVOmCkPd6spF@c1thvGQxCRkrdlJo0%p$NjmE{7%sjs%CkJDtq%e{2HA0DW~Z+S
zeO#jZI{Zkt_5D0)DT)2r5p)CCUiNmB_LO`;ebXK71BH7IRI6=_n6n{E9I0>vnjAjZ
zbPGJZ2vvCL4f8VRZOO+z`@b^Rp~9vXK3hUs$>O3k{3GywcQeRf2)-RCD}-|f36i$H
z$C#Nb+WK?Wx0}*EKuE2!N_GCBmMxMmlC3t1MiDjYytiI1lmFJQ>#_ZH@-_Fa>5l29
zozn0q(JwV?4($??cX&7M?$~-&{l{|4t-fhZSgkS}9zI9v2XPo$8n<T=iVFd<&4<fe
z=q!H>WY3woF~4&_*l&r$OB$E0ZT0NK`GqSTT_sm)wb+K9mVBxE(a3P}_H^{M-o&%Z
z-<Z24_qEhKIfl>KXB4?A2zouy!KPGCVP*OraAN$Fr-UiR;q8^|^&#Ud=fj4r+zRFl
z-4Td}N(41ZEybEO$DP6_DF0Y?hAzq9@#DjjvgJh}LsBnhrpuBr-r?cYthI4FUnmaU
zM8M!Gn_t{z5^{j9m75+?E6zvaS+v#PG|v=oZbDO|3mnk&tJIyy$b-C0t;&H-=mxv9
zW*wd)=&Mp<qCZ(+-ooSuC#2(spP{}kudnF|H}6boH+T5jg)0k|xJFSj{LjJgmW5?F
z^^M4|ocQQ1NaKn)!|*^#w>obTpA?JVcGU7?n1F2H3B7Ce!Q@$jzn8~!SO0!bQuZNS
zb5NQV4cmXPRL5nK3w}e8Tp^2xvd?_Xm={=t+v>Oxm=7Jl=*nfE-6aD%KR1tc@G{g^
zUtRo@9X(cgM^YDv?l2vZsExOdWF4=Mdb-s|-OeJ>+mbYRFD%}t7%#H4-eogY+<d<<
zQdMO2TrD280KJw<X#tjTSD#kOR#5f3D3eOhfaD|{!f9CA?tQc)H=8JPg8;&fNz!(Z
zqdQSd2NPNm;}~5`X`D!75xV~upHbB0qBmKkbLB@1f8=JF*ssC=$<PX&;$P+<$(xwu
zDPmcB+}|*w*Y-_b=)i!C@AQsqRy0puD&#pjRW7(eaJ@N{hyE*Pm5=rhQ_N+oL(#|H
zm*Ykp@Zt(37mscj9G#QPC&PH^TSl%r)^cvHh`I-fxIO>U`9bPHHP*j9ffPUe#}zH*
zvx|e=xRnp%mk7OMxymd$Vo%{}8uHn0RcS8R<=l<Jk#D*J55^{QyE{{i+wp@TEgM0_
z0K%v$tIyi<En1I4<>7L#lD@@ah{?KozwbF-S!FdTcf``l)eLZ9;AY$=rwrn5*fg<v
zoM@+$Hvr;89Y)4FB2rpZ22T!H&~$;amG;9R%WE)6Eq%0NAm<THCpsO<nqgONtkg2m
z5+Xbt6Us&m?Wz*6bLcO5pB*iB8A)r(CQ8j+8mKP~Cg%Jp@jf8v240C>^mmGIF?kZq
z#Atb<UdgA?v&}C+xu!dleXw)fG3y=D`Jp}ij^BTy9CAU}HCV1cy3VAhWNnYB%qC|v
zGbX*_PAKgms8KFZG#Y0go#g{ZK0F0FibJWB+9QetBP$Y301UpB!L#4buaL_Nc9Ylk
zxuy(co}bmw#K#=APUEd+<0T5=4Tmnw>6?eA-+L+T)9kzRhUf5Z2Cyu7QTt~=4oCa-
zfGylWEr2<C5nMtoOdZW0nfL3y6%%_dLvQU*zl94tshkt-P?j+dCY@dRc-Mj4%q=y~
zWOwdTB}Z^Efq&+l%^wn?Un!<h_DcjmrA`FX%Y)mm@dsvxs7GOJKYy}y<&Uwdznc;Y
z!lTud2+@ey@`YTV)3a`yda~1<#Z9=5qL{@sqoDiWXbPh-3Dx6S@rS!`nIqljN+@-J
zmq>3rMmwa#d5y{XjhJzBpzF(G&f`}M8wf81q?|kkDH<^|iRX^FCZt}WdrH+JTo3hB
z$D(jy;#fDON71>bW)qih=M0rSRD>qlDOcm$WOl58J0FRa$4S^SK1I;xyitw~hrgI{
zEVH|D_d`QyX>%dz*d;>P0+@Uwwc*LrT_$L}th4dHxTLPA%Fqp)hwyKZfaH&HAdk>d
zh2}LzWCy<*b@?_Ro5dlWc1W{J2DS6O^bumAN6Vau3#(|iP@CsGVAUI8N+h9#dy>D|
zs+_>_y9>-4A8`7!>Gc|7)fcy=$VF0{<Bx+Wn#Lt<rgQ=OtWHkEG_(BS__yAuATjA3
z-khp&?~&n`J+=eVddJ<^p;yuu8^NR10o<r%;VS(E29eu?Wd){JM&q2LvrZlEsp00F
z&t7CiDEXaL3e6ZCdScPvG1YI{g=|8?+~qfg>mhgLK+Jw~oQoPGWq&VLqVUr9jVfHK
zH2qV#{}Q6avq4y9Kgr!XX6gK97Y7nr<DP2}<)?(nk)c1ca~;1FaS(d}pRii{mcbbK
z5=t3!Q>gh5jwlqLjTM=-USo<U5vHRb_9BZenk$7}9<<{th+-_Cd>aW;#yVMNq5;UM
zbu~JvoTc%pMtacj@NNoT)qY}N?-P(Y?}wWwl-p6QYW^?e8VbEfWK$6TPd0^g(YtEW
zx76w}&yj8($|l=3<I@TMNYqQ*bEeWK)m5vwH*b3{dE{Mm8S<C2pXk)9R^+=cu(|fB
zKO|8!(Sm_&Rmpedq<3ct9ljaeNrVghjD8Mb9X#sK7WX8cpVat5<sn$qK4|a|08QJZ
z_HW&COZ7l~-BAf+JfR-JA5Spuy-4l#l9@5Arz%tGQ-CGjL|})YYPh?xumPzJ{zXz+
zEYhaMc~Hg2fv9<?tTYNao1x!=iDa$+_PxCQs=%Qa7uLJZh>(HHctrXJ%iuB+*h*@9
zy<b~i>fBlBck6LC`|n$|+KtiJR-=(9kJbCF3;3*0P$Z`WnK=ba7ZT^@?qUjo4%W@P
zto02zmCJ)a-z8k%fW7Jvp_gkf<<VIyH=%1Kegm(xc!?>?EH$g-%L|S6yV$3T=B8N`
z15S|rP1De<uoM?z^&3@`csvfJ=;MF2dR4MOBN9iVo*9>_?9W*qy47{w&@;At7FOR?
zt?1@6{{@$UUfOG*92N;ASt9IxXInFqG`CpYQ?bLuZJ{3YnY|<IXIP$ww8%A?M+Cgd
zB{wp9Km!o@R*Wvsw8~A%$xYhgok;G@XOg`v8UG-iTgOO8^?!|YF!bLl$Io}wdyCE(
zS?;_wdrroBJ>m2LEenoPf^x9OHj^J709Z`ZTXM3Fug7oADtO(og6pN74Ylq*Iw1xV
z_<G~shct7iAT}*+`4Uze`)tS;@yFx8J6vWF{YP4`vf^3}w5K}(t<V|Enq>nwDm$I3
zN;34b{#Q>Kr7A@KDGNfCsw@+^HTaT5mokkk>w1mMFZ=-rg^1@dq3S}BeSySFGH%;9
z4+>yP{Id3^-)ST{r$#8#Qj$6D^xS3gU;UU-{+h9bxd#lpjEYQXr9`S>2c+!U$#%vu
zO9>nQz|U-}FNCaZJ0g|Na--MwN*kgtD>7-Yb*k?T-nCnw?#%7Bkm(4I$_l|F*Z$Pz
zq6O@b73N8sG!~Q5VGp5h=+`*qaWP{h`B)mi^piMV1p~FJ7Oz*svp3+fudPeF<5fwj
zyPw)xy1K&B;jcdue8GIN6J8JtPl(8iT>0xlKVeEx+RWtN2=rH9+SKDp-!r_)q09P5
zZQD7Xp^s~JgmeyTakdRx_t4L891*N1$>jM?9=7WC9~>#c#+Gj6TGICtKb0MEQ$5sf
z#0+7xbr9HjvA3<_K0N6Eu>Qm2VON?OOUK06Y*3kNy=i#!&jFYCumh11=MpZuOim>%
zYQPbeftIjgr6hJri{Rk?1fTPgEa94pNIW%LMvAK1-bxTwQeTpN#+k)#tV`sfI6Wy_
z=dv^n?|o@qv_PAdC&tBG4Pt#j;yB4_{5YMXu)3Md&5gnW9f6~+Rr*=SBApqNWv&)#
zM!VrLVpG*w_EC&REYc0817Awi-%}&Om*lim1ehCttw*56%;h~KJ-wjtvVp`me;@4>
z8SHXsAn1U<yWgfAv}~jP#NNMKtjcsl{I6xqMg<$8pn12XUM92^Snts&O^1-T29i(=
z$5-Zu+K9iA4J_N4;lZC~IieB@{-F{S(Ug^L!h63zzgwUT>^1!fppw}d$*wK$6uRNn
z5JV`|x+M1`Og@Q(55hj)RtJ^9Vx|z1imwf=FsEYc<cC|nz*zpgttX4_SD)MzZjm~f
z>oI59Ie5wXU=I?<1!RMXlF#xc<L}@#<}R!-$C~0rzniD<A>ULDswqg?eV@vgS$=#<
zea{~uMjOjxiJw2`zk0B~;B)o&#5<~!--BM#jaF#%d+!A;YOjV{8*aW@)PK`g)>4l{
zs4(&J>+|28A98l@TPSw=e90r}z9vekd=A!@DU4|^MxuxH=mkez1uN7VU<36Yt9~Kg
z!bk_ao&^_0E9({T#g56#aKGG~(eaMRT6k(BL7)%`X1O$MSavVcsPs%p)OaAhC1g4q
z%QV#f?o-kqLot2?o^RqV3uzl*u1+w&yEt(<wxA^n;5q}w^PVEO%*Oz2$JiXvum`re
zq;3=OAZO9d61yVqZcHdu+}a=e>Q2$wy4Af0|Fxdi6k>w@QsFTbQ>`S}tw=;zs3Gl8
zd%{o99qNQe9dj?~=;9wYWh^FC76Rki{(*5X&Y3-n#%KnyWsp#Ls9<hw!JvQwY?s%s
z50w46KmX9Jrp4GbUC8POlZl`*eM7Lmeh^w+jI(z8jy^LI&S2`M5)-6oNpJELJkwwK
zqi&!nJ-r~`!9O1jBoMBuJ~@t#+}it0@$s++VIKD(1WAsli*$Jivi)?5mnwAOPPSiv
z90hlB^xOM-6ZOD%3(N{D4N`i))_R@Bx3b1-adu#W;~1ndh57Q!4J_UjKW@C!ef+_B
z$;>UM>#z=uNj*Ht`s{6ZCq6#==|?+az7qV$!D!&D;JL6T&R5Hq-am`6<ak~l2g2as
zeTvxKX9JA4qY|4bE^GMCG{xw=0M^j=%lbVlrkHg6Bi5m90~j7{NrtLQdI<U)u#~ZN
zUaExJR2ITDZ9awxwwdSx9AaE2uc>}!(>uq6CuM=K4pzd~r8NlBxNGMam6$YNYO>4S
z!C;Zn)^wE^H7QFkZi5Z~rFy2giZR66!yK;Kje-JGPRgOoRYRbe;DKcArt|XMIrTSG
zx7jPwQeN9h#f+Crn>FrnrpI;pom99QD;j_iG6(f!TXz&!BP!|)tMozHxX*-VeOh7F
zn=^+3&LY$+C{YTtGQhT2X_fAAN8nO&2oVhnOs9pCrVNkx71sdB^JmM121v28?Vb$w
zYluP}))%0I&|H0x{c=I|?R@U#dA6Gp;8}ZR@GccJu5n%u=s!xQNbl-oZ{0Si3N~o;
ze#0lX4ZV~Zz?-E%jdji5e<b0{H+t)@b&khceK85O+N?JL!p;sdn{49Ekfo#+d|eaM
zkqK01qz6f3e)z|$(xpVK)-sWJM!D0Kk-1vu84JL07>`cV_v%?|<pH9<Xn4K~^2>VF
zZ>o5G9)7e?*J<$*(QlmoJcwdzeKV7^TD1)Yel^9j$U_;1FLs=)#14^WnHBBl|8+@;
z)ns~`tm6bc)g8X!9SkuN{zqh!e=TV;4IXK6%2d*m%1TF$hox?AaU=Ijm@$J)wO0lS
zNOZB%`jGA*B$3BuyMbiV-%?c@`%D@lp6HJL>~9R^Id)d8Sssvx9e}hL(-fGj>P$y>
zNH$XYqQ&>wRMM`OyvH>7;V@|+iBqWIVD>Thh1b09zb)ehZ#F1AjhDCeUhYLLS)`!|
z|F%N~X<6Sx!YTp~IEmKZALt62ZkR>XC7B2c#g=bMKO_y8zr|nK>>K`A=pr50+HXz5
z4$%Pb-L+qXLibjYfhbzK$&AH%D@2g#n<FU?A)}-8nU+zkk#oG}Vkf2RgYt=DnMe~0
z<mV<jfi%(mOSk+Mh6L_$;LY!PD4fPq*$o1*tRwHXOy+UXPQvok3-{Bav3Twsc;9bq
zMc&BtFK`Vl5kXGtw80@Ov~kW9+qeBCQ_M;1O}dzq=VPT%e%Pd+8WycKu$?b)-_X7(
z_58V|anzUs7|a*2of&NCekdu-n(0|eq5k$m$meD>Nr{4!F6M+^-nPmMpwF<-5xS7Y
zR7yed9ZqIBBX4!0bD8n0a`>O{=Hf9bH9aaNZ#c0F?xLh0kONji`RAt}F8rfUoz}h$
zZ!!zyE0x~)C=@Jkn(=}LwV=cE@6_%pgJQVh?b=OkjEv-;h3@?01&}2!{cy_iZz2IY
z365QdbN6*LWnuE;e9{3ANEV2@@z7u)LrR)A54)HCTQt(ra5{Q0xeni?%%c{D0(P;@
zeW<G=b+4Opx^9}ne5&Am?Zu-jO(K}|P%GH-?705{;_Nt+BQ45Ff>Nx}Q~$T$&-MnS
zxxEjgGJR<secAN#RFb&&u4~O=Y4>PYhXQLlldHR^5Dw{M=^cj=UR?8#GZz?vYw&U6
zYyY*k^H*2B@SE3PeK$xMG>89xQ8UV^7^Y&+EeETe^Bxztn#n6Agut44>9!{=#77zy
ztHg*h!w0<*H73oAvAhleeO81rRrz!n>p+iQ_SXh)hQqq-R==ZJ9kswAJ)Lzx&oT0A
zCVX;PYoADY{k$g*idsW+0h)NFyQA6YLR}VuQj(doBj%}nFd{G=ajmDAl0yYc+<FYh
z{vtVyil`nI1FvxovE%1MuqNntqH^YmxK9H_&2+juFZ=>^Zvoe(u`Up>9Bs-@rlX4O
z#=li;35^a&&Hd+QdgJi72k1EiNO5==bgkeV-Iw%h7E$(^fRrfm#%LobETQLQ$1H(P
z;-GtU=^fRwrzJD=$KX*=Zfw3tj}Iy3NKOAuSJ7I*IvTemLbrM2+8`xvZ~3IkVAtsp
zf3)3Hk}?(sWfDKPQM||4N|lSvfLqBGal<%*<d>0f3z8I!#CoDNuX3R~f-u?}fjg}>
z9^%&Xz(M^Tdd0LT5L=Kf{0CI;)!b+HVCr}sdUyEP{;K#`ywVP@px}wuDSxedlfL(3
z@zQg4bKK*d2~v7h^@Xf0ocr_*tB+1Sd%_Mu;`+tKb9|6_tN{ksoUYD_@c70<0MSjv
z25j?D7`-N`m*hy#*UlTi<WV=s4#nA~N7eW+=x*gv!emVWG_F)9?sq3~^_!&Lw>4c6
zuOyMVepA}VoDtMIh+xO*X#Xx$9hPiwhS{Od+htgTaM=BnOZyKzUIk(H?&#SERW)DG
zB5?emCbrcoaCva`DhDjFgb8$7DSY8epZs2O8Q<&#U@x;KnQ0Pv6#A%WLXTlahytZZ
z=yt&ftI!!nh1npzFOk>0t2(KSW{v3v<9_}A_QHmByD44+q=1l{er~19OLs~8T7-o|
z(E6pq!pL)z41X<w9Zm8ZnjGC`8&8Ps5sWqiDIiX-r_Qa-gK8iKTJh8iXo&ze9Rsq#
zR7Tkf+p%G?uAx24f|7TPm3M!~!(_0T4Kb#}M0Flkq=GRLnegl6Jg@H*tDJVdvo}~-
z`i(=~N0doG$_FlHrI^G;<idbuA+ZLF@n)jO*!St9_|RHN7rE%Q#*ft-fsM?0nxM*A
zSOLM*vK?<XaC+RX1o6mqPIEMPp>+sz)P#}y)JzTwa}lDCv#aZZEgLc0-B4g1a_{rU
zJO0ss?)Y<NTT`<Y(5OA+QJI2I0E;ScD}wX{-K#i>(<I+LBu?u|pY?;3`@<53{0otx
zEi#~e;ksqa-SZ<g3|N{ll>fC9hSp+W6j~o?yHs#u)021$Fsm&336bEVIbqDF;{v~R
zN{RfpdN-VrZ?|Eh@zs0ig)%}zqFbnn{)zj~7qC|6Jha}gL6Y5Nau#JwC$WW*(sk+6
zFdyV6$;7J>$Yt%k2@`^Z*bcV%YHfF3X?@Vfj!kLUUGK)LYZJnt2#NF^I+=OxCtET6
zEv&}sC}~gC`-_7m{ghm){L>S1)Y2^1m@(c!iCl~y>KbTUdDJZ_pw=%+Fn+gjtdM5e
zzN%4u^Z)>-U>Z*@YN=%&nC|D`aVmRIT?yE@qIcP>X<Q!mc)GF{9b;~4YZ!R<7Z@$v
zL~6)~N7VY=LrsPF67tDoXz@2m&CpI!HbiS(|39n(v|(*zlqAhqxf0pbo5_-Y|NPpm
zo`S<bSs5MBM5t?H`2v7d5~_viYF{gz@c||(P+mwC-=qjIrJ>8>;DlM_`V(n-swwC<
z(Jn|(RX}*5UvW#qKTLNgXR)wNZ^+zjTT*x6{cUVwwIQY{`=RucX7cr1Cnz;_B<bq(
zO_x{}OLll@qv^#Bxa$^q<A+kBJpfEPW6kCUvT0ts_x@@sR|#cT3KGf0NYarSXqSIp
zIwoklvs!NAMu+plSY4IXbTN#MbV15Tz`Y1|`5n7jvre+NqBe?9q{ag_=_qNZv${N)
zG7bY?R_cAdmL07-y`ZhnahmT7CVLNx!2d2oY<E1A1>j@v;+0+<XgfvnuLgqcaRcEW
zQ75wTw>ad`N#eE!R?v`4)U+1dP1<UsdDu$5pX><aC;{E<J;sy5@XRh=pA^ZZx}<8v
zsfu+$7Ff9pE@;7vWOx#XN8{A>^q7|<Tod7iBT3#H!35{ItwY%!e932MzvvhtfvIqs
zzvY*21>>0;S%vKZxWq{ZyFbL+c+&<i>5)njSfhh24UKtlD%(Af{!#8@+qgF#e}lt?
z8YEqVu4HXo_uRCr0d>!!4rx1bK_eX{#*f~Ul%xbR%Do{_B$`LQTjtoVhDR!CmCKz_
zK{~~M^#}Y8r#DHK*+3YQ+Vb_I!P|0UDIWBHu#a^ahrg;8HtxHFy>x^XkIjOp9wFx~
z8P?JB)yoJ2Sk68xl8@rJ@Rv>K!gTHZEc7O>u=NEU2x{>YAXp*a;F1g|Cq5wIpA>E7
zdS-)ZUwub`B`RHRHCkQr=fTSmE_6C}bnbe`3Zie(6t1c*kCm`J(rdS=98zY7HM)cg
z6G=3R@E4<J@;s!tyIdsLIXWycgh%`u!@mRb|Grcr=R8}8ZXin)5Yo2uXThTUbByqj
za7g1nFR@navnO?Zd1lUF!ONiHDp!Fh0VZhICrFy}8Ki<Y^XH2c0p6HHGF?(f%QTwY
zLwX=!4yV@zI_{S+yEvpVNyzL+BUEk5*cp&F_DZen`wHF2<8<%s`CBh;F%MN(CBIJ>
zzLNpz*HbPbbHt2R#=7V)p{khauMkDA1J23i?34A-Q}xG_1uaA(#7yB=3O|AI6uu;k
zzd9?)XD-N4xK~fT@YJ8v=@cXXl}T2Q<i^cOLcyKIvLzj!cFgJEd?Q<Yv0`Ubt9bPl
zyOn2G;Hk5Fm1ItMxr0Dhaaxoh6J0n0UhFtNA#2Y;YbYz-PT1#Ntv|Y=?Ha*q{OTRd
z+YM>s>`7~K;az*ff+w&iZU5_M=8Qaw{74nX^Pe}ED}|Zy!Xs<HLYoiiwCx>YN1|FY
z?nAbWkM~%0n}_P=VE35;@mBi>D=q|^hH=TEwK&OV=b+T?yKq72W`wb{)G7RF0;Gnb
zNFMryn%W|p9bzYB3GyAOH1nqU0#M(jafzjrE|8F9({pnoB-CkPjxg&5ga#^suPE)(
zgtE#aDfjv5ujS4tPeuY_Y^_k$T#U+u3yM-`D&m@6wq8(o+fG<Mn#$3sPn%UTCdeLL
zKg$OS(yzmXXVv!Wa)5~F4;!7<V#()H_vaMfv#XN}(7Pe6iQpyc;qp$$syGP7fi!8e
z!D8c#9bbQv&tneVT!qf%9rri7V4ASBk|VG>7I}Gvk6zxS|9p8}KVdQ2zyBJus(XsA
zttn{+nUe*9Eb?f)Ub#F}a<B+!25FKnA9ayr)sCs-wE`T@yX76Pbdz@IPpZV+29MQh
zdfxJucMl_h$SY-R9{J_i&4Z(}UvwS*WoTwL4beMo|2NRj<0pmrp`?xVIERBCzB{kf
zDVkk79;2oc3a44iBbGiEe-y$dx!c#u0?QT^bOz(5?4JoE8airEiVPbK9A}20LibAL
zw@Ir=nbg967HLmQmP*1i2gSOBwXSJ89-6Z47GPp452Y(p{x>b4`D+lSh*Yq;4_P>J
zlwxwmve88}jNuH;DFX>-(EVUl@Eis>`Zt0Mb|z$E_~3<yhI=GyGNv*pUl+NO*GNB6
z3d7J=+952w4}x+8E&lUIp7V&5{dUaViDp!sfX#JF^sXwo8Mr8PxEF6)64AYr0wT}V
zQYI+}#Sw@5v7QtrooQIxZ=Ew0FfnGqpQc9k9AEPAX9;A_buth#M@sMp$_^s}g7UZ9
zPP;%Uc7RBnJXxYyNyBUVcZswt%Sp|0Vijww!c8o1NTi&5`Ev{Me>tgGv#!?UK%R!K
z?kuxpLQsbhf($eZ^@d(|a?(_a)dSZuHSEIm%Hhk&jEg%k0}-j_eZPR5x#K6~CyMN@
zwy3{x6a(JN5RsVnwB_qr3y03>8dRYoUUI|iOhu*W^)V%H937Bz1sL3rHfZ9%L4xnD
z&`DzUZ0wGq*KOpw{wR6#ia%!rk@_ZTvyZGTI^XH|QzB!NR{wUj9w{;o|CK4}h!K1E
zFGlPxAU%T@bZ}1l)hRm#vQXXPw+Tvj%ep`Cu>;Tj2VuveZ!4fq;jN0IPH~%Hg^+wq
zF2?3px+8|@9*Ksb?RejYkRK$l0FolB6wl^B%nKvnr<zfSv+B!|Aq*j#<%Dlo@&$RT
zfgvij9TO_cW+UAG1&pOqZ<b6pXHOm>C1-K7_5u8r9-IU{yiX)AEI^X&Flyh<o^$B~
z=*BDC{z3qpG_^>^%*V`evRYK1CRiXuR9x>5B{MU=h~%$tT(WL*iN(xPsHH)n=3K<3
zU;D+84>LvQvB(q7Q@L^tzjl|PG|nrUWwI6>c-nXh4Bc+qo0dX%!ia=}@m6B8$5=Ru
zP>f+e0PhnQs8>}WAjsARcUmioABq=ktYMRod(nTWQW2$U>^Ikcs>mZ`%@kvO3@VOa
zDi0B>lOTJ^aWB`qjH3fwDA{71ks=NuWqD;d|4{a?HQ(=$<xHNQ?(7XVIW+VsMCY3W
z-fpIo6F&uK%Mb3B?jVowZ%BaF%kbWbB4~$~R@zE?i?HXT2pbb0drQ5$+XP~xpYx9@
z>Ag46Kr$~3I!COulB+qD*O;@U(b7=?(00^{r`iEAW`;AJmtCI%YiIhSZx>=C|As>|
zNdc&+OY38*c4{yTHE{P=Q?1;lvAwl%)PezMf6=;w&P{5~{PW<U#jgc3|8CMgy||d(
zo5Tw|Fyxg0&n4BuXA%WCcJg%g>FN=r=ea3a{30$v1sqZL-0$=`*eMc3B@RZw?Ys*i
ziC=)JU7Zm(m2{!oNT9NiFCLyD9uj4Z4ASN;;io@oSnuLUO6lkf7V#wY#hmu%!6+bu
zwnMefuT0mVM3V<z59xY3%%)lhCH3;IG2_L0LfW~N*V?D9sqS8IGhoxNbD{7Y+IVdD
z(Hp|1wMO6~FZ@net=qf<DvQYJQOA!Jfp!?O=gg6RfMc|bl=(IFZrR-9EyyjD;KHr1
z4rhbyMu$`?67qPlk?ekIunseYb<1&N%!=CYQ0K0N`jMcm;6C74K2}^#)!1&D93VO&
zFtV}@omj0x6c!61^t&m6^p93em4LG?6JRR!5(pAFBi`n@_U?SYXrud|2MZ6Wy@nv(
zORH{Ex7{N=sUGhH{5&osMR_(1VT5oGH{Bz<3$Zz{=}3EAC65cae>NSENQnOl?XeW*
zKR2E0iSxuOwag;Ycqb#014FFFyvv%oPa{qIY>wU22e4IK!#3z#Zi1sB(z2Ki<0y=w
z=6etb+<gE+Y56u4ecKD>U6(hIVb*Q}Fq|BdS)XfG0_gRzkqVP#vsCsS1Gk)4G$MGy
z#?9ENAQ5<_-L;H8aM6mc8n^yicK!h%&+26pzjXfZG+A7WlRR+wD+N;6(oFIeBwls9
z1mwvL)u<e{HoMklWwH)Fg!Z%IuE_Ii`^Ee|UW!tY8UVNdvv=eSpb5FtFAkLGTcd@>
zRdKx7dRrx`f*Y|FYtlrm7w703n!blVL6}H2+6g5iC`K=FY>Egw&BgqAN2L}Jcz|9F
z+K3k2&<;OkK<dTbdl9AR_X$su0<Raf$qwP2Pt~aC_Zez6v)X==t5@a+(`&9WT?mvl
z3iO~bRJOmO34|z@m-1K9w4}G@EwX%XscIwWAE^pV1X>SzxP)Stil4M8k%9r#!(}+C
z{0{5wqh$&Oz>6pYXpXDy_A*NN<#%4nb?4lQ3DO!1L>FJ$7ILv%ja!xYVO8|z9%ooc
z(3)?)=mgz`t46->)A+i<6l1Moz<|RwUsEaV>CbpIG14kr&x&p6$uK|Ge+krq$e;Po
z?P0;W`r@p@-aFnfwf-E=g6eFF2sB-+Fn<z}DF>h~Onz#>lyfUz07M&!EX#)RjBb5W
z#7b3#N+#7iXo|*A#ISkt*ZaOu77*HIh4#@O5(?s2gSBK66>C#|><oe1fGt(-A!0u^
z?DBVKKNMD<|2N+4cxxiXFWi~P?tF7JWN_!-cIQhR9W~KE2^2VUmc)$FBun(Yn-zi1
zAxL}D-M3$p|Dqe4wVYX=$8wDvNxB#*m}}ydjmEL$cd`2yXcj9~qO5?H>F@U;k!NPq
zhh(=t056!O)9Jep{5df#Fsu7O6nj}S)1Q;|@~j9!>3eHU!go}c87WbI5iH0B)lhFw
z%$;$?*k0HoD3I(aisPBUd<4=AD5W^L>&pk8`14<0#Q*u(Ujx^M&PYmaBGM~pQkKwN
z{Iq!QqmS;tVLk-R9sQ92ktQ<0^GEi-ARRoDi9dTCUVxoFbjF9v?>m;CQkMhtkPKIo
zs$vr71@lmmca*k+LZ1>;h31*upz<qw4|asHWj#XO!(NOW*S?>0v2uk$NG{`)&f6?_
zrMKR35BYO)Wu?ti*Up#{N?~5Wr|EEbMM#6AL;Xx%7)K{oWKt-b>Jqmer!v+BIiyH^
zq;QIe4Suj6waH8q()x;sIg9A(Q6nTxlo^{0`1s;&u&i<}%cCzgion{x6i&UBu13XG
zLilk4WQPzfTSGS&K-!4jTFi0d1o>Mae;1r1X@2doG#{oou#hQ^KbC?jF<;B?Yd|ya
zPcMP}MX*>@>k;|&K7|^&I*^eXo~?-pz=sM@lD6bU6~W|fe*NZTcoe@GxJU&!z$I=m
zl<7K&ztwoK(^%m684d6L^IJKJ{VV!NZZoyYs|R0Su7kcTWmKmzn}HySeI^i3=Y>hK
zGVt%DmBq@k{wTs`P7S~|(ky~o0GYol^2nZWEl|X|Ac1@tJ5q9iK-Y#q=3<@Nb+oTP
zC;cbwpu?@e?uX2{!i{+D(aLh;fj0+}>nMeeAN<^K-^#&fLuD5)oP~Wb_C0Cnzc&5h
zxmP&W0&)FcPW*lUf^6m~aiNJoa<j?SP#y|+T{u7hbyL|};1p?jam6!TA@Ci*_Gixv
zWYa~cXbC+ERj#|`#dO?fGUXa2UHf0%xgt1|pi!y}z1^gCIuGSy{Y+hVVCHcqujM7+
zlfwR37C+dEhWutx!b_D@t*4&ZzJRt4=`0wKb^4w>H4TvTW7jxjp6l7Y#VG}{pg<%q
z03KLv^)JwWVsRaR+meH*1%P}IqWIXwaqBq-DaH^yW<E1S>`zdN47rbc@4Oykj@Czz
zAeP)U^@wMrS?Sokk3pZyyR+RUTnir+$?IOLwQvhU1~9V|1Rms~7T5^skP1>lmG!$^
zOb|U$@oNSHMB%(kepCmP{=cjPxWTFd<SuvpQ%?Z_xrAB5!%9XV5i|wOx<%cq!FvRG
z-lFbF(;8bzS~F9rl1yH=>gV*N{&g1|f1&;G=(%NY7EdMgtviuk^`^@E1k?#$o6HoL
zqL??kVcK@4W+IqIc@WgT+;G!~XNy`>0bR2Flug<Kd92~MFzbDA*N5Kb_cuLU1k?oI
zpg))N^h(zHf$AiwnenThaPHcU?VWrmG7&_#tx^HJoN8g}4++?CxNHVxAczJ}D|ys4
zd_daQie8PYuPLP%I)uJR?!u4Mh(?Htu};?GsVRu_#MXh)&PRK($`2En;oC_ZiJ`Lo
zw?19E)k%c!N<NFGba&rbs_I5y%i{IQ^U~)y^R9z20^Zx(P8S9l9^kX8H1PrFbRTT&
zs$Ji6WO*`d*Rg}JP@{M(<8WxmsZ=QeML2@btyleNeqGxQ@<GV0X)n;)aOfGs&UQd_
zg&@dAq|$@44nVp?BkUX1<MU|BtlB>-<Kx5IF_W*T0`1M8JM7)sx%g$#p6LBEyNsLC
z5tq(xH6ULlGKxY0bqT3IE^(VSpMHDA7+-3>Tm3TYbyeCgV0rcLUu6vp!A@a&pIGS4
z4p~k?zKiBjla1)#nr#27EKz=~(8vJujfKd=&-P}xhVpwNG=S#G%)H>bb%2dQE$lU)
zlYEyn{0V`?#WG;;SmV!KG0;Ozm&gq?S2|*h%oGQ03xVonDcglprIo;`aZ=j;C-9ls
zf_a3ceVyE-{smxstPj=C4_BM!RAfxvvaVS<LqumUl03E=j7=$A9{+iXUkY3yC-i*E
zzdwv+7x2?8G<<;A)y-K#AqG~U&}3mm8X$g`1~ONbwA~;2X{uU2k$tIRa=k8IZT5(g
znZvG!KH01XfYUbC3xATd{o$@Uni1*U&pMiVrT>WZYyRy|oRY+$6UC!{oG9-4-nq5k
z1*Lq2&w;n#Qu${yxSOMBujtp7!<C{B10Ls%5#_<|g5g0}M_H!R;-ESR&dol?0ioFi
zqX&%Zi>xH}HDeY)3&epGX~ckeaufU<<3S55JsqUxP>bS7UnFDb=xe>n_uxwm^tcCk
zN^fsc2OHX_1Gl!bdjGu@j9nq9JFIhH+YX3Gd6-K!{mIip|Ie2h8^??8&-&*!Ve*Aa
z7T-4o%{|J}-rF+Wu+}T>pPA<%IrT*skxQm~@<t#2Y6(_f`lkp-E$F#fe48q>9dAJ&
zC~bDbhWhLG`=swyTC)RV)}LO24L6kD5us0gSknDJ!a7H;CWHX%WA2cASRyk5(q;3-
zO%POG1`%#_aWplbVg?L&fk3wtFdhrgS!EVAbVYhKePNYB<Mpc#!Pfw>$au@|Ec|G>
zd>_OfN(jCGJHFGObLy#7uvwWBga(d$Bb#i1EXiu3Yu&-Gxgbe69cnw@ab+mVE~ay(
zp}Lg<3#sznUnP^D+0H@y@FD|NErAWW#724PB-yGgTsRM(I4H4u<14Kss?G$q-G4sJ
zBwHrDW%kdI4m|i~7Dori^r)IO+;M!QH(7Og;qc;?C9nQ7kIznP*xqnSW0;Nx{<bK;
zC(_@?(4wFF^baL;sz)|pua2*pJp59Gv>4ZY!LXh%BIV&Y`#u)&ZW4~NnMP@q<iYf6
z_&mcdB7gwyV4ix3prM#(9Quza=)lK;%zk8SN2o^yuwN;Bg9YSui=Y?(=Bi)kyuc#r
z;qF09f5Y~P2ml6I!%baxxOGexq3T2_JdnLSaHZlS`UBlLY?wpDFBOAj#fGYa(QbO1
z9Qg!XF>t|tmPc$Y9<6tZ{1@@m(Q~x=ZO5YHjc>1`{^%zDLCy{;8~;pd$>p4>SI+iT
z36<?_hkuckRC|5D?EZY=q3$RThRhEQKPpZXJ>N}449xb4M^3PCqywtedd|#x0CVw`
zts2H72t@|7fXI|MY?|AUj!h9y--C>yi)_zj^LlJ7+G$A|I0m3NXpvJ>i;OQrn~l%l
z2MBPwpzgFSA0fKyQ*3+snV}PyVx-ACeAKA%et~F>pE3c~``^7k5Ev`ra-_uM=Rd?Q
zI~5>qPrisOyqOSuH{Lx0M^8XIf}wEWI^W#YBb4VJcOooBY*gI9oGUUw+9?|bZF);h
z>jbQ6EEJLP1wa+uy%8O<7`udsgn9o0r;^XuHz6=07DBdb4EjLMD2al;oV6dm`qSj!
z@Y6a0&slR)bD_?h2OAP)M!upKdW~PaIX*9<L*WukKrKM=Ax#3f9ZRlId?LB{_cyE;
zPd*7mYCdkYbYabWk8H`KKYokKhi{{e_0j!i1w8c?!G8EJbT|PsVZKc<y9ul3Kn6c9
z&ZDB5GDfdqp3>~TdXa72693lU#seF)#PdR+_`Z_jN$cjmo`+EBOH#pS><fM*=zx{M
zi=#JP6=@70mbn;vWp<d|n>S0wL-!;7O$d=robSW;Ua%YC|7@_fP}G<Nb=YtjW0ab}
z1X4DeNYkmZb%degzC<9`eq-YOji;#pGs||h7Bs)Ny!W>(+Wq<q^>u-$W<p>kQhSt~
z;obQ?e~Cm^CJ*>Eoj+%3h0fW82|WDzGLd30AJ`lO4~FhFJO&><J*dG*XO>t~FLx;3
zr~?mNq&<uvtHorFNh)3HZ=hKqb<2$h_bq*h_cY?|1`#a#;rK^7__Q%8d^o(VbW`sU
z6M%8sQ*50~IA#8@$4CVn_CmdQ3*Ks%TgGYyZV2E%M{ae#|G3o;pR>|yM|^zA@n}=J
zKWF2#HeCCt&(I7?oWGMYg{-;)R6mN#UnlQMIBea6QR=}G(;1k}=RNxyo~n4TsO^F#
z<)k(XB)G3b-(Mcc1k*)mM#q3pc>8q7wVUTR;Qr=+Lh&n28J#r3A3led72vhr$;#tJ
zU{MdI16ZV~NyS{_&|jks_k-~zLKExxdvF6H0~jEsiJq?#l^P){gA?!1Ye2T#2shr4
z_POR}M9$cz3Vu{^&+i?=q1Vb~xHw=?b<@8<4SeIEHYvcnShF8!*xctqh<t_XxBfr-
z3eX9}-V?C<?mK0)^5(C>)@1k<WI{b^13dY<p<BFSDK$ncw%ODh{2sbTIyc+6m^EVl
zfN}~P?js{V`~^&i8s^RU=R)Gu-2xA+^LWusL+l{tJ^cLufmnfqN%<U8x=un%s9vi4
z0t%9KkTNKO*{_OB!7hRyz=@p^FhE_&#a72blWRiiF%&9HH9!7!{uTZYoc|$oOc3ce
z@13P}P?89r-2kC$MJ1<*!!#z_Yjbs?4<;DoXtE&Edny|0)Tj&BWQ+Bm>Goms+3He0
z(49q6)DYxL{TN&&i|c{al&zy=hBEbbUxn2jol>*V-VlYDL|YeRUhvgm0rW%s=N{PN
zk8o$$w_Px)eRT70npL4ah0U`wm5gA7g?%=19z+kx@G!g^tk}W*i?`jBK!x?MPa>!M
ze_)RQWUpj~SpwlHI_naXci6EB09Y5b|Gs=x7zYkmh^ht89ks~Ad`0pi2zwa?QnMaC
z`+(>S0QD$n{91>x*={I4BR1;YeszHX*#BVdt)r??+iy_=6hyj2x<N|1ySrnN(w)*N
zB@K&iP(m7{8&p6_x*G(fyZgTA-ury<8{?dN&mF^mbl_mEH=dYtKJz8Je^Zd!zf1R?
z$p+)p?UUO$6oP6EQ#WAI9e^rqs_~_Lc)5Hko9rvK;uq0`UJhXJvFCVWB)hV*|A2tm
zW|qSoaCB-JH}`<waEq76RI5)bFZa(ELbSky8x0mBrxKHx*mEMiQ_Ivx5clZ+vH)-f
z%t(wOFQ|27C;>M1Nl!oWKDbZ<s)?pvJ<Rf9_i7OsSaA1!1ncSYC<{l#mkUs~I$i?X
z4%6m&@HG=*l=`^!_qch{8{GPPag!N8(99VF3wy>>!25K65cG%9dS=lr3xzEo9sDS)
zqw@hd_-BB`n?)yJreMT)2i&h#60~gWOMHGXc6Qy1WbQ}$L7&?NG@i!8Ig(7kS7f3~
zK|k;JLIOG0h$?N+t$Kk{$4}*KF+^Vu<ZFOh!fdhf@L53$tfe9K4#q`4M6q?qPS4V)
zl|O0BkkIS3@ND-VR0C13-_;jtpoS13cXRvatWp2>^(&VTW_bbT+J{322`GQJB@Lhc
ztu6WgSXSsUfJDG65Ri9YA2^NNTT(xwYRtY5myBF0bw7Y{_`Qn@TqaiwkWC5Q`yo&R
z%WF(na}c-=fvbHt2x@q};-(Go6;;+}Szb%mS9`6A!@1I06mY&MqBO~1YD9{iI~*sv
z;HS=VSjz&@>DFX<HYGop6^{dQR?VzpP`dYm2&j4t_@L@6LrezU*>YM~NTfzgLh|1S
z3*-OxV4b=G18&>aUR&nk-!=$SeqSaP<z08how1DO>}GZ{I=}ke158jI_;5E0HiO6l
zV5F7YMMjZn`7mV3>@Wscfbrj+XFKlBPK}Nwd0MFk(QTn%cE_0vWB?Y-kue!P28_yZ
zfsTj##SzIiyvuj`E}?lqKr#R&q0VI5zIrSX&D{3uL2*Ja6<xqj)O`mmC2}u#Q2|HM
z6!0@@80A1bDzfsFSMZo4`0OQ%*&9bu!30!UrRV>gjEDbyGXCEcW>Ml$r@OAZqnYP_
z+Kd{a*T58L;HInJulQk9#6Axa7BHnI^4*qN{OaNEw)+wmlA(C<s;l~e-XxEDj~viT
zT&BJ4k8Zua>{Y%4x_c8R8ZHh$jx_*poUV+>6N9jH%?k#P$7@`4y~GhJehp;WhJ-YY
zN6`nhegxB+BBrM4sW1>KsEzY|=L(+k=mv#a#bpsb2YiLX+I<KH)UJFHL1MGd-ECno
z)UUV>`h-61?}Om@8K8^gU6)|5P(hIq`Xzcx{+yh)xmMsFtsouyH?-n+$H0yL$L99$
zAvU0hy!SBx<tPa#M;(5u8fJoSohcsFK_t^I5Bf6lJ^aC*lWc5LHo{lj2UZ-`9<6`|
zU<9VHIbO2G^IB^c9NZkBZpo-6s#2{+0u7RhwTJ8e;#ad+r&9O|6mkS(lm4^~4Sp_Q
zHweoeAcBI?k@^gamTL0b{qW%LjHl*;Zj_sf&&6{;%mVsx{HxtKb2Oumv?PTmyK^&V
z%_ug=Gg?T1d>?U+!7vIe$o<6{zm<4zWQZ&k@L%N{d}~1N8J5Jqwwm*bk6bk=GFr>C
zS>67Y#gRd2|1_O9!+(4L0g(NB<PkuH_pTpuO%~hCph5Wr@Ot0~BGX)(-5C#t`+ytu
z8JWYq-dp<-xk&OR0DsojwHEL7lG1PiaIyeAeI4ow<k+709CiX3UZ;?)Ov%YW2MKUu
zMty+Abg`KhimRI>n54;i4jk}6q9zBYJ?<WsC{IZxLckpEL-I;uwM;nPnNbHXG59J^
ztWb0bb%3f^5)5?Q_hL>bhD>ah<1+7oY#Kna#RU=~eD}3$jCai6rvu~3f90Q8*LD&R
zID1Z-z%*<;`pdi)OW=pQyAtc>gU<2UCv$tDQ71H>R-Wu1czG)Lw|IYA;SYsBAt#ui
z=Wri2py>BCE_&I^D=@eNEda+4G=j=|JL~q<z*9Z8i@ZUXXRR#=IT2W3x|jYmPUR7i
zX*l?f%X=mA6~Mfj(WT#`2*I?%K-}kBd*Gzrb<Z|+gkjf)*4qog(7|Oi-M6R^zapR$
z>jE|HJtj2X3TFN_W}abDDSW92nu$2Q08H~U*IQ5(M$ViAqF%3`@5*Wegw!-3k9t&&
z8KV_IR|VT@L(To!pUQf7w*C;<@IoGyfGlQu;7^xEBxDJkvw-tn13=nnF30Zy0Px5>
zV}d^r{69+=03C<~kiuy9is4eqB)t(`4edwHBpt>o#a1?e`=?~a2O63G?DU^i{AbB5
zzcTpMtHS+Yf>>~zzF@5GarAwf`u)d<^v^jI{>vQee|ru&OIzUu1_R8rQ6w<wG)Jcy
zvw&Za5_rsGAUbNe8?8}WK&1w#894zT8Al6I0_BVud=N<6aigWHj?P1NUmU>XqS^|r
z$bjD<0z3)r>kfVq=`d3rrUt}}yhwq22xFm##Y5rMf5(@f$>*<y)PC9~-ot_JWxw<8
zz-)%g`k>%c-67>vwOcY?w-$(0v);mX*MH8@ROFvS^zQ%g5Lrit-D77=$^U$k!7Xqf
z|FbReEB=ozyq*)xiqAQ$f6;|BuF!CLnq{ugsAyWSaPU9rp66{e?mR6~Dit#3Lqrn}
z!ujinL;v#fZT<^*`rofT{e7q3W%R$w;j+j72mAkPoF`y;u0=n@O1D)ca(lr<pGvdg
zy$a7QhP0#8`M&-X_Vl;U5<_Se2W9m!d3LbWI-jyuKs8WHvRo%gQ~<Nj9yGv_H^9lR
zrNk||20r|h-=9S#`u}xN+s!{t!vun9-LCTic@RJg68~UzKT6zCT#I$sq))AMZuw!{
za<or=DOFgpZh21BL{!+GJ(;TXsNJ3^7b;{oqr5=C_)${FVS^??^$?EaU~jR7msoH`
zm(yYKgOyID(4mz!-BY%b_{Sd3-O>I}$$gf-DSZ~9o>H&KiYwGrewIjOy^7zhr*If}
zOR#()BeVWs9Z;o2xqsj>uA;wY^8cxh(<DHnn&vt-X?kBOg9!;BEKhc~eXD)H#n5gT
zB>+v`sC}C9*L@1ueSo!tAA<u>jOb$53FQGTU!F1)Nb0$$wQ7o21~U1xOCk5^bFu0-
zLYJ&{bQ%O8zyxn}G;gbFlofb*o>zEx^3+OARok--Qf#z$x`!)tL~fDWiGCfgq;fU$
zBwIX_o%q+rEeGuLf*!zVoIjr_cM7w*u`1ra+o0jBvaZCNZq*|rYw7V=`Aj}6w5Pz9
zrttKxxakq>iUgIEj_)^7GWm#0rBAY^)N_j}y;uWlhLh}iATc{U`RmbxKLf*Myp7K)
z66n$>wb-m#kcz<5?MgKU<k>pRR)`n64R+r7lS2cKJkrrR<6^idS^Il5neMQsYK-5G
zyB!OzT67}ZcBKBg<4`^gtSMp3eHI@TUs%1F^yB+=$I-8z(?QdZU_{G4{5pH6o1)UP
z#o1b$#^W^>gIoBh^?I2t!R%TR$(H&JxeuL|)wb;oMPIJn5Q!K!Vn0X)4!?d<x=i$^
zA71T+8Eqw$R9IWCFVvJ&@E+SvMB*!bcq2%ymKA`(fOU!OUZPT8G0MFJL#^6S1s(z`
z?0<i<WekSAP!~kE9~Unyif~dK<HRYCWG#5d_NB6QjNS0K9Z7s0^nYzE)Vc>C&He_{
zpAKKXaVCJG1p_z?rzYaxOZt4ZWr*%;1Y2W3Y8Zp$L?t+W?;T47A_+{Swh!8X-&-zN
z$o&<=8e{;okoABC&IRl{j{S}j=STZTe|n06?F?)zdl3YdZx`N|Q4KTfWzi8dpMu6O
zk+kTaB^J|OAtlB=i!bbXZ>-n7B>c4G8j3`Q!C7PsqAUMSITHMe+M}h`k#rxrXu8a(
zSg+Q;Xkp9SIN_i>EYm<W?(1w{1%$AZj~zKeV_Q-oSk^hC8#~3;qV?7JKE=h7kEWvk
zT=Jy9E_sFyEF}AKfq}br?={kv9}Ty3HdY?)PKy3?&|WvPp0_@&vvx_!@I|Bt?bS#B
zAfpwZTRK<PT(J94Y1?fZChlK*GmYvQ>mDv<DQ356g__y#9XIUD483Z9<Xz3-qKR%Z
zVHM2mlhv=hp9yzn_jk6Q-E=R<*IIV1Z|L;W4K;C04q@P@4Exp38hP+*{^n5#T0|uC
zELhUd2;pvLKlyK=5PnaFuwOSXFZnFJ^&Bk<w84|9>|{SIrZ%gzY5G(4=Np;U8gb-Y
zi<`C@<|wKyI~m$pxn#=qyV~yJb!KXxTCn;^45~L+aTci7mR51?ID$whL*!GO<^>84
zQ9-rSX6`BGKVU2RZ*B&_m(C+EntuIbisDKF)Gm}V^`8{vP>sgQ^z@LXydM<nHaApR
zPV}RhsurD|CD?HuWaR=xt6lsLfIG!&+u3hjVX^Ev)$leQkI$3p*wKWMTDc-7j!H?g
zC%zQpEWvn&tt{c2s8rYG>O%MJoOm`m29=T&65%X*gDtW|{zvEnO7fsjN6%=2gDP%d
zmf>peZvG@cS{ED4XCg<lJH9E#J?<$sa<X>K^H@BjRZxeBoDHLy1m0Q+-y#H%xB#81
zWKUI-K&V=N%zDE5eXlS3C+0Pj{1fxix~E_vRE)b*ltxooqWyuw^}#BmhKq*weK>dL
zC#E=e!)Dp?FNkiNE%)uHHS(dBoQ?J))2xTz1|OalCoLnCZId8srD4VHkpn>vL!4jY
zM<N;yVM=5SBTmJG1opK~!qwgZie9$F^}u<akd<CN0nH5i_i1jYoJv%YXY6ISm2Wwp
zRs3w^I`^vR4?$cx9ygVUNMT(r`Y}9}@%siEU!}(3-#1R+vJpf7u0}^LIG90;g8m{5
zAnA4JfFDYix2gQ4BA9T)#cDIFaX-O(H!!dI1)}P?6t$!K2I9W4yKAEWwNb%9g%yQG
zN5Mo9X@Eh+@a3N)MpTlLcA>XIX|%%reD{{1<)pdxY~HOJmiaotWi2h4`EBbA^FrDP
zfX!BZ7!+*`9|e9#VZNzZCl||^nCaebbuZ((lBaF^)oMb*NFBnnWHf?G&*6!v_cStc
zYVp^0;BcTtw#n3lLW2a|TzgVW=``OHy_qN&5(8e@P<d4my~G{v!A$jCrmp0&rhc2k
zZ%Ra{P&g`*{kW!HQ9ZthtJZL_;kKua-NUR!8cI6ralDin?VS&=P4(S(@o8{$cNPMC
zw&v|l56jKa=D+<ivJZJDLWGZk(!3CSoJAkH8Fox^HNHtsERDmdEHobS*rVKX=hf=B
zJE<$=JG6QP7_$UMm0j)1=ak3<uQ8}?T<~ARb@Zw$jZ(wQ6U+vsTdKV(P%;v3xe~;d
zqZNJg^*xyp<Us<WC^>QOlYN##DWQZX9IsyK!qmF8J;CGmRLBiDF>qmEaNHe|#_k_<
zr-2lG0{_FO>1C}&1lBR-NSOaSG9yW$@vygSy}Z$I5-?<s7?2-raQaZcq(R@X=6w|d
zHKy^aXb}-0c@qGB6zA)~u&FMLP{J({7boXOAhzLhPy>o@!xLlomcey<rfbaR_Tc09
zHB3jRW8C89C;L{~$Xr)VsSRd~1Jw93DL+>h1-|x}#U8DEc(6;aOQrVVQ7CqP#J7uH
z(pEilS12VdZ+Ga{zVl+PjzlQpvXvAQZJUrdr8<YlIjO0yl-=3B95p37*(0=vPB7<O
zQsE>~&W4wy2ZC^cZdrC8Jfk&Zg5frFOP@J3Gh?~%d#k$iX)4X-)1uSx@<eCPc<kGb
ztHxA>e~HEk5f~Q|IQAwT4m(v-(aXV}s#RlvhxBwMqg4>ZiYK`lwyM!zmsLSJ`}3#j
z0!?s)SFho-QL&_Q3<L}1bOkjXH;JiEGBrh3y49&3l=)n*`e4$|#sttJJgls!TjxkY
zuh>^KgOkIX%%1kIP_-cXAVRHr6P6DRpzV#czzEFHYH&r}ooh0Oh$2XFLlf6`Z{`Iq
zo?+7F$2*0AZM5zzmE2-8o3Dts7BkwB`Lj)GpEz-h#qYm7I8|S)V20n`DzT_h45v0L
zzk&s43ibtc0@%Z1VF9#?;<g>pk`oftisw<$d3lt;HlT#mbgWc|d&HegY5@DCu;=ki
zR^p3jU0X`#yIt;6eya-)te@yVLj?3C<&!_e%VbpItzX;wMTtAB&<{OAEIJ+wWHZ9Q
z)8VX#mkVYlF@-*nW10Lh8oiQ-Q3`#bTRI;YooD8RQ#cqSOw`*F2e<FkG4KgmeYEd7
z!<4R0lK_d;eugDjzNfx8KNc2zcS}b$bYf;XtTRB~OFS@>y_8W49jdl1vWDo95TQyC
z!iem#lQiciW?hmrcePZzOLi%V^~XUwa<OEtv5@_R<7uE(A{U42Om99H&MTmvoHPFN
zyo&!Q;WWcwYxDg48dtUXqhDqOv$$7iU6O`y`H-`J&5lCrSdkc$G!r=0@S5X^)lZ4H
z##a$E7+n%9C=1!lg4J}~3pVvc0?CY$eN+q$4PL+9G!hxPc~yemD($j0gN#X|D!28C
zX|{#TXv!JxT-$9gTOP{L`W)XDHzql|=Kd<F{o+73X83!L(EiyYtqMIUW3Wf?nAEZN
zdn9(hNAGt7i_f#rDxM>&W$?HS0@xX!vo{7CP8ip`+FH`5n4HY)MCTZdbl7sLUjpAS
zUV<2g9X~1bah|%?wu*Sc-oOP>x1F=I;KsYneBD!36{>j*;zXC&wG0s+kC>dIgorLJ
zUCw7;ySX1ombTdC2#R!026aUjy^DeT{tz-K!Co&yq4lIt*VS;@33~p8!{?ci+nAQi
zOLH^9cw^`x&O}D`F3AMn=PRxkt{-_j8B-y~3R6|0`N~ASTfY&@!QT0h-y*?KVOye$
zRuLDiOk%V%Q}smrbX%=dKuO(&{W(5&vc#D|&D~VCkN#FgM`4W&rhh9AGJ~F;vVGyT
z{|66^^W{1f2VvjbkC=#ChhPblNn+UCB)g<=wLwtx)K0uU#ih^WHuQ$YmFD8&T*@A3
z6*<M@w5p1$FOn8Y*y+r(NN-r5txnx}U-1DJiTEWxeqhr2i<Q1ah7o!eR%}hlE^sT~
z4q!s$z`25grDyt=04FMoR$(QoFrEnhJsbsGPErot%OAZ0T}(V(*N=w4dsO&>VIi70
z=^)RDnd^x%Fp@OK^!*?*wAE;}xp<Ihd*^RDkO9;co_#zX3D2>yO^?kvk#Z4K0%I$g
z2^2KibLu*~bgBq;`47HCK0OGQlOYjOV^ir_@-=~Vn64%qP7+xZ6@C{ISMIBBe>QXL
znsD5Hxc}`*{r=xx00B?lz1Ht3c%vBiqE?38?k4;jzAnxzS~uem+Z3yrka&;5w_L4M
zKDc!@I3&6L_ZIbZ;7b}A{JB166Cx*~?$KVBCo$06@H8~yt=*F%4KB+<hd`fPThBwz
z!zUQyv~4|o(pZbvA?V*6E+6f<w?>AtZmm}qwo;z%eJyn=QazcU@;bO(KPYs6ivd3V
z?xPD7h1tv3t``W{!u1xceH%RpI$~%Q!@u@H;Bu?W;BbDvr4CisWJdErNG#EY4GhKb
z&CDchYWCVsYO;WR3QHVt`^a`d#7ZR&C*hqGt3{U90QQXKOs`zmE42pN9@T3Go>gW|
zydw@CJY+(i!E_q?p<`<b37eH0@Ag_lm|R^vRz2ywJI=tcwSJQA+nYH2t=UF~LbalV
zn1N8-7$`YB1ai<6?{yyxK|<sHmxQMFKP9w^XT)KWDv1nwH8Tf4Z+<Dfw@MVob$4@{
z>Z>7tf4}nudcQ+uw~1J9mLZ{GN9hoU*NH%iQ(&|4YJW80p34QSvUget5RGR`ch+<z
zqy;Zpah6}`!Wd*K<O^{POm-mOwW!i^A6~fTK{9jnLj=^s-gRr}cb+bOZ7PeF5fRfu
z*K?omYb4TZl~;y?)S7tvwxj!O3Pns?EadY=SIp9k3h5tyH|}O0>w5p={#$K?{<(lo
z|CYU|Q7e+VdY2w78!pGuL{~`$Mdr^{#TV+9p+u(~uO7Fq7O8g@c`b~as`^aOU&E^p
zWT=j*7pN1KG@dAqrDmg?G|NWK=WFNra(*(xL4+YAmVS(fs{&T^2?G!9b7soB;G6&$
z{Us(0gU`lWY+WVgpXvDc2rSh~zvMFK1)iQaU);#Q-{QH0Logiz3r}1mTuYEIxojg9
z(q>c&sYX)|b|sS{{T}Y0+Sr({kuYA#UaZ4ivy9@lrg9j$Q13!WVx&4Sd_@HhiGjxF
z%D<U%1DQ^MWIu)knsJnvRn8PWKQ2rL52+!c+L8vVAO<HPlz@uI;PpMG+t33otN0<`
z>(?ki<uY`G&+m;Vp8<V}$xWuNt`2M?w8i@^20uIu%#r42pxn3+%7%%*uNu`WlA|kf
za$snuxt_0;-bI*p4-6O6c+Rnuj3d~8y*T)VYn#O-n+Bd^BK$gJui+G>-9yRubpx^2
z{%X`d&T{-o2X3_hxt_WsZ3cVaB^jbLOvS55Jd4+M6H+{ye6d{`A<k0~MkJEPdnc%e
zwHwI>3~6wBUzuA(*wSr_Fv@L6apPT(s3P0HY!P9*ewTXd;3&VJuYv%}m-0+pTwL-8
z(^F=M7zxxDE_mKn#9eVh^xtoEn6!=NH3EGaPl0wwPDf9IXss_{{wCz$H5nX&_lqLP
zca;rMnA@)lw{Kpt^&C~c{ob{d5>Q_H_{m4t3n{S^+CH#=xxo;15WkDtWL2cmDn#G}
z#e*-_x)#3qousmgr#hFx^==?sJFTPC*iOI8^J7eXRlWH^`fT^of?>9d%%}jp;`ph@
z>9IK+d{g$ot6T5=jkOdJfetB%Or1rCLmH>EO7#SYKhGj`Ftc17qjg7d6uqK#jTW@M
z)KU;$yJQ-1{@!Ge^>Kfv%VRu@4Qo-5AO9;d%c$MJg@uQYqQ1Ew`?-o>Ya6TQe9A2z
ziDx!ZiqGY|9V``ZmHOp%Uh}c%N5##kzxG$LqCLm8c;@UeQu>sH&f+^`^Tf%k{>JoA
z%Qv^A_WO&(qh;#IS}wcaHo2qhx9nL?`;r4vDWg6p<Q8(&8{_k7)?&kYHNVc6DzDm#
ztD;5i@`L;QG-e;&<KWG%Sz~nhizkQjL7x7dMB+OM)GJgJ2lE#dxM)JVIK&+;2m?>7
zm)4j3^YLlI9TQAu3&+KW<g0|WAr{IB_gQEAuS9wx@vl{A0cr((8pnHCX>Zk15hZMP
z_2>BPkhKuSlEH(U#&VCjm#o!=*E<7ZB<d~Kg_l=nyFVu+7m7AH)7Z}Xx~C+o!#P8L
z2z7-<27j4Lo!BQjr;i>qKqbTu3#jAZ;Ntu`(uu9h$G3lc7$|?bO{G#n+l}8h)f~t4
z(PfW_>!-ccyj@!|)}Eb)*xQ!WJ?-Z391&xA;aT}=l*DnA3ctPCtU<eIY8^zxXYIZv
zT1tnXaNQn1%M#pDk7$>XK&H}t*^d!Amv;P`15R+%#?gr5Ms)MFGznAlQ@7O9!#=rA
z-zZ<gXw2SNS?sqmpUiP2yN2H<@*alYnXu?cm#4rMO_W4M>NJ=oC@K+<XH8HXzRQU}
z#Gnl(CiKcu6;X6a#M+vxe~TOKXuH@-#YM>JrU)mh_iSQwc`MBC;X^8w{LcnnmVqIT
zEqYCM50R<j@Pg)-Yup4g8Rk43&R0b`LgS(7-{X#{>EIxqvo`Z}zCieR+j!?lCno+i
zWH*QaV}2m^_7IyY7))v9)T<Z3FL?PU`IJxWRW6k!1krlc<ImJAeJRDiEdE&*40YPu
z)e*s&MMjL+Z_d{!|7kMUR;JhZK8I`-RtPVn@<Do80@>+{PBy1CD)6x3a=Sh*Z!^zQ
z+nKZ;AqKS)1~D=5`OR8=%BMbJqrjN-FWfF)mUBI2Ma0AgnL~DmGISei>iV`hE3#EK
znC!aWc~l)k$$5>;Ggg$Se^)bPkCM@RkJDN)BH}}iYaW5f`QNcI&DWS$0%wO<dI5Q4
zAt#3nkK38H!(+VJ<9qDRr`5i`w=WuiASoM6RPOKZzphOYUHzT(4F67gU6ayZzWS&c
zwE3D#kTF2a<MVOm1PJ<c7X3?G!O-Qzmy8)KdhOssYpyra5-ht5O_BZxCRwYLddiT+
zy!o=lw(7>{nGV!FRXVwTmy95$6~3dBPB%FuqtTcx#*$OT>3Fyt%11*J1IxRUE>Kzx
z-m>vLtL-6ZDXH>+rcA}F^Hsd_xT0vK__F#zf2{-8+gd!y<5rOg-63jR)CzYbG$dQ;
zdWt)mH(#+%I%@T~SG+7?@bIitVQN39LR3K6_Zj8k&{c#4gN59GT(YEdX8&(k6#UGd
zW-n%3Z?fg1%j^^lKMLBMTtn*QV$Tvjnc#D0n=E4$jz!+oBY@Y^RL2sj^az0POl>T+
zsLM<UEA}Un%|h`0)2JUiOtZYa3Lj0ZRSIU{INz=@7G(sZjQO0acgey$RZL-bCL`c~
zrc9gAM~ust%A=)7Y2ot)Td$2Fsyt7}a)53GscLf^U3H6<2{UgcJ2>BYX+=?+!ye{r
z4>qr>noV0<M<GGTQnhqW;OKI&LLWJu%*Z_3b?MrT_R7iEgqVTkCF0dj8vH5o$`5`@
z*q2T{Mu!;r-t(^u97gL7xR5KKQG|;OiI{Q9E%W8Ax1eCXw8&BJUD-bqkKbffY&JnW
zM>8LsZeJ<7@!4(LSnh;Mkl|LhFC2+V#|vJ`;YZUX@^4Fa8C3MyAAWHBwE|CKC|2M^
zEZXk{Po;?`t63$`t(2>@ayt7NG*uWo1JieOW835Tdz5Bq!3no563j9bLEnEQ>ZPv~
z+j<V4+XuVmTsP@I+Hygs+z7L{&B%qOQ?6?_yR9;ze$KE+SY2*kD9FkY1HW(rxYF6D
z*m<I0kTGSCFb~yv#uql&#hg;mSvY|t0cw=3Ybe)WDWoe6E@$mJ*Q{73rxsICva149
z@OMM`S_u4T_@e6u^YwwPO;2$E?a1w0e$Falj{z=^)8c~ZpH0Xmb>2sP?2N!yvN4ER
z2K30e_}KSoh7{X~)^~sPrD){+o4v9PHRcrNBx5(i%8f4744ZkXMZM<{g-yOnft&Ay
zwGUrS$)?sWBELjO43Yg-(ss4DyB6iS`fBNPNEois16P&%OpI~Os7dX|(?nZ5al3QT
z**cde$fS=^aqvq?4aVpe9?ofclS@Jp2=O4K2qa%7%&ofcVItQ9SID;72DmQQL~l`B
ziPpnxT+s-{y~}T9r@EHg&OjUDn<X}(GMjw`_j3MWh<pY*vD-TLRnZMJZ|e%~){7+T
ztd!kSKzkwlCj+m#*OgDmwJi6m!dwM#JGxx|>K2gyty_3W945_>enGlBUss?VofDzA
z^Ny=;hH7&P;rlUaCK03H*O@20G=;2Y!Ld(IX~r=Fg|&}*t+Yv*0yQn>O0Ww@E%QII
zX=Nw|6h9SoDSzAN0271#LQCmHEMh228TlhTD)FW<xseXH%S&8uy?2ysO+~8tst7yo
zE&9iN6g))EuZZ9w(*pEb6)&)FIddWF@$@>1c{aR#OqxCEGqr|y{X3eXuZ_-4yJ9Dj
z?94QmW~Z1nS{(xWnKKId(|FJorbk*-$g@7=ZcL9AX_UK0_j6~~JJmNw&Uvgik)~g7
zeYU7(f6^?TQ7l!s3HjPy0}9bt?1J=^)vCC_f`|;S%b2H(wj~BwTib$N)Ae4s>7?8$
zGp8T;d^j()RC#Hb5QxJ<JS^2qNJz%X`)*T;9PQtZxV<~37*OlesumkE_)aj9tWxiA
zu!r%IrCU3;phvY(5kbe}SR&D*>NiqQh_3MLFQ9;Eg!G>RSM4=ueAQr#z3xFCxQCKm
zOn%F`15LpJv~B+GncCfZGqv*K{r3u-NFKxdTBAll5GQdty$Z!r)q}MS;iXT_U|^B*
zLjULJK8~yPyZsuj`q=u&%5d~x4Td(-GfCzyDL}PyyNF6P2dN3qD_TJ0mAEN`b}Mcm
z$FszkW-Cl9q);M+DHMlaFb?r0IS3yQ7Y|`qUa4X=rBpx&Y}@B_!uo=KDez~qfA^Ho
zeZG;&%WzqJ^)T=#K|ay<b+%4CK-iuTeaS$y^_d_HsV%)0&#K5GjI4La9v$t2n<_^`
zm8Kl2?!ch=GBxz@!esXY3fH{Y1jYh`ja}me1E1|gA3nLybct3xVTBtiL0Lv`C4t&;
zdz};;CFKe}8~zl{D2rNG8t4t6)PJF?=_q5^8=|KrV*nOla?lJYZauT=%uHpYQYSMX
zVlp1QnM1}rIiqTykHJyKaB_QwB@h-lSMHeLkfen~%zk`D9ja?MX*h8l-4>kmVK>)!
zpM9A+Ag#<`CIODw589zy&c<-l=j?af%01nrj6G^Ls{OW>oVZBwm1jQzXE?ta{n#-|
zVqr|^2Zy-^v$>M8A?{=;#l}#8`QXbTt@7?}MY{@xg^kAG2DV)N+_J^k6Si=YS;bSc
z>lHik$PcSTa6jJ7mcsbyZS(1p5{ZzB)mpVhsZVoVf?zPcK<DjnIjQ((^S)ONNVIo+
zi{)&3{QNxL=L*%-sKhjE6i;N*8l6r;3lZO9Udyb{+*yaU?V3;3#zQ+`K242$BFZ>b
zreoC4*BZ#Mut?`&MyZ(epBkt%F>_ZKnT3CB+<k~Sn5*UT%zE9Jh;`lwSsPca<n!h%
zOAU-lfzH$PMrY}xKZiD9qn`5UH~t7#{sL8E;6i#xBU!?hCgp!>taTlQ5|$pC3_wW5
z!asLgs_AOh*N3V#t@fwS3|5WJ+&5vPl0(wr5@klrCC1y3pu6+gRsQ)F`#my~Qg?Pt
z;;?Qx6_KQjL=T%V;inB8^<UcN&^wOQ#bY<U6ke<2h=>M|{JbUS2|;M9TrtHk7=+L8
z&RyKmd)B+lBc>qp=%_Xvon7ubCx&n<4?V~60PVGtO>F7&+6|FI1K6IWh?>~NosGm_
zkKcSxkL3&z_)cuMH?fCWZ`$04Z`Y&spo5}#ToyxzaO|mMZ5eMX|GANP@>GGk=Fttw
z^><jF^Ihw?n{V}RP~%>-DosRnu0;`_2N4fIV%W~YCG_i$NEcH@?M`aEgl3WEqABig
z`r|)=)|a|N_Pzxg%Eu3Y#6!m_q+L`>4V!E8_-l(h%Dp^PQAbIPc(W9=TCZP=RnrHV
z;BwhK1Ij4Zaf*$_Q(2Cx9c1*4Bdd~6eS_=qa!I#iloC=Zr&dEAUE*+5y027k1{+=W
zXI9_~R@@)PHqYa+31wDqus6d)>{+PqMqKm?3=I1E_s@h9YZpWh4&znsfiy<qt<5Q)
z&(2E&g|3k7{HYx3l;-iiltQ(M=m1)$bpljLv+01nF$Cx*ncSZBqf6Wr<6+Hu`#CN=
zZpSaBeJaJekLNs2u%?atz-!D^i^3=la%K|Q@34r&uw$;TN33QW-IUw>j9;Cyv92uZ
z?^7`BpGwrARFr~JIbv(v?0x3S)mc!cm#;R4yAq8t3o*?rCbYLEGQ!8potkqjT5FP>
zYd0SW+r$Gkyl!VXY45B*PM!Xs*2uF*ZyIj#=M*iWC%p#^j8D2rX`}!$0M4kud*c5U
zRH0=5Lr~p+5L8cH6hO-|n~CyLWCoZ+><$ntAxt>~Wzc7{A(A$e;(59ILO?E5*FeOb
zJk^};ijoDd)*$oCM8`u`2e-D7DR>v5fj2#O^S8C;23#9Tn{Tz`SKM!}(p)|^!sMGd
zGw{bzY2b(+s)_o}8ZRy<VB1V(5K)jMeM3iqr=ivqU$pz6V5XfJTVyI{L^JrH*M>)6
zc4SS2k@qp}>U35GLFAXuJ%I&LUUoF+Xqb`|Wf~VlS-&2r(2P8x@3-OdIOGrc()&(e
zCEXJ4<qcPic}HVOcZmiL2Ek2g<d5?=S4upW3o>&j8*1fjp<ZmtW7oN7nnauw&vwUf
zKXeUtH#jssy1QIVaK$QW5z-p_;ODpZkibcc<jvp<$r_a};-O@Za6<k7O(!~k)y|o!
z@R0G{vig%MIEa<u?qqbZE5;{_(uKjLF1>b+a1?A^F8^=%g)%uVxaWMK@g?u#k4zSS
zk*^Mlolx;8w$+s7TAZ!7;7>LRrjKg3I^nXI0cD~pDshojwFQ*|$4N`xW|iLuhi0*c
z4*2(lH$KIkdfZCrg^0cTH9?7#O_iqNj{<2TT`@8aZEQ5<GS5zWLj*}XH!BOgLEcP)
zo?ML{z_p+!J);!%&CVvRxVj<^5pocFA0`Rcw7%+fIQz?d4Ql@0i)k()fL2-Lws#@N
z?gPTwk4yOvpT{DbddEui^aNx1vZ{#E*FEOTO@U*BqH?C}Nv~0Uriq-m#D`NSXkk|1
zBRZk+mS&I79=#?AbfIBu3`#J2E&KskNx2kgVV1awD5w>OnDpUj<kER6QlA2?m-Lrh
z?f5}4KPMesWIbv<i?K6ZtFD~a#he1I{^=uazq=9=cS~g*_eu{n5YD5;<;l~zHpr{8
zRX5pQ=E*dikqrVbt%78X<i`uyZ&ykD-jZZ>p(j(7tDg;sMW~&qQ5M=p0t^S7^0Xt7
zgg;asn(vQ50r!5r(C<AW?po2Y0km4EaVO;9Zjb_KuNN*dkuO&0CFA3eVxcZ~i6Y)w
z>zPla`so}Wd8rJ(+t6SENjEw0@C5$HAO?e);s))nnnLP3Sw6n6KF3QjBlus!it{sp
zJo1>`4^7G59DSv(b6m4+Cl~P#!PFL!&lo<)3wG?lgnajZ(=R92wWt1aHH=jxSttTJ
z&<Zyuo%OYlNF+$7tunxlN76kDfjyt{%?2%$k)X-Z!CAcjT}s`Hy-@s*j4Vl~D(oM=
zPpGh2kdh<eI^|TAadTlDcLcl1I_8vq8oOK^dr!Dd5k*`7q~0r;>=6XVmlFP<j<uLK
zhJ>R%&pM>cK2!bjqd*if*Ei)K5l3~rmvjw$4{J;P71!fiLeUXDc^6&`p@;agFHNio
zuh@*R=aPQ4Tq8EP5n5`uk%ImD{_&jYA@ph4w%Z|slvMS7;gRtdB&YXpkX$f$czeeo
zjpwsoJ(DDE^DwwhRjk956lBn|BK?A<S_fk9s1>__ZJn*IdHl&*#boXHRy*S3t91m@
z#xw}84_2vO9aO3myXl~NtqWH{1B7mMk*<o4^FjOA#a~PMMg{=F3l0lmjlnT_hC$~?
zu>vW6a}Y!Qv+MKg?U|-0*z)O8(bU$*gtwRu*i`vBLTY42){s+N8=c#zA7^nbK2@KW
z@y`xfPea?*3{rQ!sE$o8FtpJ^-msp8MJXK?u&rz5F{U4ly=2LKJE@u%3Fi?oqfWoH
zU&_zY9Y)9HBzhv&r<5#1;|q{KQjg0_pU>{ydz-Kl%<I|m+b`$kDjCs@WgJ;P-M;n}
zsw`YUu6q^>tSRWC((1crSZ)xq-yTeNAROa^g;ZDwj}1fMdvQwbpd=xf+rG3oUZ(LW
zhbgAKvp`5Rj2PKXDJs`vqHk+rAId|Mk~#_pITIFU^yndz-P11J-8Gx7zywC~i2Nk;
z?H%7qI5=K-xa_s-kj$Fr?yg)Eleh^~vWCDxY9`Ax8|k@RwoDR2!pV$8hh27Z><v}A
zRq1VP)=x});;0T5-iEon3WhTe^S;0-S5yqW>e3zOzj9~c;o*rmhClXZbZ$=+V`_UI
z#lUKL6&fkCak<CKm6j0;28labbhy6`$W)JhGNc@}ebX$i#M<aye_!7x+-gHx|1OoB
zQ2tk`RQNxYO0>lOMkYezh7O1={%Xnq7Y8D8Dmm}Tqc>+;6Ug8%RZ~WQVyALayXOOG
zretU!W>!4jjh7GL<*Bua5SfO8v13Bc<7VbydBZNhQZuHA$fKZQN93$fwNr=?5fdZH
zhfu{MA}xNUa#5Fet^4&(xB`Jkhi9EVx=BxTkTA9^U)K|(f*id(6b{$Z`UP4!$3W4O
zxn_hf+@=rk<~)}+e+3$TM1_lz7owMUapmOv(l>=O6+F4RC{Utwkv9;`@oO`nHHx7<
z*0eldrv?4`?X+nOZOP{ZXYxnpfnRPOYwerezL-0)w8Zs{z&zKdYof9u&TFsZnDuVO
zL5s~GS=_qVr_SZ;wzHh3l;CiJ;}riPUK)d`%%jmU+vwY<camiaH_~h+Z`DCA{}AKG
zn-fnbLtb;*Mpg5k)Uy)(L*`Fo|7#OKA~fD7z1AH&X0_TwMyFJW;of8_^QPYW_PN>}
zlX^K)Z0M!;d9s|#oi34gI*V?(Hk*4tB0hWaJp0{IPLHnEr>Gb2+s|P-xODmER|3t1
zdfv*GLt(!ilNoiOC%?H2UMg%p>P^Kh^Er->>@v{|wudm?Je4hzD``9vif`ya?}J1`
zjYGed^kRQDC~fG>E@bJRFO+5&u_!o17WVtR_|(bPK$DoUZ8ykZDa!ERxO+s!8KO|4
zPYU#h%8H3tLV)!aKlyUYUv9Yk<m6G##rBr%HrBLUB{A%(FMokgYSoo`zAL;Vsl58s
z+m+W9UzV1~OLYS+vHNkmWtsm%?~_8EF7(z0IwN|qF`eA?qhoRh*CN=LOdO*4oR8sZ
zqOpZhsl#{jQ7dY!W`kSL_D0y_H`#3kh>r>Pk-+)y=DPH|I)%EFlx)sd|At{j>MB`t
zVTr>!wYeO3A~#trQ*LN`C4|NWNvv!q_BAgoCT#L`@=8fY!Q?<Yz=0G;%N4p~af61_
zSk1F6@JkG@7H_@qhoaz{qzX)K-mec9#K!c{Gf8&!qy!WL6N9PMb7|7QFAggzhx>8<
z6h3>JG;?E&py2Or<4sSYEWmc2u|XsOexY!$cNm4bajrs=!GvECh0D%#AeabS++S+r
zDwC)o=)hx1Iy>G_78xeWP%G4|eg)jvN>$rw0fLqc8yoq;Y3ZwBG4gZD#4XA5<*+lT
zgnq}gCqM3P{k0-<5N^t4Bgy$DL0vr;5g#M&&)ABueRBx?B2a??^(KSSK62a)vhQDd
zM=&L;EZ9OQ5rP@NPCS%fd7+DZX`Rqm$I;eS_S^xJDoUfGa<z;)U!gdezKIz5%RF*p
z$m6`kCAC3V9#6dBbqx~dA+neD-xqgw{Kr}61!GgZP+kxOUdhKO&Mmk)HMmjb*cJd&
zlEvBjw;SW@VDcA9KK|jV<5qwbl`N`6FkENfQW-HP-#q;e2Nr!G+QN;^3hdTTO8g}h
ztWbkWmoHNzTIKk+9M7kk;G)zAL_;oozD>QO>X^8SAbdi);dj$SW0D<z1>2JJc#laH
z^NKX^zJk6aC3@M8x*^Jo_3zgT%R@I^kc`Uvsj5`}aYh$G+2rFQz8&3Gw9dQPyn&ZD
z<JnL@#5+Xlu7RB7Y(CW!tI>-RUn)qsl+?{4ckTX_%1Owi6ozKAb<~7%&rCyfMnLgj
zJxigEclBN>m7b25(*AaNYx#-KCV|gOw1X^NY2!m6%(!{#u|6ljh15ePNZ)}VH-BkG
zc73>VQx@}eJd1ikIjOesNz5G^XS;Eb_v2gioPz|ArXDvrjZj>ltm%R)gu|<EQ2043
z1#>$;jnk>ZM1tE?)9Pf%RPRgYgnIdyt7bl<(@z-HJz?$cuy4S6bxb1L7Czza+`)op
z$wqo;w}vemanF9sfYZrFyZzzkYR_c8qRS$YuAgh)L=NjPWW$i+(LByx9(LQMtJ9J<
z>(=bAW!lH`OcdlI!}H(G){l*vbdLZy0g-vC6fL4&wNz;=c>mLQ0mw|&8nsxR$oMMT
zFFhD>59Tzo?I}k548^=f$t+j*mc{6_vW>UK#Z)IN$K@Tp^2sTx5Q+C}>yK6xX_-7O
zSsKI_6i4HWln|RQPgO^!gaH!(iG><R88TSk^Tl8{zx4V730E?nspR+94@FGKA2HxO
zIwaVS!MFRmyD3TOXTarTvJb@+_c!z~t0wgLb{VTC%T(}vyxqU&-uac?A*jEVhnU}G
zSNlgsNekM1Z!f|rToCv@zX+SPP|MF3BA&WB9&yRt@IAe-9BrG+emZnq1aJ4zx0C?3
zc?ri2hjFRa35LE6TVVcIa3Bvy2X2!ri4JGB<+}i+NR{_e9QAAOf)e>>n~sQLX1^`K
zafZ^=-hJB{JThBYBozs)8{r(mv_0`bXr4C@gvI5{{;FMbJ!|vu&LCg2ko;AmS=d$g
zlsyH{lUl=A==Nd&#qDl>Y$tZ)Y^F>~;ZQ&~wct9ohw}}1f|*KTu|AK~V>-SDXhF_g
zN(Cl=Qa5b%|I$SbVG>_+fv#28Mm(vrmAiOhV{A#Rr)7<dqQ4eJ>Uhge#cOO>D48Vk
ztjN_+!jdGiV`^45{o!Vja%mIQ?efcpR*tF8PgNv<nVAfD7mPwa9QN`*5)#&gW}_Wa
zX@)9g;n@vT$ODrudiaZ9$ikAoodn?Bvd<QyP!zIMLM6hU8*PrQcg^o${8X5;45#*`
z$wj4MAC86QuBwJN-i_yxE@tZ8=o}Duk<uoA<df9Nwnt~#o76#tFERXrS@jM7<;%3+
zl!Fq|(~dA!zSQDtFY4cnLlN2sFn!c3tfnpV+$8*3#a8VgQ8HMyJ65Vg^8`v$X0P#!
zdx9SQNfgEwCY=t}{8U6U4mDO)tOAI#zS^}Wta7(b8r2VcNPW(-FHdqbhmb;1o;9+2
z97d%iOgD*r9DDi7qiIB)$Kw}^8bJOtRj<9g7K!4>7=qqQu2cv2p8D9n4#i}!(V!bU
z-NdA^yPS-^R{#NZ%4vz#x$*e(HUqJlv8^%j&VHS6BdKId^)iE@rp!1MuH=L@iZLmQ
z&?*w6jnspa-av1b`ESI;)k;8q;;prhP^#DTVY1mX@Y&K0as;ng3RW7c^)n%JTA;lv
zR19nSa>An2G5oFlKrf0ZCfOvZO1;v?D?O1>dAn3uqt7mW4MPv1MMOoW2q+AI{y=Rl
zp^D~jlI`)swhInRcd~n3WQqC6=g4EIaq#=udx?qFy_U=B{eB?R8xb+oZ3y@<#~Gi2
zizWhv@f0a649vQO2AFOVAqX5Zl(~G#W|d@d-Uh5NKc#flR_TFakig)Y37Y^t2$sDK
z6_en7TjlrcseDNe9xqzYXINtOa$eAZK6st$O5(#^!NcGap6w4YPB&r1=m#9+vA8r(
zpNh|IjvG-jxc;K@!@KQRT3-o%tBzzaPyow?riK<MnC<%BOnnWXC4UqdOrr{rxJlJH
zZlKi=BnQN*JD0PbyRQljU}Y=TnDM6hp!iyUWW+Ezpau^tnDGZcePT-D)vU}zdCkKc
z-bFT>`6Gsmn5Ggh1Uruqo8Jn7=aZzAiSTq%nwe7NmmI_uVuq+8)?>Q`_j6Y7J_(a)
zjD^Qp1iS*1vkZzxE02_`=?OX3XhiOsXXw3*{kvHTRNtICo~sm>OtE+LOMJXnnYzG;
z_;Uc^pYXp4|L}yyH(HSmW<u|%afu2(p5?wctm3vj#tt=3?|Qo>zAYOz&wR2mx^y#H
zE;V&z(?46k-=Da!5oRzpz-;f|A{d7@vw{-T&w^@M76)>TDMkVhwIU}5>0T6qTkhDU
za|Gye>J3LJ3yRn+!m-lbsf0*LM4Dv+XrGu(s}qtE%iU<a@LP{%<__GU_4n(L`uG|Z
z(aT|lMa6U-NY)D4S`BB|@FuH;n;)2qh2PB6?un#`6)O->*b4hVCy1-#+7<{2y)Nq^
zhKxr(DgN9d0*cazT2&%NY{wA>Q0Ki_U$2>39EouDw<9E3$b1AQv?^WX<m3k9RRwSe
zh^m8p*g)8GJ6nt0$Y!flGEybWtx}|`qgtlkj#BSHAMG`&6llRZnC)WAS`9g@qA;?j
zOwu0BRku~i*O0812L!ujm7TAJ>yIXuUmULMorO0h9gZY~d}L@@N`)%1a1h>bc!;)K
zZ&5-4zHR6ug(f3&3_3L#aS|5919MG2x})EcDswk)$(g^)vIDsFwYlP*kl#dGjgA*D
zAn{3weeSV^Mj}AmIQt$1GG?*nTQ|glUk^ZpH2Sy?=9#p8je~FGEFCW9fP2AcDP6`3
zAMm=TV*qZh^Q17AM^6Pg=$nk!OPUD$dZR<?Zq}SJ%qJhocMDG^uOcXX^zeD+vgVs1
zdb4!6&tgC-+|{WX6DgBeY$&AYiujB)mM)bPl@!lBs|O!RjvgZvD)h3!t*wKUJInkL
z6$#r57h#5FwS9AKL>}MCcB*Hp`)NEsC2~rh#B*mW31B;tpy^=*{+O*YXEvzN`C4k&
znx(LNn6Ffb>9AH3hC39(L74mwIteq^9zEQfpP9-$PcKPOXJ$apOaV&QaB=djQ|j$5
zq=5dH=85==G{e;@q8NnnDKaP98|aly3if8xUlu4y7EcB+gd@nrc)v&J<45CRTh{V<
zjNAHu^S@11sSVRN7rCdapFJERiUf4E%D>Xp$-=({9ox1oDr^G7-^isutX*ZUAFo9b
ze*Kl(qYDXzo`n$X;du1I`J6xCkHRgnxVjlycGL|_`pn|hPAMTHp+c)wYz1+|J@?J(
z*VK1M1HP>1Nw1$Z5(+i#iU-5_1V~)2+O5DJr<n{Sz+>!EGx7<t7L&~+1QfqF8xx)J
z&%b@Kt=))6iM%~wN_W`@gwMu>YU0T~tW0TXKy$Ylv}=19Sse(DPi|Bzo^P7Bx2EW@
zNbOBj2}fNjHaB&i1IG7K^#$)9DfA6OEw<(Td0vX)y9%j*L_|w!m^uAb6i4k!o8?bt
z6D>DBVk|Wx8C`L35G^*F_Jyl6bB*e#LWOcPS1>$n&18ZE`VW1X5#~#*O0tcvA9|kf
zdV0otvf!{yS9$YB5~#H3IhgfD8-6c{d3urR_#?P%|2U*#?T!NDXPsNGTEU0uIve~*
zd@iVzP2{^~XVrWa*!WlKV(zh(fKW!O_`xY|43JL{kpMs107up53#nlLtv`#YiR%G6
zN3>T;6d*TfM1YbCf;fi&IWQ(RVmv4Srn_eHk4;-zT1*Ig!N`$5c(EyT6`7FlIX~`G
zDnJIIYKjuK4hD*LyqWLoWO;M4;<he$$aO?Ukus@<WOukPl&+m&mNLOjj<GnBC&^_C
z@yy`n<W%euqA=!!-dMTf9R%~}rFWcsAgyyg;~)@U0B|UU=jArMTcvx#@KfhsZ6~<u
zJAU+iEkeL1zC86wFuTocz%b^~^1T01zS<}JpBbEn3pX6Iksf|zFEu>GL_V*nlwv3s
zuxYLw3C=Z5Ih`s~Gi!i5jN|!0_wz4X*_WYpBR*5cW#{fchFo4a)NY%cR38QG5+gg8
zh|Q1lVp#9rP}uEKwd0MS;=Soc;#6?W{5Ddf^g`t*Q!rsN(fB?n9HF8h{sbcs34c?}
zfcH=>ki&<;V6fh?S#H0bgM(K=dfF}qWH9#iqRK7m)rRXA7QGb<cDw6}r7^Eq-K%*w
z+1O9Ne+%?}d4w4qPLTI%z^{h)@`F<PC0v8k<FGt=CEB)c2|Df{H2uF9x?2LRDpt@#
zTD4D2te-;K)e<B|uXRh)I0BX~(8W<C=B=|xv*QpTMDYQ%NAM6Cfi!;as#g~S+LK4v
z^Z}Z(S|1%(Eq<w$TXKRPJm~1##gWFT<z@%sd)9f^Gu}8V$gn~j{Y+5;Luc}G&zZum
zfd4PL!3JyY%1eipz1GieC$GjTM7tYjv>rcwxgoleF^<obC73NH<}}I#G*k%;I(|oa
za)rrNsk8ig-kuy*b+V@-0mVpj?jI=V0$5~ucF{!V$%MN-CiyAl7ke(=R-wqH=BTz<
zupV!ZOpM0SGjN&g`7q&K9ImMsTT-R5c;k_%2$h;-Gv@74eDZ!mcoEiL&bqnw!UNb-
zW(DdqQ_pbM+IHTi&nN@Amd;g6B%q@KGB7E7qt6oqC$6Q`@-1)(3ilq9roe-+vZKXZ
z=eKZr<gL)J`~3q~VX@<0Lm?BHM`oDxfCOm36Q4hHLw4;(s(a(2XC#!6mzNj$ZmdL$
zT_s;Z@LfQKJ1~1V-)-E(hzH_7IO!Dl$HENXCPoN72+5XZT(?`vLf7Ib`PEG^&YVSI
zZN){z(mMNFef%pcNww3Pmv%RO$u#X>U=zxId<^C;ZXYnhFG+a5%nM8VPVgCz>N<HE
zfi#G@SoafkiYh_4@8c&+d!*v8P5Wtq**mU2M$fX13`u`r$D)Z<7KDtJS76F4`$G_d
zJLW(<b@Oj<PNG{+3w6<Q>+p&$8V}#Rh+5~yh(rYoulWHVd2wS|C8}-&p7R9@AioPG
zx_&Y(b)J#9e#gcrP!TCv8UER>c75p?&SU-KNRGJ1OgChQWzc8&J7V8Aa`TFkz#b7_
z6H(YzFpFMp7{nGG(JXzsH6j181|tLo4j%q%dkFdgc!85B>07E@*Qyjt$h}iS_JhE|
z=x!bukpL<nkqrGyR?k<2Rxv%ut-i{ISUhLF{g=4D#Fn0TYq2JRBM0?+;Tbe4cvkh<
z+m;(N#VAsY8IPOg0ce>*v`PcOot9{u4PWI}j1_(qZhd%ec}6%{hWcG<Pg1)3eKiv*
zaqqZc_9z2I#!jxG^VxS<^6D`F!!Tt+JBW_#H5hF_^&cgTeYn$#ZmzA~<9=X6uv?Q-
zkq@RH3fi35U!xp-l2>IANO@1EsmRgFmSX%v@lXh^x_wzOl7b)(>y`(Zy-ZuJ$nSKn
zAzN*StI%DzV~j?9|7zeZqNvzR{o!icpnm4dZto0cTwnH5-0tVhbC=B@kLZo4lxJ$*
zL&=|2=8q@jI+Sfs9b9yk(Uq8}%xelIM5Fcu3}5Xq@b`)F1VToo2)$2Xuivi8sgeN#
z@W9?aiQ|-8)d9l;&LdYD8=p~@|MqfwiurZ)RutkERAxr1du$FrGvcMJ?p%Bu3a|)3
zXdSpq-W@uS8l#KBq|r%e>OTp@txismyeCs==mr?fwLlK|Jvcz{u=;}atp~+@571{V
zUXpeU&3zvpcP~U%BL)Fe?d$0`wP9qqq)LAXxsg6FVf;!~%*NunZnOOE8*syY?XV&t
z>I(7;Dpn%`I@-_A8-o~Wb#;${XhJxzX5{nArB^!zdD|SknJy7`s7J%s-i{CnEP1<=
ze#UDz3wZjc1Y@YB8Le<kHz7P~sH8tRFG3r;kKuCL{l86hjlcC8v6wrsXp0&uGG!>%
zX+#3%^Fo;u3+*jI_I0S3K}k7zE2?2V!*42byOTGYw7A$E-0L8ktbM)GLTV|(*TXC*
z-nSgP@_5Chw9|%pI%#-NpG~zo(*g5X&K7nv-p8?2WSb?v5std2Ru=0EJ)U89)OrYk
zLGtpf2S&(O7Hmm5=olC|pT@g+d3e4IoC9YEiv(uzDe!W@_Ee>KB~>lD1iCL1<oyHm
zt#kafgXK|O$EN0H`|U|ajh}8K72|rv!&!oO(YgWe|8=H>IT4D9=9=1Mbo0R~Am`-&
zA?z)K^4hj;-31B3-4fhgf)gBqySux)Yalqm-GjTk6C6Tt*WfNegWtj0`+Vn|s$2I~
z@e`|h=Nx_X)?07Sa=l1PX~R(6L{qql_Noq(^D)N7LfU=ipU1Ggh4yWZeoun6toIiu
z!sQtpZ<_XXD-s;BheDov#i&cH;|e&4t(HgnIc4H!EMma~j9Cba@T(Z{kKgA(O;x%L
zcQM<DRK@T|2Zu?%>%8F9@?9VqhF^*{N;p%w*My3|>}@+ko;0ht?{Gb#!TR+i(ZCR|
z^3L}o1{A`Y;NECT6wtO*j;_2f=@U4de(1<g@IJDd)RxkdD^AJPnW7N?NwUn;eOec7
zx!Co1S05b1W=3)HVsrhZc9IeVCr3!={pXqkYmS-0mQe^xtHb4z0&6tOV&#iOrBt?W
zv0_7M7{-ve5SE+i<p3gQ?aR3G6EnugJI3$wsP`1U!QI?VD57gW>J>pA=)}#eT0{76
zzQu)RTYB4R7gMVdT$C?O!?al-J}(bkLO{RDEBCL%=-&&@%Bzij_)n}c0=j^)DzMuV
z6P-aYE<#`*SI!yNTg;A14{c8PzxJ?T;-T>E9nuLfW3>i?{HcjR??aVL5aa(j3M}PV
zj>Ls2Y3Z3KaM7fpU>qb`FKIP8&U51NbVQBvP0Q$CTU;Z?J>vWpd_<oa&O*>rW3)FP
zK3R7Au3DjKzEDk^BAr0n#3-w`{w=}{iFA9zrjK&qX_<|U1nc+lcEEs2Yo20FW3#tg
zS5&zIj~k0O>lG;;k2?%VMI>K)&x7$gJQwbX-!n!s)KK@b{(EnAdgk8>^~f4Vd^0eE
z=LKSpIU+v(0YPF%?T96dfX7Awcv?B&iT(6#e}6J>+WB0r?u}w<A<Rm~J=3NfJ_S<#
zeS?`R^nTiK630IU6y;=&1)eFSbtkZJy0{NWaYOM*yl7_~dD;Aua?6IuPNvHrLt^>|
zJg@fscQ8l>lImSgGyzjg#9RoiHV}mxYhQ|Xe$lB&^Khkw1z@1^3X>fFUo0Wu!9&Px
z38eE~Pk;Kg7aEptzX%t0l2ECQ-!?}R!ayVOHek%It4bc-m<6p))Gw#lh}dgRliiCZ
z4lN$z=ZwuFT;!6A^2{QMw4Bh~qz`vZa(hrpI;V7gauo+pNBhR{VX*o|pT~=CwWSMC
z(KBKSpf7j(ojAodNUIdoYx>-eJ{zl8O~eRU6=oO7gT{_faA%#ci%=>@u{R-+YzM`r
zw-X0e?;_vWW~s&o7wLHFCc_d(_H<rvcWa;^qEx1Hs)hD&rmU!xLs^@GTWTmvb3_In
zoA0lCO6+|TRM+qOet0lVlMXq>2(D5+{OBEQa<vRDMZzaXHp}<vpjXcJelCzP1$NU-
zGY|+&%F4^fmTRW-bFQSL@zol_#DvNpk9|GScDNBs50N(h(_c8)*~NveY{>+ti3iBH
zmAX7tVcA3Kk@tw_nnh!|hN?&8#PEMln%3>5zMg|zMY~+_SQ1quYg-YiUC7Y}>Yoz-
zkw}5#Zs`-VXjFFeV}`QSqxbfnu_na<C<Bv;jX*CYhK!53Mk8>J)M?x%rK>}&b!YAb
z+@1Zk4(>Eo3nAje47M9qr&4gjduvDOt%Te7{p#-xCBpwRyw1VDcEm-fz_hX8ZV#EJ
zd=O1*c4~B6$-B_t#bG-&BI$>tO{d+A(vg2HHomrsg5`mXZFkliCbew-&>34qu<4e6
zE)02*ARIk_em?fa-+eFBKa@QAj$bw{5FVQWB!ENhOK+eit@wVc4kW|*?i$z&K!@l~
zM0#4%Bc7+0YiJ{|vqA*e&<N%7;t0YN^gps(Hiu-oGz|kpi)1rrW)z<TNYBZLA)10+
z1QdmveQpvM7BV`5iQLjVEo2S1qldZ^>rmTFYEIXTqVe?^|A8vB4W{(Ct=+z}l3LzH
zt8I=1v2!^NTLY?W*m4`pAhEKj4LSk=oGUQICcIrN+Bp;4mL>KZJ!x+qEw6P&TmDr?
zKcfGibA{Jmb3^#kZ!neAj~2(#*-<zLjocxgLNrnFQdUPHPl1IzQMOTkv&sE^`7u+T
zaesKT=S{igs_*9zQomS3aOcN75E%*&cmI~%i7S|sUca6XpG*^U!FKpve{yr^H2LSg
z2F-;&1@Nzcot3@uX-c_asbvpsE+;gQXd&WVe$VlxGiswMz7G9eBo4IP#bF8oxCYcK
ztTnp8BUuDG?JTJr&4}z(uGS-3nD3!V>{N>GTT}Q%61;qky<K3VRol$Y8@bi6E&Wdu
z+aX%^Qi4Rt6UskV^(3cXtI}@$sr~NeAJT);ouBr*f0;;A4GJxmUCrm(gI+gRafIg5
zRO(-7#y{AGb_gftdgWAv4NhAlDwxR$VV#X%N$_tHd+aJn?UX7{2hFj}nz0f`JfMs8
z9eQkU&~8qWPM>Ndm{r+)4fZz2M2*9a({1yFGLy^xVL~!N(bumz)0h{}5*+;=wh9aj
zfaMD`uFgUuJ^xG6*?HZ6jQ>nA{GQ^=P`U7L^3MWmZ**(lFf8auQ3SF8yDO#R;u~nM
zfT47bDt%;@CQY>3zQGW^?Z0P&>L>v{3`G0SCdRj;(X?*Jq%@}xkKXXPGW0mr7h?sq
zZueIfua7sN?m&jPIXXD}00D*PG%a4p-{n6rNf0-G@Ww-BLZ*Ie2o=cJE<%gE`g?09
zr2Ugr?;i`-dYfe|Hwzci`5jo>8!VMpRo-%BZv=idO65P7!VsG;cb*<`dlkZO2PrnJ
zg?WNLeiIvwH!J;tl6aE@EyPcg37@r%vle%xFsv#%1g><X^5a}K6e423mj+o4gpBdM
z$U1c$Benc9px_Gbu6u4Xzw20`Hn``mg7uKdhmLFV$Ml8uh%lVaB$Qf^DjgV4DTgBy
zUb4uR=m$Uv@0kn(OVpXNQ(-lZKRAIyJ^aa(IKCT~%`(4KPD;cBF1q)vK?7)sh*xAo
zP&h14%*g-q=!13L|6}c3LujbgaTjCmsq_>?gaqwPHSrUMX?t9jVJ$Y;Ldn7i5m2kl
zg|JFT+zwrl7-#Z2zSl}-R9NE8{MO6E?p48px|CLyBmpjR>&X0q{<-AJ%X755k@#VQ
z(FwdrfB3xFJsLZUC(rKJcQ=@QdW#DnvZDj^*1Ulk^zq*fXtk$1l|-KG`okry>0ok6
zq&7@R10FlwmM`hsGW!hl;Y^e+zE(t%s^x~V3h7|jo5UWNLrk0k2D+xi6w*Gzx(SYP
zVvbVNy!TmI97Z^(^x2HsilyTQE5S$)GvW<S53a}SEvw?DDbzYSX!mI?T)xx6*PNdE
zT?Q_BC#4Nx_H(~d>>Ev{MIWE``0^ZsQ!QPNa+H!QgGpv>tY9=i@0$0to?}_((WW+;
zpUTyu)?kQ3^;#gjM*iA$QsfqKg%t}m9PUrH$(8b=qSmevJVJzH(5IDVmFR<QgVI2n
zPOQ#!&f$7VNxrE2r@hV&p*SN+sG!K#_0uOSd>e|98jFF;(^UcOHb+b~2E9IBmb1yE
zz_%(3P%^Rq+BtS%NfQ6(T|uo5is_FCypyA6vzU7On4BcxIV36NTwoK{EfoqRp^iXk
z9iwFW56$D^LaG3`H37gS&Urs-TV0L{?}Xdm8M~?grSs1I0v<oR>K?nzYGZOc{qRE^
zN$<wy_FG0|InF7f50o_Fea-Jz`#>X6269s2bUH}3m+Gky`({g&prsXI@*zr}w?&R(
zztS>@k&_%Auq50#3jQ#2;9_Ky9)hF7_`+@98&phbp70Yt$a`f&TGy8I!%YbGRmi}A
zk(NH^sRE~n55Ef(+p`g_4!nt2YQ~zzMSCM9@U_1M<ZU&Ph%<=O(^KmE@85}z0nS-W
z00seJCJ5^lH>Y$ZiTmTn53XA9Bh07-1eFgFp`jB&Z}bC-o}*z&R|vA-+(=VWC3J%j
z<Zhq6u89eG&dIxUZa3Ri!t6XSoELt6JVb9yx(QJmIR&eg^Hq9-AUjTRX$J+S#c^lq
z$stAVxp>(2vp8CTFF6lfe<TorH5Cu5t0Z?sn4wAJl2Y1m+dVld(DizwpO>OSoW#<7
zc;O!senH5p9Om{7DoveuHU-A?KbbL40Xkbyo1yxbaa!N3{unhuCq+{V<JU}lH^kBt
z=n$r?PfmqtTrxX$9oJa(rw-CsTYH((V1@eMPCVfMY)0w=V-m%)2+h8|ul!J{QGzLF
zCx>u%Dn_mne!SE&tzM_EE4j8335QYpkf>{yrnQpm2ny0ty)gvC1b3Wf>1_F@w8pbs
zaN)Ee2IJl<7KW$G=+Y<lRj)k9)pw<ys?|-!*<FM|&F@W^{prElI?s1tVA|Q&sq*1B
zk`qYdHqK!__N79yT@H=7$|_4tb2<K&7WwOvA>U*W54ah^6w>%odC(?rV^v2a)~WIM
zeog<BDocrF@IOtgE0PiX`xRQ$aT)<#zV-Upgp5yeEr&fenW|x1aLtR4A}$4&-h4_D
zgthjUmngCFGO$^!V*NT;{`v7_xemIm$(9}CgH0PcQg$>By>>SWK4#G3bP>t@AEUhc
z;8d_l5rVd@G5HbyDgDN;;r{t`@w?-p!&Y6y<>5T%E0<xEqCWt~kn%@{EyRHr_detl
z-zte=?pPKGXOn4I<Ee!&^w0R%a%Jni%kf2*nhi%Osw^Xe@$+ZH=$&HiBe&nMh>w;U
z%G3pY<jbsPVkCmci<mKKay74UK8CQGDy|+Me{RJ}J$Bn5Jn?cqLc*UUip0tWwiKu6
znGd{+qm+@Vgrj^V#)AJ<bz@*si1gtN!n0*G$0-|aB7EX2X-r@BSuE-VFw`r5T|g}t
zIqfeWG)8e!0yDjozV5G{g(b$rajoahg%{;<$so%k8Y7<UlqbA9jwtPKk%}J@20?JK
zf@mP@rs$71atbU(l#+Yr!iL*M)|y>NR-qX#5#s!@+p<{_G;6FWZ3eyX0^R>^sE<0y
zY4d2r4Gu$y_-M!eW&NN=vV|%Z;n{{Y9H#L{yySmn0ibmf2%+_FHG_bq55W_E$?AAa
z92SI5&B}y)_0RY<=ojNbOF4!oLjtq@m6PX<SLhvxPpkp?XJq8$1p)&;3Z#K_dYyP6
zf1a&Uw<AqaxBiE50f)u)H6SG$DXGKU%nXphQAnmN`+|JwNdS}kc-O0`_<pPJgh8YB
zEpa`hZo=QkEqj;aonnCb%-s~?)hjaqTYDQR5T)o4LZlQ>abfNnj&rVX3RZf#84@h5
zbhrG*>+gggxz_fdbCu_`Kkz$cK3#rah(4k|wz$_mOG2v!jF=p5xhJ~wzzGn`yXs-e
zfCNUO42lCgDSuS~8yG)!TK&!TXe#<(G~s+~l#B~=HVy<Tv1GoS&7?X>DdQBbR-K+K
zNS~;w2d_Jp>S(5{!7>9au2O7L!JcQx{JO#<A2wwS$M6AZFl_HlD$c>*U2ZC!meP_1
zhC5J8=~J0v+uc?aPn@C!w^#F>HNb8Uh;50`u~I8ZnuOD!x{#%~V8BGZfhqIN3KPq@
zRau@VF@CBE5Hdi6{Y>xT{$!I-p{XNN5f8oI8Ma<j68{W0m7Bmv=v!*>HE|_biU$4W
z4iYYB?}5;2Ngd4ogXVdPGz(=TlFT3BVy~x(K^=I%{k7iQ=waZxC*b++VynXcEDdwy
zTNr)WLEGL%3yV;jWL5+TRp7yPjS=g5m(`qIC{kwqcwR@Fo6$I-7VE?L8fC9J@i!*w
z0}7uu`h58a%@VCH4*3#ClUb6-NUoQnMVL+}u?7TMFivTIi68JT(u~F~Y=790-$tkV
z?I9fzO%aWoXIb>$@rugzF4eKf5SQyV%=7olj}iu><JE+geWfx-!{|#to`OXp8~@$W
z-8Rvq4+;s|Xo9*#6^$sEi32NRM`LNsuwfJgIhhuJl(w)cVmS14@3CY>m6ge|CLz0p
zFRI73uyogS&;R@(_u-2e@aN3m3t}1BuJeX^^YM$gucif4B(nA=Kh*~DH*kZCX+4gG
zA|Swn3G5N<|9PJv{oe{qgzCNs?yKd=C!s%|5@Fik0tI7E%07mEp}$;U$Z(uNI#gZ~
zB<%}O{t(De>=-2h=I5iRzBDUhPB~)8F#G~bfg<7#twyt<6Tz&C6@2;8UZ^Ms1^27{
z*r?`S^o6nKyJ{vXxJe1Q7gBjtRMH?iLH4wJuUy^EV^hQgrm!thcZ{Ufu#XXen*uix
z?k%}m8yWU44yvo!qov~DwjPpaY>4VLVx*X9p-5s}Ls<?2@Bi_8zALhDh`0c7sQ!A3
zX}Z$hy&fQq{aG~2CXS+@D3<^sse=jBN+7Qrx~|O09Wv{fklVF<S2#FHkir<mFJpLI
zY){e@mTdXHJzM`)9JEz_8e;Kg_>_Q(%?mnXDlEpu?8LjzPTPF0!Foxpp`FEp7(S($
zpt7FvAeN5Y*dcojWHbY&^nCg0YY{Kj>*^F4R0q?p0M#0hny}>s>9w?F^=*BNb7mVv
zVmq&$V$ez$(EM8o`4R=u{Xs3XGaR$k05g%`DMb)q_2gA;wQ6Z%M5E}$L+3EtKTScj
z-+1%3(*QjxD(bKO3R&|+pPgp@>wA`U^XBB%W>#na@&_fA_%=kt)qG{eLYK&D9^(8o
ziE&sI^}3Z80!~0rfnt2m0?YiNo+&8>vu1@CR|^)g)p{WtXRTS2<&&aw_SuYIOlcP8
z1~TFAJ%>D%pXYq-x7VER@a;LLuNE|wo`z4KxHq=`O#lA9|9xo;NFde8J$)qwg;g#>
z6%_QdGp>oC{dq5YL&9cvBTeiON)Nt2&$Q#6xwLLzV!KIAMb``0Hy`dstKiJ(+tPnx
z!TK)Mr-FL@HSLvFPZ5cN_&;}#W6+<6(_M)BnUPP|2dznlc?v|-Er+vVWC(qkc@ooZ
zzkc2$H}~$^$+ye*KSNaQ^Y4O4rq?JxsF7GNMk9`JaXLsb4@$WNCKh5szuW_I>FtA`
zaT5{u&uPz^QbU{PzC09{=Nq3hxE$~}7<5?KDpJ%)&K-VyhDO%MrSDdf^6qTsvqzDf
z2#}q2PUf*;)cp%@IGmTNsz_>Vvsw@9_te6nG7C3rDevCDR<hj)SKnjLtYJ6Pe8$$%
zbV7NC&dp(`d?H$QQ<XzZKP4FfEHB-Fe0B~3h%I{371m+XGUFuwr&Q)MLFVr1#Zydu
zR>dKNw9tJWQgZ+?#Kcaxu924@<s*klLP$Bt1kM9#*5RwK{3<4Wfu$f_dFz=d;9{-C
z8&%izXg;S1N;5)MW?d*rbT94pH&;Er+dGISGj?(f+NvuW+Q~rtMCB~4?#v^Ep1oNT
zj^D|}gCF-tB9TP%7u6w_UV8{G(+q{j3L3ee8s!yjDzq+xY;JC<Y<5;49fdF=A)of%
zsx&N&k`R_xzagU%PqA$@tIxgjD{sy;)l)i$8c+{{0HQ8cMOQg=m`OSgm7HMVROU?=
zx9c$qCgx!(Yn{WEXmt~VmC{7(U8weL#JMKha%UcT_^(A+wTpyAf`i?JXjH$$7@c&-
zs~f?|Vcg%xS$q%rh{O?RsmC@F&c}BI+JFNG7VJk!z5#)mq}h0bRX~7s0_2Rfl7V6s
zajaDa?hPi};C1As*!;<ZxEY~HdlvPGv}ggTlW=3F6W!&S_JY7Dv|$Kd1{!9o2EGm$
zjU&JGke|ZsYEtC1ssejWie8Q$Ld3Cd6<Sf#!jP!sU>7A4-mJ#*SuTxY#oS*kD6Jv3
zNZ-Ky;hrQ73tF4Y1z~=Ol)7Wze9oi*i&#q7aP$6~U`;J%EU%dCYENuHztjhr*1C`e
z3q9W+5tVqksN>?*a<<1%=}jSn?;dnSa{fZ1>$GAwr`>#r(Gn_$v!9P_eN>j!+rID^
zXL19bZ*V!;(gYs!)yt%he2~TNHDb&|JkGmI22B!RN-5X#$?^VRj93g>jAWjt+vpyN
zY5rZ)^g{&%l~!ejVLavV=lfO@Dd0}d!H$L3>bjtzQ7b7u3eokA!rDIm9`iNVK1?%b
zF^OLH8+=j2=e8ZNw4TjzPl_DWF<-PS+_=!`0uO1YJs-j9Hw&W?f=tjycr<T0N3Yw6
z*E)S$7&7dJihd)P$>Wbmn`Gttwc%vu!}Xz6h~ez<Khz?Dbd}?K5f+}N{kI+r7i4VC
zDYeO6QrL`!)E>=KlI`ycC4Z%16xI-Vd;6eZeh6aOMmz`lWg6#!O(|+^{m|E-@MM7;
z5|JObW_%1|!j{ft$Y<n|NdfWk@eJc@)js>Fo0b$c_v1d>h>n*OK23^GsufDuuN#%*
z^YFeeF2t2tYF%P(dG;xZRCK1AWMKRj9n()x3)t6jSRn#SuXoY^Y_k;#6V;(4nGE$v
zdw34XO1!OQ054#oOSF#W6%Q>+t?gQS7`x39)hQo(L+9U3co7{{6yQ_X5j#+@=D}Kb
z4=v6&3x8wgEn7EVf~L!Gwf7Crw$eUFu<9)w?m5*4EQ2W7ZxBy4TfiA8JU5aQNv$;k
zL}yamOsQQZhVLXMaXoj?8|q>PnDG|BWoVgnekP_EJxT2ab+whLPD+<Z$pNMBpU*;A
z=<xvNQI69iZ!9G-u1l5jeWo&VA;@nq3g2bpW8$$o>DHwuKz09~u(u3@_V8#J0-Tqb
zaCN$IDRcx%xh!EmoPU}qR_}e7H(e{M3rh|02Y$4@BvVb)=jE=g^+deE3E13Onzd%<
za7)Oj!Hh~xiRtGa)vZFBGLBK*ob9j-w5ad|3VKk~OaU|`iBN(#<6++a)xv=gIaS}g
z4O||$mMZHB;lp$mXrT6)k*JKVwRnE`xht)vN+Yi2d?=ZfoknebOe)DJG^cxk;-cL9
z8RJX_D3bCW21*wn4=OJ`oo;v89-aOYZGwf$B@KEZ)rBYdQNouB4cBt|e32ovAY5h3
z%ibFPp4I7;m5%elvvVSGyuzgk-J{bE`2vQHv&VFhrqXk!M0r>j-W4?T)oRBx5=Fk8
zjK{}2Mp!uO;r4XDN7NGa=>6AQvFH%&S&3+HPVeS<2l8au>eh`s!m%gOX>>yBp1mZM
zCQ@!MTHaihxWC6M*A%V#?G+G`oE(*aiHmQO<i<dFk?;iJG3e;zG@Z_L-ytsi^Cfnk
z%qcFUscFn>0UgH<#Y2O+p-6NnoDy<e`r;f@V&l9%4n5XmM72Cn`?<wMID04*Mw{GD
ziG(>V58b2f;ez(>z3DtN;|wq+q2Vyq2^8u2$VUpf(H4L=Q2!ozD^b}s9t7E7(Q6Cz
ztz5D<ZHeAqY6~aPORf<~B~yRxp$Wvh*=LKcM6BrBpt72)kZKI?NymEQkka@2I}sj*
zoMG}<aeTH1AwT{dTl@4r0X?k7cr=dR=gYo2O&X!WEC~(f|B>x~n+OVERDSHpiUbOM
zZH9v*KRM*VYhq;q`h-S)D!3C$ejh$RWIc})exqGjV)8TTHH5!}^XE2L8oc<7DXd$O
zr0w;^9V!<+K7EBMaKH-6TY)B74$dHA+^K_uevJ?73a0IBkmx|8mgYl**MJG`_Ki^d
z<EL+`tF`oej2<eaFVqDg4q+)?OfVSok`gv#TmDs95PVdz(}TtMc|xhI@fxriudUZB
z^GlfC?Q})o5hg^y_@ZbiT@|Q1_D`)h;b2#V@`%R+7PqNd01VXZ(|hjRr@wb8-v1dS
zblE^nbZ#6<N$JfoTC|EQI2f=)kF8#=t(MJY=iJttEYUKb`k|pbL*dgGgbsuAk|o2A
zK|6i87dPG5JxuFEL0a)Arr_*0j$CS@NRH5FZl5E($1{OOMG{+dM%+MjKvM`yZtPFX
z(EM*8#GnYH!{_AWv|{eG3@N>N0mu?Wnb4FJ9h5kUb(x#DuGu|H`{*H%c%K~e`O*)Y
zC@RWdz*Obiwzmyy;RL}cE3tXXUr$~?U7vtL>Yzua^4^C!Fr!~}ArOzJZ|?$F4Xbbo
zdasob(MX)w<hRiY7fIF`L~<DIXDiUWm5<(AUSuzrIbjgKdn0liKDvR%o(M9x68RkT
zc4@DEYMGNo+SjyBam~*|%pn5#b`>NZXx8(Wh(4;9$yE;rdWdi2j??4cMdG~yYw}Lv
znkp2ah`Lqj^-pOmp^vJbd=UgS6AN35&kW91uftTnw=*3C1{mK{q%v7@qDqV+J5&e{
zEwwqYMV+o1DGX}49EFt%S29b(`{8}=V_-rZsE+!yY?(DST4METIjcozK(w0Q<c!6e
z=GrN83x_!CEV@L>pT!En&tS0$7tw91KR$3dt~tmgCd}0r_@bNt_u=UAuGwL+UEVYN
z-6#quCC!KQ_v|{HW~w8c!5?-<85GOF8j#<w8z=@KA&ub5!vI-de;aec*~~BX0o_)w
z&61{3OE)sc<#-6yTHB-xO8g#aFNZ1I6@#z(J*vLU^ta*ob0W?mWoxHS<-73xBDBnI
z(=B75YGmb6T|oA%>wsz<%_6(>YHa`&#=kt^i}|;2gC2K`72rx%z}7R>`R@<_t@hs`
zz$$o$Hg(>!Tfb+wTg$Mta~B~EVZCD2z|Sbvr@#b?unBZ<n7m+3n7TLHdkl-14@%VU
z+<y)(LS#ZZewTNx!f2U#=Y`gK{t+$xE6FgDM>TV`k$M(oGwxrn?+(6jh!=LL&CQ&2
zk0uafS-fxjUbNp|tvzhtbP9y)>b)rNfIzIb8zr9t>1uU2ifGfYM>0pE)^tsuegTv2
z&1Ro4r0g?>(B?*ONNF{j`NTh9)C>J`IGxGu=1g!4*gb{V)X!OkF<d~3Rh$7Zb3||g
zs34XVSM}{-#cPx*m*kRO>*RlgmkvcKfJLYH4Q9l0D#w8D!=)vSp)4i6Z<wnIKrZqD
z?b3mh;YTcHWBM!24qR~&n!HI>x*a$GjWbD;Tin)R{ciJF-EuzcZ6^l&H(i*sO-zjC
z`jD72HaF}jk*n;hl^h$dLSt+SW1E1wCL7wRUnlWE=%ZM-Z#HDS;L=Z9;NAfQ77*4(
zYe!9d1nEJoZ-|E8CnVID#eem-1i(7K1L-Br=WrtD4ZDpZ@<WcsqQED+H68>!&ItiX
zfZc`$<TG}#8~R?W6Z!nv2QYcnn`|>t?^Y&`2<Ook)0vFk0UGw3UJBMGyOrjgUKhaG
zZT6gPhowU@8qU!VLHGcPR1>EXZ(c11;ys)GuhJPDgX#VR_sn6HRx5~p0D=UC?+zQJ
z^A8s>`DJ=5Xw_!mAIpXl8IjkXt?R2Z=%J<}V)}iwd2Ap9Y}acF+R|J^0?T8%m(^MO
zTldl`4SWSB-OVOQj2)i3-0XU@(>W|pzvd{0#k`6w@RU)4h5;Tqdka}$F+gyFm#*mY
zBRkhXwM2U3)5W&v8FBAWeC$OJWcs%<Ww6POsn6Os7){W>+fe4ByU!Y~Q86MxcIFnQ
zZiHhh_v`mC`XIIQ#>>o%>hQA5VL)sBZ{Y-j$)@d53G`_Mcw0U2kKW@iKX?1<aC=PK
z4o?pzw|_<aTGaE<Q4pCA4HR(+yUr)1c4aK`g9mSr_%%unncWaJ=yetGH^Cb0&beEM
zbr`P_jT_&{w*OOdw)}>w&p?87nt1z@?M8bxiWtGhaiU|KTP0`(8-IG_%uz}Vc}9H;
z1$nk9F)I1uv3r=?FaKNG@JB`Q7~Is6tJ=#2ql9kCv=z260nt}q^#^~?T^l7iW~QPL
z9)}c#unzVsfXl1#pilwCCJlw;#USuj-=Ve^UB+OBzwH(O!g{x{{X29X(p!POC|M)R
z+x_?P&=b`$QdBof;xIarhWd}65cuJH^NZUMt+QpS8_Sa~GQP8wO1O1<k8e5Nj8j=Z
z&;-$GW1@wa$)$dx5I5$?mSS($;p;B%gfA~B<I024kY)g!9O&1CVfdoKoNI6)d+UFG
zZoi%X5ySEo%f~51tC1L*aZDV+D^#OP|Ep+r>diX@d1ZjHg)<tAQkgjjl3rM9b+Iai
zV88j+8;C^kT}jH4pfwno5b0*LAPGQp3aqB(`XdH_aSk&~*V7A-e!FXo2Cp>g{JwI~
z3HPOWq<vj39H2@=jG-mW5)tbm_OB#v&2r8k_N!7V6!TCn3HcIDVO1H&-e4ucN6d`J
z5#lD~$m3Buu}-+}+db^hl>+=F)>&&qq6BwYe89uTT07a1+c)#eKKK4078o-DVdZu6
zu2jbWk_a6F5gi@*j%)KATe1Xb+QOQ=W%*OXqvXbaYRop_^prHw$x0Dp17I}(<6DFv
z%~)O%)CfaIO7zj!@z3Ry*-{tSU|~uE2CX@d8Kbxwwi3>Yxol<=xc6P<DgTZg>c{`D
z{Rc1^W+Ay6f4o<!<H13Eb`20AUK%Ceov~eml+l%0w)+lNQXLk$$yt0^x!>j-OqNgQ
z7BC#=oOb+BmheC&jwrL%t^H^37tv698ZZ*<gSgLu*}5Wom7P=?piU*1n>bOBp5G%X
zU50y*gSyD$b;W3{)2Ln(6(=7S)4xLycbjP9RJatBkjSehd-dUhy4~9+u{FjNxCLvG
zG?Bs@ohPe8eIFON-oQ1uuat;By)&OJtguWG2(sit4MEm!GyJe=WK9awI$_ue0+_xV
z7K~WR6vSm09eK>g^$U+kN*18QUc^CH8um+Vo_F$=ioEt^?)$$Xju+}D+Z~{0ld@=2
zP;Pg>_z&g$si6C4kS}W`q#9&7JDIu`pPBhf>uvRaLKI;0_|oDxP@+!STzft4eOo+r
z@7ly8WBP9v+jj07tnBZL@81V}dXlHv+CKi~>pUvWYZ5fY(HGF-bSyM-0n`{bXk>{x
z`JnqJpgQuReL>Lr>vuEuMmC(}VXJF3^H=OD`Ck4PGLZ}F-2E`maI>gT2=wsqkxT+N
zGfqsV%#G*pa1zhM53<S_q(vlx7;k7K#|+ThtjAtFBkQbFvJSI&>bf@Tq~$tF)l}9G
zvr;pkPrRTt&O`qtN`H4juO=CSn{hM8Fm5<?iY=pr$bQY!-xKd$GH8aWeOtSNVw=%A
z2-_KQUq&2ez9su*!y4Bz8pC*TJ$9v5a&$fBYi-)s@Nz25AR6u;{=+^?B-CS`ICU#i
zj_vKA2!lkME0Ua;oQYv;nmxPyF=QOS?qwtMTW5qge%7kY{)}`GQIze2WwXSJ`A<hl
zuKSa+_6|FFu9NTw$~DwT+y}RbLR<SA*u+5r_*%nR>^Ks#6dsRS3ui1;d&wo{x{EWv
z7hC{p%}V_Mk44x03f{F$4pnSgb=87z%RnbdailCpGnfW&(&DjXcKUm%elXZ%0v0R^
z1xFl?gdu*C@8)=^q63NZf??-7rQ*(cXPpm7B;W1TC}cB2fjFAZ9!sU|s#~}1Nv+)o
zBKA(gEQHTzo_++051oGT@p8-aK3Jx@_a=@Dzs=FsxvkYjHE-y;up7ejiaYS;Wea_w
zcdGon6RlTvq_(XmkV^`;16v~g!G#BHP*&LWOi=VG3JN)QJMU!y4ZgqlY5(r`a;S{u
z2bU51!>t$RfO4=s^*)!p4tK$^GEBeBF0X5p4<OCY!H}gbqXZ_KOfepY;#WAPpsKGg
z-x&Xk_m(HqrBQ?KK>VGgbI~q&N<g_7fk&UX9Sw(rHl`m;E!^xc6^|z;w~Ds32#wWv
zIleGJ(488^tG#YzbaHlG?Qwo`an1CTJHaq+q1X!}lH%#;`2C?=<!t#>QZ>Z2*?V_=
zmCeGS4yWXx=g3ZIFUv>s>efVr2ug$5PUAuAGFw!^*MG-^tf)Z$k#MZrKrE^+&#z@s
zdBQ{_hP>yoAYy%BM2@fVac!+r%It9?Kq_`NhZJipJ3?>9j6qF=awv|E`MEY4%b;J3
zkN_pW&GAYrGnGhcbeRL(=U+6w__W;F^5A_;g{|#NYcflA$l5!d5-W246m#D`rz8@<
z^Cu%BX71RHJo&^&TS72tPvGazk@Lj+H;HzgnmJ>6+T-{oS#h?f_54{mGN}8uF;5~Q
z?oYF7)gGB<eq;*`YIYeeryc~bv5lqtNgfVsERtWec5TCDtUrr=>!Cipyl9gA-6Af6
z$3m<6R%1#{*s-d!{+}Qk%VbKCKH;y?cv11PpZXo0nQ6EFevTohCV#l$M;Oc^Dyikx
zN)`Q#>w);R|FvJeP_YT8i-lc%6qyWiesNFdi|e6ViXWppgjE-Z7h?24<}Ls4smZ3p
zy6#OktX$~==UcIZwIW7_uERsDN|A)?a4yCR<vu#OaPREdytAC(efr+*2UxkswCfzA
zBcczPL{ggXXmEypX#DxlJO1S@q*QnK`=gY93TP7&m0~a#p7zYiQ2xA9{{GT8Hgwyg
z84v$5l+dAyHA%w`J7@BH_D;4)Olv|c*mLbeRPB<lt>aro6wF*5Q|~mVMS%NB`=@6Y
z^0=zh;%{7qZYFMTUEIf-kd6eu&9nY%uj+z6ZBBAM-K<%1{HNOKZ-BdcBlIX!;8Rwq
zIt-H-XIXwPweH7vWBye@)O(jYXI=>x-uel%?9t?@Uq^BB6DeDHt}&Ei47pJU@Xd)T
z)4A<U=ZZwwhu_yOmWyu_c>MZE3#fU6DNIJAqs;&(t}U9U+3HLk#dSzE?Q0k_Q%0HX
zUAxSVhA6KXnu=+b#!{pMfJdn}0C>xtp3VnoZbi1!ZND<PvDLI4f-GKk-?d;l`rhL_
zoMzA2SFqa|-S9YFRG7Q1d<fQ9E9z4#2v1P~=9t-_JE}Vqw$jGufGD*U|G=3y^M$F5
zZP#qGvkQOxnn*jx1;}oB5TcwDYgt<mH)lD=THg0G#~E6;Z5Yp}s4n1;u=BprIrD@6
zbLfpEJPBJHK7&{Zkm;Clj^pJS&QlUGN0Q+%aOBLH8Xmi;W<*Be-Q(r^Z#6D_8N2NL
z{`6y;GFZ<`Veq2zNRo97yuRB5mtZoAEI5}h5npY;A*9ypp-ed+=>6QfpBuq*NLVi0
zI?ln>X1mt<%+)s5RdgedY5c3hEJ<r)h>#&I074Am)_L*o#aFk)p~9UrWZ94o<?WHW
zLft)Y%ey~CcFLAj*x7E&&!Ox1L0jV=vHjZ)>0;vuGF|GH_qD=?C7MsiKB2@$^G9^u
z4$Q8Um6g^w4jYnAO+Q0k!tmN~yY%IJMjDJ2lM`qU_a^OM^(GIPYmS$5V>6Cu#ZPDd
z?RVB0rkx14ta8tPhc{vN+u%L(h1>q*S#|LE=~*W$GQZE03%s8qYBEYR?wQX*L4}7&
zNoz@$%PQkS?X%hT@rpkj`2aSPxQR#sY72{|$bS3tDKyU9YI_$Cwn5J+eR@K4gXH%H
z0`h*5;OvoFxZd4krwgcfCi$?%mBft9<r>pjM{)t}peaM2gxu{JV+5Q}?>>v+M>@yv
zm!A$?CPoI(t;c|l>rJO-C*;xmbD$;1!6a_<T#c676~8qRl2Vsb*hIe?IR_>5x_1ZM
zdKr~?D~xVjnqBohX{Lc>=!~up(pBLQTeHwpRI}rv;<ST^_)O9IKi?E5lOAY@a}x-a
zS!d?4Mmg~B!;gyc(hW@thR!~xgVi(3Yn(dQU$;p&xfPQ9Yi(!5?|Dt>n4j$F`P|oe
z2_pK)3^fAoeW(<k#NmF9i3->7?N8Q)?1ZYDt~6S&ed|B#h`_tXIX%osJab3-@DT-M
zRfl~>;;r9cdsMj&(c-UU_d=BGE^j-tVA_^+(QSViu%bW2RSTt>L_IPuE-k4P9DXLb
z_S8hUV~|qAJ47}%w)Qx4P;o6`t#i~ZzjJLMS5S|Wd~yGKj{5$SWxW`Qh?-NiqL|>E
zpyY*^H_3>j8gL^Ugx0P!<V5~^$N2KLC-qC>*+6;yAIvv!wca9ez5vLF0HA4qgw3S|
zZ1Xkfe@JUkbrq|YGQMo@RWz;jjAe3bNo)CP*!bo(h>*f#a;(_D2}Z)V%qh5)p&F_k
zuh!0dbIFcL)b*%eO7|&R?kvsUzbmXT%`1_SQ77|A@#T4!_pfI*nzC@qv!fKXAWD&~
zr}hjtZl)sIEaEqu_Kz=6AR-RO*w}cp)T&a*)wL~{_~%Trm0fYMmX@+*|C<^Y9BEtR
zZAl&p*sdt^^i#)5TW;vd_u_(cV0?<W5o+6lW>YvLBN<U&|E33rg<q@5HmE%-1=Aza
zU0p=dN|(Uvm`U63>H1e0ZkF589Af%xa<8dgJ{PX!p&;r|GY#{t-He{56d8kA>`h$l
zM7g+d6+C16#OR7VBWl=+2v&Tt0ZDtc5{+Zx?>}?=xoc#QF{xGiqmBDMFGu!$lxb{C
zhrcRqnlkBdR`0O1*1Q;r&Sw4ar7g@S?W~t?_Mf_iuH%d@(u^jfXH7w^nw1Q64Q+K$
zme(hU748cp>BC_*hVfM`G1A5i6S!_@{XmpUZ}(QiX?K*V<DGV-RfFtQtnc&Po=oMB
zIkKUt4psG?h4xJ0$N2eQ$}Ucn+To}0_?bFQvO0d5I(zF%Ud3>=JUYk^B76|2q?pAs
z-39#*vxNM8xTwrZGgdOD4^iUdqZi!&cyz5-t>IqY9JBUq{GmCqxAeqK1lY&;^dsMF
z@lXV!fP*KfJ4^oXgcSWQVye(Ehhk@)*>I_MQ_M)!5(+}^{UV?$h;oR2!jXH~2&a%u
zvPXo&MT#BJ=k^<8La6dViyN<f`-bq@*l4`2W6segiHa%W(ZK&v{4G7T1r5FFy&eCB
z=EfoSKVGD4HuOS+JeW+<zIHUK^It+q@uSp@Mv?Hj|FYgIPsgV7#jm^FmdqEDkRQf+
zBw!@J_ama1H&=A5O%sdz1C8dmk`|Fc8T4>taJI%vbEwaYHfz<KL0EF=W*OFgViOCa
zBFDoycoiM(Nic<Mmf_Th!_vDWU#myL{3tF`@_ao=sNLwGs_XJKJiH{=qlI=;Zmvx)
z6TScNo=WvBlSz__3i9LD(h#S;Pkt#s>y!`WhAp0)4TdorIpw-jTSO&8Mf9iL_gh64
za(tx!!m)__&nZzXCu;)DyP-5JLZEgjod0GsXhXmTQu;sf`|P=HZmnsZ&dC}XqgG!+
zseFXe01dJEMRNP|3Y0__i|?bmAJXLS^nmhr7>!6+kG1exBc-@+<t|L77FU<Q+le~H
zGwL*zO*~&_dl7tnhdf{rFKfjV>@C=2YzEP}pp<Wm(^p^3O)E^7h>HDH%FB#c!zYaL
zskD@4Hdza43!b4RDqptqy^oU@@f>zyo-A*ZlJU3RWwOou(?!8M$I&ru+$O|)BB`nG
zI&PUyFj$d$Z5GoMLsqHYf5`bsNKjBEdz0_Fd^|K16{niD;*D4Ylk%C`Z`Zui>uny5
z@2?JGFibibNCwbyg1REw86+|2xeJ6u>XulI&~j(44U2|m<6Q=n>$y*ADdy|(37@UC
z@^TGro-aQY53kx-rFdRz#(s20@Lc;V-#zzwRTb*;dpgpKF}E}=0PZwV%T_Jhmi}^B
zzK3HLJfEvcQ7#@iD2+HACE-buZgyIdf9}h|mEC(_DFt@P=g)zf_75sy`0o)N58!!l
z82A94TP4v3pz#=lK358#u|IIA#ixmpc(XA$=6xm^8urG)#-ARr(ZP=x@=m`0>1#H5
z=X8tH0=!yRY6@SreMWR*Z<SE@h6y<FkieGJ9EyMI5h=R_Ew9tAv`$@2&Cy#0Q00mL
zTjc@horiqT7vL&4UQw3zD{Nz_Z+k+zwd^|m?UH;B9D)7%SkCXEZO2@1ocEHI{i$}Y
zfU$&UD*&G9>YP;iWJCWuQP}~*@T~&L$W)>fLrdQYA;RJPv@GN+0#g7oN3{FUOaFTp
zH+(Y@?F@VHB{2jV3>_doL;mDm$Ww@!b%drG;u<2GAoN6vI)2`dKk@j>T+~clni!fI
zb(RvWfWQ16Uj(ng?Myer>*mu!qf0umH|K4;lfy0Vi#bU^jH_Mwa!^A7$tfD+X~bu?
z56gU*K2vD1Xe!ZfF<m<~S63K5BQ%zUs_X3}6E`VrGu*CeYI^1OZMEwzhPvP(n61~U
zn9l}&C6ZFC=(w7a3RcgrY5t)UXBtorAo0ylLNd9}%@M{s2i|1&iRI(#A|#|fx0zlF
zZkL~wlamcEWr}iC3vla|gkyH(HwRCneM0~Kb?4T3T2s~KaOH8L4CmJ~-cZTgabD8B
zF*7DKqBl|expre!4p+O)_#A?W8+@i>i77XtVU`*6^0>z@I^Ta-)y|7)eDF3HgwlRg
z#5POK*Lej~uflze;<*q90aPQ-VT68<Oi}#L?n)29r$aP(UXGFZrL+baH8s;|?2{-4
zGpeCPxQNF$C2GkGk-hQESF*51GXQ#LR%-Kw>q|`u-GX(ZFrBwnfSw)XZD6QMX1Ok!
zDEfL-Uq+5qY86#>ja6Qrm1G9c$qm;K0unVRAW_rexkWlr_@5J>`$hAI>riAzw-t{M
zsOhr&x-eV`YwH^>7*QJ+Rj8%sM#>2W3c(5j?WABnwg_<k)dc@r+=;wl)$e5K-Ybw$
z55cWFg|krlSHJSE)os%U;|qz($hqKZk(g^PHum+8y7465-$Z%@xx2W1I86A`t>IZf
z@%wSj1~*r#qcRYJ#V&J^s2dHnKbbZu$L9e_G?Rz1thg^i3qDp!)k1g~O+vN4*PkoV
z_49Gmf;%acm{CcRHcJi3KzM|Rv@*isOcxC%WM{1^J~d`oN3;6aqSU)2s(QI^{T{r`
zv1urpkO^PwtUWMB0?GmC6USoQ8P!R%a>OSxmFTDsU9J!Cn)R17gp~kry|ZLhsn=l;
z-;CQak<!TJWC?S*(WY)zrE>mPQ+7mYrj||7O}szaJwfnk6Mx>6e~MUj9UCzrE5lj`
zew(Sz7cNZlpSH2AL8}Bh-^k+YF<qZDEbLTb$UC<+KXBM)U^dAtkrj9SlPoSNOB`Jk
zK<BZFNocy4n*Re;LH}&6BmLX@V_4`9V<c0NT>Dg!VuX5dG8XXs=|czNha>u*#IhDI
znjy5x|HvCTY58dw1}SB=p4XP&fWR5IHl-3fq`5;AsbB<=TIQOgSoGkXS9dg*b5vD#
z^yp<-MD$b1@fcvYQKCQ#2sfy+l_5do4Kw;QkG{}3d`(C;bXJ9}?fD7m)0O;5fa}Rh
z*xoK*SooCUbfe$>L#C*u{Pa5ma7g^TrqH<S5bzblQow@$FMT?Y8zKzp;PgRa@4md9
zpKJO4FgAcrFE*bL5FDkzU#ktIHpF>7BWS5#&xrSg-bhilzRD$2*}PZN1T(B?0tI~o
zzgMy}_7fb53Vt`0b@h<PGpflRB08u@N;31^Im4pG$Kkxyz>OF=A4u|6rY2XB7$dOO
z`@?UoaZerYW)lJ<F~#Nj!=NZTq|<1Swm_BjFgI7B%y4sNw&W!*H^J@>H8ZS;nJ&+(
z*YBWaviZ9lw=tz+%<Mk}lm2b{jFD*{Lez9U3Sx!IJvtb((qU^wqX{B0X;o8@YCw;b
z;dxk6=qiV3H1O@m#m-OO6WbO&u+3Dh<fCB?m<csr8+BCPMwMcd`P;2h{12ASJO`WW
zmB8!u&}pM0$iTktigY+Klf1)T<>irRZ`{yN98Gue)VJbZPdbFgL4xCbx0Af;Zf()}
zbhDf;taqUtL%vs&F>WfNNW=I1cgu7)*i)i{8k9DY1E{LzO}OM;0k~S>iF+^##Zjoy
zmMzpMC<-VqkV@Vx&Wp0#tvHx=Tlc{R4YA|&i0Swk@2z(G{bAWJOJu%8=jyoAk9hw*
z9`gQwj)!#)-ND11pVE|cx#d5^kOo6z^Cn81%*4~2%wkzL+gwljZp*s*o61ykmt<OR
zWF@~jUDqFF>h#`#kAGgvj7<_tM5FSqCh5Ot28_DTIQMRf5fQ&X1Hgi(aSoFDtIC3M
zHRl2;51x*$f1eI@4g}<}?#KOp7q9A;Z2@Ci3-YOAh!0_Zjm8^ADJ8nDhdv|YP}c(r
z&zFbYQPCIQH;Cz>!lk99=RJjx#|qT%q?~RI4|?6cn?EGIt4U%_2qjcFl&b5ON+zb^
zde<PSP*YWpu>8~NT*=_mh%gF;L5;V(@$;Wah2Y|HEzeqHo_7NxRH8$kz|G|_EyJPl
zj>rn7Mgg$niBa9jRtwr@yiEh>P+7!V8S6+C>?>P#aaigGuSqUEfg;IsYS)k_j1e~^
z<QlGR)&BrjZ8bn$T=nVw<X9B4#j@=^o-q>llG&zM+m_TrS}mIO!``prXO)7hI_d$(
zsANuKjMmjF@y}%ZW*z*5C*U)7ru5P|+-0oC9apQwN8KE1*rLmVt0nM07i_ZNefbmZ
zC!h!%BtQp@;@pIpHpSNSX4)OkKAR%=PtOub<;y_1nLDKfZcgg$&z_g*oU5%ay}Q5C
z8}<s0$3fF|XlN>+sfp8hw~I@Pmi+S_v1-Y`=SEWA|M$6Jy;2P^&VR@F6Fo{!TBzZE
ztLJ@4Z^b`lExojr*-^HutsGTIZF?BTsdlNe=EN8#sVw<H|9K4RVFP=;@S!wve2^Sm
z$xs|#1*v9wmo_4}TFuQ@Eh}Ds^&=1Gn|U#`j>9tEpugsJ66pTH8RK7-@Hrc;wDS8t
zA*9zwstOfRVXjJs*HcrKb+>WD)imToP9A!k&P&y7Pd+Gb)1s>3qp0JX>qS35JsA85
z*o$r2!ZnEqBIUy$wpc87Au||Wb1bK(;ZVd3x3h~#qZr#y^Y_)TAVx(T8u1j8iD|H!
zXK+4S(<w+Rci?{7ismQ4)^UzSjTBS#VDqKNQ1H(`W2Oa<LRj<VD9d<?OK&8{T4)G?
z=g`b)i6A!OaiW^;k3d*-9+&lr@tjUhSvfg7ciTPvrwX%N&s+BKT;mdd!)=@~>j+P=
z^W4E%tm7a>$0ZHd_(qpQjk&w&$>+Yy^bC-Sa<>ttBbX$;vF3HwZ_~7DYQauojpnbk
zwOK-R1P*{;Fb~lgh$gg4+hvIfpyO6}2@C_pWl?HTsg4=A5_v9$NKJP`%jbPMCl_7h
z|F_iZAsO`qI`W=afZW|^w#s0E4aD|`8s`mh;jj3!oIjZDjuv(O<LtsW{X60yP=-TH
z_HN%u=q==lA>SfdkpH&<K_MbKfED>>(y-vcUw=4l$qiRq9%sl64*qNuP%J3l_YO!H
zp$6DafiP%wlkP7NF`;7qR2ati`FNwq0?=j~_vTs()VhlqA#ku-1;Q$0B#>oDVKwiU
z88ADPHaG11-Yf76r>JP?L}o{novYZwUeK0Kvh%&mTPh@K{fO<?wqshZ^H4^-7FWzy
zQ&YqF90>agsX()A$|)`HMo|zBvxJ)rl^PLtZHjd_5`$$wt>Q$<{rL$NnQ+GwFF7-?
zCUc1u*6b{&?Ta%!n_yDt=k1@=btJhYsNT&HSX(7TQkBWvr_H_A<{6G7)JY^7Pe4#C
zJeb?Y^N{s9;C9&T3wChcT8iwM{=E<ay`0^FOP*aqrAr{1#9T-+-}3mjY-pt;#joB|
z=HPC@u#ddxoikJx3|R0R0bwH0hF|Z??A%QLo^PnPIGVuwr-Dx|%=daqim?TEin0+b
zzNd)(h!7T>18(gV-#aF-b<q?%><!7=moaoy*p^$@c0|km-*%iEN+T=Ih#z3f?O(5A
zoToT@(vTY>-!**(uSTR84OgQ(F-=5D%uoC{x9AWEKQXs|X-=hw(y;wa6~Br*7dIl|
zs}7!r*DoSvSalhN{S3cqDDcUDatnwC9RLI|_^kpTLq>@<NQRa=yxh7|OiWEl`1n35
zsFTqr%#x50>tX*Z7|&nUY*jV4qcPfyiP@US#8YW(_EIm3M}-Mdl8=O|9FJHYR*N-M
z6jyw1@AW5LCexQz#gl|{BQ5QOldx&sD$4d{o|+{mr!buO?k}!F-3;eiC1|mMv@?Bh
z-A!j?Xc)74`QBRr##={z&Jf9UZqu4}eyh8lQ~GeWGpPH=BE<~BXPFpsg(_X|KO#!f
zakf%#B~QaafoyTw6UtRd#SB|%0DY#7W;GN%R(&Yv%)*|M9IpusRHh4BqExO^Y9hFN
zL!*)Zl#GSpF`ev>;=4CTz~`C?Psg&kv0MJKTF3C09!>|ot|0tgKfGoJAyVxhM%|Ej
z(d;j$^D8zM6`j`GV2CoHS8pCmOybOu3_KtPATEYJ&7Ee5>$G`GnpCafeP2X)rB0h6
zxMDK!3g`aMW%RdWhaxpeGw_A1&k%&YTiwIW)EN|>*E5^HyPc60Oe)%5c%^#d0g^dp
zRNKI(c!9sDG5pUD_hnV*{V#kX2D({l@Zyp({lLOuuwAS$WIjDWtCusE8bJ3Hwb0=J
zW;~w=uSu(+{(E)%oBbv9+YYY`K?RlvBmB)n>Nu1J)Vjn7KGrLJ+g^sqY5(K=yE#!Z
ze|uD85i;)vD$r@JYoHd>uO)@3c#um{qn=E~!cZL^spNh%sp3$?E_FS07Yf0+id>7n
z@ag(q=-q`DHbcx#j9>FdqBP{H^s|f$c`0q;S?imCsyCW3RG;0+PqyM&CQEK7-F=N9
zT-A!%8O-#n6h&>be|MXNxSFG!EVPK8MDC`~<xmW99Tw+RJ0B=c_lGSA2@{@%Gtj4K
zjP$Ts&FP>2{&A|kwUewj(6X0x)cEV5C_AcY&GTpdFK`nIFpB1F{Lu-_VWHi9()Fpu
zZ-Z%7%O}QcKw;mXtI+zoz6*Ui)y`&jba=PxRV8#cUY0I_tJ7euVU|ya=U3P|=Iv0>
za8*@?+SqW^3FT^iVg7swcG|TFMDDv$TXVc^Z^5k%{nOoc{2y>qw`9b_xR2&)c+d>t
zu$Ur%AmCF+9z9jp!x>n|)n=Mlsv)$=jP`dai9zt#n=?vsY%F5N9kM6|bw}U#?~jhT
zUb2>`hb|KE9%BE24I~9^c8|k6rx_ZI9^?h@B%{^5;q(9^=%L|nP8a;SWb$AB_K|_{
zTds^L780Q=**hd04ED*XlT!>Rjk(Z8Op`FR7Jqtvy8pEDWGK>*Sui!mojDhLyH0|t
zA344n0it>g_)Az2+=kKmg>(q?mYwN{;6SOv@b9baL2Iw};V-qar2B;SLuolsU3-ci
z)r;LXcqwfp*mt1eySJqIUn(&=Lp%q`-?>qVXk~@1?`n{))r*c5m}qniuoP>Ne{ck;
z{3WT{{IXy6Bi;-eiA^@U-W@?ET=f58?Ja<^-oCcs1A-EQq;yD#l!$b9H%OPXv~;I*
zx6*I}(hbrf-3Zc1OE*Z@w{P$~&pY3L=6&AzzW2;Mb7s(UxPQOB_gdGwu4}D5T*Mp?
zsgxajA)2EVhO+rV9V{|FxHyi&EK(i4JfVt_77#uRRxLM<N;a{7m@o~4EjxnH)vC?n
z3G3;IIPKru3U=(w;CxSbtr(7wTMx!ybhHSUUM`0+B#p6njsgp!`0vuHs;aJWnTY+C
zJI{d>j!Fsb6)II-4;JB~HB)M>8$3rI+rkiW6Ww>%xh4K-!=89!=6YAicJi0K1jIS?
zVZ9$dHAlWi?YnM5H!Rj|nHSeqQ&t`~oL#NI1H0|%i}#rA)^gm~hQY5kQk~wJN%7&-
z-5TDONKznG{6gIJ`;IBc?PFe2*M%JsRQwYWV(&<V`@f6X(L(%Wa-ZW9AP@-bD)wq#
zQJ%1%zAuL9_zNB$B0x6U1-7GeAWsze`O=|eh#JcYtB-11ePHusPCEe6|2{7tki(c@
z(KVo#rzjy|GbRiK`qHhJ97Nv-_ttfQxQ;j!HBkqJ@k&y@h_u*@Pnf0d1!N3aIS_hP
z$F}gNv{*4X#wn|ZB$KaS{rJO9IQ#Xn8*A`~^^7+ZoSaAzeowPa&O|NrUmnG&6gKkq
z1--*A9L1cN7$f6+iH|KAr<|ckV)eSDO@+lOJn2&nrN-cPEoweHT_zIc1%WbisiaWU
zY7hWY8e)c3+q=7Hp4%j5zH}19XX$s>-S$lw9$SNK3l@5x86-qLP;UO?&<WJdOI?R?
zWh?C}^T{DJ51GWb@cA^9K3cPYg75S=n+pU<V<u?Ic#WTIt`;LDI75G?%G7u+>{3aV
z1O9k@I56ADQtLNo40GgX9oKx$eKUgOBtkdZnY_Z1uC7FrjF;A>mI|>zB`t=F{r;*#
z41jFm-_x7JcY#%&flmy!4n)D>zFi6=k$?AY%y7^0-6b@Av*w#$cR;cAb=+7wsMf4y
zzr6WAU{R-I<=!KMrb>wc=)%!=ipfdw1lEn{&v^bsC328$JEU8KEr9jE+X575`Ovbt
zrZO$0A|(stjz>cz`LPD~F&V7zL4voEH)Z4yiJV7346f7!KgbJQy-@ZKd^CW>Vv2rI
z4Fj(}zl8mwx5n*E?{NO@m<GBiwSq|CIj+_(CcFkV_xuX<1Uz(e2!u%7e3GPh+T*}Z
zf#bF&>z|-dA<b8rpGPg?$3*l<2qj-R@V6?fYFcLV{;@iJ;wm*((vjz?#hQV9YJCmI
z0vsTeNtd}#9YlpoUUlT!^EVJ@p%t!SnNg0xsbefjknz;f#_a9aZ<jE^;l;<tpC9!z
zpuAAAvMOn?LSc0RrBn%+5{#qbVPs^K+1N-3{)KWoM-=o$TG(h%%EpE<;3=N(U@{vU
z8;eU?N=g{hFgIo(p)JDl%1U^ZW$1JIHehy2sxrT&c<};;fYstn2hX6TV;augCDFG9
zHx|e*gchv}WL1HLM*R-QjWC@%XLv@N!;*xxGfry|;G}<m^$U6jvNGz=7vPTVaG=eO
zkL@9Ul8vH_&K6Gjkh3wG&U?9$)ny)ytvlMK<i%M+Hc^F<xYJGI#Vm6{lTMZHw#Olz
z!alNP>pLS$6*M~S5IcD?Iqh)EQ>_%WO3iT!$a(}Zuqys5B{oA~g`y?Bed(^aXxZx1
zy>4Buh*)@D4UPT-NxVOv8Hg}0d`Av-zhk7(%=X2w3@=<iZ-SH$U|EI_e>P$TMe%5}
z$5q$|VvIvkxF<0)Qo;y|l9G~9F)^cMx9>^hqgHQFe<vs}=b&&*=^D^0D!+Tj9HBgt
z7mzca389b+F4~G)%%`7-=Q_A)erx}Z8ik9hducX>Op86E5WVTcO@y|yrEXkEOpc$L
z=PMgYcL#|D$GnBBM}0^&Rk)ctB1e+FJK?B2fi-3D4P;=AV`2^f>u^N-9IPeYdF3!K
z6XaYx1XeeJJc7MVJn+MFN=ZMXm9B6*g4MpC7w0s-vX&0m-{v^*ur*m{k|b-9Dj;z|
z75&-_WI0ODG`CNTR)8}>0*fkm%}|8`Hchy<LQ%NU&=Ey4WH?hOu--lk(@^{4cX&}@
zj?byd%C0mSW@}%U@^fz~w!R3HFwxF6ICX!ONd}%rW6Nw$Ft4Wed^uDmS=<jgA|Po-
zs5b*scyp(|`hS;ZNqxjA!I@g;qJ_|T{d#)lF1jP}mj_QnM?+5tDi<sV_$#ELjRWN8
zD1JXQ1Sf$6;RF{jr~^7cK`5`xe6r*@m)$VW*<u*e&>KIEZX%}?z0U}&_hhiW#8%FG
zY@~`tat6~5vv)M#Rcn45*h%=K5B7z0e~9;eLtan(X@;T=9owHpGALeCJM!4AT4eu^
zaGc8I`|qU<HmiEtPn~A%Y!CFUh|J;^he<>>%RhcFBYf!~(K$aTrJy{|%=0A-4+keS
z8<jkI{97g8*TwQ-Fv+P`5VQq+TJ8Vr*7#Ce3>sFYekX7K%-z;f|JKhy8&gmQoRU^o
z*C(Z3o!U-wtKY)4vk+XHZ%#GAbd(7z)z7<>G}CM5kz(3L{vq%t#X+QnS3h<6N8KJ5
z?l>R9#CbwSwI!#xkwxZpF~w57tyC9Gg_kRTbTY`aNq`G$)@AK?UHK8Vkwo?NA%~uP
z&Ij*R*8=KyXKS)RAV(QaCJ7_qBTo0cG(9$3xd5Z=!iJx`4lhuIO9v;VF0oFcDHpcj
zr7S+r;n+eFi+P5@DTpR3zwCxBnKk-_f``r~G_9+duT_qFsnYq$&;o=;py_rF-{HRu
zPXAf;M)79@PQ1S%^@P<w(<!Tx?JqKRmLnZg#A4M&hgTmAKH#|jsrN8~Um>ZKpW5--
zAQOZ|T$s+Ole#B{pbE4Ae;9p7W+E|$;1o@sWPfmo32^cgjY7pV>@^E{g+iKgsuJ4g
zdo-*Nb@kIcW^4t<5z%8;iS(}>m>!DDAHQN4QCmJ=yQzPYieWIqM~<kwOW*cQ65FRA
zg4TXSh|dz&qa9cy(YpWE+haB%tE9d$`lMCQ!X1f|$d#M0JTtZ)OovmC@!WT6xk_EF
z@);CZ@Vwd;ooU}Pn?xTeLa6A-4WgoG(l9kOJ$_-qvp-!)MFF3ZjaQ{e>~(E3@P+Xa
z2IG&}QP3H0U=b|tj6Cu0EP#xa{+Q#_${w#>YR%U~ma~PY-!Tox6L!Qr>Z-?L$fj+p
zcD;4Z8ezo*V~QOv>uuN(D-3r5aTChW{H7Dy0OAhrIu)0aVzMMRm7?^>SFZz1Wcc>a
zcn=T~q8JAx!!Z5;wrE`OQdSQBow0%2ik$EU87mVlfOg*Qz1F97!f={Ua$emjONZA)
z;@#-SSDXTIK->72yqt?5E!5nfPeX0LPk?9`aNqLJ><d?$jkt<gPb3=VbG418<!W@+
z(xvFQ^n{=Y3E{1eWiqQ;+V?JhISs4r{($=74bBFJb^W!_Hae!aMO6173PBn6C~%Fe
zE2di>(3Sp2dmpW!85V5~u1z6|lI^;r=~UzTa=SEPqXE;9gGf4!8xL3zlaEbXi3hFR
z>yx~NKOH%YcqC?2Ub*r*UMt7#weN+ezvzngKIQQWq?%X-cP$q*W>P3dS_DeU<c;D!
z9}~eFjpTHoL$AL6-g4neWR}8b{|-`E@4mCpg#Y&RI|Kt~LX28qqFh|^L?#>ZshNil
zNkkx_$QVp+Vc#yQ3}e<(QKcHmC3aqf5wibLqRpiw@L5?PA&l0v^>xF}TcM5j4#Y!_
zfG4R1CM!ns2|95@Qm$2S$p`C1x#x{5*Bt%~Cn2hqZ7<~)9yivvOiTn@9uB0weMHaZ
zyhlk?E`{}t)|;ej9_wmtzfG5|;Ry!lXglDzf#(;Tx*Yc*90<H?3H{W$DZUrS>ox3b
zt1QRBoyiQ*?c*?3F${x(;2f8`+Z%B?IVV#)l@R_zIj_su7dnzMGAxQW5=b3uo5D@#
z@*Le}*Bjw{5>(FP%6rzgecNdWin-E>u<D<+kjZ!(fLrqbbpEor$(eC8y$9$>6szTH
zb>@}y*@dXdWU=($YS~IGYIPGADtSOvQPMa-bM?g9y@al<H3CSJX=&LEaU|#_<)HF`
ze)#h+5O7{3#FD_P%VM}wJOF797%sN*Vx$ar-d<5uHj63m;~}nRw(VnP<zzh=x)=(^
zTVweubC=nG&`i^dOWt#<DH5D+rkA8!<u{&;KCk11C)rm)w`jyFAqr~2%<<E1k!a{h
z$54gK&MU9LT={4^{BCFZ0MD#2NmL~U&&UBUAk4ApQxa@3BeI0S=g*%fYYTc0fk@?z
zDa)QIkvffut`>yQQ^b9>QyK81ZD77phir2YbYp-_lX7UJY}asn5%ogoBe0U;Q$H5*
zBNc%tBnBr6mwh~&bK+{ybd8JiDs4JVIwUVOFcyI$BD46yY#PHzWqoTaT;e~>d-ar|
z@c>rG>&5{K2PYZDe60V<rz}d`7egRVwN%Gy*3F!*e>yzXNk%|M&quXn3o}-pfGEqo
z$ALyQcsk1y_aqcYzfbZH%3M`YNU%UMvPs6Ajfr1}1HP3n9f#a1_pe5mN`gLb;o7)u
zm6CBFv5MEXi-bNGAp2cMi-?FAWiDU)1sm@USa;trH5B1|9|Z;0e8*b2cR_I0LYnhR
zX<i;eObG`Y+hqLqa|d;G^{B}o6>rTImge1$WyB@hKT<yghyN5lvw^{xcGT(1HWZCf
z0W_vQOAj=$ix0&(n$RQ;KHgr4e#vP45}$nOs1SK$?tgfm!Vf~4upcFxE~Un&RDGc5
zMSB8K#-K;0haaSHZgOpP1)sSVIzdaz@FmhZ87Fp5;)sjwQ%IGlNIX)UcVFdZ!!Gvr
z$Hf#!8}V1S=<$?wG-SaD(x_N<IwDc=6W>(D5qMILkpjigRfFWosi?ZqY!UiTcV~qZ
zk1jZg(j&wGyYC2Y8Uny3>+9FYU|xUE&=Bhy`DU~Ih>QKL_B1UmEs8>t-7nBihfhcm
z64kiY8!3E__<K8jppx5(?c4RHbVi?ptGKGUsTS4M7msnG9%4KF6|>05{$sl`gDw(z
zCAWk6%2jE^t(ZWP@RG?P)I@V;aH89;`Wad}YHe1=%o|<eXf>}!^A7)#+<6Kz{X!Bf
zH2Sh!B4qL`I1X;)8MZ9nYHo!ysC}he<_?WGmV?N{?1Ki${Vr^u>RyfBCt~;ipr6T7
z0sS1^+^%&mPNRcFd~3xaqCO;cMLhNC9`$;|ag+Z5q;r-5dp4zgjUXthNB(-uT4`aI
zD0*V@m@!s6t;&Ho+5#wg^xLD)EmK5oE2m(M#i&L+f4j$TsEN2}%9nX43z-DR#E)OG
z)6Ho5qg?f;mKWpi=s9FeTwD!pZs>eNrMzM-RO7?g73;iFI3Z*1-($t!oYoc+-9cBe
z;FyjgCtY_K2_PvqIjznsEh^*Ti<Y4bOYu&dyltnN6rPR<pK_hOu>J1B{P{O|r08eU
zO7tv<p}!=em_S0=)wb?kNW)%ze=e@Szi?q}kLO+pLd%n9#1^#pChQ0mhJ%s3mwD(Y
zKjtoXr+!O8SwjKE<^ZJ!2&3^I5avJMT*KVVk*1{3Az61gNjTN@L(u?UAH^b;u7neZ
z<E`_?>+E`kC~U>q@4fdC&k!8}M_>YMw!^E1yZNjSc#d%DczAef<@)||Ry&#;N}vc8
z+~iM|<GX;fZoYl&$!9|rv5_8rbfZboAvsD$*}!n5c)2`i37__Xx=5~Lm|nz_g_MW5
zJ2zf`f1(r&Z<>3fZ!b+}7K_@BDR&JFsP2rYeAfrwsf8%9i!g}iKK%3G-i!VGmPg~`
z-+o4j=G*&wq+KIKbYPX5BpgrAzH&Y#`L<4aRGb~%o!LLu(vFU^f5Pp)NvZ{}-nIz3
zRoO-nRh5-p!i6DA^g4}Gw!+*JC)CvMP#BB+N7{j>M=Dxe69c}es>)PD3%TE7G#k`-
zkCh|{@T^4cOSSFs|97btWDkOa$R(<s2Q+U8gHr8oFF`4LbwObx^?pN=Dk21J6tG|c
zy{i4SUHCmFpnwIWcs(>R0Wg}V81sPwoW?GY4mGluZICLEkdQvMqp&T4n$g}3^9bl}
zf*=dZbRXsT_|owVh7+(ZhxC`WCJbWGBRSjdDQ!&hASvg-qol5KJ9gxfHe9K3Hxy%C
z^^Fg@DTDsLiP6`Ls3zY+MGsFI<j*wwN<N5@&787hJmY4^L5`Ep(77RC)TdbEWx~nN
z&tIy22fRS|;5+9W%;xmCY?bEGR#IW0Grqer-xHkJSYSIp{+&@@g-dYf&boEFN>Iw8
z;vt;R>`$HbGNXOf%b%Qe$gIY@8rei3f&UWV9UEW~G`P7uA!f8=Ck!YvJKdS?85pQq
zT>+$ZH;C6(raPd5Lxj6%w4XNm{5>}A`TqhqC|<st(Z{C=ckq1$tc0llL4t@=0hJ+p
z|IH-SsUQnT5Tx9>Wi5%ny2M+Mx3TfAdX(>XuQ<rp0uumj=(`Hpk7i4VCJCVDK(+dF
zFmxul40xha;xW+mLB*q1VHjLl(7OWq7Hu|jKC|W@PXc`Y$I#Bs*5*vxY57wpi6A7K
z`|6tePtR*1ZDonrA+nI3Elv!A0zl^i@}zJqU`b<iS^uK|L%bsG9ZuX@saP0BvXKJ^
z#xU=h^?-+M$%|Lg5;Ba!NNhv3h=+%n*wIv4b$0XLDM=wkM~zKWj#nIc3=B1Fcw$do
zhg^^k)pxl=@TuCmQ|;~|Vpd5sWK~}YmVKanEX%R`)}G_W*6kSOy?L;X;Y;I~NmO)N
zDoV-=dr@8YLwKkhp_G0!e+Gi{mziXO-@ndxDu+oG3Mm|Hz(2<?Wzzahl7V#ezReG@
z7NG5sLe<ijj$CpD%46Sv2WA-)J4ay+6sWJUo<GOu1C$I(2~;W30!1~-@ap^9>x%%~
zA_=1`DgXzHiiZiBPpOomu_EqaL#1AOfM}(;D{k?;fmkFl%Ef>KfEp07FLw?pQ2LrJ
z=jTx(a23ptW?7p7nh{0J6&S^WxS>aCKFwAHdZeU);(sv5HI(u<ytl<e707zKl>5rd
z560&sn&ImDx&f$4UYi0aa#DLbV@_ZJZN8{gnRDk`^23BysR7MHpP*pOr(Qu+AR)H?
zB8y2o?ibwMMtkHNi>Wu+-FqSq>YlN(wy(P>o%mfN6`ZZ+bg-03&<uk=kd1{hC44SY
zo>-E{HaY7N9R4GWwcD>W(yV_NAUXMJ^V{X=ZYcCtjh+22GA3GN+t?I;II>`VWt$g{
zx5visiZl(>2`RUo466jLl1aqOYIqYs&YJwZ8=3#da={%&4a-(kq%f435i!-;9hW-r
zX*stJ#jaA>1R2>YiE`3?#0IDRuK6an=#&(T#!{2~N#P4TPW!w=+#-&E?b;)k{@&{U
zO7)^Zp%}@L!pY9f4cs2p7|=Z9kTbDfDpU7|zUP6|;WWjlRi-$5VQ^sdpkjI%%Bn3?
z*i8bjRj<h-h5H`d0Ct}esw3FWvYX!5K+j;8NPA*7P}bAjtdKK6uX3l`ep6s=?I&so
zaJ6+zgSqNZ&{%T-L{4F-icG(CqaYxVz*8W5D119aB46uNEJ?c-_m=1Y;MfeA;gvG(
zQo@#miHxGJs3#Fqk3=aQ3yO;sf^XlEIB4nWn*3pPzg}BwJweN{cw(ewJ7yneZ1;TS
z`<mpJB|_P*4`x9j7>DoTFcg4c#~>`AdR#e3DHQ{<6^)DO|L2_Du!HLj1ry$`5(Wy1
zh=>Rpx}cdPO-xMe)5E~?Z+17tU$F0}d=5zEm6XDLpXqirPo@c{Vg#tsD<C3@<FO%H
zDvuSMkJ+zW+UQV)m*TD4d`~JZ1MX>v>ukW+$-)Mhah5b@!JJpz*7YGh<MY~5GvE~p
z#(CdsG6^~VVTRa*zUe<iYnRYB9Sq&TRhlWZf8Vt5WALWQ3`pvb?%%Wo>=41Y%F9V^
z?2LHc<`3kizQ8q-^t>e73V2v$wssLJn(uDiQanzlWiI<MC3=sqkB4jW&cxv1)lc(7
zq9FAJ7;bEyz6Bu|@kwR#K^T<z?TVFGWR*WNUbclC_0eD@#6hwlu#Bd7uZoKV>Ldk}
zSAvApMJQ?FNDC?o@J~iiv4dz($6G{t@>M*IiZpWa3s{1a$WPDJ0?QFb^f=<mXf#BI
zZ1U1CkKVEqjsz(mORA7XI|n|pabOWw@hzOX)DTvVd!Zd%s2GcZUMlSG&=NkvzN~z_
z{gaxkTrQkPoRk|eZfC|f#l<PhY(*}wG{5>ALLKTjOFa9Lb2cj1<HJOna6Lu*t?_Ey
z;*!dOHmx|?md?8?1~aysq7u8253Cq+^?02lnaFQnYDW}}P`%|$C6Hx~=Fh|YagQ4>
z|7YAto8lO1_pd9VhZJNH!yR%}0ci2}LL#GXv3-u>6J?L<N;uocS<9O0FEhZ>&uBWD
z{qh80o>_2b3Giwp{rODQO=$Nt4djsLC%1V3joK9$b;7@*o(h{uQltzM7giLdqR9Cs
z6vjk0VO=8fVF^pK=VFh0J=I}!z~$G}UW)q4?NEJJWH|i0q02Ro6a!9@)MZ-L6%G%m
z`m*>BOkLV(v3hW0?p;9rGMSK{X<i=PKQTehBQ%#O$1}07SptHTBwmeY#Y1#h(TLK6
z;(q2reoElrmg0ops2_f31y7SH!herk3P=7T7i+DXoLuecd$>oI#J^A8_1NA+w?rN1
z$00i|bVvGO`jme{MeMV8NFQ-H&5%y|^ibP?KRWjVTbK8{I29Dd@WYlMOx5KR(g^?>
zt;s);$>iIYTd275Q;x4mqKQag0+^h=D~C7>CA?hTI_{_qfC<eaO?)&U(5DmxF{iAT
z5=z<dp8YCp&b2G*T4CG64&q=Yj_juRfsfF0qN1tpGiuqQzt7~9<v8p}9{(Y=5%nD3
z8-Xo;nDYelbD9rpthJEY9XZ<Pl&$UP4XDm74rkA%1Q@)k2lzYl7YIDS0dF{WDgHA&
zZIiQIi;aJ~PQ*#0ps0buGC~CUM8#p=M2F&KaO&WaqITe-(AXIO#+=|}tNQ%=CjvZG
z5CG-SCn6(bKzD<O0EB_i*G!OAP=K`HaYY1X9R)T1;(n*10@29fvrm8nXYkG&2G?uH
zxg$T$6soD-zL0NR65F}kLyn`n`)9<ZK_QDd5u;a9@e46~+4CDo4I(sqqI15N8ac0I
zEI<8@#*AXL;KsOm>PybbN~$k+7X?uTaYFUsQB`>fCO3fu9PV-W<!^$7a{u7ddIx6@
z7SQo-IEoyKe;(@7P_TfvWKt~;3;50I?Gve}YA{|5+FM5NSZKFC<P2D8bP|$<_mwm~
zARu=JQ>6ug>0~T_9Ehb;IkB0H2R`ziY?H&Qdv<Ost?Rzl4(b1@WsFcpp&=(N9k#T9
z$Jo!IW~}m3N3HCiz*DZViIdfxVKMNHd0^HZs36O}#RT$ou81^j*WO9jJbBZf12;l!
z^9*xDjfH|Ct8`=ywn)(;t;(OH-~vN@v6IKqZFruLx=fXe@AG(@BBr*Ui^HNz@;fn!
zm`v(D>}k^n0`5V}gz8=NFmopMsdF`znQYLA3jO%-L!Hb~RUFTuZ=&igh_OFa5{T#o
zR3s!215gOoY(pls>`=bSrO&^wB<txL1~(G}gBAcltbfei-vI7Q%X!H^yztslS|DNJ
zhZ#|5M*G$UgC$PO886_^1a_vHiCD&20;aMqNWs*N?<j0@-b!*@D5!y1b&11ZA6|=R
z9I|Lvw20@h{qoN9oeP>y|HMi8BP1k3KwAqIGFpM28XbO4{3t3W!FV9Aqy%+jgoYbx
zndL7e&1gu3RBn?(*O~LK>Op+}?<Gy}-eamC+MAvJLGX8#qxeaoh7a)>!cgc|(7=N!
z^u_v)K?kTkk6$+3dSL36?Gz*hbP(183u$y*99$~tHk8)uP~+g>puc9Pop)I$BDC#!
zF_i1+kxklP>Ky)xEnEcuZBoiH#tWGcroQ;Yj%BZ9>%k-z=iixP2Q8FR_^!dF>$+be
zM+`)jrbhVvpHQF?!rG=v+BA1>radu9AdCkGRPFBpZT$anK#z^9<BgsuMV(9;L@q&V
zx>RFZ+qY2N57fZbADHwz5J1_m3?yDb9UUEHx0MiJ>01Fsl$qA*qybXJbqLNviB5PV
z-zDz$M6sBHLMEe{qCSS=PsQlO#NhVFs2xBK@cSKyrHL8+%KXmt8ganOlb50*qSAir
z7h=ubDg(RCaxjV@T5dSh==AW(6nNN@#e(;AV(vrj_ix}4Z>@Paj0-~n^MB7L=(v>t
z(3XF6O%3|L_|b>p7fLDxF_4I(^ZLwpvnluGtx-rzpy`2}fXXAJbVBx@5gvDQXXpKv
zH3Veb9Npos)Poe4Y*A6kPXN5_eDsVb=-ciLD=yU9`hB@m?R51mIgg%=4WgNunS2(+
zEIvL#A6zW-ik4P&cl+77vM2s$yqba5ahmwAspf??Uc~>kug*Vv?-_>-l_aME$XIeL
z$Mx^FdWa(4)`%OtS=&3!sVGf<sjz<#;bK5w@yQ-6hdy0KJbD>9KBBQ7-E=}>X)``h
zXz~{v!EZ(eC2t8jN3ZoKW;<yC6(-W>>74$mqgoM8`}5%rEhS83`Zw0ScL$&}Bxj^X
z2i(Gk*pV(YEeYWwz&d0ptq*O?HQ-zpRK+Py*2d9%A9t9PZC_9KusXMN_Yf8n%W9Sl
zE*opX!d9T=;v&e;rxsTnnMOhmedB%}-Sx$x`s9o4G?x9&RC&4ie?P7t0?gbX7AP;D
z-j|o@j{nAthsXi5fbqjabaL8*i@^179~GbkDWJV963GVlf*vjT54DdFP1iDDhJuF&
z6e$L{X0<T6z_Q`v7dC5RP*EB*l(G@M>KXmX1kq#(5meUJ4zHH{Sgnymu2rW`>3M$p
z1Q4hM5fOY#aOB$WTRa0HGRdrxobVl8U1XdzGeHrQ-HHQ4Zg_=7MNh47&RWhlyVK(q
zX~xA(roPHNcHEx{CvI}p2c4*D-~LElpAE7_&wZnRUB5xbect*Aw-{n6(`@**K-sT&
ztcn?Q2pQ1b-t*khjfbZ3_e`2Spr-#%Ni*?HCw9Pl<O)OC1+P1v*R_kVL9e<$uL2pr
z9ki;rZ;r+=AXN-7N^G^BY)=T0DFxSV`md*Vs}`#0Z6_3W-G(~%1!?3EuW}Rf>a%~%
z_lUa$y%gaHYKr^Z-O0!eTH$p0i0SEPg!3NjL}L>ZnP8r0?J<c{rn48LRm(1GRzJ_#
ze4$0PT7x6~=%^y-QECr&VZTww>z+>d?=$K{^$<vni|+CHe>E%pJ;aNeu=m1_wTY1R
z-yiYA`asQ*q^5Rs&`t5d2rfk*o3<YnULaw>4ooQe!eRFk@EHb1Ggh-5ot;YwnpTVu
z!fCywiF_20A=k=I^MgLf@mydDe_=7)kRPZ$d^tv49#8(V3r!fWjcSva61^0HvZM^;
zO>}Hp(dxPzhMJ|K%3)TL)()~2Wfc|tw$~hd7#J8~39GBC0S7d^yz^!7EAEVmZwvnm
z+gPCen3D!(U7?5kFh66G#_>}VXGabin$RWQpKez^`d0F@l#}PZfek72IRK%3=W)~`
zkXQoE9K>-FcJlwV=l}X}H~k(!1U3v8Bt{<Hu$PlUWDZEY{=k7&uaS^b5A*2p`=Jz$
zji0%ZIj6TDgar~f#v2>Cxp~e^cYZZL0{R0nBjbqk`mR${N?h1-3<j9h{}WBNdT>Zo
zORK1&JEIZOCeHLqq40Injv|-@p7`wj_qGqJ&q>PxuYVtC{P6ysORWdmNApS|mCAM7
z_Xhgpq-2PVHODvJ#f4zf1q?yxqx*x%jy_dwW-b4<@G7jN@`=$XVcfr%sFe!9ydy+W
zPQWjKH}FveN(l~CTg=sC?>C*L9ae&Q<R;ad2B1sf4Jcrta0vIUp|}ty*H2VWRv`Zn
ze+0xjO<WHRJw1vPueLrysj%V6k4Mj5u(9C)VWIYN##|l(r*Y?bNQs4wy)-6~yA(iR
z{c-<`%D=DHM@8x(NBI1_hvH38zX!d*DL^kl@1Tsw){w0>STZPySoCp*eh4JY`vgMv
z3B=au@<^?F7p5QZR^k}41k{7xIP!2kSy@zy`j{X)MMcG^VzO7&;8qf{t}QSk?1zY2
z_&Nx(2KZ~;82JSyB|}qO942S`3z11l(5B{$`g;7(1-FH%eewvx0B~PWA{XSra}SN+
z;}4}25&z$J5A4G87=~T|NI|_0D%pE<lK?RP&y-sbg@B4U?1Xd(aG#N4Rw7hovk&X8
zA9p#3KKkzv#1A`&umKtr-I$!{)3yN0p(nho_4TDAd6WaJ;XXl7D{+SfC5|BYja^W<
zzB0Hn_ILl2N<*Q}SAuR+X#V17NBfARQ8WM;J+JD~FiQ)ltNbw?>wTs73?b-!WyPg;
z5ECzJfk4lu53M7VZ9;>+7lGO{9;$Y8AoFPYLQl`Vt14tHb+sO>!+q6$J6C+T(tYLh
zkLv^E{16WZCS77oY=0%CEvku(h5pp%$4l^aKb{5p7A+pFZ-51jmU(~k4TJl}it*b{
zfeLcC;IJ&?7gr5VS0~ws9e+Cq@K>x5q0ir-x!#xefATHpxz1p(xiJ5Jiy#Wv@X9H_
zm3r`I?i;nB=R+D{>Vh&1y~4dEADDvDsChsUS7imuQeAy+W(hxkW6Rg963N2y1Y*FE
z-@yra<IayEOB@@9euIgQiMhgj2<p#_c(nU^n&{>Kya|r>t)}a678eqKJfH=B3LwtV
z#yG~BKODFNY8b8-KX|1msF&Jep?NOXoXw8)<08MIkx^ozhlZR$f}G7L9#}!zm-6b$
zp$=R$Z>~CFcZQ0EJUogu@f8#pH-5cFs!2=tZ`Q^{BN5X}(0tDv!w-l4@D-8%FMdUb
z-_c@_+S)1TS3Lb4E2n>berRl*J^_xaQi{FkJyz>sa2;oHIRCw^*m!Kj$hub~>fn${
zk5pc+u<?@;)eAS-*B~&5>^19*iWe);kP-MEHkoGmJ*3(%1}&D>h!uR`d7*X^T1BUX
zZL+^g<Aqbr&M)MHed&J%gcvA|Ez!_h{kMjT^G?-m^QG>=fAjtyGiCe&exNO&Dx#jE
zw0~k+LWf3AW=eTAEr09Dc!TdxI;Scc@bhq9sJ#0r>X;@Xl4+95uJz{%>*;1}P}rE-
zluKk46V@!)9dH2lLEAu+oBof!<2g^D*Tv}lYFDX%@KrsLx?cZqD68Oht}y`1`aE~{
zaafcQ0Uj6lPF4D_N1@s>mPF6#X}?R6?1|~wgkx+^T*ZlpAw`Y9<av&B%S%KRE-N5y
zkL9n<ODSzaf#&}At@-@@M!>wWT~Awb?8pv{nxsA%7|uJJ-E@&81)y)&Nz2Ry#X=mK
z^)kg5>skgYx#^KA=(3LTGE?1Ph*4T)!JmLnF%+s6+s@W~c!<ojf4?m@<a9<J44=f&
z1d*gl2lhf_{QRI$pH4?1gs9GehBUz|>!qlOSeAJM?zN|3%%y~ov4+LA|8RUPzu(_o
z_*bCNYyjj(*4gdP*`=v;Xb|_6T)gCytKs$pGZ6NiZ(jGCzkhI+h`@Sr*(I!+DnuFK
z#fzcrf_4A!k0aO#P_z*bLY-Os?2yO<GFN-?e*N<s&@h8mJsIFj=hirt1kR`fdR}3n
zn5j#6NRYBc_Dj0bgHnY4Fe^pDr?0sgv2(*Dglr)~A_H&DdtJc``$+oWXJdgzS<bt8
zsBJuf^a}g}KTIgyYg)q&$c2X(zp+yU-diS<`OpIvARU87+AXe*iwD#X7Y^NrAgkW6
zDnzZief<MoJsKVyQYe`GvwWlW?JJ>+e>Iwo${VRFN$oGG#Np*aF*b+6rs8tJ$ZPiO
ztUy7>fwPASJ8V_|vE$gG;o~nycb^^ohlXbAaL_m_*Q6h^q99ZX&TJM+0a7qD^8dIG
zcwiulH72}zvxy`W_bo|feEo*na8z)3dqhTe4S9+k?_kDA)^YTjB3`L)H5F%xCJhpe
zM&kc7Qucdr*3Tb|{V-zERk-TVfbaL0&CUOhi2T0_O=M6xBD1p6aSz^asE7meeoy(x
zLv^XVeYEuln2p8^>*$Gy{FT%kphX(akY8WU8Uc)52HcW>gM$My)z7aoLT7t(=r}lm
zKr+b$d<*@|c@{{4Uh*dcCL$v6(8fWF`NnCcC%jvf>+`@j89Fxhj>ILK00ZF}tbeES
z`MTH9;rK9iUS5G%lak2l>K_9lh1#P((kH~Q10IF{uv9nO(3v7*E<@fNmBDFwsl0rv
zxYCqD-2m1eF67}+*Zz+ml}^2a!v5t@;zLA&OKCknT%nHy)3l7<J)A&_A2ZPPp!)(k
zdw2VxQUUNZm-{z>CYEL3))v;#&_GV+qXoN%N_)GxzrTN^(nRj}@87S`gRDF7C&a9$
zZNY6X0dIZ`olK7+n~RhFLF_p>U0JiG(@+UxXfEV;@n<4SuwHv@iaN}}`$$!$?=2zk
zsVMQhRs{*oRmOgZqA_KDka`P2Qc!Gnw*LEJ;e(kIA{|#U7_Wz<Hka~H?pT8s7Z<50
zD5$(o@qdZ=hp=q#I5BjFoq0fHx)HT<zwa_m&_BrR<0)*(Fq}I*)?DD|!iJtsK+?Ql
zM`6K$Q?JMeX1`Cuzsz)Gc~0H|1u@s9S~ne}4%Nnllu+D4U|j6!?>GP8wL>B+l3dg(
zEMbR=Pec?xneNtw=2xs$hXL*@$jxg<42(n<%lP^gwE?-{(Cd!AqmM+&<2gzpM_v;C
z;$Gp*(#8vF(TVm*73`Hg7mlFd!yK~h#XJla^A5e<+S5q9jVL_iz)$&4pN)c);D-v6
zN-7D=PJdg2CO~UY4cs({O{6K%<RaV9SqCzJFb#+Sf+i*)3@sLK{+MQaIQhN;87xgE
z;ID--g&Baq268kAMJOza;AyKtA2j9dS<7AZ)GBD0f|j5__)!MJPfL%+v8IMb2)L3p
zqpYk<A~1JBJM8vT;47FwFJS_i$5*?-<gCvPxN1ISPiU3v!;6ODg8zzEz6jY3ws7M4
zO3t&;ay>WfJ{q%e*K4O#iKI4KIqOfy5!MDDlkaYMxzF}^7esr^%E?c}CBp>LUzgV|
zo-;osY5kK$k5=vr=PUidd;feeSN|_y``*su|I^B*1Vjj^xw`1bv^oG(06nF8JghP)
zE}X_sx5x16-`U&QUqa(c6$Y&1ygWH@rMh3(LLG1Pj_Mt1WPM2QGD&IWvo#|sz3x0g
z|7Vjxn8T&sT=~JeWuB6c1a*&DZzv1JBE3(F$GG#KYFN5E0g;ZQiNx^R7J?W*E{6U0
ze`+oFh>O&ejI(N-WU}J(>;@KvwY(fP4RgDl*Tb5?zH}FTcofVBy7T|qqfjaYJw_!A
z;zUdz%@dzt4^9~ePI1xdTQ0!(d0EW4Bm}7eTY{*7fX~QIhY;7w!aDJ%Z%#J^)ehg$
z4LiF!^`&zkp;rjMVFwpTi}u*o1XuZE`}7rPNV|PtW8Ez}(sUJMA`LtZ>c(W^Bv{d5
zF?qsT(4*x;cf>neqe)2Ikoid8fVvNf!VPfm#`l?EZlJVM2M}mZmxq&}e*Q~TXF_L`
z$p69~3I_SE8k!jF9e)iq{R7>r3+(q17vZtb#Gf<)(492&CgR?FUF_$b$~Gnrrq-QG
zO4fqrnCDy`fZ1ND`YCI!upfy8ctC;iCOLFH#4}K~W-TFla4oIcb-$1dKJ=yS2~qMb
z`X<^3br0>oC<bkjvcZJwO`6`H`Dj!id0)w<_=~cofX(7~{dEB8_NbfVdnYRg(g4f1
z;6@?l*GXSOdNC_u6A`O>3C}_DTqM0eeta9fC($6&?adVKn|-40xpbLh=wV<#z#Fg-
zv8<ed=q?Bi4t(3PJGMLQzto*O4UP=$4k8ao{zgqRA1TLs1;^#M%U{kZD<L708<G0)
zx)!lVeE7|-*dxRqlDpq)>o4R|kAXhlB`0Gk^XSX>M~`3d&^ImB5gxdk`?gcb-PgbA
zoa%SGt~;}Ci;-DHoDm@rzSrnV##hpYjswDyqT8~_X)UzRk|!(_TUKf#cz#(s^JN>c
zczBfe&BQwTb6l0JuG7EjqiwtOCBs_X@Af=V(s&ngp6$%?nK`>Ky=uUIrPd%aV#8Kk
zRW3k3{SCBK+^|RiFv7T$F|!i?FOq0Y|9iY{xnnnyp#Vt(7$>dsqABi)cQCY1YwtD;
zkLiuW*1ONFx~f32Hizup1S4#hwWA7wiWl<k=gOsho7WKEW6@jY6L{-9gbFZDI{;|#
zjDiVQyV)$#2yt=BE0<!n<wmL^ttNCeQ~|_E-cP<dz{Wkdxa4zMUYCi7Ne_HFRVW2}
z%h5y>gGnTSmkw3B2r2F%(i5IK-ceAeYrCCjTY^zYm3xUs2(rJ5U$U}3_e!+kn#r!Q
znH-4OEzc$CzLeRX`!*==`-SVyJ-46LMN*n+{qTvrj>3G~Yr&G_+(G`UZ$80Av-+?_
z2<oscR%(F^30@J^+g<_=)pcmsm$bQAa*;YH+lv<y-fg*0K)r^QE0;1@x9l0WLwnk%
zY9UBC^U6jg{d*Im?XtLG)$uJ)dm$ox?Qw%#OSm#g(OV*iqlK>-lNp~%8NQ-4y&0Pr
zTb@)lKRlsYc)xN+Fn&f;(y3=GRJA*U+8#j=khu~-#>moJgttu&)$=kdqXBpU;hpoU
z>pr3Lzd@+_diE5l!q+CiM*1F#Qo`*tW{Sp;nu9ws?#C(a9r@$v1gTdV*HvBA$ABb{
z$#V8NIXM*Y2w>b*Qvj~HFNQ(W7M6ho8zBCcMg(DX(59j_gSVCI+uD{}MY@5sBqlA5
z^;Xf~V3>dlV&1@R0H5rns(0DmP}Y(?RI7`I+4|JiQZegrDlB3nj%XiV#t~HU2k;M>
zY*66AwmU(*<x8i&u=EMFJMNg_&@6x9?wlvh!!&IokV{|!xwO%{wB@dAta}mWlg)+5
z=foM)587~jeSL5C7l!rbx*QUo&uc|>9uH!$&V~c`TKK>|k^74tGj56CG)nZ$u9UaW
z=PsSBEkdSN-h&>mjPgG%y6>kObRiaAiIZUlgp9c74FX@Bdxa^!%70m9`GMwezvIKe
zjt3s_p=O(x(3%77DQxj3&nMra_bGaWvG@BO@qWLP^<0AfaGUMo8c0>u*y?M!zou}h
z<WeyE<cLLK@>V#E#rfbpP@lWe42WiP$#uBAu6=schJeSMLqg5<dhye<GEh?g{03&r
zi?w*(NbfRNp~4=m&N*#M*=%FF&=BQ%!K+IIk8FG$#XQ|6jvRS}Inv?=i-7@IlAm;3
zQ7rDzpfqw&t1Ks^^`vRP+*O{6RtoQ<aq}9Po63zh2qc#j*)j_iXo~$rd?Q;jH_UfO
z2wGv^2p7ckDSJXYi4qb5c6KaQazPIZE*M;MNPa>`fkyp+?7RPKnNYzptvIM^1vWQb
zI#+20OWF^&pOJc{^HL^&g_?Ud@1L?Ts@0GrZY)Z0?Xk9?ov1d6gxGkrpjy6DXq2G(
zuuN|`HBqR0D*S0l!#(K1GHo83kc1ixskCg1IU^>J7DB2BOZhH2C%g<~oXt!KW~u;U
zFxK%tox^n*MXmX0Dh1-vPTc?5>U_sC^f>CJIxxPTnbCj}g`i!mb*9>UZf_3^(|qH0
zYEfh9ZUl0rD#hRpGr9q_c2{{5R{^vC3i`N~8^AIg!Z-<FNTC6^o&Gi5lY%slQ*|xZ
z&77}}_!`fAF7|QW-$DeXkV{JPRljdR-r3Vi4Tf7}l}m2e@A=uMxW2<5jWr-0rqm3u
zUHR4{<;|R5R3hf7fTDBzfn@%sqGKa#b7ryTtEheIN!J&Ycq`P`>0^)A<q%{!u_eZ@
zfHo#jGDyVbSes}hr4%+31sc3@qbY~kSHd!o`!t54SSa2{KA?Wlf9c4;P|`w!tB5Zy
zH^o5_5#O4AKjXbY3+2@?%ufeP#Pe+K6HlF+%uSVoZxPq4p0}$%lb*WSo-Q_f4T)-}
zI>5Nv2|OQWyGvmN@hh;9P3H!*y0{Rz4cXv2O)$<&GycAMEEE;rK>p+|?Zz5wXXuO|
zed=5-g?BfS-Qo{_OSnMycPP>Kv9<w!{64#Dp&Jt2V=v;r$7jM$$1dmoKz)Rwu_kn3
zmj;j#xSq1uu5<lkv^J0kgBb(3+69zBC3F;kZJbGEGPxKNq{;o@)O9^CD8ZN>qEW~b
zko(>CL}Sj9iD!fNCzbKZsGYVsA-ZHQ)5k<b3JThlkdez2L`rN`6=NZXPbk|sZ#I|>
zbGUx7R9noZDfv%+##;J>O_`@CNMA{o(C*r4uw|MUfV-VogM6@Cifud??&{J)G{Hc8
zraRkf$>oI$9qC4Xl%;Mc&Sij#_ZIGK!HZ9peF=_hZYlvz@Ne<;{O<@A^Jh4qN8@;a
zFC{puo6yL-*I&fH_UgM=-lWahKDlh}9-KNu(<z2Z$!*_sRp-jmqd@&WcqNUoO2`Si
zv+?)J^QCnX3;M=7($Mu}diMkZB|t4Gx8h%FMqv|ShSQqpf^IxcI13pc;#WU>i+&N+
zeYwh|Qc%|0Z5r1kjxFIK3XJ4y(`4Hr5ri_Wse@&94EGTEe<%jPs97Kh<k_oM!%W8m
z_Lb<<V-%zwHLw?+Rc0@2Ewu32+S;OKQ^)nF;nac|0x7W2zKH~4aGL${$JuD83%fWf
z9Wxq7wSG}V0X^iPgFf}6_-AMGEoD6$`qy=CTp?1LqKQ#Gs?(N)&W5g3_5-#I9k$ri
z{mR<M;g=3>l*ZR~Y<;v_VHeEbr2Z5QJbkium%|i;f$Ddp(NK*s$y0{uu=hDQPIxh%
ztKkLp$W0?b<oaNF_D&L*aIfRKNooD7YJ+yf>=rb$E%nisTId<TBl<o1TR18Fn{H%%
zi#j@l2a*_(se5}9KHszzA|ISM>1tZ-gBH-`5{}4WfpW>snMMlAmrHA=Oi`(cbH6&)
zi=$eL+>A5xoLe^gh)|!PlGw9XR8~ZzrDwp+m9rlmkdNEA3#H3*FZ^~oSdP&@Nd%+a
zxa|MD(${W>{bUbLMO148-oyfEnY`@5jOZZwnzm;Ae900io3v2236<O9>gQCoo=Iy)
zCuNu3jL_tZCQH%QuHXE((7r^ki<v{KbsdoD9eXP1p$AHs_%B-io!X*xPZ;_=h32DT
zfvEVH7~j(7OUd9zbZh-bwp1VsVPr_0wY3TU+5Gt=1|rpg*?qd1J&HyA^R0~D$}Jc-
z`8AX0E2&gy5DJ!$wI_8Ky<A@0^Amc1<#3o@2iH{+CY#gpCoLa`r&Y5q_qtAb#!+M_
zk$=>+$aTlXzC|aYZ9;uMA}AqKY<B!}&9>;gTsnswu7rze`#rhCpAB;tap|D8DS=*K
zaTf4hsiVtTt#;lyai`PKfmrbpTZ}eHrG(gyqk}s~n&k#G-+ALK)I=pP(%?Un8}5qY
zrG7$mdAKoSUdrO9bc-)YW;AEpPj5AM2igFguMfLrW}z-RcF?XXvzz%o$dAPjwp%{w
z)4hpr0`iykc}4|}qr<=fBl}t8x|+u6*J90sp4exaX4@9O!IE17FmbRsN;y?-9_Y$d
z$fmgLxHW~>P3%xapZUd(n^%+=2AzJ6**qZRv02GLn$6%-`~4Z2hI4uL1;@R4|8c&e
zu4jCnkxecfD0a=~DWNvMf9RnMx35Ca+$?n}Y2iM)$B4D_T|n?;{<CxcI+31*)IiG?
z3z6yDipR;*0*V?K#zR+?i5xrIk3dOr9X@=}+fSmY|2)UD4&Q$4z5VViHs0<GDLoT5
zb`JKdDNXNRyLD<!hAcFaee@Sw9C<h|?@nT(A_%QaUsxCdxrEkU77kRyzdXJnreZ(f
z7vNbU`;j!y1S*J0b>V-#L(NkkP<)F3wS(hzy+ZQH(HKNtx3SL7&W-sdE+E&Nu=5p|
za5dV_J5wUq@FfU&*i3ECtHyuHB9?1uz`c3$OkoQZGbg}Jl~{dcdHGGfk|sIEFCbho
z8V}%VPUebzavcfwrDIsEhLjx754KB%hK{Y~wj>DSI$UH+U+YQJ#9%%PN_AXQSsGfm
zEi<sLM)%kXQJP(h>?Xvr<WLAfFu$6oale#d<h?GyYOpI@l2@of-6RgYYsd+$Ogv<F
zI7KBV(hsknXsC*8?--%RWn;!mtz1b$D9tWMXianBA}PJI=39>Yr^qB%?b=e(&9D$b
zT`@$`>~LW?^q|e{d52noM;saB#qXzD+~xV=10UB`?j}lgt%VW)nAl68GnA@VcHwqg
zT>d+@k%<X7`~$j)-3G>pkpjfkgkF7on!|A~{8-UHOy;aP{Rp~lalF}d-I(eftu9^X
zQ$GEA<GL99q}*fubnRu$u!ApMO{yscj7UaC**{+C9)Z-MC8-U|38rkxGeVuD>3H*3
z=N|6Y)7`H-jX>~q%;iL}ww_)hDqS$Dvt(x;L#&W(aK(sVAF4htZLGyYPS*;mrkynV
ze7Sy6^WufNe_nVi#w&q|G<vs#vGm(#4tK-z%B^BH?n}>t|9SBO4gqeGtaGl|`9&=b
zLnpO-Ha|7iE0yys5h?0Dm5}Fw%X{*K`e-kFoEQ15e>SD;?99J(sw3Q4!Etn&PiAAX
zcCy|#Zn@B*yVA=hHQI_7No93d+)GR}$HOKLuJlUn?A4}1HxRvS|JszCX&XzU<(1Ut
zNtOXqp*U1`8K+Z{o04bFGeVXj!XN7GA-bsKYW%^Q?y6C=TE`sy2l#R8YqE?rpUd(`
z6^%_z0v05_)cB<R6(e79Y~rkrz}ObfZrG>7c*tZ^p`kODFg>>Ky^GB7Nu`|TdHsnb
zsl=#RbemlL6>}t~!JQ{{$5{RHikK>Ji@ydDdOy1=Iv~cy4{@-3Jv|oA_dR5ggXr^?
z#Rcvkb})p*=dkHjg#;ThEV98ZcC3CBeye%tNX2cmNjCI_X{tXX|An3I@<jWqiCn*B
zd)fRS*-5mItB&5l7@<#X&wTobHLywXXOPj-9ofXHsr`36Oi;+}`$gLCg`31Yc7+M{
zZ5=vk;>oN&di`T>Hz{>JPOv9Rw9OO9!IXpF{hyzel$0EtoOFVFThNGzELF5&8Lel(
zg_~b7dMEM*Fn*N#K~*3RD@?r^-}d#Lu0-i?zI<1=M}{NL$Lqb3dN(ccM3>W{>t&v^
zuIdETIgfi{LPAu&zJ!fT<24?zu&Yz<D}U$D!+Ey2r4*t+H*v!5v`JXQg-;qvkR(ja
z%&!74zpXc2`RFL46qeEkN)i_s5p9HB=>Bf@H>{!Mwb7%!l%`_bhR3=rf++j=A&!vm
zv6_+P##?3`qTL}PF|+n~KlR2!M#NL4=}u!(e<0Cgz@S7KMZeML2u^Z>!52yp5iH^O
zyXJHMu6aX~balkTnv<@I@ee*aF@QG&6Ae+DTu%gn%V}w6C#8r==8>T~?=QT!hWx_9
z-2Vs<o)j;{7Mr|oRr2u{SeVDSy7VrJrILey`&YrQp@dCtbJuF|1as#t+aid#_)ULw
z^cJ6NPiBE>snkU^65Fzd_Jo(iuEDv@N3lDK#o2n)u*sA5BI#?1(P=PMpb^KBea*@p
zWua9KGvhf-1x>tor0Gos!8?-5DI6TDpC*0+<*lvpY=MtN?fW2)KH+I}kofy|>y4c9
z6LOwSbOgpV*{I*9pq`&Jq|mLBd1-Yyj1gnD!}H7{{Gp-(cinYPl^cxI+88`W3pKeR
zbJNGys<Wju9yXR{8jepi-nbHoCKI7ZzQk>nCTYi|kQ<`X%7Y719HsS_&2Ns;>Ge`P
zIYsD!FnW#O(!Qh96tF#yR*3#`)Q{!YyxOw(xu^$e^&fSg?*a!WXR$?+3rxuC3<&xh
z%H+JaPtPx}@#g)S1wN?dm4!z{_=ZY})*9PmUaq9|5_N`PDer3LlML%{<0vvH&i=va
zT8<A`T^($l8R}82ajSJ(tZYk1^pHQw5tZBJ^|*z5F}9bCmT6hAztz{Zogndn!KsA1
z=QCF+ehsH)-LbH!|CEcZqwVPQ&!Lt`lI5IzsZ0i}(Ap_A!@(pJoiv@EXdbQ#quws~
zem<j>%&Fj`n4HS%?H{_!nZ2x^RbMk({uszeNox>6!g~8b$ciwyX`YOX{9tiJh;;~U
z$u-Nfo3V-`)tb$*sjl2EiqD#NiSy23we+zEGw+)xQAYjSv$ZYD<p~w?VZwdWFa2Lg
z5q3t02imxAGaky@a(&o)|G1~`WqvH}Q)E=5eDw71clmr|^CAdd3QG!YzDPJ{VIOVm
ze579D)VkJYwys}9cfDA0t4h)3(3XD3yr<n5ILTXzev~v<>XZ5LqrJE0bGF*bF|W=-
zER!ol>F>QTJs}Z6ZDI32u?3W>acNa<WKUKDsPf%DuEI>nXp(0?N?<-OJt!op&ywF1
zjCuJ2<~xFOT9n54RNlvFvJB=B2sl-Xd;SfAscZt)et$l1YK?y9DdaLZwe2=p4JFm?
zdJ1uY)Z7kV!?(Uy`-s~nIHfE93X-MIpU<p4ryU)wEtXheESUM$e{nH;&rKM@Wwa6k
zVrUl?f2j+LUCwe!ypDsVYN+>f7<yO@INnSIcgf+WC{ZVf+EX*~)d<eJ*ZTj?0{8$z
za?~$$`D6Z@seja`D~yCvIUU{@B51NCj<XiNWZ_R(Ep<kZQqB~mA5gmp+^YH{yP1Mb
z1xLSNUM9g#^{zi!L|i=&rlJU4Z}u|Gh~Z)b9^7W_A?I=sW(dYoZv3jNRLJ)rX-0_@
z=tks4hzyhZ!{5BS;j_l_%f3kUGQzRqosZqblL{R2%bb9#6B^^z^F74P_XwX@4%xg?
z>MtXZzlMZgd6T%A2;Cszp`@0R!`fJKV)z<y`AXZbJvS6je@sBNI+|m|T$6_104{+g
z^}4;T0M`r`2J*O_BDB({WkyCuM)972ff(GFneM<c{$ci8arR*MKgO51U8F9yyi0<Y
z+zFVJO<LNc)Z?n7v=?#(^Exo<R(RTsRvpfm?@>ApCY$Hj-IqT?1j(QDaJsBfeA}7t
zJDFYUXU)@YdalYqgAioDxkahfXbZz|<KCe^T^yT**%$vhumHR8C4QbTN+YU!cxBkh
zM&C)lbLZ(`bP9*<+XGFJu>y^s|CE`_YL5i88m}{?<J?}uUU%wGTYjTcS8s@yuXCq_
z$)hwc%6-QvmlYT$Iz*_Gv2W0Q$Kk_-BTK$m?M`>})>}>WG3*~hQhEdR%kH<o>XTc0
z%!}C0ocZ^CUTM67`BB7-YFEl;cDEI7&hB(UxW`i)IK}Srk$VvF%W+%$lb(vz6HD15
zu+AI`k~#!Z|5TKu*9KS~U!)H+Lk_n+<>4LcY_>QfEI55h7x*h52|krI+Kv<Qe~i7j
z6yLey3Ry~4eZk(ePNK!*iU)VOjO63p|6K5A+F%q%;FFj~Q4Tj0p@-ZTxJtT@nHDwm
z@roSjX1cmO<GCyp<BD}r>91;HsyJHi2yZpY#T3Q-7wAcPTjffEBEs61!o@zW_E1i<
z=Q>D-#;{0biiYC%#3;>i>%DrUJ;&}sG^zIMTD?Hbu4806x>^-ubxWDQq^)isU%!SG
zpOkhrg_C6;cHqJ@%2xF2iSWONfsV*WZZk0xrh?An<il+h0(Acaq=Ey(^6Z@^Y=z_g
zyyXN%xz+m=BFXMJDmmiceeuY$qJ`NU%0(JQ;J+f#0f(X7k!V1tiC3gjdNXo9T02tN
z&d|uaNG*lk1{Pc|CqCjaoXA9lQ1m?(4D673pSH5eSA7IJ!;r&-8g0D7yo=25n%fUt
zU?eVgUPtw#_lvFTpZS{po*;VKb)^0M<$&5{!l1cvM;U4W=4Pe3YkP}q%Qzd;G|AY|
zqhj-h#5kqPHY+}!z<qO<HR{+9SNK1_Qu(+E{vXcXGOFsX?;52;1Ox=>5b5p?k=!)W
zEuE6msnjME>F!N;hlGd-NOvPBoziUTEUx>xp7Y_{XN-5epBaq782r~-^Ec=G%?bIV
z3Lmf+YeH)SJs~e|;m2i@o?ykCh)th(GG3TE$fiR7*c2Iw^dkw6Y^ks~8t23hPPG2`
z6U=AKh<OR8klfd$RRuc7*_!?kG>i4VB#I8io8*);`>AkGf^Q?0K{HjHjt9Jmlk9})
z<XM9Z;p>rm71({PF4y$hj=G^Kvpo_b%*kaT!;T_l@VD|Dqbi(|b8peK6&)7zxP5ah
z>!umCZrn;nU4K?CeffB{FoRXzU`R`X8ayUkzZ3Mxa^R;fU2#H?(l<D+oKG+L6}kv6
z2Qf=h%i6DBLE6d&xw45nXj&TF)GUlIFwz^Hx--!|vEdoB$Y!w~ZZ3o=^`rteky2NW
zh?{Gt&KyTELy@s#VNa;ZirEnRga?9N|7av%KhGjAm#x+G+=#e;Epc<UVB+O-4Heoj
zOdl93<?hmaUAe6LcdM7yA*~(nvlDH!)}lGmQ9b!6{wKYGPAqhG=l$0ESprlD>2j5!
z`A4&FgYTMsjqmCT&SLo)jmjSX_~7bN9r$DeH#Pj?^i>q?aP-&6aiYS{@>i88eQ+zQ
zz+UN;N9mgmvef2OJUZmM84I|FLC@FmCF@+@9U3)%7`k65@1v*R%vV~f-CJzbI4e&+
zNgj9q=TpW5pR&et>fNqjWUtdLJb|2dyVEj&<!|v({w#{u9C$Bo^ET2Gd(7|Y5L@8j
z+TkH?nlCMpFH>&IJ?QL(l+@RL;zT<4QJuZ!c{KzpK&+jVR;-))4@4(I)Oxu78|bJN
zr*iiCbO9W@v)D$^Yaph!k7-A&t*xQ5<pTJ7-O>e2&>140I2<M&PeCYvE@&A>IikDm
zs#42EV%91x7_a-{ZDYd-U>SY=_U2}IP!Ix*3^~_<x3@QDATSDit1xI9&3TEeXH7**
zZ9j}Au_r{qF7lRcy;>!jrmU5T6H@MZw&FZ!#j3|~WB%f$!TwHLZXgTpnBgq@;yLNU
zr!dk4DEieGa!z=e!zF9e8+}@J)rFYwSJfF@7I+KVc_G0+=cnGiyq_+NCW9U`sM~_g
z2M`3A9zvgM0|b8?!0}2UT5|{slalaQp*VVTn|2|v>etJwnSAk5Z+<4dz@k%W3VdV$
zq%?wZMozS%0;}yhyO~P1pUakeeKRx9id3_EW5@)akdw3Cw0ob(BA8fPmlX9#AX!YH
zR2W8b8N>vq7+}O+AJHi0e-|Iws*9#S!jR0OQzTlg0zeR{&ALztlgU2XJePt+uIn<5
zr!u!dpiw|v8=O6XbL;Kj36J|oC#^Y&ZX07oT(aqvN&W8kiD@!3h?6a&E4JvvD<Z~g
z8*G=g5u~B#y$1G3wZlfjpRgAM<ZI1IFJ5h@q|^#?$HobDu5{COlU#1$Mg_ahH#vMF
zO~ihwpm7Tuso4+Q?<%P)Dwr(&$(&pj?Xm2*y7i0EKnF8+D$m7@T+sE2IxC-rnZ;$$
zDjKUL6Je~(Hqs_rDmvtKiYAj@`3vEOZIow8I9UvhtsUOCtBLkOti~1&I$4^ML^TjL
zl6GBrfgfb3!3O%+4nwbZ2cU#eDUIS^R8O0HGdbpMyAkxXh&dG%*r_@~mJ~hdN{t|2
zHxE+vlKNRnf><HBf)zhTBBDMAK$U*ypT?}PQP{@ftJyAUz`^MVF(`6^l(<`dsSkw&
zm4}(|bweo_G=rCWWSNFhVwqnTmFvD}Y44sL@?cv|Eq1frtM>bFY_mMGP;TAsvXl@2
zu5XQD67J2mf>{H~6xqoIvof|P4KkBcO$sN{QO`Iwv|m&c4GsAX9)m3#vtM1oi!{U8
z5>%iQcVma|`wv1y-*$$*+tl0*=5Yi)yFA#O-GAPWsGw4eV(%QgAXcqhzMtUyq!Q9=
z$+GW#H}LWjWS%Y^LeL}IvwE&*+BeXTpa+i9&kO<;>QIThOJuOcO@yGjF`0WEBgqWH
zKvc(>%Ym&3(~(NF&v;L!zjKz>6sj31_4_WsA&8aK?V8G%T9EhSwZ@VlTJMkT30QAo
zzjy3cp#~M1Duw9&T1L9Hd;a#`RjfmIk2RG~96YOKvZ>fz`kjZ^-D&MKdC<2DUy`uk
z-qtULi$c!bA?=w0hijv6_g*L6$yKRM9iV$zsYIQ{AM5U)Ky~Tb+uJRDW#FI)d0;*Q
zQj3L!MS!c^2tNO5*d0vkW8mFY5j1B0J(%e7oK`v_r}*D4Mm!WCfBk?S*_ekIoDS-v
zf~z|3NM#~ZDt%NBxE4G7$vW@vM8IH-h2+T$#n2@KTGVrbw74o&t*U><pzq56jzLT$
zv3$ROY|l1$3f#3E;d-Wgk9zv5GwT-RHuKuE=F;;{I<RP(Vs$4CQ&ER)6<$X~y(?_q
zt6yU!)U?#YxHDZGr9Gt2tZmfcBlLFhb6`uwR!?7!eOqO*W@Vmw$?EF#(gHEd4Cc4)
z7nE9NB?N7ahs?V&n6Y#QbB`^9zn~sDcIFEIOu*>#`8IAgtal@U5{|M9PfehJ;0c?J
zdLn(uNT4z>UeUPy%rb$X=Q>ss!_E{`{zHI@hrdkB>r6Cg!5eA(ah8ZQSE#A<tjOSj
z02!A$m!XLr;iSjrn2}n+jrC$FV)>z>>|JDY&wb7>I1!-&szrOi)g!F1;b%(<Z<!iQ
z7IFu$L|?G%5*ov=pL=l3!F0@87s^MHizl0Fp;DN!mKrZD5n-I<r=4Gs5L8NcjC!LR
z-t_t~Y32Pa<*WKAyF|v&8UU#P_*`Q+RsDor64?Tlabo2pR-<zSrThH=Xh@W=FD$Dr
zLfR#GCJlwaJ+EBPYw$2OJYXX=!UtRgUQ*_ID-v+h>$(dDB2o+ima(1*DhFa_zSU5g
zHnM&3BgP-INi5?Yd$WiTM0r+0C|;{9FkQa~%34|J-QFC}LuA-&XJBWkkEl6dL@45k
z+A|nRcRtA&cSK5GFa@)og@~HQ2pH?<fbCRP8_j+#Yka&jN;!^Bnf!rDdGnCeJWrDA
z;Se)IWPQ}|-kqJtHot@U-z~Zau_m=+rhg1EB{6Ttr(;2uJF`o|G|~KXDMl6<mdM@R
zPlNcVaea%7bsoQO+$6$y((!eXOV2zeW#7SP6(bp*iYk-NkATo*(I;TEeTcmPS+aQ*
zEol9yR?q2K^%dl^lNCOLkV3PA#TGR7IQz#ah6TQX0|`t}G<FR;2$H*xj}K||OOe=5
zLHN`V1&%|CZtui8h0;Kwm5nV8VQQ9-Ft#*q-$xPaPzL|D3z?d387}kX$CvHL$-F;P
zX&Gd>CHphcFC38i(%NlsvO2t&=LBjv9n<Rj)>dh%pP;287SKp;{5fR!kkaYpdf9`w
zH_vcymad~yDN3PuC186hEhr+Sn5KuEL(4ze;P_0FdBj?{fuA}GK2~H;mB5Ub4Hh?$
zYNs9aKVa!_MAF1BCNUf1Uy(GkD(~=mZC^`OCmRS#mT<S#?>^uDsXYUFpq@Sg<A79<
zLyk6*#X55w8LA@T<k_Cswab%Z;gsNN<FAJ`Rh1b{uPbD*d3UBGil!5(mYs<i8Yw0y
zPCUlj3d767$?~4(J;8rc-WQV4KSA-02s_#RA`8Z*FYY1aN12u_t~LHy>Wv1X9*Um<
zp9{=^g$?eVfAfsc!f{X??F!Xwnflw|@7^=JhLRX~W(OyGSOcQor0J?_=-9h*-s_{<
z!{oK~56|dt$2oE|qf*_ft^F-{BbJmEH0r3@R@lg(kKf){x5s@-D4s#kW7;e)_I~yc
zJ?UN7lr_t8*%Rk7ji8qlU3hz4JLB8EoK0d^Ne(`8di}JD|BTG_7{!r6Y3Ozk6pJz3
zZ#g;CAt50_8dKiY&q#4_a7xWg70m(tb+r{0RQ@QM#{Od_w}ovG>-O$@jY4cHal>R%
z<@te|apQKMH>=&DRxp|T`VS~6c_V2B5HNq%0CO76t*(YYY!WWV-tl!(D;TP>EB9D~
zEMUN#^Gno4H<#6CsxS5}W@_oI!m)`q(xzoWvBZzlcd_nsyws-uIEkw7pM+?N^i;n)
z-VsrPv)!%xzg0yaB-uf|h_+QqX<AG9yLW~t=zd30*B=~*`q)IW>F$n6svBP}J~6U^
z|F1pnBx@#uAi<9}P&U}ai>_>;wVj>FfLnMjNYY`{uP+wTvT%$;9+WQE1sM{SOvVJy
z0)Hcd&2ZdTVUNcM8GaBWAtR%zF>>wGX)$8c*5oC!v1F^zmF)W|oh2fuLwsPmjQ=x9
zi^Gs>$AyYM;CIopTo0R6XkhF88v9ihp5q++zWLpuN-c6NBj0i#m7I$z;Vqi|@|NOc
zu|_;%#@fUmG&J<puiwyF8<qn`#Z~8doj%M@*(sDF8+Ue(++XW`&WxWQ+4xL|qOX`q
zj|~Rrqi(soP;S22FY0c*#pZA+(Y<{GrA!_zB5AoZ%pmPN8y7E&VP?@E$RCjAu3G2{
z{OHA087)^+oaAT~H(2B7Au~~$bOJg8f+E5+)JKVWIkR?&rI<{#{WGm>yUvFzzQRp4
zd)}w#O9o3dlQ>*8+lnBMcx<yw{Al0+#-dFsm(DTQQuWs7;1#jRbPowZ%jVMDoE|~~
zA(O7|4AH*mg*Oxy{f7Otf)|Va%;oq(g60)G<WNI%M0-Y{A(MCvK@SQ|d$-GoSQ|I)
zbA?7Yx<=+yXQ*^|#q+%Td2^$8<i^Vn?AV`+bd58y5$$j)MIzFR-fj&Pc);(upUj<D
z3aG35v}Hzlq$H3%YqoI3n?D=ehaNSpQU_^v@z^5Nx)=$oFjMcs`|W4>oyrpIjYyoL
zg^>wG5-7Qj+3pShXB_ALTTB!y<1%EzEx~O$6g`?F;MKhb-#8;9=<G$+_!|u-^U2EB
z(aHoL=jzU*hOyOJT<8P~qXMT1at_Ca<ODnR1*L925IDq~r=8k`F)No5C(d8wqV++9
zHdTk(5U^ttU5C@#&w7l%G9*RUq4m{T@b0f9w=WZ%-wmp{tpllmZ*1J5;orer3uRJN
z%@Ml~KnXk`SD~BTdELVKkdTlhIe24C`dZuCuu9@<t%f2&v`HRtmNA-i_(fWf0fbh{
zu2UB+BS{2f&1g~&KpJBWSKx=6#zj(N`?kC+!92sGgEL`$q7VtwZ?J>)*=s)zXCtnS
z=(oD_yQ;@DyB}QAfOi8vw?FL~4$p%mGE;}KDn=wHKVvs+rmi;E>o$R$yd>~o@#yUB
z?OaJad;hxhe!0Pjt3Gp8aYjAL&*iU5NY_WL4&eS7<zX2YNk=Mqo+tjRJJT6$7?s&C
zi4w<_AO-X#Y|Y{}`(@K#OXN7Lo}vxv6fl_T*m#lCbB|8Ppns-rtZZH9`4vtX9V|aG
zHTVv3Hc<9%o#iS%Npov{7F8@AuUcuOq~0YDvI`ime7R4hr3NJ$boFnS^yNKMbe)qL
zzABwAj(|*uu8?9oXYO8GV&Y%~Ww5tOSY9rMW=0DFba7O&M42X7-jxFX(r-|O)c2V-
zyfrerxZ&YFt9r^0gF}4i?iHpMkg1~%;#0A#zWx|tQ2)ku;!Se8Gyb~R9!oN*s*|H|
zD06t<m%Yl6n9r-AVEJAP!D=u&cy<=0SI+;NzLtHiV-!DJru9|~{l5Ea{;{O$2<u!(
z!Y9g9G50f@@RT0@{n;RD5;P6mi@{5m$xmo!Tfh4H^JiN;ixgS{UalgAk}POgTMS$D
z4ak?A^B*pjr<m2e%tS+qP+lo&u0pZE-``3#h!6g?Gg(}L?1@LPux=0Ppl7Vclw7a%
zaz{9;FAx-#jELGybnci-@}=zRGCd6{jWro#J^)V711{KjILF?~HRoY7g*Zi$qXc0$
zZV#DC*H$bE;b!vSHZWRQRAFZ1{m;YLh(;Zyf$DQ%59NOMGwtkF_<e9j;YCU>h5z*8
z+^DC%iJ<TgWZP40=(^qaOTyYgdC~LY28pWP4?l5Fms0nhneLfV$a#dkZVf@Dp_=^^
zrx?y*wsPo;N5*#RH|qHUm3n-JWj}k_pA=o^C(o<ECcmfLt=5{ZmPuLTv>IvBSx361
zgQynjJ74D=cXD=;wN`)qDYmEQrzc9ca_YH_!lX9H)Nm?#j;!TBSJYyRY4Es5LzSJh
zu`5UEo>~r(<1~HFq*K0$YU_kFN|x2)L~0yMiJ6B}`!(7CJVp8eBi5Bz;Yj^ofkgv^
zS`380z*~X|+_&}FYzF+iw&T)XbNYo!Bz0z!AU*cx`mmF}@f1k#lO;%!-=s@w0W2+f
zoI<kEbAFsuG0rd=kEN(=ZLjcCjfS>xSaL`<CbaUVC4enyDD9)La%WFO_FR-O+Br42
zG5@;!x>YsBbaFb;7C!Mi8o0mwjqAQkpZPv$C-yCv{=e)<d6#Kds8#6m1?L_DR`_B0
z_(FzRi<&<V#6}Fj>#f%>6mOgl=q08S7H1jh`g^Lx)QcRXBE#f5#<qB-Vq5a{OHPTW
z_*e`linv@D7Pa>zD5s&4I-*8T%-ho%=c$qpq<3y=Klzturl4mX*uJww9}eYin=w5M
zz^BtvgngUrm_{BU7k0<MCgWGqTq)K70#Jx=<*RTUq~bY4xoI>W<rGdtAaQB$;fP&8
zg(7FWDJ23Nke2y9)N&*dMg1<-7#q)t0niRr&%YcL>h<TjXa;H+$TvVygr)Wwrfu+_
z;>|MsL*mh>{SS%PE{0HR6OBtL*7JUSCwR7Jhv)6AZg2NfT)|pY>Zp`(E4Gw=F)jD(
zk0ipRb9Je;MQSh;qT$}U<Z;QPW7yAJ-ya9`9owOE1$yxoh*~WqPaI4SgXOcu+ZFto
zz0QwOH*SQ}f7VNPQdr-gVlno@xy|pCl8_Ez0iVBi5SZtY3Yd{c>*Y!3NAzLzR-f@m
zeUtkBJl>JMNhzhT%Ty!V1tLlBD(ipnbxpfenu%aVv)X>;ExEXhF5rOmX3u!v{6SG@
zuRzo@@Ngp3T`v%pE1@sC=Ts)j;r1CP9u<m>>pdgO-+re2ShKOY16w%f_@7TmmpjD(
zIaX$A_`*9Nq1+gs&OU(`fky$m|Kc-lQnWrR41Zw$v1615pQ78D&L^X<A4C19U%+Pa
zd41vdSL{eUKB_;iXD{I2(XLT?cZAPb__N=@$-*Be&J$+R5yrkVJwv>yyH40raTR&<
zTl%d89ZTQSyYp|4MB7dh>_3YI;+$q%K8oZ+k6qu|i(p>~4E3WsR)BwsiXj;15pQF;
zU4%j2>hZj}T*E^<^Vfq9($QX-8bZVbP0y(<h7zZ8vb?I@2k|d&SZ?=N_3B>C<2Z7p
z1w1u)crsP;A7s`CR$IV#7ux<_m6gOAAkcoB`A&|1X^8=F9{#_y1U>2#Sn2D*6peUw
zW-iFC49g!jrqlO6AX=|4W6t?qqYK%oRFc4k?L;9a>+=UO6O4Hcc&{6uA?oqk=4`;V
z&oczEc3#ze%;dD%ApiQci=WM9|3=TEZ!7Xv;BZHc28hg5D<DV~vt*J{tRzFQCP4zY
z_+VYpaxM(oVo2^`;Xjc-FfMHa-XK;YFo57fTwJ^_nS)9o5eF8!P-Bk1GhJb?mMp1<
zf^>Fr!o&Csm+{>osD&q#2$%NtUGTWwM)gC=BbeInE54Y$RSd9jQS`#BG4rIJrtmUH
z${QHaAiERp#-e;1#t}v^!THVRD+eRmhk(B_&c&;xZf5;E3*!`-WX-#V;Gdd9p=hx6
zCq?i`kv)ms<qWsw-CcRjD{5IJ9(t`u&)A~@b-4z}AK8P&WB)?U927JHI%eia?zlfO
z5sOYkgGK;)k4H(syQZtLI1bT>8s|xC%zM)83sUW7tKWQhpr1VUNdZ<swg0$!u+&Cv
zD)>E=q32YgiwEAJQLIKo!^cze0iQSnLC3ZB-L5uBU637?o~Xe9RRik$I1rz?f&O16
zCH{bU0jHNd(BTp}xza?NG%k2KMWLT4sN8e)@aXnW4caZYcn+^0U+JXe`f+0Hw}~e?
z*T2R(bKC<oj`dcbJ9{d6Q9}9e#l1tW6gQ#aaSI(w*J~$vbT8hStsd^`tPaGm0E*LN
z@yO+9FilxUh1F_eb7+)8asMbK^VG3wxj8Ixcm3-QGI2_|P408}RER&FWKvx`PshPI
zpW++6zJf|!$)FcV^nXKwOx@^5l2AhCNMjq^r!<n_e;X}kPBsQU;2~qbMClC!LZ_mh
zUW*}Jufz2BoJh7xrw=&AqN50U%*aWPH>Qy+phlh}StOaV@4~Dpd!2uNzD_=PvsB+e
z&c<mvOg#r5ITZUA>GHGXtSmqeJI0szJ;{&)@~oSN6T7p#gTv+;MYF5!-CT;M<aE}0
zo6Bk!YK=lX8&{n2;!V7Qw;9&mr7a<)(I*pfnsr(?9Nfo7M-|Wka>;3(-);G7BzKz<
zLhb$=^yUNe7HcM*fR2s8FlV(FyJEH1oB=8?A(@t}UhiU3OiktXPvD2Z8&ojR&2fL(
z?A^SbzHr;|0BVcWh73#oLAOK8K4w+F2o!tu0E5n*c7FKN_z=@K(5kq_6`+PR8{5YJ
za4JA=Vn(u~EEaW+D@7aP1ocHY!0|eS`YLr*YAmEnx2O6q$k%pu1k@O7wVgbPQnoln
zPei;XINb^{Ikx^teIcQtGy>)#e-FloP!eFgsX6Yd#TD5fxt{RaOpy+6uccyiFMs(O
zyl<f1=JMKNN|6nQ+n2{{4$ANNx7)UD9ChL{n6U1_I@lXfQdau`cIxmz${qjdH#e2r
zM!UW^`~;>xk_0lUXbKT+1QFuo*OAhY#6AL~m?!cw5R99#7B_3AM76@6!S59*-GsSL
z`J*0RaLqAjBjSA&4l_vGtk);FRKIgd&=Ot#+IVG)peW9P9=)4|jp~+GNHEsG?m?GW
z*<-PJ9xs3M1x|<@_dR8+ILD96T4{F^)uqPAVG*5|;*Qwi<-5F|F&e(c+YBs{ahS5E
zzZ)~&R+0C~1{wmB+s<Ey2&0fLaay^Lyy<+qpaw`5m|4Bpxok$MS#_&}%4T#>>Ui~C
zO?U9=Aiow{+^Az=HEKTQX0gx3R54Ig_ELJy`nmi-8X|~AZ*(DOHHVP3fV2iLFR!hE
zQ%|em3?@IhagK=<pl-a6#n<XoS`df{!v6(PaM~HGmIf^4@@V?{r#;MA!ee@r*H)@B
z?$O@VCIV<)R03wA86@%sPXQDvb`+YXsc~B4=Rr0L(5_~Dw86m`6t>8dic~3WuzY^G
zO)%SNO{R){d_`;S6=#+*UgiEk@ho#-Z_t@e^u1i6iIS7je?!Nq2_#{zB(5Z;21S3}
zYCjrtS>K!$iVwH4@5plXz7?Wby5~%yAJQ)uo0MfKi2Z&~6>x{>WTD$ysG1UXdhcH}
zQ)O>2IbAD}w7Rim05=-n-yBXg5VUSZf>J=L6l^hI1+G^ETjSHG*AA{GD;oYhO-g{s
zCM)?<R|mKxSt-dB{#WyPy6bCk$bifk`+Q>^_1edJZsj*HH(ag+UCQWaU~AfH6Ds?V
z1{hPUxIUKSr%2*{HsHmo)=OxXmsjIHsPV;&>BK7zoYhtAa2K-$t}NeNzs0n_&PvHg
zUlRGW)z~S9X7eZ^bu#Kxi!vuUBTpw*mH^YQ(V&<=WV)VE(-U{5xRQ#2yUwv;Cy|E?
z(Y#$WeIenQ{=V3Gd!+;|Y%fT+@ey~9)^eWr=j@u67R!DMhhudr`=Ig!H=o1}u`}ON
zUi4C@bi?a@A*xhEb2#zBKRoD2=>ORm8V|4qLKvu??kj|A@JXVYL%xH^`tdS20J6wP
zZt|GHyrg_~FJKy4g^0D9p+8y8|1nM|4;r`OabIH9-O$ZNaPg6>So7w-F_hg?(Q>tV
zWvKKR+zxLhe<reov*=tZVUy_DLCiA$9v^d;U#^Uip}hxt9K;s^^gL#_-p7BS{Xe@w
z46O6l=RIZw#KbnP>}Mh``Dtiqz+~m`Lvs%*Eq6XjBxSZ2y+8U{sFw7R$7L@J_DJN-
z!DvRSbI6w%^KB;MZi&&@28eZ+2e+ltH;s>fr1{$u-sg#*8j%}^_vRPYTAGz8O~8n>
zS}R6&iF0GBJ#WN)EtR9b)4Dy+H;(M-;4%KSvU&4Ns1@ynhXzdL!&v4-{u{#Wr$qQ#
z_*zf#@MsEt<b$$2E|qb`GpEj5Z7<{3%rAs$UZg<9(YH>57<Ol><UrM~mmSSnv7wKK
zS<Z9k!Wvz>$ES0u(Y`&ibad?O?9?9ZV4{bVytC}-XaZZCOErIS{3%PX0^S(jzZTT~
z$0=u4@V`zuB#SX!0Cq#f&@WQ>_9`9Qa`4SF#-AA=);1n2hY?t-Y<Yg)^EcyTHYg<@
zNMfZ$C>bni_Px)(yuMs9oY0@L%XM`7$+LCqZHkLSA=2a6BuXZCp|aHC;~zRs?DdNp
zynjNEjV3>ND{lT?B@ln52tl=Qymk}$c<*K?k<jW7c_sw33i=fn8Du2ZPicarTs7lC
zr-dfGGQZ)4oxbtcaH8w<lnU@rC{30d{2-Uq-l;EKnOg@131@;8=K8@}{aSPrYSkuB
zjIX|+1y@QLhf@D}hXIJ6CnS_iK~8x#Kf4UMxP#c4B&SU}_rG5G-+V`$(w~&fe_MEw
zJ~^8}TpstRPXkF<Jv;1Hm^`(%1pSF(On8^$Q>Uz_Wg6rZojkW$Rg)w1?P+<CiBi!f
zv~@D8${$N7o{tAkaXW5Wh0NQyZ$8#|uA2xpU6gmE&Rq*(ZQ>&sXX~*1RS2pB-{@R&
z*c5imCha=u<b&QZ=I)AD4OE21l*t|N)A<Ph#q)m^W-Zu%RhapycPC3;BTYoZjEU39
zFwB-gVTF^@;5O_KMCU3El>BO13E+_re_?AOo16BmaQYIj{8UO!!KwF2{E{?!U#T9}
z3BSV_3`ObuW3j_16jojKCshx@0_@KynfArG(x7g{)z*3FxmL)xd7scjl31BU$dTl6
zC`EOrtw1NE%>qbDWesNEnW=L66+Rn!zV|r*6Ns{w8DcCFR}crjWOgI&BPPnzy*UCf
z8WwHfIqutvxF7H=UMAya#gSp*={1z>M!s~c-5R`kZ^jjbSS!_isi|o@d!5$utzAu&
z%Amip4D+(K_0{Gj^^vk)AVxJ`_MD|<7i(s<Y?WAaSA=&*&SZ#a|DXmVKDA=!!D$1c
zpw~HDRiv4B%Lw_=&tHp?9!Z?deplQWre5$<Tg7Gqzfqn&u(p46`lska&C?VpX~ENi
zgro$91fSEB5p11`-GwY6H#8uwPjGP079ApM>}e&De$co^M#p(N&PV1BS^EX}9Qtf6
zxRvXmKinhxxMTc+jILc{FJXseJMo4=%gHH-6)93FTLim`7(-tr0&`0wDQ)QTBBlaC
z&q-<pW6xN9Y=g@hbaZog8uuP(Qo$rRhIsG>W*qgx-I7P#90x6-Yr?-66Xy9;X!>1f
zpJt2S<MQwSDvD;-Zf1mE>^QA;YXp_cblyh#-Y@g~<sd2mPr$Yt>syg47yIcP64EJq
zMx1Y^Z5N0Bvw<nN$NOU?=mUw&_G;lcao2GE?Vv~`K+Zqc?YAgJ={r7H0ZyM}fo)}X
zi>KZ1yN`C(Sqw#7urJsbQMt(a75dX)qaHRQLIf}6m>ySUehFh}%KGK#oRZfb7yOjk
zeqt|%6@&t(Q(Wag4Nuq^C9eS=<#5Zwtf2h|2OS@ko$uo;8_5k^awN|PqDrD|nc2ev
z*;)8XqOIDM1JQNyW6w5gjhelVo;UqG6P}dY_jvdC^v&1Y6bY{^)`hf}sKYNSpSP&D
z%e;G9rSabU&HeX(X0}(q4+mVu>Us_94ShGZ;_SsWN;n>hZNUUjDef1M%wf{~;|KcP
z-CYi9lU}U_-rd#`65Hi)LVs<vSA9^%hKCJKNJ`K4C!&0fg}FNGncH>XN&*&;(ER-T
zap$LJtE;QsH;nC6KJe2LPAmN!IV?lakH=A6GSR^}jgYM?vcX$v&~!Os8wtD1lNR0#
z$DzPq`+IZc7Hk?+D-e+f2;WU-5J@dHP25@tR0}#ok^1T?gr6u<Zj(Z%wT=<{FFX`a
zrh1;MIzneSuk!e}=5u{xHX5M)OXFrk_Os)gp9RhnoK=tDR{gFIkQWMGR1E^QA?<%{
zSDG@w{yUWx#0npW*v4)}S-WC=4;p_uRj&7XhL>yp$?SUufOn<mY6}S_M1750(E8S7
z=>M*t(hBhMKHb(GC^fu_6BkOk%qlKZm|49|7m$pn03l~+Trgs+nsGIFJCG#F%HnPX
zTj(Vd0=|rkxnG|<9+U>&c0HMm40<ej1#143h);mwyvDc5eLgFakY(-0`z}h=t_ZYC
zHV53cTEqiaGJaQP97Kf8kBsu$I3b)ySU=73rL8VX1nJ^1vg1zkwo*2_G|xFRRft?l
ztxnAX+FN#8wY(q#*?0YRUB=(v(nTBXM7asjx_8(V>2IH=j5CNJ+tWV{2maydu$kst
z#z$XsYmhh<RoRH~>!z#nzr?cGcS}#Ve)y_e!;;c|qk06h8X4olZoJPR*v>pdFta0n
z(VawZxYhAo7GgF6DIKkglPnm1tjSE5gv9gNDb4RUB23|MXU7hyC&yLYMuQ%(-(a#!
z((PoFDSdcSQO@%cLPcr9DnX>j@noy3*+#tiBU&O(2(%Pa0tphtNGG=9_C@wz&HWs$
zFYm90FhArcJ;Ta5Ss0S{NovaMqgWXV@0&eLqWccw&!0cj-)b1BeUayK-<?(Fwxqm*
zCk8_g27;i#?HTsSQV9{q?)r^G)#O{C&Z{@%dGEdOyl)@rt?6sVTynt~A-}v^;A%B@
z*?f&|AtNno+Feie75N^f5RbO6UvIvd8+jn45S4?0(6m3|Xo#llv&!o|sJfW!)$i>e
zwJFT?z=ot0>ouvEA?o$E9|vxH(jw3qC``>4ezk!c8m`m*9@k%j<3Qp^a0B|$-udg>
zwHJqqh_%`(m)NRK607he2=oU}BY?DPwSMI{ZcT5meTpYK*sG$fl3yz^^1EtuPCP4~
zDr|&8=@9kg1Sr1Nu*oUUKfz)asCZx4o(2tX-FG7@<9mI_De^A2GOtGkh?1xXxo%<Z
z`1;rEKz3l-yeaudZd4i}8+wVqWwk%wa0GY_K2GM`mPN3cY7WvjYO%_qOBE=`umAN+
z#QBs+A%&l9jlI%EF)5J8V<MR2HoMH?vHr;Uqw6PvB#uo6;7@wLc%P^N8UfrxiH2M{
zX&(wb&7Z#783CKFAUz+ar&{S*Uco~+?l7c3ySeKUbg*?JL4-S9PuziQX|vKH22w6*
z+lbZoK20V`e&98!_c^oEJ4y{OO7ku9E(DAP7B!oH=KSp+zyPdOo{N%x;-Xt5==HDN
zsCn=Q^vD9D7Mf&L_OROVpp=$AY;xGKNfPDuGrjwDdwrpGwiMTUil3}a9l;_LaTeBL
zas20K^;<UtF>86z6);wB3kI7A5cQZ`#=CCR<qgJfA&*V#kNc<N41>x+YTF0NN20l>
z772xe<X3mshg_iSyt3q}q#dAFQbar}Ehr#~@|*9CT@^5I8H-N7Uvr6hA6txGiWBAf
z9;`h3yd^N9ia<nfWr)&8I@XUoWd8!8HVZEE<`+i?#wR}x(_*vV;?+>f9ND?YHbx8B
zp{~NuGhdSy@Cjr8vG3yGaK5*#f2k9>>1n~LC-gaONfj;?wVR)}^1CGPu}7BI2ij*V
z&xJRTPsp5-ms1gIWj7=#RT+#L_J1s!ekFn!l(1+tyt+88<(gCHv_4jCCU8z9E{YI)
z3sxO+tX<4PC1vZZhT_WKGI7QixV3kKt_93845l;2Tf9qVMn-uAAA;HRUNRygw6v`?
zC{VngGBBaB8wcVWsFd-qcNIa;uDPaO{|EWz{x9+c3Ux~IO$SQT;mT+7fU9v<He<Q%
z!-GZ?3w7&Tq#McYr2`2ixD$mLBH5%h^|(;FxPTQ$+J_>JEJ$zoqier2J_zAv9fm6l
zGvm{R{dsg4q^~YBQu)h~Hxx)ck>T_P7fJ^yygqpfS4B8|c|i^<b;v(dsCb|;0f>n6
z$6z}JSdo0-dt5ihSG#4(=g`!lHU+GB*W34hT071bG~22G7L*-?pC=(%sH<i#c}K1U
z=+Z1~H?B0k>L-OMIe2g^K^4Ob=AxCOwTR@wQH?eT+q}qf6MIKFftszwI54%#QjXo1
zcN&}^tEO`7pG76ca306QrReE!qE5avXd)=1;#F>&gkq7o{O%F@4Ee9~7NsR_8@}q8
zg1f0Ggq!c<&%`_K<Ta`aN6SoAPA_ZFGe8-;m-=rOx;eXt*^qzo3zj_8t*oDq%GR$J
zV^F2@ccD^h+?EiBK4UA0oYYHl`RxI$b=8bK2wVvaGGRCr1DU@QjulTHp&;bRyxDj(
zl&E3#8K`e&f7iY*+Wkr2VE^-?#k>;bPm9NX8bUW%y3geNVX=78gHX%Z0mL`dn)!5=
zdYktf-3E;gwr>f)enhaS?-QvxBn0_+dbKFPa-}`RPQtLs=dgWJETL<#LIC$ysPzBm
zZH@o0Z>xS#IU$R-v&o-hv{z*!5!{K4noCPdsQfhg-YO=H(BZRzM3(NKy2kz`uJB_P
zZu3zHGCYo%?sWZRO-4MXMU%of^?x2+cd^l*o<E{1j~I2On;tD1e&U_`<+lFb)R<n*
zsu`we`i*NQoNw>#B^r$&x2$Qd!XxKy4S&T-%qK_++Y@4B7unh=V-^uYQc7O_*XQeL
z;}CYF!YwS=T^z)gdH#v614#B=%l(?9t=Ql0zEW=+&sp<Et$!Hzqv50P4_1h*jOW^A
zcNIMO{<kQ?o@RZd;w!j9b%ihck+#*&d8`xqvT;;!ju{z``TQ#+a58<ZpG*}_84+)>
zq>H~y3N{vvfZhiAj^sOUzZHBd_OaXTUU!i6k8M|MLl&0>n<~;PBC!vFTZyRe2CSZ@
zH}ofozmBlVoc)DSAj7gT84(^HF6jimkzO-pNuskvdLCPixZ<^V=4mtwylcX<nR%%}
zKfrZ2c<^}an;g`oq7@eCkbcnsjBVU~!OlKmEa8zb!o-G(oFVzE(H+c+r<4+Y<QV0&
zbd6{hQ2$o{dv^BP!xVwTWhH!b?V(aWk_B~xv5L1W=(@DDrLW$xu_<b^ec$(OY5}!u
zO>!~JQ~yk$EdvimAzTueiOei;w3zM{jHNWWQ)XR%;e@K1Jz|^&Z}lSvxe4pG1POb<
z-Z-Wi00v?(M)P=14?k9>bEW8AHuFyv%_1YC$$hmE)1dnsZ&LKTUq!pToL1<z6cf+Q
zt#p88AUMB{b~)@z=skfrPb5Ig`}KTY&QRRpGs-RvzG<FM{iE|itdYBWPF9#q&tuGK
zD2v{(n1!)X21g%2@7Z4M-@uouFuVpn(KQHw6&#>xC_CskHN2qS9c_Ij*zh}KxaqIT
zx|P;gz4hzgW*>f|>rhrtChNG|uZhjskLSeoAacm$hm<TmwS731rQlTN`0~OOT!-X#
zKBXflphyXM9pwbL<ef7Sk`J|~q<eoL4z*$bdMTimM{1oI@zt&`mL_sar_zvVFdYAN
zi+*lsS%R7B$9_d%l#5DXLG-ry%Fb5*`@1w7wLS15&$fAT*aYY5)5vlo$@$-&%|vQ#
zdv=4@s>TK{8>%}7%|aZS;xKF;rS{Lynzs;Wsd}TBE$1TH*ul^f@Zw_n!8f$_-zQxn
z>N4O(KuQnQ_<?Ej%H-09PXV;nCJu%^8%X$>sck75aHBhxWxNq9)~;4*+%B9v6?SX|
zHc@5AvW3td45ExBb$Ez+#+EF3-&xNjcx`ImD7;D<{{78&?{Mr1p_^h6zuHV$fkBgj
z=TkY#D}S)thonFu*kuBP1gW^a7R0YxdS>GHRg44%Nkppf7=MOzf#*iawJQ$=6T{Jm
zBsg_I*7&1J;M{z#owfa1XLqJ(_w;+zvmB~js`&DGvS_~R_axLTF8O&rLv~g@o)mRE
z<WJnRN;Ros>EAKO8h8^YRi;(Dt-nN}uX-%GwQ!kyQOVlA+9N)vR+__97x6}UJHPqD
z^j3a!$naUvt@UNJB4*OKZ%_GDdn#FnU4owHt-Jxf36oK0!h2^hyw28IM$P3QQg)4!
z29<+)gEy1K>fJmGai76>rpV-23hR~1)|1Yy{I8hxQD2@*=jj<D%z7gE)FHH5$Ajbc
z`3HZxSXFu*ft%A?RkU|K$cl*m(t-6bOh3qw=YB8YVzXO3?2pzDwXN7`L;?~;P1*d@
z>D?yBuDK}dvvls+s@Lr}`hjx;IfMA<WQ~qJsZrL=l{-`A;YrHv;7ERl2CA6tW*eME
zJw8|T(<Wa5H%3l04(q!tqMG_o7Z&5<D%qR>9RFEDzc|_*Fj0on5lxnNOS&%?QVXkd
zyp0$BD3I%fqBgxteWLfcr}3;Qb&>mx?!D9M0X??sWE0<V)AX6+;>R>#GXu7?esg;T
za2<J#9fe|;Zew|C)LJPdp;fl4P>?>26uJ%gik>%__!$ZID9^oOyzezH?xGlWXVtZ+
z9~73K>}(J4FW9;XE0ep*@ix{MFOhwCPWdlxJDyqJuLX9*#|Tl=)&B0^uWPE_PL2_6
zP|ITb#DF$T^1{|!L2|kg)xhPpdDSl{Am46S)li9*(l{`}z`@UxV^QXh!M8(pcmV7i
z6G1Q|c!|5YMZRRe7BI)Kj0yT-qtppn>{wKq1~;%%=6w7|!A;64Nf~%7QDtA~+psgB
zKn8#@<t3@8kguCNO44&lVm75sOxPdb!Y2n=U|#eJ?8#sS_Dcer8F)(7N$d3`lj0=k
z#M-|--ze!0#rl~xe!~lst1nQqB1sd_#5XYfmL&d(R~EdM5SPZn<%a`mmj7R=C^YKb
zo2!${ow6#6Yb8mhymh*^o}gzosQsXm7z#>Km^Jo3Qi|!D&OO&A&l+Wp1I6&ilcfW|
z7g_3@YMCMAW~HX$TUASVv>qK=`Vxl<LusNp4WVy-As>->6M_(yGKI)O+-}X8aK8I#
zb&CO`uT;N*nK6`6)#G6C!L49?j5k}Vl*%ot(-+V1=|$ag1RgD?^+&%}G$c25lWn?5
z@Hd1|*)4{pycf6sGtMwDrQF|oNCf|NywoS{IY#Gi_t^BYUQAhY>G?}j_L9lq&tp{1
ziHLO={aS@;!h#}cQmvCn?LEU39mHYY>BxWiGiVy{nGzud-%jt2<DH@InSbn1NMH2I
zyXj^!(rtmfAcyfn7$Qi^W4MU^hjOt;t_5Aq^nT*STN-&v?O(p2^wvsi-AOb5$7t|I
z<A03?$hG)9=Lu+i<5bA)4!|2AbigG!LXq_G@7U`TZ8=34)uOKr)j8E_UHeg&68tvT
zpGty?)sUvWI5?{=bHM}g3g7Z@rF`kzjfY|~W9YJxZ`4Mu0j%D4idp;Bk7)`ezZZmk
zFNEtoC5gC<DaE}}!aq{rhZp!509CQxtgHQWJFdf~D{iJ~CwNN>D2qN{<!Rag8pJEM
z^Qp3}4NCq;Klp{B_9rnvxyJ1?FRgGWBcTDtc(X6Tlj2AQD53=(?K3X7zXfLbk(bB2
zM4}BZy<NfFu;Lp=_&bTL-rg^^mj*kG{gUXd9zOBM7)P%khjWG$HRkO;lwE)b+kIF5
zY2I;Hejbcv4X)iz4_ieRBAT;#*#ZNB>cM53Og0(fpZxwtAl6eF`coIo{h8ZI_9R^*
zkzpa4;Hcg8|3~1@{zu@)lG4W2e_~~u`~6ovXGY3LFYY(pD4>Nn6_{+Te<oq~d?6$y
zWoCuwm`yxCFAc|~+S%DXR5MCj`Ql6??i<oE9Cz&+R1OlqFr$uG=P0i<B3od=pgz%h
z_|kTji);BLq|0+-IQ{>%%1p-;5e+!HU^DO?^merZ4yO-oZUFLtGciB?SDZ;2#G2<#
zSN&8qBQx`*N!}Kgo5p&7JOlM<M|QR-VXKD7>4)I0&uqXJ@DpF1_w<dUq_(LAuT*~C
z=MgsKZ=NYgA|cDwYx1(YC)~Ulx78}48I{|sUCX8<3xTGcEg!n`@lM&}f~Ciw3!Gp=
zwOX^esdqss-cyZYlC1TReDFr)n{)<XqH_BJol-8IUb&e_`dPr$u_b|6`(mk4TjO_)
zL=BPpTJ~3H9vu?Tp`f`1EKNM$%j6b>cD=4-FZoPkL@HQ-IxbT5KHOfPw=4-y3sRti
zqVedlq5CzL#29PCuZ0M~kdCNVL>si`VZ5bzq~t{5Gfrl!y|Z=Pg^DrmDu3hOhz2Eh
zxYY`cXpmA0l7;Ee)PV8wQ*jDz^!^{@_pg4xKs1A&*-E_b<()l!%`RA-Ov0pvQ7m15
z?%HiYVGZtb7$JSyJGW4Jb&QNZ+uKY9{Dqp)t|d3%VzwL03*Gaibo&9bkXvCpSZ*(~
zI9J&HkE{0Azx%1i$QC5BoGm1^j|~Jw^Xj9oiK}<U-%T9S!jme}8)P#{8_uGf;foTp
z^=|PmQ}13{C5^ju_hHs@`1jr2tYhi6SylvSeYnM86Up&ew`;BCc{XhN%|pBm%A!as
z9?&BQEakg9^82IG7lWugtGgrj71QM}d3Z}_MhjZe`j8GJ{DQQ|v{&~<&IU8tNetB@
z5jUB+!&cv4Jxb}B(Lhyb>4+ak2cLDqmR?aMAW{TWjDAeF7+8qtmnl0wY5UA*u<7(Q
zhG6FVt9ZwEhom-_TC@)nBN&fV4g{f{Gk+(HEKN@kX_G#pz>pH+n`qwX@>?-2e+l@;
zw|i%<`jj!X{yH^?_<mQyppjxnvhhpS7GKS?aZ6sRJ_X5EN35oSEOZy=|1d&Ce@9Kr
zQ2GX5i*ooVZIuvD2vkWObq2dx=uHTJ+I~O6{FKi|f(t!ZyvoJm1aDFF-K$2Q-;~N~
zXFo$WE6Qsq82Kc%2ZR*tmQnq70Dozuj3u(3k{5xPEy(~JUDCNyp--MZ4FQ^#IgkM(
z%a=iRtPDseXnrO)U9R^Rer8|UAsa)Q!tY3G!}6%ca-zEx{91%eoPmBlBuX(RRFYrJ
z=aiG3Ux+@bDvi&64b-YUBkH0O^U*Z5=jQtJ^aw$(G1^-rShUA$<M;1;vKswBI!J;f
z5W6J<z)k{knreP%97HOWZVS$n1ZI<5o3XrZKHKsM3Hm~|w7{Zh-qR}(0CErC<rwvA
z&KUi|&*i>8lAUdD6=kpMxELei<VWe~uS$Hu(eh~@tT)jc|JNlDMPSrUd^WbCL21vF
zOZXgYF3Ey!4cH`<+4t(04)9t<eF@*)jLWpySWVbFrDAn-N)3@M6lCaZEuT}f$fZ8A
z5ud1itT)CQ^QL2)HS`&>!H~T%rb!}`#rPaXVY=%cX;N1Ek7}*Q6<>Rx%Ecc`Z-v6N
zIA{>$i&<HPiQ1boyI1b%Z`6KfaZwcVv*I4EwS3mc-8*AKt_8i0EWRT#<U$&zo%t!u
z{dqD`oHnuUrO2g<65`$n>Lw;8Z}Nhh-Yb<js;idtfTmNbH|uG-=Ufi9aR<}+oR2dV
zw;%nUKtAr3X_BFG^7PYNB2>Xa2{7Bn(4*|)eQZis$EmjYk+>=gF2_Y*iD76FID%~U
zmwioaZB0B!?XBD($r|d9`jBZ2A|yBLj9dH>KXb`Lu?!Mo7C9pH1h%#4<7}aP=eG<N
z&PjnZQWc{q7>Xo6;az<yv*%(s8NN|62FQdj^-45gU%OXR)p)bZo<C9cmVSaD2lgeC
zKpm9@^p6F06~560Zw(^@udVx0&Ndc30ChGRQN?g*sESH4RZp>kgJ%8C>wDi}0P4X$
zW}sFZV2~ht#(-8&P%dK@c<XNj?CPr<8-*qX`(!ebm``8@0<P94?SdTtW&yYs16Ijt
zZL}K|T;7~H(+C#oq@64RRmA+KE9zMp-kilFk_wr+&1OT73_FJc)faM9ka?X>VK(dz
zCfrtKBqvtH2_#hRhqDyxipf0e{DQ_EKB$VYJ||z`9lR`8!!yc^6`;9v>6JcbjlN$l
zd%d*}HsG-w4USCsKX1S6-KpQ~qHNbMY|BUcB*o4#5z3Vf_Ge;Yj2SJaNeaTM3~~&-
zl`F(^Vs6zZCt0vxIF>8P%e2Du`lem3F8vq+NwqxI=j4%+Vz+f~qIL~B{Tr^qr|j5M
z?&Jhy)Aeu3)lO5!(sJ@6Oi)@bD}K1+jjL$ewUTDKL!0szDD5@M&0s_fF3=#tzs9fO
z>{qzPqfpD+*))vTZN#uz|HSh5IQRxjAFRk169iV>lQA?=ZJx_%dJ&#VHT_*8W>oYZ
zQzuX7nX6k<HN3ly)6Hxf(i40JSGf)=(-Fqi93$VTd9{nPI{A@c(L<igY}?cMO#bp?
zyM4dPB7C#Zf}%=F2$ede;JC9Jn`h?t!Ig+%d|HM5@2FuD=d<%dfNYpHqqpy6wRaL1
zFGOIi)8iA*ZT&~1Ttqr=&&hxx)Y34c*j!&;9AqB8T>>VwhltOkqodgRTnCDt*b#!X
z>|b2!sOab)Hk!Sqer19&OM(5oAQY#*IrCIB_kzqHe#)gTU_Y%y91oSM3feGgbX*7n
z0k1m{C`qE3>IpMMlCrc1*<y}+!!Ae^rDu0E7x}^OfKZH)BP&TMCnsm5G<cTG^qQWA
z2bs-%(pu?ZV{o<tV~?JpUM-b~l`KjqiuA#!4(f-D`bcw4vNyi|kK1VbS^6IE;%g&N
zr7`LTS5&@n`>o>7zbQHo&x(z7bWNHAi_6O8|J6s81gM#Akf{k@yu*)2QJ>V;XYAyw
zpj2l`5dLgqyp37~1CC}r<~YoNEjdpA)g~0`-Kqm@H9Akffo|N#y!Zo>npf5ic%;|4
z0k(by70ooegx`Xq=L7LNGdop##QsV?ZlvwVBGqeq(K`tzuh|RL`YR+tBBEWOBBvsQ
z(SQCnIxf3{n{fR#nuT&2FQzL;r7ayv1tX7KgkE?+^l?ZRK8ogN{MN#NtMzC72@V?P
z8kY6l(ep)A^Hlk)OC&+cft_09`m3TJb%mLep%hCD9l_Bh%>K;5LW(QYX*DX!M*E+D
zJ^aZN@+kRUX_-AYlwbG<d{#;qsy@BW4c-t+il2!cxF!B(^>z|>B)-84o_g<}G)D$$
zMK|M69@u{7XhWtyKj%GC<fn-?V&N6VX{i%>|7KuKX77mz+@}{y)Q|oCeT2_)OD-0?
zzFNr#ShTaB10Cu9ovhER8E)8`ChgV9COVh$aR|cCAD^fM)L9T~(H;{cASp6K$0K=>
zXvU<OV1ygc1_Zs0kHO+Uw|HV0KmlR(BQ}YucGVWcgBB?l^>LQ({~K`gaJ#$*w@W{4
z*-d^oD3!pPlarh3$oJ15^}WTmiRyeGIkxmh>GrgDXOJ~dYqlHI5xqy!S<T!C!@oK{
ztfum<`WANVe=kd}_L;D|eI9?SU{2q?G_;gs$TUTDyFtDjD0sXvY_6s%dK5?)L~>%?
z_x`P$)kXJK?l?!i_&dqz;r2G?5EwHrk=Yk`slU$ewHH(iJ8%_;AK<AsqqT1LfudT-
ze8HBBHQ~I*>S-XDIr??%Une~0>q_;9DM`n=&1{idwDZS(Id9{P){WC<PvdXFFRM;~
z(=ulQ*sd~t%wG68$t!-<+Ku6`ECS!>AJU_sn25BEgG<o{MX;BWa6(qpzQ{LwzY?@L
z`vlZh+W&L_>W!JN<UJ`{sRB|RM#Q_bSweE_zqGQ<bPAdLd>yIFRA9wtGc66dFK=Mz
zx=}JTY&=TLgwuIpr@!n8A?0^Rh70SKF>5;$<l7FdYiExU2{g;Km-^?gT!F<(p6#Su
zqWzi|r*fG?n`@4LXPI~^jX}&H2x?A72v%;$P>u8SK*oT$r6f^I=7x5J3j|_lXc&U(
z(!>0Mp=VMx`c{-ima*gl8L(@3M71Y76(*gOV5(m$sj(U&opX2X`6XjY>JPkm*o?O{
zPJcz`@QI^l<F~}138QO1NJLD~r_?{ExdhPrUi~f<VkONNzl7L**|?;Yd@_`dXB(XG
zM1(AO*G4>wA))g4%5CD1?@xRsZPt^VkChT;Ny+%Flt8gXL$dxGLPR-Xm@6KuRNwHO
zPsuTzz|(Cczv2*+E2(jD{^63?`~SNnjJ|l`fzrp%dmR4Id_wwDq}g$N5)vj(wI_~c
zq$FSuc@LL_uR|JyBpK!nd)dcOeT8tKB%b#AD`EZsY6_ky%S!Z+6!CFOo2hxS4~8WZ
z&O)Wo;5d0NHJN!=D^EG0aSgO%t*!|(T6pT%@>?W7-x2R6h5n6;n(1tRJQFfI?q6AE
zBoEH31Vp|1R*2nqZ9fa@a`C(o`dcl%Je5Gja^cfg3B?KC+?E4RNB!Tj*5gC9#Y%1m
zsU>(nzjTlRp3DaM9j)ITu!P^l{4L_{%Pfn&<X?l7?~R)AGZnuNd=aInw(@)XHBwR;
zPu)e(b(>B55Gy!PjnzCsF|>Ee@W_Y(iBTP!e(+$E@9y&YrtQ*v_&$5xt^3BQU6-`y
ze&^PjA<m=v;wu{dH{#l`!LzUJ3^)CrrD}CbXi7WrN5^Thg1)a1&NCjFD-k%zB-)d@
zzfHhYE^V%^4}bjqd&v9__g|qKB=ZpSyTB5)FF`yT*k?~ux-UI8Y;EW)THUuLSrbH8
zgNwY*HC5tST{X8)MNQf~Dxg?&l0;QmHMC~!amO6<F{FHtP;BA|>;ZvI@eTafk3db7
zTbq0~PfwiX$59l5Pi)b{95AiX5Gq92p#a3EW78|<UjiQRGjC8TK;nnr8ivRI?<)FA
z?GjSq#vRjHymnf;q|&TRpF9VqiR+ummWkOfJa=uySt1{dAgVLfZ(nJasOibm%6D?T
zfB(UGYj#D@?Qb;egjUC*H<w?RGjgE2^Xh<1`P`S@0>jR(Odwp1HKRV*RJx44Zl~Yv
zEq7uea&PPQebP*m9lHloSsZc?A-fv!)yamn>A8FlSA7euFI1X(<2h;+2FExCwLC{W
zH<y)+*(A4|!#n@<2>~WD>{vR&|A)1=4y$t8`alIy2?<3&KuWq51f-WBARr;#NH++J
zkOoCSk?s!Z?hXOz?go(t0bwm_QFkuf?z6vh&V9b`KF|GUZQQWlIo~nI96f%6U?z$Y
zr8L{A-RyLor~Oo|QePxPp0B~X>=yCpw15e<0e7vDe5R*-xx!<6k}>tB7nAgkxeZOb
zZ5g6OGWMWF&x@sWYQIUQI_Fw;8r%)E8HsS;?7zEm(qKYKNUuM|Apt~BT4nY&G7T5s
zFV`ezrp9#GJ0<viX9Fh-F8g*M=Hwl52;1OM1<ShR!mVw^I7ulUM*3CMQiYN>0Z<by
zGUw<JI?t8V7I019X<(uK@WafVo>jZ$=a>&1TqYPFXhFR+3q(ZQr{^c)^A;XK$t*6}
zR2Mwnx<+KHgymK7fZ7l#UXz!g8PK9vjGpUmS6hg~YA><3bNs{th_mT~mRW&{!UQh~
zJFMYoR!uryIY<h<{{9+9pN&E-B#Gf5nXrJQ%=1-TYk#6lvM0i7P(&aO8iF6!k#VBM
z8;WYkcrZ2nSQT|2q{7L;6lfx~lI3=~&4{y5vcA|ZZ3;sJoX)_natIiN$7cR{SJ?hQ
z2vBeazrHt*qN)006aWAQEkVY&2E{<YoWJ^17Y8%la(&lsU{P{p;v07i8h!t>Ly;9k
zRN0N-E4oq)ekW0^doQ0WAkw4GL3yZJm35-Jwdnz3xhvcVS{uLeqU8nfi_mC4iXlsV
z?7qyrquP4*nt|!E_LgNK?)zNAj^KkH^fzI<hdN)orE$M+E_+EVIDO3^DjG5sJKJPP
zwk2Eq#)S8EscdTIPUlyR9ZRE)_n}tyW?&5MnDzPN2d>MvOiWD5vXjH_i??ldaiNHq
ziNlt=S|>jphwpy#=d_s@m=cl$Rpr18Ysl{#%Ts+-Yj1X)RAWW4(o)^W=YHXL+G~?w
zbhb|yF6!6glM{?<_tRGBq-;_3hcKxTEa4iohJ&3FZ+@{oBy=}9{(4k#_Pp}x=ov3r
zsIcF4RMDkh-{|8W%QOU=M4S##B4Z%?Q1YnuM<~x6V74^ky+=m2nRRVS==Nh(8T@?Q
zZ;14?-o3h4rdubh_IhM<xO0v&k;-}cEyMjD$D5?(MZ0s}D+&p`Px+;Yq_UVZUAEf=
zMF-=3_7qOph!v<QNLA^g%ipdN1+HDV$w%}P&vdQC5(YHE^m||Ly=HUQ)<0xyNKtU<
zQ~u04oS+;qDkR8`p~OIMFZ`lJ_|Cb|&@n6>v{oTYvE&Mv>FWTD;6_lO(_4H9!ci)m
zqdww86v=h>q&vldJUKFuS^(dOnM{f}=bq1s42IWqhSxf5VZtv38dM5<y&{#qMj$0o
z#X#uIPL9vTT-Vg)bOkzoiZ$KmHndk_@T3~e)*`#HPvB)CuKHX|Vlkr#SM~z>E`z_`
z+z{X>FEG;u#-j14bf^I=yhkU|jBih6V@tv|jbF19q!D|m;(W_n5Z`5Mc!hu|AjDcc
zURvJvP=89=cyTs1qECy+@9Bi-<xDnJE!yk_xjQM`1)Y@lxeV_O^U@0h9BhH;MgB@&
zblH>e?$5l4$KliT#YraPmJHt@S^ynT!n^(?z4vwAmS!oZ@jZZL!uc+umu~f1Da%;K
zxaf3>J*((7W^YsUm(=tpLIc4}pSQah8#vLcVLx{iwFK-@7E`;E)t94hb=G=rkdMo7
zYJZ~~BZ_{>_M&GMPk-u1VHMS?dtrbF3r6R|WWRCpZ#jwdVn-?q3b`#piil2*m#^qS
zL*qv>y77YEB=WbXtE~R#%xt~|g|G1R>qu(9YrePtptQ2m#9m_Adv|Kuo=o{T4RxQx
zmzyv7@lP#;;9hIZxrxy;Z!}8M5_=lZEE#cNBPWFntoBENz-s+MVdVoEkVw3%_HlS^
z&*y$-#HwVr_3PJ^(dYhffKzw<@jFs1)~_x{K}`%pV`F2lL*LuF(;nLAoZxC?BU*8V
z@7E2JjhwBo^h7&!)F=A;qbudB-KnzPYaRdsSF=OQtp5dTUQL)Vl<4S{z(#G>Pi%py
zdS^~#Tttz%LS{D|RDoEHCvc&(ue<H}6cW2k7_(GX`{v+E8K^?9;x8SegdNBpXnfAA
zoX@{O5#)m4e7V9qyBukZ6=P&wP(=4bBakRjG8|6vUH^cBA_!oLtU?_F6M;Fm<WF-x
z8ReBfgF=;EVqbKvlSDh~Nn@V+yT_+)U(1(x9-V%ZF??hHb*Y5x&1MOO#^qksuhx@;
zZ){&ZncdwN#9puUnfzi4y`{s3!JhE*P6)`*F}D#ssV|d(yayiN`Y2G+Edb@kp`)E2
zt{(=u4L8u0+F58~zgFN+>_uPx>BXn^ST(0~g{*zLmv1kG5BGm{KCRrJy(Q<~cb)Q1
zFR)MqsLr%6xnqY?J?Ii8U(VioskReb#?wOEtQdro<75A!ka&1~bFjZ3-{z4gH09bb
z$#C=ad9JzJ@YG!ft3|~_k?C>?v{EM3QQ{HA+M{cBR>J*m)-HW?Y<I62+>})&zt_3q
z|DhH7b!w=1muYUj7t~pN)UG@3Wl5uwxxgE%B{gUZ2`essq{k7Y;(qs+ysRl|=nj?v
z)$98x-`<L(n8Y!pchT}veLD2K2$jVUIY7@B;}%F&YWwCz&y&i+MJ0K`!gX_Bj9F4H
zX}PI4P3=xNkxb#fPa}UIIcs8Nz$ScmK{v+h$JhiiX9T1{Jyt$SXBuJVKs*Xaf3&u<
zyiv-1D+xcz#hn;=FL9|qWD{W6{ByRO<C7Mz-H*Cw3%2yz=ej2b<L`7QVNW#L16-7+
zpP21gHQ9vHt6E#H$dLi1*`jVa+2~E0{Ef-Zbw#AdxZqVa<QYB@KxUHR(--#!%TmAS
zvIM17EFiY9cQ9Hc0}&k95g@pqoX=}XP8l$*bqX_&vflINiuVKjW&5~f@~JEJj&8ll
zm`6DD=x6MZyPK0<-e}BK;*HTgJW1w;S7L<qkiQuE+fDimDFx!-3|2{5D=pCTG<A%&
z&Q-Lk?KQh=A{gCO8xNL6H6Z4Ep>B}!QC%L?wowndl4v}a@_dqY_uf4;sUmUD)YR0J
zlY}aplh-=nrs+$E8Jv^w+R+?o2iaNz7t;%b`$>tmf-*n|G^ploNXG+l#<^=#LA2*w
zHuDc$4}T6h*%Zq`UGG6(wFgt+qGIp+3~MV)OGAAKpN@!_B*8bwq(krYRTowi>X~<h
z*;XA0>OJ7md@zG_6ng*P9EI~U*gzOF#Pr&N8w@*IP<redZ#(>k<2V0153Jm5LFw%W
ztxd52!pI8gPYTx!X=z=C9k5Z<vF^X2t|+I<f?pSX$6}=wn1SUM+*Hd0iJVoxAuSaO
zVZ?w9_?uY&i82(|>e?HzQEt&(H>?=CZYajtq^f&!^BU8X)(CZzra++3Nu>lN>VEh)
zOHecR2_UIyD?=xp(Z7i?YcZ@uU#v|7WStw|QN2r-4M7n2KA(N|M-1HC;#Py{k`?A-
zJ|A&34n(iX($mv>o5#iUu0I999jJpol@w)zG;^~u9>=hI1^26NzxX(eV;z%lE0$O@
ziUFh$2Q8Q~P+q>yd`R{zXL=mk`gNQ<EvFb8JxFZg<A55|;IY2%dGqu~=kFUy<6o@-
zCa$I6etY^_EV2yPN9)B}#4q0cRjUVlXTM(F{c7}GsqNWJE%D<NnKP5XPv%;RX(2@b
zZa}rDs542h?wS{iR`nxHLKcSf$1Z2bCD%mKFgPeEj2@wA@1kiuRC#KU`Vm6@UAnw4
zo`)UOEnat_yL<Y;n+1a=XMj!Oh`Zo;3Bw!mk#AlN-Cq(vP&%58OC|P!w9JdJ(2RCS
zqiL8WsPQQ8A&`=WT;tK786ncgOfL_7GDUkUgfq#1<S2E!Ljv+K6$x=5@dx4n^uD&D
zYhZ<lz0Uu@Oc>jzVl>IT@#Uww;N$9DJVSfiQ10U*_~gdYWMc=M^HpWoXO6Nue%}Mq
zn>?y!*NW5*u5v4F0;@zNLBo}aPW+?!Vb?~ZOD{)J)ZuPw?P{gg3w5jnNi>nKq*{?Z
znPnnkx6dZ`5!~zk#J50L<TE90nIy<P)?>P)_8e&wGlxED9o#SJ`Ss%hnir^r6GE^|
z1jHI)Ok01%B#s72h}e0`f*Z0-b+4e~?hI?2%ZDBU@tM@^?+H|T-f>#AAd9>I$T&|&
z_<%dcU~o71lG8Iku6o#V^~rf{{W(ibY1%}(PUm;J%lx%5xtx`&YIWjsUd{|1_iis1
z{U#2cI$wncEAXoj07x>3XA3`BFz6Qu3=_^d2?l^1J;p4HeTh;Pk@q1{1qRlVl(=o*
z!Y)8aJ^-jn=?@wVUwC~1wEC;8EaxxCu%DA<y(kvp$MdcSsg61BNl&b2?}Nhgr5uNq
zE?aCxgQ(ASz?s+nWm#>oJ8+vT6+mnKXG=5ky>$^FyFxvstM8OTadZ5xJ`U9?Y0@B(
zOorQfeXTiC=*F4Gnn=GUPkSFEr*2B&mH+V;n_jc9lYO|`^V%hzN@|1YPq!+OMp1S)
z1J%kDz>p?jM|C=E2^qdIY%&A#8$K4#aumE#Z=gA{Fp85vV|^p0Q?^RgO7u}*_<Cfk
z6lf^te45*MFZyN3CW=DmF<u0%PvONp>+DcXYMpl-mQ(9vyGDxZTQv8wpi&=BK!eDm
ztnk7Rhz5+O$@sQ<Dqjjgr1OMb+u)(Py^+%5Vvp(VSlHb=uMF?7+wKZ~U%Qxk)sRjV
zV+{+%W0@mQzb^mj@Z+5E(VMSfucj8`nyE_IXtu`myjbG0rEyZ>t#-^3X77d)PF0(V
z;171d!0$r;`>Aj9<I-M%x^_t31o}1cWKs~?BlJ>(tG^C<A@kzX0n1~c!t#{5h`i^Q
zeIN<I@eu>y1ZXMr8T{#8%(QP9y_YV|k95V_AJ<e0-$?w82SWWHm!;si_?`z=G<!KZ
z19P6=EnhfUF8Zgt5)zad+NX~6u_d2|Zyat->Ao<cM?}rc*SlhERpuMypf7aAGHx;m
z>Sc{5%4ZsyiOm3=CWeyMh7#{&)eP!z2$nL&zcx3coV&nz^tu5~ZGrLatJG9j$N2Q`
zwm`83!Z&a1mT?#c*SJ(Z>n52}%Jhv_s86?szoqENcBg%g6C$<>3RRk;F0I5_G!rsZ
z>M>WJUkqTOZ^Je<u7}W8in%Xvdorg{v-J3@eNkq08`{8<uN8s<AUNfEDcjkGw?w;_
z2DCgA>{G9%zx99Nhdy&pW0!tc>Q9z`v^>wEOqI;4YB@1qd3AFh{|=!=Da3J0Ck}z0
z(<RWYq2;vJpNK!N2hd^PS%lyJFnZ=UEHDfPq4oCrhWveN67i)G@sIRS>Ex1n1;@&N
z*?@X6KEXagil=WN;Leokw_(C}=4PtZ_Ce2X>+z2Ob{YpIwOl1etvbiRJh^_07(Osk
zat4v~{U#SN!Id4!^#5i@f-d%@#;*s5hbnG+x#lV2?SR==hby@)CkMY{<-bx6AP4q;
zfUn{k<6tkArolJmnou++-G*lmG#%nTonzf!xMK!%=MHM>Kr(=fS(>X$Z<rn7J+tw<
zUw~fztTDr9I6m(5x^k{iQNG9r%$7A>yKBPE?#1@JGNXx&dpP*2XvI$?qxNJ6vJb+c
zt(=M)*Zou}9?6f3c(&iYhnvEb&~XRmx8j2@t;v8{Vpc(RdT%k*Hxb!cteLs`_;tf4
z{S8dNvt3$pfdJ1O$m=4EhSF3O;#TFZW<6U|;T>Z1d?Sq1dD)F*Y~@cTgD4!Vi_vcK
zF2bk`cOG@ciF{W179^J3Ah4Kmu{@>7`&eV6=<AmVA1;gWh`cbv#8IF0_0hWqc<w_c
zI2j^Q1~qrB#;pCYNsY%M2Fy>x6}Eq;;%)y&Dt-`jwwQNCdzY$M9g9wqR9ep85yT20
zMBFCRbn<bf6AdX1^PBK4Dgp5QXQ#)hVL2a@)G)U|IT?VlXdd#$HGh=Ti76to@LKS?
z(cJk_QiMiHzWl|z_2EKh^xMWkz@-2FV@!JTWCF*h5u20VFxTqSJ(hRR+;7H>mI3_c
zVPaWe?EL`!_H7`no*^4g0_vte@mXzAx;8#A4(wkG#pNz};zo7RY&;bn3SiFxY}@?|
z^T_tkIwRFyY#{!2;^MJOJT9vl&{=iI-ZU!WG)*85Zu-umqeyRHU%190AEPr(e4!q*
z`Q$y(n}c<udhErlZ$BJ=35#iTlr!j5pfPdfex4OO&M^bX8`sojT)4z4XOkuyUo*G7
z>%DZNkxzDNih8m2`j|grBG_vUWs<{*Q(AX@fHRccWB~Cl1FMv~VKIs}yuKjOoC`93
zIa7!Gma!Weyo8$oW$>Hly>~-j-az6R<EziKuSO^D)=`a58oYcm5y$YX#*P5Hz0kDq
z)u`z`gQia;1QGh*rS863^qqGVjNl*m-jZZwvf%7w>}cZX2|M}9TesWGzw2gl)VtH`
zInN`+-@mE>;k{K_E^!tteDQRjEK4wO3tMf9j_ld<qU7g~jrcEznmj#^w8AD3$mWUZ
zFICBm$q<#2zSi6O*{@;_He^Eh(!Wf=N0Kj;;13+lhe^FV0%47>L?t2yw`@G<ur<xt
z4|T$WG*VlQjpH%TNyfQ-HgtX-J?9<~5sro%_y!Vrvyif`id{oN!z;d9%$wp%*6DJx
z5-rw2KEQ4Ev}O0{_*4{+V3vWY1q1WU6EJ6PsH6nz@tsagU3FIpjrzB?uUtA2`dw1I
z%eY0=f|}Zkw@u!bapvm@(pTBeZQ(C3$~A?oV&^VzZOMhpnXrZ#kh`~Tr<z>In7oLD
z#UH*KTk2mkT0v;!<Yu$O5>7VjppOjoHkH#v9THu4YIfu?a@O8mjIx_eQzuWPi+)Xb
z(}H0=@I(i;d|HoVmff0VZknk?hpjIN8^7!PvnVe?US*C_NoXd!Bx|nrNyuXK#EXDT
z0*BnUHv8tph;I+ocj4v-dC=)@+jGZRvHTuw_W`YwQ~1F`eSjlNuF>hwarvDS=QTc~
zBDZn{-^(L?lTM*fiveqTiK86;`mWrH_?6nzwH{$(%j_~xA-V05w>x{{zW1?jW!bwR
zqvZ$NoA`=)&{>++P+y?AcKI+^=6sqo90&hx@8gbTt(S7W>ts+qc=7@xXGlhmn7bX@
z3`UodYwNVHl6z(ysUmFZ>?Z)NpPA7ue3KyKo*_`gh-bvaGZhoX6B)mWtD(~i8MkV+
z2^W)n!7!tw{)*9Q)~)V|>1(2kE)`V-ltjGtDAjc&ITz-7TDiU4Zeg7d)7or4{+QgU
zI3OJ9QavKK-JD~yE9&SXG=pEZ)*mWI=l(GKLTE_UG}C#+*zVUezZXsO?in&$+*7&m
z^VxjfGNb*`uKlCS#Gl9Pds?zhq>fwDGKX^(x>KIJ=cq+a&1pCKxji?1KF|R$_nPat
zd=GwjpOVqI<NRbz<U7VvOy{P_KZkcxP=qp$WM<|Tz!Y_pMQuo!0uvs2uEGy4`y%e(
z&L*C~4?83txcHp?iovfGK19$iY#+Zlli)zGe`&~dNM6W*u_;6nvSb&`(J-qPywMHt
z5Gv!cpO0>}CRQ<dx(FvAgdHT#2U#}ZcXnqg%&zU!==-oFuANsgsBV#{@I<uB<Ry9r
zX4E=Y*l(tS2FYk`$KALx36>&03m!{*mpFtx9dGkPY+`4bZKrJpSBlc;2X?bm!^O7L
zPL*0Sse-0t&Y4a&cXJN%b<1Rh+@bH>_7P9jHxlGJxy>f?O^W8`2E%+E?Ga~7mysry
zJ*V!Ti`zufL|J}W*;%adJUvACO(7UIav{W*rxiuyP35=pae_>Wb`QeN6JEzJEMk;d
z1tdepsX7iL9rDJzT|GVIKtHBQ5>+jt-#MlM!Fzff(>P2U{3fQ-=Azeme`<2TaC0H^
z7&F)GtIcJrtK{w%oUo|vZIOv7fgfiNyz`HLlEqt~tUTx(hI*4gKDi8AT)#Y96L!+*
zn{!%VohGeW$f=#?rQ=&H#3AE*p=k0Jb_0uW`2ptRnUi49#Xm17w^1RBeP;TrV<19~
zGH-HK@22x8LodSKzZsyBx(u5fY85r}ZX3;6)Lveku9yg)#;V#TuIYN7A0(`u<2?O-
zE%u3-LZT7;*<+p7+WALw0q04B+l+@1NRdPFpCShVV%1_DHwU;kiqWUZay>qxyAG2x
zmd~gZ?RYt;(U6(c;o*Dd|B7tAZP>tf%)ndSQ>mj{$>*ID+5ZN0&QEZS8xifdO-=Nm
z{`By*c;rZcmrn2Gws5jjkCV-Wh|bBztI|rxGC0{u>1ml&xcGh>7ky6}*OpOmoz6Xa
zbs7oxy0TeMJ7M+h-U*9u0kUM88FCYq`<rsXj;&f6vAz`^XIUltI}<Rm>v*7@#$n=B
z?<KtD64+SOX77A42-&n^Dy+{ra#AI+=WfJmR9Z4l3&I$)67=(pm)ZmEri`L%V5BCM
z3D4wW>JO(aZV*2lD>d^rrr<F5uIJQ~N#O%cLe>z)nzK>I;S@UwTr~|Li$(F84&tac
zonl<W+08+vA1^hSg_~THl#F_lbITk@REYOrB)o5eH%ArI1kKM87d3WMj8-c%+M7C-
zbLHyGsnLWz$qU*!HZ$^>)Tc^42WyVEGYYjL>rZ#;tfTjV!`jCc@1PDQ%C8J~UX-nW
zBoYqyO*v@TI`Xlughb&?@Bnynr>6?STfGSqa<4av{VFOdV#RirEa_=ROl}*H4sVh2
z+NEnj`?%6P4c^JR{w(oZmn_wGn&UE6HY%yVl3P@<|B_oOgO$-O`v_;-jnWKjJmaz4
zNLdEsjM1X(5E)rWW(Mc7c>p1+nCrIre146|F|B{Ac~;dB0m(O8k<$3YO3T^mXK_kA
zceeM6Bg?GGm>&I<ygb};WOEv?(QmVJI<E~P>{FPTnVr*#-_6vkdYp4$hO6u}%h?M%
zu3f7-3gMLHZFROX+O-wa4TdFtpS7@QVDh|llalq-)wy7v%7E^8NtEa=OmTZbRJaL}
zdgy?3a#QE9DaltaX~%Hlt&-uT8lz*4ld9{tqQ>npEjHVmr7g8=R;Z$<$JR63ec7j3
z6@pV&9^KyO=w{P3epoG#)tp5jTWq;<ckSsH6wWo~IGmoz`aqadV<6NL>cMR>)oZTS
zqBXP16B3zgPzGzWJ|rqLtif;8tg+AFUpDM<WX+Jts@(CgR%>9jjE)mtNUjxDeJYqz
zWaomb+29sQ+CTg?ntUt1>Y_c(fz!!UB%X={W+nF^iaLbAuc5dAn>)Gc%)^s?c|5jX
zLI_N-OHG*IIrs_d<s4Xk(B4-hX=IcEJ82S2oH}sJ^QfAj%7MyAkU2yoK>K-j`Yb?Q
zVD<<M@$DnNnCse6TxsIvVDVV?t1tD0w%4C|*ys<?hbX^<&aFRsFQ7MZ6rOzctqh8y
zJwfI)OXVWN%w-k~!xcVzv$-fMToH~YD7<P?yW4pB-0wL&?#Wpsu@1|)h1$&hRS%X!
z*Os38kOBJh7(D|q${z6m=Q|K!jpU<Q;$-XH0^pi)k+6UO-wNy64Z6JTJx*8vdm}>=
z7{MrLG6ugW=^)=yCpSj%&VR&JHKt4-!u9j0|D%w}&&L5~dC*rsnknGW7I{q?RZ408
za!JoiQ%Z{+?5rLm_TX?6I?t8o*|X5#9Z!<)gD1Br;8w&QFKu!h#)l3LO^lXS$pq2I
zoMaEJZH-5hDYQ6V9NNn&fvH#Oj32Fp52O=)=@#BD1=ijWqQHLebWpJQJ5Tj5AjayP
zGWwE*7uHCA8uRaWQm+(L&6jF2tU`-4%3iTOsDu!*^^v=kST({bLzWOc;mn@1{Tnj5
zJHsS}-M4klHydj>_9(Wt`eXL8Cz1jUkBt&H1?q-!m^tAq_1Y_;kEIRaGt44b1`g&6
z^5n-E&<XvDCaOo9PdI{axeRFsTRF`+L@To^PpKfo=2fb^g3e!>#p5^5j~1e_*s39!
za>>?OESi+kM8kDE9`G*|T>vc6DxaE5R7NK7Hb4*V7l6GSGWZ6{7!|}EJdF9N)J<-#
zJ-a^>qO%5)a<h&nk0o{44(gKX$5LjB^;**b5I|1Wi5cFb8)+|Bd^g+5>vLw6JO}Mi
z)t}u^C-*)^7dRb;?pN7*_DoYYgc@`nRGpC9?R&q%?JoC}>CuQ5Itd@~`~lY=?<o@~
zyn$Bwqt?Wf2(|f!<#qMui5J)>n0TGts%&Q~!vjWf=Im>bC=Zj<Z5z)m$@GQhqJ~3_
zfqlvwasqokr-BQ4ID)t-qLbRrE0H>7FNC~V1P8vX$=1`6=|NiAJTl!-)!Uv-SYdK@
z;yb$gQFv4%0jBc$_>2y9GK;hi;BoMqD{ILMj*2xC0y%3HN34Qb>s)3bJKnd*vlX@S
zCyKcr_MWQ&+nH?iq2LR|<5u55NK_yp?4j2+RCG0r$p`YSIEH4yczhS-hiZ{l!;4bL
zk)cEU0xfYMTtiErXdh;Jzt_TLr)F(7HL||D)h!945)(JGIjl1V*LUr^xYe~sb+fem
zP)7E(d9>a@ZF5d<6py0|cg)@vMO}ko;vU>p)<y;9=u?_7BO*6vqI%Mb;a<gF*@h8g
z@3g70JDZwQldtr3Yf<rL=U&~Gym|lag_pLs4G(@!ji_cntia|Lu5;L;1JzNF*wQ@1
z%R5NOx(D+*>Xc|*Zq2EiB(C5%S5N4;W+ZW6xUHx9J#SK5jYGgUmJYR|;!MsF2iCiK
zB;Psa`Z9Y=Reu1CylBidE+wgvcSaR<C!T$gv^`~)fmL%V*!qcXZ?SlHtH+0n%{xx1
z%aYhlY(k`W61L#)%EvHd_%iyNMrTPPMtL%QX}G>|?W-ml9u+#cwn`PrEyR1eKy%La
z4hZ@i?W1Mc`?rn`3z$}pn${V%HMlx0PAIX=*wsO=tE1eH`lESQYobGs&8_K*Jh!8|
z1p+}7d&EXoU6HzQk5RmYYZi&HNBs;|X63W%Q3%9@Cm7B=+34R`bRZaSHB5DXw;m?z
z3`Tq+hXPL-+a}Kdw4mAf=EB-drm8g}caDh#w(VyYpsO$GAOo{y(pO0vp(tmU_u)ct
z1YaMaPCJpFJZC@iq&J8DdFxq1ghfM!Qq<PBbnC2~SwlUIc_r&yVN+i3{FHYr!4NmJ
z9YpIK2XwqQ9~+@kMQ%6NrfS66b7)xjCc58qMNGBZdafzbYDi63f|7Z>&aa&c?*-6A
zl#TD$UQ*_z%<`%lLs?T2uB%VyU4W_T>t@c=W?3H(!&Xd&z5FLmnniI1M;nB~bb=3E
zGS;5g(_z0eqhy%?rkk|uOQ~HW#xf7VwZaJ{d&6+8aGdDuH7RIfp8Hy&(=7Dm#=*T2
zt(iN<Asuq=pogAldu)C=C&*>KV~ZrNa4S+(Clm~9-zeHi7i`<W4%G>tug+c@tB79K
z3U9P_J=mlLIqQQ2nSn1GC*|-QwIV$$(U{Yc$=#3kBl_n_NOO<$Kh3>i-_1v_0l6zp
z;%CaumJSWS5Xrxn1(6}B>sTyz-)W&PnT58WRKCqro<gG)bx34U!javpo29cAe4@9W
zvWFy+rp&Ed+FkIDs9<}gJ1u?Lz%^kI;Yp3GOvibzR^$z%Rf!(!^!LRtGZgx9zf)@F
zbJ}Gtz5kQ5Cno(5j*@Q**bg6--7JCYb_9`a!A)1Qh7eWy$?k`?qK;Fm6RC0shTh}J
zfJZbh_JTb-S*vD$;A}@(C5=K|(w;YckD7+}`$XDxc(Oxf1wP<+4_6ISoj!@uWY4xm
zRi4+#8@G(Y%_<BXXw;%FBeV=#$*XGM(c~^**XC2|zNq7h@^Iw|C6s9peKWnxe_1X+
z|Dei6v$)6Ap;4NNnR&Ur*=l+4JRYG#*G=qz{uRXVdcYK&S<l)+u6}tH7ZGt+&0&M$
zB>3J;yjFzOL9Q#929P$B+M2*^HvG*!dCL~!_bUKe*H9@TYDU5_(qsT;&p<_?wc0K}
zWRCnUMjq8&7<TJ^y$71K;{h)JfAFdEFP#(fRaJFTq<cvOP||)*L4)&GHst!__$4lW
zt-F^R7aWC*h}t}0l1VgB7zPSaa>k&X2;~wLt@KQjz*QE=+4<}I<2JuJ)+OkbjVz4A
zbhf(WGbvC1Tg9rIF^<3@CgZ1E;%V5EX_edvpT|3@YC2~<&*5v@s)(QtdYaY`jm3SL
z8eu8u<M|6T7^0MDh0k|-Z02OS^r!LUY<8l#Q0o*jYEtIKtWK+hPc<CPGplOZiWT<d
zDjMg?nT#XK=e5Fb{(@&dFOn=W*x;oRB#Md~RnT>Ev7WXVCLaevn7l~;$e9dt=*i0!
zlVtbR`6n?tuS#@Ur*DSW^&!oYhjZm>O-Qq3N&Mf;l2>RTVuMaL!UrM}59eIA3hdxR
z5}LP|6b=BGwYqivp7;qEAFL>6be==;oQp;!`y)i<c$lPq2n)t_O0f<P;o>N#!fLh2
zxg^0bJgLHj_JbxPt)05v#(d>U)1ek@>2-|z!XvgFWb~frTe`r|(YsTzmZ}gB|278Q
zEsXHf)!0OnDow|R&3+HE%3I!7)T~QoDq^y?n&yl$rczv^cp{zCFqF|<AC-tWaH-ka
zXxsOMal7>CpSy{P3Dzv9kJ}CF^}&Rq)Qci+;6W(!ypZPlfQH$0c;<@CikY(5KC^fJ
z3$>hk-f8HcFM7)M7mslTCkh0M4>!gn5C=Q-+I$X$Bh-2GdqS@B4`Pp}o)Zh(*5@yL
z7o3G2Y1j6QMW4+=1#Q_VLkQLyL}&2O=^&KMF}hUIbRo(wwr96WYY4v+h<7*mno1vJ
zc8&(dOpT{g8!ThqHqxX!NVus6(yt*d>%QS2g2T04Ib*#u=mipSM{!~=1%Dcn-jsKh
z1@>&Pz}9Fn=u76B^ElnM4i>99)CHc42e;)yW5c@4HVAw1r8MvX;7RK&b$fS{1Y6%3
z&QsYB#BzpMh8rv-=*+$~h5Wsg!N~}F@<h7>yvw}~iXH$=d7dDcV{wc$nHE&kr!Q+~
z<82ya4`0sda&=~;wg9Z33D)D)(D}3MhBAxJev4t!n+LU;t4hE^sHE;azwdYSJku(b
z;)-+r-Jk`W^CY9l>7D5=ccx^kG)dGjZY(JH$efxh^rDxEqv2atE5zN;`2-iu4r)vE
z;CYtIlADZH+7gZZpwq5VK<N0qQNd=5(AnYFklmZ;%0-^xQgKxEsMl0|Nn1T%k|+lu
zISY)c)zVvo?EQ$Uf_qsGq?Mh6^h8~Lp1Sy(s}39Tv~u&KT%&x7k=Pe=EGI|x)1$5O
z9v(+tbo&%*<>BJkrSM{+Zjx*?6tpwU7}Qspb|Wq?d*Zug4sNm1hY%=*tlaSr{z|0l
z&PYvh(y)6|nWr!co0P}@FeyX$T(+qiPBdJwRp?<7Jm!X0s$aoxdK)zrm~fbpoWtGd
zhGN|o$~AozURvJdd6B+P%NRol43$YZhU487!{^g;)?jurF4tG_<pdTFIg*5ubzp-j
zea>r%(a>yO?T(CSow&yA^*8<lLZ_CAYr_<#>py`meBs%BuKk{qq}&Av3MZx>w}-&G
zT^oW#nlXqsB&BX$_B%C}HE3Ytn8`_b3`DxzDE(wqNP725-!azT#3rdO;@p0j0>Jin
zMv(0)YssEE{lb@L3Em8eC*V#x9=YZ=jt*ocxk&X3o&Fqc%@^kK$!^u%v|u~8Y1O^h
zCvrNL!Zuoo6aRdlN>#f8hPTn?hV9ot0YV;~E4u!r@QDv*?zRHPG1Cb;vXso)?-#Bd
z91#K#Z56-MIUIO$zU#>jkVN4P+L4iwJCF2lk=cjv-;O;@$!KK;T{!&>?+pO7N1Aqq
z`F#rj=+n4Gwr-!bwT2b2i|O9`g0kmU*a}MyMCH7j$!s(&V`X^8Shwu$O!O}I7<Ps?
z=Qp(nnHd%nJ>pq@sh}53y`gYv@G!md*(KfE#22QM#i{jY`#shJ?wQ*oO%g~4aD9QU
z$PCPP8?Ln4YxUIG#zLIMRaDru`QPAxTE7*P&A3%+&(Ip#|L8-FFJ*59HVMf{ijv^A
zLQiaejYCwg`h6YBJc;O=cDn=oQVw4pEU{Q?a$Qn;K~T_MdNU~2<a|WRm`ud`DEv-L
zrp|rzZ_?jGg@qm}X37NSzj_};LbGr=KNLDf;n0Rw3W`=d&_2-v5%u=4(t<9;h?#Ki
zjC%t0$6MQm5bu0&YBhpreKC)z*Ko{!+}_A<umjevBHS$%hbXIIIlhI(B}i2QHfSZ4
zTv)fmS7lNFU*qt+oIh$@!*R+IJhquEekOGGOZ2GLH%S-H>3pNKe2#<z#yK`R>L2tV
zWx{Z^FMiD=bQ|{eifyp5_&W`9ZTQ=HnoJ)_yJ{;+H)Lj<jy*BUx`E*9al_uQt945j
zayJAjIn#WWGUhNS(~|<uRc_dIcZmZy)Nfony2nMe9_zN!ImJ_95u{G;Vk`yuzx7S0
z;Iw>;Za8K7m>m_J(#tE-s}F@M7ZT<8-gUo=e(k6Ar1_Wq81*KWK+qR{I13#Ri0b#e
zgQ|Wq<II|)dy|MojZ!b+$uV90Vnyydp<SGkRX4_A_F9W^pP3Q)XFN2|m`C_WcbYCe
z1_-x^RzUGo&kZ6i%4spEvhvuW^MNdgpl`_g1PdO<<O57XSM^o)Y5ZtM9-YmR=(35f
zfn9Y5iwP^7`W%GE)9p^e{WAQSYKI1RGp32!H>2T3hYxO9uA)=W3Gv|usHoXQnn)Z^
zPDpOI)$XcHd}TM2$+@(ubrdm_ySvHQDr6vW5o3*Qo@R|=LCWKJj?mg2_sr<yXAjp8
z{L6ZS?c7!hj83{!vW;U?3%{bCO?2#|Q@$p=axXKv{=~t-J<6u+p~hqPo}Sil{t-)`
zC?9pAA0X3Hacg5lRzL=EDD=&^WU^11lG(A&=Oz_i+%@m~K?dp~e~8NRw?@_1P*%#%
z(7Z;{RcN~i@VO*O?D>8cx7r=rt(0x>_c<PnsrG<SR>cU+CFs$n4!i+XeL4o%!CiSp
zjkSt(Ep9EKGi-|iC=i~Xl)*Vd+9rdNy21#){W!SGJa8EABP!4uqB2h<xB9sWU|g1V
zRoI3bhXkjBp?%fz1GGq^;`zTD6@d4eM>1u?N92U(RQDImue<l>FV$TB@)L&hI=w9e
zDVG5bWngV5&Qd*EdOJ)xCLW)RAeUJn-1b$gL#=e)oz4$-c0ymr%j8SXO_n_Jb7Tg|
zck?6brww0v2GV-~gjauqLD#^UWb)dVoV=A)KcY_~P}dZ*5xUSUKl{jjtGrqHF)`7#
z7h)PFj?)HFg$6xQ1q$lQa!gIcv~R*;v&Qrh89V)4?c0L-W(M5+yd@phn=A{P%d>se
z)hhkfwoytqe-7rRr6t|2sSbQ_mbmI&8U5i7gi;Gdk+NIK+C0$A8C?I1lohnncbKID
zsC)Q>dbaH{_t`ID7c-@%ADxQwJv8R)%{Y0}opd)AvXaZqYpf>k3HP))kfW;G&T*Dw
zd4C61<~vft+?%NCAHukcI#%8E5hpL8eIH`K40^N7<pN!;Ze6!sDbFKcWdKm6(^_ea
z;}Hj2^nABpgCUy$eOuR^)^)d`$~L>6(yE7`bJ!(7kK8e&LrE7;Si2I8lH0*<bio%Z
zl=SNtIGTlSY3X)yH6?S*RZ6qf(5&URxnRf7!Y~Zm76n7``CD3$H`nyvZ*DgviW>p+
zRhUIl!+7qwUT;3d3!Cai-$%Knh3_FzT(P#^N|br33m0}1iUTxs)uWvo`qiG%IHfs`
zU+RyK#q5-t=9bH)lR}yrIs49A(sz}~9_~&W1UtN=scAAL4vlH9@;aP90(p2u(t>0A
z!ugJq9e|LTVT)QnNp`c!`RwBG;VJvi`byE$+S-jX9FAXJbU&60mis}wJ?WClnzHJu
zhy=y3QlVg31L?TSWf|B0j6_9MLvM|nkmGzAxS1mTe6<w=H)60+&@gFVV?K}Vmf3#7
zYQw}cMp2#sQIUTZB|+JUO45rsOCB*qOpF+<Hkow(tbrPi7}Iwp8RS}PvG&Dtg>x6o
zNbO#C>G5#g-a?xj3ESa~k`cM%olo<VcG@4}fjUAj7wwdELNV|G_i}G>81{8eu!oT$
z0bJG=_4si^D61D_9H%doTB4h4LW_Eu+GEfR2&oVdv(k2)b5I?~wZC7Ba{Xp?Ylm}x
z#1}}B!#ei*bhvpXBZ&8{O+W`-VD&f>ru+vxbDH)q+Vom|o!QJW4L9C>;KoHta=8Jl
zb!WXI_vMdk_a40Yin1fL35Ky1PE|&46ua_uxBh5rww^VeD$Ni8kvzL@#w^RCnXPF3
z249(-6SPu$(xqQXze<DlPmoMt`R`1y379~uPTd`tB?XmKoxOhKF4_Dv>Hv||T7KUW
z%{yOU(T=53Fl5ZeYxX>A$e~qQ7SfWqFRQk!X8SeGSC%qQS4NX3gln}cV8wT)<7sP9
zuS4Chp}p_Ih;`~I;IiDse}vU}C%$c>NSECt(IKk-R|{5ZrR3%6`a&(NpPzlyC0u^0
z7CU}Lm|TrPu}LdhbuwqSacsXXfUh>b*1DCj=2&>G^XH8zxkpnj_P{j6)tONz;h80L
zsozUI*&m9is2r;nv>_{YH8`1TBTLsKK#{V55JD*R|GLjf|8}3d?o2M*GuOIolVth5
zcPQ;Y(aKA<azMAowyrQ8*NWq@*}1)4Z!o#NY#DnQb+>chrY!*|JBSjv(rIB8MH8zU
z;NWW;@#$WMa1ID4f>@<a)z>v@L89!```Ans)>e(qHehtb{uhe#7mXJPi)0JDoSdA{
z#a6$%ZKTm}lG1apbC|#!SG$A4vz|r0^xF}Fz5bWT&=A?hafk5g&u3jABBHAC0#^K9
zAQK^Uc?NZgz;%~lRV)5lRnkZYtRq^NhOfqP0PN3|91+MfU#xC<S`W}{?I+@yUsSuV
z+ITRwTTCt|*-%RJFyicjL7~~d4Smsnlja}L4b7GoTz3U)_S#8}KvRjzj6P>s5VXLl
z!gN=S`zH6+FHUxE7GWtzm}&F?aM8oBCqTyi%OT^&CIY2*corzF64}29*K86kDAg(_
zdHg~-Sw1h}Z@}T;Z#$vuUa5Or*)suhCwse%TWCs^FC3Pb)awezt-|NIGISOA9cKw4
zdvn)}Z_7Z~)dUYG4R#WZPLk{;xx|l_keZ)J+dkBOdz$OOe(HR--Z@W;&n@U>vXPTX
zY8kWPBmvpVcfqPe`<SY9mHq~YDE`^k_x<~4<df=a@<z+29QEwZ$}8;VI!~;F)i1Ud
znChG?XsC+{ZC#=%Kd&qV^4?)cxN<0YDn|cjI2Z*jj0QM@lCA-j54|8cz%lqVkW|5o
zOWpxd8AuX@;XIE$6sfYFGX%vBye5kH4UT)u;d0#olz<(~(dp)Ga@hqa&34P7616B9
z<bp2C3BqOauGvU#UjfcrG{CJfCbaR)-+Fp5s<@JyR~Tk2JCMb<QaVgt?t7cK)ZMvA
zH;P@C4Ob8zGNTFbU&~7S$H7cs;wPpdS}q$IJC2(#&A&8L6`6rKyu)BxP|***0iy1+
zkMv1zu0tJEk`BKQNl;YOmW(SU`xZZWk~Q%d!0|Ehm8ZCv#OLPbE`P(9vk&CDPhdD~
z;f6qr9h{#oT=uI+>X;0XMjnt%>$q-5LUoE-M4EsEsXToQt^4sSsnb$1A~@Wmx448V
z#OO;~J-8CrP*qU5Z;guFD7C+?lCMTpHSdyFzu(QQGP7i|>V7mg(SYA}h!v7tYqbWx
z!)%=7DM6VBa^EhFuDI&D7Y1<&NAIaK(n=MCj*kSg=yNs9zN5i#b|%{~o*A`g^=^GM
z3@UeAcZHRY$U^H-tihe4$@`+fkAiJ%Ml@j15#+GzKUC)i!lfZ)cN>;uc4bGJc!0pE
zOt2r8Ow&#4aUVXKEsxz=t`%mnZ}F4u?p`ZzBmVN{+gPIEr45f`boEy32aeVEW7fe+
zLV2CM@r^fbVVg2F34CebU-0oPh}50u95~_sAsjYUUfVcpYjz9Rjuv7go7b)pAtawa
zQxfODAqXu@5JAIZi22P)T>mFdsv*RShh^+7=8fDHq|c^e+;)B;%0*H<1g&;ad;?%H
zW<A05r>4`g{&&toF&svp)*rob!LKWnI5GmD#LsP3D>f<^lE*BH@@lQO3#6-52duck
zM0L2p*}UuSc3wx3+jxA<%hW#335pei?Jkw~=Aa|T(T{Lc#|k`rb4PQo0}+P_9X>h&
z@J>ek3A{VPb47d`>(sTn2g&nlmM|VLk4eALSH`N0HMqyMrE;zkHuLimXb+$}8u?-<
zKoJh)YZb8lD}Zk^dUM@x@UcOAr>0HAinAZYd|nHrom%w#$mlxAUGvYr-x7Y~!fIRl
z>|^tDO6Ie~?*yG14R#p`uFHDEg_+?30;^n3F*xq$y7nz499F~MevyVr1m>v4RBi?F
z?}PwDHtv@!dC&(9Ly)50Au_}c*=&mJx5zi@iAvM$g!km#EGg#^qO<Yt(#;RsqEKTY
z<<8VOpNC~ifpSWD4_6NfXZJIvn%$a={sowl<Wu29n6X{+$AaY;(YP)fa&5|y#(uI|
zX<dsiz62aUODjv|a77|E*v^6=v%md7GuM9$EI=qFfhGtmuQFvuMUTh@y5RVyIw)h1
zY^o-waL{-M(kwKJDG5Qu;Ezs7GRBa);~_Fl*oJPHfyebd#o$R3Vl$7!VN;0*t;BMw
zRB2CE_<$|caeKO^Vc7KAmOpjSn_Y%Uv-XF=&j7{91~a6Ij${+BBMzcn6Ua+9$BOt3
z)!f%g4(%i2;DRX)Mg*?r%d-a@ucJw-SX=#Yo$6wOq~8=za_2YM->_eAk<e9t_+>$Z
z@q$|Y2M`BO30Be*^=mwt&YXg1P28JmZVOcgjtB*ONSj696bG+^nhA->5wOTGlZyj+
z@hoM6t|D&l{5b%vB}tln4;(&2#MfxfMtDQ6>RSD(>wF5Q<K|qm6T#f!=8mh5@pF(C
z{lV}E1|x2a=Q<j>(YS^U6(2FNS9FfC`dG>aC<XNBEdFR9Ak;VA--P;c>5~2dNhtjr
zNJ8B<G`e2sAo2tZoQ?ur1Rs6Np7>-eSyx%jsO0A5m9gHfTSGVe&?Nm56kAN(mkq>D
zoUm+)tF)%vT8Y+;0uIoJY1%hW3(^VET8Jip*oV5$WQ*-zd>d0q&Htqt<{8MBzWDWe
z-U<RbZAC%HbqPSJP|(r{A8EgQ92q}t@>j6AMuw7ky;hAJyzq-Kh}Ly=Nsjaa<R0Zw
zkXb`0JBS>E<cGDi6bO`fD-bbc8Qk>FSMcO2b4UKw9pszXVi^*IvX(1@5JI4xE3!S=
zp+oR!lgi@s^W)PG5S3m>^ghPyuVDlgb}JxmVH1jj8&f`?Q7IK26lnM@ay!ETmiw-@
zgaZw)Q|_-=xcUE#g<nI>U;<$Wr6ZP^57$s7?}AX~_B@DN0{u1Z{%jk$li3^H8!>>B
zc8bKO{gB+L_I1@u3dvdE4c$h7i66~rxH#7z@`3NU-rY=bSzLAZ4Ju}gx=-BVG>_cJ
zNlt=qMFE2){-K8Gld($cSB#g=Ih@a}*V>2jy)=O1WdE0;74mO}*6-V)Fjr<t1Xh&<
z#42~~xw4*2k8V^@1N~w97uBkpNX#feNFn4kO8j*uaH>vEz=w>YcfKPR7ss!dr54?1
z&$(2TmAgi8g()?wEbsWTd`6EoH(>vDVPdgd*+JC3+NWu-pknn}tWBk6<&1>5*oMQm
zO9qW8@OjF$D~_HWeLk|EX{UJptOvvJ27#e7U}R-*lo_=qQ*6jH2CQ#-6xCO84OM+;
z2g_Un$;WK+vK_a9Q|HMwECi$;WiwECN~r3KyQbhHZu8?i>$%!4prC1T=&|8~yvDuv
zc~@f$?vB){R=b8ycdJ9*t9iOu#C}F>Nv#Ri(~jRm=m=i=5ZX;2Y4A4Zr(>7hx6mN*
zgDn5GL&*PahhFJPnt>`I(@4hKzw?{%_MNrMGLXj&lF~TYAQ-zK2tIhoI1K&QKlFpJ
zw4bgsiaFB$e3{6n45!COU156DLk(MbKQP|z0>j->X01w?csy>EZVS#q`-<C4iX1x1
zkYO->^G~ZhfGpJtK<3ftf|J}oqS6Eh*hPe7IHB_YFAN7nca3)@YyY69WCFO(D=F`B
z(wy>Xb_Av$#C_dYCS5t>C+sXGs7M_nHWn+0Q|-<sH3uX1av$YofOBF9`AgM~{JYU6
zr406!v!h;#^_KxR-C%TeMaxg$U6HC9D`MpFdx*-cZeTes@>&-I9To|a9{h3OBXiUr
zTqdeVHns(`zXsi6d7Z+`o@pACzB)*EU1K7)d*zyAHbO~fl|~FAJ<PwI%`MLV>1+Zy
zKtLIyoa-93EppA91_M}*jy6+TSV$r@rZ^%wXa{x0z8C!aNR@h96tLJ`me)`SZ3w|d
z5M2mCBO@2EI5*HOr_0rMT=hQI^P44FW*4v@Y=XXnf*F|lg1{p2WH-xzTY}k&vW^^y
zvQ-qdD^Fx{;-nN4)20bqrvZ4azbIst`~UZS%(;Vt23m#uD75S5Ppb6tfbtr{Fv<{7
z{4moGf)|nwqM@7O1Y+u*i<J>vRPyA%xjNnO|01$@vqb){B1_R6sblbv^*44H$msvR
zmV-s?pO;k>io08m8HK#QQVOpZJWdHM>x2@H^_s`qK7sFmQ-KQ?gU)yh#Aj<JcBwBg
zwVbOv?|iKc9f%-#k>3ZTEW)nEeFH4xAO9DZxCZ~>5^&9c99_P9r7_lWHG6)W2#P`A
z|6ctH`LT!@BlIP{yVXj@zT!6v%z303BUu3B_X?3dsx(%}H@VC77YoS#VS&G%Q-k)B
zNb%)L&E`1AZ^00O6q<jQfK;Pq4y<SHztP0kwgSOskhrL#$R<WI_B#kK8L-x97YQUu
zkwU@;6V!cR0F@aYK-LMmQzLp4ct@bEH*v{XKw~eACF>78ff)4i*cloS)(OA*&oeq9
z-5Wy&>c6RdMRH7LdH-GX4|5N9f4|ns_6rOo-EjV*8%~jFCEyc0hOj@k3z=8Ex?R6_
z{uTpS(gIJO0I@}B-?ghW!_|}V7-YOf+$8)160Q!!cFLmsI`Tn5zu$&njjJ7~n`_>s
zcpxWnw-fV{_RbMR<vtN@tLhi=KRcupMj2^~0vHLOF0eRaT{?fjl<~Bqt}4fo3<Joo
zg<J%^s_kR~R4V|HanaB65l}VaFQP@ZFh^M-|5X3)V_|Wm>=~s6oy;~Ku=rm*2_%2^
z?EMfuMrgw44sw+{jx2e9^CehD4!KNcnOQ3P?`77{lz@Oir;++?^4vWbPA>rjfs`U`
zL!`W}YQr(yAdHpeyA7uCl+)j$`}>u;P&4@#9A;i72b@_q<&X>Mo<tfV)zP0*OT%Ya
zcJf)TZ1L>7;)4?>BU$k4lzYE5f8IUaW=ni<MtJyt)T_n=RQ20=_!k}-e+cKF?8Qh!
zuqyw~t?|>sMV8nfE(2RO#Jso9FS1%2us3<7z4d=mjUy@cP2w->4OaVw7Wpb&$nqj2
zo1HG<b?$TK%ieE2@+p!C{PQd?VH9DfM!yqhzX8>YLo6uOzqnbR#aqNvf??b-6B%If
z@(|V+LB1V>E{dQmA~B5o2W`lTlN=|~NbvHi@al_xgsMJX-+m+PZs#zzo+;VVj^WL}
zDB_>$mHZ}xd&b_WzAy7cn?AY7QYn@QdGx>O<^2Zj%tHqk#xL@e6;~wyB>G-k=$j#b
z?QI9_CuLdJc&k611}AqxR{hiXM6WG~l!%_s-pPbTPD`TC(fv6b1}hZdWZjmZWXu^|
zYk3i9!hcu;tmhvMDQTp>r`ZhJCrW0z5m&zoqXwoK@9C$gtAeb1z!sCfk2H8>wNTY-
zjXY$Zue-sQQ!rotMKe4nl!h&B(N~C(Cnx6*40GwrW^EeW8oMKw9{()}fULp#w#YAX
zthv%84(#g-i>u=YuLHER@=npU%HJ-V;?-I#a_#k4Kkjwz&jh@;w!GKyVmYw$-JcVJ
z_(HUVCcb5m5eo?XgPBu)q8(eZ>4Q><pE{J5kB}=v=7ATqpK0*yif{@<#Yj>ypQ(x_
zfcJ3tA|ALu7U0vLmzobx-no8()O1($|HSYb+EK?{1`r^vcavXn#}25z+En2A$Gg<r
z_;E}|<rMIRxdJ%K+RRrH4U#g7hHe-+O>X3R^%xQS-|Ia&+$Lya4avZU@t4b*Q^Q4!
z5ly48v%j~FNtHsRHhejiKXM2SmYLgtO&8LimqlLm`vCs^TU1}%7;d6i-{lV9HgSrt
z4G=5>JfU9|d2l6dX(WJ*usbARz2XT5U^5_jZ*e!_>CI9&&4<HfJi{L?dU%3=%NSwQ
zN+K1Gtp@^ci|=i6VkH-G95{de*K&|!R7pe--o<#l1u&al7Y6eFX3R-Yd=Q|D`g>dC
zsNA|O=!VXeH{bFFfrLRqi9tv0C8{M!z!lpdcV0p;m>R9v%1)FU>ek2<@nq}S9~uMi
zTqgx|p#9V&w!{GZ&^-Qa`08a>Kv*j;;gEag6LLGRX<x%=KSQDj3W{QvNIHkx{f5Hd
zv!fYbT|DGn!DNu{Oe*2v2^dg~eJCLQug9kxqqdy|$#)i1)ey>eI+g&l3|t;VEWA#s
z!;3EmS8LtDoOHtgHNF=?{!mKhiV8lrR2>1szn>k(lG2L5slEGwB=b=;L2{AZhP>}T
zXrzbs15TETr)ddT4sTnJ?COyjRABp04yiT0k$;Kj{pTdSXh4)Zk654n%w6t}tdW1}
z{S-&IWi78|+jIOMhYiVuJZPdetbF{l13~74amAJ1#W&zFamzVL;S4iz%h)MMujv}<
z9zijN;laiTeIseuV3a#Za5id^`vqUudJ1o-i$Q9*D<wf0;=@0G;zsbE2vg>7fsDsM
z>P_P&!4RL=?ECw`@U8<_<MAZM6BO`8;CI9WQ<a3qsO|?|r$XLnqEb$><ldLWtA&9s
zB}dJn!dT)ENToO!UCSMn6YhD0`wxCaKgNIY!wJn(vt8@2Z{R5bCPk(@kcaf^9%aai
zB!1nyYP8Z}J>-<mjmzPlW3s=tjK|;u+5GXTkXe$7g*_fVpn~8>Du=&i@gzpXv=drg
zfr<6+SHvs6L;25;A6jXC^(Q{)gX`)#lv)DtutnfWUA;NFH0Ak2X*GxT8la-uoOcJg
z|M~@Bj;H7mGfqBFV@Cdx(qU{s3~soF93t=7V?tmMFC~T#mDAiP<%sJS{rh`=w)`*3
z{{D$l1xTOYg&Tle8pwc5nJ|VSt%>fC!vFSV|0>|=z1^kIxN?Rykhj~B!aINYC$q-Y
zz4)6D|02oXKkXrRx_d6Vg=F~WNQUp<0fm1F?qbsa5d8nX+pC*Hi4>SW8az$O0I@?%
z0XuX}xg+;oWXkwY^8dZoKaS*^CfH^D5pKbi$H0ozAa%eR{aY&i*9CvySMRrAm!FO<
zQXRnaAZa&%RcLZ_2kg5s4e2ia>(2d`pYUwJF8Ahz%W=RtyeR)VSz>@ccVTCK_SO4(
zj~R4I<$ohJgpvb1A#_OLpUUcgSv4Xa9FN`1lI2y6!GGD+f7$bMWZ@Qv2Gc)e)W4+F
zfBnhZ4j<@7YuAMBf0%~<^)LU$g5I4#2Z@PGxBV|~@DHlWTZ2RIwhAt5_`iP#FBTA>
z(=_M)zgGT#Mu>IF7nnYFzAXgaNKP<HV4hS027suft|)Ss0)J>b>;!gbwYJ-y`v$Ls
z2>Qw)1sDKIi<c%5?JfZgb6}czy6yPQIO6qm_y7YSWlIQBJ&WHj3`|dfX=e4EZx*+^
g38_SQaw6v+dr|dg9@bwPg&2Uq)78&qol`;+05d%xZU6uP

literal 0
HcmV?d00001

diff --git a/cli.py b/cli.py
new file mode 100644
index 0000000..0d57d9d
--- /dev/null
+++ b/cli.py
@@ -0,0 +1,214 @@
+"""
+SREGym CLI client. Use this for debugging and platform development work—
+otherwise use main.py.
+
+This version talks directly to the in-process Conductor for both environment
+setup and grading, but still gives you the PromptToolkit+Rich UI.
+"""
+
+import asyncio
+import json
+import logging
+import sys
+from multiprocessing import Process, set_start_method
+from threading import Thread
+
+from prompt_toolkit import PromptSession
+from prompt_toolkit.completion import WordCompleter
+from prompt_toolkit.patch_stdout import patch_stdout
+from prompt_toolkit.styles import Style
+from rich.console import Console
+from rich.markdown import Markdown
+from rich.panel import Panel
+
+from dashboard.dashboard_app import SREGymDashboardServer
+from dashboard.proxy import LogProxy
+from logger import init_logger
+from sregym.conductor.conductor import Conductor
+from sregym.conductor.constants import StartProblemResult
+from sregym.service.shell import Shell
+
+WELCOME = """
+# SREGym
+- This CLI is used by benchmark developers to test new problems.
+"""
+
+OPTIONS = """
+- Use `start <problem_id>` to run your selected problem.
+- Tools like `get_logs`, `get_metrics`, and `get_traces` are available in this CLI.
+- Use the `submit()` function in the console to test an agent submission.
+"""
+
+WARNING = (
+    "[bold yellow][WARNING][/bold yellow] Starting a new problem will "
+    "restart any running app. Make sure you finish working before you start."
+)
+
+# (If you still want TASK_MESSAGE for problem context, you can re-enable it here.)
+
+
+class HumanAgent:
+    def __init__(self, conductor: Conductor):
+        self.session = PromptSession()
+        self.console = Console(force_terminal=True, color_system="auto")
+        self.conductor = conductor
+        self.pids = self.conductor.problems.get_problem_ids()
+        self.completer = WordCompleter(
+            ["list", "options", "exit"] + [f"start {pid}" for pid in self.pids],
+            ignore_case=True,
+            match_middle=True,
+            sentence=True,
+        )
+        self.session_purpose = None  # "problem", "exit", etc.
+
+    def display_welcome(self):
+        self.console.print(Markdown(WELCOME), justify="center")
+        self.console.print(Markdown(OPTIONS), justify="center")
+        self.console.print(WARNING)
+        self.console.print()
+
+    async def select_mode(self):
+        """Prompt until we get 'start <problem_id>' or 'exit'."""
+        while True:
+            inp = await self._prompt()
+            cmd = inp.strip().split(maxsplit=1)
+            if cmd[0].lower() == "exit":
+                sys.exit(0)
+            if cmd[0].lower() == "options":
+                self.console.print(Markdown(OPTIONS), justify="center")
+                continue
+            if cmd[0].lower() == "start" and len(cmd) == 2:
+                pid = cmd[1]
+                if pid not in self.pids:
+                    self.console.print(f"[red]Unknown problem id: {pid}")
+                    continue
+                self.conductor.problem_id = pid
+                self.session_purpose = "problem"
+                return
+            self.console.print("[red]Invalid command. Type `options` to see choices.")
+
+    async def interactive_loop(self):
+        """Once problem is started, repeatedly shell or submit until done."""
+        env = ""
+        while self.conductor.submission_stage != "done":
+            # display last environment or grading response
+            if env:
+                print(env)
+
+            inp = await self._prompt()
+            text = inp.strip()
+
+            # shell command
+            if not text.startswith("submit("):
+                try:
+                    out = Shell.exec(text)
+                except Exception as e:
+                    out = f"[❌] Shell error: {e}"
+                env = out
+                continue
+
+            wrapped = f"```\n{text}\n```"
+            try:
+                resp = await self.conductor.submit(wrapped)
+            except Exception as e:
+                env = f"[❌] Grading error: {e}"
+            else:
+                env = resp
+
+        # final results panel
+        final = json.dumps(self.conductor.results, indent=2)
+        self.console.print(Panel(final, title="Final Results", style="bold green"))
+
+    async def _prompt(self) -> str:
+        loop = asyncio.get_running_loop()
+        style = Style.from_dict({"prompt": "ansigreen bold"})
+        prompt_txt = [("class:prompt", "SREGym> ")]
+        with patch_stdout():
+            try:
+                return await loop.run_in_executor(
+                    None,
+                    lambda: self.session.prompt(prompt_txt, style=style, completer=self.completer),
+                )
+            except (KeyboardInterrupt, EOFError):
+                sys.exit(0)
+
+
+def run_dashboard_server():
+    """Entry point for multiprocessing child: construct Dash in child process."""
+    # Silence child process stdout/stderr and noisy loggers
+    import logging
+    import os
+    import sys
+
+    try:
+        sys.stdout = open(os.devnull, "w")
+        sys.stderr = open(os.devnull, "w")
+    except Exception:
+        pass
+    server = SREGymDashboardServer(host="127.0.0.1", port=11451, debug=False)
+    server.run(threaded=False)
+
+
+async def main():
+    # set up the logger
+    """
+    logging.getLogger("sregym-global").setLevel(logging.INFO)
+    logging.getLogger("sregym-global").addHandler(LogProxy())
+
+    try:
+        set_start_method("spawn")
+    except RuntimeError:
+        pass
+
+    # Start dashboard in a separate process; construct server inside the child
+    p = Process(target=run_dashboard_server, daemon=True)
+    p.start()
+    """
+
+    init_logger()
+
+    """
+    import os, subprocess
+    
+    dash_path = os.path.join(os.path.dirname(__file__), "dashboard", "dashboard_app.py")
+    dash_cmd = ["python3", dash_path]
+    env = {**os.environ, "PYTHONUNBUFFERED": "1"} 
+
+    proc = subprocess.Popen(
+        dash_cmd,
+        stdout=subprocess.DEVNULL,  #
+        stderr=subprocess.DEVNULL,
+        env=env,
+    )
+
+    proc.terminate()  
+    try:
+        proc.wait(timeout=10)
+    except subprocess.TimeoutExpired:
+        proc.kill()
+    """
+
+    conductor = Conductor()
+    agent = HumanAgent(conductor)
+    conductor.register_agent()  # no-op but for symmetry
+
+    # 1) Intro & pick a problem
+    agent.display_welcome()
+    await agent.select_mode()
+
+    # 2) Deploy environment & launch HTTP server
+    result = await conductor.start_problem()
+    while result != StartProblemResult.SUCCESS:
+        agent.console.print(
+            "[yellow]⏭️  This problem requires Khaos but cannot run on emulated clusters. "
+            "Please select another problem.[/yellow]"
+        )
+        await agent.select_mode()
+        result = await conductor.start_problem()
+
+    # 3) Interactive shell / submit loop
+    await agent.interactive_loop()
+
+
+if __name__ == "__main__":
+    asyncio.run(main())
diff --git a/clients/__init__.py b/clients/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/autosubmit/autosubmit_agent.py b/clients/autosubmit/autosubmit_agent.py
new file mode 100644
index 0000000..530e17a
--- /dev/null
+++ b/clients/autosubmit/autosubmit_agent.py
@@ -0,0 +1,31 @@
+import subprocess
+import sys
+import threading
+from time import sleep
+
+server_url = sys.argv[1] if len(sys.argv) > 1 else "http://localhost:8000"
+
+
+def automatic_submit():
+    ctr = 0
+    while ctr < 10000:
+        subprocess.run(
+            [
+                "curl",
+                "-X",
+                "POST",
+                "http://localhost:8000/submit",
+                "-H",
+                "Content-Type: application/json",
+                "-d",
+                '{"solution":"yes"}',
+            ],
+            capture_output=True,
+            text=True,
+        )
+        sleep(60)
+        ctr += 1
+
+
+if __name__ == "__main__":
+    automatic_submit()
diff --git a/clients/stratus/README.md b/clients/stratus/README.md
new file mode 100644
index 0000000..c50180f
--- /dev/null
+++ b/clients/stratus/README.md
@@ -0,0 +1,8 @@
+# Stratus
+This folder includes the implementation of the Stratus agent.
+
+The agent's main implementation is in the [stratus-agent](https://github.com/SREGym/SREGym/tree/main/clients/stratus/stratus_agent) directory.
+
+The agent's tooling support is in the [tools](https://github.com/SREGym/SREGym/tree/main/clients/stratus/tools) and [weak-oracles](https://github.com/SREGym/SREGym/tree/main/clients/stratus/weak_oracles) directory.
+
+The agent's prompts and configurations are in the [configs](https://github.com/SREGym/SREGym/tree/main/clients/stratus/configs) directory.
diff --git a/clients/stratus/__init__.py b/clients/stratus/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/stratus/configs/diagnosis_agent_config.yaml b/clients/stratus/configs/diagnosis_agent_config.yaml
new file mode 100644
index 0000000..85ad9fc
--- /dev/null
+++ b/clients/stratus/configs/diagnosis_agent_config.yaml
@@ -0,0 +1,79 @@
+# each step is defined as one tool call
+max_step: 20
+# diagnosis agent has no synchronous tools
+sync_tools: null
+async_tools:
+  - name: get_traces
+    description: |
+      Get Jaeger traces for a given service in the last n minutes.
+      
+          Args:
+              service (str): The name of the service for which to retrieve trace data.
+              last_n_minutes (int): The time range (in minutes) to look back from the current time.
+  - name: get_services
+    description: |
+      Retrieve the list of service names from the Grafana instance.
+      
+          Args:
+      
+          Returns:
+              List[str]: A list of service names available in Grafana.
+  - name: get_operations
+    description: |
+      Query available operations for a specific service from the Grafana instance.
+      
+          Args:
+              service (str): The name of the service whose operations should be retrieved.
+      
+          Returns:
+              List[str]: A list of operation names associated with the specified service.
+  - name: get_dependency_graph
+    description: |
+      Get service dependency graph from Jaeger's native dependencies API.
+          Args:
+              last_n_minutes (int): The time range (in minutes) to look back from the current time.
+          Returns:
+              str: JSON object representing the dependency graph.
+  - name: get_metrics
+    description: |
+      Query real-time metrics data from the Prometheus instance.
+
+          Args:
+              query (str): A Prometheus Query Language (PromQL) expression used to fetch metric values.
+
+          Returns:
+              dict: The raw Prometheus response containing metric results, including timestamps, values, and labels.
+  - name: exec_read_only_kubectl_cmd
+    description: |
+      This is a tool used to execute read-only kubectl commands.
+      
+          Args:
+              command (str): The read-only kubectl command you want to execute in a CLI to manage a k8s cluster. It should start with "kubectl". 
+              Available Read-only Commands:
+              "kubectl api-resources",
+              "kubectl api-version",
+              "kubectl auth can-i",
+              "kubectl cluster-info",
+              "kubectl describe",
+              "kubectl diff",
+              "kubectl events",
+              "kubectl explain",
+              "kubectl get",
+              "kubectl logs",
+              "kubectl options",
+              "kubectl top",
+              "kubectl version",
+              "kubectl config view",
+              "kubectl config current-context",
+              "kubectl config get",
+              INTERACTIVE COMMANDS ARE NOT SUPPORTED, e.g. "kubectl edit" 
+              INTERACTIVE FLAGS ARE NOT SUPPORTED, e.g., "kubectl logs -f"
+  - name: submit_tool
+    description: |
+      The tool to submit benchmark results
+          
+          Args:
+              ans (str): the answer you would like to submit to the benchmark. You should only use string "Yes" or "No" with quotes to indicate whether there are anomalies detected.
+prompts_path: diagnosis_agent_prompts.yaml
+
+
diff --git a/clients/stratus/configs/diagnosis_agent_prompts.yaml b/clients/stratus/configs/diagnosis_agent_prompts.yaml
new file mode 100644
index 0000000..3d9baba
--- /dev/null
+++ b/clients/stratus/configs/diagnosis_agent_prompts.yaml
@@ -0,0 +1,70 @@
+system: >
+    Monitor and diagnose an application consisting of **MANY** microservices. Some or none of the microservices have faults. Get all the pods and deployments to figure out what kind of services are running in the cluster. 
+    Carefully identify the whether the faults are present and if they are, and identify what is the root cause of the fault.
+
+    Stop diagnosis once you've found the root cause of the faults.
+
+    Go as deep as you can into what is causing the issue.
+
+    Your instructions to the tools must be clear and concise.
+    Your queries to tools need to be single turn.
+
+    Remember to check these, and remember this information:
+    ## Workloads (Applications)
+    - **Pod**: The smallest deployable unit in Kubernetes, representing a single instance of a running application. Can contain one or more tightly coupled containers.
+    - **ReplicaSet**: Ensures that a specified number of pod replicas are running at all times. Often managed indirectly through Deployments.
+    - **Deployment**: Manages the deployment and lifecycle of applications. Provides declarative updates for Pods and ReplicaSets.
+    - **StatefulSet**: Manages stateful applications with unique pod identities and stable storage. Used for workloads like databases.
+    - **DaemonSet**: Ensures that a copy of a specific pod runs on every node in the cluster. Useful for node monitoring agents, log collectors, etc.
+    - **Job**: Manages batch processing tasks that are expected to complete successfully. Ensures pods run to completion.
+    - **CronJob**: Schedules jobs to run at specified times or intervals (similar to cron in Linux).
+
+    ## Networking
+    - **Service**: Provides a stable network endpoint for accessing a group of pods. Types: ClusterIP, NodePort, LoadBalancer, and ExternalName.
+    - **Ingress**: Manages external HTTP(S) access to services in the cluster. Supports routing and load balancing for HTTP(S) traffic.
+    - **NetworkPolicy**: Defines rules for network communication between pods and other entities. Used for security and traffic control.
+
+    ## Storage
+    - **PersistentVolume (PV)**: Represents a piece of storage in the cluster, provisioned by an administrator or dynamically.
+    - **PersistentVolumeClaim (PVC)**: Represents a request for storage by a user. Binds to a PersistentVolume.
+    - **StorageClass**: Defines different storage tiers or backends for dynamic provisioning of PersistentVolumes.
+    - **ConfigMap**: Stores configuration data as key-value pairs for applications.
+    - **Secret**: Stores sensitive data like passwords, tokens, or keys in an encrypted format.
+
+    ## Configuration and Metadata
+    - **Namespace**: Logical partitioning of resources within the cluster for isolation and organization.
+    - **ConfigMap**: Provides non-sensitive configuration data in key-value format.
+    - **Secret**: Stores sensitive configuration data securely.
+    - **ResourceQuota**: Restricts resource usage (e.g., CPU, memory) within a namespace.
+    - **LimitRange**: Enforces minimum and maximum resource limits for containers in a namespace.
+
+    ## Cluster Management
+    - **Node**: Represents a worker machine in the cluster (virtual or physical). Runs pods and is managed by the control plane.
+    - **ClusterRole and Role**: Define permissions for resources at the cluster or namespace level.
+    - **ClusterRoleBinding and RoleBinding**: Bind roles to users or groups for authorization.
+    - **ServiceAccount**: Associates processes in pods with permissions for accessing the Kubernetes API.
+
+    After you finished, submit "Yes" to denote that there's an incident in the cluster. 
+    Submit "No" to denote that there is no incidents identified.
+  
+
+user: >
+  You will be working this application:
+  
+  {app_name}
+  
+  Here are some descriptions about the application:
+  
+  {app_description}
+  
+  It belongs to this namespace:
+  
+  {app_namespace}
+  
+  In each round, there is a thinking stage. In the thinking stage, you are given a list of tools. Think about what you want to call. Return your tool choice and the reasoning behind
+  When choosing the tool, refer to the tool by its name.
+  Then, there is a tool-call stage, where you make a tool_call consistent with your explanation.
+  You can run up to {max_step} rounds to finish the tasks.
+  If you call submit_tool in tool-call stage, the process will end immediately.
+  If you exceed this limitation, the system will force you to make a submission.
+  You will begin by analyzing the service's state and telemetry with the tools.
\ No newline at end of file
diff --git a/clients/stratus/configs/langgraph_tool_configs.py b/clients/stratus/configs/langgraph_tool_configs.py
new file mode 100644
index 0000000..d6fb157
--- /dev/null
+++ b/clients/stratus/configs/langgraph_tool_configs.py
@@ -0,0 +1,46 @@
+import os
+
+from dotenv import load_dotenv
+from pydantic import BaseModel, Field
+
+load_dotenv()
+
+
+# FIXME: name of class is misleading for now
+class LanggraphToolConfig(BaseModel):
+    prometheus_mcp_url: str = Field(
+        description="url for prometheus mcp server",
+        default=f"http://localhost:{os.getenv('MCP_SERVER_PORT', '9954')}/prometheus/sse",
+    )
+    jaeger_mcp_url: str = Field(
+        description="url for jaeger mcp server",
+        default=f"http://localhost:{os.getenv('MCP_SERVER_PORT', '9954')}/jaeger/sse",
+    )
+    kubectl_mcp_url: str = Field(
+        description="url for kubectl mcp server",
+        default=f"http://localhost:{os.getenv('MCP_SERVER_PORT', '9954')}/kubectl_mcp_tools/sse",
+    )
+    submit_mcp_url: str = Field(
+        description="url for submit mcp server",
+        default=f"http://localhost:{os.getenv('MCP_SERVER_PORT', '9954')}/submit/sse",
+    )
+    benchmark_submit_url: str = Field(
+        description="url for the submission result destination, default to http://localhost:8000/submit",
+        default=f"http://localhost:{os.getenv("API_PORT", "8000")}/submit",
+    )
+    benchmark_app_info_url: str = Field(
+        description="url for getting benchmark application information, default to http://localhost:8000/get_app",
+        default=f"http://localhost:{os.getenv("API_PORT", "8000")}/get_app",
+    )
+    benchmark_current_problem: str = Field(
+        description="url for getting current benchmark problem, default to http://localhost:8000/get_problem",
+        default=f"http://localhost:{os.getenv("API_PORT", "8000")}/get_problem",
+    )
+
+    min_len_to_sum: int = Field(
+        description="Minimum length of text that will be summarized " "first before being input to the main agent.",
+        default=200,
+        ge=50,
+    )
+
+    use_summaries: bool = Field(description="Whether or not using summaries for too long texts.", default=True)
diff --git a/clients/stratus/configs/llm_summarization_prompt.yaml b/clients/stratus/configs/llm_summarization_prompt.yaml
new file mode 100644
index 0000000..93219b6
--- /dev/null
+++ b/clients/stratus/configs/llm_summarization_prompt.yaml
@@ -0,0 +1,37 @@
+mitigation_retry_prompt: |
+  Summarize a human-LLM (large language model) conversation by carefully analyzing the interaction, identifying both successes and failures before writing any summaries. For each identified point, select a direct excerpt from the message list that best illustrates or justifies your summary. Then, generate two lists: one of summaries describing what worked well in the conversation, and another of summaries describing what didn’t work or where the interaction was unsuccessful.
+
+  Be sure to:
+  - First thoroughly review the entire message list and reason step-by-step to identify all relevant successes and failures before producing any summary points.
+  - For **each** bullet point in your lists, include a direct excerpt from the message(s) being referenced. Integrate the excerpt as a supporting quote within the summary bullet, clearly separating the summary from the quoted message.
+  - Consider the intentions of the human participant, how well the LLM addressed those goals, communication clarity, misunderstandings, helpfulness, responsiveness, and overall satisfaction.
+  - Continue analyzing the conversation until all notable successes and failures are identified.
+
+  Structure your output as follows:
+  - First a “What Worked” section, then a “What Didn’t Work” section.
+  - Each section should use a markdown header.
+  - Use bullet points for each item (2-5 per section). Each bullet point should be succinct (no more than two sentences).
+  - Explicitly include a representative excerpt from the conversation in every bullet (formatted as a quote, e.g., “User: ...” or “LLM: ...”).
+
+  # Output Format
+
+  - Use markdown headers: “What Worked” and “What Didn’t Work”.
+  - Present 2-5 bullet points per list, each containing both a concise summary and a quoted message excerpt from the conversation.
+  - Each bullet may have the structure: Brief summary sentence, followed by a colon and a quoted excerpt.
+  - Do not include any extraneous explanation or text.
+
+  # Example
+
+  ### What Worked
+  - The LLM accurately interpreted the user's request for a summary: “User: Could you summarize our discussion so far?”
+  - The conversation maintained a polite and friendly tone throughout: “LLM: Certainly, I’d be glad to help with that!”
+
+  ### What Didn’t Work
+  - The LLM struggled with domain-specific questions, resulting in vague responses: “User: Can you explain how blockchain consensus works?” / “LLM: Blockchain has something to do with security and records, but I’m not sure.”
+  - An ambiguous prompt from the user led to confusion early in the exchange: “User: Give me one of those—you know what I mean.”
+
+  _Reminder: Analyze the conversation deeply and include a relevant conversation excerpt with each summary bullet._
+
+localization_summary_prompt: |
+  You are a helper agent to an autonomous SRE agent.
+  Summarize the agent's trace and output the potential fault location and causes.
\ No newline at end of file
diff --git a/clients/stratus/configs/localization_agent_config.yaml b/clients/stratus/configs/localization_agent_config.yaml
new file mode 100644
index 0000000..783bfc8
--- /dev/null
+++ b/clients/stratus/configs/localization_agent_config.yaml
@@ -0,0 +1,89 @@
+# each step is defined as one tool call
+max_step: 20
+# diagnosis agent has no synchronous tools
+sync_tools: null
+async_tools:
+  - name: get_traces
+    description: |
+      Get Jaeger traces for a given service in the last n minutes.
+      
+          Args:
+              service (str): The name of the service for which to retrieve trace data.
+              last_n_minutes (int): The time range (in minutes) to look back from the current time.
+  - name: get_services
+    description: |
+      Retrieve the list of service names from the Grafana instance.
+      
+          Args:
+      
+          Returns:
+              List[str]: A list of service names available in Grafana.
+  - name: get_operations
+    description: |
+      Query available operations for a specific service from the Grafana instance.
+      
+          Args:
+              service (str): The name of the service whose operations should be retrieved.
+      
+          Returns:
+              List[str]: A list of operation names associated with the specified service.
+  - name: get_dependency_graph
+    description: |
+      Get service dependency graph from Jaeger's native dependencies API.
+          Args:
+              last_n_minutes (int): The time range (in minutes) to look back from the current time.
+          Returns:
+              str: JSON object representing the dependency graph.
+  - name: get_metrics
+    description: |
+      Query real-time metrics data from the Prometheus instance.
+
+          Args:
+              query (str): A Prometheus Query Language (PromQL) expression used to fetch metric values.
+
+          Returns:
+              dict: The raw Prometheus response containing metric results, including timestamps, values, and labels.
+  - name: exec_read_only_kubectl_cmd
+    description: |
+      This is a tool used to execute read-only kubectl commands.
+      
+          Args:
+              command (str): The read-only kubectl command you want to execute in a CLI to manage a k8s cluster. It should start with "kubectl". 
+              Available Read-only Commands:
+              "kubectl api-resources",
+              "kubectl api-version",
+              "kubectl auth can-i",
+              "kubectl cluster-info",
+              "kubectl describe",
+              "kubectl diff",
+              "kubectl events",
+              "kubectl explain",
+              "kubectl get",
+              "kubectl logs",
+              "kubectl options",
+              "kubectl top",
+              "kubectl version",
+              "kubectl config view",
+              "kubectl config current-context",
+              "kubectl config get",
+              INTERACTIVE COMMANDS ARE NOT SUPPORTED, e.g. "kubectl edit" 
+              INTERACTIVE FLAGS ARE NOT SUPPORTED, e.g., "kubectl logs -f"
+  - name: get_resource_uid
+    description: |
+      Use this tool to retrieve the UID of a specified resource.
+      
+          Args:
+              resource_type (str): The type of the resource (e.g., 'pod', 'service', 'deployment', 'statefulset', 'persistentvolumeclaim', 'persistentvolume', 'configmap', 'replicaset', 'memoryquota', 'ingress', 'networkpolicy' etc.).
+              resource_name (str): The name of the resource.
+              namespace (str): The namespace where the resource is located.
+          Returns:
+              str: The UID of the specified resource.
+  - name: submit_tool
+    description: |
+      The tool to submit benchmark results
+          
+          Args:
+              ans (str): the answer you would like to submit to the benchmark. Use natural language to describe the root cause of the failure.
+
+prompts_path: localization_agent_prompts.yaml
+
diff --git a/clients/stratus/configs/localization_agent_prompts.yaml b/clients/stratus/configs/localization_agent_prompts.yaml
new file mode 100644
index 0000000..a3e488f
--- /dev/null
+++ b/clients/stratus/configs/localization_agent_prompts.yaml
@@ -0,0 +1,73 @@
+system: >
+    Monitor and diagnose an application consisting of **MANY** microservices. Some or none of the microservices have faults. Get all the pods and deployments to figure out what kind of services are running in the cluster. 
+    Carefully identify the whether the faults are present and if they are, and identify what is the root cause of the fault.
+
+    Stop diagnosis once you've found the root cause of the faults.
+
+    Go as deep as you can into what is causing the issue.
+
+    Your instructions to the tools must be clear and concise.
+    Your queries to tools need to be single turn.
+
+    Remember to check these, and remember this information:
+    ## Workloads (Applications)
+    - **Pod**: The smallest deployable unit in Kubernetes, representing a single instance of a running application. Can contain one or more tightly coupled containers.
+    - **ReplicaSet**: Ensures that a specified number of pod replicas are running at all times. Often managed indirectly through Deployments.
+    - **Deployment**: Manages the deployment and lifecycle of applications. Provides declarative updates for Pods and ReplicaSets.
+    - **StatefulSet**: Manages stateful applications with unique pod identities and stable storage. Used for workloads like databases.
+    - **DaemonSet**: Ensures that a copy of a specific pod runs on every node in the cluster. Useful for node monitoring agents, log collectors, etc.
+    - **Job**: Manages batch processing tasks that are expected to complete successfully. Ensures pods run to completion.
+    - **CronJob**: Schedules jobs to run at specified times or intervals (similar to cron in Linux).
+
+    ## Networking
+    - **Service**: Provides a stable network endpoint for accessing a group of pods. Types: ClusterIP, NodePort, LoadBalancer, and ExternalName.
+    - **Ingress**: Manages external HTTP(S) access to services in the cluster. Supports routing and load balancing for HTTP(S) traffic.
+    - **NetworkPolicy**: Defines rules for network communication between pods and other entities. Used for security and traffic control.
+
+    ## Storage
+    - **PersistentVolume (PV)**: Represents a piece of storage in the cluster, provisioned by an administrator or dynamically.
+    - **PersistentVolumeClaim (PVC)**: Represents a request for storage by a user. Binds to a PersistentVolume.
+    - **StorageClass**: Defines different storage tiers or backends for dynamic provisioning of PersistentVolumes.
+    - **ConfigMap**: Stores configuration data as key-value pairs for applications.
+    - **Secret**: Stores sensitive data like passwords, tokens, or keys in an encrypted format.
+
+    ## Configuration and Metadata
+    - **Namespace**: Logical partitioning of resources within the cluster for isolation and organization.
+    - **ConfigMap**: Provides non-sensitive configuration data in key-value format.
+    - **Secret**: Stores sensitive configuration data securely.
+    - **ResourceQuota**: Restricts resource usage (e.g., CPU, memory) within a namespace.
+    - **LimitRange**: Enforces minimum and maximum resource limits for containers in a namespace.
+
+    ## Cluster Management
+    - **Node**: Represents a worker machine in the cluster (virtual or physical). Runs pods and is managed by the control plane.
+    - **ClusterRole and Role**: Define permissions for resources at the cluster or namespace level.
+    - **ClusterRoleBinding and RoleBinding**: Bind roles to users or groups for authorization.
+    - **ServiceAccount**: Associates processes in pods with permissions for accessing the Kubernetes API.
+  
+    After you finished, submit the detected faulty components to the orchestrator for evaluation.
+    The submission should be a natural language description of the root cause of the failure.
+
+user: >
+  You will be working this application:
+
+  {app_name}
+
+  Here are some descriptions about the application:
+
+  {app_description}
+
+  It belongs to this namespace:
+
+  {app_namespace}
+
+  In each round, there is a thinking stage. In the thinking stage, you are given a list of tools. Think about what you want to call. Return your tool choice and the reasoning behind
+  When choosing the tool, refer to the tool by its name.
+  Then, there is a tool-call stage, where you make a tool_call consistent with your explanation.
+  You can run up to {max_step} rounds to finish the tasks.
+  If you call submit_tool in tool-call stage, the process will end immediately.
+  If you exceed this limitation, the system will force you to make a submission.
+  You will begin by analyzing the service's state and telemetry with the tools.
+
+localization_summary_prompt: |
+  You are a helper agent to an autonomous SRE agent.
+  Summarize the agent's trace and output the potential fault location and causes.
\ No newline at end of file
diff --git a/clients/stratus/configs/mitigation_agent_config.yaml b/clients/stratus/configs/mitigation_agent_config.yaml
new file mode 100644
index 0000000..192e217
--- /dev/null
+++ b/clients/stratus/configs/mitigation_agent_config.yaml
@@ -0,0 +1,74 @@
+# each step is defined as one tool call
+max_step: 20
+max_retry_attempts: 10
+# choose from: naive, validate, none
+retry_mode: validate
+sync_tools:
+  - name: wait_tool
+    description: |
+      Use this tool to wait for you action to take effect. The upper limit is 120 seconds. 
+          Any value above 120 seconds will be truncated to 120 seconds. If you call this tool
+          along with other tools in your tool_calls list, this tool will be scheduled to the 
+          last for execution.
+
+          Args:
+              seconds (int): Number of seconds to wait.
+async_tools:
+  - name: get_traces
+    description: |
+      Get Jaeger traces for a given service in the last n minutes.
+      
+          Args:
+              service (str): The name of the service for which to retrieve trace data.
+              last_n_minutes (int): The time range (in minutes) to look back from the current time.
+  - name: get_services
+    description: |
+      Retrieve the list of service names from the Grafana instance.
+      
+          Args:
+      
+          Returns:
+              List[str]: A list of service names available in Grafana.
+  - name: get_operations
+    description: |
+      Query available operations for a specific service from the Grafana instance.
+      
+          Args:
+              service (str): The name of the service whose operations should be retrieved.
+      
+          Returns:
+              List[str]: A list of operation names associated with the specified service.
+  - name: get_dependency_graph
+    description: |
+      Get service dependency graph from Jaeger's native dependencies API.
+          Args:
+              last_n_minutes (int): The time range (in minutes) to look back from the current time.
+          Returns:
+              str: JSON object representing the dependency graph.
+  - name: get_metrics
+    description: |
+      Query real-time metrics data from the Prometheus instance.
+
+          Args:
+              query (str): A Prometheus Query Language (PromQL) expression used to fetch metric values.
+
+          Returns:
+              dict: The raw Prometheus response containing metric results, including timestamps, values, and labels.
+  - name: exec_kubectl_cmd_safely
+    description: |
+      This is a tool used to safely execute kubectl commands. Whatever commands you executed will be stored in a rollback 
+      mechanism which later is used to roll back the cluster state in case your current attempt fails.
+      
+          Args:
+              command (str): The kubectl command you would like to execute, must start with "kubectl"
+              INTERACTIVE COMMANDS ARE NOT SUPPORTED, e.g. "kubectl edit" 
+              INTERACTIVE FLAGS ARE NOT SUPPORTED, e.g., "kubectl logs -f"
+  - name: f_submit_tool
+    description: |
+      The tool to submit benchmark results
+          
+          Args:
+              ans (str): the answer you would like to submit to the benchmark
+prompts_path: mitigation_agent_prompts.yaml
+
+
diff --git a/clients/stratus/configs/mitigation_agent_prompts.yaml b/clients/stratus/configs/mitigation_agent_prompts.yaml
new file mode 100644
index 0000000..7488c57
--- /dev/null
+++ b/clients/stratus/configs/mitigation_agent_prompts.yaml
@@ -0,0 +1,96 @@
+system: >
+  Mitigate the identified faults in an IT incident. 
+  Some or none of the microservices have faults. 
+  Get all the pods and deployments to figure out what kind of services are running in the cluster if you don't know what the services are.
+  You should carefully identify the whether the faults are present and if they are, what is the root cause of the fault.
+  You can stop mitigation once you've fixed all the faults. 
+  
+  Go as deep as you can into what is causing the issue, and mitigate the fault.
+
+  Your instructions to the tools must be clear and concise.
+  Your queries to tools need to be single turn.
+
+  Remember to check these, and remember this information:
+  ## Workloads (Applications)
+  - **Pod**: The smallest deployable unit in Kubernetes, representing a single instance of a running application. Can contain one or more tightly coupled containers.
+  - **ReplicaSet**: Ensures that a specified number of pod replicas are running at all times. Often managed indirectly through Deployments.
+  - **Deployment**: Manages the deployment and lifecycle of applications. Provides declarative updates for Pods and ReplicaSets.
+  - **StatefulSet**: Manages stateful applications with unique pod identities and stable storage. Used for workloads like databases.
+  - **DaemonSet**: Ensures that a copy of a specific pod runs on every node in the cluster. Useful for node monitoring agents, log collectors, etc.
+  - **Job**: Manages batch processing tasks that are expected to complete successfully. Ensures pods run to completion.
+  - **CronJob**: Schedules jobs to run at specified times or intervals (similar to cron in Linux).
+
+  ## Networking
+  - **Service**: Provides a stable network endpoint for accessing a group of pods. Types: ClusterIP, NodePort, LoadBalancer, and ExternalName.
+  - **Ingress**: Manages external HTTP(S) access to services in the cluster. Supports routing and load balancing for HTTP(S) traffic.
+  - **NetworkPolicy**: Defines rules for network communication between pods and other entities. Used for security and traffic control.
+
+  ## Storage
+  - **PersistentVolume (PV)**: Represents a piece of storage in the cluster, provisioned by an administrator or dynamically.
+  - **PersistentVolumeClaim (PVC)**: Represents a request for storage by a user. Binds to a PersistentVolume.
+  - **StorageClass**: Defines different storage tiers or backends for dynamic provisioning of PersistentVolumes.
+  - **ConfigMap**: Stores configuration data as key-value pairs for applications.
+  - **Secret**: Stores sensitive data like passwords, tokens, or keys in an encrypted format.
+
+  ## Configuration and Metadata
+  - **Namespace**: Logical partitioning of resources within the cluster for isolation and organization.
+  - **ConfigMap**: Provides non-sensitive configuration data in key-value format.
+  - **Secret**: Stores sensitive configuration data securely.
+  - **ResourceQuota**: Restricts resource usage (e.g., CPU, memory) within a namespace.
+  - **LimitRange**: Enforces minimum and maximum resource limits for containers in a namespace.
+
+  ## Cluster Management
+  - **Node**: Represents a worker machine in the cluster (virtual or physical). Runs pods and is managed by the control plane.
+  - **ClusterRole and Role**: Define permissions for resources at the cluster or namespace level.
+  - **ClusterRoleBinding and RoleBinding**: Bind roles to users or groups for authorization.
+  - **ServiceAccount**: Associates processes in pods with permissions for accessing the Kubernetes API.
+  
+  An example procedure to remediate the faults:
+  1) Formulate a remediation plan with a list of actionable steps.
+  2) Execute the plan, one step at a time.
+  3) Check if the plan execution worked as you desired in the IT environment.
+  4) If not, you can either call wait_tool to wait for it to take effect or take other actions.
+  5) Otherwise, continue the plan and execution process until you call submit_tool as you believe the application has become healthy.
+  
+  The following is a detailed description of your tasks.
+
+  1) mitigation: Mitigate the identified faults in an IT incident with the provided tools. You can submit an empty dict "ans" with the submit_tool
+  as this task is not graded over your answer but the final result of the mitigation; therefore, you have to make sure the
+  application has become healthy before you call submit_tool.
+
+user: |
+  You will be working this application:
+  
+  {app_name}
+  
+  Here are some descriptions about the application:
+  
+  {app_description}
+  
+  It belongs to this namespace:
+  
+  {app_namespace}
+  
+  The following is the information of faults identified by a diagnosis agent in the app:
+  
+  {faults_info}
+  
+  In each round, there is a thinking stage. In the thinking stage, you are given a list of tools. Think about what you want to call. Return your tool choice and the reasoning behind.
+  When choosing the tool, refer to the tool by its name.
+  Then, there is a tool-call stage, where you make a tool_call consistent with your explanation.
+  You can run up to {max_step} rounds to finish the tasks.
+  If you call submit_tool in tool-call stage, the process will end immediately.
+  If you exceed this limitation, the system will force you to make a submission.
+  You will begin by analyzing the service's state and telemetry with the tools.
+
+retry_user: |
+  The result from the last attempt of mitigation is as follows:
+  
+  {last_result}
+  
+  There are some reflections from the previous run:
+  
+  {reflection}
+  
+  Next, use the provided tools to mitigate the faults.
+  It is a good habit to verify the information of faults first before you take any actions for mitigation.
\ No newline at end of file
diff --git a/clients/stratus/configs/rollback_agent_config.yaml b/clients/stratus/configs/rollback_agent_config.yaml
new file mode 100644
index 0000000..4194add
--- /dev/null
+++ b/clients/stratus/configs/rollback_agent_config.yaml
@@ -0,0 +1,24 @@
+# each step is defined as one tool call
+max_step: 20
+sync_tools: 
+  - name: wait_tool
+    description: |
+      Use this tool to wait for you action to take effect. The upper limit is 120 seconds. 
+          Any value above 120 seconds will be truncated to 120 seconds. If you call this tool
+          along with other tools in your tool_calls list, this tool will be scheduled to the 
+          last for execution.
+
+          Args:
+              seconds (int): Number of seconds to wait.
+async_tools:
+  - name: rollback_command
+    description: |
+      Use this function to roll back the last kubectl command you observed
+      When you call this tool multiple times, you will roll-back previous commands in the reverse order of their prior execution."
+  - name: get_previous_rollbackable_cmd
+    description: |
+      Use this function to get a list of commands you previously executed that could be roll-backed.
+  - name: r_submit_tool
+    description: |
+      The tool to submit after you rolled back all the changes.
+prompts_path: rollback_agent_prompts.yaml
\ No newline at end of file
diff --git a/clients/stratus/configs/rollback_agent_prompts.yaml b/clients/stratus/configs/rollback_agent_prompts.yaml
new file mode 100644
index 0000000..a12ce20
--- /dev/null
+++ b/clients/stratus/configs/rollback_agent_prompts.yaml
@@ -0,0 +1,28 @@
+system: >
+  You are a smart and capable tool using agent. You are an expert at remediating the faults
+  in IT environments. You have tons of experience with kubernetes and SRE tools.
+  
+  Your responsibility is to rollback the changes that were made to the system to mitigate the
+  identified faults in an IT incident. You are given a rollback tool to help you rollback the system.
+  
+  You are given a system and a rollback tool. The system is either in a initial faulty state,
+  or in the state you left it incompletely repaired after the previous round of mitigation.
+  You need to rollback the system to the initial state since the operations you performed in
+  the previous round may negatively impact your current round of mitigation.
+  
+  The following is a detailed description of your tasks.
+  
+  1) rollback: You should run the rollback tool as many times as you can, since this rollback tool
+  undos the last operation performed on the system. You should run the rollback tool until it returns
+  that there are no more operations to undo. If you believe you've finished the task, you should submit
+  an empty dict "ans" with the submit_tool to trigger the end of the task.
+  
+
+user: >
+  In each round, there is a thinking stage. In the thinking stage, you are given a list of tools. Think about what you want to call. Return your tool choice and the reasoning behind.
+  When choosing the tool, refer to the tool by its name.
+  Then, there is a tool-call stage, where you make a tool_call consistent with your explanation.
+  You can run up to {max_step} rounds to finish the tasks.
+  If you call submit_tool in tool-call stage, the process will end immediately.
+  If you exceed this limitation, the system will force you to make a submission.
+  You will begin by analyzing the service's state and telemetry with the tools.
\ No newline at end of file
diff --git a/clients/stratus/configs/stratus_config.py b/clients/stratus/configs/stratus_config.py
new file mode 100644
index 0000000..a5eb720
--- /dev/null
+++ b/clients/stratus/configs/stratus_config.py
@@ -0,0 +1,28 @@
+import logging
+from pathlib import Path
+
+from dotenv import load_dotenv
+from pydantic import BaseModel, Field
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+parent_dir = Path(__file__).resolve().parent
+
+load_dotenv()
+
+
+class BaseAgentCfg(BaseModel):
+    max_round: int = Field(description="maximum rounds allowed for tool calling", gt=0)
+
+    prompts_file_path: str = Field(
+        description="prompts used for diagnosis agent",
+    )
+
+    sync_tools: list[str] = Field(
+        description="provided sync tools for the agent",
+    )
+
+    async_tools: list[str] = Field(
+        description="provided async tools for the agent",
+    )
diff --git a/clients/stratus/llm_backend/__init__.py b/clients/stratus/llm_backend/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/stratus/llm_backend/get_llm_backend.py b/clients/stratus/llm_backend/get_llm_backend.py
new file mode 100644
index 0000000..982e048
--- /dev/null
+++ b/clients/stratus/llm_backend/get_llm_backend.py
@@ -0,0 +1,353 @@
+"""Adopted from previous project"""
+
+import json
+import logging
+import os
+import time
+from typing import Any, Dict, Optional
+
+import litellm
+import openai
+from dotenv import load_dotenv
+from langchain_core.messages import AIMessage, HumanMessage, SystemMessage
+from langchain_google_genai import ChatGoogleGenerativeAI
+from langchain_ibm import ChatWatsonx
+from langchain_litellm import ChatLiteLLM
+from langchain_openai import ChatOpenAI
+from litellm.utils import trim_messages
+from requests.exceptions import HTTPError
+
+from clients.stratus.llm_backend.trim_util import trim_messages_conservative
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+load_dotenv()
+
+LLM_QUERY_MAX_RETRIES = int(os.getenv("LLM_QUERY_MAX_RETRIES", "5"))  # Maximum number of retries for rate-limiting
+LLM_QUERY_INIT_RETRY_DELAY = int(os.getenv("LLM_QUERY_INIT_RETRY_DELAY", "1"))  # Initial delay in seconds
+
+
+class LiteLLMBackend:
+
+    def __init__(
+        self,
+        provider: str,
+        model_name: str,
+        url: str,
+        api_key: str,
+        api_version: str,
+        seed: int,
+        top_p: float,
+        temperature: float,
+        reasoning_effort: str,
+        thinking_tools: str,
+        thinking_budget_tools: int,
+        max_tokens: int,
+        extra_headers: Optional[Dict[str, str]] = None,
+    ):
+        self.provider = provider
+        self.model_name = model_name
+        self.url = url
+        self.api_key = api_key
+        self.api_version = api_version
+        self.temperature = temperature
+        self.seed = seed
+        self.top_p = top_p
+        self.reasoning_effort = reasoning_effort
+        self.thinking_tools = thinking_tools
+        self.thinking_budget_tools = thinking_budget_tools
+        self.max_tokens = max_tokens
+        self.extra_headers = extra_headers
+        litellm.drop_params = True
+        litellm.modify_params = True  # for Anthropic
+
+    def inference(
+        self,
+        messages: str | list[SystemMessage | HumanMessage | AIMessage],
+        system_prompt: Optional[str] = None,
+        tools: Optional[list[any]] = None,
+    ):
+        if isinstance(messages, str):
+            # logger.info(f"NL input as str received: {messages}")
+            # FIXME: This should be deprecated as it does not contain prior history of chat.
+            #   We are building new agents on langgraph, which will change how messages are
+            #   composed.
+            if system_prompt is None:
+                logger.info("No system prompt provided. Using default system prompt.")
+                system_prompt = "You are a helpful assistant."
+            prompt_messages = [
+                SystemMessage(content=system_prompt),
+                HumanMessage(content=messages),
+            ]
+        elif isinstance(messages, list):
+            prompt_messages = messages
+            if len(messages) == 0:
+                arena_logger = logging.getLogger("sregym-global")
+                arena_logger.info("[ERROR] Canary died!")
+            elif isinstance(messages[0], HumanMessage):
+                # logger.info("No system message provided.")
+                system_message = SystemMessage(content="You are a helpful assistant.")
+                if system_prompt is None:
+                    logger.warning("No system prompt provided. Using default system prompt.")
+                else:
+                    # logger.info("Using system prompt provided.")
+                    system_message.content = system_prompt
+                # logger.info(f"inserting [{system_message}] at the beginning of messages")
+                prompt_messages.insert(0, system_message)
+                arena_logger = logging.getLogger("sregym-global")
+                arena_logger.info(f"[PROMPT] (inserted system prompt at the beginning) \n {system_message}")
+        else:
+            raise ValueError(f"messages must be either a string or a list of dicts, but got {type(messages)}")
+
+        if self.provider == "openai":
+            # Some models (o1, o3, gpt-5) don't support top_p and temperature
+            model_config = {
+                "model": self.model_name,
+            }
+            # Only add temperature and top_p for models that support them
+            # Reasoning models (o1, o3) and newer models (gpt-5) don't support these params
+            if not any(prefix in self.model_name.lower() for prefix in ["o1", "o3", "gpt-5"]):
+                model_config["temperature"] = self.temperature
+                model_config["top_p"] = self.top_p
+            llm = ChatOpenAI(**model_config)
+        elif self.provider == "watsonx":
+            llm = ChatWatsonx(
+                model_id=self.model_name,
+                url=self.url,
+                project_id=os.environ["WX_PROJECT_ID"],
+                apikey=self.api_key,
+                temperature=self.temperature,
+            )
+        # FIXME: openai client is broken, but we can just use LiteLLM to use openai
+        elif self.provider == "openai":
+            llm = ChatLiteLLM(
+                model=self.model_name,
+                temperature=self.temperature,
+                top_p=self.top_p,
+                api_key=self.api_key,
+            )
+        elif self.provider == "litellm":
+            llm = ChatLiteLLM(
+                model=self.model_name,
+                temperature=self.temperature,
+                top_p=self.top_p,
+            )
+        elif self.provider == "compatible":
+            llm = ChatLiteLLM(
+                model=self.model_name,
+                temperature=self.temperature,
+                top_p=self.top_p,
+                api_key=self.api_key,
+                api_base=self.url,
+            )
+        else:
+            raise ValueError(f"Unsupported provider: {self.provider}")
+
+        if tools:
+            # logger.info(f"binding tools to llm: {tools}")
+            llm = llm.bind_tools(tools, tool_choice="auto")
+
+        # FIXME: when using openai models, finish_reason would be the function name
+        #   if the model decides to do function calling
+        # TODO: check how does function call looks like in langchain
+
+        # Retry logic for rate-limiting
+        retry_delay = LLM_QUERY_INIT_RETRY_DELAY
+        trim_message = False
+
+        for attempt in range(LLM_QUERY_MAX_RETRIES):
+            try:
+                # trim the first ten message who are AI messages and user messages
+                if trim_message:
+                    arena_logger = logging.getLogger("sregym-global")
+                    new_prompt_messages, trim_sum = trim_messages_conservative(prompt_messages)
+                    arena_logger.info(f"[WARNING] Trimming the {trim_sum}/{len(prompt_messages)} messages")
+                    prompt_messages = new_prompt_messages
+                completion = llm.invoke(input=prompt_messages)
+                # logger.info(f">>> llm response: {completion}")
+                return completion
+            except openai.BadRequestError as e:
+                # BadRequestError indicates malformed request (e.g., missing tool responses)
+                # Don't retry as the request itself is invalid
+                logger.error(f"Bad request error - request is malformed: {e}")
+                logger.error(f"Error details: {e.response.json() if hasattr(e, 'response') else 'No response details'}")
+                logger.error("This often happens when tool_calls don't have matching tool response messages.")
+                logger.error(
+                    f"Last few messages: {prompt_messages[-3:] if len(prompt_messages) >= 3 else prompt_messages}"
+                )
+                raise
+            except (openai.RateLimitError, HTTPError) as e:
+                # Rate-limiting errors - retry with exponential backoff
+                logger.warning(
+                    f"Rate-limited. Retrying in {retry_delay} seconds... (Attempt {attempt + 1}/{LLM_QUERY_MAX_RETRIES})"
+                )
+
+                arena_logger = logging.getLogger("sregym-global")
+                arena_logger.info(
+                    f"[WARNING] HTTP error occurred: {e}. Retrying in {retry_delay} seconds... (Attempt {attempt + 1}/{LLM_QUERY_MAX_RETRIES})"
+                )
+                time.sleep(retry_delay)
+                retry_delay *= 2  # Exponential backoff
+            except openai.APIError as e:
+                # Other OpenAI API errors
+                logger.error(f"OpenAI API error occurred: {e}")
+                raise
+                # else:
+                #     logger.error(f"HTTP error occurred: {e}")
+                #     raise
+
+            except litellm.RateLimitError as e:
+                provider_delay = _extract_retry_delay_seconds_from_exception(e)
+                if provider_delay is not None and provider_delay > 0:
+                    arena_logger = logging.getLogger("sregym-global")
+                    arena_logger.info(
+                        f"[WARNING] Rate-limited by provider. Retrying in {provider_delay} seconds... (Attempt {attempt + 1}/{LLM_QUERY_MAX_RETRIES})"
+                    )
+                    time.sleep(provider_delay)
+                else:  # actually this fallback should not happen
+                    arena_logger = logging.getLogger("sregym-global")
+                    arena_logger.info(
+                        f"Rate-limited. Retrying in {retry_delay} seconds... (Attempt {attempt + 1}/{LLM_QUERY_MAX_RETRIES})"
+                    )
+                    time.sleep(retry_delay)
+                    retry_delay *= 2  # Exponential backoff
+
+                trim_message = True  # reduce overhead
+            except litellm.ServiceUnavailableError as e:  # 503
+                arena_logger = logging.getLogger("sregym-global")
+                arena_logger.info(
+                    f"[WARNING] Service unavailable (mostly 503). Retrying in 60 seconds... (Attempt {attempt + 1}/{LLM_QUERY_MAX_RETRIES})"
+                )
+                time.sleep(60)
+                trim_message = True  # reduce overhead
+            except IndexError as e:
+                arena_logger = logging.getLogger("sregym-global")
+                arena_logger.info(
+                    f"[ERROR] IndexError occurred on Gemini Server Side: {e}, keep calm for a while... {attempt + 1}/{LLM_QUERY_MAX_RETRIES}"
+                )
+                trim_message = True
+                time.sleep(30)
+                if attempt == LLM_QUERY_MAX_RETRIES - 1:
+                    arena_logger = logging.getLogger("sregym-global")
+                    arena_logger.info(
+                        f"[WARNING] Max retries exceeded due to index error. Unable to complete the request."
+                    )
+                    # return an error
+                    return AIMessage(content="Server side error")
+            except Exception as e:
+                logger.error(f"An unexpected error occurred: {e}")
+                raise
+
+        raise RuntimeError("Max retries exceeded. Unable to complete the request.")
+
+
+def _parse_duration_to_seconds(duration: Any) -> Optional[float]:
+    """Convert duration to seconds.
+
+    Supports:
+    - string like "56s" or "56.374s"
+    - dict with {"seconds": int, "nanos": int}
+    - numeric seconds
+    """
+    if duration is None:
+        return None
+    if isinstance(duration, (int, float)):
+        return float(duration)
+    if isinstance(duration, str):
+        val = duration.strip().lower()
+        if val.endswith("s"):
+            try:
+                return float(val[:-1])
+            except ValueError:
+                return None
+        return None
+    if isinstance(duration, dict):
+        seconds = duration.get("seconds")
+        nanos = duration.get("nanos", 0)
+        if isinstance(seconds, (int, float)):
+            return float(seconds) + (float(nanos) / 1_000_000_000.0)
+    return None
+
+
+def _extract_retry_delay_seconds_from_exception(exc: BaseException) -> Optional[float]:
+    """Extract retry delay seconds from JSON details RetryInfo only.
+
+    Returns 60.0 if no RetryInfo found in error details.
+    """
+    candidates: list[Any] = []
+
+    print(f"exc: {exc}")
+
+    # response.json() or response.text
+    response = getattr(exc, "response", None)
+    if response is not None:
+        try:
+            if hasattr(response, "json"):
+                candidates.append(response.json())
+        except Exception:
+            pass
+        try:
+            text = getattr(response, "text", None)
+            if isinstance(text, (str, bytes)):
+                candidates.append(json.loads(text))
+        except Exception:
+            pass
+
+    # message/body/content attributes
+    for attr in ("body", "message", "content"):
+        try:
+            val = getattr(exc, attr, None)
+            if isinstance(val, (dict, list)):
+                candidates.append(val)
+            elif isinstance(val, (str, bytes)):
+                candidates.append(json.loads(val))
+        except Exception:
+            pass
+
+    # args may contain dict/JSON strings
+    try:
+        for arg in getattr(exc, "args", []) or []:
+            if isinstance(arg, (dict, list)):
+                candidates.append(arg)
+            elif isinstance(arg, (str, bytes)):
+                try:
+                    candidates.append(json.loads(arg))
+                except Exception:
+                    pass
+    except Exception:
+        pass
+
+    def find_retry_delay(data: Any) -> Optional[float]:
+        if data is None:
+            return None
+        if isinstance(data, dict):
+            # Error envelope {"error": {...}}
+            if "error" in data:
+                found = find_retry_delay(data.get("error"))
+                if found is not None:
+                    return found
+            # Google RPC details list
+            details = data.get("details")
+            if isinstance(details, list):
+                for item in details:
+                    if isinstance(item, dict):
+                        type_url = item.get("@type") or item.get("type")
+                        if type_url and "google.rpc.RetryInfo" in type_url:
+                            parsed = _parse_duration_to_seconds(item.get("retryDelay"))
+                            if parsed is not None:
+                                return parsed
+        elif isinstance(data, list):
+            for v in data:
+                found = find_retry_delay(v)
+                if found is not None:
+                    return found
+        return None
+
+    for cand in candidates:
+        delay = find_retry_delay(cand)
+        if delay is not None:
+            return delay
+
+    # Default to 60 seconds if no RetryInfo found
+    return 60.0
diff --git a/clients/stratus/llm_backend/init_backend.py b/clients/stratus/llm_backend/init_backend.py
new file mode 100644
index 0000000..eb983f2
--- /dev/null
+++ b/clients/stratus/llm_backend/init_backend.py
@@ -0,0 +1,177 @@
+"""Adopted from previous project"""
+
+import os
+
+from dotenv import load_dotenv
+
+from clients.stratus.llm_backend.get_llm_backend import LiteLLMBackend
+
+load_dotenv()
+
+global PROVIDER_TOOLS, MODEL_TOOLS, URL_TOOLS, API_VERSION_TOOLS, API_KEY_TOOLS, REASONING_EFFORT_TOOLS, SEED_TOOLS, TOP_P_TOOLS, TEMPERATURE_TOOLS, THINKING_TOOLS, THINKING_BUDGET_TOOLS, MAX_TOKENS_TOOLS
+
+try:
+    PROVIDER = os.environ["PROVIDER"]
+except KeyError:
+    PROVIDER = "openai"
+    print("Unable to find environment variable - PROVIDER, setting to openai...")
+    raise
+
+try:
+    PROVIDER_TOOLS = os.environ["PROVIDER_TOOLS"]
+except KeyError:
+    PROVIDER_TOOLS = ""
+    print("Unable to find environment variable - PROVIDER_TOOLS.")
+    raise
+
+try:
+    MODEL_TOOLS = os.environ["MODEL_TOOLS"]
+except KeyError:
+    MODEL_TOOLS = ""
+    print("Unable to find environment variable - MODEL_TOOLS.")
+    raise
+
+try:
+    URL_TOOLS = os.environ["URL_TOOLS"].rstrip("/")
+except KeyError:
+    URL_TOOLS = ""
+    print("Unable to find environment variable, leave it empty - URL_TOOLS.")
+
+try:
+    API_KEY_TOOLS = os.environ["API_KEY_TOOLS"]
+    # os.environ["OPENAI_API_KEY"] = API_KEY_TOOLS # should not use this fallback
+except KeyError:
+    API_KEY_TOOLS = ""
+    print("Unable to find environment variable, leave it empty - API_KEY_TOOLS.")
+
+try:
+    SEED_TOOLS = int(os.environ["SEED_TOOLS"])
+except KeyError:
+    SEED_TOOLS = 10
+    print(f"Unable to find environment variable - SEED_TOOLS. Defaulting to {SEED_TOOLS}.")
+
+try:
+    TOP_P_TOOLS = float(os.environ["TOP_P_TOOLS"])
+except KeyError:
+    TOP_P_TOOLS = 0.95
+    print(f"Unable to find environment variable - TOP_P_TOOLS. Defaulting to {TOP_P_TOOLS}.")
+
+try:
+    TEMPERATURE_TOOLS = float(os.environ["TEMPERATURE_TOOLS"])
+except KeyError:
+    TEMPERATURE_TOOLS = 0.0
+    print(f"Unable to find environment variable - TEMPERATURE_TOOLS. Defaulting to {TEMPERATURE_TOOLS}.")
+except ValueError as e:
+    print("Incorrect TEMPERATURE_TOOLS value:", e)
+    raise
+
+try:
+    REASONING_EFFORT_TOOLS = str(os.environ["REASONING_EFFORT_TOOLS"]).lower()
+except KeyError:
+    REASONING_EFFORT_TOOLS = ""
+    print(f"Unable to find environment variable - REASONING_EFFORT_TOOLS. Setting to {REASONING_EFFORT_TOOLS}.")
+
+try:
+    API_VERSION_TOOLS = os.environ["API_VERSION_TOOLS"]
+except KeyError:
+    API_VERSION_TOOLS = ""
+    print(f"Unable to find environment variable - API_VERSION_TOOLS. Setting to {API_VERSION_TOOLS}.")
+
+try:
+    THINKING_TOOLS = os.environ["THINKING_TOOLS"]
+except KeyError:
+    THINKING_TOOLS = ""
+    print(f"Unable to find environment variable - THINKING_TOOLS. Setting to {THINKING_TOOLS}.")
+
+try:
+    WX_PROJECT_ID = os.environ["WX_PROJECT_ID"]
+except KeyError:
+    WX_PROJECT_ID = ""
+    print(f"Unable to find environment variable - WX_PROJECT_ID. Setting to {WX_PROJECT_ID}.")
+
+try:
+    WATSONX_API_BASE = os.environ["WATSONX_API_BASE"]
+except KeyError:
+    WATSONX_API_BASE = "https://us-south.ml.cloud.ibm.com"
+    print(f"Unable to find environment variable - WATSONX_API_BASE. Setting to {WATSONX_API_BASE}.")
+
+
+try:
+    THINKING_BUDGET_TOOLS = int(os.environ["THINKING_BUDGET_TOOLS"])
+except KeyError:
+    THINKING_BUDGET_TOOLS = 16000
+    print(f"Unable to find environment variable - THINKING_BUDGET_TOOLS. Setting to {THINKING_BUDGET_TOOLS}.")
+
+try:
+    MAX_TOKENS_TOOLS = int(os.environ["MAX_TOKENS_TOOLS"])
+except KeyError:
+    MAX_TOKENS_TOOLS = 16000
+    print(f"Unable to find environment variable - MAX_TOKENS_TOOLS. Setting to {MAX_TOKENS_TOOLS}.")
+
+
+def get_llm_backend_for_tools():
+    if PROVIDER == "watsonx":
+        try:
+            WATSONX_API_KEY = os.environ["WATSONX_API_KEY"]
+        except KeyError:
+            print(f"Unable to find environment variable - WATSONX_API_KEY. Exiting...")
+            exit(1)
+        return LiteLLMBackend(
+            provider=PROVIDER,
+            model_name=MODEL_TOOLS,
+            url=URL_TOOLS,
+            api_key=WATSONX_API_KEY,
+            api_version=API_VERSION_TOOLS,
+            seed=SEED_TOOLS,
+            top_p=TOP_P_TOOLS,
+            temperature=TEMPERATURE_TOOLS,
+            reasoning_effort=REASONING_EFFORT_TOOLS,
+            max_tokens=MAX_TOKENS_TOOLS,
+            thinking_tools=THINKING_TOOLS,
+            thinking_budget_tools=THINKING_BUDGET_TOOLS,
+        )
+    elif PROVIDER == "openai":
+        return LiteLLMBackend(
+            provider=PROVIDER,
+            model_name=MODEL_TOOLS,
+            url=URL_TOOLS,
+            api_key=API_KEY_TOOLS,
+            api_version=API_VERSION_TOOLS,
+            seed=SEED_TOOLS,
+            top_p=TOP_P_TOOLS,
+            temperature=TEMPERATURE_TOOLS,
+            reasoning_effort=REASONING_EFFORT_TOOLS,
+            max_tokens=MAX_TOKENS_TOOLS,
+            thinking_tools=THINKING_TOOLS,
+            thinking_budget_tools=THINKING_BUDGET_TOOLS,
+        )
+    elif PROVIDER == "litellm":
+        return LiteLLMBackend(
+            provider=PROVIDER,
+            model_name=MODEL_TOOLS,
+            url=URL_TOOLS, # not used
+            api_key=API_KEY_TOOLS,
+            api_version=API_VERSION_TOOLS,
+            seed=SEED_TOOLS,
+            top_p=TOP_P_TOOLS,
+            temperature=TEMPERATURE_TOOLS,
+            reasoning_effort=REASONING_EFFORT_TOOLS,
+            thinking_tools=THINKING_TOOLS,
+            thinking_budget_tools=THINKING_BUDGET_TOOLS,
+            max_tokens=MAX_TOKENS_TOOLS,
+        )
+    elif PROVIDER == "compatible":
+        return LiteLLMBackend(
+            provider=PROVIDER,
+            model_name=MODEL_TOOLS,
+            url=URL_TOOLS,
+            api_key=API_KEY_TOOLS,
+            api_version=API_VERSION_TOOLS,
+            seed=SEED_TOOLS,
+            top_p=TOP_P_TOOLS,
+            temperature=TEMPERATURE_TOOLS,
+            reasoning_effort=REASONING_EFFORT_TOOLS,
+            thinking_tools=THINKING_TOOLS,
+            thinking_budget_tools=THINKING_BUDGET_TOOLS,
+            max_tokens=MAX_TOKENS_TOOLS,
+        )
diff --git a/clients/stratus/llm_backend/trim_util.py b/clients/stratus/llm_backend/trim_util.py
new file mode 100644
index 0000000..1e326b5
--- /dev/null
+++ b/clients/stratus/llm_backend/trim_util.py
@@ -0,0 +1,40 @@
+"""Trim utility for langchain message types."""
+
+import copy
+from langchain_core.messages import HumanMessage
+
+
+def trim_messages_conservative(
+    messages,
+    kept_threshold: int = 30
+):
+    """
+    Trim messages by keeping the last kept_threshold messages unchanged,
+    and replacing HumanMessage content with "..." for earlier messages.
+    
+    Args:
+        messages: List of langchain messages to trim
+        kept_threshold: Number of messages to keep unchanged from the end (default: 30)
+        
+    Returns:
+        Deep copy of trimmed messages without modifying the original
+    """
+    # Create a deep copy to avoid modifying the original
+    trimmed_messages = copy.deepcopy(messages)
+    
+    trim_sum = 0
+    # If we have fewer messages than the threshold, return all unchanged
+    if len(trimmed_messages) <= kept_threshold:
+        return trimmed_messages, 0
+    
+    # Calculate how many messages to process from the beginning
+    messages_to_trim = len(trimmed_messages) - kept_threshold
+    
+    # Process the first messages_to_trim messages
+    for i in range(messages_to_trim):
+        message = trimmed_messages[i]
+        # Only replace content for HumanMessage, keep others unchanged
+        if isinstance(message, HumanMessage):
+            message.content = "..."
+            trim_sum += 1
+    return trimmed_messages, trim_sum 
diff --git a/clients/stratus/stratus_agent/README.md b/clients/stratus/stratus_agent/README.md
new file mode 100644
index 0000000..9987733
--- /dev/null
+++ b/clients/stratus/stratus_agent/README.md
@@ -0,0 +1,7 @@
+# Agent Design and Implementation
+Though fancy on text, all four stratus agents share mostly the same agent implementation. They are implemented as custom REACT agents, which all inherit from the `BaseAgent` class in [`base_agent.py`](https://github.com/SREGym/SREGym/blob/main/clients/stratus/stratus_agent/base_agent.py).
+Different agents, such as `DiagnosisAgent` and `MitigationAgent`, are distinguished by their prompts and tool usage.
+
+In every round, the agent gets a "thinking step," where it chooses a tool and justify its usage. It then gets an "action step," where it generates the correct tool call for the chosen tool.
+
+After a step limit, the agent is forced to submit a result to the benchmark.
diff --git a/clients/stratus/stratus_agent/__init__.py b/clients/stratus/stratus_agent/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/stratus/stratus_agent/base_agent.py b/clients/stratus/stratus_agent/base_agent.py
new file mode 100644
index 0000000..e7fac76
--- /dev/null
+++ b/clients/stratus/stratus_agent/base_agent.py
@@ -0,0 +1,244 @@
+import logging
+
+from langchain_core.callbacks import UsageMetadataCallbackHandler
+from langchain_core.messages import HumanMessage, SystemMessage
+from langgraph.graph import StateGraph
+from langgraph.graph.state import CompiledStateGraph
+
+from clients.stratus.stratus_agent.state import State
+from clients.stratus.tools.stratus_tool_node import StratusToolNode
+
+logger = logging.getLogger("all.stratus.base")
+logger.propagate = True
+logger.setLevel(logging.DEBUG)
+
+
+class BaseAgent:
+    def __init__(self, llm, max_step, sync_tools, async_tools, submit_tool, tool_descs):
+        self.graph_builder = StateGraph(State)
+        self.graph: CompiledStateGraph | None = None
+        self.max_step = max_step
+        self.async_tools = async_tools
+        self.sync_tools = sync_tools
+        self.llm = llm
+        self.tool_descs = tool_descs
+        self.submit_tool = submit_tool
+        self.force_submit_prompt_inject_node = "force_submit_thinking_step"
+        self.force_submit_tool_call_node = "force_submit_tool_call"
+        self.llm_force_submit_tool_call_node = StratusToolNode(sync_tools=[], async_tools=[submit_tool])
+        self.thinking_prompt_inject_node = "pre_thinking_step"
+        self.thinking_node = "thinking_step"
+        self.tool_calling_prompt_inject_node = "pre_tool_calling_step"
+        self.tool_calling_node = "tool_calling_step"
+        self.process_tool_call_node = "process_tool_call"
+        self.post_round_process_node = "post_round_process"
+        self.callback = UsageMetadataCallbackHandler()
+        self.arena_logger = logging.getLogger("sregym-global")
+        self.loop_count = 0
+        
+    def llm_inference_step(self, messages, tools):
+        return self.llm.inference(messages=messages, tools=tools)
+
+    def llm_thinking_prompt_inject_step(self, state: State):
+        human_prompt = HumanMessage(
+            content="You are now in the thinking stage. Here are all the tools you can use:\n"
+            + self.tool_descs
+            + "Choose a tool from the list and output the tool name. Justify your tool choice. In the next step, you will generate a tool call for this tool"
+        )
+        self.arena_logger.info(f"[PROMPT] Framework prompt: \n {human_prompt.content}")
+        if self.loop_count is not None and self.loop_count == 0:
+            self.local_logger.debug(f"[Loop {self.loop_count}] Inject framework prompt: \n {human_prompt.content}")
+        else:
+            self.local_logger.debug(f"[Loop {self.loop_count}] Inject framework prompt \" {human_prompt.content[:20]}... \" again, as above.")
+        return {
+            "messages": [human_prompt],
+        }
+
+    def llm_thinking_step(self, state: State):
+        # planning step, not providing tool
+        ai_message = self.llm_inference_step(state["messages"], tools=None)
+        self.arena_logger.info(f"[LLM] \n {ai_message.content}")
+        self.local_logger.debug(f"[Loop {self.loop_count}] Ask, and LLM responds: \n {ai_message.content}", extra={"Full Prompt": state["messages"]})
+        if ai_message.content == "Server side error":
+            return {
+                "messages": [],
+            }
+        return {
+            "messages": [ai_message],
+        }
+
+    def llm_tool_call_prompt_inject_step(self, state: State):
+        human_prompt = HumanMessage(content="Now generate a tool call according to your last chosen tool.")
+        self.arena_logger.info(f"[PROMPT] \n {human_prompt.content}")
+        if self.loop_count is not None and self.loop_count == 0:
+            self.local_logger.debug(f"[Loop {self.loop_count}] Inject tool call prompt: \n {human_prompt.content}")
+        else:
+            self.local_logger.debug(f"[Loop {self.loop_count}] Inject tool call prompt \" {human_prompt.content[:20]}... \" again, as above.")
+        return {
+            "messages": [human_prompt],
+        }
+
+    def llm_tool_call_step(self, state: State):
+        if self.sync_tools is None:
+            if self.async_tools is not None:
+                ai_message = self.llm_inference_step(state["messages"], tools=self.async_tools)
+            else:
+                raise ValueError("the agent must have at least 1 tool!")
+        else:
+            if self.async_tools is None:
+                ai_message = self.llm_inference_step(state["messages"], tools=self.sync_tools)
+            else:
+                ai_message = self.llm_inference_step(state["messages"], tools=[*self.sync_tools, *self.async_tools])
+        
+        self.local_logger.debug(f"[Loop {self.loop_count}] Tool call", extra={"Full Prompt": state["messages"]})
+        if ai_message.content == "Server side error":
+            return {
+                "messages": [],
+            }
+        return {
+            "messages": [ai_message],
+        }
+
+    def should_submit_router(self, state: State):
+        should_submit = state["num_steps"] == self.max_step and state["submitted"] == False
+        self.local_logger.info(f"Should we force the agent submit? {"Yes!" if should_submit else "No!"}")
+        return self.force_submit_prompt_inject_node if should_submit else self.post_round_process_node
+
+    def post_round_process(self, state: State):
+        self.local_logger.debug("agent finished a round")
+        self.local_logger.debug("currently only incrementing step")
+        self.local_logger.info(f"{'^' * 20} [Loop {self.loop_count}] {'^' * 20}")
+        self.arena_logger.info("[SPLIT]")
+        return {
+            "num_steps": state["num_steps"] + 1,
+        }
+
+    def llm_force_submit_thinking_step(self, state: State):
+        human_prompt = HumanMessage(
+            content="You have reached your step limit, please submit your results by generating a `submit` tool's tool call."
+        )
+        self.arena_logger.info("[WARNING] Agent has not solved the problem until the step limit, force submission.")
+        self.arena_logger.info(f"[PROMPT] \n {human_prompt.content}")
+        # self.local_logger.info(f"[Loop {self.loop_count}] Inject force submit prompt: \n {human_prompt.content}")
+        return {"messages": [human_prompt]}
+
+    def llm_force_submit_tool_call_step(self, state: State):
+        result = self.llm_inference_step(state["messages"], tools=[self.submit_tool])
+        self.arena_logger.info(f"[LLM] \n {result.content}")
+        # self.local_logger.info(f"[Loop {self.loop_count}] Force submit, and LLM responds: \n {result.content}")
+        return {"messages": result}
+
+    def save_agent_graph_to_png(self):
+        try:  # in case the service times out
+            with open("./agent_graph.png", "wb") as png:
+                png.write(self.graph.get_graph().draw_mermaid_png())
+        except Exception as e:
+            logger.error(f"Error saving agent graph to PNG: {e}")
+
+    def clear_memory(self):
+        if not hasattr(self, "memory_saver"):
+            raise RuntimeError("Should not be called on uninitialized agent. Did you call build_agent()?")
+        # source: https://github.com/langchain-ai/langchain/discussions/19744#discussioncomment-13734390
+        thread_id = "1"
+        try:
+            if hasattr(self.memory_saver, "storage") and hasattr(self.memory_saver, "writes"):
+                self.memory_saver.storage.pop(thread_id, None)
+
+                keys_to_remove = [key for key in self.memory_saver.writes.keys() if key[0] == thread_id]
+                for key in keys_to_remove:
+                    self.memory_saver.writes.pop(key, None)
+
+                print(f"Memory cleared for thread_id: {thread_id}")
+                return
+        except Exception as e:
+            logger.error(f"Error clearing InMemorySaver storage for thread_id {thread_id}: {e}")
+
+    def run(self, starting_prompts):
+        """Running an agent
+
+        Args:
+            starting_prompts (list[SystemMessage | HumanMessage]): The data inside the dict will be filled into the prompts.
+
+        Returns:
+            final state of the agent running, including messages and other state values.
+        """
+        if not self.graph:
+            raise ValueError("Agent graph is None. Have you built the agent?")
+
+        if len(starting_prompts) == 0:
+            raise ValueError("No prompts used to start the conversation!")
+
+        state = {
+            "messages": starting_prompts,
+            "num_steps": 0,
+            "submitted": False,
+            "rollback_stack": "",
+        }
+
+        return list(
+            self.graph.stream(
+                state,
+                # recursion_limit could be as large as possible as we have our own limit.
+                config={"recursion_limit": 10000, "configurable": {"thread_id": "1"}, "callbacks": [self.callback]},
+                stream_mode="values",
+            )
+        )[-1]
+
+    async def arun(self, starting_prompts):
+        """
+        Async running an agent
+
+        Args:
+            starting_prompts (dict): The data inside the dict will be filled into the prompts.
+
+        Returns:
+            final state of the agent running, including messages and other state values.
+        """
+        if not self.graph:
+            raise ValueError("Agent graph is None. Have you built the agent?")
+
+        if len(starting_prompts) == 0:
+            raise ValueError("No prompts used to start the conversation!")
+
+        graph_events = []
+        while True:
+            graph_config = {"configurable": {"thread_id": "1"}}
+            logger.info(f"{'-' * 20} [Loop {self.loop_count}] {'-' * 20}")
+            last_state = self.graph.get_state(config=graph_config)
+            if len(last_state.values) != 0:
+                logger.debug(f"[Loop {self.loop_count}] There were last {len(last_state.values)} states.")
+                # this is all the previous msgs the agent had, we just inherit them in the next graph traversal
+                state = last_state.values
+            else:
+                logger.debug(f"[Loop {self.loop_count}] There were no states.")
+                # fresh agent start, init state here
+                state = {
+                    "messages": starting_prompts,
+                    # "workdir": "",
+                    # "curr_file": "",
+                    # "curr_line": 0,
+                    "num_steps": 0,
+                    # "rec_submission_rounds": 0,
+                    # "submit_tried": False,
+                    "submitted": False,
+                    # "ans": dict(),
+                    "rollback_stack": "",
+                }
+
+            async for event in self.graph.astream(
+                state,
+                # recursion_limit could be as large as possible as we have our own limit.
+                config={"recursion_limit": 10000, "configurable": {"thread_id": "1"}, "callbacks": [self.callback]},
+                stream_mode="values",
+            ):
+                if (not graph_events) or event["messages"] != graph_events[-1]["messages"]:
+                    event["messages"][-1].pretty_print()
+                graph_events.append(event)
+            last_state = self.graph.get_state(config=graph_config)
+            if last_state.values["submitted"]:
+                logger.info(f"[Loop {self.loop_count}] Agent submitted, breaking loop from base_agent")
+                break
+            
+            self.loop_count += 1
+
+        return last_state
diff --git a/clients/stratus/stratus_agent/diagnosis_agent.py b/clients/stratus/stratus_agent/diagnosis_agent.py
new file mode 100644
index 0000000..308c233
--- /dev/null
+++ b/clients/stratus/stratus_agent/diagnosis_agent.py
@@ -0,0 +1,198 @@
+import asyncio
+from pathlib import Path
+
+import yaml
+from langchain_core.callbacks import UsageMetadataCallbackHandler
+from langgraph.checkpoint.memory import MemorySaver
+from langgraph.constants import END, START
+
+from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+from clients.stratus.stratus_agent.base_agent import BaseAgent
+from clients.stratus.stratus_agent.mitigation_agent import generate_run_summary
+from clients.stratus.stratus_utils.get_logger import get_logger
+from clients.stratus.stratus_utils.get_starting_prompt import get_starting_prompts
+from clients.stratus.stratus_utils.str_to_tool import str_to_tool
+from clients.stratus.tools.stratus_tool_node import StratusToolNode
+
+import logging
+logger = logging.getLogger("all.stratus.diagnosis")
+logger.propagate = True
+logger.setLevel(logging.DEBUG)
+
+
+class DiagnosisAgent(BaseAgent):
+    def __init__(self, **kwargs):
+        super().__init__(**kwargs)
+        self.tool_node = None
+        self.max_step = kwargs.get("max_step", 20)
+        self.loop_count = 0
+        self.local_logger = logging.getLogger("all.stratus.diagnosis")
+
+    def build_agent(self):
+        self.tool_node = StratusToolNode(async_tools=self.async_tools, sync_tools=self.sync_tools)
+
+        self.graph_builder.add_node(self.thinking_prompt_inject_node, self.llm_thinking_prompt_inject_step)
+        self.graph_builder.add_node(self.tool_calling_prompt_inject_node, self.llm_tool_call_prompt_inject_step)
+        self.graph_builder.add_node(self.thinking_node, self.llm_thinking_step)
+        self.graph_builder.add_node(self.tool_calling_node, self.llm_tool_call_step)
+        self.graph_builder.add_node(self.process_tool_call_node, self.tool_node)
+        self.graph_builder.add_node(self.post_round_process_node, self.post_round_process)
+        self.graph_builder.add_node(self.force_submit_prompt_inject_node, self.llm_force_submit_thinking_step)
+        self.graph_builder.add_node(self.force_submit_tool_call_node, self.llm_force_submit_tool_call_step)
+
+        self.graph_builder.add_edge(START, self.thinking_prompt_inject_node)
+        self.graph_builder.add_edge(self.thinking_prompt_inject_node, self.thinking_node)
+        self.graph_builder.add_edge(self.thinking_node, self.tool_calling_prompt_inject_node)
+        self.graph_builder.add_edge(self.tool_calling_prompt_inject_node, self.tool_calling_node)
+        self.graph_builder.add_edge(self.tool_calling_node, self.process_tool_call_node)
+        self.graph_builder.add_edge(self.process_tool_call_node, self.post_round_process_node)
+        self.graph_builder.add_conditional_edges(
+            self.process_tool_call_node,
+            self.should_submit_router,
+            {
+                self.force_submit_prompt_inject_node: self.force_submit_prompt_inject_node,
+                self.post_round_process_node: self.post_round_process_node,
+            },
+        )
+        self.graph_builder.add_edge(self.force_submit_prompt_inject_node, self.force_submit_tool_call_node)
+        self.graph_builder.add_edge(self.force_submit_tool_call_node, END)
+        self.graph_builder.add_edge(self.post_round_process_node, END)
+
+        self.memory_saver = MemorySaver()
+        self.graph = self.graph_builder.compile(checkpointer=self.memory_saver)
+
+    async def arun(self, starting_prompts):
+        """
+        Async running an agent
+
+        Args:
+            starting_prompts (dict): The data inside the dict will be filled into the prompts.
+
+        Returns:
+            final state of the agent running, including messages and other state values.
+        """
+        if not self.graph:
+            raise ValueError("Agent graph is None. Have you built the agent?")
+
+        if len(starting_prompts) == 0:
+            raise ValueError("No prompts used to start the conversation!")
+        
+        all_init_prompts = ""
+        for prompt in starting_prompts:
+            all_init_prompts += prompt.content + "\n"
+        self.arena_logger.info(f"[PROMPT] \n {all_init_prompts}")
+
+        graph_events = []
+
+        while True:
+            graph_config = {"configurable": {"thread_id": "1"}}
+            
+            logger.info(f"{'-' * 20} [Loop {self.loop_count}] {'-' * 20}")
+            last_state = self.graph.get_state(config=graph_config)
+            # logger.info("last state: %s", last_state)
+            if len(last_state.values) != 0:
+                logger.debug(f"[Loop {self.loop_count}] There were last {len(last_state.values)} states.")
+                # this is all the previous msgs the agent had, we just inherit them in the next graph traversal
+                state = last_state.values
+            else:
+                logger.debug(f"[Loop {self.loop_count}] There were no states.")
+                # fresh agent start, init state here
+                state = {
+                    "messages": starting_prompts,
+                    # "workdir": "",
+                    # "curr_file": "",
+                    # "curr_line": 0,
+                    "num_steps": 0,
+                    # "rec_submission_rounds": 0,
+                    # "submit_tried": False,
+                    "submitted": False,
+                    # "ans": dict(),
+                    "rollback_stack": "",
+                }
+                
+
+            async for event in self.graph.astream(
+                state,
+                # recursion_limit could be as large as possible as we have our own limit.
+                config={"recursion_limit": 10000, "configurable": {"thread_id": "1"}, "callbacks": [self.callback]},
+                stream_mode="values",
+            ):
+                if (not graph_events) or event["messages"][-1] != graph_events[-1]["messages"][-1]:
+                    #print(f"Last message: {graph_events[-1]['messages']}")
+                    event["messages"][-1].pretty_print()
+                graph_events.append(event)
+            last_state = self.graph.get_state(config=graph_config)
+            if last_state.values["submitted"]:
+                logger.info(f"[Loop {self.loop_count}] Agent submitted, breaking loop.")
+                break
+            
+            self.loop_count += 1
+            
+            # print(f"================{last_state.values['num_steps']}===============")
+
+        return last_state
+
+
+def build_default_diagnosis_agent():
+    file_parent_dir = Path(__file__).resolve().parent
+    diagnosis_agent_config_path = file_parent_dir.parent / "configs" / "diagnosis_agent_config.yaml"
+    diagnosis_agent_config = yaml.safe_load(open(diagnosis_agent_config_path, "r"))
+    max_step = diagnosis_agent_config["max_step"]
+    prompt_path = file_parent_dir.parent / "configs" / diagnosis_agent_config["prompts_path"]
+    sync_tools = []
+    async_tools = []
+    tool_descriptions = ""
+    if diagnosis_agent_config["sync_tools"] is not None:
+        for sync_tool_struct in diagnosis_agent_config["sync_tools"]:
+            sync_tools.append(str_to_tool(sync_tool_struct))
+            tool_descriptions += (
+                f"tool name: {sync_tool_struct["name"]}"
+                + "\n\n"
+                + f"tool descriptions {sync_tool_struct["description"]}"
+                + "\n\n"
+            )
+    else:
+        sync_tools = None
+    if diagnosis_agent_config["async_tools"] is not None:
+        for async_tool_struct in diagnosis_agent_config["async_tools"]:
+            async_tools.append(str_to_tool(async_tool_struct))
+            tool_descriptions += (
+                f"tool name: {async_tool_struct["name"]}"
+                + "\n\n"
+                + f"tool description: {async_tool_struct["description"]}"
+                + "\n\n"
+            )
+    else:
+        async_tools = None
+
+    submit_tool = str_to_tool(
+        {
+            "name": "submit_tool",
+            "description": """
+                The tool to submit benchmark results
+          
+                    Args:
+                        ans (str): the answer you would like to submit to the benchmark
+        """,
+        }
+    )
+
+    agent = DiagnosisAgent(
+        llm=get_llm_backend_for_tools(),
+        max_step=max_step,
+        sync_tools=sync_tools,
+        async_tools=async_tools,
+        submit_tool=submit_tool,
+        tool_descs=tool_descriptions,
+    )
+    agent.build_agent()
+    agent.save_agent_graph_to_png()
+    return agent, prompt_path, max_step
+
+
+async def single_run_with_predefined_prompts(init_prompts):
+    agent, prompt_path, max_step = build_default_diagnosis_agent()
+    res = await agent.arun(init_prompts)
+    logger.info("Clearing agent's memory")
+    agent.clear_memory()
+    return agent, res
diff --git a/clients/stratus/stratus_agent/driver/__init__.py b/clients/stratus/stratus_agent/driver/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/stratus/stratus_agent/driver/driver.py b/clients/stratus/stratus_agent/driver/driver.py
new file mode 100644
index 0000000..822ecc0
--- /dev/null
+++ b/clients/stratus/stratus_agent/driver/driver.py
@@ -0,0 +1,598 @@
+import asyncio
+import time
+
+# for parsing return values from benchmark app info as python dict
+from ast import literal_eval
+from datetime import datetime
+from pathlib import Path
+from typing import List
+
+import pandas as pd
+import requests
+import yaml
+from langchain_core.messages import HumanMessage, SystemMessage
+
+from logger import init_logger
+
+init_logger()
+
+import logging
+
+from clients.stratus.configs.langgraph_tool_configs import LanggraphToolConfig
+from clients.stratus.stratus_agent.diagnosis_agent import single_run_with_predefined_prompts as diagnosis_single_run
+from clients.stratus.stratus_agent.localization_agent import (
+    single_run_with_predefined_prompts as localization_single_run,
+)
+from clients.stratus.stratus_agent.mitigation_agent import (
+    generate_run_summary,
+)
+from clients.stratus.stratus_agent.mitigation_agent import retry_run_with_feedback as mitigation_agent_retry_run
+from clients.stratus.stratus_agent.mitigation_agent import (
+    single_run_with_predefined_prompts as mitigation_agent_single_run,
+)
+from clients.stratus.stratus_agent.rollback_agent import main as rollback_agent_main
+from clients.stratus.stratus_utils.get_logger import get_logger
+from clients.stratus.tools.submit_tool import manual_submit_tool
+from clients.stratus.weak_oracles.base_oracle import BaseOracle, OracleResult
+from clients.stratus.weak_oracles.cluster_state_oracle import ClusterStateOracle
+from clients.stratus.weak_oracles.workload_oracle import WorkloadOracle
+
+logger = logging.getLogger("all.stratus.driver")
+logger.propagate = True
+logger.setLevel(logging.DEBUG)
+
+
+def get_current_datetime_formatted():
+    now = datetime.now()
+    formatted_datetime = now.strftime("%m-%d_%H-%M")
+    return formatted_datetime
+
+
+def get_current_datetime_formatted():
+    now = datetime.now()
+    formatted_datetime = now.strftime("%m-%d_%H-%M")
+    return formatted_datetime
+
+
+async def validate_oracles(oracles: List[BaseOracle]) -> List[bool | List[OracleResult]]:
+    results = []
+    attempt_failed = False
+    for oracle in oracles:
+        logger.info(f"validating oracle: {oracle}")
+        res: OracleResult = await oracle.validate()
+        if not res.success:
+            attempt_failed = True
+            results.append(res)
+    if attempt_failed:
+        return [False, results]
+    return [True, results]
+
+
+def get_app_info():
+    ltc = LanggraphToolConfig()
+    url = ltc.benchmark_app_info_url
+    try:
+        response = requests.get(url)
+        logger.debug(f"Agent gets response: status: {response.status_code}, text: {response.text}")
+        app_info_str = str(response.text)
+        logger.debug(f"App info as str: {app_info_str} ")
+        app_info = literal_eval(app_info_str)
+        logger.debug(f"App info: {app_info}")
+        return app_info
+    except Exception as e:
+        logger.error(f"[get_app_info] HTTP submission failed: {e}")
+        return "error"
+
+
+def get_curr_problem():
+    ltc = LanggraphToolConfig()
+    url = ltc.benchmark_current_problem
+    try:
+        response = requests.get(url)
+        logger.info(f"Response status: {response.status_code}, text: {response.text}")
+        problem_str = str(response.text)
+        logger.info(f"problem as str: {problem_str}")
+        problem = literal_eval(problem_str)
+        logger.info(f"problem info: {problem}")
+        return problem["problem_id"]
+    except Exception as e:
+        logger.error(f"[get_curr_problem] HTTP submission failed: {e}")
+        return "error"
+
+
+def get_app_class_by_name(app_name):
+    target_app = ""
+    if app_name == "Social Network":
+        from sregym.service.apps.social_network import SocialNetwork
+
+        target_app = SocialNetwork()
+    elif app_name == "OpenTelemetry Demo Astronomy Shop":
+        from sregym.service.apps.astronomy_shop import AstronomyShop
+
+        target_app = AstronomyShop()
+    elif app_name == "Flight Ticket":
+        from sregym.service.apps.flight_ticket import FlightTicket
+
+        logger.info(f"Flight ticket has never been tested!!")
+        target_app = FlightTicket()
+    elif app_name == "Hotel Reservation":
+        from sregym.service.apps.hotel_reservation import HotelReservation
+
+        target_app = HotelReservation()
+    elif app_name == "TiDB Cluster with Operator":
+        from sregym.service.apps.fleet_cast import FleetCast
+
+        logger.info(f"TiDB has never been tested!!")
+        target_app = FleetCast()
+    elif app_name == "Train Ticket":
+        from sregym.service.apps.train_ticket import TrainTicket
+
+        target_app = TrainTicket()
+    return target_app
+
+
+async def diagnosis_task_main():
+    logger.info("loading configs")
+    file_parent_dir = Path(__file__).resolve().parent.parent
+    diagnosis_agent_config_path = file_parent_dir.parent / "configs" / "diagnosis_agent_config.yaml"
+    diagnosis_agent_config = yaml.safe_load(open(diagnosis_agent_config_path, "r"))
+    diagnosis_agent_max_step = diagnosis_agent_config["max_step"]
+    diagnosis_agent_prompt_path = file_parent_dir.parent / "configs" / diagnosis_agent_config["prompts_path"]
+    diagnosis_agent_prompts = yaml.safe_load(open(diagnosis_agent_prompt_path, "r"))
+    app_info = get_app_info()
+    app_name = app_info["app_name"]
+    app_description = app_info["descriptions"]
+    app_namespace = app_info["namespace"]
+    first_run_initial_messages = [
+        SystemMessage(diagnosis_agent_prompts["system"]),
+        HumanMessage(
+            diagnosis_agent_prompts["user"].format(
+                max_step=diagnosis_agent_max_step,
+                app_name=app_name,
+                app_description=app_description,
+                app_namespace=app_namespace,
+            )
+        ),
+    ]
+    start_time = time.perf_counter()
+    agent, last_state = await diagnosis_single_run(first_run_initial_messages)
+    agent_time = time.perf_counter() - start_time
+    agent_exec_stats = dict()
+    # assuming we only use one model
+    usage_metadata = next(iter(agent.callback.usage_metadata.items()))[1]
+    logger.info(f"agent usage metadata: {usage_metadata}")
+    agent_exec_stats["input_tokens"] = usage_metadata["input_tokens"]
+    agent_exec_stats["output_tokens"] = usage_metadata["output_tokens"]
+    agent_exec_stats["total_tokens"] = usage_metadata["total_tokens"]
+    # assuming time in seconds.
+    agent_exec_stats["time"] = str(agent_time)
+    agent_exec_stats["steps"] = last_state.values["num_steps"]
+    agent_exec_stats["num_retry_attempts"] = "N/A"
+    agent_exec_stats["rollback_stack"] = "N/A"
+    agent_exec_stats["oracle_results"] = "N/A"
+    # agent_exec_stats["last_state"] = last_state
+    logger.info(f"Finished diagnosis agent run, output dict: {agent_exec_stats}")
+    return agent_exec_stats
+
+
+async def localization_task_main():
+    logger.info("loading configs")
+    file_parent_dir = Path(__file__).resolve().parent.parent
+    localization_agent_config_path = file_parent_dir.parent / "configs" / "localization_agent_config.yaml"
+    localization_agent_config = yaml.safe_load(open(localization_agent_config_path, "r"))
+    localization_agent_max_step = localization_agent_config["max_step"]
+    localization_agent_prompt_path = file_parent_dir.parent / "configs" / localization_agent_config["prompts_path"]
+    localization_agent_prompts = yaml.safe_load(open(localization_agent_prompt_path, "r"))
+    app_info = get_app_info()
+    app_name = app_info["app_name"]
+    app_description = app_info["descriptions"]
+    app_namespace = app_info["namespace"]
+    first_run_initial_messages = [
+        SystemMessage(localization_agent_prompts["system"]),
+        HumanMessage(
+            localization_agent_prompts["user"].format(
+                max_step=localization_agent_max_step,
+                app_name=app_name,
+                app_description=app_description,
+                app_namespace=app_namespace,
+            )
+        ),
+    ]
+    start_time = time.perf_counter()
+    agent, last_state = await localization_single_run(first_run_initial_messages)
+    agent_time = time.perf_counter() - start_time
+    agent_exec_stats = dict()
+    usage_metadata = next(iter(agent.callback.usage_metadata.items()))[1]
+    agent_exec_stats["input_tokens"] = usage_metadata["input_tokens"]
+    agent_exec_stats["output_tokens"] = usage_metadata["output_tokens"]
+    agent_exec_stats["total_tokens"] = usage_metadata["total_tokens"]
+    # assuming time in seconds.
+    agent_exec_stats["time"] = str(agent_time)
+    agent_exec_stats["steps"] = last_state.values["num_steps"]
+    agent_exec_stats["num_retry_attempts"] = "N/A"
+    agent_exec_stats["rollback_stack"] = "N/A"
+    agent_exec_stats["oracle_results"] = "N/A"
+    # agent_exec_stats["last_state"] = last_state
+    logger.info(f"Finished localization agent run, output dict: {agent_exec_stats}")
+    return agent_exec_stats, last_state
+
+
+async def mitigation_task_main(localization_summary):
+    # run rollback, reflect, and retry for mitigation and rollback agent
+    # note: not implementing a `mitigation_task_main()` like other agents above for rollback, reflect, and retry is due to these considerations
+    #   1. keep each agent's main() method only about running that specific agent's loop until agent's submission
+    #   2. mitigation agent is special as when we refer to "mitigation" as a task for the Stratus agent, we refer to the
+    #      rollback, reflect, retry pipeline, which uses rollback agent too. Implementing logic about rollback agent
+    #      inside mitigation agent's method seems against good SE practice.
+
+    # getting some configs
+    logger.info("loading configs")
+    file_parent_dir = Path(__file__).resolve().parent.parent
+    mitigation_agent_config_path = file_parent_dir.parent / "configs" / "mitigation_agent_config.yaml"
+    mitigation_agent_config = yaml.safe_load(open(mitigation_agent_config_path, "r"))
+    mitigation_agent_max_step = mitigation_agent_config["max_step"]
+    mitigation_agent_prompt_path = file_parent_dir.parent / "configs" / mitigation_agent_config["prompts_path"]
+    mitigation_agent_max_retry_attempts = mitigation_agent_config["max_retry_attempts"]
+    mitigation_agent_retry_mode = mitigation_agent_config["retry_mode"]
+
+    rollback_agent_config_path = file_parent_dir.parent / "configs" / "rollback_agent_config.yaml"
+    rollback_agent_config = yaml.safe_load(open(rollback_agent_config_path, "r"))
+    rollback_agent_max_step = rollback_agent_config["max_step"]
+    rollback_agent_prompt_path = file_parent_dir.parent / "configs" / rollback_agent_config["prompts_path"]
+
+    llm_summarization_prompt_file = file_parent_dir.parent / "configs" / "llm_summarization_prompt.yaml"
+    llm_summarization_prompt = yaml.safe_load(open(llm_summarization_prompt_file, "r"))["mitigation_retry_prompt"]
+    mitigation_agent_prompts = yaml.safe_load(open(mitigation_agent_prompt_path, "r"))
+
+    # oracle
+    logger.info("setting up oracles")
+    cluster_state_oracle = ClusterStateOracle()
+    oracles = [cluster_state_oracle]
+
+    # setting up workload oracle, need to interact with benchmark.
+    logger.info("getting app info")
+    app_info = get_app_info()
+    app_name = app_info["app_name"]
+    app_description = app_info["descriptions"]
+    app_namespace = app_info["namespace"]
+    target_app = get_app_class_by_name(app_name)
+    if app_name not in ["Social Network", "Hotel Reservation"]:
+        logger.info("Current app does not support workload oracle")
+    else:
+        logger.info(f"adding oracle for app [{app_name}]")
+        workload_oracle = WorkloadOracle(target_app)
+        oracles.append(workload_oracle)
+
+    # defining the first set of messages that all retry mode share
+    first_run_initial_messages = [
+        SystemMessage(mitigation_agent_prompts["system"]),
+        HumanMessage(
+            mitigation_agent_prompts["user"].format(
+                max_step=mitigation_agent_max_step,
+                faults_info=localization_summary,
+                app_name=app_name,
+                app_description=app_description,
+                app_namespace=app_namespace,
+            )
+        ),
+    ]
+    start_time = time.perf_counter()
+    logger.info(f"running in retry mode: [{mitigation_agent_retry_mode}]")
+    # mitigation task in plain English:
+    if mitigation_agent_retry_mode == "none":
+        # if the retry mode is none, just run mitigation agent once.
+        agent, last_state = await mitigation_agent_single_run(first_run_initial_messages)
+        agent_time = time.perf_counter() - start_time
+        agent_exec_stats = dict()
+        agent_exec_stats["agent_name"] = "mitigation_agent_none"
+        usage_metadata = next(iter(agent.callback.usage_metadata.items()))[1]
+        agent_exec_stats["input_tokens"] = usage_metadata["input_tokens"]
+        agent_exec_stats["output_tokens"] = usage_metadata["output_tokens"]
+        agent_exec_stats["total_tokens"] = usage_metadata["total_tokens"]
+        # assuming time in seconds.
+        agent_exec_stats["time"] = str(agent_time)
+        agent_exec_stats["steps"] = last_state.values["num_steps"]
+        agent_exec_stats["num_retry_attempts"] = "N/A"
+        agent_exec_stats["rollback_stack"] = "N/A"
+        agent_exec_stats["oracle_results"] = "N/A"
+        # agent_exec_stats["last_state"] = last_state
+        logger.info(f"Finished localization agent run, output dict: {agent_exec_stats}")
+        return agent_exec_stats
+
+    elif mitigation_agent_retry_mode == "naive":
+        # if the retry mode is naive, run mitigation agent with retry but no rollback agent.
+        curr_attempt = 0
+        last_state = ""
+        oracle_results = OracleResult(
+            success=False, issues=["This is the beginning of mitigation, please observe the cluster for issues."]
+        )
+        agent_exec_stats = dict()
+        agent_names_lst = []
+        input_tokens_lst = []
+        output_tokens_lst = []
+        total_tokens_lst = []
+        time_lst = []
+        steps_lst = []
+        num_retry_attempts_lst = []
+        rollback_stack_lst = []
+        oracle_results_lst = []
+        while curr_attempt < mitigation_agent_max_retry_attempts:
+            logger.info(f"current attempt: {curr_attempt + 1}/{mitigation_agent_max_retry_attempts}")
+            agent, last_state = await mitigation_agent_single_run(first_run_initial_messages)
+
+            # recording post-run data
+            agent_time = time.perf_counter() - start_time
+            agent_names_lst.append("mitigation_agent_naive")
+            usage_metadata = next(iter(agent.callback.usage_metadata.items()))[1]
+            input_tokens_lst.append(usage_metadata["input_tokens"])
+            output_tokens_lst.append(usage_metadata["output_tokens"])
+            total_tokens_lst.append(usage_metadata["total_tokens"])
+            time_lst.append(str(agent_time))
+            steps_lst.append(last_state.values["num_steps"])
+            num_retry_attempts_lst.append(str(curr_attempt))
+            rollback_stack_lst.append("N/A, naive retry")
+
+            # getting oracle result
+            oracle_results = await validate_oracles(oracles)
+            oracle_results_lst.append(str(oracle_results))
+            logger.info(f"oracle results: {oracle_results}")
+            if oracle_results[0] is True:
+                # agent succeeds, let's finish here.
+                logger.info("agent succeeds, breaking!")
+                break
+            # otherwise, naively retry
+            logger.info(f"agent failed, retrying... {curr_attempt + 1}/{mitigation_agent_max_retry_attempts}")
+            curr_attempt += 1
+        agent_exec_stats["agent_names"] = agent_names_lst
+        agent_exec_stats["input_tokens"] = input_tokens_lst
+        agent_exec_stats["output_tokens"] = output_tokens_lst
+        agent_exec_stats["time"] = time_lst
+        agent_exec_stats["total_tokens"] = total_tokens_lst
+        agent_exec_stats["steps"] = steps_lst
+        agent_exec_stats["num_retry_attempts"] = num_retry_attempts_lst
+        agent_exec_stats["rollback_stack"] = rollback_stack_lst
+        agent_exec_stats["oracle_results"] = oracle_results_lst
+        return agent_exec_stats
+    elif mitigation_agent_retry_mode == "validate":
+        logger.info(f"retry mode: [{mitigation_agent_retry_mode}]")
+        # if the retry mode is validation, run mitigation agent with rollback and weak oracle.
+        # each start of new agent trial, the agent should receive the last run's oracle results
+        # and some reflections as input
+        curr_attempt = 0
+        mitigation_agent_last_state = ""
+        rollback_agent_last_state = ""
+        oracle_results = OracleResult(
+            success=False, issues=["This is the beginning of mitigation, please observe the cluster for issues."]
+        )
+
+        agent_exec_stats = dict()
+        agent_names_lst = []
+        input_tokens_lst = []
+        output_tokens_lst = []
+        total_tokens_lst = []
+        time_lst = []
+        steps_lst = []
+        num_retry_attempts_lst = []
+        rollback_stack_lst = []
+        oracle_results_lst = []
+
+        # starting retry loop
+        while curr_attempt < mitigation_agent_max_retry_attempts:
+            if curr_attempt == 0:
+                logger.info(f"running first try")
+                agent, mitigation_agent_last_state = await mitigation_agent_single_run(first_run_initial_messages)
+            else:
+                logger.info(
+                    f"running retries. current attempt: {curr_attempt + 1}/{mitigation_agent_max_retry_attempts}"
+                )
+                # we compose the retry prompts here.
+                last_run_summary = generate_run_summary(mitigation_agent_last_state, llm_summarization_prompt)
+                retry_run_initial_messages = [
+                    SystemMessage(mitigation_agent_prompts["system"]),
+                    HumanMessage(
+                        mitigation_agent_prompts["user"].format(
+                            max_step=mitigation_agent_max_step,
+                            faults_info=localization_summary,
+                            app_name=app_name,
+                            app_description=app_description,
+                            app_namespace=app_namespace,
+                        )
+                        + "\n\n"
+                        + mitigation_agent_prompts["retry_user"].format(
+                            last_result=str(oracle_results),
+                            reflection=last_run_summary,
+                        )
+                    ),
+                ]
+                logger.info(f"composed retry prompts: {retry_run_initial_messages}")
+                agent, mitigation_agent_last_state = await mitigation_agent_retry_run(retry_run_initial_messages)
+
+            # recording post-run data
+            agent_time = time.perf_counter() - start_time
+            agent_names_lst.append("mitigation_agent_validate")
+            usage_metadata = next(iter(agent.callback.usage_metadata.items()))[1]
+            input_tokens_lst.append(usage_metadata["input_tokens"])
+            output_tokens_lst.append(usage_metadata["output_tokens"])
+            total_tokens_lst.append(usage_metadata["total_tokens"])
+            time_lst.append(str(agent_time))
+            steps_lst.append(mitigation_agent_last_state.values["num_steps"])
+            num_retry_attempts_lst.append(str(curr_attempt))
+            rollback_stack_lst.append("N/A, mitigation agent")
+
+            # getting oracle result
+            oracle_results = await validate_oracles(oracles)
+            oracle_results_lst.append(str(oracle_results))
+            has_succeeded = oracle_results[0]
+            if has_succeeded:
+                # agent succeeds, let's finish here.
+                logger.info("agent succeeds! manually submitting for the agent")
+                await manual_submit_tool("")
+                logger.info("breaking the retry loop")
+                break
+                # return agent_exec_stats
+            else:
+                # here the agent fails, we make decision if we should retry
+                should_retry = curr_attempt + 1 < mitigation_agent_max_retry_attempts
+                logger.info(f"agent failed, should we retry? {"Yes!" if should_retry else "No!"}")
+                if should_retry:
+                    # we should retry as we have more trials left
+                    logger.info(
+                        f"we should retry as we have more attempts left. attempts left: {(mitigation_agent_max_retry_attempts - 1) - (curr_attempt + 1)}"
+                    )
+                    # rollback all changes
+                    # rollback agent is stateless and "best effort" idempotent, just rollback
+                    # memory is cleared in the retry_run() method, so the agent can start anew.
+                    logger.info(f"agent failed, retrying... {curr_attempt + 1}/{mitigation_agent_max_retry_attempts}")
+                    logger.info(f"running rollback agent to reverse progress")
+                    rollback_start_time = time.perf_counter()
+                    rollback_agent, rollback_agent_last_state = await rollback_agent_main()
+                    rollback_end_time = time.perf_counter() - rollback_start_time
+                    agent_names_lst.append("rollback_agent")
+                    usage_metadata = next(iter(rollback_agent.callback.usage_metadata.items()))[1]
+                    input_tokens_lst.append(usage_metadata["input_tokens"])
+                    output_tokens_lst.append(usage_metadata["output_tokens"])
+                    total_tokens_lst.append(usage_metadata["total_tokens"])
+                    time_lst.append(str(rollback_end_time))
+                    steps_lst.append(rollback_agent_last_state.values["num_steps"])
+                    num_retry_attempts_lst.append(str(curr_attempt))
+                    rollback_stack_lst.append(rollback_agent_last_state.values["rollback_stack"])
+                    oracle_results_lst.append(str("N/A, rollback agent"))
+                    curr_attempt += 1
+                else:
+                    logger.info("we shouldn't retry as we don't have more attempts left.")
+                    logger.info(f"making a real submission for the agent.")
+                    await manual_submit_tool("")
+                    break
+                    # return agent_exec_stats
+
+        agent_exec_stats["agent_name"] = agent_names_lst
+        agent_exec_stats["input_tokens"] = input_tokens_lst
+        agent_exec_stats["output_tokens"] = output_tokens_lst
+        agent_exec_stats["total_tokens"] = total_tokens_lst
+        agent_exec_stats["time"] = time_lst
+        agent_exec_stats["steps"] = steps_lst
+        agent_exec_stats["num_retry_attempts"] = num_retry_attempts_lst
+        agent_exec_stats["rollback_stack"] = rollback_stack_lst
+        agent_exec_stats["oracle_results"] = oracle_results_lst
+        return agent_exec_stats
+
+
+async def main():
+    # run diagnosis agent 2 times
+    # here, running the file's main function should suffice.
+    # 1 for noop diagnosis
+    current_problem = get_curr_problem()
+
+    # logger.info("*" * 25 + f" Testing {current_problem} ! " + "*" * 25)
+    # logger.info("*" * 25 + f" Testing {current_problem} ! " + "*" * 25)
+    # logger.info("*" * 25 + f" Testing {current_problem} ! " + "*" * 25)
+    agent_output_df = pd.DataFrame()
+    agent_names = []
+    agent_in_tokens = []
+    agent_out_tokens = []
+    agent_total_tokens = []
+    agent_times = []
+    agent_steps = []
+    agent_retry_attempts = []
+    agent_rollback_stack = []
+    agent_oracle_results = []
+    # logger.info("*" * 25 + " Starting [diagnosis agent] for [NOOP detection] " + "*" * 25)
+    # diagnosis_agent_exec_stats = await diagnosis_task_main()
+    # agent_names.append("diagnosis_agent_noop")
+    # agent_in_tokens.append(diagnosis_agent_exec_stats["input_tokens"])
+    # agent_out_tokens.append(diagnosis_agent_exec_stats["output_tokens"])
+    # agent_total_tokens.append(diagnosis_agent_exec_stats["total_tokens"])
+    # agent_times.append(diagnosis_agent_exec_stats["time"])
+    # agent_steps.append(diagnosis_agent_exec_stats["steps"])
+    # agent_retry_attempts.append(diagnosis_agent_exec_stats["num_retry_attempts"])
+    # agent_rollback_stack.append(diagnosis_agent_exec_stats["rollback_stack"])
+    # agent_oracle_results.append(diagnosis_agent_exec_stats["oracle_results"])
+    # logger.info("*" * 25 + " Finished [diagnosis agent] " + "*" * 25)
+    # logger.info("sleeping for a minute for fault propagation")
+    # await asyncio.sleep(60)
+
+    # 1 for faulty diagnosis
+    # logger.info("*" * 25 + " Starting [diagnosis agent] for [Faulty detection] " + "*" * 25)
+    # diagnosis_agent_exec_stats = await diagnosis_task_main()
+    # agent_names.append("diagnosis_agent_faulty")
+    # agent_in_tokens.append(diagnosis_agent_exec_stats["input_tokens"])
+    # agent_out_tokens.append(diagnosis_agent_exec_stats["output_tokens"])
+    # agent_total_tokens.append(diagnosis_agent_exec_stats["total_tokens"])
+    # agent_times.append(diagnosis_agent_exec_stats["time"])
+    # agent_steps.append(diagnosis_agent_exec_stats["steps"])
+    # agent_retry_attempts.append(diagnosis_agent_exec_stats["num_retry_attempts"])
+    # agent_rollback_stack.append(diagnosis_agent_exec_stats["rollback_stack"])
+    # agent_oracle_results.append(diagnosis_agent_exec_stats["oracle_results"])
+    # logger.info("*" * 25 + " Finished [diagnosis agent] " + "*" * 25)
+
+    # run localization agent 1 time for localization
+    # (BTS it's just diagnosis agent with different prompts)
+    # here, running the file's main function should suffice
+    logger.info("*" * 25 + " Starting [localization agent] for [localization] " + "*" * 25)
+    localization_agent_exec_stats, localization_agent_last_state = await localization_task_main()
+    agent_names.append("localization_agent")
+    agent_in_tokens.append(localization_agent_exec_stats["input_tokens"])
+    agent_out_tokens.append(localization_agent_exec_stats["output_tokens"])
+    agent_total_tokens.append(localization_agent_exec_stats["total_tokens"])
+    agent_times.append(localization_agent_exec_stats["time"])
+    agent_steps.append(localization_agent_exec_stats["steps"])
+    agent_retry_attempts.append(localization_agent_exec_stats["num_retry_attempts"])
+    agent_rollback_stack.append(localization_agent_exec_stats["rollback_stack"])
+    agent_oracle_results.append(localization_agent_exec_stats["oracle_results"])
+    logger.info("*" * 25 + " Finished [localization agent] " + "*" * 25)
+
+    file_parent_dir = Path(__file__).resolve().parent.parent
+    localization_agent_config_path = file_parent_dir.parent / "configs" / "localization_agent_config.yaml"
+    localization_agent_config = yaml.safe_load(open(localization_agent_config_path, "r"))
+    localization_agent_prompt_path = file_parent_dir.parent / "configs" / localization_agent_config["prompts_path"]
+    localization_agent_prompts = yaml.safe_load(open(localization_agent_prompt_path, "r"))
+    localization_fault_summary = generate_run_summary(
+        localization_agent_last_state, localization_agent_prompts["localization_summary_prompt"]
+    )
+
+    # run mitigation task 1 time for mitigation
+    # it includes retry logics
+    logger.info("*" * 25 + " Starting [mitigation agent] for [mitigation] " + "*" * 25)
+    mitigation_agent_exec_stats = await mitigation_task_main(localization_fault_summary)
+    agent_names.extend(mitigation_agent_exec_stats["agent_name"])
+    agent_in_tokens.extend(mitigation_agent_exec_stats["input_tokens"])
+    agent_out_tokens.extend(mitigation_agent_exec_stats["output_tokens"])
+    agent_total_tokens.extend(mitigation_agent_exec_stats["total_tokens"])
+    agent_times.extend(mitigation_agent_exec_stats["time"])
+    agent_steps.extend(mitigation_agent_exec_stats["steps"])
+    agent_retry_attempts.extend(mitigation_agent_exec_stats["num_retry_attempts"])
+    agent_rollback_stack.extend(mitigation_agent_exec_stats["rollback_stack"])
+    agent_oracle_results.extend(mitigation_agent_exec_stats["oracle_results"])
+    logger.info("*" * 25 + " Finished [mitigation agent] " + "*" * 25)
+
+    for lst in [
+        agent_names,
+        agent_in_tokens,
+        agent_out_tokens,
+        agent_total_tokens,
+        agent_times,
+        agent_steps,
+        agent_retry_attempts,
+        agent_rollback_stack,
+        agent_oracle_results,
+    ]:
+        logger.info("list length: " + str(len(lst)))
+
+    agent_output_df["agent_name"] = agent_names
+    agent_output_df["input_tokens"] = agent_in_tokens
+    agent_output_df["output_tokens"] = agent_out_tokens
+    agent_output_df["total_tokens"] = agent_total_tokens
+    agent_output_df["time"] = agent_times
+    agent_output_df["steps"] = agent_steps
+    agent_output_df["num_retry_attempts"] = agent_retry_attempts
+    agent_output_df["rollback_stack"] = agent_rollback_stack
+    agent_output_df["oracle_results"] = agent_oracle_results
+    current_datetime = get_current_datetime_formatted()
+    agent_output_df.to_csv(f"./{current_datetime}_{current_problem}_stratus_output.csv", index=False, header=True)
+    logger.info("*" * 25 + f" Finished Testing {current_problem} ! " + "*" * 25)
+    logger.info("*" * 25 + f" Finished Testing {current_problem} ! " + "*" * 25)
+    logger.info("*" * 25 + f" Finished Testing {current_problem} ! " + "*" * 25)
+
+
+if __name__ == "__main__":
+    asyncio.run(main())
diff --git a/clients/stratus/stratus_agent/localization_agent.py b/clients/stratus/stratus_agent/localization_agent.py
new file mode 100644
index 0000000..e733a84
--- /dev/null
+++ b/clients/stratus/stratus_agent/localization_agent.py
@@ -0,0 +1,79 @@
+import asyncio
+import logging
+from pathlib import Path
+
+import yaml
+
+from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+from clients.stratus.stratus_agent.diagnosis_agent import DiagnosisAgent
+from clients.stratus.stratus_utils.get_starting_prompt import get_starting_prompts
+from clients.stratus.stratus_utils.str_to_tool import str_to_tool
+
+logger = logging.getLogger("all.stratus.localization")
+logger.propagate = True
+logger.setLevel(logging.DEBUG)
+
+
+def build_default_localization_agent():
+    file_parent_dir = Path(__file__).resolve().parent
+    localization_agent_config_path = file_parent_dir.parent / "configs" / "localization_agent_config.yaml"
+    localization_agent_config = yaml.safe_load(open(localization_agent_config_path, "r"))
+    max_step = localization_agent_config["max_step"]
+    prompt_path = file_parent_dir.parent / "configs" / localization_agent_config["prompts_path"]
+    sync_tools = []
+    async_tools = []
+    tool_descriptions = ""
+    if localization_agent_config["sync_tools"] is not None:
+        for sync_tool_struct in localization_agent_config["sync_tools"]:
+            sync_tools.append(str_to_tool(sync_tool_struct))
+            tool_descriptions += (
+                f"tool name: {sync_tool_struct["name"]}"
+                + "\n\n"
+                + f"tool descriptions {sync_tool_struct["description"]}"
+                + "\n\n"
+            )
+    else:
+        sync_tools = None
+    if localization_agent_config["async_tools"] is not None:
+        for async_tool_struct in localization_agent_config["async_tools"]:
+            async_tools.append(str_to_tool(async_tool_struct))
+            tool_descriptions += (
+                f"tool name: {async_tool_struct["name"]}"
+                + "\n\n"
+                + f"tool description: {async_tool_struct["description"]}"
+                + "\n\n"
+            )
+    else:
+        async_tools = None
+
+    submit_tool = str_to_tool(
+        {
+            "name": "submit_tool",
+            "description": """
+                The tool to submit benchmark results
+
+                    Args:
+                        ans (str): Use natural language to describe the root cause of the failure.
+        """,
+        }
+    )
+
+    agent = DiagnosisAgent(
+        llm=get_llm_backend_for_tools(),
+        max_step=max_step,
+        sync_tools=sync_tools,
+        async_tools=async_tools,
+        submit_tool=submit_tool,
+        tool_descs=tool_descriptions,
+    )
+    agent.build_agent()
+    agent.save_agent_graph_to_png()
+    return agent, prompt_path, max_step
+
+
+async def single_run_with_predefined_prompts(init_prompts):
+    agent, prompt_path, max_step = build_default_localization_agent()
+    res = await agent.arun(init_prompts)
+    logger.info("Clearing agent's memory")
+    agent.clear_memory()
+    return agent, res
diff --git a/clients/stratus/stratus_agent/mitigation_agent.py b/clients/stratus/stratus_agent/mitigation_agent.py
new file mode 100644
index 0000000..aab1b50
--- /dev/null
+++ b/clients/stratus/stratus_agent/mitigation_agent.py
@@ -0,0 +1,233 @@
+import asyncio
+from pathlib import Path
+from typing import List
+import logging
+import yaml
+from langchain_core.callbacks import UsageMetadataCallbackHandler
+from langchain_core.messages import HumanMessage, SystemMessage
+from langgraph.checkpoint.memory import MemorySaver
+from langgraph.constants import END, START
+from langgraph.types import StateSnapshot
+
+from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+from clients.stratus.stratus_agent.base_agent import BaseAgent
+from clients.stratus.stratus_agent.state import State
+from clients.stratus.stratus_utils.str_to_tool import str_to_tool
+from clients.stratus.tools.stratus_tool_node import StratusToolNode
+
+logger = logging.getLogger("all.stratus.mitigation")
+logger.propagate = True
+logger.setLevel(logging.DEBUG)
+
+
+class MitigationAgent(BaseAgent):
+    def __init__(self, **kwargs):
+        super().__init__(**kwargs)
+        self.tool_node = None
+        self.max_step = kwargs.get("max_step", 20)
+        self.loop_count = 0
+        self.local_logger = logging.getLogger("all.stratus.mitigation")
+
+    def build_agent(self):
+        self.tool_node = StratusToolNode(async_tools=self.async_tools, sync_tools=self.sync_tools)
+
+        self.graph_builder.add_node(self.thinking_prompt_inject_node, self.llm_thinking_prompt_inject_step)
+        self.graph_builder.add_node(self.tool_calling_prompt_inject_node, self.llm_tool_call_prompt_inject_step)
+        self.graph_builder.add_node(self.thinking_node, self.llm_thinking_step)
+        self.graph_builder.add_node(self.tool_calling_node, self.llm_tool_call_step)
+        self.graph_builder.add_node(self.process_tool_call_node, self.tool_node)
+        self.graph_builder.add_node(self.post_round_process_node, self.post_round_process)
+        self.graph_builder.add_node(self.force_submit_prompt_inject_node, self.llm_force_submit_thinking_step)
+        self.graph_builder.add_node(self.force_submit_tool_call_node, self.llm_force_submit_tool_call_step)
+
+        self.graph_builder.add_edge(START, self.thinking_prompt_inject_node)
+        self.graph_builder.add_edge(self.thinking_prompt_inject_node, self.thinking_node)
+        self.graph_builder.add_edge(self.thinking_node, self.tool_calling_prompt_inject_node)
+        self.graph_builder.add_edge(self.tool_calling_prompt_inject_node, self.tool_calling_node)
+        self.graph_builder.add_edge(self.tool_calling_node, self.process_tool_call_node)
+        self.graph_builder.add_edge(self.process_tool_call_node, self.post_round_process_node)
+        self.graph_builder.add_conditional_edges(
+            self.process_tool_call_node,
+            self.should_submit_router,
+            {
+                self.force_submit_prompt_inject_node: self.force_submit_prompt_inject_node,
+                self.post_round_process_node: self.post_round_process_node,
+            },
+        )
+        # TODO: Before submitting, run oracle to see if really mitigated.
+        self.graph_builder.add_edge(self.force_submit_prompt_inject_node, self.force_submit_tool_call_node)
+        self.graph_builder.add_edge(self.force_submit_tool_call_node, END)
+        self.graph_builder.add_edge(self.post_round_process_node, END)
+
+        self.memory_saver = MemorySaver()
+        self.graph = self.graph_builder.compile(checkpointer=self.memory_saver)
+
+    async def arun(self, starting_prompts):
+        """
+        Async running an agent
+
+        Args:
+            starting_prompts (dict): The data inside the dict will be filled into the prompts.
+
+        Returns:
+            final state of the agent running, including messages and other state values.
+        """
+        if not self.graph:
+            raise ValueError("Agent graph is None. Have you built the agent?")
+
+        if len(starting_prompts) == 0:
+            raise ValueError("No prompts used to start the conversation!")
+
+        # Log starting prompts in full to arena logger
+        all_init_prompts = ""
+        for prompt in starting_prompts:
+            all_init_prompts += prompt.content + "\n"
+        self.arena_logger.info(f"[PROMPT] \n {all_init_prompts}")
+
+        graph_events = []
+        while True:
+            graph_config = {"configurable": {"thread_id": "1"}}
+            logger.info(f"{'-' * 20} [Loop {self.loop_count}] {'-' * 20}")
+            last_state = self.graph.get_state(config=graph_config)
+            if len(last_state.values) != 0:
+                logger.debug(f"[Loop {self.loop_count}] There were last {len(last_state.values)} states.")
+                # this is all the previous msgs the agent had, we just inherit them in the next graph traversal
+                state = last_state.values
+            else:
+                logger.debug(f"[Loop {self.loop_count}] There were no states.")
+                # fresh agent start, init state here
+                state = {
+                    "messages": starting_prompts,
+                    # "workdir": "",
+                    # "curr_file": "",
+                    # "curr_line": 0,
+                    "num_steps": 0,
+                    # "rec_submission_rounds": 0,
+                    # "submit_tried": False,
+                    "submitted": False,
+                    # "ans": dict(),
+                    "rollback_stack": "",
+                }
+
+            async for event in self.graph.astream(
+                state,
+                # recursion_limit could be as large as possible as we have our own limit.
+                config={"recursion_limit": 10000, "configurable": {"thread_id": "1"}, "callbacks": [self.callback]},
+                stream_mode="values",
+            ):
+                if (not graph_events) or event["messages"] != graph_events[-1]["messages"]:
+                    event["messages"][-1].pretty_print()
+                graph_events.append(event)
+            last_state = self.graph.get_state(config=graph_config)
+            if last_state.values["submitted"]:
+                logger.info(f"[Loop {self.loop_count}] Agent submitted, breaking loop.")
+                break
+            
+            self.loop_count += 1
+
+        return last_state
+
+
+def build_default_mitigation_agent():
+    # agent config and init setup
+    file_parent_dir = Path(__file__).resolve().parent
+    mitigation_agent_config_path = file_parent_dir.parent / "configs" / "mitigation_agent_config.yaml"
+    mitigation_agent_config = yaml.safe_load(open(mitigation_agent_config_path, "r"))
+    mitigation_agent_max_step = mitigation_agent_config["max_step"]
+    mitigation_agent_prompt_path = file_parent_dir.parent / "configs" / mitigation_agent_config["prompts_path"]
+
+    mitigation_agent_sync_tools = []
+    mitigation_agent_async_tools = []
+    mitigation_agent_tool_descriptions = ""
+    if mitigation_agent_config["sync_tools"] is not None:
+        for sync_tool_struct in mitigation_agent_config["sync_tools"]:
+            mitigation_agent_sync_tools.append(str_to_tool(sync_tool_struct))
+            mitigation_agent_tool_descriptions += (
+                f"tool name: {sync_tool_struct["name"]}"
+                + "\n\n"
+                + f"tool descriptions {sync_tool_struct["description"]}"
+                + "\n\n"
+            )
+    else:
+        mitigation_agent_sync_tools = None
+    if mitigation_agent_config["async_tools"] is not None:
+        for async_tool_struct in mitigation_agent_config["async_tools"]:
+            mitigation_agent_async_tools.append(str_to_tool(async_tool_struct))
+            mitigation_agent_tool_descriptions += (
+                f"tool name: {async_tool_struct["name"]}"
+                + "\n\n"
+                + f"tool description: {async_tool_struct["description"]}"
+                + "\n\n"
+            )
+    else:
+        mitigation_agent_async_tools = None
+
+    submit_tool = str_to_tool(
+        {
+            "name": "submit_tool",
+            "description": """
+                    The tool to submit benchmark results
+
+                        Args:
+                            ans (str): the answer you would like to submit to the benchmark
+            """,
+        }
+    )
+
+    # defining mitigation agent
+    mitigation_agent = MitigationAgent(
+        llm=get_llm_backend_for_tools(),
+        max_step=mitigation_agent_max_step,
+        sync_tools=mitigation_agent_sync_tools,
+        async_tools=mitigation_agent_async_tools,
+        submit_tool=submit_tool,
+        tool_descs=mitigation_agent_tool_descriptions,
+    )
+    mitigation_agent.build_agent()
+    mitigation_agent.save_agent_graph_to_png()
+    return mitigation_agent, mitigation_agent_prompt_path, mitigation_agent_max_step
+
+
+def generate_run_summary(last_state: StateSnapshot, summary_system_prompt) -> str:
+    """
+    Returns a SystemMessage and a HumanMessage as a list. They are summaries and reflections of a given last run
+    `last_state`.
+    Ideally, we only need to summarize the last 20 (or all of them if less than 20) messages from the agent
+
+        Args:
+            last_state (State): the state from last run
+        Returns:
+            a list of SystemMessage and HumanMessage representing the reflections
+    """
+    llm = get_llm_backend_for_tools()
+    logger.info("asking LLM to summarize and reflect last run")
+    last_run_msgs = last_state.values.get("messages", None)
+    summary_input_messages = [
+        SystemMessage(summary_system_prompt),
+        HumanMessage(f"Here are the list of messages happened in the last conversation. \n\n {last_run_msgs}"),
+    ]
+    if last_run_msgs is None:
+        raise RuntimeError("StateSnapshot must contain messages!")
+    res = llm.inference(summary_input_messages)
+    res = res.content
+    return res
+
+
+async def single_run_with_predefined_prompts(init_prompts):
+    agent, prompt_path, max_step = build_default_mitigation_agent()
+    res = await agent.arun(init_prompts)
+    logger.info("Clearing agent's memory")
+    agent.clear_memory()
+    return agent, res
+
+
+async def retry_run_with_feedback(feedback_prompts):
+    agent, prompt_path, max_step = build_default_mitigation_agent()
+    res = await agent.arun(feedback_prompts)
+    logger.info("Clearing agent's memory")
+    agent.clear_memory()
+    return agent, res
+
+
+if __name__ == "__main__":
+    logger.info("Mitigation agent does not support running as a module.")
diff --git a/clients/stratus/stratus_agent/rollback_agent.py b/clients/stratus/stratus_agent/rollback_agent.py
new file mode 100644
index 0000000..817a31a
--- /dev/null
+++ b/clients/stratus/stratus_agent/rollback_agent.py
@@ -0,0 +1,125 @@
+import asyncio
+import logging
+from pathlib import Path
+
+import yaml
+from langchain_core.callbacks import UsageMetadataCallbackHandler
+from langgraph.checkpoint.memory import MemorySaver
+from langgraph.constants import END
+from langgraph.graph import START
+
+from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+from clients.stratus.stratus_agent.base_agent import BaseAgent
+from clients.stratus.stratus_utils.get_starting_prompt import get_starting_prompts
+from clients.stratus.stratus_utils.str_to_tool import str_to_tool
+from clients.stratus.tools.stratus_tool_node import StratusToolNode
+
+logger = logging.getLogger("all.stratus.rollback")
+logger.propagate = True
+logger.setLevel(logging.DEBUG)
+
+
+class RollbackAgent(BaseAgent):
+    def __init__(self, **kwargs):
+        super().__init__(**kwargs)
+        self.tool_node = None
+        self.loop_count = 0
+        self.local_logger = logging.getLogger("all.stratus.rollback")
+
+    def build_agent(self):
+        self.tool_node = StratusToolNode(
+            async_tools=self.async_tools,
+            sync_tools=self.sync_tools,
+        )
+
+        self.graph_builder.add_node(self.thinking_prompt_inject_node, self.llm_thinking_prompt_inject_step)
+        self.graph_builder.add_node(self.tool_calling_prompt_inject_node, self.llm_tool_call_prompt_inject_step)
+        self.graph_builder.add_node(self.thinking_node, self.llm_thinking_step)
+        self.graph_builder.add_node(self.tool_calling_node, self.llm_tool_call_step)
+        self.graph_builder.add_node(self.process_tool_call_node, self.tool_node)
+        self.graph_builder.add_node(self.post_round_process_node, self.post_round_process)
+        self.graph_builder.add_node(self.force_submit_tool_call_node, self.llm_force_submit_tool_call_node)
+
+        self.graph_builder.add_edge(START, self.thinking_prompt_inject_node)
+        self.graph_builder.add_edge(self.thinking_prompt_inject_node, self.thinking_node)
+        self.graph_builder.add_edge(self.thinking_node, self.tool_calling_prompt_inject_node)
+        self.graph_builder.add_edge(self.tool_calling_prompt_inject_node, self.tool_calling_node)
+        self.graph_builder.add_edge(self.tool_calling_node, self.process_tool_call_node)
+        self.graph_builder.add_edge(self.process_tool_call_node, self.post_round_process_node)
+        self.graph_builder.add_conditional_edges(
+            self.process_tool_call_node,
+            self.should_submit_router,
+            {
+                self.force_submit_tool_call_node: self.force_submit_tool_call_node,
+                self.post_round_process_node: self.post_round_process_node,
+            },
+        )
+        self.graph_builder.add_edge(self.force_submit_tool_call_node, END)
+        self.graph_builder.add_edge(self.post_round_process_node, END)
+
+        self.memory_saver = MemorySaver()
+        self.graph = self.graph_builder.compile(checkpointer=self.memory_saver)
+
+
+async def main():
+    file_parent_dir = Path(__file__).resolve().parent
+    rollback_agent_config_path = file_parent_dir.parent / "configs" / "rollback_agent_config.yaml"
+    rollback_agent_config = yaml.safe_load(open(rollback_agent_config_path, "r"))
+    max_step = rollback_agent_config["max_step"]
+    prompt_path = file_parent_dir.parent / "configs" / rollback_agent_config["prompts_path"]
+    sync_tools = []
+    async_tools = []
+    tool_descriptions = ""
+    if rollback_agent_config["sync_tools"] is not None:
+        for sync_tool_struct in rollback_agent_config["sync_tools"]:
+            sync_tools.append(str_to_tool(sync_tool_struct))
+            tool_descriptions += (
+                f"tool name: {sync_tool_struct["name"]}"
+                + "\n\n"
+                + f"tool descriptions {sync_tool_struct["description"]}"
+                + "\n\n"
+            )
+    else:
+        sync_tools = None
+    if rollback_agent_config["async_tools"] is not None:
+        for async_tool_struct in rollback_agent_config["async_tools"]:
+            async_tools.append(str_to_tool(async_tool_struct))
+            tool_descriptions += (
+                f"tool name: {async_tool_struct["name"]}"
+                + "\n\n"
+                + f"tool description: {async_tool_struct["description"]}"
+                + "\n\n"
+            )
+    else:
+        async_tools = None
+
+    submit_tool = str_to_tool(
+        {
+            "name": "submit_tool",
+            "description": """
+                The tool to submit benchmark results
+
+                    Args:
+                        ans (str): the answer you would like to submit to the benchmark
+        """,
+        }
+    )
+
+    agent = RollbackAgent(
+        llm=get_llm_backend_for_tools(),
+        max_step=max_step,
+        sync_tools=sync_tools,
+        async_tools=async_tools,
+        submit_tool=submit_tool,
+        tool_descs=tool_descriptions,
+    )
+    agent.build_agent()
+    agent.save_agent_graph_to_png()
+
+    res = await agent.arun(get_starting_prompts(prompt_path, max_step=max_step))
+    agent.clear_memory()
+    return agent, res
+
+
+if __name__ == "__main__":
+    asyncio.run(main())
diff --git a/clients/stratus/stratus_agent/state.py b/clients/stratus/stratus_agent/state.py
new file mode 100644
index 0000000..2e6d119
--- /dev/null
+++ b/clients/stratus/stratus_agent/state.py
@@ -0,0 +1,21 @@
+from langgraph.graph import add_messages
+from typing_extensions import Annotated, TypedDict
+
+
+class State(TypedDict):
+    # Messages have the type "list". The `add_messages` function
+    # in the annotation defines how this state key should be updated
+    # (in this case, it appends messages to the list, rather than overwriting them)
+    messages: Annotated[list, add_messages]
+    # workdir: str
+    # curr_file: str
+    # curr_line: int
+    # number or rounds used to finish assigned tasks
+    # num_rounds: int
+    num_steps: int
+    # number of rounds used for rectifying submission
+    # rec_submission_rounds: int
+    submitted: bool
+    # submit_tried: bool
+    # ans: dict
+    rollback_stack: str
diff --git a/clients/stratus/stratus_utils/__init__.py b/clients/stratus/stratus_utils/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/stratus/stratus_utils/ai_msg_mock_utils.py b/clients/stratus/stratus_utils/ai_msg_mock_utils.py
new file mode 100644
index 0000000..78a378a
--- /dev/null
+++ b/clients/stratus/stratus_utils/ai_msg_mock_utils.py
@@ -0,0 +1,53 @@
+ai_msg_tpl = {
+    "content": "",
+    "additional_kwargs": {
+        "tool_calls": [
+            {
+                "id": "call_osNIUg8kE7psP360dHinqNbm",
+                "function": {
+                    "arguments": "",
+                    "name": "",
+                },
+                "type": "function",
+            }
+        ],
+        "refusal": None,
+    },
+    "response_metadata": {
+        "token_usage": {
+            "completion_tokens": 39,
+            "prompt_tokens": 588,
+            "total_tokens": 627,
+            "completion_tokens_details": {
+                "accepted_prediction_tokens": 0,
+                "audio_tokens": 0,
+                "reasoning_tokens": 0,
+                "rejected_prediction_tokens": 0,
+            },
+            "prompt_tokens_details": {"audio_tokens": 0, "cached_tokens": 0},
+        },
+        "model_name": "gpt-4o-2024-08-06",
+        "system_fingerprint": "fp_07871e2ad8",
+        "service_tier": "default",
+        "finish_reason": "tool_calls",
+        "logprobs": None,
+    },
+    "tool_calls": [
+        {
+            "name": "",
+            "args": {
+                "path": "",
+                "line_number": "",
+            },
+            "id": "call_osNIUg8kE7psP360dHinqNbm",
+            "type": "tool_call",
+        }
+    ],
+    "usage_metadata": {
+        "input_tokens": 588,
+        "output_tokens": 39,
+        "total_tokens": 627,
+        "input_token_details": {"audio": 0, "cache_read": 0},
+        "output_token_details": {"audio": 0, "reasoning": 0},
+    },
+}
diff --git a/clients/stratus/stratus_utils/get_logger.py b/clients/stratus/stratus_utils/get_logger.py
new file mode 100644
index 0000000..8c7b8be
--- /dev/null
+++ b/clients/stratus/stratus_utils/get_logger.py
@@ -0,0 +1,7 @@
+import logging
+
+
+def get_logger():
+    logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+    logger = logging.getLogger(__name__)
+    return logger
diff --git a/clients/stratus/stratus_utils/get_starting_prompt.py b/clients/stratus/stratus_utils/get_starting_prompt.py
new file mode 100644
index 0000000..99a9d46
--- /dev/null
+++ b/clients/stratus/stratus_utils/get_starting_prompt.py
@@ -0,0 +1,16 @@
+import yaml
+from langchain_core.messages import AIMessage, HumanMessage, SystemMessage
+
+
+def get_starting_prompts(prompt_path, max_step):
+    with open(prompt_path, "r") as prompt_file:
+        prompts = yaml.safe_load(prompt_file)
+        sys_prompt = prompts["system"]
+        user_prompt = prompts["user"].format(max_step=max_step)
+        prompts = []
+        if sys_prompt:
+            prompts.append(SystemMessage(sys_prompt))
+        if user_prompt:
+            prompts.append(HumanMessage(user_prompt))
+
+        return prompts
diff --git a/clients/stratus/stratus_utils/str_to_tool.py b/clients/stratus/stratus_utils/str_to_tool.py
new file mode 100644
index 0000000..4fd00f6
--- /dev/null
+++ b/clients/stratus/stratus_utils/str_to_tool.py
@@ -0,0 +1,72 @@
+"""Converts tools in str into tool objects"""
+
+import os
+import uuid
+
+from fastmcp import Client
+from fastmcp.client import SSETransport
+from langchain_core.tools import BaseTool
+
+from clients.stratus.stratus_utils.get_logger import get_logger
+from clients.stratus.tools.jaeger_tools import get_dependency_graph, get_operations, get_services, get_traces
+from clients.stratus.tools.kubectl_tools import (
+    ExecKubectlCmdSafely,
+    ExecReadOnlyKubectlCmd,
+    GetPreviousRollbackableCmd,
+    RollbackCommand,
+)
+from clients.stratus.tools.localization import get_resource_uid
+from clients.stratus.tools.prometheus_tools import get_metrics
+from clients.stratus.tools.submit_tool import fake_submit_tool, rollback_submit_tool, submit_tool
+from clients.stratus.tools.wait_tool import wait_tool
+
+logger = get_logger()
+
+
+def get_client():
+    session_id = str(uuid.uuid4())
+    transport = SSETransport(
+        url=f"{os.getenv("MCP_SERVER_URL", "http://localhost:9954")}/kubectl_mcp_tools/sse",
+        headers={"sregym_ssid": session_id},
+    )
+    client = Client(transport)
+    return client
+
+
+def str_to_tool(tool_struct: dict[str, str]):
+    if tool_struct["name"] == "get_traces":
+        return get_traces
+    elif tool_struct["name"] == "get_services":
+        return get_services
+    elif tool_struct["name"] == "get_operations":
+        return get_operations
+    elif tool_struct["name"] == "get_dependency_graph":
+        return get_dependency_graph
+    elif tool_struct["name"] == "get_metrics":
+        return get_metrics
+    elif tool_struct["name"] == "get_resource_uid":
+        return get_resource_uid
+    elif tool_struct["name"] == "submit_tool":
+        return submit_tool
+    elif tool_struct["name"] == "f_submit_tool":
+        return fake_submit_tool
+    elif tool_struct["name"] == "r_submit_tool":
+        return rollback_submit_tool
+    elif tool_struct["name"] == "wait_tool":
+        return wait_tool
+    elif tool_struct["name"] == "exec_read_only_kubectl_cmd":
+        client = get_client()
+        exec_read_only_kubectl_cmd = ExecReadOnlyKubectlCmd(client)
+        return exec_read_only_kubectl_cmd
+    elif tool_struct["name"] == "exec_kubectl_cmd_safely":
+        client = get_client()
+        exec_kubectl_cmd_safely = ExecKubectlCmdSafely(client)
+        return exec_kubectl_cmd_safely
+    elif tool_struct["name"] == "rollback_command":
+        client = get_client()
+        rollback_command = RollbackCommand(client)
+        return rollback_command
+    elif tool_struct["name"] == "get_previous_rollbackable_cmd":
+        client = get_client()
+        get_previous_rollbackable_cmd = GetPreviousRollbackableCmd(client)
+        return get_previous_rollbackable_cmd
diff --git a/clients/stratus/stratus_utils/truncate_by_token.py b/clients/stratus/stratus_utils/truncate_by_token.py
new file mode 100644
index 0000000..628af74
--- /dev/null
+++ b/clients/stratus/stratus_utils/truncate_by_token.py
@@ -0,0 +1,23 @@
+import tiktoken
+
+
+def truncate_to_tokens(text: str, max_tokens: int = 6000, model: str = "gpt-4o-mini"):
+    try:
+        enc = tiktoken.encoding_for_model(model)
+    except KeyError:
+        # Fallback that works for most modern OpenAI chat models
+        enc = tiktoken.get_encoding("cl100k_base")
+
+    tokens = enc.encode(text)
+    if len(tokens) <= max_tokens:
+        return text, len(tokens)
+
+    # Truncate and decode back to string
+    truncated_text = enc.decode(tokens[:max_tokens])
+
+    # Optional safety pass to ensure token count is <= max_tokens after decoding
+    retokens = enc.encode(truncated_text)
+    if len(retokens) > max_tokens:
+        truncated_text = enc.decode(retokens[:max_tokens])
+
+    return truncated_text
diff --git a/clients/stratus/tools/__init__.py b/clients/stratus/tools/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/stratus/tools/basic_tool_node.py b/clients/stratus/tools/basic_tool_node.py
new file mode 100644
index 0000000..a15a00d
--- /dev/null
+++ b/clients/stratus/tools/basic_tool_node.py
@@ -0,0 +1,43 @@
+import asyncio
+import logging
+
+from langchain_core.messages import ToolMessage
+from langchain_core.tools import BaseTool
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+
+class BasicToolNode:
+    """A node that runs the tools requested in the last AIMessage."""
+
+    def __init__(self, node_tools: list[BaseTool], is_async: bool) -> None:
+        self.tools_by_name = {t.name: t for t in node_tools}
+        self.is_async = is_async
+
+    async def __call__(self, inputs: dict):
+        if messages := inputs.get("messages", []):
+            message = messages[-1]
+        else:
+            raise ValueError("No message found in input")
+        logger.info(f"BasicToolNode: {message}")
+        outputs = []
+        for tool_call in message.tool_calls:
+            # tool_call["args"]["tool_call_id"] = tool_call["id"]
+            # tool_call["args"].pop("id", None)
+            logger.info(f"invoking tool: {tool_call["name"]}, tool_call: {tool_call}")
+            if self.is_async:
+                tool_call["args"].update({"state": inputs})
+                tool_result = await self.tools_by_name[tool_call["name"]].ainvoke(tool_call)
+                tool_call["args"].pop("state", None)
+            else:
+                tool_result = self.tools_by_name[tool_call["name"]].invoke(tool_call["args"])
+            logger.info(f"tool_result: {tool_result}")
+            outputs.append(
+                ToolMessage(
+                    content=tool_result,
+                    name=tool_call["name"],
+                    tool_call_id=tool_call["id"],
+                )
+            )
+        return {"messages": outputs}
diff --git a/clients/stratus/tools/compile/compile_tool.py b/clients/stratus/tools/compile/compile_tool.py
new file mode 100644
index 0000000..1b9df41
--- /dev/null
+++ b/clients/stratus/tools/compile/compile_tool.py
@@ -0,0 +1,59 @@
+import logging
+import os.path
+import subprocess
+from pathlib import Path
+from typing import Annotated
+
+from langchain_core.messages import ToolMessage
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.prebuilt import InjectedState
+
+from clients.stratus.tools.text_editing.flake8_utils import flake8, format_flake8_output  # type: ignore
+from clients.stratus.tools.text_editing.windowed_file import (  # type: ignore
+    FileNotOpened,
+    TextNotFound,
+    WindowedFile,
+)
+
+
+@tool("compile_postgresql_server", description="Compile PostgreSQL server code")
+def compile_postgresql_server(
+    tool_call_id: Annotated[str, InjectedToolCallId] = "",
+    state: Annotated[dict, InjectedState] = None,
+) -> str:
+    """Compile PostgreSQL server code."""
+    logger = logging.getLogger(__name__)
+    logger.info("Compiling PostgreSQL server code...")
+    logger.info(f"State: {state}")
+
+    workdir = Path(state.get("workdir", "")).resolve()
+    logger.info(f"Work directory: {workdir}")
+
+    if not workdir.exists():
+        return f"Work directory {workdir} does not exist. Please set the workdir in the state."
+
+    env = os.environ.copy()
+    env["PATH"] = str(Path.home() / "pgsql/bin") + ":" + env["PATH"]
+    homedir = str(Path.home())
+    logger.info(f"Home directory: {homedir}")
+
+    if not workdir.exists():
+        return f"Work directory {workdir} does not exist. Please set the workdir in the state."
+
+    cmds = [
+        f"./configure --prefix={workdir}/pgsql --without-icu",
+        "make > /dev/null 2>&1",
+        "make install > /dev/null 2>&1",
+        f"{homedir}/pgsql/bin/initdb -D {homedir}/pgsql/data2",
+        f"{homedir}/pgsql/bin/pg_ctl -D {homedir}/pgsql/data2 -l logfile start",
+        f"{homedir}/pgsql/bin/createdb test",
+        f"{homedir}/pgsql/bin/psql -d test -c '\\l'",
+    ]
+
+    output = ""
+    for cmd in cmds:
+        process = subprocess.run(cmd, cwd=workdir, capture_output=True, shell=True, text=True, env=env)
+        output += f"$ {cmd}\n{process.stdout}\n{process.stderr}\n"
+        logger.info(f"Command: {cmd}")
+        logger.info(f"Output: {process.stdout}")
+    return ToolMessage(tool_call_id=tool_call_id, content=output)
diff --git a/clients/stratus/tools/jaeger_tools.py b/clients/stratus/tools/jaeger_tools.py
new file mode 100644
index 0000000..b4d9ddc
--- /dev/null
+++ b/clients/stratus/tools/jaeger_tools.py
@@ -0,0 +1,248 @@
+import logging
+from contextlib import AsyncExitStack
+from typing import Annotated
+
+from langchain_core.messages import HumanMessage, SystemMessage, ToolMessage
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.types import Command
+from mcp import ClientSession
+from mcp.client.sse import sse_client
+
+from clients.stratus.configs.langgraph_tool_configs import LanggraphToolConfig
+from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+from clients.stratus.stratus_utils.truncate_by_token import truncate_to_tokens
+from clients.stratus.tools.text_editing.flake8_utils import flake8, format_flake8_output  # type: ignore
+from clients.stratus.tools.text_editing.windowed_file import (  # type: ignore
+    FileNotOpened,
+    TextNotFound,
+    WindowedFile,
+)
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger("all.stratus.tools.jaeger")
+
+langgraph_tool_config = LanggraphToolConfig()
+
+get_traces_docstring = """Get Jaeger traces for a given service in the last n minutes.
+
+    Args:
+        service (str): The name of the service for which to retrieve trace data.
+        last_n_minutes (int): The time range (in minutes) to look back from the current time.
+"""
+
+
+@tool(description=get_traces_docstring)
+async def get_traces(service: str, last_n_minutes: int, tool_call_id: Annotated[str, InjectedToolCallId]) -> Command:
+
+    logging.info(f"Getting traces for service {service} in the last {last_n_minutes} minutes")
+
+    exit_stack = AsyncExitStack()
+    logger.info("Using HTTP, connecting to server.")
+    server_url = langgraph_tool_config.jaeger_mcp_url
+    http_transport = await exit_stack.enter_async_context(sse_client(url=server_url))
+    session = await exit_stack.enter_async_context(ClientSession(*http_transport))
+
+    await session.initialize()
+
+    result = await session.call_tool(
+        "get_traces",
+        arguments={
+            "service": service,
+            "last_n_minutes": last_n_minutes,
+        },
+    )
+    await exit_stack.aclose()
+    result = result.content[0].text
+    # if langgraph_tool_config.use_summaries and len(traces) >= langgraph_tool_config.min_len_to_sum:
+    #     logger.info("Using summaries for traces.")
+    #     traces = _summarize_traces(traces)
+    result = truncate_to_tokens(result)
+    return Command(
+        update={
+            "messages": [
+                ToolMessage(
+                    content=str(result),
+                    tool_call_id=tool_call_id,
+                ),
+            ]
+        }
+    )
+
+
+def _summarize_traces(traces):
+    logger.info("=== _summarize_traces called ===")
+
+    system_prompt = """
+        You are a tool for a Site Reliability Engineering team. Currently, the team faces an incident in the cluster and needs to fix it ASAP.
+            Your job is to analyze and summarize given microservice traces, given in format of dictionaries.
+            Read the given traces. Summarize the traces. Analyze what could be the root cause of the incident.
+            Be succinct and concise. Include important traces that reflects the root cause of the incident in format of raw traces as strings, no need to prettify the json.
+            DO NOT truncate the traces.
+
+            Return your response in this format:
+            SERVICE NAME: <insert service name>
+            SUMMARY: <insert summary of traces>
+
+            STRICTLY FOLLOW THIS FORMAT
+            
+            """
+    llm = get_llm_backend_for_tools()
+    messages = [
+        SystemMessage(content=system_prompt),
+        HumanMessage(content=traces),
+    ]
+
+    traces_summary = llm.inference(messages=messages)
+    logger.info(f"Traces summary: {traces_summary}")
+    return traces_summary
+
+
+def _summarize_operations(operations):
+    logger.info("=== _summarize_operations called ===")
+
+    system_prompt = """
+        You are a tool for a Site Reliability Engineering team. Currently, the team faces an incident in the cluster and needs to fix it ASAP.
+            Your job is to analyze and summarize given microservice operations, given in format of dictionaries.
+            Read the given operations. Summarize the operations. Analyze what could be the root cause of the incident.
+            Be succinct and concise. 
+
+            Return your response in this format:
+            SERVICE NAME: <insert service name>
+            SUMMARY: <insert summary of operations>
+
+            STRICTLY FOLLOW THIS FORMAT
+            
+            """
+    llm = get_llm_backend_for_tools()
+    messages = [
+        SystemMessage(content=system_prompt),
+        HumanMessage(content=operations),
+    ]
+
+    operations_summary = llm.inference(messages=messages)
+    logger.info(f"Operations summary: {operations_summary}")
+    return operations_summary
+
+
+get_services_docstring = """
+Retrieve the list of service names from the Grafana instance.
+
+    Args:
+
+    Returns:
+        List[str]: A list of service names available in Grafana.
+"""
+
+
+@tool(description=get_services_docstring)
+async def get_services(tool_call_id: Annotated[str, InjectedToolCallId]) -> Command:
+
+    logger.info(f"calling mcp get_services from langchain get_services")
+    exit_stack = AsyncExitStack()
+    logger.info("Using HTTP, connecting to server.")
+    server_url = langgraph_tool_config.jaeger_mcp_url
+    http_transport = await exit_stack.enter_async_context(sse_client(url=server_url))
+    session = await exit_stack.enter_async_context(ClientSession(*http_transport))
+
+    await session.initialize()
+
+    result = await session.call_tool("get_services")
+    await exit_stack.aclose()
+    # services = result.content[0].text
+    logger.debug(f"Result from get_services mcp tools: f{result}")
+    return Command(
+        update={
+            "messages": [
+                ToolMessage(
+                    content=result,
+                    tool_call_id=tool_call_id,
+                ),
+            ]
+        }
+    )
+
+
+get_operations_docstring = """
+Query available operations for a specific service from the Grafana instance.
+
+    Args:
+        service (str): The name of the service whose operations should be retrieved.
+
+    Returns:
+        List[str]: A list of operation names associated with the specified service.
+"""
+
+
+@tool(description=get_operations_docstring)
+async def get_operations(
+    service: str,
+    tool_call_id: Annotated[str, InjectedToolCallId],
+) -> Command:
+
+    logger.info(f"calling mcp get_operations from langchain get_operations with service {service}")
+    exit_stack = AsyncExitStack()
+    logger.info("Using HTTP, connecting to server.")
+    server_url = langgraph_tool_config.jaeger_mcp_url
+    http_transport = await exit_stack.enter_async_context(sse_client(url=server_url))
+    session = await exit_stack.enter_async_context(ClientSession(*http_transport))
+
+    await session.initialize()
+
+    result = await session.call_tool(
+        "get_operations",
+        arguments={"service": service},
+    )
+    await exit_stack.aclose()
+    # operations = result.content[0].text
+    # if langgraph_tool_config.use_summaries and len(operations) >= langgraph_tool_config.min_len_to_sum:
+    #     logger.info("Using summaries for operations.")
+    #     operations = _summarize_operations(operations)
+    return Command(
+        update={
+            "messages": [
+                ToolMessage(content=result, tool_call_id=tool_call_id),
+            ]
+        }
+    )
+
+
+get_dependency_graph_docstring = """
+    Get service dependency graph from Jaeger's native dependencies API.
+    Args:
+        last_n_minutes (int): The time range (in minutes) to look back from the current time.
+    Returns:
+        str: JSON object representing the dependency graph.
+"""
+
+
+@tool(description=get_dependency_graph_docstring)
+async def get_dependency_graph(
+    last_n_minutes: str,
+    tool_call_id: Annotated[str, InjectedToolCallId],
+) -> Command:
+
+    logger.info(f"calling mcp get_dependency_graph from langchain get_dependency_graph")
+    exit_stack = AsyncExitStack()
+    logger.info("Using HTTP, connecting to server.")
+    server_url = langgraph_tool_config.jaeger_mcp_url
+    http_transport = await exit_stack.enter_async_context(sse_client(url=server_url))
+    session = await exit_stack.enter_async_context(ClientSession(*http_transport))
+
+    await session.initialize()
+
+    result = await session.call_tool(
+        "get_dependency_graph",
+        arguments={"last_n_minutes": last_n_minutes},
+    )
+    await exit_stack.aclose()
+    # operations = result.content[0].text
+    # if langgraph_tool_config.use_summaries and len(operations) >= langgraph_tool_config.min_len_to_sum:
+    #     logger.info("Using summaries for operations.")
+    #     operations = _summarize_operations(operations)
+    return Command(
+        update={
+            "messages": [
+                ToolMessage(content=result, tool_call_id=tool_call_id),
+            ]
+        }
+    )
diff --git a/clients/stratus/tools/kubectl_tools.py b/clients/stratus/tools/kubectl_tools.py
new file mode 100644
index 0000000..ca7b658
--- /dev/null
+++ b/clients/stratus/tools/kubectl_tools.py
@@ -0,0 +1,234 @@
+import logging
+from typing import Annotated, Any, Optional
+
+from fastmcp import Client
+from langchain_core.messages import ToolMessage
+from langchain_core.tools import InjectedToolCallId
+from langchain_core.tools.base import ArgsSchema, BaseTool
+from langgraph.types import Command
+from pydantic import BaseModel, Field, PrivateAttr
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger("all.stratus.tools")
+
+
+class ExecKubectlCmdSafelyInput(BaseModel):
+    command: str = Field(
+        description="The command you want to execute in a CLI to manage a k8s cluster. "
+        "It should start with 'kubectl'. Converts natural language to kubectl commands and executes them. "
+        "Can be used to get/describe/edit Kubernetes deployments, services, and other Kubernetes components. "
+        "Only takes one query at a time. Keep queries simple and straight-forward. "
+        "This tool cannot handle complex mutli-step queries. "
+        "Remember that most kubectl queries require a namespace name. "
+    )
+    tool_call_id: Annotated[str, InjectedToolCallId]
+
+
+class ExecKubectlCmdSafely(BaseTool):
+    name: str = "exec_kubectl_cmd_safely"
+    description: str = "this is a tool used to safely execute kubectl commands."
+    args_schema: Optional[ArgsSchema] = ExecKubectlCmdSafelyInput
+
+    _client: Client = PrivateAttr()
+
+    def __init__(self, client: Client, **kwargs: Any):
+        super().__init__(**kwargs)
+        self._client = client
+
+    def _run(self):
+        assert False, f"{self.name} is an async method, you are running it as a sync method!"
+        pass
+
+    async def _arun(
+        self,
+        command: str,
+        tool_call_id: Annotated[str, InjectedToolCallId],
+    ) -> Command:
+        logger.debug(f"tool_call_id in {self.name}: {tool_call_id}")
+        logger.debug(
+            f"calling mcp exec_kubectl_cmd_safely from " f'langchain exec_kubectl_cmd_safely, with command: "{command}"'
+        )
+        async with self._client:
+            result = await self._client.call_tool("exec_kubectl_cmd_safely", arguments={"cmd": command})
+        text_result = "\n".join([part.text for part in result])
+        return Command(
+            update={
+                "messages": [
+                    ToolMessage(content=text_result, tool_call_id=tool_call_id),
+                ]
+            }
+        )
+
+
+kubectl_read_only_cmds = [
+    "kubectl api-resources",
+    "kubectl api-version",
+    # read only if not interactive (interactive commands are prohibited)
+    "kubectl attach",
+    "kubectl auth can-i",
+    "kubectl cluster-info",
+    "kubectl describe",
+    "kubectl diff",
+    "kubectl events",
+    "kubectl explain",
+    "kubectl get",
+    "kubectl logs",
+    "kubectl options",
+    "kubectl top",
+    "kubectl version",
+    "kubectl config view",
+    "kubectl config current-context",
+    "kubectl config get",
+]
+
+
+class ExecReadOnlyKubectlCmdInput(BaseModel):
+    command: str = Field(
+        description=f"The read-only kubectl command you want to execute in a CLI "
+        'to manage a k8s cluster. It should start with "kubectl". '
+        f"Available Read-only Commands: {kubectl_read_only_cmds}"
+    )
+    tool_call_id: Annotated[str, InjectedToolCallId]
+
+
+class ExecReadOnlyKubectlCmd(BaseTool):
+    name: str = "exec_read_only_kubectl_cmd"
+    description: str = "this is a tool used to execute read-only kubectl commands."
+    args_schema: Optional[ArgsSchema] = ExecReadOnlyKubectlCmdInput
+
+    _client: Client = PrivateAttr()
+
+    def __init__(self, client: Client, **kwargs: Any):
+        super().__init__(**kwargs)
+        self._client = client
+
+    def _run(self):
+        assert False, f"{self.name} is an async method, you are running it as a sync method!"
+        pass
+
+    async def _arun(
+        self,
+        command: str,
+        tool_call_id: Annotated[str, InjectedToolCallId],
+    ) -> Command:
+        logger.debug(f"tool_call_id in {self.name}: {tool_call_id}")
+        is_read_only = False
+        for c in kubectl_read_only_cmds:
+            if command.startswith(c):
+                is_read_only = True
+                break
+        if not is_read_only:
+            logger.debug(
+                f"Agent is trying to exec a non read-only command {command} " f"with tool exec_read_only_kubectl_cmd"
+            )
+            text_result = (
+                f"Your command {command} is not a read-only kubectl command. "
+                f"Available Read-only Commands: {kubectl_read_only_cmds}."
+            )
+        elif command.startswith("kubectl logs -f"):
+            logger.debug(f"agent calling interactive read-only command")
+            text_result = (
+                f"Your command {command} is an _interactive_ read-only kubectl command. " f"It is not supported!"
+            )
+        else:
+            logger.debug(
+                f"calling mcp exec_kubectl_cmd_safely from "
+                f'langchain exec_read_only_kubectl_cmd, with command: "{command}"'
+            )
+            async with self._client:
+                result = await self._client.call_tool("exec_kubectl_cmd_safely", arguments={"cmd": command})
+            text_result = "\n".join([part.text for part in result])
+        return Command(
+            update={
+                "messages": [
+                    ToolMessage(content=text_result, tool_call_id=tool_call_id),
+                ]
+            }
+        )
+
+
+class RollbackCommandCmdInput(BaseModel):
+    tool_call_id: Annotated[str, InjectedToolCallId]
+
+
+class RollbackCommand(BaseTool):
+    name: str = "rollback_command"
+    description: str = (
+        "Use this function to roll back the last kubectl command "
+        'you successfully executed with the "exec_kubectl_cmd_safely" tool.'
+    )
+    args_schema: Optional[ArgsSchema] = RollbackCommandCmdInput
+
+    _client: Client = PrivateAttr()
+
+    def __init__(self, client: Client, **kwargs: Any):
+        super().__init__(**kwargs)
+        self._client = client
+
+    def _run(self):
+        assert False, f"{self.name} is an async method, you are running it as a sync method!"
+        pass
+
+    async def _arun(
+        self,
+        tool_call_id: Annotated[str, InjectedToolCallId],
+    ) -> Command:
+        logger.debug(f"tool_call_id in {self.name}: {tool_call_id}")
+        logger.debug(f"calling langchain rollback_command")
+        async with self._client:
+            result = await self._client.call_tool("rollback_command")
+        text_result = "\n".join([part.text for part in result])
+        return Command(
+            update={
+                "rollback_stack": str(text_result),
+                "messages": [
+                    ToolMessage(content=text_result, tool_call_id=tool_call_id),
+                ],
+            }
+        )
+
+
+class GetPreviousRollbackableCmdInput(BaseModel):
+    tool_call_id: Annotated[str, InjectedToolCallId]
+
+
+class GetPreviousRollbackableCmd(BaseTool):
+    name: str = "get_previous_rollbackable_cmd"
+    description: str = (
+        "Use this function to get a list of commands you "
+        "previously executed that could be roll-backed. "
+        'When you call "rollback_command" tool multiple times, '
+        "you will roll-back previous commands in the order "
+        "of the returned list."
+    )
+    args_schema: Optional[ArgsSchema] = GetPreviousRollbackableCmdInput
+
+    _client: Client = PrivateAttr()
+
+    def __init__(self, client: Client, **kwargs: Any):
+        super().__init__(**kwargs)
+        self._client = client
+
+    def _run(self):
+        assert False, f"{self.name} is an async method, you are running it as a sync method!"
+        pass
+
+    async def _arun(
+        self,
+        tool_call_id: Annotated[str, InjectedToolCallId],
+    ) -> Command:
+        logger.debug(f"tool_call_id in {self.name}: {tool_call_id}")
+        logger.debug(f"calling langchain get_previous_rollbackable_cmd")
+        async with self._client:
+            result = await self._client.call_tool("get_previous_rollbackable_cmd")
+        if len(result) == 0:
+            text_result = "There is no previous rollbackable command."
+        else:
+            text_result = "\n".join([part.text for part in result])
+        return Command(
+            update={
+                "messages": [
+                    ToolMessage(content=text_result, tool_call_id=tool_call_id),
+                ]
+            }
+        )
diff --git a/clients/stratus/tools/localization.py b/clients/stratus/tools/localization.py
new file mode 100644
index 0000000..dc4dc67
--- /dev/null
+++ b/clients/stratus/tools/localization.py
@@ -0,0 +1,59 @@
+import asyncio
+import subprocess
+from contextlib import AsyncExitStack
+from typing import Annotated
+
+from langchain_core.messages import ToolMessage
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.types import Command
+from mcp import ClientSession
+from mcp.client.sse import sse_client
+
+from clients.stratus.configs.langgraph_tool_configs import LanggraphToolConfig
+
+langgraph_tool_config = LanggraphToolConfig()
+
+localization_tool_docstring = """
+Use this tool to retrieve the UID of a specified resource.
+
+    Args:
+        resource_type (str): The type of the resource (e.g., 'pod', 'service', 'deployment').
+        resource_name (str): The name of the resource.
+        namespace (str): The namespace of the resource.
+    Returns:
+        str: The UID of the specified resource.
+"""
+
+
+@tool(description=localization_tool_docstring)
+async def get_resource_uid(
+    resource_type: str,
+    resource_name: str,
+    namespace: str,
+    tool_call_id: Annotated[str, InjectedToolCallId],
+) -> Command:
+    exit_stack = AsyncExitStack()
+    server_url = langgraph_tool_config.submit_mcp_url
+    http_transport = await exit_stack.enter_async_context(sse_client(url=server_url))
+    session = await exit_stack.enter_async_context(ClientSession(*http_transport))
+    await session.initialize()
+    result = await session.call_tool(
+        "localization",
+        arguments={
+            "resource_type": resource_type,
+            "resource_name": resource_name,
+            "namespace": namespace,
+        },
+    )
+    await exit_stack.aclose()
+    uid = result.content[0].text
+    return Command(
+        update={
+            "messages": [
+                ToolMessage(
+                    content=uid,
+                    tool_call_id=tool_call_id,
+                ),
+            ]
+        }
+    )
diff --git a/clients/stratus/tools/prometheus_tools.py b/clients/stratus/tools/prometheus_tools.py
new file mode 100644
index 0000000..3c6a7d7
--- /dev/null
+++ b/clients/stratus/tools/prometheus_tools.py
@@ -0,0 +1,127 @@
+import logging
+from contextlib import AsyncExitStack
+from typing import Annotated
+
+from langchain_core.messages import HumanMessage, SystemMessage, ToolMessage
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.types import Command
+from mcp import ClientSession
+from mcp.client.sse import sse_client
+
+from clients.stratus.configs.langgraph_tool_configs import LanggraphToolConfig
+from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+from clients.stratus.stratus_utils.truncate_by_token import truncate_to_tokens
+from clients.stratus.tools.text_editing.flake8_utils import flake8, format_flake8_output  # type: ignore
+from clients.stratus.tools.text_editing.windowed_file import (  # type: ignore
+    FileNotOpened,
+    TextNotFound,
+    WindowedFile,
+)
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+langgraph_tool_config = LanggraphToolConfig()
+
+get_metrics_docstring = """
+Query real-time metrics data from the Prometheus instance.
+
+    Args:
+        query (str): A Prometheus Query Language (PromQL) expression used to fetch metric values.
+
+    Returns:
+        dict: The raw Prometheus response containing metric results, including timestamps, values, and labels.
+"""
+
+
+@tool(description=get_metrics_docstring)
+async def get_metrics(
+    query: str,
+    tool_call_id: Annotated[str, InjectedToolCallId],
+) -> Command:
+
+    logger.info(f"get_metrics called with query: {query}")
+    logger.info("Calling MCP get_metrics from langchain get_metrics")
+    exit_stack = AsyncExitStack()
+    logger.info("Using HTTP, connecting to server.")
+    # server_url = "http://127.0.0.1:9953/sse"
+    server_url = langgraph_tool_config.prometheus_mcp_url
+    # Register both the SSE client and session with an async exit stack so they will automatically clean up when
+    # you're done (e.g. close connections properly
+
+    # opens the actual communication channel to the MCP server
+    # Connect to the SSE stream
+    # Wrap that connection in a ClientSession so you can call MCP tools
+    # Automatically clean up everything when the async block finishes
+    http_transport = await exit_stack.enter_async_context(sse_client(url=server_url))
+    session = await exit_stack.enter_async_context(ClientSession(*http_transport))
+
+    await session.initialize()
+
+    result = await session.call_tool(
+        "get_metrics",
+        arguments={
+            "query": query,
+        },
+    )
+    result = result.content[0].text
+    logger.info(f"Result: {result}")
+    # metrics = result.content[0].text
+    logger.info(f"Metrics received: {result}")
+    await exit_stack.aclose()
+
+    # if langgraph_tool_config.use_summaries and len(metrics) >= langgraph_tool_config.min_len_to_sum:
+    #     metrics = _summarize_metrics(result)
+    #     # logger.info(f"Summary: {metrics}")
+    result = truncate_to_tokens(result)
+
+    return Command(
+        update={
+            "messages": [
+                ToolMessage(content=str(result), tool_call_id=tool_call_id),
+            ]
+        }
+    )
+
+
+def _summarize_metrics(metrics):
+    logger.info("=== _summarize_metrics called ===")
+
+    system_prompt = """
+You are an expert Site Reliability Engineering tool. You are given raw microservice metrics as JSON dictionaries.
+
+Your task:
+
+1. Parse the raw metrics to identify potential root causes for incidents.
+2. Summarize the metrics succinctly.
+3. Provide raw metrics data as strings (do not explain them generically).
+4. Use the following output format STRICTLY:
+
+SERVICE NAME: <insert service name from metric>
+SUMMARY:
+<summary of metrics, possible root cause, and raw metrics as string>
+
+Example:
+
+SERVICE NAME: auth-service
+SUMMARY:
+High CPU usage detected (90%+), memory usage stable. Possible cause: infinite loop in request handler.
+
+Raw metrics:
+{"cpu_usage": "95", "memory_usage": "512MB"}
+
+If you do not have enough data to determine root cause, state 'Insufficient data to determine root cause' and provide raw metrics.
+"""
+
+    # logger.info(f"raw metrics received: {metrics}")
+    llm = get_llm_backend_for_tools()
+    # then use this `llm` for inference
+    messages = [
+        SystemMessage(content=system_prompt),
+        HumanMessage(content=metrics.content[0].text),
+    ]
+
+    metrics_summary = llm.inference(messages=messages)
+    # metrics_summary = llm.inference(messages=metrics.content[0].text, system_prompt=system_prompt)
+    logger.info(f"Metrics summary: {metrics_summary}")
+    return metrics_summary
diff --git a/clients/stratus/tools/stateful_async_tool_node.py b/clients/stratus/tools/stateful_async_tool_node.py
new file mode 100644
index 0000000..49277f7
--- /dev/null
+++ b/clients/stratus/tools/stateful_async_tool_node.py
@@ -0,0 +1,36 @@
+import asyncio
+import logging
+
+from langchain_core.tools import BaseTool
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+
+class StatefulAsyncToolNode:
+    """A node that runs the stateful remote mcp tools requested in the last AIMessage."""
+
+    def __init__(self, node_tools: list[BaseTool]) -> None:
+        self.tools_by_name = {t.name: t for t in node_tools}
+
+    async def __call__(self, inputs: dict):
+        if messages := inputs.get("messages", []):
+            message = messages[-1]
+        else:
+            raise ValueError("No message found in input")
+        logger.info(f"StatefulAsyncToolNode: {message}")
+        outputs = []
+        for tool_call in message.tool_calls:
+            logger.info(f"invoking tool: {tool_call['name']}, tool_call: {tool_call}")
+            tool_result = await self.tools_by_name[tool_call["name"]].ainvoke(
+                {
+                    "type": "tool_call",
+                    "name": tool_call["name"],
+                    "args": {"state": inputs, **tool_call["args"]},
+                    "id": tool_call["id"],
+                }
+            )
+            logger.info(f"tool_result: {tool_result}")
+            outputs += tool_result.update["messages"]
+
+        return {"messages": outputs}
diff --git a/clients/stratus/tools/stratus_tool_node.py b/clients/stratus/tools/stratus_tool_node.py
new file mode 100644
index 0000000..f4b7467
--- /dev/null
+++ b/clients/stratus/tools/stratus_tool_node.py
@@ -0,0 +1,127 @@
+import asyncio
+import logging
+
+from langchain_core.messages import AIMessage, ToolMessage
+from langchain_core.tools import BaseTool
+from langgraph.types import Command
+from pydantic_core import ValidationError
+
+logger = logging.getLogger("all.stratus.tool_node")
+logger.propagate = True
+logger.setLevel(logging.DEBUG)
+
+
+def reschedule_tool_calls(tool_calls):
+    # reschedule the order of tool_calls
+    rescheduled_tool_calls = []
+    submit_tool_call = []
+    wait_tool_call = []
+    for tool_call in tool_calls:
+        if tool_call["name"] == "submit_tool":
+            submit_tool_call.append(tool_call)
+        elif tool_call["name"] == "wait_tool":
+            wait_tool_call.append(tool_call)
+        else:
+            rescheduled_tool_calls.append(tool_call)
+    # submit_tool call is scheduled the first;
+    # wait_tool call is scheduled the last.
+    rescheduled_tool_calls = submit_tool_call + rescheduled_tool_calls + wait_tool_call
+    return rescheduled_tool_calls
+
+
+class StratusToolNode:
+    """A node that runs the tools requested in the last AIMessage."""
+
+    def __init__(self, sync_tools: list[BaseTool], async_tools: list[BaseTool]) -> None:
+        self.sync_tools_by_name = {t.name: t for t in sync_tools} if sync_tools is not None else None
+        self.async_tools_by_name = {t.name: t for t in async_tools} if async_tools is not None else None
+
+    async def __call__(self, inputs: dict):
+        if messages := inputs.get("messages", []):
+            message = messages[-1]
+        else:
+            raise ValueError("No message found in input")
+
+        if not isinstance(message, AIMessage):
+            logger.warning(
+                f"Expected last message to be an AIMessage, but got {type(message)}.\n" f"{inputs.get('messages', [])}"
+            )
+            raise ValueError("Last message is not an AIMessage; skipping tool invocation.")
+
+        arena_logger = logging.getLogger("sregym-global")
+        if message.content != "":
+            arena_logger.info(f"[LLM] {message.content}")
+            # logger.info(f"{message.content}")
+
+        if not getattr(message, "tool_calls", None):
+            logger.warning("AIMessage does not contain tool_calls.")
+            return {"messages": []}
+
+        if len(message.tool_calls) > 1:
+            logger.warning("more than 1 tool call found. Calling in order", extra={"Tool Calls": message.tool_calls})
+            logger.warning("technically, only one tool call allowed")
+
+        to_update = dict()
+        new_messages = []
+        for i, tool_call in enumerate(message.tool_calls):
+            try:
+                # logger.info(f"[STRATUS_TOOLNODE] invoking tool: {tool_call['name']}, tool_call: {tool_call}")
+                arg_list = [f"{key} = {value}" for key, value in tool_call["args"].items()]
+                arena_logger.info(f"[LLM] Agent choose to call: {tool_call['name']}({', '.join(arg_list)})")
+                logger.info(f"[STRATUS_TOOLNODE] Agent choose to call: {tool_call['name']}({', '.join(arg_list)})")
+                if tool_call["name"] in self.async_tools_by_name:
+                    tool_result = await self.async_tools_by_name[tool_call["name"]].ainvoke(
+                        {
+                            "type": "tool_call",
+                            "name": tool_call["name"],
+                            "args": {"state": inputs, **tool_call["args"]},
+                            "id": tool_call["id"],
+                        }
+                    )
+                elif tool_call["name"] in self.sync_tools_by_name:
+                    tool_result = self.sync_tools_by_name[tool_call["name"]].invoke(
+                        {
+                            "type": "tool_call",
+                            "name": tool_call["name"],
+                            "args": {"state": inputs, **tool_call["args"]},
+                            "id": tool_call["id"],
+                        }
+                    )
+                else:
+                    logger.info(f"agent tries to call tool that DNE: {tool_call['name']}")
+                    Command(
+                        update={
+                            "messages": [
+                                ToolMessage(
+                                    content=f"Tool {tool_call['name']} does not exist!",
+                                    tool_call_id=tool_call["id"],
+                                )
+                            ]
+                        }
+                    )
+
+                assert isinstance(
+                    tool_result, Command
+                ), f"Tool {tool_call['name']} should return a Command object, but return {type(tool_result)}"
+                logger.debug(f"[STRATUS_TOOLNODE] tool_result: {tool_result}")
+                if tool_result.update["messages"]:
+                    combined_content = "\n".join([message.content for message in tool_result.update["messages"]])
+                    arena_logger.info(f"[ENV] Tool {tool_call['name']} returned: \n {combined_content}")
+                new_messages += tool_result.update["messages"]
+                to_update = {
+                    **to_update,
+                    **tool_result.update,  # this is the key part
+                }
+            except ValidationError as e:
+                logger.error(f"tool_call: {tool_call}\nError: {e}")
+                arena_logger.error(f"[ENV] Tool Call {tool_call['name']} failed: \n {e}")
+                new_messages += [
+                    ToolMessage(
+                        content=f"Error: {e}; This happens usually because you are "
+                        f"passing inappropriate arguments to the tool.",
+                        tool_call_id=tool_call["id"],
+                    )
+                ]
+
+        to_update["messages"] = new_messages
+        return to_update
diff --git a/clients/stratus/tools/submit_tool.py b/clients/stratus/tools/submit_tool.py
new file mode 100644
index 0000000..9d27480
--- /dev/null
+++ b/clients/stratus/tools/submit_tool.py
@@ -0,0 +1,127 @@
+import ast
+import logging
+from contextlib import AsyncExitStack
+from typing import Annotated
+
+from langchain_core.messages import ToolMessage
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.prebuilt import InjectedState
+from langgraph.types import Command
+from mcp import ClientSession
+from mcp.client.sse import sse_client
+
+from clients.stratus.configs.langgraph_tool_configs import LanggraphToolConfig
+from clients.stratus.stratus_agent.state import State
+
+submit_tool_docstring = """
+Use this tool to submit your answer to the assigned tasks. You can give partial answer or empty answer
+    (still of type dict) if you can not solve all of them.
+
+    Args:
+        ans (string): the answer you would like to submit
+"""
+
+rollback_submit_tool_docstring = """
+The tool to submit after you rolled back all the changes.
+"""
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+langgraph_tool_config = LanggraphToolConfig()
+
+
+@tool(description=submit_tool_docstring)
+async def submit_tool(
+    ans: str, state: Annotated[State, InjectedState], tool_call_id: Annotated[str, InjectedToolCallId]
+) -> Command:
+    # makes http call to benchmark submission server
+    logging.info(f"submitting to benchmark, answer: {ans}")
+
+    exit_stack = AsyncExitStack()
+    logger.info("Using HTTP, connecting to server.")
+    server_url = langgraph_tool_config.submit_mcp_url
+    http_transport = await exit_stack.enter_async_context(sse_client(url=server_url))
+    session = await exit_stack.enter_async_context(ClientSession(*http_transport))
+
+    await session.initialize()
+
+    result = await session.call_tool(
+        "submit",
+        arguments={
+            "ans": ans,
+        },
+    )
+    result = result.content[0].text
+    result = ast.literal_eval(result)
+
+    await exit_stack.aclose()
+    if result["status"] != "200":
+        logger.info(f"HTTP submission failed: {result}")
+        logger.info("we don't set submitted to True, to force agent retry submission. \n")
+        logger.info("giving agent another change by decrementing step count")
+        return Command(
+            update={
+                "num_steps": state["num_steps"] - 1,
+                "messages": [
+                    ToolMessage(content=f"HTTP submission failed: {result}", tool_call_id=tool_call_id),
+                ],
+            }
+        )
+    logger.info("submission succeeded.")
+    return Command(
+        update={
+            "submitted": True,
+            "messages": [ToolMessage(f"Submission complete. No further action is needed.", tool_call_id=tool_call_id)],
+        }
+    )
+
+
+@tool("f_submit_tool", description=submit_tool_docstring)
+async def fake_submit_tool(ans: str, tool_call_id: Annotated[str, InjectedToolCallId]) -> Command:
+    # makes http call to benchmark submission server
+    logging.info(f"_NOT_ submitting to benchmark, answer: {ans}")
+    logger.info(f"This method is to only change the state[submitted] value.")
+    logger.info(f"mitigation submission is done out side of agent logic, for retry")
+
+    return Command(
+        update={
+            "submitted": True,
+            "messages": [ToolMessage(f"Submission complete. No further action is needed.", tool_call_id=tool_call_id)],
+        }
+    )
+
+
+@tool("r_submit_tool", description=rollback_submit_tool_docstring)
+async def rollback_submit_tool(tool_call_id: Annotated[str, InjectedToolCallId]) -> Command:
+    logger.info("rollback agent submits")
+    logger.info(f"This method is to only change the state[submitted] value.")
+
+    return Command(
+        update={
+            "submitted": True,
+            "messages": [ToolMessage(f"Submission complete. No further action is needed.", tool_call_id=tool_call_id)],
+        }
+    )
+
+
+async def manual_submit_tool(ans: str) -> str:
+    # makes http call to benchmark submission server
+    logging.info(f"_manually_ submitting to benchmark, answer: {ans}")
+
+    exit_stack = AsyncExitStack()
+    logger.info("Using HTTP, connecting to server.")
+    server_url = langgraph_tool_config.submit_mcp_url
+    http_transport = await exit_stack.enter_async_context(sse_client(url=server_url))
+    session = await exit_stack.enter_async_context(ClientSession(*http_transport))
+
+    await session.initialize()
+
+    result = await session.call_tool(
+        "submit",
+        arguments={
+            "ans": ans,
+        },
+    )
+    await exit_stack.aclose()
+    logger.info("Submission complete. No further action is needed.")
+    return "Submitted"
diff --git a/clients/stratus/tools/text_editing/__init__.py b/clients/stratus/tools/text_editing/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/stratus/tools/text_editing/edit.py b/clients/stratus/tools/text_editing/edit.py
new file mode 100644
index 0000000..700a17d
--- /dev/null
+++ b/clients/stratus/tools/text_editing/edit.py
@@ -0,0 +1,208 @@
+#!/usr/bin/env python3
+
+import argparse
+from typing import Annotated
+
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.prebuilt import InjectedState
+from langgraph.types import Command
+
+from clients.stratus.tools.text_editing.file_manip import update_file_vars_in_state
+
+try:
+    from sweagent import TOOLS_DIR
+except ImportError:
+    pass
+else:
+    import sys
+
+    default_lib = TOOLS_DIR / "defaults" / "lib"
+    assert default_lib.is_dir()
+    sys.path.append(str(default_lib))
+    sys.path.append(str(TOOLS_DIR / "registry" / "lib"))
+
+from flake8_utils import flake8, format_flake8_output  # type: ignore
+from windowed_file import FileNotOpened, TextNotFound, WindowedFile  # type: ignore
+
+RETRY_WITH_OUTPUT_TOKEN = "###SWE-AGENT-RETRY-WITH-OUTPUT###"
+
+_NOT_FOUND = """Your edit was not applied (file not modified): Text {search!r} not found in displayed lines (or anywhere in the file).
+Please modify your search string. Did you forget to properly handle whitespace/indentation?
+You can also call `open` again to re-display the file with the correct context.
+"""
+
+_NOT_FOUND_IN_WINDOW_MSG = """Your edit was not applied (file not modified): Text {search!r} not found in displayed lines.
+
+However, we found the following occurrences of your search string in the file:
+
+{occurrences}
+
+You can use the `goto` command to navigate to these locations before running the edit command again.
+"""
+
+_MULTIPLE_OCCURRENCES_MSG = """Your edit was not applied (file not modified): Found more than one occurrence of {search!r} in the currently displayed lines.
+Please make your search string more specific (for example, by including more lines of context).
+"""
+
+_NO_CHANGES_MADE_MSG = """Your search and replace strings are the same. No changes were made. Please modify your search or replace strings."""
+
+_SINGLE_EDIT_SUCCESS_MSG = """Text replaced. Please review the changes and make sure they are correct:
+
+1. The edited file is correctly indented
+2. The edited file does not contain duplicate lines
+3. The edit does not break existing functionality
+
+Edit the file again if necessary."""
+
+_MULTIPLE_EDITS_SUCCESS_MSG = """Replaced {n_replacements} occurrences. Please review the changes and make sure they are correct:
+
+1. The edited file is correctly indented
+2. The edited file does not contain duplicate lines
+3. The edit does not break existing functionality
+
+Edit the file again if necessary."""
+
+_LINT_ERROR_TEMPLATE = """Your proposed edit has introduced new syntax error(s). Please read this error message carefully and then retry editing the file.
+
+ERRORS:
+
+{errors}
+
+This is how your edit would have looked if applied
+------------------------------------------------
+{window_applied}
+------------------------------------------------
+
+This is the original code before your edit
+------------------------------------------------
+{window_original}
+------------------------------------------------
+
+Your changes have NOT been applied. Please fix your edit command and try again.
+DO NOT re-run the same failed edit command. Running it again will lead to the same error.
+"""
+
+
+def get_parser() -> argparse.ArgumentParser:
+    parser = argparse.ArgumentParser()
+    parser.add_argument("search", type=str)
+    parser.add_argument("replace", type=str)
+    parser.add_argument("replace_all", type=bool, nargs="?", default=False)
+    return parser
+
+
+@tool("edit")
+def edit(
+    state: Annotated[dict, InjectedState] = None,
+    tool_call_id: Annotated[str, InjectedToolCallId] = "",
+    search: str = "",
+    replace: str = "",
+    replace_all: bool = "",
+) -> Command:
+    """
+    Replace first occurrence of <search> with <replace> in the currently displayed lines.
+    If replace-all is True , replace all occurrences of <search> with <replace>.
+
+    For example, if you are looking at this file:
+
+    def fct():
+        print("Hello world")
+
+    and you want to edit the file to read:
+
+    def fct():
+        print("Hello")
+        print("world")
+
+    you can search for `Hello world` and replace with `"Hello"\n    print("world")`
+    (note the extra spaces before the print statement!).
+
+    Tips:
+
+    1. Always include proper whitespace/indentation
+    2. When you are adding an if/with/try statement, you need to INDENT the block that follows, so make sure to include it in both your search and replace strings!
+    3. If you are wrapping code in a try statement, make sure to also add an 'except' or 'finally' block.
+
+    Before every edit, please
+
+    1. Explain the code you want to edit and why it is causing the problem
+    2. Explain the edit you want to make and how it fixes the problem
+    3. Explain how the edit does not break existing functionality
+    """
+    if not isinstance(state["curr_file"], str):
+        logger.error("INTERNAL: state curr file should be a string")
+        exit(1)
+    if len(state["curr_file"]) == 0:
+        msg_txt = "No file opened. Either `open` or `create` a file first."
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+    wf = WindowedFile(path=state["curr_file"])
+
+    # Turn \\n into \n etc., i.e., undo the escaping
+    # args.replace = args.replace.encode("utf8").decode("unicode_escape")
+
+    if search == replace:
+        msg_txt = _NO_CHANGES_MADE_MSG + "\n" + RETRY_WITH_OUTPUT_TOKEN
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+    pre_edit_lint = flake8(wf.path)
+
+    try:
+        if not replace_all:
+            window_text = wf.get_window_text()
+            if window_text.count(search) > 1:
+                msg_txt = _MULTIPLE_OCCURRENCES_MSG.format(search=search) + "\n" + RETRY_WITH_OUTPUT_TOKEN
+                return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+            replacement_info = wf.replace_in_window(search, replace)
+            # todo: Should warn if more than one occurrence was found?
+        else:
+            # todo: Give overview of all replaced occurrences/number of replacements
+            replacement_info = wf.replace(search, replace)
+    except TextNotFound:
+        line_no_founds = wf.find_all_occurrences(search, zero_based=False)
+        if line_no_founds:
+            msg_txt = _NOT_FOUND_IN_WINDOW_MSG.format(
+                search=search, occurrences="\n".join([f"- line {line_no}" for line_no in line_no_founds])
+            )
+        else:
+            msg_txt = _NOT_FOUND.format(search=search)
+        msg_txt = msg_txt + "\n" + RETRY_WITH_OUTPUT_TOKEN
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+    post_edit_lint = flake8(wf.path)
+
+    if not replace_all:
+        # Try to filter out pre-existing errors
+        replacement_window = (
+            replacement_info.first_replaced_line,
+            replacement_info.first_replaced_line + replacement_info.n_search_lines - 1,
+        )
+        new_flake8_output = format_flake8_output(
+            post_edit_lint,
+            previous_errors_string=pre_edit_lint,
+            replacement_window=replacement_window,
+            replacement_n_lines=replacement_info.n_replace_lines,
+        )
+    else:
+        # Cannot easily compare the error strings, because line number changes are hard to keep track of
+        # So we show all linter errors.
+        new_flake8_output = format_flake8_output(post_edit_lint)
+
+    if new_flake8_output:
+        with_edits = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+        wf.undo_edit()
+        without_edits = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+        msg_txt = _LINT_ERROR_TEMPLATE.format(
+            errors=new_flake8_output,
+            window_applied=with_edits,
+            window_original=without_edits,
+        )
+        msg_txt = msg_txt + "\n" + RETRY_WITH_OUTPUT_TOKEN
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+    if not replace_all:
+        msg_txt = _SINGLE_EDIT_SUCCESS_MSG
+    else:
+        msg_txt = _MULTIPLE_EDITS_SUCCESS_MSG.format(n_replacements=replacement_info.n_replacements)
+
+    msg_txt = msg_txt + "\n\n" + wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+    return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
diff --git a/clients/stratus/tools/text_editing/file_manip.py b/clients/stratus/tools/text_editing/file_manip.py
new file mode 100644
index 0000000..60bc28f
--- /dev/null
+++ b/clients/stratus/tools/text_editing/file_manip.py
@@ -0,0 +1,415 @@
+import logging
+import os.path
+from pathlib import Path
+from typing import Annotated, Optional, Union
+
+from langchain_core.messages import AIMessage, HumanMessage, ToolMessage
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.prebuilt import InjectedState
+from langgraph.types import Command
+
+from clients.stratus.stratus_agent.state import State
+from clients.stratus.tools.text_editing.flake8_utils import flake8, format_flake8_output  # type: ignore
+from clients.stratus.tools.text_editing.windowed_file import (  # type: ignore
+    FileNotOpened,
+    TextNotFound,
+    WindowedFile,
+)
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+
+def update_file_vars_in_state(
+    state: State,
+    message: str | ToolMessage | AIMessage | HumanMessage,
+    tool_call_id: Annotated[str, InjectedToolCallId] = "",
+) -> State:
+    logger.info("updating state with message: %s", message)
+    logger.info(f"state: {state}, tool_call_id: {tool_call_id}")
+    new_state = state
+
+    match message:
+        case str():
+            logger.info("Not updating state as message is a string")
+            new_state["messages"] = new_state["messages"] + [ToolMessage(content=message, tool_call_id=tool_call_id)]
+        case ToolMessage():
+            logger.info("Trying to update states with message as ToolMessage")
+            tool_call_msg = ""
+            for i in range(len(new_state["messages"]) - 1, -1, -1):
+                if hasattr(new_state["messages"][i], "tool_calls") and len(new_state["messages"][i].tool_calls) > 0:
+                    tool_call_msg = new_state["messages"][i]
+                    logger.info("Found last tool call message: %s", tool_call_msg)
+                    break
+            tool_name = tool_call_msg.tool_calls[0]["name"]
+            tool_args = tool_call_msg.tool_calls[0]["args"]
+            logger.info("Found tool args: %s", tool_args)
+            if tool_name == "open_file":
+                new_state["curr_file"] = tool_args["path"]
+                new_state["curr_line"] = tool_args["line_number"]
+                new_state["workdir"] = str(Path(tool_args["path"]).parent)
+            elif tool_name == "goto_line":
+                new_state["curr_line"] = tool_args["line_number"]
+            elif tool_name == "create":
+                new_state["curr_file"] = tool_args["path"]
+                new_state["workdir"] = str(Path(tool_args["path"]).parent)
+            elif tool_name == "edit":
+                # Explicitly pointing out as this tool does not modify agent state
+                pass
+            elif tool_name == "insert":
+                # Explicitly pointing out as this tool does not modify agent state
+                pass
+
+            new_state["messages"] = new_state["messages"] + [message]
+        case _:
+            logger.info("Not found open_file or goto_line in message: %s", message)
+            logger.info("Not updating state")
+    logger.info("Updated state: %s", new_state)
+    return new_state
+
+
+@tool("open_file", description="open a file, path: <absolute path to file>, line_number: <line_number>")
+def open_file(
+    state: Annotated[dict, InjectedState] = None,
+    tool_call_id: Annotated[str, InjectedToolCallId] = "",
+    path: Optional[str] = None,
+    line_number: Optional[str] = None,
+) -> Command:
+    logger.info("in open_file, the last msg: %s", state["messages"][-1])
+    if path is None:
+        msg_txt = 'Usage: open "<file>" [<line_number>]'
+        return Command(
+            update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+        )
+
+    if not os.path.exists(path):
+        msg_txt = f"Error: File '{path}' does not exist."
+        return Command(
+            update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+        )
+
+    wf = WindowedFile(path=Path(path), exit_on_exception=False)
+
+    if line_number is not None:
+        try:
+            line_num = int(line_number)
+        except ValueError:
+            msg_txt = 'Usage: open "<file>" [<line_number>]' + "Error: <line_number> must be a number"
+            return Command(
+                update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+            )
+        if line_num > wf.n_lines:
+            msg_txt = (
+                f"Warning: <line_number> ({line_num}) is greater than the number of lines in the file ({wf.n_lines})"
+                + f"Warning: Setting <line_number> to {wf.n_lines}"
+            )
+            line_num = wf.n_lines
+            return Command(
+                update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+            )
+        elif line_num < 1:
+            msg_txt = f"Warning: <line_number> ({line_num}) is less than 1" + "Warning: Setting <line_number> to 1"
+            line_num = 1
+            return Command(
+                update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+            )
+    else:
+        # Default to middle of window if no line number provided
+        line_num = wf.first_line
+
+    wf.goto(line_num - 1, mode="top")
+    msg_txt = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+    return Command(
+        update=update_file_vars_in_state(
+            state,
+            ToolMessage(content=msg_txt, tool_call_id=tool_call_id),
+        ),
+    )
+
+
+@tool("goto_line", description="goto a line in an opened file, line_number: <line_number>")
+def goto_line(
+    state: Annotated[dict, InjectedState],
+    tool_call_id: Annotated[str, InjectedToolCallId],
+    line_number: Optional[int] = None,
+) -> Command:
+    if state["curr_file"] == "":
+        msg_txt = "Error: No file is open, use open_file to open a file first"
+        return Command(
+            update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+        )
+
+    if line_number is None:
+        msg_txt = "Usage: goto <line_number>"
+        return Command(
+            update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+        )
+
+    try:
+        line_number = int(line_number)
+    except ValueError:
+        msg_txt = "Usage: goto <line>\n" + "Error: <line> must be a number"
+        return Command(
+            update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+        )
+
+    curr_file = str(state["curr_file"])
+    wf = WindowedFile(curr_file)
+
+    if line_number > wf.n_lines:
+        msg_txt = f"Error: <line> must be less than or equal to {wf.n_lines}"
+        return Command(
+            update=update_file_vars_in_state(state, msg_txt, tool_call_id),
+        )
+
+    # Convert from 1-based line numbers (user input) to 0-based (internal representation)
+    wf.goto(line_number - 1, mode="top")
+    wf.print_window()
+    msg_txt = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+    return Command(
+        update=update_file_vars_in_state(
+            state,
+            ToolMessage(content=msg_txt, tool_call_id=tool_call_id),
+        )
+    )
+
+
+@tool("create", description="Create a new file. path: <path to new file>")
+def create(state: Annotated[dict, InjectedState], tool_call_id: Annotated[str, InjectedToolCallId], path: str):
+    path = Path(path)
+    if path.exists():
+        msg_txt = f"Warning: File '{path}' already exists."
+        return Command(
+            update=update_file_vars_in_state(
+                state,
+                ToolMessage(content=msg_txt, tool_call_id=tool_call_id),
+            )
+        )
+
+    path.write_text("\n")
+
+    wf = WindowedFile(path=path)
+    wf.first_line = 0
+    wf.print_window()
+    msg_txt = "File created successfully."
+    return Command(
+        update=update_file_vars_in_state(
+            state,
+            ToolMessage(content=msg_txt, tool_call_id=tool_call_id),
+        )
+    )
+
+
+_NOT_FOUND = """Your edit was not applied (file not modified): Text {search!r} not found in displayed lines (or anywhere in the file).
+Please modify your search string. Did you forget to properly handle whitespace/indentation?
+You can also call `open` again to re-display the file with the correct context.
+"""
+
+_NOT_FOUND_IN_WINDOW_MSG = """Your edit was not applied (file not modified): Text {search!r} not found in displayed lines.
+
+However, we found the following occurrences of your search string in the file:
+
+{occurrences}
+
+You can use the `goto` command to navigate to these locations before running the edit command again.
+"""
+
+_MULTIPLE_OCCURRENCES_MSG = """Your edit was not applied (file not modified): Found more than one occurrence of {search!r} in the currently displayed lines.
+Please make your search string more specific (for example, by including more lines of context).
+"""
+
+_NO_CHANGES_MADE_MSG = """Your search and replace strings are the same. No changes were made. Please modify your search or replace strings."""
+
+_SINGLE_EDIT_SUCCESS_MSG = """Text replaced. Please review the changes and make sure they are correct:
+
+1. The edited file is correctly indented
+2. The edited file does not contain duplicate lines
+3. The edit does not break existing functionality
+
+Edit the file again if necessary."""
+
+_MULTIPLE_EDITS_SUCCESS_MSG = """Replaced {n_replacements} occurrences. Please review the changes and make sure they are correct:
+
+1. The edited file is correctly indented
+2. The edited file does not contain duplicate lines
+3. The edit does not break existing functionality
+
+Edit the file again if necessary."""
+
+_LINT_ERROR_TEMPLATE = """Your proposed edit has introduced new syntax error(s). Please read this error message carefully and then retry editing the file.
+
+ERRORS:
+
+{errors}
+
+This is how your edit would have looked if applied
+------------------------------------------------
+{window_applied}
+------------------------------------------------
+
+This is the original code before your edit
+------------------------------------------------
+{window_original}
+------------------------------------------------
+
+Your changes have NOT been applied. Please fix your edit command and try again.
+DO NOT re-run the same failed edit command. Running it again will lead to the same error.
+"""
+
+
+@tool("edit")
+def edit(
+    state: Annotated[dict, InjectedState] = None,
+    tool_call_id: Annotated[str, InjectedToolCallId] = "",
+    search: str = "",
+    replace: str = "",
+    replace_all: bool = "",
+) -> Command:
+    """
+    Replace first occurrence of <search> with <replace> in the currently displayed lines.
+    If replace-all is True , replace all occurrences of <search> with <replace>.
+
+    For example, if you are looking at this file:
+
+    def fct():
+        print("Hello world")
+
+    and you want to edit the file to read:
+
+    def fct():
+        print("Hello")
+        print("world")
+
+    you can search for `Hello world` and replace with `"Hello"\n    print("world")`
+    (note the extra spaces before the print statement!).
+
+    Tips:
+
+    1. Always include proper whitespace/indentation
+    2. When you are adding an if/with/try statement, you need to INDENT the block that follows, so make sure to include it in both your search and replace strings!
+    3. If you are wrapping code in a try statement, make sure to also add an 'except' or 'finally' block.
+
+    Before every edit, please
+
+    1. Explain the code you want to edit and why it is causing the problem
+    2. Explain the edit you want to make and how it fixes the problem
+    3. Explain how the edit does not break existing functionality
+    """
+    if not isinstance(state["curr_file"], str):
+        logger.error("INTERNAL: state curr file should be a string")
+        exit(1)
+    if len(state["curr_file"]) == 0:
+        msg_txt = "No file opened. Either `open` or `create` a file first."
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+    wf = WindowedFile(path=state["curr_file"])
+
+    # Turn \\n into \n etc., i.e., undo the escaping
+    # args.replace = args.replace.encode("utf8").decode("unicode_escape")
+
+    if search == replace:
+        msg_txt = _NO_CHANGES_MADE_MSG
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+    pre_edit_lint = flake8(wf.path)
+
+    try:
+        if not replace_all:
+            window_text = wf.get_window_text()
+            if window_text.count(search) > 1:
+                msg_txt = _MULTIPLE_OCCURRENCES_MSG.format(search=search)
+                return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+            replacement_info = wf.replace_in_window(search, replace)
+            # todo: Should warn if more than one occurrence was found?
+        else:
+            # todo: Give overview of all replaced occurrences/number of replacements
+            replacement_info = wf.replace(search, replace)
+    except TextNotFound:
+        line_no_founds = wf.find_all_occurrences(search, zero_based=False)
+        if line_no_founds:
+            msg_txt = _NOT_FOUND_IN_WINDOW_MSG.format(
+                search=search, occurrences="\n".join([f"- line {line_no}" for line_no in line_no_founds])
+            )
+        else:
+            msg_txt = _NOT_FOUND.format(search=search)
+        msg_txt = msg_txt
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+    post_edit_lint = flake8(wf.path)
+
+    if not replace_all:
+        # Try to filter out pre-existing errors
+        replacement_window = (
+            replacement_info.first_replaced_line,
+            replacement_info.first_replaced_line + replacement_info.n_search_lines - 1,
+        )
+        new_flake8_output = format_flake8_output(
+            post_edit_lint,
+            previous_errors_string=pre_edit_lint,
+            replacement_window=replacement_window,
+            replacement_n_lines=replacement_info.n_replace_lines,
+        )
+    else:
+        # Cannot easily compare the error strings, because line number changes are hard to keep track of
+        # So we show all linter errors.
+        new_flake8_output = format_flake8_output(post_edit_lint)
+
+    if new_flake8_output:
+        with_edits = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+        wf.undo_edit()
+        without_edits = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+        msg_txt = _LINT_ERROR_TEMPLATE.format(
+            errors=new_flake8_output,
+            window_applied=with_edits,
+            window_original=without_edits,
+        )
+        msg_txt = msg_txt
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+    if not replace_all:
+        msg_txt = _SINGLE_EDIT_SUCCESS_MSG
+    else:
+        msg_txt = _MULTIPLE_EDITS_SUCCESS_MSG.format(n_replacements=replacement_info.n_replacements)
+
+    msg_txt = msg_txt + "\n\n" + wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+    return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+
+@tool("insert")
+def insert(
+    state: Annotated[dict, InjectedState],
+    tool_call_id: Annotated[str, InjectedToolCallId],
+    text: str,
+    line_number: Union[int, None] = None,
+):
+    """
+    Insert <text> at the end of the currently opened file or after <line> if specified.
+    """
+    if len(state["curr_file"]) == 0:
+        msg_txt = "No file opened. Either `open` or `create` a file first."
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+    wf = WindowedFile(state["curr_file"])
+
+    pre_edit_lint = flake8(wf.path)
+    insert_info = wf.insert(text, line=line_number - 1 if line_number is not None else None)
+    post_edit_lint = flake8(wf.path)
+
+    # Try to filter out pre-existing errors
+    replacement_window = (insert_info.first_inserted_line, insert_info.first_inserted_line)
+    new_flake8_output = format_flake8_output(
+        post_edit_lint,
+        previous_errors_string=pre_edit_lint,
+        replacement_window=replacement_window,
+        replacement_n_lines=insert_info.n_lines_added,
+    )
+
+    if new_flake8_output:
+        with_edits = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+        wf.undo_edit()
+        without_edits = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+        msg_txt = _LINT_ERROR_TEMPLATE.format(
+            errors=new_flake8_output, window_applied=with_edits, window_original=without_edits
+        )
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+    msg_txt = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+    return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
diff --git a/clients/stratus/tools/text_editing/flake8_utils.py b/clients/stratus/tools/text_editing/flake8_utils.py
new file mode 100644
index 0000000..25a2b68
--- /dev/null
+++ b/clients/stratus/tools/text_editing/flake8_utils.py
@@ -0,0 +1,142 @@
+#!/usr/bin/env python3
+
+"""This helper command is used to parse and print flake8 output."""
+
+# ruff: noqa: UP007 UP006 UP035
+
+import subprocess
+from pathlib import Path
+from typing import List, Optional, Tuple
+
+try:
+    from sweagent import TOOLS_DIR
+except ImportError:
+    pass
+else:
+    import sys
+
+    default_lib = TOOLS_DIR / "text_editing" / "lib"
+    assert default_lib.is_dir()
+    sys.path.append(str(default_lib))
+    sys.path.append(str(TOOLS_DIR / "registry" / "lib"))
+
+
+class Flake8Error:
+    """A class to represent a single flake8 error"""
+
+    def __init__(self, filename: str, line_number: int, col_number: int, problem: str):
+        self.filename = filename
+        self.line_number = line_number
+        self.col_number = col_number
+        self.problem = problem
+
+    @classmethod
+    def from_line(cls, line: str):
+        try:
+            prefix, _sep, problem = line.partition(": ")
+            filename, line_number, col_number = prefix.split(":")
+        except (ValueError, IndexError) as e:
+            msg = f"Invalid flake8 error line: {line}"
+            raise ValueError(msg) from e
+        return cls(filename, int(line_number), int(col_number), problem)
+
+    def __eq__(self, other):
+        if not isinstance(other, Flake8Error):
+            return NotImplemented
+        return (
+            self.filename == other.filename
+            and self.line_number == other.line_number
+            and self.col_number == other.col_number
+            and self.problem == other.problem
+        )
+
+    def __repr__(self):
+        return f"Flake8Error(filename={self.filename}, line_number={self.line_number}, col_number={self.col_number}, problem={self.problem})"
+
+
+def _update_previous_errors(
+    previous_errors: List[Flake8Error], replacement_window: Tuple[int, int], replacement_n_lines: int
+) -> List[Flake8Error]:
+    """Update the line numbers of the previous errors to what they would be after the edit window.
+    This is a helper function for `_filter_previous_errors`.
+
+    All previous errors that are inside of the edit window should not be ignored,
+    so they are removed from the previous errors list.
+
+    Args:
+        previous_errors: list of errors with old line numbers
+        replacement_window: the window of the edit/lines that will be replaced
+        replacement_n_lines: the number of lines that will be used to replace the text
+
+    Returns:
+        list of errors with updated line numbers
+    """
+    updated = []
+    lines_added = replacement_n_lines - (replacement_window[1] - replacement_window[0] + 1)
+    for error in previous_errors:
+        if error.line_number < replacement_window[0]:
+            # no need to adjust the line number
+            updated.append(error)
+            continue
+        if replacement_window[0] <= error.line_number <= replacement_window[1]:
+            # The error is within the edit window, so let's not ignore it
+            # either way (we wouldn't know how to adjust the line number anyway)
+            continue
+        # We're out of the edit window, so we need to adjust the line number
+        updated.append(Flake8Error(error.filename, error.line_number + lines_added, error.col_number, error.problem))
+    return updated
+
+
+def format_flake8_output(
+    input_string: str,
+    show_line_numbers: bool = False,
+    *,
+    previous_errors_string: str = "",
+    replacement_window: Optional[Tuple[int, int]] = None,
+    replacement_n_lines: Optional[int] = None,
+) -> str:
+    """Filter flake8 output for previous errors and print it for a given file.
+
+    Args:
+        input_string: The flake8 output as a string
+        show_line_numbers: Whether to show line numbers in the output
+        previous_errors_string: The previous errors as a string
+        replacement_window: The window of the edit (lines that will be replaced)
+        replacement_n_lines: The number of lines used to replace the text
+
+    Returns:
+        The filtered flake8 output as a string
+    """
+    errors = [Flake8Error.from_line(line.strip()) for line in input_string.split("\n") if line.strip()]
+    # print(f"New errors before filtering: {errors=}")
+    lines = []
+    if previous_errors_string:
+        assert replacement_window is not None
+        assert replacement_n_lines is not None
+        previous_errors = [
+            Flake8Error.from_line(line.strip()) for line in previous_errors_string.split("\n") if line.strip()
+        ]
+        # print(f"Previous errors before updating: {previous_errors=}")
+        previous_errors = _update_previous_errors(previous_errors, replacement_window, replacement_n_lines)
+        # print(f"Previous errors after updating: {previous_errors=}")
+        errors = [error for error in errors if error not in previous_errors]
+        # Sometimes new errors appear above the replacement window that were 'shadowed' by the previous errors
+        # they still clearly aren't caused by the edit.
+        errors = [error for error in errors if error.line_number >= replacement_window[0]]
+        # print(f"New errors after filtering: {errors=}")
+    for error in errors:
+        if not show_line_numbers:
+            lines.append(f"- {error.problem}")
+        else:
+            lines.append(f"- line {error.line_number} col {error.col_number}: {error.problem}")
+    return "\n".join(lines)
+
+
+def flake8(file_path: str) -> str:
+    """Run flake8 on a given file and return the output as a string"""
+    if Path(file_path).suffix != ".py":
+        return ""
+    cmd = "flake8 --isolated --select=F821,F822,F831,E111,E112,E113,E999,E902 {file_path}"
+    # don't use capture_output because it's not compatible with python3.6
+    out = subprocess.run(cmd.format(file_path=file_path), shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+    return out.stdout.decode()
diff --git a/clients/stratus/tools/text_editing/insert.py b/clients/stratus/tools/text_editing/insert.py
new file mode 100644
index 0000000..76e2ef3
--- /dev/null
+++ b/clients/stratus/tools/text_editing/insert.py
@@ -0,0 +1,81 @@
+#!/usr/bin/env python3
+
+import argparse
+from typing import Annotated, Union
+
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.prebuilt import InjectedState
+from langgraph.types import Command
+
+from clients.stratus.tools.text_editing.file_manip import update_file_vars_in_state
+
+RETRY_WITH_OUTPUT_TOKEN = "###SWE-AGENT-RETRY-WITH-OUTPUT###"
+
+_LINT_ERROR_TEMPLATE = """Your proposed edit has introduced new syntax error(s).
+Please read this error message carefully and then retry editing the file.
+
+ERRORS:
+
+{errors}
+
+This is how your edit would have looked if applied
+------------------------------------------------
+{window_applied}
+------------------------------------------------
+
+This is the original code before your edit
+------------------------------------------------
+{window_original}
+------------------------------------------------
+
+Your changes have NOT been applied. Please fix your edit command and try again.
+DO NOT re-run the same failed edit command. Running it again will lead to the same error.
+"""
+
+
+def get_parser() -> argparse.ArgumentParser:
+    parser = argparse.ArgumentParser()
+    parser.add_argument("text", type=str)
+    parser.add_argument("line", type=int, nargs="?", default=None)
+    return parser
+
+
+@tool("insert")
+def insert(
+    state: Annotated[dict, InjectedState],
+    tool_call_id: Annotated[str, InjectedToolCallId],
+    text: str,
+    line: Union[int, None] = None,
+):
+    """
+    Insert <text> at the end of the currently opened file or after <line> if specified.
+    """
+    if len(state["curr_file"]) == 0:
+        msg_txt = "No file opened. Either `open` or `create` a file first."
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+    wf = WindowedFile(state["curr_file"])
+
+    pre_edit_lint = flake8(wf.path)
+    insert_info = wf.insert(text, line=line - 1 if line is not None else None)
+    post_edit_lint = flake8(wf.path)
+
+    # Try to filter out pre-existing errors
+    replacement_window = (insert_info.first_inserted_line, insert_info.first_inserted_line)
+    new_flake8_output = format_flake8_output(
+        post_edit_lint,
+        previous_errors_string=pre_edit_lint,
+        replacement_window=replacement_window,
+        replacement_n_lines=insert_info.n_lines_added,
+    )
+
+    if new_flake8_output:
+        with_edits = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+        wf.undo_edit()
+        without_edits = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+        msg_txt = _LINT_ERROR_TEMPLATE.format(
+            errors=new_flake8_output, window_applied=with_edits, window_original=without_edits
+        )
+        return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
+
+    msg_txt = wf.get_window_text(line_numbers=True, status_line=True, pre_post_line=True)
+    return Command(update=update_file_vars_in_state(state, msg_txt, tool_call_id))
diff --git a/clients/stratus/tools/text_editing/windowed_file.py b/clients/stratus/tools/text_editing/windowed_file.py
new file mode 100644
index 0000000..b29b12a
--- /dev/null
+++ b/clients/stratus/tools/text_editing/windowed_file.py
@@ -0,0 +1,303 @@
+import json
+import os
+from pathlib import Path
+from typing import Any, List, Optional, Tuple, Union
+
+
+class FileNotOpened(Exception):
+    """Raised when no file is opened."""
+
+
+class TextNotFound(Exception):
+    """Raised when the text is not found in the window."""
+
+
+def _find_all(a_str: str, sub: str):
+    start = 0
+    while True:
+        start = a_str.find(sub, start)
+        if start == -1:
+            return
+        yield start
+        start += len(sub)
+
+
+class ReplacementInfo:
+    def __init__(self, first_replaced_line: int, n_search_lines: int, n_replace_lines: int, n_replacements: int):
+        self.first_replaced_line = first_replaced_line
+        self.n_search_lines = n_search_lines
+        self.n_replace_lines = n_replace_lines
+        self.n_replacements = n_replacements
+
+    def __repr__(self):
+        return f"ReplacementInfo(first_replaced_line={self.first_replaced_line}, n_search_lines={self.n_search_lines}, n_replace_lines={self.n_replace_lines}, n_replacements={self.n_replacements})"
+
+
+class InsertInfo:
+    def __init__(self, first_inserted_line: int, n_lines_added: int):
+        self.first_inserted_line = first_inserted_line
+        self.n_lines_added = n_lines_added
+
+
+class WindowedFile:
+    def __init__(
+        self,
+        path: Optional[Path] = None,
+        *,
+        first_line: Optional[int] = None,
+        window: Optional[int] = None,
+        exit_on_exception: bool = True,
+    ):
+        """
+
+        Args:
+            path: Path to the file to open.
+            first_line: First line of the display window.
+            window: Number of lines to display.
+            exit_on_exception: If False, will raise exception.
+                If true, will print an error message and exit.
+
+        Will create file if not found.
+
+        Internal convention/notes:
+
+        * All line numbers are 0-indexed.
+        * Previously, we used "current_line" for the internal state
+          of the window position, pointing to the middle of the window.
+          Now, we use `first_line` for this purpose (it's simpler this way).
+        """
+
+        # We don't need the registry stuff as the tool node should acquire a state
+        # and the state should include an existing path, or not if the tool is never used.
+        _path = path
+        self._exit_on_exception = exit_on_exception
+        if not _path:
+            if self._exit_on_exception:
+                print("No file open. Use the open command first.")
+                exit(1)
+            raise FileNotOpened
+        self.path = Path(_path)
+        if self.path.is_dir():
+            msg = f"Error: {self.path} is a directory. You can only open files. Use cd or ls to navigate directories."
+            if self._exit_on_exception:
+                print(msg)
+                exit(1)
+            raise IsADirectoryError(msg)
+        if not self.path.exists():
+            msg = f"Error: File {self.path} not found"
+            if self._exit_on_exception:
+                print(msg)
+                exit(1)
+            raise FileNotFoundError(msg)
+
+        # FIXME: magic number, defaulting window to 10 lines
+        self.window = 10
+        # FIXME: magic number, set to default from swe-agent now
+        self.overlap = 0
+        # Ensure that we get a valid current line by using the setter
+        self._first_line = 0
+        # FIXME: magic number, set to default from swe-agent now
+        self.first_line = 0
+        self.offset_multiplier = 1 / 6
+        self._original_text = self.text
+        self._original_first_line = self.first_line
+
+    def set_window_text(self, new_text: str, *, line_range: Optional[Tuple[int, int]] = None) -> None:
+        """Replace the text in the current display window with a new string."""
+        text = self.text.split("\n")
+        if line_range is not None:
+            start, stop = line_range
+        else:
+            start, stop = self.line_range
+
+        # Handle empty replacement text (deletion case)
+        new_lines = new_text.split("\n") if new_text else []
+        text[start : stop + 1] = new_lines
+        self.text = "\n".join(text)
+
+    def insert(self, text: str, line: Optional[int] = None, *, reset_first_line: str = "top") -> "InsertInfo":
+        # Standardize empty text handling
+        if not text:
+            return InsertInfo(first_inserted_line=(self.n_lines if line is None else line), n_lines_added=0)
+
+        # Remove single trailing newline if it exists
+        text = text[:-1] if text.endswith("\n") else text
+
+        if line is None:
+            # Append to end of file
+            if not self.text:
+                new_text = text
+            else:
+                current_text = self.text[:-1] if self.text.endswith("\n") else self.text
+                new_text = current_text + "\n" + text
+            insert_line = self.n_lines
+        elif line < 0:
+            # Insert at start of file
+            if not self.text:
+                new_text = text
+            else:
+                current_text = self.text[1:] if self.text.startswith("\n") else self.text
+                new_text = text + "\n" + current_text
+            insert_line = 0
+        else:
+            # Insert at specific line
+            lines = self.text.split("\n")
+            lines.insert(line, text)
+            new_text = "\n".join(lines)
+            insert_line = line
+
+        self.text = new_text
+        if reset_first_line != "keep":
+            self.goto(insert_line, mode=reset_first_line)
+
+        return InsertInfo(first_inserted_line=insert_line, n_lines_added=len(text.split("\n")))
+
+    def replace_in_window(
+        self,
+        search: str,
+        replace: str,
+        *,
+        reset_first_line: str = "top",
+    ) -> "ReplacementInfo":
+        """Search and replace in the window.
+
+        Args:
+            search: The string to search for (can be multi-line).
+            replace: The string to replace it with (can be multi-line).
+            reset_first_line: If "keep", we keep the current line. Otherwise, we
+                `goto` the line where the replacement started with this mode.
+        """
+        window_text = self.get_window_text()
+        # Update line number
+        index = window_text.find(search)
+        if index == -1:
+            if self._exit_on_exception:
+                print(f"Error: Text not found: {search}")
+                exit(1)
+            raise TextNotFound
+        window_start_line, _ = self.line_range
+        replace_start_line = window_start_line + len(window_text[:index].split("\n")) - 1
+        new_window_text = window_text.replace(search, replace)
+        self.set_window_text(new_window_text)
+        if reset_first_line == "keep":
+            pass
+        else:
+            self.goto(replace_start_line, mode=reset_first_line)
+        return ReplacementInfo(
+            first_replaced_line=replace_start_line,
+            n_search_lines=len(search.split("\n")),
+            n_replace_lines=len(replace.split("\n")),
+            n_replacements=1,
+        )
+
+    def replace(self, search: str, replace: str, *, reset_first_line: str = "top") -> "ReplacementInfo":
+        indices = list(_find_all(self.text, search))
+        if not indices:
+            if self._exit_on_exception:
+                print(f"Error: Text not found: {search}")
+                exit(1)
+            raise TextNotFound
+        replace_start_line = len(self.text[: indices[0]].split("\n"))
+        new_text = self.text.replace(search, replace)
+        self.text = new_text
+        if reset_first_line == "keep":
+            pass
+        else:
+            self.goto(replace_start_line, mode=reset_first_line)
+        return ReplacementInfo(
+            first_replaced_line=replace_start_line,
+            n_search_lines=len(search.split("\n")),
+            n_replace_lines=len(replace.split("\n")),
+            n_replacements=len(indices),
+        )
+
+    def find_all_occurrences(self, search: str, zero_based: bool = True) -> List[int]:
+        """Returns the line numbers of all occurrences of the search string."""
+        indices = list(_find_all(self.text, search))
+        line_numbers = []
+        for index in indices:
+            line_no = len(self.text[:index].split("\n"))
+            if zero_based:
+                line_numbers.append(line_no - 1)
+            else:
+                line_numbers.append(line_no)
+        return line_numbers
+
+    def undo_edit(self):
+        self.text = self._original_text
+        self.first_line = self._original_first_line
+
+    @property
+    def first_line(self) -> int:
+        return self._first_line
+
+    @first_line.setter
+    def first_line(self, value: Union[int, float]):
+        self._original_first_line = self.first_line
+        value = int(value)
+        self._first_line = max(0, min(value, self.n_lines - 1 - self.window))
+
+    @property
+    def text(self) -> str:
+        return self.path.read_text()
+
+    @text.setter
+    def text(self, new_text: str):
+        self._original_text = self.text
+        self.path.write_text(new_text)
+
+    @property
+    def n_lines(self) -> int:
+        return len(self.text.splitlines())
+
+    @property
+    def line_range(self) -> Tuple[int, int]:
+        """Return first and last line (inclusive) of the display window, such
+        that exactly `window` many lines are displayed.
+        This means `line_range[1] - line_range[0] == window-1` as long as there are
+        at least `window` lines in the file. `first_line` does the handling
+        of making sure that we don't go out of bounds.
+        """
+        return self.first_line, min(self.first_line + self.window - 1, self.n_lines - 1)
+
+    def get_window_text(
+        self, *, line_numbers: bool = False, status_line: bool = False, pre_post_line: bool = False
+    ) -> str:
+        """Get the text in the current display window with optional status/extra information
+
+        Args:
+            line_numbers: include line numbers in the output
+            status_line: include the status line in the output (file path, total lines)
+            pre_post_line: include the pre/post line in the output (number of lines above/below)
+        """
+        start_line, end_line = self.line_range
+        lines = self.text.split("\n")[start_line : end_line + 1]
+        out_lines = []
+        if status_line:
+            out_lines.append(f"[File: {self.path} ({self.n_lines} lines total)]")
+        if pre_post_line:
+            if start_line > 0:
+                out_lines.append(f"({start_line} more lines above)")
+        if line_numbers:
+            out_lines.extend(f"{i + start_line + 1}:{line}" for i, line in enumerate(lines))
+        else:
+            out_lines.extend(lines)
+        if pre_post_line:
+            if end_line < self.n_lines - 1:
+                out_lines.append(f"({self.n_lines - end_line - 1} more lines below)")
+        return "\n".join(out_lines)
+
+    def print_window(self, *, line_numbers: bool = True, status_line: bool = True, pre_post_line: bool = True):
+        print(self.get_window_text(line_numbers=line_numbers, status_line=status_line, pre_post_line=pre_post_line))
+
+    def goto(self, line: int, mode: str = "top"):
+        if mode == "top":
+            self.first_line = line - self.window * self.offset_multiplier
+        else:
+            raise NotImplementedError
+
+    def scroll(self, n_lines: int):
+        if n_lines > 0:
+            self.first_line += n_lines - self.overlap
+        elif n_lines < 0:
+            self.first_line += n_lines + self.overlap
diff --git a/clients/stratus/tools/wait_tool.py b/clients/stratus/tools/wait_tool.py
new file mode 100644
index 0000000..49df892
--- /dev/null
+++ b/clients/stratus/tools/wait_tool.py
@@ -0,0 +1,35 @@
+import logging
+import time
+from typing import Annotated
+
+from langchain_core.messages import ToolMessage
+from langchain_core.tools import InjectedToolCallId, tool
+from langgraph.types import Command
+
+wait_tool_docstring = """
+Use this tool to wait for you action to take effect. The upper limit is 120 seconds. 
+    Any value above 120 seconds will be truncated to 120 seconds. If you call this tool
+    along with other tools in your tool_calls list, this tool will be scheduled to the 
+    last for execution.
+
+    Args:
+        seconds (int): Number of seconds to wait.
+"""
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+
+@tool(description=wait_tool_docstring)
+def wait_tool(seconds: int, tool_call_id: Annotated[str, InjectedToolCallId]) -> Command:
+
+    message = ""
+    if seconds > 120:
+        message += (
+            f"Request waiting {seconds} sec, but the maximum wait time is 120 sec. " f"Will be truncated to 120 sec."
+        )
+    seconds = max(0, min(seconds, 120))
+    time.sleep(seconds)
+    message += f"wait_tool has been called to wait {seconds} seconds."
+    logger.info(message)
+    return Command(update={"messages": [ToolMessage(message, tool_call_id=tool_call_id)]})
diff --git a/clients/stratus/weak_oracles/__init__.py b/clients/stratus/weak_oracles/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/clients/stratus/weak_oracles/base_oracle.py b/clients/stratus/weak_oracles/base_oracle.py
new file mode 100644
index 0000000..9e65398
--- /dev/null
+++ b/clients/stratus/weak_oracles/base_oracle.py
@@ -0,0 +1,20 @@
+from abc import ABC, abstractmethod
+from typing import List
+
+
+class OracleResult:
+    success: bool
+    issues: List[str]
+
+    def __init__(self, success: bool, issues: List[str]):
+        self.success = success
+        self.issues = issues
+
+    def __str__(self):
+        return f"Your last mitigation attempt [{"has succeeded" if self.success else "has failed"}]. The potential issues are [{"no issues as you have succeeded" if self.success else self.issues}]"
+
+
+class BaseOracle(ABC):
+    @abstractmethod
+    async def validate(self, **kwargs) -> OracleResult:
+        pass
diff --git a/clients/stratus/weak_oracles/cluster_state_oracle.py b/clients/stratus/weak_oracles/cluster_state_oracle.py
new file mode 100644
index 0000000..7509b8a
--- /dev/null
+++ b/clients/stratus/weak_oracles/cluster_state_oracle.py
@@ -0,0 +1,98 @@
+import os
+
+from clients.stratus.weak_oracles.base_oracle import BaseOracle, OracleResult
+
+
+class ClusterStateOracle(BaseOracle):
+    async def validate(self, namespace="default", **kwargs) -> OracleResult:
+        """
+        Validates the Kubernetes cluster status.
+
+        Args:
+            namespace (str): The namespace to check
+
+        Returns:
+            dict: A dict containing validation results with 'success' and 'issues' keys
+        """
+        results = {"success": True, "issues": []}
+
+        from kubernetes import client, config
+
+        # Load Kubernetes configuration
+        if os.path.exists(os.path.expanduser("~/.kube/config")):
+            config.load_kube_config()
+        else:
+            config.load_incluster_config()
+
+        # print(f"Validating cluster status on namespace '{namespace}'...")
+
+        try:
+            # Initialize Kubernetes API client
+            v1 = client.CoreV1Api()
+
+            # Get all pods in the namespace
+            pod_list = v1.list_namespaced_pod(namespace)
+
+            for pod in pod_list.items:
+                pod_name = pod.metadata.name
+                pod_issues = []
+
+                # Skip if pod is being terminated
+                if pod.metadata.deletion_timestamp:
+                    continue
+
+                # Check pod status
+                if pod.status.phase not in ["Running", "Succeeded"]:
+                    issue = f"Pod {pod_name} is in {pod.status.phase} state"
+                    pod_issues.append(issue)
+                    results["issues"].append(issue)
+                    results["success"] = False
+
+                # Check container statuses
+                if pod.status.container_statuses:
+                    for container_status in pod.status.container_statuses:
+                        container_name = container_status.name
+
+                        if container_status.state.waiting:
+                            reason = container_status.state.waiting.reason
+                            issue = f"Container {container_name} in pod {pod_name} is waiting: {reason}"
+                            if reason == "CrashLoopBackOff":
+                                issue = f"Container {container_name} is in CrashLoopBackOff"
+                            pod_issues.append(issue)
+                            results["issues"].append(issue)
+                            results["success"] = False
+
+                        elif (
+                            container_status.state.terminated
+                            and container_status.state.terminated.reason != "Completed"
+                        ):
+                            reason = container_status.state.terminated.reason
+                            issue = f"Container {container_name} is terminated with reason: {reason}"
+                            pod_issues.append(issue)
+                            results["issues"].append(issue)
+                            results["success"] = False
+
+                        elif not container_status.ready and pod.status.phase == "Running":
+                            issue = f"Container {container_name} is not ready"
+                            pod_issues.append(issue)
+                            results["issues"].append(issue)
+                            results["success"] = False
+
+                if pod_issues:
+                    print(f"Issues found with pod {pod_name}:")
+                    for issue in pod_issues:
+                        print(f"  - {issue}")
+
+            if results["success"]:
+                print("All pods are running normally.")
+            else:
+                print(f"Found {len(results['issues'])} issues in the cluster.")
+
+        except Exception as e:
+            results["success"] = False
+            results["issues"].append(f"Error validating cluster: {str(e)}")
+            print(f"Error validating cluster: {str(e)}")
+
+        results = OracleResult(success=results["success"], issues=results["issues"])
+
+        return results
diff --git a/clients/stratus/weak_oracles/workload_oracle.py b/clients/stratus/weak_oracles/workload_oracle.py
new file mode 100644
index 0000000..8d6781a
--- /dev/null
+++ b/clients/stratus/weak_oracles/workload_oracle.py
@@ -0,0 +1,263 @@
+import asyncio
+import time
+
+import yaml
+from kubernetes import client, config
+from kubernetes.client import V1JobStatus
+from pydantic import ConfigDict, Field
+
+from clients.stratus.weak_oracles.base_oracle import BaseOracle, OracleResult
+
+# from aiopslab.generators.workload.wrk import Wrk
+from sregym.paths import BASE_DIR, TARGET_MICROSERVICES
+from sregym.service.apps.base import Application
+from sregym.service.kubectl import KubeCtl
+
+# from sregym.generators.workload.wrk2 import Wrk2 as Wrk
+
+
+class Wrk:
+    def __init__(self, rate, dist="norm", connections=2, duration=6, threads=2, latency=True):
+        self.rate = rate
+        self.dist = dist
+        self.connections = connections
+        self.duration = duration
+        self.threads = threads
+        self.latency = latency
+
+        config.load_kube_config()
+
+        self.kubectl = KubeCtl()
+
+    def create_configmap(self, name, namespace, payload_script_path):
+        with open(payload_script_path, "r") as script_file:
+            script_content = script_file.read()
+
+        configmap_body = client.V1ConfigMap(
+            metadata=client.V1ObjectMeta(name=name),
+            data={payload_script_path.name: script_content},
+        )
+
+        api_instance = client.CoreV1Api()
+        try:
+            print(f"Checking for existing ConfigMap '{name}'...")
+            api_instance.delete_namespaced_config_map(name=name, namespace=namespace)
+            print(f"ConfigMap '{name}' deleted.")
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                print(f"Error deleting ConfigMap '{name}': {e}")
+                return
+
+        try:
+            print(f"Creating ConfigMap '{name}'...")
+            api_instance.create_namespaced_config_map(namespace=namespace, body=configmap_body)
+            print(f"ConfigMap '{name}' created successfully.")
+        except client.exceptions.ApiException as e:
+            print(f"Error creating ConfigMap '{name}': {e}")
+
+    def create_wrk_job(self, job_name, namespace, payload_script, url):
+        wrk_job_yaml = BASE_DIR / "generators" / "workload" / "wrk-job-template.yaml"
+        with open(wrk_job_yaml, "r") as f:
+            job_template = yaml.safe_load(f)
+
+        job_template["metadata"]["name"] = job_name
+        container = job_template["spec"]["template"]["spec"]["containers"][0]
+        container["args"] = [
+            "wrk",
+            "-D",
+            self.dist,
+            "-t",
+            str(self.threads),
+            "-c",
+            str(self.connections),
+            "-d",
+            f"{self.duration}s",
+            "-L",
+            "-s",
+            f"/scripts/{payload_script}",
+            url,
+            "-R",
+            str(self.rate),
+        ]
+
+        if self.latency:
+            container["args"].append("--latency")
+
+        job_template["spec"]["template"]["spec"]["volumes"] = [
+            {
+                "name": "wrk2-scripts",
+                "configMap": {"name": "wrk2-payload-script"},
+            }
+        ]
+        job_template["spec"]["template"]["spec"]["containers"][0]["volumeMounts"] = [
+            {
+                "name": "wrk2-scripts",
+                "mountPath": f"/scripts/{payload_script}",
+                "subPath": payload_script,
+            }
+        ]
+
+        api_instance = client.BatchV1Api()
+        try:
+            existing_job = api_instance.read_namespaced_job(name=job_name, namespace=namespace)
+            if existing_job:
+                print(f"Job '{job_name}' already exists. Deleting it...")
+                api_instance.delete_namespaced_job(
+                    name=job_name, namespace=namespace, body=client.V1DeleteOptions(propagation_policy="Foreground")
+                )
+                time.sleep(5)
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                print(f"Error checking for existing job: {e}")
+                return
+
+        try:
+            response = api_instance.create_namespaced_job(namespace=namespace, body=job_template)
+            print(f"Job created: {response.metadata.name}")
+        except client.exceptions.ApiException as e:
+            print(f"Error creating job: {e}")
+            return
+
+        try:
+            while True:
+                job_status = api_instance.read_namespaced_job_status(name=job_name, namespace=namespace)
+                if job_status.status.ready:
+                    print("Job completed successfully.")
+                    break
+                elif job_status.status.failed:
+                    print("Job failed.")
+                    break
+                time.sleep(5)
+        except client.exceptions.ApiException as e:
+            print(f"Error monitoring job: {e}")
+
+    def start_workload(self, payload_script, url):
+        namespace = "default"
+        configmap_name = "wrk2-payload-script"
+
+        self.create_configmap(name=configmap_name, namespace=namespace, payload_script_path=payload_script)
+
+        self.create_wrk_job(job_name="wrk2-job", namespace=namespace, payload_script=payload_script.name, url=url)
+
+
+class WorkloadOracle(BaseOracle):
+    passable: bool = Field(default=True)
+
+    model_config = ConfigDict(arbitrary_types_allowed=True)
+    app: Application = Field(default=None, description="Start workload")
+    core_v1_api: client.CoreV1Api = Field(default=None, description="Kubernetes CoreV1 API client")
+    batch_v1_api: client.BatchV1Api = Field(default=None, description="Kubernetes BatchV1 API client")
+    wrk: Wrk = Field(default=None, description="Wrk workload generator")
+
+    def __init__(self, app: Application):
+        super().__init__()
+        self.app = app
+
+        config.load_kube_config()
+        self.core_v1_api = client.CoreV1Api()
+        self.batch_v1_api = client.BatchV1Api()
+        self.kubectl = KubeCtl()
+
+    def get_job_logs(self, job_name, namespace):
+        """Retrieve the logs of a specified job within a namespace."""
+
+        pods = self.core_v1_api.list_namespaced_pod(namespace, label_selector=f"job-name={job_name}")
+        print(
+            pods.items[0].metadata.name,
+            self.core_v1_api.read_namespaced_pod_log(pods.items[0].metadata.name, namespace),
+        )
+        if len(pods.items) == 0:
+            raise Exception(f"No pods found for job {job_name} in namespace {namespace}")
+        return self.core_v1_api.read_namespaced_pod_log(pods.items[0].metadata.name, namespace)
+
+    def get_base_url(self):
+        # these are assumed to be initialized within the specific app
+        endpoint = self.kubectl.get_cluster_ip(self.app.frontend_service, self.app.namespace)
+        return f"http://{endpoint}:{self.app.frontend_port}"
+
+    def get_workloads(self, app_type):
+        if app_type == "Social Network":
+            base_dir = TARGET_MICROSERVICES / "socialNetwork/wrk2/scripts/social-network"
+            return [
+                {"payload_script": base_dir / "compose-post.lua", "url": "/wrk2-api/post/compose"},
+                {"payload_script": base_dir / "read-home-timeline.lua", "url": "/wrk2-api/home-timeline/read"},
+                {"payload_script": base_dir / "read-user-timeline.lua", "url": "/wrk2-api/user-timeline/read"},
+            ]
+        elif app_type == "Hotel Reservation":
+            base_dir = TARGET_MICROSERVICES / "hotelReservation/wrk2/scripts/hotel-reservation"
+            return [
+                {"payload_script": base_dir / "mixed-workload_type_1.lua", "url": ""},
+            ]
+        else:
+            raise Exception(f"Unknown app type: {app_type}")
+
+    @staticmethod
+    def is_job_completed(job_status: V1JobStatus) -> bool:
+        if hasattr(job_status, "conditions") and job_status.conditions is not None:
+            for condition in job_status.conditions:
+                if condition.type == "Complete" and condition.status == "True":
+                    return True
+        return False
+
+    async def get_workload_result(self, job_name):
+        self.kubectl.wait_for_job_completion(job_name=job_name, namespace="default")
+
+        namespace = "default"
+
+        logs = None
+        try:
+            logs = self.get_job_logs(
+                job_name=job_name,
+                namespace=namespace,
+            )
+            logs = "\n".join(logs.split("\n"))
+        except Exception as e:
+            return f"Workload Generator Error: {e}"
+
+        return logs
+
+    def start_workload(self, payload_script, url, job_name):
+        namespace = "default"
+        configmap_name = "wrk2-payload-script"
+
+        self.wrk.create_configmap(name=configmap_name, namespace=namespace, payload_script_path=payload_script)
+
+        self.wrk.create_wrk_job(job_name=job_name, namespace=namespace, payload_script=payload_script.name, url=url)
+
+    async def validate(self) -> OracleResult:
+        print("Testing workload generator...", flush=True)
+        self.wrk = Wrk(rate=10, dist="exp", connections=2, duration=10, threads=2)
+
+        result = {"success": True, "issues": []}
+
+        base_url = self.get_base_url()
+
+        for runid, run_config in enumerate(self.get_workloads(self.app.name)):
+            payload_script = run_config["payload_script"]
+            url = base_url + run_config["url"]
+            job_name = f"wrk2-job-{runid}"
+
+            self.start_workload(payload_script, url, job_name)
+            wrk_result = await self.get_workload_result(job_name)
+            if (
+                "Workload Generator Error:" in wrk_result
+                or "Requests/sec:" not in wrk_result
+                or "Transfer/sec:" not in wrk_result
+            ):
+                result["issues"].append("Workload Generator Error")
+                result["success"] = False
+                break
+            elif "Non-2xx or 3xx responses:" in wrk_result:
+                issue = ""
+                for line in wrk_result.split("\n"):
+                    if "Non-2xx or 3xx responses:" in line:
+                        issue = line
+                        break
+                result["issues"].append(issue)
+                result["success"] = False
+                break
+
+        return OracleResult(
+            success=result["success"],
+            issues=[str(result)],
+        )
diff --git a/dashboard/__init__.py b/dashboard/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/dashboard/assets/utils.js b/dashboard/assets/utils.js
new file mode 100644
index 0000000..74cf631
--- /dev/null
+++ b/dashboard/assets/utils.js
@@ -0,0 +1,17 @@
+window.dash_clientside = Object.assign({}, window.dash_clientside, {
+  utils: Object.assign({}, (window.dash_clientside || {}).utils, {
+    scrollToBottom: function(triggerValue) {
+      try {
+        // Only scroll if triggerValue is True (new log arrived)
+        if (triggerValue === true) {
+          var container = document.getElementById('rows-display');
+          if (container) {
+            container.scrollTop = container.scrollHeight;
+          }
+        }
+      } catch (e) {}
+      return Date.now();
+    }
+  })
+});
+
diff --git a/dashboard/dashboard_app.py b/dashboard/dashboard_app.py
new file mode 100644
index 0000000..ce19dc0
--- /dev/null
+++ b/dashboard/dashboard_app.py
@@ -0,0 +1,1053 @@
+import atexit
+import json
+import os
+import re
+import signal
+import sys
+import time
+from datetime import datetime
+from pathlib import Path
+
+import dash
+import pandas as pd
+import plotly.express as px
+import plotly.graph_objs as go
+from dash import Input, Output, State, callback, dcc, html
+from dash.dependencies import ClientsideFunction
+
+sys.path.append(os.path.join(os.path.dirname(__file__), "..", "sregym", "service"))
+import threading
+from collections import deque
+
+import yaml
+from flask import request
+
+from sregym.service.kubectl import KubeCtl
+
+DASHBOARD_URL = "http://127.0.0.1:11451"
+
+
+class SREGymDashboardServer:
+    """SREGym Dashboard Server Class"""
+
+    # CONCISE Toggle - when True, hide pods for all-green deployments
+    CONCISE_TOGGLE = True
+
+    def __init__(self, host="127.0.0.1", port=11451, debug=True):
+        """
+        Initialize the dashboard server
+
+        Args:
+            host (str): Server host address
+            port (int): Server port
+            debug (bool): Enable debug mode
+        """
+        self.host = host
+        self.port = port
+        self.debug = debug
+
+        # Initialize Dash application
+        self.app = dash.Dash(__name__)
+
+        # Log history storage
+        self.log_history = []
+        # External log queue for logs received via API (thread-safe with lock)
+        self.external_log_queue = deque()
+        self._log_lock = threading.Lock()
+        self._state_lock = threading.Lock()
+        # Structured rows: history of {log, ckpt_state}
+        self.history_rows: list[dict] = []
+        self.latest_log: dict | None = None
+        self.latest_ckpt_state: dict | None = None
+        # No extra export data structure; export will render from existing state on exit
+
+        # Setup the application
+        self._setup_layout()
+        self._setup_callbacks()
+        self._setup_api_routes()
+        self.namespace = "default"
+
+        self.kubectl = KubeCtl()
+        # self.host_info = self.get_host_info()
+
+        # Register graceful shutdown export hooks
+        atexit.register(self._export_on_exit)
+        # Flag to track if we've already handled a shutdown signal
+        self._signal_handled = False
+        # Register signal handlers for graceful shutdown
+        try:
+            signal.signal(signal.SIGINT, self._handle_signal)  # Ctrl-C
+            signal.signal(signal.SIGTERM, self._handle_signal)  # terminate() sends SIGTERM
+        except Exception:
+            pass
+
+    # a bit not elegant here to be honest
+    def get_host_info(self):
+        # read the script/ansible/inventory.yml, and return the host info
+        worker_info = {}
+        with open(os.path.join(os.path.dirname(__file__), "..", "scripts", "ansible", "inventory.yml"), "r") as f:
+            inventory = yaml.safe_load(f)
+
+            # Extract variables from all.vars
+            variables = {}
+            if "all" in inventory and "vars" in inventory["all"]:
+                variables = inventory["all"]["vars"]
+
+            # get all the workers
+            if "all" in inventory and "children" in inventory["all"] and "worker_nodes" in inventory["all"]["children"]:
+                workers = inventory["all"]["children"]["worker_nodes"]["hosts"]
+                for worker in workers:
+                    ansible_host = workers[worker]["ansible_host"]
+                    ansible_user = workers[worker]["ansible_user"]
+
+                    # Replace variables in ansible_user
+                    ansible_user = self._replace_variables(ansible_user, variables)
+
+                    # Skip if variables couldn't be resolved
+                    if "{{" in ansible_user:
+                        print(f"Warning: Unresolved variables in {worker} user: {ansible_user}")
+                        continue
+
+                    worker_info[ansible_host] = ansible_user
+                return worker_info
+
+        print(f"No worker nodes found in the inventory file, your cluster is not applicable for this fault injector")
+        return None
+
+    def _replace_variables(self, value, variables):
+        """Replace variables in a string with their values"""
+        for key, val in variables.items():
+            value = value.replace(f"{{{{{key}}}}}", str(val))
+        return value
+
+    def _setup_api_routes(self):
+        """Setup API routes for external log ingestion"""
+
+        @self.app.server.route("/api/logs", methods=["POST"])
+        def receive_log():
+            try:
+                log_data = request.get_json()
+                if log_data:
+                    # Convert external log format to internal format
+                    content = log_data.get("content", "")
+                    sort = log_data.get("sort", "DUMMY")
+                    log_entry = {
+                        "type": sort,
+                        "content": content,
+                        "timestamp": log_data.get("timestamp", "Fault Extract Timestamp"),
+                        "location": log_data.get("location", ""),
+                    }
+                    print(">>>", log_entry)
+                    with self._log_lock:
+                        self.external_log_queue.append(log_entry)
+                    if sort == "STAGE" and content.startswith("Start"):
+                        # try to find "<abc-ed>"
+                        match = re.search(r"<(.*?)>", content)
+                        if match:
+                            self.namespace = match.group(1)
+                return {"status": "success"}, 200
+            except Exception as e:
+                return {"status": "error", "message": str(e)}, 400
+
+    def _generate_log_data(self):
+        """Generate log data from external queue"""
+        # Check for external logs first
+        log_entry = None
+        with self._log_lock:
+            if self.external_log_queue:
+                log_entry = self.external_log_queue.popleft()
+
+        if log_entry is not None:
+            # Add new log to history
+            self.log_history.append(log_entry)
+            # Return the latest log for display
+            return log_entry
+        # No external logs available, return None to skip this update
+        return None
+
+    def _drain_log_queue(self) -> list[dict]:
+        """Drain and return all pending logs from the external queue in FIFO order."""
+        drained: list[dict] = []
+        with self._log_lock:
+            while self.external_log_queue:
+                drained.append(self.external_log_queue.popleft())
+        if drained:
+            self.log_history.extend(drained)
+        return drained
+
+    def _get_export_dir(self) -> Path:
+        export_dir = os.getenv("SREGYM_DASH_EXPORT_DIR", ".")
+        p = Path(export_dir).expanduser().resolve()
+        try:
+            p.mkdir(parents=True, exist_ok=True)
+        except Exception:
+            p = Path(".").resolve()
+        return p
+
+    def _build_log_html(self, log_entry: dict) -> str:
+        type_colors = {
+            "STAGE": "#ffc107",
+            "ENV": "#007bff",
+            "LLM": "#6c757d",
+            "PROMPT": "#28a745",
+            "ERROR": "#dc3545",
+            "EVAL": "#6f42c1",
+            "SPLIT": "#dee2e6",
+            "WARNING": "#fd7e14",
+        }
+        color = type_colors.get(log_entry.get("type", ""), "#6c757d")
+        ts = log_entry.get("timestamp", "")
+        typ = log_entry.get("type", "")
+        loc = log_entry.get("location", "")
+        content = (log_entry.get("content", "") or "").split("\n")
+        content_html = "".join([("<br>" if i > 0 else "") + self._escape_html(line) for i, line in enumerate(content)])
+        return (
+            f'<div style="background-color:{color}20;border:1px solid {color};border-radius:8px;padding:8px;font-family:Consolas;">'
+            f'<span style="color:#6c757d">[{self._escape_html(ts)}] </span>'
+            f'<span style="color:{color};font-weight:bold;background-color:{color}20;padding:2px 6px;border-radius:4px;margin-right:8px;font-family:Consolas;font-size:12px;">{self._escape_html(typ)}</span>'
+            f'<span style="color:#6c757d;font-family:Consolas;font-size:11px;margin-right:8px;">{self._escape_html(loc)}</span>'
+            f'<span style="color:#2c3e50;font-family:Consolas;font-size:12px;">{content_html}</span>'
+            f"</div>"
+        )
+
+    def _escape_html(self, s: str) -> str:
+        return (
+            (s or "")
+            .replace("&", "&amp;")
+            .replace("<", "&lt;")
+            .replace(">", "&gt;")
+            .replace('"', "&quot;")
+            .replace("'", "&#39;")
+        )
+
+    def _build_status_html(self, cluster_data: dict | None) -> str:
+        if not cluster_data:
+            return "<div></div>"
+        nodes = cluster_data.get("nodes", {}) if cluster_data else {}
+        deployments = cluster_data.get("deployments", {}) if cluster_data else {}
+
+        # Nodes
+        node_spans: list[str] = []
+        for node_name, node_info in nodes.items():
+            ready = node_info.get("ready", "Unknown")
+            issues = node_info.get("issues", [])
+            if ready == "False":
+                node_emoji = "🔴"
+            elif ready == "Unknown":
+                node_emoji = "❓"
+            elif ready == "True":
+                node_emoji = "🟡" if issues else "🟢"
+            else:
+                node_emoji = "❓"
+            issues_text = ""
+            if issues:
+                issues_letters = [str(issue)[0].upper() for issue in issues]
+                issues_text = " " + "".join(issues_letters)
+            node_spans.append(
+                f'<span style="margin-right:10px"><span style="margin-right:3px;font-size:12px;font-family:Consolas">{self._escape_html(node_name)}</span>'
+                f'<span style="margin-right:3px;font-size:10px;font-family:Consolas">{node_emoji}</span>'
+                f'<strong style="color:#ffc107;font-size:10px;font-family:Consolas">{self._escape_html(issues_text)}</strong></span>'
+            )
+
+        # Deployments split into 3 columns
+        deployment_list = list(deployments.items())
+        per_col = len(deployment_list) // 3 + (1 if len(deployment_list) % 3 != 0 else 0)
+        col1 = deployment_list[:per_col]
+        col2 = deployment_list[per_col : per_col * 2]
+        col3 = deployment_list[per_col * 2 :]
+
+        def build_col(items: list[tuple[str, dict]]) -> str:
+            parts: list[str] = []
+            for dep_name, dep_data in items:
+                dep_meta = dep_data.get("deployment_meta", ("0/0/0", "gray"))
+                pods = dep_data.get("pods", [])
+                status_text, status_color = dep_meta
+                dep_emoji = (
+                    "🟢"
+                    if status_color == "green"
+                    else ("🟡" if status_color == "yellow" else ("🔴" if status_color == "red" else "⚪"))
+                )
+
+                pod_lines: list[str] = []
+                all_pods_green = bool(pods) and all((p.get("status") == "Running" for p in pods))
+                show_pods = not (self.CONCISE_TOGGLE and status_color == "green" and all_pods_green)
+                if show_pods:
+                    for pod in pods:
+                        node_number = pod.get("node_number", -1)
+                        node_emoji = f"{node_number}️⃣" if 1 <= node_number <= 9 else "❓"
+                        status_letter = (pod.get("status") or "U")[0].upper()
+                        color = pod.get("status_color", "#6c757d")
+                        pod_lines.append(
+                            f'<div style="margin-left:15px;margin-bottom:1px">'
+                            f'<span style="margin-right:3px;font-size:10px;font-family:Consolas">{node_emoji}</span>'
+                            f'<span style="margin-right:3px;font-size:10px;font-family:Consolas">{self._escape_html(pod.get("name", "Unknown"))}</span>'
+                            f'<strong style="color:{color};font-weight:bold;font-size:10px;font-family:Consolas">{self._escape_html(status_letter)}</strong>'
+                            f"</div>"
+                        )
+
+                parts.append(
+                    f'<div style="margin-bottom:5px"><div style="margin-bottom:2px">'
+                    f'<span style="margin-right:3px;font-size:10px;font-family:Consolas">{dep_emoji}</span>'
+                    f'<strong style="margin-right:3px;font-size:11px;font-family:Consolas">{self._escape_html(dep_name)}</strong>'
+                    f'<span style="color:#6c757d;font-size:10px;font-family:Consolas">{self._escape_html(status_text)}</span>'
+                    f"</div><div>{''.join(pod_lines)}</div></div>"
+                )
+            return "".join(parts)
+
+        col1_html = build_col(col1)
+        col2_html = build_col(col2)
+        col3_html = build_col(col3)
+
+        return (
+            f'<div style="border:1px solid #e9ecef;border-radius:8px;padding:8px;background-color:#ffffff">'
+            f'<div style="margin-bottom:8px">{''.join(node_spans)}</div>'
+            f'<div style="width:100%;overflow:hidden">'
+            f'<div style="width:33.33%;float:left;padding-right:5px;box-sizing:border-box">{col1_html}</div>'
+            f'<div style="width:33.33%;float:left;padding-right:5px;box-sizing:border-box">{col2_html}</div>'
+            f'<div style="width:33.33%;float:left;box-sizing:border-box">{col3_html}</div>'
+            f"</div></div>"
+        )
+
+    def _build_row_html(self, log_entry: dict, ckpt_state: dict | None, use_realtime_right: bool = False) -> str:
+        left = self._build_log_html(log_entry)
+        right = self._build_status_html(ckpt_state)
+        return (
+            f'<div style="width:100%;overflow:hidden;margin-bottom:6px">'
+            f'<div style="width:50%;float:left;padding:4px;box-sizing:border-box">{left}</div>'
+            f'<div style="width:50%;float:left;padding:4px;box-sizing:border-box">{right}</div>'
+            f"</div>"
+        )
+
+    def _export_on_exit(self):
+        try:
+            # Freeze a consistent snapshot
+            if self._state_lock.acquire(blocking=True):
+                try:
+                    # Drain any remaining logs and append to log_history; build export from log_history
+                    remaining = self._drain_log_queue()
+                    final_snapshot = self._collect_cluster_data(self.namespace)
+
+                    export_dir = self._get_export_dir()
+                    ts = datetime.now().strftime("%Y%m%d_%H%M%S")
+                    out_file = export_dir / f"sregym_dashboard_{ts}.html"
+
+                    rows_html: list[str] = []
+                    # Build from log_history in order; use final snapshot for right side
+                    for log_entry in self.log_history:
+                        if log_entry.get("type") == "SPLIT":
+                            rows_html.append(
+                                '<div><hr style="border:none;border-top:2px solid #dee2e6;margin:10px 0;width:100%"></div>'
+                            )
+                        else:
+                            rows_html.append(self._build_row_html(log_entry, final_snapshot))
+
+                    # Latest row with its saved checkpoint if exists
+                    if self.latest_log is not None:
+                        rows_html.append(self._build_row_html(self.latest_log or {}, final_snapshot))
+
+                    html_doc = (
+                        '<!DOCTYPE html><html><head><meta charset="utf-8">'
+                        '<meta name="viewport" content="width=device-width, initial-scale=1">'
+                        "<title>SREGym Dashboard Export</title>"
+                        "<style>body{font-family:Arial,sans-serif;margin:0;padding:20px;background-color:#ffffff;}"
+                        "</style></head><body>"
+                        f"<div>{''.join(rows_html)}</div>"
+                        '<footer style="background-color:#f8f9fa;border-top:1px solid #e9ecef;margin-top:20px;min-height:40px;display:flex;align-items:center;justify-content:center;">'
+                        '<p style="text-align:center;color:#6c757d;margin:0;padding:10px">© 2025 SREGym Dashboard - xlab, UIUC</p>'
+                        "</footer>"
+                        "</body></html>"
+                    )
+                    with open(out_file, "w", encoding="utf-8") as f:
+                        f.write(html_doc)
+                    print(f"[SREGym Dashboard] Exported HTML to: {out_file}")
+                finally:
+                    try:
+                        self._state_lock.release()
+                    except Exception:
+                        pass
+        except Exception as e:
+            print(f"[SREGym Dashboard] Export on exit failed: {e}")
+
+    def _handle_signal(self, signum, frame):
+        """
+        Handle shutdown signals (SIGINT, SIGTERM) gracefully.
+        Exports trace data before exiting.
+        """
+        if self._signal_handled:
+            # Already handled a shutdown signal, ignore subsequent ones
+            signal_name = (
+                "SIGINT" if signum == signal.SIGINT else "SIGTERM" if signum == signal.SIGTERM else f"signal {signum}"
+            )
+            print(f"[SREGym Dashboard] Ignoring subsequent {signal_name} signal...")
+            return
+
+        # Mark that we've handled the signal
+        self._signal_handled = True
+
+        signal_name = (
+            "SIGINT" if signum == signal.SIGINT else "SIGTERM" if signum == signal.SIGTERM else f"signal {signum}"
+        )
+        print(f"[SREGym Dashboard] Caught {signal_name}, exporting current view...")
+
+        try:
+            # Export trace data before exiting
+            self._export_on_exit()
+            print(f"[SREGym Dashboard] Export completed, shutting down...")
+        except Exception as e:
+            print(f"[SREGym Dashboard] Error during export: {e}", file=sys.stderr)
+        finally:
+            # Use os._exit() to ensure immediate termination after export
+            # This is important for daemon processes
+            os._exit(0)
+
+    def _parse_concise_deployment_info(self, info_str):
+        """Parse the concise deployment info from kubectl get deployment -o wide output"""
+        if not info_str or not info_str.strip():
+            return {}
+
+        lines = info_str.strip().split("\n")
+        if len(lines) < 2:
+            return {}
+
+        # Skip the header line
+        data_lines = lines[1:]
+        deployments = {}
+
+        for line in data_lines:
+            if not line.strip():
+                continue
+
+            # Split by whitespace
+            parts = line.split()
+            if len(parts) < 4:  # Minimum required fields: NAME, READY, UP-TO-DATE, AVAILABLE
+                continue
+
+            name = parts[0]
+            ready = parts[1]  # Format: X/Y
+            available = parts[3]  # AVAILABLE column
+
+            # Create the format: {name: A/X/Y}
+            real, expected = ready.split("/")
+            if available == 0:  # red
+                color = "red"
+            elif available == expected:  # green
+                color = "green"
+            else:  # yellow
+                color = "yellow"
+            deployments[name] = (f"{available}/{ready}", color)
+
+        return deployments
+
+    def _parse_concise_pod_info(self, info_str):
+        """Parse the concise pod info from kubectl get pod -o wide output"""
+        # print(info_str)
+        # print("\n\n\n\n")
+        if not info_str or not info_str.strip():
+            return []
+
+        lines = info_str.strip().split("\n")
+        if len(lines) < 2:
+            return []
+
+        # Skip the header line
+        data_lines = lines[1:]
+        pods_info = []
+
+        for line in data_lines:
+            if not line.strip():
+                continue
+
+            # Split by whitespace, but handle the case where some fields might be empty
+            parts = line.split()
+            if len(parts) < 8:  # Minimum required fields
+                continue
+
+            pod_info = {
+                "name": parts[0],
+                "ready": parts[1],
+                "status": parts[2],
+                "node": parts[6],
+            }
+
+            # only take the last 5 hash from the name
+            # catch the part after the last two -
+            parts = pod_info["name"].split("-")[:-2]
+            # print(parts)
+            pod_info["deployment_name"] = ""
+            for part in parts:
+                pod_info["deployment_name"] += part
+                if part != parts[-1]:
+                    pod_info["deployment_name"] += "-"
+            pod_info["name"] = pod_info["name"][-5:]
+
+            # Determine status color/emoji
+            status = pod_info["status"]
+            pod_info["color"] = "000000"
+            if status == "Running":  # green
+                pod_info["status_color"] = "#28a745"
+            elif status in ["Pending", "ContainerCreating", "Terminating"]:  # yellow
+                pod_info["status_color"] = "#ffc107"
+            elif status in ["Failed", "Error", "CrashLoopBackOff"]:  # red
+                pod_info["status_color"] = "#dc3545"
+            else:  # gray
+                pod_info["status_color"] = "#6c757d"
+
+            # extract node number
+            try:
+                pod_info["node_number"] = int(pod_info["node"].split(".")[0][-1])
+            except:
+                pod_info["node_number"] = -1
+
+            pods_info.append(pod_info)
+
+            # extract deployment name
+
+        return pods_info
+
+    def _collect_cluster_data(self, app_namespace):
+        """collect the cluster data"""
+        try:
+            deployments = self.kubectl.get_concise_deployments_info(app_namespace)
+            pods_raw = self.kubectl.get_concise_pods_info(app_namespace)
+            nodes = self.kubectl.list_nodes()
+
+            # Process nodes information
+            nodes_info = {}
+            if nodes and hasattr(nodes, "items"):
+                for node in nodes.items:
+                    node_dict = node.to_dict() if hasattr(node, "to_dict") else node
+                    status = node_dict.get("status", {})
+                    conditions = status.get("conditions", [])
+
+                    node_info = {
+                        "ready": "Unknown",
+                        "issues": [],
+                    }
+
+                    for condition in conditions:
+                        if condition.get("type") == "Ready":
+                            node_info["ready"] = condition.get("status", "Unknown")
+                        else:
+                            if condition.get("status") == "True":
+                                node_info["issues"].append(condition.get("type", "Unknown"))
+
+                    nodes_info[node_dict.get("metadata", {}).get("name", "Unknown").split(".")[0]] = node_info
+
+            pods_info = self._parse_concise_pod_info(pods_raw)
+            # print(pods_info)
+            # print("\n\n\n\n")
+            deployments_info = self._parse_concise_deployment_info(deployments) if deployments else {}
+            deployments_info_with_pods = {}
+
+            for deployment in deployments_info.keys():
+                deployments_info_with_pods[deployment] = {
+                    "pods": [pod for pod in pods_info if pod["deployment_name"] == deployment],
+                    "deployment_meta": deployments_info[deployment],
+                }
+
+            return {"nodes": nodes_info, "deployments": deployments_info_with_pods, "namespace": app_namespace}
+
+        except Exception as e:
+            print(f"Error collecting cluster data: {str(e)}")
+            return {"pods": [], "nodes": {}, "deployments": {}, "namespace": app_namespace, "error": str(e)}
+
+    def _render_log_block(self, log_entry: dict) -> html.Div:
+        """Render a single log entry as a colored block based on its type."""
+        type_colors = {
+            "STAGE": "#ffc107",  # yellow
+            "ENV": "#007bff",  # blue
+            "LLM": "#6c757d",  # gray
+            "PROMPT": "#28a745",  # green
+            "ERROR": "#dc3545",  # red
+            "EVAL": "#6f42c1",  # purple
+            "SPLIT": "#dee2e6",  # light gray
+            "WARNING": "#fd7e14",  # orange-red
+        }
+        color = type_colors.get(log_entry.get("type", ""), "#6c757d")
+        container_style = {
+            "background-color": color + "20",
+            "border": f"1px solid {color}",
+            "border-radius": "8px",
+            "padding": "8px",
+            "font-family": "Consolas",
+        }
+
+        # Split content by newlines and create proper line breaks
+        content_lines = log_entry.get("content", "").split("\n")
+
+        # Build full content elements
+        full_elements = []
+        for i, line in enumerate(content_lines):
+            if i > 0:
+                full_elements.append(html.Br())
+            full_elements.append(line)
+
+        # If more than 6 lines, render a collapsible block with a preview (first 6 lines)
+        if len(content_lines) > 6:
+            preview_elements = []
+            for i, line in enumerate(content_lines[:6]):
+                if i > 0:
+                    preview_elements.append(html.Br())
+                preview_elements.append(line)
+            # Add an ellipsis hint in the preview
+            preview_elements.append(html.Span(" …", style={"color": "#6c757d"}))
+
+            content_component = html.Details(
+                [
+                    html.Summary(
+                        html.Span(
+                            preview_elements, style={"color": "#2c3e50", "font-family": "Consolas", "font-size": "12px"}
+                        )
+                    ),
+                    html.Div(
+                        full_elements,
+                        style={"color": "#2c3e50", "font-family": "Consolas", "font-size": "12px", "marginTop": "6px"},
+                    ),
+                ]
+            )
+        else:
+            content_component = html.Span(
+                full_elements, style={"color": "#2c3e50", "font-family": "Consolas", "font-size": "12px"}
+            )
+
+        return html.Div(
+            [
+                html.Span(f"[{log_entry.get('timestamp', '')}] ", style={"color": "#6c757d"}),
+                html.Span(
+                    log_entry.get("type", ""),
+                    style={
+                        "color": color,
+                        "font-weight": "bold",
+                        "background-color": color + "20",
+                        "padding": "2px 6px",
+                        "border-radius": "4px",
+                        "margin-right": "8px",
+                        "font-family": "Consolas",
+                        "font-size": "12px",
+                    },
+                ),
+                html.Span(
+                    f"{log_entry.get('location', '')}",
+                    style={"color": "#6c757d", "font-family": "Consolas", "font-size": "11px", "margin-right": "8px"},
+                ),
+                content_component,
+            ],
+            style=container_style,
+        )
+
+    def _render_split_line(self) -> html.Div:
+        """Render a simple split line for SPLIT type logs in history."""
+        return html.Div(
+            [html.Hr(style={"border": "none", "border-top": "2px solid #dee2e6", "margin": "10px 0", "width": "100%"})],
+            style={"width": "100%", "text-align": "center"},
+        )
+
+    def _render_status_block(self, cluster_data: dict) -> html.Div:
+        """Render the status block (nodes + deployments) given cluster_data."""
+        nodes = cluster_data.get("nodes", {}) if cluster_data else {}
+        deployments = cluster_data.get("deployments", {}) if cluster_data else {}
+
+        # Nodes row
+        node_items = []
+        for node_name, node_info in nodes.items():
+            ready = node_info.get("ready", "Unknown")
+            issues = node_info.get("issues", [])
+            if ready == "False":
+                node_emoji = "🔴"
+            elif ready == "Unknown":
+                node_emoji = "❓"
+            elif ready == "True":
+                node_emoji = "🟡" if issues else "🟢"
+            else:
+                node_emoji = "❓"
+            issues_text = ""
+            if issues:
+                issues_letters = [issue[0].upper() for issue in issues]
+                issues_text = f" {''.join(issues_letters)}"
+            node_items.append(
+                html.Span(
+                    [
+                        html.Span(
+                            node_name, style={"margin-right": "3px", "font-size": "12px", "font-family": "Consolas"}
+                        ),
+                        html.Span(
+                            node_emoji, style={"margin-right": "3px", "font-size": "10px", "font-family": "Consolas"}
+                        ),
+                        html.Strong(
+                            issues_text, style={"color": "#ffc107", "font-size": "10px", "font-family": "Consolas"}
+                        ),
+                    ],
+                    style={"margin-right": "10px"},
+                )
+            )
+
+        # Deployments 3 columns
+        deployment_list = list(deployments.items())
+        per_col = len(deployment_list) // 3 + (1 if len(deployment_list) % 3 != 0 else 0)
+        col1 = deployment_list[:per_col]
+        col2 = deployment_list[per_col : per_col * 2]
+        col3 = deployment_list[per_col * 2 :]
+
+        def build_col(items: list[tuple[str, dict]]) -> list:
+            column_items: list = []
+            for dep_name, dep_data in items:
+                dep_meta = dep_data.get("deployment_meta", ("0/0/0", "gray"))
+                pods = dep_data.get("pods", [])
+                status_text, status_color = dep_meta
+                dep_emoji = (
+                    "🟢"
+                    if status_color == "green"
+                    else ("🟡" if status_color == "yellow" else ("🔴" if status_color == "red" else "⚪"))
+                )
+                pod_items = []
+                # Concise: hide pods if deployment is green and all pods are Running
+                all_pods_green = bool(pods) and all(p.get("status") == "Running" for p in pods)
+                show_pods = not (self.CONCISE_TOGGLE and status_color == "green" and all_pods_green)
+                if show_pods:
+                    for pod in pods:
+                        node_number = pod.get("node_number", -1)
+                        node_emoji = f"{node_number}️⃣" if 1 <= node_number <= 9 else "❓"
+                        status_letter = (pod.get("status") or "U")[0].upper()
+                        pod_items.append(
+                            html.Div(
+                                [
+                                    html.Span(
+                                        node_emoji,
+                                        style={"margin-right": "3px", "font-size": "10px", "font-family": "Consolas"},
+                                    ),
+                                    html.Span(
+                                        pod.get("name", "Unknown"),
+                                        style={"margin-right": "3px", "font-size": "10px", "font-family": "Consolas"},
+                                    ),
+                                    html.Strong(
+                                        status_letter,
+                                        style={
+                                            "color": pod.get("status_color", "#6c757d"),
+                                            "font-weight": "bold",
+                                            "font-size": "10px",
+                                            "font-family": "Consolas",
+                                        },
+                                    ),
+                                ],
+                                style={"margin-left": "15px", "margin-bottom": "1px"},
+                            )
+                        )
+                column_items.append(
+                    html.Div(
+                        [
+                            html.Div(
+                                [
+                                    html.Span(
+                                        dep_emoji,
+                                        style={"margin-right": "3px", "font-size": "10px", "font-family": "Consolas"},
+                                    ),
+                                    html.Strong(
+                                        dep_name,
+                                        style={"margin-right": "3px", "font-size": "11px", "font-family": "Consolas"},
+                                    ),
+                                    html.Span(
+                                        status_text,
+                                        style={"color": "#6c757d", "font-size": "10px", "font-family": "Consolas"},
+                                    ),
+                                ],
+                                style={"margin-bottom": "2px"},
+                            ),
+                            html.Div(pod_items),
+                        ],
+                        style={"margin-bottom": "5px"},
+                    )
+                )
+            return column_items
+
+        col1_items = build_col(col1)
+        col2_items = build_col(col2)
+        col3_items = build_col(col3)
+
+        return html.Div(
+            [
+                html.Div(node_items, style={"margin-bottom": "8px"}),
+                html.Div(
+                    [
+                        html.Div(
+                            col1_items,
+                            style={
+                                "width": "33.33%",
+                                "float": "left",
+                                "padding-right": "5px",
+                                "box-sizing": "border-box",
+                            },
+                        ),
+                        html.Div(
+                            col2_items,
+                            style={
+                                "width": "33.33%",
+                                "float": "left",
+                                "padding-right": "5px",
+                                "box-sizing": "border-box",
+                            },
+                        ),
+                        html.Div(col3_items, style={"width": "33.33%", "float": "left", "box-sizing": "border-box"}),
+                    ],
+                    style={"width": "100%", "overflow": "hidden"},
+                ),
+            ],
+            style={
+                "border": "1px solid #e9ecef",
+                "border-radius": "8px",
+                "padding": "8px",
+                "background-color": "#ffffff",
+            },
+        )
+
+    def _setup_layout(self):
+        """Setup the application layout"""
+        self.app.layout = html.Div(
+            [
+                # Main container: multiple rows (log + status)
+                html.Div(
+                    [
+                        html.Div(
+                            id="rows-display",
+                            style={
+                                "width": "100%",
+                                "box-sizing": "border-box",
+                                "max-height": "70vh",
+                                "overflowY": "auto",
+                                "scrollBehavior": "smooth",
+                            },
+                        ),
+                        dcc.Store(id="scroll-anchor"),
+                        dcc.Store(id="new-log-trigger", data=None),
+                    ],
+                    style={"width": "100%", "overflow": "hidden", "margin-bottom": "20px"},
+                ),
+                # Footer area
+                html.Div(
+                    [
+                        html.P(
+                            "© 2025 SREGym Dashboard - xlab, UIUC",
+                            style={"text-align": "center", "color": "#6c757d", "margin": "0", "padding": "10px"},
+                        )
+                    ],
+                    style={
+                        "background-color": "#f8f9fa",
+                        "border-top": "1px solid #e9ecef",
+                        "margin-top": "20px",
+                        "min-height": "40px",
+                        "display": "flex",
+                        "align-items": "center",
+                        "justify-content": "center",
+                    },
+                ),
+                # Timer component
+                dcc.Interval(id="interval-component", interval=3000, n_intervals=0),  # Update every 3 seconds
+            ],
+            style={
+                "font-family": "Arial, sans-serif",
+                "margin": "0",
+                "padding": "20px",
+                "background-color": "#ffffff",
+                "min-height": "100vh",
+            },
+        )
+
+    def _setup_callbacks(self):
+        """Setup the application callbacks"""
+
+        # Auto-scroll rows container to bottom only when new log arrives
+        self.app.clientside_callback(
+            ClientsideFunction(namespace="utils", function_name="scrollToBottom"),
+            Output("scroll-anchor", "data"),
+            Input("new-log-trigger", "data"),
+        )
+
+        @self.app.callback(
+            [Output("rows-display", "children"), Output("new-log-trigger", "data")],
+            Input("interval-component", "n_intervals"),
+            State("rows-display", "children"),
+        )
+        def update_rows(n, current_children):
+            """Concurrency-safe render: build from server state only, ignore current_children."""
+            # Always fetch realtime cluster state once per tick
+            # If another invocation is updating, skip this tick to avoid piling up
+            if self._state_lock.locked():
+                return dash.no_update, None
+            print(f"<<<<<<<<<< Try update rows: {n}, children: {len(current_children) if current_children else 0}")
+
+            # Collect realtime cluster data outside of lock (can be slow)
+
+            # Try to enter critical section without blocking
+            if not self._state_lock.acquire(blocking=False):
+                return dash.no_update, None
+            try:
+
+                realtime_state = self._collect_cluster_data(self.namespace)
+                # Drain all pending logs under the state lock to preserve ordering
+                new_logs = self._drain_log_queue()
+                print(
+                    f"<<<<<<<<<< Entered critical section, Fetched New logs: {len(new_logs)}, children: {len(current_children) if current_children else 0}"
+                )
+                # No new logs: refresh only the live row if exists
+                if not new_logs:
+                    if self.latest_log is not None:
+                        latest_row = html.Div(
+                            [
+                                html.Div(
+                                    self._render_log_block(self.latest_log),
+                                    style={
+                                        "width": "50%",
+                                        "float": "left",
+                                        "padding": "4px",
+                                        "box-sizing": "border-box",
+                                    },
+                                ),
+                                html.Div(
+                                    self._render_status_block(realtime_state),
+                                    style={
+                                        "width": "50%",
+                                        "float": "left",
+                                        "padding": "4px",
+                                        "box-sizing": "border-box",
+                                    },
+                                ),
+                            ],
+                            style={"width": "100%", "overflow": "hidden"},
+                        )
+                        children = list(self.history_rows)
+                        children.append(latest_row)
+                        return children, None
+                    # No latest log yet, just return history
+                    print(f"<<<<<<<<<< No latest log yet, just return history")
+                    return list(self.history_rows), None
+
+                # New logs arrived: snapshot cluster state as the checkpoint for this batch
+                snapshot_state = realtime_state
+
+                # If there was a previous latest log, push it to history using its checkpoint
+                if self.latest_log is not None and self.latest_ckpt_state is not None:
+                    if self.latest_log.get("type") == "SPLIT":
+                        self.history_rows.append(self._render_split_line())
+                    else:
+                        self.history_rows.append(
+                            html.Div(
+                                [
+                                    html.Div(
+                                        self._render_log_block(self.latest_log),
+                                        style={
+                                            "width": "50%",
+                                            "float": "left",
+                                            "padding": "4px",
+                                            "box-sizing": "border-box",
+                                        },
+                                    ),
+                                    html.Div(
+                                        self._render_status_block(self.latest_ckpt_state),
+                                        style={
+                                            "width": "50%",
+                                            "float": "left",
+                                            "padding": "4px",
+                                            "box-sizing": "border-box",
+                                        },
+                                    ),
+                                ],
+                                style={"width": "100%", "overflow": "hidden", "margin-bottom": "6px"},
+                            )
+                        )
+
+                # Push all but the newest drained logs into history using the batch snapshot
+                if len(new_logs) > 1:
+                    for queued_log in new_logs[:-1]:
+                        if queued_log.get("type") == "SPLIT":
+                            self.history_rows.append(self._render_split_line())
+                        else:
+                            self.history_rows.append(
+                                html.Div(
+                                    [
+                                        html.Div(
+                                            self._render_log_block(queued_log),
+                                            style={
+                                                "width": "50%",
+                                                "float": "left",
+                                                "padding": "4px",
+                                                "box-sizing": "border-box",
+                                            },
+                                        ),
+                                        html.Div(
+                                            self._render_status_block(snapshot_state),
+                                            style={
+                                                "width": "50%",
+                                                "float": "left",
+                                                "padding": "4px",
+                                                "box-sizing": "border-box",
+                                            },
+                                        ),
+                                    ],
+                                    style={"width": "100%", "overflow": "hidden", "margin-bottom": "6px"},
+                                )
+                            )
+
+                # Update latest pointers with the newest log in this batch
+                self.latest_log = new_logs[-1]
+                self.latest_ckpt_state = snapshot_state
+
+                # Build the new latest row with real-time state on the right
+                latest_row = html.Div(
+                    [
+                        html.Div(
+                            self._render_log_block(self.latest_log),
+                            style={"width": "50%", "float": "left", "padding": "4px", "box-sizing": "border-box"},
+                        ),
+                        html.Div(
+                            self._render_status_block(realtime_state),
+                            style={"width": "50%", "float": "left", "padding": "4px", "box-sizing": "border-box"},
+                        ),
+                    ],
+                    style={"width": "100%", "overflow": "hidden"},
+                )
+
+                children = list(self.history_rows)
+                children.append(latest_row)
+                print(f"<<<<<<<<<< now children list has: {len(children)}")
+                return children, True
+            finally:
+                self._state_lock.release()
+
+    def get_log_history(self):
+        """Get the complete log history"""
+        return self.log_history
+
+    def clear_log_history(self):
+        """Clear the log history"""
+        self.log_history = []
+
+    def run(self, threaded=False):
+        """Start the dashboard server"""
+        print(f"Starting SREGym Dashboard on {self.host}:{self.port}")
+        in_main_thread = threading.current_thread() is threading.main_thread()
+        if threaded or not in_main_thread:
+            # When running in a thread, disable debug reloader and signals
+            self.app.run(
+                debug=False,
+                host=self.host,
+                port=self.port,
+                use_reloader=False,
+                # dev_tools_silence_routes_logging=True,
+                threaded=True,
+            )
+        else:
+            # Main thread: allow normal debug behavior
+            # Disable reloader so Ctrl-C cleanly stops the server
+            self.app.run(
+                debug=self.debug,
+                host=self.host,
+                port=self.port,
+                use_reloader=False,
+                threaded=True,
+                # dev_tools_silence_routes_logging=True,
+            )
+
+
+if __name__ == "__main__":
+    # Create and run the dashboard server
+    dashboard = SREGymDashboardServer(host="127.0.0.1", port=11451, debug=True)
+    dashboard.run()
diff --git a/dashboard/proxy.py b/dashboard/proxy.py
new file mode 100644
index 0000000..5d66dee
--- /dev/null
+++ b/dashboard/proxy.py
@@ -0,0 +1,97 @@
+from logging import Handler
+import requests
+import re
+from dashboard.dashboard_app import DASHBOARD_URL
+from datetime import datetime
+from typing import Dict, Any
+
+class LogProxy(Handler):
+    # This proxy is used to proxy the logs to the dashboard
+    
+    def __init__(self):
+        super().__init__()
+        self.dashboard_url = DASHBOARD_URL.rstrip('/')
+        self.log_endpoint = f"{self.dashboard_url}/api/logs"
+
+    def emit(self, record):
+        """
+        Parse log record and send to dashboard
+        
+        Expected log format: "[SORT] xxxxxxxxxxxx"
+        """
+        try:
+            # Get the log message
+            log_message = self.format(record)
+            
+            # Parse the log message
+            parsed_log = self._parse_log_message(log_message, record)
+            
+            # Send to dashboard
+            self._send_to_dashboard(parsed_log)
+            
+        except Exception as e:
+            # Avoid infinite recursion by not logging errors
+            print(f"LogProxy error: {e}")
+
+    def _parse_log_message(self, log_message: str, record) -> Dict[str, Any]:
+        """
+        Parse log message in format "[SORT] xxxxxxxxxxxx"
+        
+        Returns:
+            Dict with keys: timestamp, location, sort, content
+        """
+        # Extract timestamp from record
+        timestamp = datetime.fromtimestamp(record.created).strftime('%Y-%m-%d %H:%M:%S')
+        
+        # Extract location (filename:line number)
+        location = f"{record.filename}:{record.lineno}"
+        
+        # Parse the log message for [SORT] pattern
+        sort_match = re.match(r'\[([^\]]+)\]\s*(.*)', log_message, re.DOTALL)
+        
+        if sort_match:
+            sort = sort_match.group(1).strip()
+            content = sort_match.group(2).strip()
+        else:
+            # If no [SORT] pattern found, use record level as sort
+            sort = record.levelname
+            content = log_message
+        
+        return {
+            'timestamp': timestamp,
+            'location': location,
+            'sort': sort,
+            'content': content
+        }
+
+    def _send_to_dashboard(self, log_data: Dict[str, Any]):
+        """
+        Send parsed log data to dashboard via HTTP POST
+        """
+        try:
+            response = requests.post(
+                self.log_endpoint,
+                json=log_data,
+                timeout=1.0  # Short timeout to avoid blocking
+            )
+            response.raise_for_status()
+        except requests.exceptions.RequestException:
+            # Silently fail to avoid infinite logging loops
+            pass
+
+
+# Example usage:
+# import logging
+# from dashboard.proxy import LogProxy
+# 
+# logger = logging.getLogger('my_app')
+# logger.setLevel(logging.INFO)
+# 
+# # Add LogProxy handler
+# log_proxy = LogProxy(dashboard_url='http://0.0.0.0:8050')
+# logger.addHandler(log_proxy)
+# 
+# # Now log messages in format "[SORT] content" will be sent to dashboard
+# logger.info("[STAGE] Application starting up")
+# logger.error("[ERROR] Database connection failed")
+        
\ No newline at end of file
diff --git a/kind/.dockerignore b/kind/.dockerignore
new file mode 100644
index 0000000..42061c0
--- /dev/null
+++ b/kind/.dockerignore
@@ -0,0 +1 @@
+README.md
\ No newline at end of file
diff --git a/kind/Dockerfile b/kind/Dockerfile
new file mode 100644
index 0000000..ee83ec3
--- /dev/null
+++ b/kind/Dockerfile
@@ -0,0 +1,4 @@
+FROM kindest/node:v1.32.1
+
+# Install udev and related packages
+RUN apt-get update && apt-get install -y udev socat
\ No newline at end of file
diff --git a/kind/README.md b/kind/README.md
new file mode 100644
index 0000000..b69f16e
--- /dev/null
+++ b/kind/README.md
@@ -0,0 +1,162 @@
+# Building your own image
+
+This document provides detailed, step-by-step instructions for building your own kind image to deploy SREGym.
+
+---
+
+## Table of Contents
+
+- [Overview](#overview)
+- [System Compatibility](#system-compatibility)
+- [Prerequisites](#prerequisites)
+  - [WSL2 and Ubuntu Setup](#wsl2-and-ubuntu-setup)
+  - [Install Docker](#install-docker)
+  - [Install kind](#install-kind)
+  - [Install kubectl](#install-kubectl)
+  - [Install Helm](#install-helm)
+- [Deployment Steps](#deployment-steps)
+  - [1. Build the Custom KIND Image](#1-build-the-custom-kind-image)
+  - [2. (Optional) Push the Image to Dockerhub](#2-optional-push-the-image-to-dockerhub)
+  - [3. Create a kind Kubernetes Cluster](#4-create-a-kind-kubernetes-cluster)
+- [Troubleshooting](#troubleshooting)
+- [Conclusion](#conclusion)
+
+---
+
+## **Overview**
+SREGym is deployed using **containerized components** and Kubernetes manifests. This guide provides a step-by-step deployment process, covering:
+
+- Setting up **WSL2 (Windows Subsystem for Linux) or native Ubuntu 24.04**.
+- Installing **Docker, kind, kubectl, Helm, Lua, Luarocks, and Luasocket**.
+- Building a custom **kind image** and deploying SREGym into a **local Kubernetes cluster**.
+
+---
+
+## **System Compatibility**
+This setup has been successfully verified on the following environments:
+1. **WSL2 Ubuntu**  
+   ```
+   Linux Warrens-Laptop 5.15.167.4-microsoft-standard-WSL2 #1 SMP Tue Nov 5 00:21:55 UTC 2024 x86_64 GNU/Linux
+   ```
+2. **Ubuntu 24.04 LTS (Cloud/Local Machine)**  
+   ```
+   Linux ubuntu-s-4vcpu-8gb-sfo3-01 6.8.0-52-generic #53-Ubuntu SMP PREEMPT_DYNAMIC Sat Jan 11 00:06:25 UTC 2025 x86_64 GNU/Linux
+   ```
+
+---
+
+## **Prerequisites**
+
+### **WSL2 and Ubuntu Setup**
+Ensure that WSL2 is enabled on Windows and Ubuntu is installed. Follow the official [Microsoft WSL guide](https://learn.microsoft.com/en-us/windows/wsl/install).
+
+
+### **Install Docker**
+Docker is required to run Kubernetes and containers. Install Docker Desktop for WSL2 if using WSL2 Ubuntu, follow the [official Docker WSL documentation](https://docs.docker.com/desktop/wsl/).
+
+For native Ubuntu, install Docker using the following commands, follow the [official Docker installation guide](https://docs.docker.com/engine/install/ubuntu/).
+
+### **Install kind**
+Install kind (Kubernetes IN Docker) to create a local Kubernetes cluster:
+```bash
+curl -Lo ./kind https://kind.sigs.k8s.io/dl/v0.27.0/kind-linux-amd64
+chmod +x ./kind
+sudo mv ./kind /usr/local/bin/kind
+```
+
+For more installation options and documentation, see [kind documentation](https://kind.sigs.k8s.io/docs/user/quick-start/).
+### **Install kubectl**
+Install **kubectl** to interact with Kubernetes clusters:
+```bash
+sudo apt-get update
+# apt-transport-https may be a dummy package; if so, you can skip that package
+sudo apt-get install -y apt-transport-https ca-certificates curl gnupg
+
+# If the folder `/etc/apt/keyrings` does not exist, it should be created before the curl command, read the note below.
+# sudo mkdir -p -m 755 /etc/apt/keyrings
+curl -fsSL https://pkgs.k8s.io/core:/stable:/v1.32/deb/Release.key | sudo gpg --dearmor -o /etc/apt/keyrings/kubernetes-apt-keyring.gpg
+sudo chmod 644 /etc/apt/keyrings/kubernetes-apt-keyring.gpg # allow unprivileged APT programs to read this keyring
+
+# This overwrites any existing configuration in /etc/apt/sources.list.d/kubernetes.list
+echo 'deb [signed-by=/etc/apt/keyrings/kubernetes-apt-keyring.gpg] https://pkgs.k8s.io/core:/stable:/v1.32/deb/ /' | sudo tee /etc/apt/sources.list.d/kubernetes.list
+sudo chmod 644 /etc/apt/sources.list.d/kubernetes.list   # helps tools such as command-not-found to work correctly
+
+sudo apt-get update
+sudo apt-get install -y kubectl
+```
+
+For further guidance, refer to [kubectl linux installation docs](https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/).
+
+### Install Helm
+
+Install Helm to manage Kubernetes applications:
+
+```bash
+curl https://baltocdn.com/helm/signing.asc | gpg --dearmor | sudo tee /usr/share/keyrings/helm.gpg > /dev/null
+sudo apt-get install apt-transport-https --yes
+echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/helm.gpg] https://baltocdn.com/helm/stable/debian/ all main" | sudo tee /etc/apt/sources.list.d/helm-stable-debian.list
+sudo apt-get update
+sudo apt-get install helm
+```
+
+For more information, see the [Helm installation guide](https://helm.sh/docs/intro/install/).
+
+---
+
+## Deployment Steps
+
+### 1. Build the Custom KIND Image
+
+The Dockerfile in this directory is designed specifically for Ubuntu running under WSL2 (amd64). **Please refer to this Dockerfile** to build an image that is compatible with your own machine 
+
+Build the custom image using:
+
+```bash
+docker build -t your_dockerhub_username/aiopslab-kind:latest -f kind/Dockerfile .
+```
+> **Note:** Replace `your_dockerhub_username` with your Docker Hub account if pushing the image.
+
+### 2. (Optional) Push the Image to Dockerhub
+
+If you wish to publish your custom image and have it referenced by the kind configuration file, push it to Docker Hub:
+
+```bash
+docker push your_dockerhub_username/aiopslab-kind:latest
+```
+
+Remember to update the `kind-config.yaml` file with your image name if you are using your own published image.
+
+
+After finishing cluster creation, proceed to the next "Update config.yml" step.
+
+---
+
+## **Troubleshooting**
+
+- **Docker Issues:**  
+  Ensure Docker is running within your WSL2 environment. Verify with `docker ps` to list running containers.
+
+- **Cluster Creation Failures:**  
+  Check that Docker is correctly installed and that your system has enough resources (CPU, memory). Examine the output of `kind export logs <cluster-name>` for details.
+
+- **Deployment Problems:**  
+  Use `kubectl logs <pod-name>` to view pod logs and diagnose application issues. Make sure that your `kind-config.yaml` file references the correct image.
+
+- **Resource Allocation:**  
+  WSL2 may require additional resources. Adjust the WSL2 settings in your `.wslconfig` file on Windows if you encounter performance issues.
+
+- **Deployment Timeout Issues (Slow Network):**  
+  If you have a slow local network connection, first-time deployments may timeout while pulling container images. Increase the timeout in your `.env` file:
+  
+  ```bash
+  WAIT_FOR_POD_READY_TIMEOUT=1800  # 30 minutes (recommended for slow networks)
+  ```
+  
+  Subsequent deployments are faster since images are cached. Remote clusters typically don't need this adjustment.
+
+---
+
+## **Conclusion**
+This guide covers deploying **SREGym** on **both WSL2 and Ubuntu 24.04**, ensuring compatibility across different environments. By following these steps, you can successfully set up **Docker, kind, and Kubernetes** and deploy the SREGym application.
+
+For advanced configurations, refer to the [SREGym documentation](https://github.com/SREGym/SREGym). 🚀
diff --git a/kind/kind-config-arm.yaml b/kind/kind-config-arm.yaml
new file mode 100644
index 0000000..d243730
--- /dev/null
+++ b/kind/kind-config-arm.yaml
@@ -0,0 +1,29 @@
+kind: Cluster
+apiVersion: kind.x-k8s.io/v1alpha4
+# uncomment below content to enable nodes to pull images from our exclusive docker registry
+#containerdConfigPatches:
+#  - |
+#    [plugins."io.containerd.grpc.v1.cri".registry.mirrors."docker.io"]
+#      endpoint = ["http://128.105.144.30:5000"]
+nodes:
+  - role: control-plane
+    image: jacksonarthurclark/aiopslab-kind-arm:latest
+    extraMounts:
+      - hostPath: /run/udev
+        containerPath: /run/udev
+  - role: worker
+    image: jacksonarthurclark/aiopslab-kind-arm:latest
+    extraMounts:
+      - hostPath: /run/udev
+        containerPath: /run/udev
+  - role: worker
+    image: jacksonarthurclark/aiopslab-kind-arm:latest
+    extraMounts:
+      - hostPath: /run/udev
+        containerPath: /run/udev
+  - role: worker
+    image: jacksonarthurclark/aiopslab-kind-arm:latest
+    extraMounts:
+      - hostPath: /run/udev
+        containerPath: /run/udev
+      
\ No newline at end of file
diff --git a/kind/kind-config-x86.yaml b/kind/kind-config-x86.yaml
new file mode 100644
index 0000000..9d54b49
--- /dev/null
+++ b/kind/kind-config-x86.yaml
@@ -0,0 +1,29 @@
+kind: Cluster
+apiVersion: kind.x-k8s.io/v1alpha4
+# uncomment below content to enable nodes to pull images from our exclusive docker registry
+#containerdConfigPatches:
+#  - |
+#    [plugins."io.containerd.grpc.v1.cri".registry.mirrors."docker.io"]
+#      endpoint = ["http://128.105.144.30:5000"]
+nodes:
+  - role: control-plane
+    image: jacksonarthurclark/aiopslab-kind-x86:latest
+    extraMounts:
+      - hostPath: /run/udev
+        containerPath: /run/udev
+  - role: worker
+    image: jacksonarthurclark/aiopslab-kind-x86:latest
+    extraMounts:
+      - hostPath: /run/udev
+        containerPath: /run/udev
+  - role: worker
+    image: jacksonarthurclark/aiopslab-kind-x86:latest
+    extraMounts:
+      - hostPath: /run/udev
+        containerPath: /run/udev
+  - role: worker
+    image: jacksonarthurclark/aiopslab-kind-x86:latest
+    extraMounts:
+      - hostPath: /run/udev
+        containerPath: /run/udev
+      
\ No newline at end of file
diff --git a/logger/__init__.py b/logger/__init__.py
new file mode 100644
index 0000000..ffc96ed
--- /dev/null
+++ b/logger/__init__.py
@@ -0,0 +1,78 @@
+import logging
+import os
+from .handler import ExhaustInfoFormatter, ColorFormatter
+from logging import Formatter
+from datetime import datetime
+from dashboard.proxy import LogProxy
+
+
+def get_current_datetime_formatted():
+    now = datetime.now()
+    formatted_datetime = now.strftime("%m-%d_%H-%M")
+    return formatted_datetime
+
+def init_logger():
+    # set up the logger for dashboard
+    logging.getLogger('sregym-global').setLevel(logging.INFO)
+    logging.getLogger('sregym-global').addHandler(LogProxy())
+    logging.getLogger('sregym-global').propagate = False # do not propagate to the real root logger ('')
+    
+    # set up the logger for log file
+    root_logger = logging.getLogger('all')
+    root_logger.setLevel(logging.DEBUG)
+    root_logger.propagate = False # do not propagate to the real root logger ('')
+    
+    timestamp = get_current_datetime_formatted()
+    # create dir and file
+    path = f'./logs/sregym_{timestamp}.log'
+    os.makedirs('./logs', exist_ok=True)
+    
+    handler = logging.FileHandler(path)
+    # add code line and filename and function name
+    handler.setFormatter(ExhaustInfoFormatter(fmt='%(asctime)s - %(levelname)s - %(name)s - %(message)s - %(filename)s:%(funcName)s:%(lineno)d', datefmt='%Y-%m-%d %H:%M:%S', extra_attributes=["sol", "result", "Full Prompt", "Tool Calls"]))
+    handler.setLevel(logging.DEBUG)
+    root_logger.addHandler(handler)
+    
+    
+    std_handler = logging.StreamHandler()
+    std_handler.setFormatter(ColorFormatter(fmt='%(levelname)s - %(name)s - %(message)s', datefmt='%Y-%m-%d %H:%M:%S', style='%'))
+    std_handler.setLevel(logging.INFO)
+    root_logger.addHandler(std_handler)
+    
+    unify_third_party_loggers()
+    silent_litellm_loggers()
+    silent_httpx_loggers()
+    silent_FastMCP_loggers()
+    
+def silent_paramiko_loggers():
+    # make the paramiko logger silent
+    logging.getLogger('paramiko').setLevel(logging.WARNING) # throttle the log source
+    
+def silent_FastMCP_loggers():
+    # make the FastMCP logger silent
+    logging.getLogger('mcp').setLevel(logging.WARNING)
+    
+def silent_litellm_loggers():
+    verbose_proxy_logger = logging.getLogger("LiteLLM Proxy")
+    verbose_router_logger = logging.getLogger("LiteLLM Router")
+    verbose_logger = logging.getLogger("LiteLLM")
+    verbose_proxy_logger.setLevel(logging.WARNING)
+    verbose_router_logger.setLevel(logging.WARNING)
+    verbose_logger.setLevel(logging.WARNING)
+    
+def silent_httpx_loggers():
+    httpx_logger = logging.getLogger("httpx")
+    httpx_logger.setLevel(logging.WARNING)
+
+def unify_third_party_loggers():
+    # make the info level third party loggers (e.g. paramiko) have the common formatter
+    logging.getLogger('')
+    # get the handler
+    handlers = logging.getLogger('').handlers
+    if handlers:
+        for handler in handlers:
+            handler.setFormatter(ColorFormatter(fmt='%(levelname)s - %(name)s - %(message)s', datefmt='%Y-%m-%d %H:%M:%S', style='%'))
+    else:
+        print("No handler found for root logger")
+        
+# silent uvicorn: main.py:96
\ No newline at end of file
diff --git a/logger/handler.py b/logger/handler.py
new file mode 100644
index 0000000..20aff62
--- /dev/null
+++ b/logger/handler.py
@@ -0,0 +1,42 @@
+import logging
+
+class ExhaustInfoFormatter(logging.Formatter):
+    
+    def __init__(self, fmt=None, datefmt=None, style='%', extra_attributes=[]):
+        super().__init__(fmt, datefmt, style)
+        self.base_format_string = fmt
+        self.extra_attributes = extra_attributes
+
+    def format(self, record):
+        # 1. Execute parent class format() method to get base formatted log string
+        # This step handles standard fields like %(asctime)s, %(levelname)s, %(message)s
+        base_log_message = super().format(record)
+        
+        # 2. Find all non-standard (i.e., extra) fields
+        extra_fields = {key: value for key, value in record.__dict__.items() if key in self.extra_attributes}
+
+        # 3. Build extra fields append string
+        extra_output = ""
+        if extra_fields:
+            # Format extra fields as 'key1=value1, key2=value2, ...' form
+            extra_parts = [f"{key} = {value}" for key, value in extra_fields.items()]
+            extra_output = " [" + ", ".join(extra_parts) + "]"
+        
+        # 4. Return base message and appended extra string
+        return base_log_message + extra_output
+    
+class ColorFormatter(logging.Formatter):
+    def __init__(self, fmt=None, datefmt=None, style='%'):
+        super().__init__(fmt, datefmt, style)
+        
+    def format(self, record):
+        base_log_message = super().format(record)
+        if record.levelno == logging.DEBUG: #white
+            return base_log_message
+        elif record.levelno == logging.INFO: #blue
+            return f"\033[94m{base_log_message}\033[0m"
+        elif record.levelno == logging.WARNING: #yellow
+            return f"\033[92m{base_log_message}\033[0m"
+        elif record.levelno == logging.ERROR: #red
+            return f"\033[95m{base_log_message}\033[0m"
+        return base_log_message
diff --git a/main.py b/main.py
new file mode 100644
index 0000000..d56609b
--- /dev/null
+++ b/main.py
@@ -0,0 +1,289 @@
+import argparse
+import asyncio
+import csv
+import logging
+import multiprocessing
+import os
+import sys
+import threading
+import time
+from datetime import datetime
+
+import uvicorn
+from rich.console import Console
+
+from dashboard.dashboard_app import SREGymDashboardServer
+from dashboard.proxy import LogProxy
+from logger import init_logger
+from mcp_server.configs.load_all_cfg import mcp_server_cfg
+from mcp_server.sregym_mcp_server import app as mcp_app
+from sregym.agent_launcher import AgentLauncher
+from sregym.agent_registry import get_agent, list_agents
+from sregym.conductor.conductor import Conductor
+from sregym.conductor.conductor_api import request_shutdown, run_api
+from sregym.conductor.constants import StartProblemResult
+
+LAUNCHER = AgentLauncher()
+
+
+def get_current_datetime_formatted():
+    now = datetime.now()
+    formatted_datetime = now.strftime("%m-%d_%H-%M")
+    return formatted_datetime
+
+
+def driver_loop(conductor: Conductor, problem_filter: str = None, use_external_harness: bool = False):
+    """
+    Deploy each problem and wait for HTTP grading via POST /submit.
+    Returns a list of flattened dicts with results per problem.
+
+    Args:
+        conductor: The Conductor instance
+        problem_filter: Optional problem ID to run. If specified, only this problem will be run.
+        use_external_harness: If True, inject fault and exit without running evaluation logic.
+    """
+
+    async def driver():
+        console = Console()
+        # give the API a moment to bind
+        await asyncio.sleep(1)
+        agents_to_start = list_agents()
+        all_results = []
+        for agent_name in agents_to_start.keys():
+            console.log(f"Starting agent now: {agent_name}")
+            conductor.register_agent(agent_name)
+            all_results_for_agent = []
+
+            # Get all problem IDs and filter if needed
+            problem_ids = conductor.problems.get_problem_ids()
+            if problem_filter:
+                if problem_filter not in problem_ids:
+                    console.log(
+                        f"⚠️  Problem '{problem_filter}' not found in registry. Available problems: {problem_ids}"
+                    )
+                    sys.exit(1)
+                problem_ids = [problem_filter]
+                console.log(f"🎯 Running single problem: {problem_filter}")
+
+            for pid in problem_ids:
+                console.log(f"\n🔍 Starting problem: {pid}")
+
+                conductor.problem_id = pid
+
+                result = await conductor.start_problem()
+                if result == StartProblemResult.SKIPPED_KHAOS_REQUIRED:
+                    console.log(f"⏭️  Skipping problem '{pid}': requires Khaos but running on emulated cluster")
+                    continue
+
+                # If using external harness, fault is injected - exit now
+                if use_external_harness:
+                    console.log(f"✅ Fault injected for problem '{pid}'. Exiting for external harness.")
+                    return []
+
+                if not use_external_harness:
+                    reg = get_agent(agent_name)
+                    if reg:
+                        await LAUNCHER.ensure_started(reg)
+
+                # Poll until grading completes
+                while conductor.submission_stage != "done":
+                    await asyncio.sleep(1)
+
+                console.log(f"✅ Completed {pid}: results={conductor.results}")
+
+                snapshot = {"problem_id": pid}
+                for stage, outcome in conductor.results.items():
+                    if isinstance(outcome, dict):
+                        for k, v in outcome.items():
+                            snapshot[f"{stage}.{k}"] = v
+                    else:
+                        snapshot[stage] = outcome
+                all_results_for_agent.append(snapshot)
+
+                fieldnames = sorted({key for row in all_results_for_agent for key in row.keys()})
+                current_date_time = get_current_datetime_formatted()
+                csv_path = f"{agent_name}_{current_date_time}_arena_{pid}_results.csv"
+                with open(csv_path, "w", newline="") as csvfile:
+                    writer = csv.DictWriter(csvfile, fieldnames=fieldnames)
+                    writer.writeheader()
+                    writer.writerows(all_results_for_agent)
+                print(f"✅ Problem {pid} for agent {agent_name} complete! Results written to {csv_path}")
+            entry_for_agent = {agent_name: all_results_for_agent}
+            all_results.append(entry_for_agent)
+
+        return all_results
+
+    return asyncio.run(driver())
+
+
+def start_mcp_server_after_api():
+    # Small delay so the main API binds first (avoid port races if clients hit MCP immediately)
+    time.sleep(1.0)
+
+    host = "0.0.0.0" if mcp_server_cfg.expose_server else "127.0.0.1"
+    port = mcp_server_cfg.mcp_server_port
+
+    config = uvicorn.Config(
+        app=mcp_app,
+        host=host,
+        port=port,
+        log_level="info",
+    )
+    # IMPORTANT: we're not in the main thread
+    config.install_signal_handlers = False
+
+    server = uvicorn.Server(config)
+    # This call blocks *this* thread; it's fine because we're daemonizing the thread
+    server.run()
+
+
+def _run_driver_and_shutdown(conductor: Conductor, problem_filter: str = None, use_external_harness: bool = False):
+    """Run the benchmark driver, stash results, then tell the API to exit."""
+    results = driver_loop(conductor, problem_filter=problem_filter, use_external_harness=use_external_harness)
+    setattr(main, "results", results)
+    # ⬇️ Ask the API server (running in main thread) to stop so we can write CSV
+    request_shutdown()
+
+
+def run_dashboard_server():
+    """Entry point for multiprocessing child: construct Dash in child process."""
+    # Silence child process stdout/stderr to prevent output from being printed
+    import logging
+    import os
+    import sys
+
+    # Redirect stdout and stderr to devnull
+    try:
+        sys.stdout = open(os.devnull, "w")
+        sys.stderr = open(os.devnull, "w")
+    except Exception:
+        pass
+
+    # Also silence logging output
+    logging.getLogger("werkzeug").setLevel(logging.ERROR)
+    logging.getLogger("dash").setLevel(logging.ERROR)
+
+    # Create and run the dashboard server
+    server = SREGymDashboardServer(host="127.0.0.1", port=11451, debug=False)
+    server.run(threaded=False)
+
+
+def start_dashboard_process():
+    """Start the dashboard server in a separate process and return the process object."""
+    # Set multiprocessing start method to 'spawn' for better cross-platform compatibility
+    try:
+        multiprocessing.set_start_method("spawn", force=True)
+    except RuntimeError:
+        # Already set, ignore
+        pass
+
+    # Start dashboard in a separate process
+    dashboard_process = None
+    try:
+        dashboard_process = multiprocessing.Process(
+            target=run_dashboard_server,
+            name="dashboard-server",
+            daemon=True,  # Daemon process will be terminated when main process exits
+        )
+        dashboard_process.start()
+        # Give dashboard a moment to start up
+        time.sleep(2)
+    except Exception as e:
+        print(f"⚠️  Failed to start dashboard server: {e}", file=sys.stderr)
+
+    return dashboard_process
+
+
+def main():
+    # Parse command-line arguments
+    parser = argparse.ArgumentParser(description="Run SREGym benchmark suite")
+    parser.add_argument(
+        "--problem",
+        type=str,
+        default=None,
+        help="Run only a specific problem by its ID (e.g., 'target_port')",
+    )
+    parser.add_argument(
+        "--use-external-harness", action="store_true", help="For use in external harnesses, deploy the fault and exit."
+    )
+    args = parser.parse_args()
+
+    # set up the logger
+    init_logger()
+
+    # Start dashboard in a separate process
+    dashboard_process = None
+    if not args.use_external_harness:
+        dashboard_process = start_dashboard_process()
+
+    conductor = Conductor()
+
+    # Start the driver in the background; it will call request_shutdown() when finished
+    driver_thread = threading.Thread(
+        target=_run_driver_and_shutdown,
+        args=(conductor, args.problem, args.use_external_harness),
+        name="driver",
+        daemon=True,
+    )
+    driver_thread.start()
+
+    # Start the MCP server in the background (lets the main thread run the Conductor API)
+    if not args.use_external_harness:  # No need for MCP if using external harness
+        mcp_thread = threading.Thread(
+            target=start_mcp_server_after_api,
+            name="mcp-server",
+            daemon=True,
+        )
+        mcp_thread.start()
+
+    # Start the Conductor HTTP API in the MAIN thread (blocking)
+    try:
+        run_api(conductor)
+    except KeyboardInterrupt:
+        # If interrupted, still try to shut down cleanly
+        request_shutdown()
+    finally:
+        # Give driver a moment to finish setting results
+        driver_thread.join(timeout=5)
+
+        # Terminate dashboard process gracefully if it's still running
+        if dashboard_process is not None and dashboard_process.is_alive() and not args.use_external_harness:
+            try:
+                # Send SIGTERM to allow graceful shutdown (triggers _export_on_exit)
+                dashboard_process.terminate()
+                # Give dashboard time to export trace data (export can take a few seconds)
+                dashboard_process.join(timeout=5)
+                # Force kill only if still alive after graceful shutdown timeout
+                if dashboard_process.is_alive():
+                    print("⚠️  Dashboard process did not exit gracefully, forcing termination...", file=sys.stderr)
+                    dashboard_process.kill()
+                    dashboard_process.join(timeout=1)
+            except Exception as e:
+                print(f"⚠️  Error terminating dashboard process: {e}", file=sys.stderr)
+
+    # When API shuts down, collect results from driver
+    results = getattr(main, "results", [])
+
+    if results:
+        aggregated = {}
+        for entry in results:
+            for agent_name, agent_rows in entry.items():
+                aggregated.setdefault(agent_name, []).extend(agent_rows)
+
+        for agent_name, agent_results in aggregated.items():
+            fieldnames = sorted({key for row in agent_results for key in row.keys()})
+            current_date_time = get_current_datetime_formatted()
+            csv_path = f"{current_date_time}_{agent_name}_ALL_results.csv"
+            with open(csv_path, "w", newline="") as csvfile:
+                writer = csv.DictWriter(csvfile, fieldnames=fieldnames)
+                writer.writeheader()
+                writer.writerows(agent_results)
+            print(f"✅ Benchmark complete! Results for {agent_name} written to {csv_path}")
+    else:
+        print("⚠️ No results to write.")
+
+    sys.exit(0)
+
+
+if __name__ == "__main__":
+    main()
diff --git a/mcp_server/__init__.py b/mcp_server/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/mcp_server/configs/__init__.py b/mcp_server/configs/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/mcp_server/configs/kubectl_session_cfg.py b/mcp_server/configs/kubectl_session_cfg.py
new file mode 100644
index 0000000..23a53c3
--- /dev/null
+++ b/mcp_server/configs/kubectl_session_cfg.py
@@ -0,0 +1,14 @@
+from pydantic import BaseModel, Field
+
+
+class KubectlSessionCfg(BaseModel):
+    """ kubectl tool session config"""
+    session_cache_size: int = Field(
+        description="Max size of the session cache",
+        gt=100,
+    )
+
+    session_ttl: int = Field(
+        description="Time to live after last time session access (in seconds)",
+        gt=30,
+    )
diff --git a/mcp_server/configs/kubectl_tool_cfg.py b/mcp_server/configs/kubectl_tool_cfg.py
new file mode 100644
index 0000000..195b901
--- /dev/null
+++ b/mcp_server/configs/kubectl_tool_cfg.py
@@ -0,0 +1,75 @@
+from pydantic import BaseModel, Field, field_validator
+from pathlib import Path
+import os
+import logging
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger("all.mcp.kubectl_tool_cfg")
+
+parent_parent_dir = Path(__file__).resolve().parent.parent
+output_parent_dir = parent_parent_dir / "data"
+
+
+class KubectlToolCfg(BaseModel):
+    retry_wait_time: float = Field(
+        default=60,
+        description="Seconds to wait between retries.",
+        gt=0
+    )
+
+    forbid_unsafe_commands: bool = Field(
+        default=False,
+        description="Forbid unsafe commands in the rollback tool.",
+    )
+
+    verify_dry_run: bool = Field(
+        default=False,
+        description="Enable verification of dry run results after real running.",
+    )
+
+    # Update "default" with session id if using remote mcp server
+    # If you see default dir, something went wrong.
+    output_dir: str = Field(
+        default=str(output_parent_dir / "default"),
+        description="Directory to store some data used by kubectl server."
+    )
+
+    namespace: str = Field(
+        default="",
+        description="Kubernetes namespace to use for the agent.",
+    )
+
+    use_rollback_stack: bool = Field(
+        default=True,
+        description="Enable rollback stack for the rollback tool.",
+    )
+
+    """ Rollback Tool Configuration """
+    validate_rollback: bool = Field(
+        default=False,
+        description="Enable generation of validation information",
+    )
+
+    clear_replicaset: bool = Field(
+        default=True,
+        description="Enable clearing of replicaset after rolling back deployment.",
+    )  # Warning: This part may be harmful to the system. Use with caution.
+
+    clear_rs_wait_time: float = Field(
+        default=5,
+        description="Seconds to wait before clearing replicaset.",
+    )
+
+    @field_validator("output_dir")
+    @classmethod
+    def validate_output_dir(cls, v):
+        output_dir = v
+        if not os.path.exists(output_dir):
+            logger.debug(f"creating output directory {v}")
+            os.makedirs(output_dir, exist_ok=True)
+        else:
+            logger.debug(f"Directory {v} exists already")
+
+        if not os.access(output_dir, os.W_OK):
+            raise PermissionError(f"Output directory {output_dir} is not writable.")
+        return output_dir
diff --git a/mcp_server/configs/load_all_cfg.py b/mcp_server/configs/load_all_cfg.py
new file mode 100644
index 0000000..373f346
--- /dev/null
+++ b/mcp_server/configs/load_all_cfg.py
@@ -0,0 +1,49 @@
+import os
+
+from dotenv import load_dotenv
+
+from mcp_server.configs.kubectl_session_cfg import KubectlSessionCfg
+from mcp_server.configs.mcp_server_cfg import McpServerCfg
+
+load_dotenv()
+
+
+def str_to_bool(s: str) -> bool:
+    """
+    Convert a string to a boolean value.
+
+    True values: 'true', '1', 'yes', 'y', 'on'
+    False values: 'false', '0', 'no', 'n', 'off'
+
+    Raises:
+        ValueError: if the string does not represent a boolean.
+
+    Args:
+        s (str): The string to convert.
+
+    Returns:
+        bool: The converted boolean value.
+    """
+    if not isinstance(s, str):
+        raise TypeError("Input must be a string.")
+
+    true_values = {"true", "1", "yes", "y", "on"}
+    false_values = {"false", "0", "no", "n", "off"}
+
+    s_lower = s.strip().lower()
+    if s_lower in true_values:
+        return True
+    elif s_lower in false_values:
+        return False
+    else:
+        raise ValueError(f"Invalid literal for boolean: '{s}'")
+
+
+mcp_server_cfg = McpServerCfg(
+    mcp_server_port=int(os.getenv("MCP_SERVER_PORT", "9954")),
+    expose_server=str_to_bool(os.getenv("EXPOSE_SERVER", "False")),
+)
+
+kubectl_session_cfg = KubectlSessionCfg(
+    session_cache_size=int(os.getenv("SESSION_CACHE_SIZE", "10000")), session_ttl=int(os.getenv("SESSION_TTL", "600"))
+)
diff --git a/mcp_server/configs/mcp_server_cfg.py b/mcp_server/configs/mcp_server_cfg.py
new file mode 100644
index 0000000..68e6b82
--- /dev/null
+++ b/mcp_server/configs/mcp_server_cfg.py
@@ -0,0 +1,16 @@
+import os
+
+from dotenv import load_dotenv
+from pydantic import BaseModel, Field
+
+
+class McpServerCfg(BaseModel):
+    """ mcp server config"""
+    mcp_server_port: int = Field(
+        description="port number of mcp server",
+        gt=0,
+    )
+
+    expose_server: bool = Field(
+        description="If true, will use 0.0.0.0 for arg host otherwise use 127.0.0.0"
+    )
diff --git a/mcp_server/example.txt b/mcp_server/example.txt
new file mode 100644
index 0000000..95d09f2
--- /dev/null
+++ b/mcp_server/example.txt
@@ -0,0 +1 @@
+hello world
\ No newline at end of file
diff --git a/mcp_server/jaeger_server.py b/mcp_server/jaeger_server.py
new file mode 100644
index 0000000..f385f0c
--- /dev/null
+++ b/mcp_server/jaeger_server.py
@@ -0,0 +1,139 @@
+import logging
+import os
+from datetime import datetime, timedelta
+
+from fastmcp import FastMCP
+
+from mcp_server.utils import ObservabilityClient
+
+logger = logging.getLogger("all.mcp.jaeger_server")
+logger.info("Starting Jaeger MCP Server")
+mcp = FastMCP("Jaeger MCP Server")
+
+
+@mcp.tool(name="get_services")
+def get_services() -> str:
+    """Retrieve the list of service names from the Grafana instance.
+
+    Args:
+
+    Returns:
+        str: String of a list of service names available in Grafana or error information.
+    """
+
+    logger.debug("[ob_mcp] get_services called, getting jaeger services")
+    jaeger_url = os.environ.get("JAEGER_BASE_URL", None)
+    if jaeger_url is None:
+        err_msg = "JAEGER_BASE_URL environment variable is not set!"
+        logger.error(err_msg)
+        raise RuntimeError(err_msg)
+    jaeger_client = ObservabilityClient(jaeger_url)
+    try:
+        url = f"{jaeger_url}/api/services"
+        response = jaeger_client.make_request("GET", url)
+        logger.debug(f"[ob_mcp] get_services status code: {response.status_code}")
+        logger.debug(f"[ob_mcp] get_services result: {response}")
+        logger.debug(f"[ob_mcp] result: {response.json()}")
+        services = str(response.json()["data"])
+        return services if services else "None"
+    except Exception as e:
+        err_str = f"[ob_mcp] Error querying get_services: {str(e)}"
+        logger.error(err_str)
+        return err_str
+
+
+@mcp.tool(name="get_operations")
+def get_operations(service: str) -> str:
+    """Query available operations for a specific service from the Grafana instance.
+
+    Args:
+        service (str): The name of the service whose operations should be retrieved.
+
+    Returns:
+        str: String of a list of operation names associated with the specified service or error information.
+    """
+
+    logger.debug("[ob_mcp] get_operations called, getting jaeger operations")
+    jaeger_url = os.environ.get("JAEGER_BASE_URL", None)
+    if jaeger_url is None:
+        err_msg = "JAEGER_BASE_URL environment variable is not set!"
+        logger.error(err_msg)
+        raise RuntimeError(err_msg)
+    jaeger_client = ObservabilityClient(jaeger_url)
+    try:
+        url = f"{jaeger_url}/api/operations"
+        params = {"service": service}
+        response = jaeger_client.make_request("GET", url, params=params)
+        logger.debug(f"[ob_mcp] get_operations: {response.status_code}")
+        operations = str(response.json()["data"])
+        return operations if operations else "None"
+    except Exception as e:
+        err_str = f"[ob_mcp] Error querying get_operations: {str(e)}"
+        logger.error(err_str)
+        return err_str
+
+
+@mcp.tool(name="get_traces")
+def get_traces(service: str, last_n_minutes: int) -> str:
+    """Get Jaeger traces for a given service in the last n minutes.
+
+    Args:
+        service (str): The name of the service for which to retrieve trace data.
+        last_n_minutes (int): The time range (in minutes) to look back from the current time.
+
+    Returns:
+        str: String of Jaeger traces or error information
+    """
+
+    logger.debug("[ob_mcp] get_traces called, getting jaeger traces")
+    jaeger_url = os.environ.get("JAEGER_BASE_URL", None)
+    if jaeger_url is None:
+        err_msg = "JAEGER_BASE_URL environment variable is not set!"
+        logger.error(err_msg)
+        raise RuntimeError(err_msg)
+    jaeger_client = ObservabilityClient(jaeger_url)
+    try:
+        url = f"{jaeger_url}/api/traces"
+        start_time = datetime.now() - timedelta(minutes=last_n_minutes)
+        start_time = int(start_time.timestamp() * 1_000_000)
+        end_time = int(datetime.now().timestamp() * 1_000_000)
+        logger.debug(f"[ob_mcp] get_traces start_time: {start_time}, end_time: {end_time}")
+        params = {
+            "service": service,
+            "start": start_time,
+            "end": end_time,
+            "limit": 20,
+        }
+        response = jaeger_client.make_request("GET", url, params=params)
+        logger.debug(f"[ob_mcp] get_traces: {response.status_code}")
+        traces = str(response.json()["data"])
+        return traces if traces else "None"
+    except Exception as e:
+        err_str = f"[ob_mcp] Error querying get_traces: {str(e)}"
+        logger.error(err_str)
+        return err_str
+
+
+@mcp.tool(name="get_dependency_graph")
+def get_dependency_graph(last_n_minutes: int = 30) -> str:
+    """
+    Get service dependency graph from Jaeger's native dependencies API.
+    Args:
+        last_n_minutes (int): The time range (in minutes) to look back from the current time.
+    Returns:
+        str: JSON object representing the dependency graph.
+    """
+    jaeger_url = os.environ.get("JAEGER_BASE_URL")
+    if not jaeger_url:
+        raise RuntimeError("JAEGER_BASE_URL environment variable is not set!")
+
+    client = ObservabilityClient(jaeger_url)
+    end_time = int(datetime.now().timestamp() * 1000)
+    start_time = int((datetime.now() - timedelta(minutes=last_n_minutes)).timestamp() * 1000)
+
+    url = f"{jaeger_url}/api/dependencies"
+    params = {"endTs": end_time, "lookback": last_n_minutes * 60 * 1000}
+
+    response = client.make_request("GET", url, params=params)
+    logger.info(f"[ob_mcp] get_dependency_graph: {response.status_code}")
+    return str(response.json())
diff --git a/mcp_server/kubectl_mcp_tools.py b/mcp_server/kubectl_mcp_tools.py
new file mode 100644
index 0000000..c1e82a6
--- /dev/null
+++ b/mcp_server/kubectl_mcp_tools.py
@@ -0,0 +1,108 @@
+import logging
+
+from fastmcp import Context, FastMCP
+from yarl import URL
+
+from clients.stratus.stratus_utils.get_logger import get_logger
+from mcp_server.configs.load_all_cfg import kubectl_session_cfg
+from mcp_server.kubectl_server_helper.kubectl_tool_set import KubectlToolSet
+from mcp_server.kubectl_server_helper.sliding_lru_session_cache import SlidingLRUSessionCache
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger("all.mcp.kubectl_mcp_tools")
+
+sessionCache = SlidingLRUSessionCache(
+    max_size=kubectl_session_cfg.session_cache_size, ttl_seconds=kubectl_session_cfg.session_ttl
+)
+
+logger = get_logger()
+
+kubectl_mcp = FastMCP("Kubectl MCP Server")
+logger.info("Starting Kubectl MCP Server")
+
+
+def extract_session_id(ctx: Context):
+    """
+    Use this function to get the session id of the request
+    First use custom session id.
+    """
+    ssid = ctx.request_context.request.headers.get("sregym_ssid")
+    if ssid is None:
+        str_url = str(ctx.request_context.request.url)
+        url = URL(str_url)
+        ssid = url.query.get("session_id")
+    return ssid
+
+
+def get_tools(session_id: str) -> KubectlToolSet:
+    """
+    Get the tools related with session_id. If no
+    tools, create a new one for this session.
+    """
+    tool = sessionCache.get(session_id)
+    if tool is not None:
+        return tool
+
+    logger.debug(f"Creating a new kubectl tool for session {session_id}.")
+    tool = KubectlToolSet(session_id)
+    sessionCache[session_id] = tool
+    return tool
+
+
+@kubectl_mcp.tool()
+def exec_kubectl_cmd_safely(cmd: str, ctx: Context) -> str:
+    """
+    Use this function to execute kubectl commands.
+    Args:
+        cmd: The command you want to execute in a CLI to
+        manage a k8s cluster. It should start with "kubectl".
+        ctx: If you are an agent, you can safely ignore this
+        argument.
+    Returns:
+        The result of trying to execute cmd.
+    """
+    ssid = extract_session_id(ctx)
+    kubctl_tool = get_tools(ssid)
+    logger.debug(f'session {ssid} is using tool "exec_kubectl_cmd_safely"; Command: {cmd}.')
+    result = kubctl_tool.cmd_runner.exec_kubectl_cmd_safely(cmd)
+    assert isinstance(result, str)
+    return result
+
+
+@kubectl_mcp.tool()
+def rollback_command(ctx: Context) -> str:
+    """
+    Use this function to roll back the last kubectl command
+    you successfully executed with the "exec_kubectl_cmd_safely" tool.
+    Args:
+        ctx: If you are an agent, you can safely ignore this
+        argument.
+    Returns:
+        The result of trying to roll back the last kubectl command.
+    """
+    ssid = extract_session_id(ctx)
+    kubectl_tool = get_tools(ssid)
+    logger.debug(f'session {ssid} is using tool "rollback_command".')
+    result = kubectl_tool.rollback_tool.rollback()
+    assert isinstance(result, str)
+    return f"{result}, action_stack: {kubectl_tool.rollback_tool.action_stack}"
+
+
+@kubectl_mcp.tool()
+def get_previous_rollbackable_cmd(ctx: Context) -> str:
+    """
+    Use this function to get a list of commands you
+    previously executed that could be roll-backed.
+
+    Returns:
+        Text content that shows a list of commands you
+        previously executed that could be roll-backed.
+        When you call rollback_command tool multiple times,
+        you will roll-back previous commands in the order
+        of the returned list.
+    """
+    ssid = extract_session_id(ctx)
+    kubctl_tool = get_tools(ssid)
+    logger.debug(f'session {ssid} is using tool "get_previous_rollbackable_cmd".')
+    cmds = kubctl_tool.rollback_tool.get_previous_rollbackable_cmds()
+    return "\n".join([f"{i + 1}. {cmd}" for i, cmd in enumerate(cmds)])
diff --git a/mcp_server/kubectl_server_helper/__init__.py b/mcp_server/kubectl_server_helper/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/mcp_server/kubectl_server_helper/action_stack.py b/mcp_server/kubectl_server_helper/action_stack.py
new file mode 100644
index 0000000..1b66f8f
--- /dev/null
+++ b/mcp_server/kubectl_server_helper/action_stack.py
@@ -0,0 +1,51 @@
+import logging
+
+from mcp_server.kubectl_server_helper.rollback_tool import RollbackNode
+
+logging.basicConfig(
+    level=logging.INFO,
+    format="%(asctime)s - %(name)s - %(levelname)s - %(message)s",
+    handlers=[
+        # logging.FileHandler("action_stack.log"),
+        logging.StreamHandler()  # This will output to console too
+    ],
+)
+
+
+class ActionStack:
+    def __init__(self):
+        self.stack = []
+
+    def push(self, node: RollbackNode):
+        """Push a new action onto the stack."""
+        self.stack.append(node)
+        logging.info(f"Pushed action onto stack: {node}")
+
+    def pop(self):
+        """Pop the last action from the stack (for rollback)."""
+        if self.stack:
+            logging.info(f"Popped action from stack: {self.stack[-1]}")
+
+        return self.stack.pop() if self.stack else None
+
+    def peek(self):
+        """View the last action without removing it."""
+        return self.stack[-1] if self.stack else None
+
+    def clear(self):
+        """Clear the entire stack."""
+        self.stack = []
+
+    def __str__(self) -> str:
+        if not self.stack:
+            return "ActionStack: [Empty]"
+
+        result = ["ActionStack:"]
+        for i, node in enumerate(reversed(self.stack)):
+            index = len(self.stack) - i - 1
+            result.append(f"  [{index}] {node}")
+
+        return "\n".join(result)
+
+    def __repr__(self) -> str:
+        return self.__str__()
diff --git a/mcp_server/kubectl_server_helper/cmd_category.py b/mcp_server/kubectl_server_helper/cmd_category.py
new file mode 100644
index 0000000..1921176
--- /dev/null
+++ b/mcp_server/kubectl_server_helper/cmd_category.py
@@ -0,0 +1,78 @@
+kubectl_safe_commands = [
+    "kubectl annotate",
+    "kubectl api-resources",
+    "kubectl api-version",
+    "kubectl attach",
+    "kubectl auth",
+    "kubectl cluster-info",
+    "kubectl completion",
+    "kubectl describe",
+    "kubectl diff",
+    "kubectl drain",
+    "kubectl events",
+    "kubectl explain",
+    "kubectl expose",
+    "kubectl get",
+    "kubectl logs",
+    "kubectl options",
+    "kubectl top",
+    "kubectl version",
+]
+
+kubectl_unsafe_commands = [
+    "kubectl apply",
+    "kubectl autoscale",
+    "kubectl certificate",
+    "kubectl config",
+    "kubectl cordon",
+    "kubectl cp",
+    "kubectl create",
+    "kubectl delete",
+    # exec likely needs special consideration, since it *could* be interactive if they did exec /bin/bash
+    "kubectl exec",
+    "kubectl kustomize",
+    "kubectl label",
+    "kubectl patch",
+    "kubectl plugins",
+    "kubectl port-forward",
+    "kubectl proxy",
+    "kubectl replace",
+    "kubectl rollout",
+    "kubectl run",
+    "kubectl scale",
+    "kubectl set",
+    "kubectl uncordon",
+    "kubectl taint",
+]
+
+# Interactive commands like edit and debug don't work with our agent
+kubectl_unsupported_commands = [
+    "kubectl debug",
+    "kubectl edit",
+    "kubectl wait",
+    "kubectl proxy",  # This will keep running
+    "kubectl port-forward",  # This will keep running
+    "kubectl cp",  # Should not support file based operations
+]
+
+# Commands that support dry-run
+kubectl_dry_run_commands = [
+    "kubectl annotate",
+    "kubectl drain",
+    "kubectl expose",
+    "kubectl apply",
+    "kubectl autoscale",
+    "kubectl cordon",
+    "kubectl create",
+    "kubectl delete",
+    "kubectl label",
+    "kubectl patch",
+    "kubectl replace",
+    "kubectl run",
+    "kubectl scale",
+    "kubectl set",
+    "kubectl rollout undo",
+    "kubectl uncordon",
+    "kubectl taint",
+    "kubectl auth reconcile",
+]
diff --git a/mcp_server/kubectl_server_helper/kubectl.py b/mcp_server/kubectl_server_helper/kubectl.py
new file mode 100644
index 0000000..cdac364
--- /dev/null
+++ b/mcp_server/kubectl_server_helper/kubectl.py
@@ -0,0 +1,183 @@
+"""Interface to K8S controller service."""
+
+import logging
+import re
+import shlex
+import subprocess  # nosec B404
+from enum import Enum
+
+import bashlex
+from kubernetes import config
+from pydantic.dataclasses import dataclass
+
+from mcp_server.kubectl_server_helper.utils import parse_text
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+
+class DryRunStatus(Enum):
+    SUCCESS = "SUCCESS"
+    NOEFFECT = "NOEFFECT"
+    ERROR = "ERROR"
+
+
+@dataclass
+class DryRunResult:
+    status: DryRunStatus
+    description: str
+    result: list[str]
+
+
+class KubeCtl:
+
+    def __init__(self):
+        """Initialize the KubeCtl object and load the Kubernetes configuration."""
+        config.load_kube_config()
+        # self.core_v1_api = client.CoreV1Api()
+        # self.apps_v1_api = client.AppsV1Api()
+
+    @staticmethod
+    def exec_command(command: str, input_data=None):
+        """Execute an arbitrary kubectl command."""
+        if input_data is not None:
+            input_data = input_data.encode("utf-8")
+        try:
+            out = subprocess.run(command, shell=True, check=True, capture_output=True, input=input_data)  # nosec B602
+            out.stdout = out.stdout.decode("utf-8")
+            out.stderr = out.stderr.decode("utf-8")
+            return out
+        except subprocess.CalledProcessError as e:
+            e.stderr = e.stderr.decode("utf-8")
+            return e
+
+    @staticmethod
+    def exec_command_result(command: str, input_data=None) -> str:
+        result = KubeCtl.exec_command(command, input_data)
+        if result.returncode == 0:
+            logger.info(f"Command execution:\n{parse_text(result.stdout, 500)}")
+            return result.stdout
+        else:
+            logger.error(f"Error executing kubectl command:\n{result.stderr}")
+            return f"Error executing kubectl command:\n{result.stderr}"
+
+    @staticmethod
+    def extract_namespace_from_command(command: str) -> str:
+        """
+        Returns the namespace.
+        """
+        namespace = None
+        command_parts = list(bashlex.split(command))
+        for i, part in enumerate(command_parts):
+            if part == "-n" or part == "--namespace":
+                if i + 1 < len(command_parts):
+                    namespace = command_parts[i + 1]
+                    break
+            elif part.startswith("--namespace="):
+                namespace = part.split("=")[1]
+                break
+        return namespace
+
+    @staticmethod
+    def insert_flags(command: str, flags=str | list[str]) -> str:
+        """
+        Insert flags into a kubectl command.
+        Args:
+            command (str | list[str]): The kubectl command to modify.
+            flags (str | list[str]): The flags to insert into the command.
+        Returns:
+            str | list[str]: The modified kubectl command with the flags inserted.
+                             The type is the same as the input command.
+        """
+        flags_parsed = shlex.join(flags) if isinstance(flags, list) else flags
+
+        position = None
+        last_word = None
+
+        def traverse_AST(node):
+            if node.kind == "word":
+                nonlocal position
+                nonlocal last_word
+                if position is None:
+                    if node.word == "--":
+                        position = node.pos
+                    if node.word == "-" and last_word is not None and last_word.word == "-f":
+                        position = last_word.pos
+                last_word = node
+            if hasattr(node, "parts"):
+                for part in node.parts:
+                    traverse_AST(part)
+
+        for parts in bashlex.parse(command):
+            traverse_AST(parts)
+
+        if position is None:
+            return command + " " + flags_parsed
+        else:
+            position = position[0]
+            return command[:position] + " " + flags_parsed + " " + command[position:]
+
+    @staticmethod
+    def dry_run_json_output(command: str, keylist: list[str] | str | None = None) -> DryRunResult:
+        """ """
+        dry_run_arguments = ["--dry-run=server"]
+
+        if isinstance(keylist, list) and len(keylist) != 0:
+            keylist = list(map(lambda x: f"{{{x}}}", keylist))
+            jsonpath = "$".join(keylist)
+            dry_run_arguments.extend(["-o", f"jsonpath='[[[{jsonpath}]]]'"])
+        elif isinstance(keylist, str):
+            # This case is for kubectl delete, which only supports:
+            #   kubectl delete <resource> <name> -o name
+            dry_run_arguments.extend(["-o", keylist])
+
+        dry_run_command = KubeCtl.insert_flags(command, dry_run_arguments)
+        dry_run_result = subprocess.run(dry_run_command, shell=True, capture_output=True, text=True)  # nosec B602
+
+        if dry_run_result.returncode == 0:
+            if len(dry_run_result.stdout.strip()) == 0:
+                return DryRunResult(
+                    status=DryRunStatus.NOEFFECT,
+                    description="The dry-run output is empty. Possibly this command won't affect any resources.",
+                    result=[],
+                )
+
+            if isinstance(keylist, list) and len(keylist) != 0:
+                resource = re.search(r"\[\[\[(.*?)\]\]\]", dry_run_result.stdout, re.DOTALL)
+                if resource is None:
+                    raise RuntimeError("Unhandled dry-run output format.")
+                resource = resource.group(1).strip()
+                if resource.count("$") + 1 != len(keylist):
+                    raise RuntimeError(f"Invalid resource format in dry-run output. {resource}")
+                resources = [r.strip() for r in resource.split("$")]
+            elif isinstance(keylist, str):
+                resources = [r.strip() for r in dry_run_result.stdout.split("/")]
+                if len(resources) != 2:
+                    raise RuntimeError(f"Invalid resource format in dry-run output. {dry_run_result.stdout}")
+            else:
+                resources = [dry_run_result.stdout]
+
+            return DryRunResult(
+                status=DryRunStatus.SUCCESS,
+                description="Dry run executed successfully.",
+                result=resources,
+            )
+        else:
+            if "error: unknown flag: --dry-run" in dry_run_result.stderr:
+                return DryRunResult(
+                    status=DryRunStatus.NOEFFECT,
+                    description="Dry-run not supported. Possibly it's a safe command.",
+                    result=[],
+                )
+            elif "can't be used with attached containers options" in dry_run_result.stderr:
+                return DryRunResult(
+                    status=DryRunStatus.ERROR,
+                    description="Interactive command is not supported.",
+                    result=[],
+                )
+            else:
+                return DryRunResult(
+                    status=DryRunStatus.ERROR,
+                    description=f"Dry-run failed. Potentially it's an invalid command. stderr: {parse_text(dry_run_result.stderr, 200)}",
+                    result=[],
+                )
diff --git a/mcp_server/kubectl_server_helper/kubectl_cmd_runner.py b/mcp_server/kubectl_server_helper/kubectl_cmd_runner.py
new file mode 100644
index 0000000..83bc2fc
--- /dev/null
+++ b/mcp_server/kubectl_server_helper/kubectl_cmd_runner.py
@@ -0,0 +1,269 @@
+import hashlib
+import logging
+import os
+import time
+
+import bashlex
+
+from mcp_server.configs.kubectl_tool_cfg import KubectlToolCfg
+from mcp_server.kubectl_server_helper.cmd_category import kubectl_safe_commands, kubectl_unsupported_commands
+from mcp_server.kubectl_server_helper.kubectl import DryRunResult, DryRunStatus, KubeCtl
+from mcp_server.kubectl_server_helper.rollback_tool import RollbackCommand, RollbackNode, RollbackTool
+from mcp_server.kubectl_server_helper.utils import cleanup_kubernetes_yaml, parse_text
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger("all.mcp.kubectl_cmd_runner")
+
+
+class KubectlCmdRunner:
+    def __init__(self, config: KubectlToolCfg, action_stack=None):
+        self.action_stack = action_stack
+        self.config = config
+
+    def exec_kubectl_cmd_safely(self, command: str) -> str:
+        try:
+            if not command.strip().startswith("kubectl"):
+                return "Command Rejected: Only kubectl commands are allowed. Please check the command and try again."
+
+            self._check_kubectl_command(command)
+
+            dry_run_result = KubeCtl.dry_run_json_output(command)
+
+            if self.config.forbid_unsafe_commands and not self._is_kubectl_command_safe(command):
+                return "Command Rejected: Unsafe command detected. Please check the command and try again."
+
+            logger.debug(f"Dry-run result: {dry_run_result.status}, description: {dry_run_result.description}")
+
+            if dry_run_result.status == DryRunStatus.NOEFFECT:
+                result = self._execute_kubectl_command(command)
+            elif dry_run_result.status == DryRunStatus.ERROR:
+                result = dry_run_result.description
+
+                if self.config.verify_dry_run and "Interactive command" not in dry_run_result.description:
+                    # Warning: This is only for testing purposes. It may execute malicious commands.
+                    exception_triggered = False
+                    try:
+                        self._execute_kubectl_command(command)
+                    except Exception as _:  # noqa F841
+                        exception_triggered = True
+
+                    if not exception_triggered:
+                        logger.error("Dry-run verification failed (ERROR case)")
+
+                return result
+            elif dry_run_result.status == DryRunStatus.SUCCESS:
+                if self.config.use_rollback_stack:
+                    rollback_command = self._gen_rollback_commands(command, dry_run_result)
+
+                if self.config.verify_dry_run:
+                    try:
+                        result = self._execute_kubectl_command(command)
+                    except Exception as e:
+                        logger.error(f"Dry-run verification failed (SUCCESS case): {e}")
+                        raise e
+                else:
+                    result = self._execute_kubectl_command(command)
+
+                if self.config.use_rollback_stack:
+                    self.action_stack.push(rollback_command)
+            else:
+                raise ValueError(f"Unknown dry run status: {dry_run_result.status}")
+            return parse_text(result)
+        except ValueError as ve:
+            logger.error(f"Command Rejected (ValueError): {ve}")
+            return f"Command Rejected (ValueError): {ve}"
+        except Exception as exc:
+            logger.error(f"Command Rejected: {exc}")
+            return f"Command Rejected: {exc}"
+
+    def _check_kubectl_command(self, command: str) -> None:
+        # Check interactive subcommands
+        for c in kubectl_unsupported_commands:
+            if command.startswith(c):
+                raise ValueError(f"Interactive command {c} detected. Such commands are not supported.")
+
+        tokens = bashlex.parse(command)
+        has_redirection = False
+
+        def traverse_AST(node):
+            if node.kind not in ["command", "heredoc", "redirect", "tilde", "word"]:
+                if "pipe" in node.kind:
+                    raise ValueError("Pipe commands are forbidden")
+                raise ValueError(f"Unsupported operator kind: {node.kind}")
+
+            if node.kind == "redirect":
+                if ">" in node.type:
+                    raise ValueError("Write redirection is forbidden.")
+                nonlocal has_redirection
+                if "<" in node.type:
+                    has_redirection = True
+
+            parts = 1 if node.kind == "command" else 0
+            if hasattr(node, "parts"):
+                parts += sum(traverse_AST(part) for part in node.parts)
+
+            if parts > 1:
+                raise ValueError("Compound commands are forbidden.")
+
+            return parts
+
+        # Check unsupported operators
+        for part in tokens:
+            traverse_AST(part)
+
+        # Check interactive flags
+        parts = list(bashlex.split(command))
+        for i, part in enumerate(parts):
+            if part in ["--interactive", "-i", "--tty", "-t", "--stdin", "-it"]:
+                raise ValueError(
+                    f"Interactive flag detected: {part}. Such commands are not supported. "
+                    f"Try to use the command non-interactively."
+                )
+            if command.startswith("kubectl logs -f"):
+                raise ValueError(
+                    f"Interactive flag detected: -f. Such commands are not supported. "
+                    f"Try to use the command non-interactively."
+                )
+
+            if part in ["-f", "--filename"] and i + 1 < len(parts) and parts[i + 1] == "-":
+                if not has_redirection:
+                    raise ValueError("Stdin redirected but no input file provided.")
+
+            if part == "--":
+                break
+
+    def _is_kubectl_command_safe(self, command: str) -> bool:
+        for c in kubectl_safe_commands:
+            if command.startswith(c):
+                return True
+        return False
+
+    def _execute_kubectl_command(self, command: str):
+        logger.debug(f"Executing command: {command}")
+        result = KubeCtl.exec_command(command)
+        if result.returncode == 0:
+            output = parse_text(result.stdout, 1000)
+            logger.debug(f"Kubectl MCP Tool command execution:\n{output}")
+            return result.stdout
+        else:
+            logger.warning(f"Error executing kubectl command:\n{result.stderr}")
+            raise RuntimeError(f"Error executing kubectl command:\n{result.stderr}")
+
+    def _gen_rollback_commands(self, command: str, dry_run_result: DryRunResult) -> RollbackNode:
+        """Generate rollback commands based on the dry-run result."""
+
+        # We should return this before execution, since kubectl delete will remove the resource
+        return_value = None
+        full_state_file = None  # For rollback validation
+
+        state_dir = os.path.join(self.config.output_dir, "kubectl_states")
+        os.makedirs(state_dir, exist_ok=True)
+
+        timestamp = int(time.time())
+        cmd_hash = hashlib.md5(command.encode(), usedforsecurity=False).hexdigest()[:8]
+        state_file = os.path.join(state_dir, f"state_{timestamp}_{cmd_hash}.yaml")
+
+        """ Get the rollback information """
+        dry_run_stdout = dry_run_result.result[0]
+
+        namespace = KubeCtl.extract_namespace_from_command(command)
+        if namespace is None:
+            # Although should be "default"
+            namespace = self.config.namespace
+
+        # namespace flag + content
+        nsp_flag_ctnt = f"-n {namespace}" if namespace else ""
+
+        rollback_commands = []
+
+        if "created (server dry run)" in dry_run_stdout or "exposed (server dry run)" in dry_run_stdout:
+            result = KubeCtl.dry_run_json_output(command, "name")
+            rollback_commands = [
+                RollbackCommand(
+                    "command",
+                    "kubectl delete {resource_type} {resource_name} {nsp_flag_ctnt}".format(
+                        resource_type=result.result[0],
+                        resource_name=result.result[1],
+                        nsp_flag_ctnt=nsp_flag_ctnt,
+                    ),
+                )
+            ]
+        elif "deleted (server dry run)" in dry_run_stdout:
+            result = KubeCtl.dry_run_json_output(command, "name")
+            if result.result[0] == "namespace":
+                raise RuntimeError("Deleting a namespace is not allowed.")
+
+            rollback_commands = [
+                self._store_resource_state(
+                    state_file,
+                    result.result[0],
+                    result.result[1],
+                    namespace,
+                )
+            ]
+        elif "autoscaled (server dry run)" in dry_run_stdout:
+            hpa = KubeCtl.dry_run_json_output(command, "name")
+            result = KubeCtl.dry_run_json_output(command, [".spec.scaleTargetRef.kind", ".metadata.name"])
+            rollback_commands = [
+                RollbackCommand(
+                    "command",
+                    "kubectl delete {resource_type} {resource_name} {nsp_flag_ctnt}".format(
+                        resource_type=hpa.result[0],
+                        resource_name=hpa.result[1],
+                        nsp_flag_ctnt=nsp_flag_ctnt,
+                    ),
+                ),
+                self._store_resource_state(
+                    state_file,
+                    result.result[0],
+                    result.result[1],
+                    namespace,
+                ),
+            ]
+        else:
+            result = KubeCtl.dry_run_json_output(command, "name")
+            rollback_commands = [
+                self._store_resource_state(
+                    state_file,
+                    result.result[0],
+                    result.result[1],
+                    namespace,
+                )
+            ]
+
+        # Generate validation information
+        if self.config.validate_rollback:
+            time.sleep(self.config.retry_wait_time)
+            full_state_file = os.path.join(state_dir, f"validation_{timestamp}_{cmd_hash}.yaml")
+            full_state = RollbackTool.get_namespace_state(self.config.namespace)
+            full_state = cleanup_kubernetes_yaml(full_state)
+            with open(full_state_file, "w") as f:
+                f.write(full_state)
+
+        return_value = RollbackNode(action=command, rollback=rollback_commands, cluster_state=full_state_file)
+
+        logger.debug(f"Generated rollback action {rollback_commands} for '{command}'.")
+        if self.config.validate_rollback:
+            logger.debug(f"Namespace state stored in: {full_state_file}")
+
+        return return_value
+
+    def _store_resource_state(
+        self, state_file: str, resource_type: str, resource_name: str, namespace: str | None
+    ) -> RollbackCommand:
+        namespace_flag = f"-n {namespace}" if namespace else ""
+
+        if resource_name is not None:
+            state_cmd = f"kubectl get {resource_type} {resource_name} {namespace_flag} -o yaml"
+        else:
+            state_cmd = f"kubectl get {resource_type} {namespace_flag} -o yaml"
+
+        logger.debug(f"Capturing cluster state with: {state_cmd}")
+
+        cluster_state = KubeCtl.exec_command_result(state_cmd)
+
+        with open(state_file, "w") as f:
+            cleaned_state = cleanup_kubernetes_yaml(cluster_state)
+            f.write(cleaned_state)
+
+        return RollbackCommand("file", state_file)
diff --git a/mcp_server/kubectl_server_helper/kubectl_tool_set.py b/mcp_server/kubectl_server_helper/kubectl_tool_set.py
new file mode 100644
index 0000000..2c67c2b
--- /dev/null
+++ b/mcp_server/kubectl_server_helper/kubectl_tool_set.py
@@ -0,0 +1,18 @@
+from mcp_server.configs.kubectl_tool_cfg import KubectlToolCfg, output_parent_dir
+from mcp_server.kubectl_server_helper.action_stack import ActionStack
+from mcp_server.kubectl_server_helper.kubectl_cmd_runner import KubectlCmdRunner
+from mcp_server.kubectl_server_helper.rollback_tool import RollbackTool
+
+
+class KubectlToolSet:
+    def __init__(self, session_id: str):
+        self.ssid = session_id
+
+        self.config = KubectlToolCfg(output_dir=str(output_parent_dir / self.ssid))
+
+        self.action_stack = None
+        if self.config.use_rollback_stack:
+            self.action_stack = ActionStack()
+
+        self.cmd_runner = KubectlCmdRunner(self.config, self.action_stack)
+        self.rollback_tool = RollbackTool(self.config, self.action_stack)
diff --git a/mcp_server/kubectl_server_helper/rollback_tool.py b/mcp_server/kubectl_server_helper/rollback_tool.py
new file mode 100644
index 0000000..3ff45fb
--- /dev/null
+++ b/mcp_server/kubectl_server_helper/rollback_tool.py
@@ -0,0 +1,299 @@
+import logging
+import os
+import tempfile
+import time
+import traceback
+from typing import Optional
+
+import yaml
+from pydantic.dataclasses import dataclass
+
+from mcp_server.configs.kubectl_tool_cfg import KubectlToolCfg
+from mcp_server.kubectl_server_helper.kubectl import KubeCtl
+from mcp_server.kubectl_server_helper.utils import cleanup_kubernetes_yaml, parse_text
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+
+@dataclass
+class RollbackCommand:
+    command_type: str
+    content: str
+
+
+@dataclass
+class RollbackNode:
+    action: str
+    rollback: list[RollbackCommand]
+    cluster_state: str | None = None
+
+
+class RollbackTool:
+    """Tool to rollback the last agent action by popping from the stack."""
+
+    def __init__(self, config: KubectlToolCfg, action_stack):
+        self.action_stack = action_stack
+        self.config = config
+
+    def _parse_state_source(self, state_source: str) -> str:
+        yaml_content = ""
+        if os.path.exists(state_source) and os.path.isfile(state_source):
+            logger.info(f"Reading cluster state from file: {state_source}")
+            try:
+                with open(state_source, "r") as f:
+                    yaml_content = f.read()
+            except Exception as e:
+                error_msg = f"Failed to read state file: {e}"
+                logger.error(error_msg)
+                return error_msg
+        else:
+            # if state_source is direct YAML content
+            yaml_content = state_source
+
+        return yaml_content
+
+    def _restore_cluster_state(self, state_source: str) -> str:
+        """Restore cluster state from a saved YAML representation or file path."""
+        # Check if state_source is a file path
+        yaml_content = self._parse_state_source(state_source)
+
+        # Identify the type of resources
+        try:
+            resources = list(yaml.safe_load_all(yaml_content))
+        except Exception as e:
+            logger.error(f"Failed to parse YAML: {e}")
+            return self._apply_yaml_directly(yaml_content)
+
+        if len(resources) == 0:
+            return "No resources found in state YAML"
+
+        # TODO: rethink if the resources have dependencies
+        # we need to apply resources in the correct order
+        return self._apply_resources_in_order(resources, yaml_content)
+
+    def _apply_resources_in_order(self, resources, yaml_content):
+        """Apply resources in the correct order respecting dependencies."""
+        # 1. First identify and apply any CustomResourceDefinitions
+        crd_resources = []
+        regular_resources = []
+
+        for resource in resources:
+            if not isinstance(resource, dict) or "kind" not in resource:
+                continue
+
+            if resource["kind"] == "CustomResourceDefinition":
+                crd_resources.append(resource)
+            else:
+                regular_resources.append(resource)
+
+        # Apply CRDs first if any
+        if crd_resources:
+            logger.info("Applying CustomResourceDefinitions first...")
+            crd_yaml = ""
+            for crd in crd_resources:
+                crd_yaml += yaml.dump(crd) + "\n---\n"
+
+            self._apply_yaml_directly(crd_yaml)
+            # Wait for CRDs to be established
+            time.sleep(5)
+
+        # TODO: recosider this dependency order
+        # 2. Apply resources in dependency order
+        # A more advanced implementation would build a dependency graph
+        first_tier = ["Namespace", "ConfigMap", "Secret", "ServiceAccount", "Role", "RoleBinding"]
+        second_tier = ["Service", "PersistentVolumeClaim", "PersistentVolume"]
+        third_tier = ["DaemonSet", "Job", "CronJob"]
+        deployment_tier = ["Deployment", "StatefulSet"]
+
+        for tier in [first_tier, second_tier, third_tier, deployment_tier]:
+            tier_resources = [r for r in regular_resources if r.get("kind") in tier]
+            if tier_resources:
+                if tier == deployment_tier:
+                    for resource in tier_resources:
+                        self._apply_yaml_deployment(resource)
+
+                    if self.config.clear_replicaset:
+                        time.sleep(self.config.clear_rs_wait_time)
+                        for resource in tier_resources:
+                            self._clear_replicasets(resource)
+                else:
+                    tier_yaml = ""
+                    for resource in tier_resources:
+                        tier_yaml += yaml.dump(resource) + "\n---\n"
+
+                    if tier_yaml:
+                        logger.info(f"Applying {tier} resources...")
+                        self._apply_yaml_directly(tier_yaml)
+
+        remaining = [
+            r for r in regular_resources if r.get("kind") not in first_tier + second_tier + third_tier + deployment_tier
+        ]
+        if remaining:
+            remaining_yaml = ""
+            for resource in remaining:
+                remaining_yaml += yaml.dump(resource) + "\n---\n"
+
+            if remaining_yaml:
+                logger.info("Applying remaining resources...")
+                return self._apply_yaml_directly(remaining_yaml)
+
+        return "Cluster state restored successfully"
+
+    def _apply_yaml_deployment(self, yaml_content):
+        # TODO improve this using patch
+        strategy = yaml_content.get("spec", {}).get("strategy", {})
+        yaml_content["spec"]["strategy"] = {"type": "Recreate"}
+        self._apply_yaml_directly(yaml.dump(yaml_content))
+        yaml_content["spec"]["strategy"] = strategy
+        self._apply_yaml_directly(yaml.dump(yaml_content))
+
+    def _clear_replicasets(self, yaml_content):
+        namespace = yaml_content.get("metadata", {}).get("namespace", "")
+        matchlabels = yaml_content.get("spec", {}).get("selector", {}).get("matchLabels", {})
+        selector = ",".join([f"{k}={v}" for k, v in matchlabels.items()])
+
+        rs_selector = (
+            f"kubectl get rs -n {namespace} -l {selector} -o jsonpath="
+            "'{.items[?(@.status.replicas==0)].metadata.name}'"
+        )
+
+        # Actually we can delete all the replica sets here
+        # But here is the reason why we do like this:
+        #   For the new replica set, we can just preserve it.
+        #   So the 10s we wait is also useful for it being ready.
+        #   A corner case is that, the new replica set is scaled to 0.
+        #   It will be automatically recreated by K8s, and immediately be ready.
+
+        rs_list = KubeCtl.exec_command(rs_selector)
+        if rs_list.returncode == 0:
+            rs_list = rs_list.stdout.strip()
+            if rs_list == "":
+                logger.info("No ReplicaSets to clear.")
+                return
+            delete_cmd = f"kubectl delete rs {rs_list} -n {namespace}"
+            result = KubeCtl.exec_command(delete_cmd)
+            if result.returncode == 0:
+                logger.info(f"Deleted ReplicaSets: [{rs_list}]")
+            else:
+                logger.error(f"Failed to delete ReplicaSets [{rs_list}]. Stderr: {result.stderr}")
+        else:
+            logger.error(f"Failed to get ReplicaSets. Stderr: {rs_list.stderr}")
+
+    def _apply_yaml_directly(self, yaml_content):
+        """Helper method to apply YAML directly."""
+        if not yaml_content.strip():
+            return "No YAML content to apply"
+
+        with tempfile.NamedTemporaryFile(mode="w", suffix=".yaml", delete=False) as tmp:
+            tmp.write(yaml_content)
+            tmp_path = tmp.name
+
+        try:
+            restore_cmd = f"kubectl apply -f {tmp_path}"
+            result = KubeCtl.exec_command_result(restore_cmd)
+            logger.info(f"Applied YAML: {result}")
+            return result
+        except Exception as e:
+            error_msg = f"Failed to apply YAML: {e}"
+            logger.error(error_msg)
+            return error_msg
+        finally:
+            try:
+                os.remove(tmp_path)
+            except Exception as e:
+                logger.warning(f"Failed to remove temporary file {tmp_path}: {e}")
+
+    @staticmethod
+    def get_namespace_state(namespace: str | None) -> str:
+        """Capture the current state of all resources in the cluster."""
+        if namespace is None or namespace == "":
+            all_namespace_flag = "--all-namespaces"
+        else:
+            all_namespace_flag = f"-n {namespace}"
+        all_resources_command = f"kubectl get all -o yaml {all_namespace_flag}"
+        return KubeCtl.exec_command_result(all_resources_command)
+
+    def compare_states(self, current_state: str, previous_state: str) -> str:
+        import difflib
+
+        result = difflib.unified_diff(
+            previous_state.splitlines(keepends=True),
+            current_state.splitlines(keepends=True),
+            fromfile="previous_state",
+            tofile="current_state",
+        )
+        return "".join(result)
+
+    def get_previous_rollbackable_cmds(self) -> list[str]:
+        return [action.action for action in self.action_stack.stack][::-1]
+
+    def rollback(self) -> str:
+        if not hasattr(self, "action_stack") or self.action_stack is None:
+            return "Warning: Action Stack disabled. Stop rolling back."
+
+        try:
+            if hasattr(self.action_stack, "is_empty") and self.action_stack.is_empty():
+                return "No more actions to rollback."
+            last_action: Optional[RollbackNode] = self.action_stack.pop()
+
+            if last_action is not None:
+                result = []
+                for rollback in last_action.rollback:
+                    if rollback.command_type == "command":
+                        one_step_result = KubeCtl.exec_command(rollback.content)
+
+                        if one_step_result.returncode == 0:
+                            output = parse_text(one_step_result.stdout, 1000)
+                            result.append(f"Rollback command: {rollback.content}; " f"Execution result: {output}")
+                            logger.info(result[-1])
+                        else:
+                            raise RuntimeError(f"Error executing rollback command: {one_step_result.stderr}")
+
+                    elif rollback.command_type == "file":
+                        one_step_result = self._restore_cluster_state(rollback.content)
+                        result.append(
+                            f"Try to restore cluster state with file {rollback.content}. " f"Result: {one_step_result}"
+                        )
+                        logger.info(result[-1])
+                    else:
+                        raise ValueError(f"Unknown rollback type: {rollback.type}")
+
+                rollback_process_desc = (
+                    f"Rolled back the previous command: {last_action.action}.\n"
+                    f"-------------------Rollback Process:-------------------\n"
+                )
+                for i, one_step_txt in enumerate(result):
+                    rollback_process_desc += f"\nStep {i + 1}:\n{one_step_txt}\n"
+                rollback_process_desc += f"-------------------End of Rollback Process:-------------------\n"
+
+                if self.config.validate_rollback:
+                    time.sleep(self.config.retry_wait_time)
+                    current_state = RollbackTool.get_namespace_state(self.config.namespace)
+                    current_state = cleanup_kubernetes_yaml(current_state)
+                    last_state = self._parse_state_source(last_action.cluster_state)
+                    diff = self.compare_states(current_state, last_state)
+                    raw_filename = os.path.basename(last_action.cluster_state).replace("validation_", "")
+                    diff_file = os.path.join(
+                        self.config.output_dir,
+                        "rollback_validation",
+                        f"rollback_diff_{raw_filename}",
+                    )
+                    os.makedirs(os.path.dirname(diff_file), exist_ok=True)
+                    with open(diff_file, "w") as f:
+                        f.write(diff)
+                    ref_file = os.path.join(
+                        self.config.output_dir,
+                        "rollback_validation",
+                        f"rollback_ref_{raw_filename}",
+                    )
+                    with open(ref_file, "w") as f:
+                        f.write(current_state)
+
+                return rollback_process_desc
+            return "No more actions to rollback."
+
+        except Exception as e:
+            tb = "".join(traceback.format_exception(type(e), e, e.__traceback__))
+            logger.error(f"Error traceback: {tb}")
+            return f"Error during rollback: {str(e)}"
diff --git a/mcp_server/kubectl_server_helper/sliding_lru_session_cache.py b/mcp_server/kubectl_server_helper/sliding_lru_session_cache.py
new file mode 100644
index 0000000..15717d9
--- /dev/null
+++ b/mcp_server/kubectl_server_helper/sliding_lru_session_cache.py
@@ -0,0 +1,121 @@
+import logging
+import os
+import shutil
+import threading
+import time
+from collections import OrderedDict
+from pathlib import Path
+
+from mcp_server.kubectl_server_helper.kubectl_tool_set import KubectlToolSet
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+mcp_data_dir = Path(__file__).parent.parent / "data"
+
+
+class SlidingLRUSessionCache:
+    """
+    This is a container that used to hold session data of kubectl mcp tools.
+    Features:
+        Fixed max_size: evicts least recently used items
+        Sliding TTL: expiration timer is refreshed on every access
+        Thread-safe (via threading.Lock)
+        Automatic cleanup on access and insertion
+    """
+
+    def __init__(self, max_size: int, ttl_seconds: int | float):
+        self.max_size = max_size
+        self.ttl = ttl_seconds
+        self.lock = threading.RLock()
+        self.cache = OrderedDict()  # key -> (value, last_access_time)
+
+    def __getitem__(self, key) -> KubectlToolSet:
+        with self.lock:
+            self.clean_expired()
+            if key not in self.cache:
+                raise KeyError(key)
+
+            value, last_access = self.cache[key]
+            # Refresh TTL (sliding expiration)
+            logger.info(f"Accessing item with key {key}. TTL is refreshed.")
+            now = time.time()
+            self.cache.move_to_end(key)
+            self.cache[key] = (value, now)
+            return value
+
+    def __setitem__(self, key, value: KubectlToolSet):
+        with self.lock:
+            now = time.time()
+            if key in self.cache:
+                self.cache.move_to_end(key)
+            self.cache[key] = (value, now)
+
+            if self.__len__() > self.max_size:
+                to_del = next(iter(self.cache))
+                logger.info(f"Clean up LRU item with key {to_del} as maxsize is reached.")
+                self.__delitem__(to_del)  # remove LRU
+
+    def __delitem__(self, key):
+        with self.lock:
+            tool, last_access = self.cache[key]
+            self._clean_up_tool(key, tool)
+            del self.cache[key]
+
+    # length of unexpired ones
+    def __len__(self):
+        with self.lock:
+            self.clean_expired()
+            return len(self.cache)
+
+    def clean_expired(self):
+        with self.lock:
+            now = time.time()
+            to_dels = []
+            for key in self.cache:
+                value, last_access = self.cache[key]
+                if now - last_access >= self.ttl:
+                    to_dels.append(key)
+                else:
+                    # all the items behind the first unexpired shouldn't be expired either.
+                    break
+
+            for to_del in to_dels:
+                logger.info(f"Clean up expired items with key {to_del}.")
+                self.__delitem__(to_del)
+
+    def get(self, key, default=None):
+        """
+        Use this method to get tools. If the returned
+        result is None, it means the key doesn't exist.
+        """
+        try:
+            return self[key]
+        except KeyError:
+            return default
+
+    def set(self, key, value):
+        self[key] = value
+
+    def size(self):
+        return len(self)
+
+    def _clean_up_tool(self, key, tool: KubectlToolSet):
+        """
+        Clean up the directory created for the tool
+        related with the session {key}
+        """
+        opt_dir = Path(tool.config.output_dir)
+        if os.path.exists(opt_dir) and os.path.isdir(opt_dir):
+            if opt_dir.parent == mcp_data_dir:
+                logger.info(f"Tool file directory {opt_dir} of session {key} will be deleted.")
+                shutil.rmtree(opt_dir)
+            else:
+                logger.info(
+                    f"Tool file directory {opt_dir} of session {key} is not the default one. "
+                    f"For safety issues, please clean it up by yourself."
+                )
+        else:
+            logger.info(
+                f"Tool file directory {opt_dir} of session {key} does not exist when trying to clean it or "
+                f"path {opt_dir} is not a valid directory."
+            )
diff --git a/mcp_server/kubectl_server_helper/utils.py b/mcp_server/kubectl_server_helper/utils.py
new file mode 100644
index 0000000..43990af
--- /dev/null
+++ b/mcp_server/kubectl_server_helper/utils.py
@@ -0,0 +1,50 @@
+import logging
+import yaml
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+
+def parse_text(text, max_length=10000):
+    """
+    Parse and truncate text if it's too long.
+
+    Args:
+        text (str): The text to parse
+
+    Returns:
+        str: The parsed text
+    """
+    # Truncate if needed to avoid token limits
+    if len(text) > max_length:
+        return text[:max_length] + "... [truncated]"
+    return text
+
+
+def cleanup_kubernetes_yaml(cluster_state: str) -> str:
+    object = None
+
+    try:
+        object = list(yaml.safe_load_all(cluster_state))
+    except Exception as e:
+        logger.error(f"Yaml cleaner: Failed to parse YAML: {e}")
+        return ""
+
+    def recursive_remove(obj):
+        if isinstance(obj, dict):
+            obj.get("metadata", {}).pop("resourceVersion", None)
+            obj.get("metadata", {}).get("annotations", {}).pop("kubectl.kubernetes.io/last-applied-configuration", None)
+            obj.pop("uid", None)
+            for k, v in obj.items():
+                if k == "ownerReferences":
+                    continue
+                # Should not modify the last-applied-configuration string
+                if isinstance(v, dict) or isinstance(v, list):
+                    recursive_remove(v)
+        elif isinstance(obj, list):
+            for item in obj:
+                recursive_remove(item)
+
+    recursive_remove(object)
+
+    return yaml.dump_all(object)
diff --git a/mcp_server/prometheus_server.py b/mcp_server/prometheus_server.py
new file mode 100644
index 0000000..1fbdbb3
--- /dev/null
+++ b/mcp_server/prometheus_server.py
@@ -0,0 +1,45 @@
+import logging
+import os
+
+from fastmcp import FastMCP
+
+from clients.stratus.stratus_utils.get_logger import get_logger
+from mcp_server.utils import ObservabilityClient
+
+logger = get_logger()
+logger.info("Starting Prometheus MCP Server")
+
+mcp = FastMCP("Prometheus MCP Server")
+
+
+@mcp.tool(name="get_metrics")
+def get_metrics(query: str) -> str:
+    """Query real-time metrics data from the Prometheus instance.
+
+    Args:
+        query (str): A Prometheus Query Language (PromQL) expression used to fetch metric values.
+
+    Returns:
+        str: String of metric results, including timestamps, values, and labels or error information.
+    """
+
+    logger.info("[prom_mcp] get_metrics called, getting prometheus metrics")
+    prometheus_port = os.environ.get("PROMETHEUS_PORT", None)
+    if prometheus_port is None:
+        err_msg = "PROMETHEUS_PORT environment variable is not set!"
+        logger.error(err_msg)
+        raise RuntimeError(err_msg)
+    prometheus_url = "http://localhost:" + os.environ["PROMETHEUS_PORT"]
+    observability_client = ObservabilityClient(prometheus_url)
+    try:
+        url = f"{prometheus_url}/api/v1/query"
+        param = {"query": query}
+        response = observability_client.make_request("GET", url, params=param)
+        logger.info(f"[prom_mcp] get_metrics status code: {response.status_code}")
+        logger.info(f"[prom_mcp] get_metrics result: {response}")
+        metrics = str(response.json()["data"])
+        return metrics if metrics else "None"
+    except Exception as e:
+        err_str = f"[prom_mcp] Error querying get_metrics: {str(e)}"
+        logger.error(err_str)
+        return err_str
diff --git a/mcp_server/sregym_mcp_server.py b/mcp_server/sregym_mcp_server.py
new file mode 100644
index 0000000..4e3dc55
--- /dev/null
+++ b/mcp_server/sregym_mcp_server.py
@@ -0,0 +1,30 @@
+import logging
+
+import uvicorn
+from fastmcp.server.http import create_sse_app
+from starlette.applications import Starlette
+from starlette.routing import Mount
+
+from mcp_server.configs.load_all_cfg import mcp_server_cfg
+from mcp_server.jaeger_server import mcp as observability_mcp
+from mcp_server.kubectl_mcp_tools import kubectl_mcp
+from mcp_server.prometheus_server import mcp as prometheus_mcp
+from mcp_server.submit_server import mcp as submit_mcp
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+app = Starlette(
+    routes=[
+        Mount("/kubectl_mcp_tools", app=create_sse_app(kubectl_mcp, "/messages/", "/sse")),
+        Mount("/jaeger", app=create_sse_app(observability_mcp, "/messages/", "/sse")),
+        Mount("/prometheus", app=create_sse_app(prometheus_mcp, "/messages/", "/sse")),
+        Mount("/submit", app=create_sse_app(submit_mcp, "/messages/", "/sse")),
+    ]
+)
+
+if __name__ == "__main__":
+    port = mcp_server_cfg.mcp_server_port
+    host = "0.0.0.0" if mcp_server_cfg.expose_server else "127.0.0.1"
+    logger.info("Starting SREGym MCP Server")
+    uvicorn.run(app, host=host, port=port)
diff --git a/mcp_server/submit_server.py b/mcp_server/submit_server.py
new file mode 100644
index 0000000..cdeb344
--- /dev/null
+++ b/mcp_server/submit_server.py
@@ -0,0 +1,129 @@
+import asyncio
+import logging
+import traceback
+
+import requests
+from fastmcp import FastMCP
+from kubernetes import client, config
+
+from clients.stratus.configs.langgraph_tool_configs import LanggraphToolConfig
+from clients.stratus.stratus_utils.get_logger import get_logger
+from clients.stratus.tools.localization import get_resource_uid
+
+logger = get_logger()
+logger.info("Starting Submission MCP Server")
+
+langgraph_tool_config = LanggraphToolConfig()
+
+mcp = FastMCP("Submission MCP Server")
+
+
+@mcp.tool(name="submit")
+def submit(ans: str) -> dict[str, str]:
+    """Submit task result to benchmark
+
+    Args:
+        ans (str): task result that the agent submits
+
+    Returns:
+        dict[str]: http response code and response text of benchmark submission server
+    """
+
+    logger.info("[submit_mcp] submit mcp called")
+    # FIXME: reference url from config file, remove hard coding
+    url = langgraph_tool_config.benchmark_submit_url
+    headers = {"Content-Type": "application/json"}
+    # Match curl behavior: send "\"yes\"" when ans is "yes"
+    payload = {"solution": f"{ans}"}
+
+    try:
+        response = requests.post(url, json=payload, headers=headers)
+        logger.info(f"[submit_mcp] Response status: {response.status_code}, text: {response.text}")
+        return {"status": str(response.status_code), "text": str(response.text)}
+
+    except Exception as e:
+        logger.error(f"[submit_mcp] HTTP submission failed: {e}")
+        return {"status": "N/A", "text": f"[submit_mcp] HTTP submission failed: {e}"}
+
+
+@mcp.tool(name="localization")
+async def localization(
+    resource_type: str,
+    resource_name: str,
+    namespace: str,
+) -> dict[str, str]:
+    """Retrieve the UID of a specified Kubernetes resource."""
+    config.load_kube_config()
+    try:
+        cmd = [
+            "kubectl",
+            "get",
+            resource_type,
+            resource_name,
+            "-n",
+            namespace,
+            "-o",
+            "jsonpath={.metadata.uid}",
+        ]
+        logger.info(f"[localization_mcp] Running command: {' '.join(cmd)}")
+        if resource_type.lower() == "pod":
+            api = client.CoreV1Api()
+            obj = api.read_namespaced_pod(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "service":
+            api = client.CoreV1Api()
+            obj = api.read_namespaced_service(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "deployment":
+            api = client.AppsV1Api()
+            obj = api.read_namespaced_deployment(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "statefulset":
+            api = client.AppsV1Api()
+            obj = api.read_namespaced_stateful_set(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "persistentvolumeclaim":
+            api = client.CoreV1Api()
+            obj = api.read_namespaced_persistent_volume_claim(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "persistentvolume":
+            api = client.CoreV1Api()
+            obj = api.read_persistent_volume(name=resource_name)
+        elif resource_type.lower() == "configmap":
+            api = client.CoreV1Api()
+            obj = api.read_namespaced_config_map(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "replicaset":
+            api = client.AppsV1Api()
+            obj = api.read_namespaced_replica_set(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "memoryquota":
+            api = client.CoreV1Api()
+            obj = api.read_namespaced_resource_quota(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "ingress":
+            api = client.NetworkingV1Api()
+            obj = api.read_namespaced_ingress(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "networkpolicy":
+            api = client.NetworkingV1Api()
+            obj = api.read_namespaced_network_policy(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "tidbcluster":
+            api = client.CustomObjectsApi()
+            obj = api.read_namespaced_custom_object(
+                group="pingcap.com", version="v1alpha1", namespace=namespace, plural="tidbclusters", name=resource_name
+            )
+        elif resource_type.lower() == "job":
+            api = client.BatchV1Api()
+            obj = api.read_namespaced_job(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "daemonset":
+            api = client.AppsV1Api()
+            obj = api.read_namespaced_daemon_set(name=resource_name, namespace=namespace)
+        elif resource_type.lower() == "clusterrole":
+            api = client.RbacAuthorizationV1Api()
+            obj = api.read_cluster_role(name=resource_name)
+        elif resource_type.lower() == "clusterrolebinding":
+            api = client.RbacAuthorizationV1Api()
+            obj = api.read_cluster_role_binding(name=resource_name)
+        else:
+            err_msg = f"Unsupported resource type: {resource_type}"
+            logger.error(f"[localization_mcp] {err_msg}")
+            return {"uid": f"Error: {err_msg}"}
+        uid = obj.metadata.uid
+        logger.info(f"[localization_mcp] Retrieved UID using Kubernetes client: {uid}")
+        return {"uid": uid}
+    except Exception as e:
+        logger.error(f"[localization_mcp] Exception occurred: {e}")
+        logger.error(traceback.format_exc())
+        return {"uid": f"Exception: {e}"}
diff --git a/mcp_server/test_client.py b/mcp_server/test_client.py
new file mode 100644
index 0000000..d62b971
--- /dev/null
+++ b/mcp_server/test_client.py
@@ -0,0 +1,146 @@
+"""Official example mcp client from anthropic, source: https://gist.github.com/zckly/f3f28ea731e096e53b39b47bf0a2d4b1"""
+
+import asyncio
+import json
+import sys
+from contextlib import AsyncExitStack
+from typing import Optional
+
+from anthropic import Anthropic
+from dotenv import load_dotenv
+from init_backend import get_llm_backend_for_tools
+from mcp import ClientSession, StdioServerParameters
+from mcp.client.stdio import stdio_client
+
+load_dotenv()  # load environment variables from .env
+
+
+class MCPClient:
+    def __init__(self):
+        # Initialize session and client objects
+        self.session: Optional[ClientSession] = None
+        self.exit_stack = AsyncExitStack()
+        self.anthropic = Anthropic()
+
+    async def connect_to_server(self, server_script_path: str):
+        """Connect to an MCP server
+
+        Args:
+            server_script_path: Path to the server script (.py or .js)
+        """
+        is_python = server_script_path.endswith(".py")
+        is_js = server_script_path.endswith(".js")
+        if not (is_python or is_js):
+            raise ValueError("Server script must be a .py or .js file")
+
+        command = sys.executable if is_python else "node"  # Uses the current Python interpreter from the activated venv
+        server_params = StdioServerParameters(command=command, args=[server_script_path], env=None)
+
+        stdio_transport = await self.exit_stack.enter_async_context(stdio_client(server_params))
+        self.stdio, self.write = stdio_transport
+        self.session = await self.exit_stack.enter_async_context(ClientSession(self.stdio, self.write))
+
+        await self.session.initialize()
+
+        # List available tools
+        response = await self.session.list_tools()
+        tools = response.tools
+        print("\nConnected to server with tools:", [tool.name for tool in tools])
+
+    async def process_query(self, query: str) -> str:
+        """Process a query using Claude and available tools"""
+        messages = query
+
+        response = await self.session.list_tools()
+        # to make tool calling work on openai.
+        available_tools = []
+        tool_names = []
+        for tool in response.tools:
+            # FIXME: this is just to make this demo work, see below
+            tool_names.append(tool.name)
+            for param in tool.inputSchema["properties"].values():
+                param["description"] = param["title"]
+            print(f"tool input schema to openai: {tool.inputSchema}")
+            # FIXME: When building MCP server tools, compile such object within the definition
+            #  so that the client can use it directly.
+            available_tools.append(
+                {
+                    "type": "function",
+                    "function": {
+                        "name": tool.name,
+                        "description": tool.description,
+                        "parameters": tool.inputSchema,
+                    },
+                }
+            )
+
+        llm = get_llm_backend_for_tools()
+        finish_reason, response_message = llm.inference(
+            system_prompt="You are a helpful assistant",
+            input=messages,
+            tools=available_tools,
+        )
+
+        # Process response and handle tool calls
+        tool_results = []
+        final_text = []
+
+        if finish_reason == "tool_calls" or finish_reason in tool_names:
+            tool_name = finish_reason
+            tool_args = response_message
+        else:
+            tool_name = None
+            tool_args = None
+
+        print(f"tool {tool_name}, args {tool_args}")
+        # Execute tool call
+        if finish_reason == "stop":
+            final_text.append(response_message.content)
+        else:
+            result = await self.session.call_tool(tool_name, tool_args)
+            tool_results.append({"call": tool_name, "result": result})
+            print(f"tool result: {result}")
+            final_text.append(f"[Calling tool {tool_name} with args {tool_args}]")
+
+        return "\n".join(final_text)
+
+    async def chat_loop(self):
+        """Run an interactive chat loop"""
+        print("\nMCP Client Started!")
+        print("Type your queries or 'quit' to exit.")
+
+        while True:
+            try:
+                query = input("\nQuery: ").strip()
+
+                if query.lower() == "quit":
+                    break
+
+                response = await self.process_query(query)
+                print("\n" + response)
+
+            except Exception as e:
+                print(f"\nError: {str(e)}")
+
+    async def cleanup(self):
+        """Clean up resources"""
+        await self.exit_stack.aclose()
+
+
+async def main():
+    if len(sys.argv) < 2:
+        print("Usage: python client.py <path_to_server_script>")
+        sys.exit(1)
+
+    client = MCPClient()
+    try:
+        await client.connect_to_server(sys.argv[1])
+        await client.chat_loop()
+    finally:
+        await client.cleanup()
+
+
+if __name__ == "__main__":
+    import sys
+
+    asyncio.run(main())
diff --git a/mcp_server/test_server.py b/mcp_server/test_server.py
new file mode 100644
index 0000000..71535e1
--- /dev/null
+++ b/mcp_server/test_server.py
@@ -0,0 +1,45 @@
+import logging
+from typing import Any
+
+import httpx
+import mcp.types as types
+from mcp.server.fastmcp import FastMCP
+from mcp.server.fastmcp.prompts import base
+from pydantic import AnyUrl
+
+logger = logging.getLogger("Example MCP Server")
+logger.info("Starting Example MCP Server")
+
+mcp = FastMCP("Example MCP Server")
+
+
+@mcp.resource("resource://example-txt")
+def get_example_txt() -> Any:
+    logger.debug("get_example_txt called")
+    with open("./mcp_server/example.txt", "r") as f:
+        return f.read()
+
+
+@mcp.resource("resource://example-txt/{string}")
+def get_example_txt_with_str(string: str) -> Any:
+    logger.debug("get_example_txt called")
+    with open("./mcp_server/example.txt", "r") as f:
+        return f"inserted str: {string}, example txt content: {f.read()}"
+
+
+@mcp.tool()
+def surround(character: str, main_body: str) -> str:
+    logger.debug("surround called")
+    return f"{character}{main_body}{character}"
+
+
+@mcp.prompt(name="summarize_example_text")
+def summarize_example_text(text: str) -> list[base.Message]:
+    return [
+        base.UserMessage("Please summarize this text"),
+        base.UserMessage(text),
+    ]
+
+
+if __name__ == "__main__":
+    mcp.run()
diff --git a/mcp_server/utils.py b/mcp_server/utils.py
new file mode 100644
index 0000000..64bcfba
--- /dev/null
+++ b/mcp_server/utils.py
@@ -0,0 +1,73 @@
+import logging
+import os
+from typing import Any, Dict, Optional
+
+import requests
+from requests.adapters import HTTPAdapter
+from urllib3.util.retry import Retry
+
+mcp_server_port = os.getenv("MCP_SERVER_PORT", "8001")
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger("all.mcp.utils")
+
+REQUEST_TIMEOUT = int(os.getenv("REQUEST_TIMEOUT", 120))
+RETRY_TOTAL = int(os.getenv("RETRY_TOTAL", 3))
+RETRY_BACKOFF_FACTOR = float(os.getenv("RETRY_BACKOFF_FACWTOR", 0.3))
+
+
+class ObservabilityClient:
+    observability_server_url: Optional[str] = None
+    jaeger_service_account_token: Optional[str] = None
+    headers: Optional[Dict] = None
+    session: Optional[Any] = None
+
+    def __init__(self, observability_url: Optional[str] = None):
+        # FIXME: this is always None because we don't use this env var anymore
+        #   refactor this logic.
+        self.observability_server_url = os.environ.get("JAEGER_URL", None)
+        if self.observability_server_url is None:
+            if observability_url is not None:
+                self.observability_server_url = observability_url
+            else:
+                self.observability_server_url = f"http://localhost:{mcp_server_port}"
+
+        logger.debug(f"observability endpoint is: {self.observability_server_url}")
+
+        # This is almost always NOP because we don't have such setting
+        self.jaeger_service_account_token = os.environ.get("GRAFANA_SERVICE_ACCOUNT_TOKEN", "NOP")
+
+        logger.debug(
+            "url: {g}, token: {t}".format(g=self.observability_server_url, t=self.jaeger_service_account_token)
+        )
+
+        self.headers = {
+            "Content-Type": "application/json",
+            "Authorization": f"Bearer {self.jaeger_service_account_token}",
+        }
+        self.session = self.create_retrying_session()
+
+    def create_retrying_session(self) -> requests.Session:
+        session = requests.Session()
+
+        retries = Retry(
+            total=RETRY_TOTAL,
+            backoff_factor=RETRY_BACKOFF_FACTOR,
+            status_forcelist=[500, 502, 503, 504],
+        )
+        adapter = HTTPAdapter(max_retries=retries)
+        session.mount("http://", adapter)
+        session.mount("https://", adapter)
+        return session
+
+    def make_request(self, method: str, url: str, **kwargs) -> requests.Response:
+        try:
+            response = self.session.request(method, url, headers=self.headers, timeout=REQUEST_TIMEOUT, **kwargs)
+            response.raise_for_status()
+            return response
+        except requests.Timeout:
+            logger.error(f"Request timed out after {REQUEST_TIMEOUT} seconds")
+            raise
+        except requests.RequestException as e:
+            logger.error(f"Request failed: {e}")
+            raise
diff --git a/provisioner/README.md b/provisioner/README.md
new file mode 100644
index 0000000..9bd9339
--- /dev/null
+++ b/provisioner/README.md
@@ -0,0 +1,177 @@
+# CloudLab Provisioner
+
+A tool for automatically provisioning and managing clusters on CloudLab. This provisioner helps maintain a pool of available clusters and handles cluster lifecycle management including claiming, extending, and automatic cleanup.
+
+## Features
+
+- Automatic cluster provisioning and management
+- User registration and cluster claiming
+- Automatic cluster extension for active users
+- Automatic cleanup of inactive clusters
+- Email notifications for cluster events
+- CLI interface for easy interaction
+
+## Prerequisites
+
+1. Go to https://www.cloudlab.us/
+2. Login with your cloudlab account
+3. On the top right corner, click on your username, and then click on "Download Credentials"
+4. This will take you to a page with a button to download the credentials. Click on it.
+5. This will download a file called `cloudlab.pem`.
+
+The `cloudlab.pem` contains the encrypted private key to your cloudlab account and ssl certificate. You need to decrypt it before using it.
+
+### Install OpenSSL (if not already installed)
+
+For Ubuntu/Debian:
+```bash
+sudo apt install openssl
+```
+
+For macOS:
+```bash
+brew install openssl
+```
+
+### Decrypting the CloudLab Credentials
+
+```bash
+openssl rsa -in cloudlab.pem -out cloudlab_decrypted.pem
+```
+
+When prompted for a password, enter your CloudLab account password (the same one you use to login to the CloudLab website).
+This will create a new file `cloudlab_decrypted.pem` containing your decrypted private key.
+The SSL certificate remains in the original `cloudlab.pem` file.
+
+### Environment Variables
+
+The provisioner needs its own set of ssh keys. Generate ssh keys for the provisioner using the following command:
+
+```bash
+ssh-keygen -t ed25519 -f provisioner_ssh_key
+```
+
+Set the following required environment variables in `.env` file:
+
+```bash
+PROVISIONER_SSH_PRIVATE_KEY_PATH="/path/to/provisioner_ssh_key"
+PROVISIONER_SSH_PUBLIC_KEY_PATH="/path/to/provisioner_ssh_key.pub"
+
+CLOUDLAB_CERT_PATH="/path/to/cloudlab.pem"
+CLOUDLAB_KEY_PATH="/path/to/cloudlab_decrypted.pem"
+CLOUD_PROJECT_NAME="your-cloudlab-project-name"
+
+DEPLOY_KEY_PATH="/path/to/deploy-key
+```
+
+Optional email notification settings:
+
+```bash
+SMTP_SERVER="smtp.gmail.com"
+MTP_PORT="587"
+SMTP_USERNAME="your.email@gmail.com"
+SMTP_PASSWORD="your-app-password"
+```
+
+For Gmail, you'll need to create an app password. Follow this [guide](https://bestsoftware.medium.com/how-to-create-an-app-password-on-gmail-e00eff3af4e0) to create one.
+
+## CloudLab Provisioner
+
+### How It Works
+
+#### Cluster Management
+
+- Maintains 2 unclaimed clusters ready for use
+- Unclaimed clusters are deleted after 16 hours of inactivity
+- Each user can claim up to 2 clusters
+- Maximum of 8 total clusters (claimed + unclaimed)
+
+#### Cluster Lifecycle
+
+1. **Claiming**: Users can claim available clusters. If no clusters clsuter ready to be claimed, the provisioner will create new ones.
+2. **Extension**: Claimed clusters are automatically extended for the next 7 days every day.
+3. **Cleanup**: Inactive clusters (>48 hours without SSH access) are automatically deleted
+
+#### Daemon Operation
+
+- Runs every set interval (default is 5 minutes)
+- Manages cluster lifecycle
+- Sends email notifications for important events
+- Handles automatic extensions and cleanup
+
+### Running the Provisioner as a Daemon Service
+
+1. Run the setup script:
+```bash
+chmod +x setup_daemon.sh
+sudo ./setup_daemon.sh
+```
+2. To stop the daemon, run:
+```bash
+sudo systemctl stop provisioner.service
+```
+
+### Running the Provisioner as a Program
+
+To run the provisioner as a program, run the following command: 
+
+```bash
+cd provisioner
+python3 daemon.py
+```
+
+### Configuring the Provisioner
+
+The variables in `config/settings.py` file are used to configure the provisioner. They can be edited to change the provisioner settings.
+
+### Using the CLI
+
+The provisioner provides a command-line interface for managing clusters:
+
+```bash
+python3 cli.py --help
+```
+
+#### Available Commands
+
+| Command | Description | Example |
+|---------|-------------|---------|
+| `register` | Register a new user | `python3 cli.py register --email user@example.com --ssh-key ~/.ssh/id_rsa.pub` |
+| `claim` | Claim an available cluster | `python3 cli.py claim --email user@example.com` |
+| `list` | List clusters for a user | `python3 cli.py list --email user@example.com` |
+| `relinquish` | Release a claimed cluster | `python3 cli.py relinquish --email user@example.com --experiment exp-name` |
+| `status` | Check cluster status | `python3 cli.py status --experiment exp-name` |
+
+`claim` has two additional options:
+- `--deploy-sregym`: Deploys SREGym on the claimed cluster
+- `--eval-override`: Overrides the evaluation mode for the claimed cluster so that it won't be deleted because of inactivity
+
+## Testing
+The `tests/provisioner/test_provisioner.py` file contains a test suite that tests the core functionalities of the provisioner. Set `SET_TEST_VALUES` to `True` in `config/settings.py` to run the tests with test values. The tests provision actual CloudLab clusters for testing, so CloudLab credentials are required. Running the first 8 tests takes approximately 35-40 minutes. The last one `test_sregym_deploy` takes approximately 10-12 minutes.
+
+### Running Tests
+
+To run all tests:
+```bash
+cd tests/provisioner
+python3 pytest test_provisioner.py
+```
+
+To run a specific test:
+```bash
+python3 pytest test_provisioner.py::test_name
+```
+
+### Test Suite Overview
+
+The test suite includes the following tests:
+
+1. test_auto_provisioning - Tests automatic cluster provisioning when lower than MIN_AVAILABLE_CLUSTERS
+2. test_user_claim_and_relinquish - Tests user cluster claim and release workflow
+3. test_max_clusters_per_user - Ensures users can't exceed their cluster limit
+4. test_unclaimed_cluster_timeout - Tests automatic cleanup of unused clusters
+5. test_max_total_clusters_limit - Tests system-wide cluster limit enforcement
+6. test_claimed_cluster_inactivity_timeout - Tests cleanup of inactive claimed clusters
+7. test_eval_override_for_inactivity - Tests evaluation mode claimed cluster protection
+8. test_claimed_cluster_extension - Tests automatic claimed cluster reservation extension
+9. test_sregym_deploy - Tests SREGym deployment on a claimed cluster
\ No newline at end of file
diff --git a/provisioner/__init__.py b/provisioner/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/provisioner/cli.py b/provisioner/cli.py
new file mode 100644
index 0000000..d3ee472
--- /dev/null
+++ b/provisioner/cli.py
@@ -0,0 +1,680 @@
+import datetime
+import logging
+import os
+import re
+import time
+from pathlib import Path
+
+import click
+
+from provisioner.cloudlab_provisioner import CloudlabProvisioner
+from provisioner.config.settings import DefaultSettings
+from provisioner.state_manager import CLUSTER_STATUS, SREGYM_STATUS, StateManager
+from provisioner.utils.ssh import SSHManager, SSHUtilError
+from scripts.geni_lib.cluster_setup import setup_cloudlab_cluster_with_sregym
+
+logger = logging.getLogger(__name__)
+
+_state_manager_instance: StateManager = None
+_cloudlab_provisioner_instance: CloudlabProvisioner = None
+EMAIL_REGEX = r"^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$"
+
+
+def is_valid_email(email: str) -> bool:
+    return re.match(EMAIL_REGEX, email) is not None
+
+
+def get_state_manager() -> StateManager:
+    global _state_manager_instance
+    if _state_manager_instance is None:
+        _state_manager_instance = StateManager(db_path=DefaultSettings.DATABASE_PATH)
+    return _state_manager_instance
+
+
+def get_cloudlab_provisioner() -> CloudlabProvisioner:
+    global _cloudlab_provisioner_instance
+    if _cloudlab_provisioner_instance is None:
+        _cloudlab_provisioner_instance = CloudlabProvisioner()
+    return _cloudlab_provisioner_instance
+
+
+def _ensure_ssh_prerequisites():
+    """Checks if necessary SSH configuration for the provisioner is present."""
+    if not DefaultSettings.PROVISIONER_DEFAULT_SSH_USERNAME:
+        click.echo(
+            click.style("ERROR: PROVISIONER_DEFAULT_SSH_USERNAME is not correctly set in settings.py.", fg="red")
+        )
+        return False
+    key_path = Path(os.path.expanduser(DefaultSettings.PROVISIONER_SSH_PRIVATE_KEY_PATH))
+    if not key_path.exists():
+        click.echo(
+            click.style(
+                f"ERROR: Provisioner's SSH private key not found at '{key_path}'. This is required for node operations.",
+                fg="red",
+            )
+        )
+        return False
+    return True
+
+
+def _get_ssh_manager(hostname: str) -> SSHManager:
+    """Creates an SSHManager instance after ensuring prerequisites."""
+    if not _ensure_ssh_prerequisites():
+        raise click.Abort()  # Abort the current command
+    return SSHManager(
+        hostname=hostname,
+        username=DefaultSettings.PROVISIONER_DEFAULT_SSH_USERNAME,
+        private_key_path=DefaultSettings.PROVISIONER_SSH_PRIVATE_KEY_PATH,
+    )
+
+
+def _format_ssh_command(login_info_entry: list) -> str:
+    """Formats an SSH command string from a login_info entry."""
+    ssh_user = DefaultSettings.PROVISIONER_DEFAULT_SSH_USERNAME
+    hostname = login_info_entry[2]
+    port = login_info_entry[3]
+    return f"ssh {ssh_user}@{hostname} -p {port}"
+
+
+def _add_user_ssh_key_to_node(ssh_mgr: SSHManager, user_public_key: str, user_id_for_log: str) -> bool:
+    """
+    Safely adds a user's SSH public key to the authorized_keys file on a remote node.
+    Returns True on success, False on failure.
+    """
+    hostname_for_log = ssh_mgr.hostname
+    try:
+        # Escape the public key for shell safety
+        escaped_key = user_public_key.replace('"', '\\"')
+
+        # Single command to create .ssh directory, add key, and set permissions
+        cmd = (
+            "mkdir -p ~/.ssh && chmod 700 ~/.ssh && "
+            f'echo "{escaped_key}" >> ~/.ssh/authorized_keys && '
+            "chmod 600 ~/.ssh/authorized_keys"
+        )
+        _, stderr, exit_code = ssh_mgr.execute_ssh_command(cmd)
+
+        if exit_code != 0:
+            click.echo(click.style(f"ERROR: Failed to setup SSH key on {hostname_for_log}: {stderr}", fg="red"))
+            logger.error(f"SSH key setup failed on {hostname_for_log} for user {user_id_for_log}: {stderr}")
+            return False
+
+        logger.info(f"User SSH key for {user_id_for_log} added to {hostname_for_log}")
+        return True
+
+    except SSHUtilError as e:
+        click.echo(click.style(f"ERROR: SSH operation failed on {hostname_for_log} while adding key: {e}", fg="red"))
+        logger.error(f"SSHUtilError on {hostname_for_log} for user {user_id_for_log}: {e}")
+        return False
+    except Exception as e:
+        click.echo(
+            click.style(f"ERROR: Unexpected error during SSH key injection on {hostname_for_log}: {e}", fg="red")
+        )
+        logger.error(f"Unexpected error injecting key on {hostname_for_log} for {user_id_for_log}: {e}", exc_info=True)
+        return False
+
+
+def _remove_user_ssh_key_from_node(ssh_mgr: SSHManager, user_public_key: str, user_id_for_log: str) -> bool:
+    hostname_for_log = ssh_mgr.hostname
+    operation_id = datetime.datetime.now().strftime("%Y%m%d%H%M%S%f")
+    logger.debug(
+        f"Minimally attempting to remove SSH key for user {user_id_for_log} from {hostname_for_log} (OpID: {operation_id})."
+    )
+
+    user_public_key_cleaned = user_public_key.strip()
+    if not user_public_key_cleaned:
+        logger.error(f"Empty public key provided for {user_id_for_log}. Cannot remove.")
+        return False
+
+    try:
+        # Escape the public key for shell safety
+        escaped_key = user_public_key_cleaned.replace('"', '\\"')
+
+        # Single command to remove the key and update permissions
+        cmd = (
+            f"if [ -f ~/.ssh/authorized_keys ]; then "
+            f'grep -v -F -x "{escaped_key}" ~/.ssh/authorized_keys > ~/.ssh/authorized_keys.tmp && '
+            f"mv ~/.ssh/authorized_keys.tmp ~/.ssh/authorized_keys && "
+            f"chmod 600 ~/.ssh/authorized_keys; "
+            f"else "
+            f'echo "Authorized_keys file not found, key considered absent."; '
+            f"fi"
+        )
+
+        stdout, stderr, exit_code = ssh_mgr.execute_ssh_command(cmd)
+
+        if exit_code == 0:
+            if "Authorized_keys file not found" in stdout:
+                logger.info(
+                    f"Authorized_keys file not found on {hostname_for_log} for user {user_id_for_log}. Key considered absent."
+                )
+            else:
+                logger.info(
+                    f"Successfully processed authorized_keys for key removal for {user_id_for_log} on {hostname_for_log}."
+                )
+            return True  # Success or file not found (key absent)
+        else:
+            logger.error(
+                f"Failed to execute key removal command for {user_id_for_log} on {hostname_for_log}. "
+                f"Exit code: {exit_code}, Stdout: '{stdout}', Stderr: '{stderr}'."
+            )
+            return False
+
+    except SSHUtilError as e:
+        logger.error(f"SSHUtilError during minimal key removal for {user_id_for_log} on {hostname_for_log}: {e}")
+        return False
+    except Exception as e:
+        logger.error(
+            f"Unexpected error during minimal key removal for {user_id_for_log} on {hostname_for_log}: {e}",
+            exc_info=True,
+        )
+        return False
+
+
+def _setup_sregym(cluster_info: dict) -> bool:
+    """
+    Setup SREGym on a newly provisioned cluster.
+    Returns True on success, False on failure.
+    """
+    try:
+        slice_name = cluster_info["slice_name"]
+        login_info = cluster_info["login_info"]
+
+        click.echo(click.style(f"Setting up SREGym on cluster {slice_name}...", fg="yellow"))
+        hosts = [info[2] for info in login_info]
+
+        cfg = {
+            "cloudlab": {
+                "ssh_user": DefaultSettings.PROVISIONER_DEFAULT_SSH_USERNAME,
+                "ssh_key": DefaultSettings.PROVISIONER_SSH_PRIVATE_KEY_PATH,
+                "nodes": hosts,
+            },
+            "pod_network_cidr": DefaultSettings.DEFAULT_POD_NETWORK_CIDR,
+            "deploy_sregym": True,
+            "deploy_key": DefaultSettings.DEPLOY_KEY_PATH,
+        }
+
+        setup_cloudlab_cluster_with_sregym(cfg)
+
+        click.echo(click.style(f"SREGym setup completed successfully for {slice_name}.", fg="green"))
+        return True
+    except Exception as e:
+        click.echo(click.style(f"Error setting up SREGym: {e}", fg="red"))
+        logger.error(f"Error setting up SREGym for {slice_name}: {e}", exc_info=True)
+        return False
+
+
+# --- Click Command Group ---
+@click.group()
+@click.option("--verbose", "-v", is_flag=True, help="Enable verbose output for some operations.")
+@click.pass_context
+def cli(ctx, verbose):
+    """Cloudlab Cluster Provisioner CLI."""
+    ctx.ensure_object(dict)
+    ctx.obj["VERBOSE"] = verbose
+    if verbose:
+        click.echo("Verbose mode enabled for CLI.")
+
+
+# --- User Commands ---
+@cli.command()
+@click.option("--email", required=True, help="Your unique email address for registration.")
+@click.option("--ssh-key", required=True, help="Your SSH public key.")
+def register(email, ssh_key):
+    """Registers a new user with their email and SSH public key."""
+    sm = get_state_manager()
+    if not is_valid_email(email):
+        click.echo(click.style("ERROR: Invalid email address format.", fg="red"))
+        return
+
+    try:
+        # Basic validation of key format
+        if not (
+            ssh_key.startswith("ssh-rsa ")
+            or ssh_key.startswith("ssh-ed25519 ")
+            or ssh_key.startswith("ecdsa-sha2-nistp")
+        ):  # Note the space
+            click.echo(
+                click.style(
+                    "ERROR: Invalid or incomplete SSH public key format. Ensure it includes the key type (e.g., 'ssh-rsa AAA...').",
+                    fg="red",
+                )
+            )
+            return
+    except Exception as e:
+        click.echo(click.style(f"ERROR: Could not read SSH key file: {e}", fg="red"))
+        return
+
+    if sm.add_user(email, ssh_key):
+        click.echo(click.style(f"User with email '{email}' registered successfully.", fg="green"))
+    else:
+        click.echo(click.style(f"User with email '{email}' might already be registered", fg="yellow"))
+
+
+@cli.command()
+@click.option("--email", required=True, help="Your registered email address.")
+@click.option("--eval-override", is_flag=True, help="Request evaluation override for longer inactivity timeout.")
+@click.option("--deploy-sregym", is_flag=True, help="Deploy SREGym on the cluster.")
+@click.pass_context
+def claim(ctx, email, eval_override, deploy_sregym):
+    """Claims an available cluster or requests a new one."""
+    sm = get_state_manager()
+    cp = get_cloudlab_provisioner()
+
+    if not is_valid_email(email):
+        click.echo(click.style("ERROR: Invalid email address format.", fg="red"))
+        return
+
+    user = sm.get_user(email)
+    if not user:
+        click.echo(click.style(f"ERROR: User with email '{email}' not registered. Please register first.", fg="red"))
+        return
+
+    user_claimed_count = sm.count_user_claimed_clusters(email)
+    if user_claimed_count >= DefaultSettings.MAX_CLUSTERS_PER_USER:
+        click.echo(
+            click.style(
+                f"ERROR: User '{email}' has already claimed the maximum of {DefaultSettings.MAX_CLUSTERS_PER_USER} clusters.",
+                fg="red",
+            )
+        )
+        return
+
+    # 1. Try to get an existing unclaimed_ready cluster
+    unclaimed_clusters = sm.get_clusters_by_status(CLUSTER_STATUS.STATUS_UNCLAIMED_READY)
+    if unclaimed_clusters:
+        cluster_to_claim = unclaimed_clusters[0]  # Simple: take the first one
+        slice_name = cluster_to_claim["slice_name"]
+        hostname = cluster_to_claim["control_node_hostname"]
+
+        click.echo(f"Found available cluster: {slice_name}. Attempting to claim for '{email}'...")
+        sm.update_cluster_record(slice_name, status=CLUSTER_STATUS.STATUS_USER_PROVISIONING, claimed_by_user_id=email)
+
+        if not hostname:
+            click.echo(
+                click.style(
+                    f"ERROR: Cluster {slice_name} has no control_node_hostname. Cannot proceed with claim.", fg="red"
+                )
+            )
+            logger.error(f"Claim aborted for {slice_name}: missing control_node_hostname in DB.")
+            return
+
+        try:
+            while not cp.are_nodes_ready(slice_name, cluster_to_claim["aggregate_name"]):
+                click.echo(click.style(f"Waiting for nodes to be ready on {slice_name}...", fg="yellow"))
+                time.sleep(10)
+        except Exception as e:
+            click.echo(click.style(f"ERROR: Failed to wait for nodes to be ready on {slice_name}: {e}", fg="red"))
+            logger.error(f"Failed to wait for nodes to be ready on {slice_name}: {e}")
+            sm.update_cluster_record(slice_name, status=CLUSTER_STATUS.STATUS_ERROR, last_error_message=str(e))
+            return
+
+        try:
+            # add ssh public key to all nodes in the cluster
+            for node_info in cluster_to_claim["login_info"]:
+                node_hostname = node_info[2]
+                ssh_mgr = _get_ssh_manager(node_hostname)
+                logger.info(f"Adding user SSH key to node {node_hostname} for user {email}")
+                if not _add_user_ssh_key_to_node(ssh_mgr, user["ssh_public_key"], email):
+                    return
+            user_ssh_key_installed_flag = True
+
+        except (SSHUtilError, click.Abort) as e_ssh:  # Catch Abort from _get_ssh_manager
+            click.echo(click.style(f"ERROR: SSH operation failed for new cluster {slice_name}: {e_ssh}", fg="red"))
+            sm.update_cluster_record(
+                slice_name,
+                status=CLUSTER_STATUS.STATUS_ERROR,
+                last_error_message=f"SSH key injection failed: {e_ssh}",
+            )
+            if cluster_to_claim.get("aggregate_name"):  # Attempt cleanup
+                # Mark the experiment for termination
+                logger.info(f"Marking experiment {slice_name} for termination")
+                sm.update_cluster_record(slice_name, status=CLUSTER_STATUS.STATUS_TERMINATING)
+            return
+
+        # Extend Cloudlab duration
+        now = datetime.datetime.now()
+        new_duration_hours = DefaultSettings.CLAIMED_CLUSTER_DEFAULT_DURATION_HOURS
+        new_cloudlab_expires_at = cluster_to_claim["cloudlab_expires_at"]
+        try:
+            if cp.renew_experiment(slice_name, new_duration_hours, cluster_to_claim["aggregate_name"]):
+                new_cloudlab_expires_at = now + datetime.timedelta(hours=new_duration_hours)
+                logger.info(f"Extended Cloudlab experiment {slice_name} to {new_cloudlab_expires_at}")
+            else:
+                click.echo(
+                    click.style(
+                        f"WARNING: Failed to extend Cloudlab duration for {slice_name}. It may expire sooner. Current expiry: {new_cloudlab_expires_at}",
+                        fg="yellow",
+                    )
+                )
+        except Exception as e:
+            click.echo(
+                click.style(
+                    f"WARNING: Error extending Cloudlab duration for {slice_name}: {e}. Current expiry: {new_cloudlab_expires_at}",
+                    fg="yellow",
+                )
+            )
+
+        if deploy_sregym:
+            click.echo("Setting up SREGym for your cluster. This may take several minutes...")
+            experiment_info = {
+                "slice_name": slice_name,
+                "login_info": cluster_to_claim["login_info"],
+            }
+            setup_success = _setup_sregym(experiment_info)
+            if setup_success:
+                sm.update_cluster_record(
+                    slice_name,
+                    sregym_setup_status=SREGYM_STATUS.SREGYM_SUCCESS,
+                )
+                click.echo(click.style("SREGym successfully set up on your cluster!", fg="green"))
+            else:
+                sm.update_cluster_record(
+                    slice_name,
+                    sregym_setup_status=SREGYM_STATUS.SREGYM_FAILED,
+                    last_error_message="SREGym setup failed",
+                )
+                click.echo(
+                    click.style(
+                        "SREGym setup failed. You may still use the cluster for basic operations.", fg="yellow"
+                    )
+                )
+
+        # Update DB
+        sm.update_cluster_record(
+            slice_name,
+            status=CLUSTER_STATUS.STATUS_CLAIMED,
+            claimed_by_user_id=email,
+            user_ssh_key_installed=user_ssh_key_installed_flag,
+            cloudlab_expires_at=new_cloudlab_expires_at,
+            evaluation_override=eval_override,
+            claimed_at=now,
+        )
+        click.echo(click.style(f"Cluster '{slice_name}' successfully claimed by '{email}'.", fg="green"))
+        click.echo("SSH Access (Control Node):")
+        if cluster_to_claim.get("login_info"):
+            for node_info in cluster_to_claim["login_info"]:
+                click.echo(f"  {_format_ssh_command(node_info)}")
+        elif hostname:  # Fallback if login_info is missing/malformed but hostname exists
+            click.echo(f"  ssh {DefaultSettings.PROVISIONER_DEFAULT_SSH_USERNAME}@{hostname}")
+        else:
+            click.echo(click.style("  Could not determine SSH access details.", fg="yellow"))
+
+    else:  # No UNCLAIMED_READY clusters, try to provision a new one for the user
+        click.echo("No readily available clusters. Attempting to provision a new one for you...")
+
+        current_total_managed = sm.count_total_managed_clusters()
+        if current_total_managed >= DefaultSettings.MAX_TOTAL_CLUSTERS:
+            click.echo(
+                click.style(
+                    f"ERROR: Maximum total clusters ({DefaultSettings.MAX_TOTAL_CLUSTERS}) reached. Cannot provision for user '{email}' at this time.",
+                    fg="red",
+                )
+            )
+            return
+
+        slice_name = cp.generate_slice_name()
+        click.echo(f"Requesting new cluster: {slice_name} (this may take several minutes)...")
+
+        # Create DB record first, marking it as user-provisioning and pre-assigning to user
+        sm.create_cluster_record(
+            slice_name=slice_name,
+            aggregate_name="<PENDING>",
+            os_type=DefaultSettings.DEFAULT_OS_TYPE,
+            node_count=DefaultSettings.DEFAULT_NODE_COUNT,
+            status=CLUSTER_STATUS.STATUS_USER_PROVISIONING,
+            claimed_by_user_id=email,  # Pre-claim
+            evaluation_override=eval_override,
+        )
+
+        experiment_info = None
+        try:
+            user_provision_duration = DefaultSettings.CLAIMED_CLUSTER_DEFAULT_DURATION_HOURS
+            experiment_info = cp.create_experiment(
+                slice_name=slice_name,
+                hardware_type=DefaultSettings.DEFAULT_HARDWARE_TYPE,
+                os_type=DefaultSettings.DEFAULT_OS_TYPE,
+                node_count=DefaultSettings.DEFAULT_NODE_COUNT,
+                duration=user_provision_duration,
+            )
+
+            if not (experiment_info and experiment_info.get("login_info")):
+                raise Exception("Cloudlab experiment creation failed or returned no login_info.")
+
+            control_node_info = next((n for n in experiment_info["login_info"] if n[0] == "control"), None)
+            if not control_node_info:
+                raise ValueError("Control node info not found in login_info after user provisioning.")
+            hostname = control_node_info[2]
+            now = datetime.datetime.now()
+            expires_at = now + datetime.timedelta(hours=experiment_info["duration"])
+
+            try:
+                while not cp.are_nodes_ready(slice_name, experiment_info["aggregate_name"]):
+                    click.echo(click.style(f"Waiting for nodes to be ready on {slice_name}...", fg="yellow"))
+                    time.sleep(10)
+                logger.info(f"Nodes are ready for {slice_name}.")
+            except Exception as e:
+                click.echo(click.style(f"ERROR: Failed to wait for nodes to be ready on {slice_name}: {e}", fg="red"))
+                logger.error(f"Failed to wait for nodes to be ready on {slice_name}: {e}")
+                sm.update_cluster_record(slice_name, status=CLUSTER_STATUS.STATUS_ERROR, last_error_message=str(e))
+                return
+
+            try:
+                # add ssh public key to all nodes in the cluster
+                for node_info in experiment_info["login_info"]:
+                    node_hostname = node_info[2]
+                    ssh_mgr = _get_ssh_manager(node_hostname)
+                    logger.info(f"Adding user SSH key to node {node_hostname} for user {email}")
+                    if not _add_user_ssh_key_to_node(ssh_mgr, user["ssh_public_key"], email):
+                        return
+                user_ssh_key_installed_flag = True
+
+            except (SSHUtilError, click.Abort) as e_ssh:  # Catch Abort from _get_ssh_manager
+                click.echo(click.style(f"ERROR: SSH operation failed for new cluster {slice_name}: {e_ssh}", fg="red"))
+                sm.update_cluster_record(
+                    slice_name,
+                    status=CLUSTER_STATUS.STATUS_ERROR,
+                    last_error_message=f"SSH key injection failed: {e_ssh}",
+                )
+                if experiment_info.get("aggregate_name"):  # Attempt cleanup
+                    # Mark the experiment for termination
+                    logger.info(f"Marking experiment {slice_name} for termination")
+                    sm.update_cluster_record(slice_name, status=CLUSTER_STATUS.STATUS_TERMINATING)
+                return
+
+            if deploy_sregym:
+                click.echo("Setting up SREGym for your cluster. This may take several minutes...")
+                setup_success = _setup_sregym(experiment_info)
+                if setup_success:
+                    sm.update_cluster_record(
+                        slice_name,
+                        sregym_setup_status=SREGYM_STATUS.SREGYM_SUCCESS,
+                    )
+                    click.echo(click.style("SREGym successfully set up on your cluster!", fg="green"))
+                else:
+                    sm.update_cluster_record(
+                        slice_name,
+                        sregym_setup_status=SREGYM_STATUS.SREGYM_FAILED,
+                        last_error_message="SREGym setup failed",
+                    )
+                    click.echo(
+                        click.style(
+                            "SREGym setup failed. You may still use the cluster for basic operations.", fg="yellow"
+                        )
+                    )
+
+            sm.update_cluster_record(
+                slice_name,
+                status=CLUSTER_STATUS.STATUS_CLAIMED,
+                aggregate_name=experiment_info["aggregate_name"],
+                hardware_type=experiment_info["hardware_type"],
+                control_node_hostname=hostname,
+                login_info=experiment_info["login_info"],
+                user_ssh_key_installed=user_ssh_key_installed_flag,
+                cloudlab_expires_at=expires_at,
+                claimed_at=now,
+            )
+            click.echo(
+                click.style(
+                    f"New cluster '{slice_name}' successfully provisioned and claimed by '{email}'.", fg="green"
+                )
+            )
+            click.echo("SSH Access:")
+            if experiment_info.get("login_info"):
+                for node_info in experiment_info["login_info"]:
+                    click.echo(f"  {_format_ssh_command(node_info)}")
+            elif hostname:
+                click.echo(f"  ssh {DefaultSettings.PROVISIONER_DEFAULT_SSH_USERNAME}@{hostname}")
+
+        except Exception as e:
+            click.echo(
+                click.style(
+                    f"ERROR: An unexpected error occurred during user-triggered provisioning for {slice_name}: {e}",
+                    fg="red",
+                )
+            )
+            logger.error(f"User provision error for {slice_name}: {e}", exc_info=True)
+            # Ensure status is ERROR if it was created in DB
+            if sm.get_cluster_by_slice_name(slice_name):
+                sm.update_cluster_record(slice_name, status=CLUSTER_STATUS.STATUS_ERROR, last_error_message=str(e))
+            # Attempt to delete from Cloudlab if experiment_info was partially obtained
+            if experiment_info and experiment_info.get("aggregate_name"):
+                logger.info(
+                    f"Attempting to cleanup partially provisioned Cloudlab experiment {slice_name} (user-triggered)"
+                )
+                # Mark the experiment for termination
+                sm.update_cluster_record(slice_name, status=CLUSTER_STATUS.STATUS_TERMINATING)
+
+
+@cli.command(name="list")
+@click.option("--email", help="List clusters claimed by this email. If not provided, lists unclaimed ready clusters.")
+@click.pass_context
+def list_clusters(ctx, email):
+    """Lists clusters. Shows unclaimed ready, or user's claimed clusters."""
+    sm = get_state_manager()
+    verbose = ctx.obj.get("VERBOSE", False)
+
+    if email:
+        if not is_valid_email(email):
+            click.echo(click.style("ERROR: Invalid email address format.", fg="red"))
+            return
+        user = sm.get_user(email)
+        if not user:
+            click.echo(click.style(f"ERROR: User with email '{email}' not registered.", fg="red"))
+            return
+        clusters = sm.get_claimed_clusters_by_user(email)
+        if not clusters:
+            click.echo(f"User '{email}' has no claimed clusters.")
+            return
+        click.echo(f"Clusters claimed by '{email}':")
+    else:
+        clusters = sm.get_clusters_by_status(CLUSTER_STATUS.STATUS_UNCLAIMED_READY)
+        if not clusters:
+            click.echo("No unclaimed ready clusters available.")
+            return
+        click.echo("Unclaimed Ready Clusters:")
+
+    for cluster in clusters:
+        click.echo(f"  Slice: {cluster['slice_name']} (Status: {cluster['status']})")
+        if verbose or email:  # Show more details if verbose or listing user's clusters
+            if cluster.get("control_node_hostname"):
+                click.echo(f"    Control Node: {cluster['control_node_hostname']}")
+            if cluster.get("cloudlab_expires_at"):
+                expires_at_str = (
+                    cluster["cloudlab_expires_at"].strftime("%Y-%m-%d %H:%M:%S %Z")
+                    if isinstance(cluster["cloudlab_expires_at"], datetime.datetime)
+                    and cluster["cloudlab_expires_at"].tzinfo
+                    else str(cluster["cloudlab_expires_at"])
+                )
+                click.echo(f"    Cloudlab Expires: {expires_at_str}")
+            if cluster.get("login_info") and isinstance(cluster.get("login_info"), list):
+                for node_info in cluster["login_info"]:
+                    if node_info[0] == "control":
+                        click.echo(f"    SSH: {_format_ssh_command(node_info)}")
+        if verbose:  # Even more details for verbose mode
+            click.echo(f"    Aggregate: {cluster.get('aggregate_name')}")
+            click.echo(f"    Hardware: {cluster.get('hardware_type')}")
+            click.echo(f"    Claimed by: {cluster.get('claimed_by_user_id', 'N/A')}")
+            click.echo(f"    SREGym: {cluster.get('sregym_setup_status', 'N/A')}")
+
+
+@cli.command()
+@click.option("--email", required=True, help="Your registered email address.")
+@click.option("--experiment", required=True, help="The name of the experiment to relinquish.")
+def relinquish(email, experiment):
+    """Relinquishes a claimed cluster, marking it for termination."""
+    try:
+        sm = get_state_manager()
+        if not is_valid_email(email):
+            click.echo(click.style("ERROR: Invalid email address format.", fg="red"))
+            return
+
+        user = sm.get_user(email)
+        if not user:
+            click.echo(click.style(f"ERROR: User with email '{email}' not registered.", fg="red"))
+            return
+
+        cluster = sm.get_cluster_by_slice_name(experiment)
+        if not cluster:
+            click.echo(click.style(f"ERROR: Cluster '{experiment}' not found.", fg="red"))
+            return
+
+        if cluster["claimed_by_user_id"] != email or cluster["status"] != CLUSTER_STATUS.STATUS_CLAIMED:
+            click.echo(
+                click.style(f"ERROR: Cluster '{experiment}' is not currently claimed by user '{email}'.", fg="red")
+            )
+            return
+
+        sm.update_cluster_record(
+            experiment,
+            status=CLUSTER_STATUS.STATUS_TERMINATING,
+            claimed_by_user_id=None,  # Disassociate user
+            user_ssh_key_installed=False,
+        )
+        click.echo(
+            click.style(f"Cluster '{experiment}' relinquished by '{email}' and marked for termination.", fg="green")
+        )
+        logger.info(f"User {email} relinquished cluster {experiment}. Marked for termination.")
+    except Exception as e:
+        click.echo(click.style(f"ERROR: Failed to update cluster '{experiment}' status to terminating: {e}", fg="red"))
+        logger.error(f"Failed to update cluster '{experiment}' status to terminating: {e}")
+
+
+@cli.command()
+@click.option("--experiment", required=True, help="The name of the experiment to get status for.")
+def status(experiment):
+    """Shows detailed status of a specific cluster."""
+    sm = get_state_manager()
+    cluster = sm.get_cluster_by_slice_name(experiment)
+    if not cluster:
+        click.echo(click.style(f"ERROR: Cluster '{experiment}' not found.", fg="red"))
+        return
+
+    click.echo(f"Status for Experiment: {click.style(cluster['slice_name'], bold=True)}")
+    for key, value in sorted(cluster.items()):  # Sort for consistent output
+        if key == "id":
+            continue  # Skip internal DB id
+
+        display_key = key.replace("_", " ").title()
+        display_value = value
+
+        if isinstance(value, datetime.datetime):
+            display_value = value.strftime("%Y-%m-%d %H:%M:%S %Z") if value.tzinfo else value.isoformat()
+        elif key == "login_info" and isinstance(value, list):
+            click.echo(f"  {display_key}:")
+            for node_entry in value:
+                # node_entry is [client_id, user_on_node, hostname, port]
+                if node_entry[0] == "control":
+                    click.echo(f"    - Control Node SSH: {_format_ssh_command(node_entry)}")
+                else:
+                    click.echo(f"    - {node_entry[0]}: {node_entry[2]}:{node_entry[3]}")  # client_id: hostname:port
+            continue  # Skip default print for login_info
+        elif value is None:
+            display_value = click.style("N/A", dim=True)
+
+        click.echo(f"  {display_key + ':':<30} {display_value}")
+
+
+# --- Main Execution ---
+if __name__ == "__main__":
+    cli(obj={})
diff --git a/provisioner/cloudlab_provisioner.py b/provisioner/cloudlab_provisioner.py
new file mode 100644
index 0000000..aeaacb6
--- /dev/null
+++ b/provisioner/cloudlab_provisioner.py
@@ -0,0 +1,333 @@
+import datetime
+import json
+import random
+import warnings
+
+import geni.portal as portal
+import geni.util
+
+from provisioner.config.settings import (
+    AGGREGATES_MAP,
+    CLOUD_LAB_CONTEXT_JSON,
+    DELETE_EXPERIMENT_ERRORS,
+    PRIORITY_HARDWARE_TYPES,
+    DefaultSettings,
+)
+from provisioner.utils.logger import logger
+from provisioner.utils.parser import collect_and_parse_hardware_info, parse_sliver_info
+
+warnings.filterwarnings("ignore", category=UserWarning)
+
+
+class CloudlabProvisioner:
+    def __init__(self):
+
+        # create context.json
+        with open("context.json", "w") as f:
+            json.dump(CLOUD_LAB_CONTEXT_JSON, f, indent=4)
+
+        context_path = "context.json"
+        self.context = geni.util.loadContext(path=context_path)
+        self.project = self.context.cf.project
+        self.framework = self.context.cf.name
+        self.cert_path = self.context.cf.cert
+        self.key_path = self.context.cf.key
+        self.user_name = self.context.uname
+        self.user_urn = list(self.context._users)[0].urn
+        self.user_pubkeypath = list(self.context._users)[0]._keys[0]
+
+    def get_aggregate(self, aggregate_name: str):
+        return AGGREGATES_MAP[aggregate_name.lower()]
+
+    def get_aggregate_version(self, aggregate_name: str):
+        aggregate = self.get_aggregate(aggregate_name)
+        return aggregate.getversion(context=self.context)
+
+    def get_all_hardware_info(self, hardware_type: str):
+        all_hardware_list = collect_and_parse_hardware_info()
+        hardware_list = []
+        for hardware in all_hardware_list:
+            if hardware["hardware_name"] == hardware_type:
+                hardware_list.append(hardware)
+        return hardware_list
+
+    def print_all_hardware_info(self):
+        hardware_list = collect_and_parse_hardware_info()
+        print(f"{'Hardware Name':<20} | {'Cluster Name':<30} | {'Total':<7} | {'Free':<7}")
+        print("-" * 100)
+        for hardware in hardware_list:
+            print(
+                f"{hardware['hardware_name']:<20} | {hardware['cluster_name']:<30} | {hardware['total']:<7} | {hardware['free']:<7}"
+            )
+
+    def get_hardware_available_aggregate_name(self, hardware_type: str, node_count: int):
+        hardware_list = self.get_all_hardware_info(hardware_type)
+        aggregate_name = None
+
+        for hardware in hardware_list:
+            if hardware["hardware_name"] == hardware_type and hardware["free"] >= node_count:
+                aggregate_name = hardware["cluster_name"].lower()
+                break
+
+        if not aggregate_name:
+            logger.error("Error: Requested hardware is not available")
+            return None
+
+        return aggregate_name
+
+    def generate_slice_name(self):
+        return f"test-{random.randint(100000, 999999)}"
+
+    def create_slice(self, slice_name: str, duration: float, description: str = "Cloudlab Experiment"):
+        try:
+            expiration = datetime.datetime.now() + datetime.timedelta(hours=duration)
+            res = self.context.cf.createSlice(self.context, slice_name, exp=expiration, desc=description)
+            return res
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            return None
+
+    def create_sliver(self, slice_name: str, rspec_file: str, aggregate_name: str):
+        try:
+            aggregate = self.get_aggregate(aggregate_name)
+            igm = aggregate.createsliver(self.context, slice_name, rspec_file)
+            geni.util.printlogininfo(manifest=igm)
+
+            login_info = geni.util._corelogininfo(igm)
+            return login_info
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            return None
+
+    def create_rspec(
+        self,
+        hardware_type: str = DefaultSettings.DEFAULT_HARDWARE_TYPE,
+        os_type: str = DefaultSettings.DEFAULT_OS_TYPE,
+        node_count: int = DefaultSettings.DEFAULT_NODE_COUNT,
+    ):
+        os_url = f"urn:publicid:IDN+emulab.net+image+emulab-ops//{os_type}"
+
+        # geni/portal.py keeps state of previous rspec request so we need to reset it otherwise it will throw MultipleRSpecError
+        portal.context._request = None
+        rspec = portal.context.makeRequestRSpec()
+
+        nodes = []
+        nodes.append(rspec.RawPC("control"))
+        for i in range(1, node_count):
+            nodes.append(rspec.RawPC(f"compute{i}"))
+
+        for node in nodes:
+            node.hardware_type = hardware_type
+            node.disk_image = os_url
+
+        link = rspec.Link(members=nodes)
+
+        return rspec
+
+    def create_experiment(
+        self,
+        slice_name: str = None,
+        duration: float = DefaultSettings.UNCLAIMED_CLUSTER_TIMEOUT_HOURS,
+        description: str = DefaultSettings.DEFAULT_DESCRIPTION,
+        hardware_type: str = DefaultSettings.DEFAULT_HARDWARE_TYPE,
+        os_type: str = DefaultSettings.DEFAULT_OS_TYPE,
+        node_count: int = DefaultSettings.DEFAULT_NODE_COUNT,
+        save_info: bool = True,
+    ):
+        logger.info(
+            f"Creating experiment with duration: {duration}, description: {description}, hardware_type: {hardware_type}, os_type: {os_type}, node_count: {node_count}"
+        )
+        if not slice_name:
+            slice_name = self.generate_slice_name()
+
+        for i in range(10):
+            logger.info(f"Creating slice {slice_name}: attempt {i+1}")
+            slice_info = self.create_slice(slice_name, duration, description)
+            if slice_info:
+                logger.info(f"Slice {slice_name} created successfully")
+                break
+
+        if not slice_info:
+            logger.error("Error: Failed to create slice")
+            return None
+
+        logger.info(f"Slice Info: {slice_info}")
+
+        # Move the hardware type to the first position in the priority list if it is not already there
+        if hardware_type not in PRIORITY_HARDWARE_TYPES:
+            PRIORITY_HARDWARE_TYPES.insert(0, hardware_type)
+        else:
+            PRIORITY_HARDWARE_TYPES.remove(hardware_type)
+            PRIORITY_HARDWARE_TYPES.insert(0, hardware_type)
+
+        for i, hardware_type in enumerate(PRIORITY_HARDWARE_TYPES):
+            logger.info(f"Getting hardware available aggregate name for {hardware_type}")
+            aggregate_name = self.get_hardware_available_aggregate_name(hardware_type, node_count)
+
+            if not aggregate_name:
+                logger.error(f"Error: No hardware available for {hardware_type}")
+                continue
+
+            logger.info(f"Found hardware available aggregate name: {aggregate_name}")
+
+            logger.info(f"Creating rspec file for {slice_name} in {aggregate_name}")
+            rspec_file = self.create_rspec(hardware_type, os_type, node_count)
+            logger.info(f"Created rspec file for {slice_name} in {aggregate_name}")
+
+            logger.info(f"Creating sliver for {slice_name} in {aggregate_name}")
+            login_info = self.create_sliver(slice_name, rspec_file, aggregate_name)
+            logger.info(f"Created sliver for {slice_name} in {aggregate_name}")
+
+            if login_info:
+                logger.info(f"Created sliver for {hardware_type} in {aggregate_name}")
+                break
+
+        if not login_info:
+            logger.error("Error: Requested hardware is not available")
+            return None
+
+        experiment_info = {
+            "slice_name": slice_name,
+            "aggregate_name": aggregate_name,
+            "duration": duration,
+            "description": description,
+            "hardware_type": hardware_type,
+            "os_type": os_type,
+            "node_count": node_count,
+            "created_at": datetime.datetime.now().isoformat(),
+            "login_info": login_info,
+        }
+
+        if save_info:
+            with open(f"{slice_name}.experiment.info.json", "w") as f:
+                json.dump(experiment_info, f, indent=4)
+
+        logger.info(
+            f"Experiment Successfully created: {slice_name}, duration: {duration}, description: {description}, hardware_type: {hardware_type}, os_type: {os_type}, node_count: {node_count}"
+        )
+
+        return experiment_info
+
+    def renew_experiment(self, slice_name: str, duration: float, aggregate_name: str):
+        try:
+            logger.info(f"Renewing experiment {slice_name} for {duration} hours")
+
+            # Renew the slice (add 1 hour buffer to ensure slice outlives sliver)
+            slice_renewal_success = self.renew_slice(slice_name, duration + 1)
+            if not slice_renewal_success:
+                logger.error(f"Failed to renew slice {slice_name}")
+                return False
+
+            logger.info(f"Successfully renewed slice {slice_name} for {duration} hours")
+
+            # Renew the sliver
+            sliver_renewal_success = self.renew_sliver(slice_name, aggregate_name, duration)
+            if not sliver_renewal_success:
+                logger.error(f"Failed to renew sliver for slice {slice_name}")
+                return False
+
+            logger.info(f"Successfully renewed experiment {slice_name} for {duration} hours")
+            return True
+        except Exception as e:
+            logger.error(f"Error renewing experiment: {e}")
+            return False
+
+    def delete_experiment(self, slice_name: str, aggregate_name: str):
+        try:
+            logger.info(f"Deleting experiment {slice_name} in {aggregate_name}")
+            aggregate = self.get_aggregate(aggregate_name)
+            aggregate.deletesliver(self.context, slice_name)
+            logger.info(f"Successfully deleted experiment {slice_name} in {aggregate_name}")
+            return True
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            if (
+                DELETE_EXPERIMENT_ERRORS[1] in str(e)
+                or DELETE_EXPERIMENT_ERRORS[2] in str(e)
+                or DELETE_EXPERIMENT_ERRORS[3] in str(e)
+            ):
+                return True
+            return False
+
+    def renew_slice(self, slice_name: str, duration: float):
+        try:
+            new_expiration = datetime.datetime.now() + datetime.timedelta(hours=duration)
+            self.context.cf.renewSlice(self.context, slice_name, new_expiration)
+            return True
+        except Exception as e:
+            if "Cannot shorten slice lifetime" in str(e):
+                logger.info(f"Slice '{slice_name}' already has sufficient lifetime")
+                return True
+            logger.error(f"Error: {e}")
+            return False
+
+    def renew_sliver(self, slice_name: str, aggregate_name: str, duration: float):
+        try:
+            aggregate = self.get_aggregate(aggregate_name)
+            new_expiration = datetime.datetime.now() + datetime.timedelta(hours=duration)
+            aggregate.renewsliver(self.context, slice_name, new_expiration)
+            return True
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            return False
+
+    def get_sliver_status(self, slice_name: str, aggregate_name: str):
+        try:
+            aggregate = self.get_aggregate(aggregate_name)
+            sliver_info = aggregate.listresources(self.context, slice_name)
+            return sliver_info
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            return None
+
+    def get_sliver_spec(self, slice_name: str, aggregate_name: str):
+        try:
+            aggregate = self.get_aggregate(aggregate_name)
+            sliver_spec = aggregate.sliverstatus(self.context, slice_name)
+            return sliver_spec
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            return None
+
+    def print_experiment_spec(self, slice_name: str, aggregate_name: str):
+        sliver_spec = self.get_sliver_spec(slice_name, aggregate_name)
+        parsed_sliver_spec = parse_sliver_info(sliver_spec.text)
+        try:
+            print("\nExperiment Information:")
+            print(f"Description: {parsed_sliver_spec['description']}")
+            print(f"Expiration: {parsed_sliver_spec['expiration']}")
+
+            print("\nNodes:")
+            for node in parsed_sliver_spec["nodes"]:
+                print(f"\nNode: {node['client_id']}")
+                print(f"  Hostname: {node['hostname']}")
+                print(f"  Public IP: {node['public_ip']}")
+                print(f"  Internal IP: {node['internal_ip']}")
+                print(f"  Hardware: {node['hardware']}")
+                print(f"  OS Image: {node['os_image']}")
+
+            print("\nLocation:")
+            print(f"  Country: {parsed_sliver_spec['location']['country']}")
+            print(f"  Latitude: {parsed_sliver_spec['location']['latitude']}")
+            print(f"  Longitude: {parsed_sliver_spec['location']['longitude']}")
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            return None
+
+    def list_slices(self):
+        try:
+            slices = self.context.cf.listSlices(self.context)
+            return slices
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            return None
+
+    def are_nodes_ready(self, slice_name: str, aggregate_name: str) -> bool:
+        try:
+            aggregate = self.get_aggregate(aggregate_name)
+            sliver_status = aggregate.sliverstatus(self.context, slice_name)
+            resources = sliver_status.get("geni_resources", [])
+            return all(resource.get("pg_status") == "ready" for resource in resources)
+        except Exception as e:
+            logger.error(f"Error: {e}")
+            raise e
diff --git a/provisioner/config/__init__.py b/provisioner/config/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/provisioner/config/settings.py b/provisioner/config/settings.py
new file mode 100644
index 0000000..a67cd31
--- /dev/null
+++ b/provisioner/config/settings.py
@@ -0,0 +1,93 @@
+import os
+
+from dotenv import load_dotenv
+from geni.aggregate.cloudlab import Clemson, Utah, Wisconsin
+
+load_dotenv(override=True)
+
+SET_TEST_VALUES = False
+
+
+# Default settings
+class DefaultSettings:
+    #### Default Settings ####
+    DEFAULT_HARDWARE_TYPE = "c220g5" if not SET_TEST_VALUES else "m510"
+    DEFAULT_OS_TYPE = "UBUNTU22-64-STD"
+    DEFAULT_NODE_COUNT = 3 if not SET_TEST_VALUES else 1
+    DEFAULT_DURATION_HOURS = 16 if not SET_TEST_VALUES else 0.05
+    DEFAULT_DESCRIPTION = "Cloudlab Experiment"
+
+    MIN_AVAILABLE_CLUSTERS = 2 if not SET_TEST_VALUES else 1
+    MAX_TOTAL_CLUSTERS = 8 if not SET_TEST_VALUES else 2
+    MAX_CLUSTERS_PER_USER = 2 if not SET_TEST_VALUES else 1
+    UNCLAIMED_CLUSTER_TIMEOUT_HOURS = 16 if not SET_TEST_VALUES else 1
+    CLAIMED_CLUSTER_DEFAULT_DURATION_HOURS = 100 if not SET_TEST_VALUES else 0.1
+    CLAIMED_CLUSTER_INACTIVITY_TIMEOUT_HOURS = 48 if not SET_TEST_VALUES else 0.05
+    CLAIMED_CLUSTER_EXTENSION_CHECK_HOURS = 24 if not SET_TEST_VALUES else 0.025
+
+    DATABASE_PATH = "database.sqlite3"
+
+    DEFAULT_SSH_TIME_OUT_SECONDS = 30  # 30
+
+    LOG_PATH = "logs/"
+
+    #### Provisioner Credentials ####
+    PROVISIONER_DEFAULT_SSH_USERNAME = "sregym"
+    PROVISIONER_SSH_PRIVATE_KEY_PATH = os.getenv("PROVISIONER_SSH_PRIVATE_KEY_PATH")
+
+    #### Daemon Settings ####
+    SCHEDULER_INTERVAL_MINUTES = 5
+
+    #### SREGym Settings ####
+    DEFAULT_POD_NETWORK_CIDR = "192.168.0.0/16"
+    DEPLOY_KEY_PATH = os.getenv("DEPLOY_KEY_PATH")
+
+
+CLOUD_LAB_CONTEXT_JSON = {
+    "framework": "emulab-ch2",
+    "cert-path": os.getenv("CLOUDLAB_CERT_PATH"),
+    "key-path": os.getenv("CLOUDLAB_KEY_PATH"),
+    "user-name": "sregym",
+    "user-urn": "urn:publicid:IDN+emulab.net+user+sregym",
+    "user-pubkeypath": os.getenv("PROVISIONER_SSH_PUBLIC_KEY_PATH"),
+    "project": os.getenv("CLOUD_PROJECT_NAME"),
+}
+
+# Aggregates mapping
+AGGREGATES_MAP = {
+    "clemson": Clemson,
+    "utah": Utah,
+    "wisconsin": Wisconsin,
+    "cloudlab clemson": Clemson,
+    "cloudlab utah": Utah,
+    "cloudlab wisconsin": Wisconsin,
+    "cl-clemson": Clemson,
+    "cl-wisconsin": Wisconsin,
+    "cl-utah": Utah,
+}
+
+# Hardware types
+PRIORITY_HARDWARE_TYPES = ["c220g5", "c220g4", "c220g3", "c220g2", "c220g1"]
+
+# OS types
+OS_TYPES = [
+    "UBUNTU22-64-STD",
+    "UBUNTU20-64-STD",
+    "UBUNTU18-64-STD",
+    "UBUNTU16-64-STD",
+    "DEBIAN11-64-STD",
+    "DEBIAN10-64-STD",
+    "FEDORA36-64-STD",
+    "CENTOS7-64-STD",
+    "CENTOS8-64-STD",
+    "RHEL8-64-STD",
+]
+
+# The first error means deletion not successful have to retry
+# The second error means experiment does not exist maybe already deleted and no need to retry
+DELETE_EXPERIMENT_ERRORS = [
+    "resource is busy; try again later",  # -> retry
+    "No such slice here",  # -> no need to retry,
+    "get_credentials encountered an error requesting the slice credential: No such Slice",  # -> no need to retry, already expired
+    "expired on",  # -> no need to retry, already expired
+]
diff --git a/provisioner/daemon.py b/provisioner/daemon.py
new file mode 100755
index 0000000..7f186e4
--- /dev/null
+++ b/provisioner/daemon.py
@@ -0,0 +1,505 @@
+import datetime
+import signal
+import subprocess
+import threading
+import time
+from typing import Optional
+
+from apscheduler.schedulers.blocking import BlockingScheduler
+from apscheduler.triggers.interval import IntervalTrigger
+
+from provisioner.cloudlab_provisioner import CloudlabProvisioner
+from provisioner.config.settings import DefaultSettings
+from provisioner.state_manager import CLUSTER_STATUS, SREGYM_STATUS, StateManager
+from provisioner.utils.email_sender import EmailSender
+from provisioner.utils.logger import logger
+from provisioner.utils.ssh import SSHManager
+from scripts.geni_lib.cluster_setup import setup_cloudlab_cluster_with_sregym
+
+# Global stop event for graceful shutdown
+stop_event = threading.Event()
+
+
+class ProvisionerDaemon:
+    def __init__(self):
+        logger.info("Initializing Provisioner Daemon...")
+        self.state_manager = StateManager(db_path=DefaultSettings.DATABASE_PATH)
+        self.cloudlab = CloudlabProvisioner()
+
+        self.scheduler = BlockingScheduler()
+        logger.info("Provisioner Daemon initialized.")
+
+    def _get_ssh_manager(
+        self, hostname: str, port: int = 22, timeout: int = DefaultSettings.DEFAULT_SSH_TIME_OUT_SECONDS
+    ) -> SSHManager:
+        """
+        Create an SSHManager instance for a given host.
+        """
+        return SSHManager(
+            hostname=hostname,
+            username=DefaultSettings.PROVISIONER_DEFAULT_SSH_USERNAME,
+            private_key_path=DefaultSettings.PROVISIONER_SSH_PRIVATE_KEY_PATH,
+            port=port,
+            timeout=timeout,
+        )
+
+    def check_automatic_provisioning(self):
+        logger.info("Running: Automatic Provisioning Check")
+        try:
+            effective_pool_size = self.state_manager.count_total_available_clusters()
+            needed = DefaultSettings.MIN_AVAILABLE_CLUSTERS - effective_pool_size
+
+            logger.info(f"Pool Status: EffectivePool={effective_pool_size}. Needed={needed}")
+
+            for _ in range(max(0, needed)):
+                current_total_managed = self.state_manager.count_total_managed_clusters()
+                if current_total_managed >= DefaultSettings.MAX_TOTAL_CLUSTERS:
+                    logger.warning(
+                        f"Max total clusters ({DefaultSettings.MAX_TOTAL_CLUSTERS}) reached. Cannot auto-provision more."
+                    )
+                    break
+
+                logger.info(f"Attempting to auto-provision a new cluster. Current total: {current_total_managed}")
+                slice_name = self.cloudlab.generate_slice_name()
+
+                # Record intention to provision
+                self.state_manager.create_cluster_record(
+                    slice_name=slice_name,
+                    aggregate_name="<PENDING>",
+                    # hardware_type=DefaultSettings.DEFAULT_HARDWARE_TYPE,
+                    os_type=DefaultSettings.DEFAULT_OS_TYPE,
+                    node_count=DefaultSettings.DEFAULT_NODE_COUNT,
+                    status=CLUSTER_STATUS.STATUS_AUTO_PROVISIONING,
+                )
+
+                experiment_info = None
+
+                try:
+                    experiment_info = self.cloudlab.create_experiment(
+                        slice_name=slice_name,
+                        hardware_type=DefaultSettings.DEFAULT_HARDWARE_TYPE,
+                        os_type=DefaultSettings.DEFAULT_OS_TYPE,
+                        node_count=DefaultSettings.DEFAULT_NODE_COUNT,
+                        duration=DefaultSettings.UNCLAIMED_CLUSTER_TIMEOUT_HOURS,
+                    )
+
+                    if experiment_info and experiment_info.get("login_info"):
+                        control_node_info = next((n for n in experiment_info["login_info"] if n[0] == "control"), None)
+                        if not control_node_info:
+                            raise ValueError("Control node info not found in login_info")
+
+                        hostname = control_node_info[2]
+                        expires_at = datetime.datetime.now() + datetime.timedelta(hours=experiment_info["duration"])
+
+                        self.state_manager.update_cluster_record(
+                            slice_name,
+                            aggregate_name=experiment_info["aggregate_name"],
+                            hardware_type=experiment_info["hardware_type"],
+                            control_node_hostname=hostname,
+                            login_info=experiment_info["login_info"],
+                            cloudlab_expires_at=expires_at,
+                            # Status remains PROVISIONING until SREGym setup
+                        )
+                        logger.info(f"Cluster {slice_name} provisioned by Cloudlab. Host: {hostname}")
+
+                        try:
+                            while not self.cloudlab.are_nodes_ready(slice_name, experiment_info["aggregate_name"]):
+                                logger.info(f"Waiting for nodes to be ready for {slice_name} on {hostname}...")
+                                time.sleep(10)
+                            logger.info(f"Nodes are ready for {slice_name} on {hostname}.")
+                        except Exception as e:
+                            logger.error(f"Error: {e}")
+                            self.state_manager.update_cluster_record(
+                                slice_name, status=CLUSTER_STATUS.STATUS_ERROR, last_error_message=str(e)
+                            )
+                            continue
+
+                        # NOTE: not setting up SREGym when auto provisioning rather when user claims a cluster
+                        # self._setup_sregym_and_finalize(experiment_info)
+
+                        self.state_manager.update_cluster_record(
+                            slice_name, status=CLUSTER_STATUS.STATUS_UNCLAIMED_READY
+                        )
+
+                    else:
+                        err_msg = f"Failed to create experiment {slice_name} via Cloudlab."
+                        logger.error(err_msg)
+                        self.state_manager.update_cluster_record(
+                            slice_name,
+                            status=CLUSTER_STATUS.STATUS_ERROR,
+                            last_error_message=err_msg,
+                        )
+                except Exception as e:
+                    logger.error(f"Error during Cloudlab provisioning for {slice_name}: {e}", exc_info=True)
+                    self.state_manager.update_cluster_record(
+                        slice_name, status=CLUSTER_STATUS.STATUS_ERROR, last_error_message=str(e)
+                    )
+
+                    # If was provisioned, delete the cluster
+                    if experiment_info and experiment_info.get("aggregate_name"):
+                        self.cloudlab.delete_experiment(slice_name, experiment_info["aggregate_name"])
+        except Exception as e:
+            logger.error(f"Critical error in automatic provisioning check: {e}", exc_info=True)
+
+    def _setup_sregym_and_finalize(self, experiment_info: dict):
+        """
+        Setup SREGym and finalize cluster state.
+        """
+        try:
+            slice_name = experiment_info["slice_name"]
+            login_info = experiment_info["login_info"]
+
+            hosts = [info[2] for info in login_info]
+
+            cfg = {
+                "cloudlab": {
+                    "ssh_user": DefaultSettings.PROVISIONER_DEFAULT_SSH_USERNAME,
+                    "ssh_key": DefaultSettings.PROVISIONER_SSH_PRIVATE_KEY_PATH,
+                    "nodes": hosts,
+                },
+                "pod_network_cidr": DefaultSettings.DEFAULT_POD_NETWORK_CIDR,
+                "deploy_sregym": True,
+                "deploy_key": DefaultSettings.DEPLOY_KEY_PATH,
+            }
+
+            setup_cloudlab_cluster_with_sregym(cfg)
+
+            logger.info(f"SREGym setup for {slice_name} completed successfully.")
+
+            self.state_manager.update_cluster_record(
+                slice_name,
+                status=CLUSTER_STATUS.STATUS_UNCLAIMED_READY,
+                sregym_setup_status=SREGYM_STATUS.SREGYM_SUCCESS,
+            )
+        except Exception as e:
+            logger.error(f"Error during SREGym setup for {slice_name}: {e}", exc_info=True)
+            self.state_manager.update_cluster_record(
+                slice_name,
+                status=CLUSTER_STATUS.STATUS_ERROR,
+                sregym_setup_status=SREGYM_STATUS.SREGYM_FAILED,
+                last_error_message="SREGym setup failed",
+            )
+            raise e
+
+    def check_unclaimed_cluster_timeout(self):
+        logger.info("Running: Unclaimed Cluster Timeout Check")
+        try:
+            unclaimed_clusters = self.state_manager.get_clusters_by_status(CLUSTER_STATUS.STATUS_UNCLAIMED_READY)
+            now = datetime.datetime.now()
+
+            for cluster in unclaimed_clusters:
+                slice_name = cluster["slice_name"]
+
+                created_at = cluster["created_at"]
+
+                if not isinstance(created_at, datetime.datetime):
+                    created_at = datetime.datetime.fromisoformat(str(created_at))
+
+                if now - created_at > datetime.timedelta(hours=DefaultSettings.UNCLAIMED_CLUSTER_TIMEOUT_HOURS):
+                    logger.info(
+                        f"Unclaimed cluster {slice_name} (in pool since {created_at}) has timed out. Marking for termination."
+                    )
+                    # Always mark for termination. Auto-provisioning will handle replenishment.
+                    self.state_manager.update_cluster_record(slice_name, status=CLUSTER_STATUS.STATUS_TERMINATING)
+                else:
+                    logger.debug(
+                        f"Unclaimed cluster {slice_name} (in pool since {created_at}) is within timeout window."
+                    )
+        except Exception as e:
+            logger.error(f"Critical error in unclaimed cluster timeout check: {e}", exc_info=True)
+
+    # The provisioner should extend the cluster daily until the user reliquishing timeout
+    def check_claimed_cluster_extension(self):
+        logger.info("Running: Claimed Cluster Extension Check")
+        try:
+            claimed_clusters = self.state_manager.get_clusters_by_status(CLUSTER_STATUS.STATUS_CLAIMED)
+            now = datetime.datetime.now()
+            for cluster in claimed_clusters:
+                # Check if we need to extend based on last extension time
+                last_extended_at = cluster.get("last_extended_at")
+                if last_extended_at:
+                    if not isinstance(last_extended_at, datetime.datetime):
+                        last_extended_at = datetime.datetime.fromisoformat(str(last_extended_at))
+                    # If last extension was less than 24 hours ago, skip
+                    if now - last_extended_at < datetime.timedelta(
+                        hours=DefaultSettings.CLAIMED_CLUSTER_EXTENSION_CHECK_HOURS
+                    ):
+                        continue
+
+                logger.info(f"Performing daily extension for claimed cluster {cluster['slice_name']}.")
+                new_duration_hours = DefaultSettings.CLAIMED_CLUSTER_DEFAULT_DURATION_HOURS
+                try:
+                    if self.cloudlab.renew_experiment(
+                        cluster["slice_name"], new_duration_hours, cluster["aggregate_name"]
+                    ):
+                        new_cloudlab_expires_at = now + datetime.timedelta(hours=new_duration_hours)
+                        self.state_manager.update_cluster_record(
+                            cluster["slice_name"], cloudlab_expires_at=new_cloudlab_expires_at, last_extended_at=now
+                        )
+                        logger.info(f"Successfully extended {cluster['slice_name']} to {new_cloudlab_expires_at}.")
+
+                    else:
+                        logger.error(
+                            f"Failed to extend claimed cluster {cluster['slice_name']}. User should be notified."
+                        )
+
+                        try:
+                            email_sender = EmailSender()
+                            if email_sender.is_email_set():
+                                email_sender.send_cluster_extension_failure_notice(
+                                    to_addresses=[cluster["claimed_by_user_id"]],
+                                    cluster_name=cluster["slice_name"],
+                                    error_message="Failed to extend cluster",
+                                    current_expiry=cluster["cloudlab_expires_at"],
+                                )
+                        except Exception as e:
+                            logger.error(f"Error sending cluster extension failure notice: {e}", exc_info=True)
+                except Exception as e:
+                    logger.error(f"Error extending claimed cluster {cluster['slice_name']}: {e}", exc_info=True)
+
+                    try:
+                        email_sender = EmailSender()
+                        if email_sender.is_email_set():
+                            email_sender.send_cluster_extension_failure_notice(
+                                to_addresses=[cluster["claimed_by_user_id"]],
+                                cluster_name=cluster["slice_name"],
+                                error_message="Failed to extend cluster",
+                                current_expiry=cluster["cloudlab_expires_at"],
+                            )
+                    except Exception as e:
+                        logger.error(f"Error sending cluster extension failure notice: {e}", exc_info=True)
+        except Exception as e:
+            logger.error(f"Critical error in claimed cluster extension check: {e}", exc_info=True)
+
+    def _get_key_fingerprint(self, key_path: str) -> str:
+        result = subprocess.run(["ssh-keygen", "-lf", key_path], capture_output=True, text=True)
+        output = result.stdout.strip()
+        fingerprint = output.split()[1]  # Get the SHA256:xxxxxxxx part
+        return fingerprint
+
+    def _get_user_inactivity_duration(self, hostname: str) -> Optional[datetime.datetime]:
+        logger.info(f"Attempting to get actual last SSH time for {hostname}.")
+        try:
+            provisioner_fingerprint = self._get_key_fingerprint(self.cloudlab.user_pubkeypath)
+
+            ssh_manager = self._get_ssh_manager(hostname)
+
+            # Command to get SSH activity from remote auth.log with sudo
+            cmd = (
+                "sudo cat /var/log/auth.log | grep sshd | grep 'Accepted publickey for' | awk '{print $1,$2,$3,$9,$16}'"
+            )
+            stdout, stderr, exit_code = ssh_manager.execute_ssh_command(cmd)
+
+            if exit_code != 0 or not stdout:
+                logger.warning(f"No SSH activity found for {hostname}. Exit code: {exit_code}, Error: {stderr}")
+                return None
+
+            # Parse the timestamps from the log entries
+            provisioner_timestamps = []
+            non_provisioner_timestamps = []
+
+            for line in stdout.splitlines():
+                try:
+                    parts = line.split()
+                    if len(parts) >= 3:
+                        # Combine month, day, and time
+                        timestamp_str = " ".join(parts[:3])
+                        timestamp = datetime.datetime.strptime(timestamp_str, "%b %d %H:%M:%S")
+                        # Add current year since log entries don't include it
+                        timestamp = timestamp.replace(year=datetime.datetime.now().year)
+
+                        # Check if this is a provisioner SSH
+                        if provisioner_fingerprint in line:
+                            provisioner_timestamps.append(timestamp)
+                        else:
+                            non_provisioner_timestamps.append(timestamp)
+
+                except Exception as e:
+                    logger.warning(f"Failed to parse timestamp from line: {line}, error: {e}")
+                    continue
+
+            # Since we just SSH'd in with provisioner key, the the latest provisioner time is the current time
+            current_time = provisioner_timestamps[-1]
+
+            if not provisioner_timestamps:
+                logger.warning(f"No provisioner SSH activity found for {hostname}")
+                return None
+
+            # Case 1: If we have non-provisioner SSH activity
+            if non_provisioner_timestamps:
+                last_non_provisioner = max(non_provisioner_timestamps)
+                time_diff = current_time - last_non_provisioner
+                logger.info(f"Last non-provisioner SSH was {time_diff.total_seconds()/3600:.2f} hours ago")
+                return time_diff
+
+            # Case 2: If no non-provisioner SSH activity, use first provisioner time
+            else:
+                time_diff = current_time - provisioner_timestamps[0]
+                logger.info(
+                    f"No non-provisioner SSH found. First provisioner SSH was {time_diff.total_seconds()/3600:.2f} hours ago"
+                )
+                return time_diff
+
+        except Exception as e:
+            logger.error(f"Error getting SSH time for {hostname}: {e}", exc_info=True)
+            return None
+
+    def check_claimed_cluster_inactivity(self):
+        logger.info("Running: Claimed Cluster Inactivity Check")
+        try:
+            claimed_clusters = self.state_manager.get_clusters_by_status(CLUSTER_STATUS.STATUS_CLAIMED)
+            now = datetime.datetime.now()
+            for cluster in claimed_clusters:
+                slice_name = cluster["slice_name"]
+                if cluster.get("evaluation_override") in (True, 1):
+                    logger.debug(f"Cluster {slice_name} has evaluation override. Skipping inactivity check.")
+                    continue
+
+                # Get latest duration from all nodes
+                node_durations = []
+                for node in cluster["login_info"]:
+                    hostname = node[2]
+                    node_durations.append(self._get_user_inactivity_duration(hostname))
+
+                # Get the latest duration
+                user_inactivity_duration = min(node_durations)
+
+                if user_inactivity_duration is None:
+                    logger.warning(f"No user inactivity duration found for {slice_name}. Skipping inactivity check.")
+                    continue
+
+                self.state_manager.update_cluster_record(slice_name, last_activity_at=now - user_inactivity_duration)
+
+                if user_inactivity_duration > datetime.timedelta(
+                    hours=DefaultSettings.CLAIMED_CLUSTER_INACTIVITY_TIMEOUT_HOURS
+                ):
+                    logger.info(f"Claimed cluster {slice_name} inactive for {user_inactivity_duration}. Relinquishing.")
+                    self.state_manager.update_cluster_record(
+                        slice_name,
+                        status=CLUSTER_STATUS.STATUS_TERMINATING,
+                        claimed_by_user_id=None,
+                        user_ssh_key_installed=False,
+                    )
+
+                    try:
+                        email_sender = EmailSender()
+                        if email_sender.is_email_set():
+                            email_sender.send_inactive_cluster_deletion_notice(
+                                to_addresses=[cluster["claimed_by_user_id"]],
+                                cluster_name=cluster["slice_name"],
+                                last_activity=now - user_inactivity_duration,
+                            )
+                            logger.info(
+                                f"Sent inactive cluster deletion notice to {cluster['claimed_by_user_id']} for cluster {slice_name}"
+                            )
+                    except Exception as e:
+                        logger.error(f"Error sending inactive cluster deletion notice: {e}", exc_info=True)
+                else:
+                    logger.debug(
+                        f"Cluster {slice_name} last activity at {now - user_inactivity_duration} is within inactivity window."
+                    )
+        except Exception as e:
+            logger.error(f"Critical error in claimed cluster inactivity check: {e}", exc_info=True)
+
+    def process_terminating_clusters(self):
+        logger.info("Running: Process Terminating Clusters")
+        try:
+            terminating_clusters = self.state_manager.get_clusters_by_status(CLUSTER_STATUS.STATUS_TERMINATING)
+
+            for cluster in terminating_clusters:
+                slice_name = cluster["slice_name"]
+                aggregate_name = cluster["aggregate_name"]
+                logger.info(f"Attempting to terminate cluster {slice_name} on {aggregate_name}.")
+                try:
+                    if not aggregate_name or aggregate_name == "<PENDING>":
+                        logger.warning(
+                            f"Cannot terminate {slice_name}, aggregate_name is unknown ('{aggregate_name}'). Deleting DB record only."
+                        )
+                        self.state_manager.delete_cluster_record(slice_name)
+                        continue
+
+                    if self.cloudlab.delete_experiment(slice_name, aggregate_name):
+                        logger.info(f"Successfully deleted experiment {slice_name} from Cloudlab.")
+                        self.state_manager.delete_cluster_record(slice_name)
+                        logger.info(f"Removed cluster record for {slice_name}.")
+                    else:
+                        err_msg = f"Cloudlab API failed to delete {slice_name}. Will retry on next check."
+                        logger.error(err_msg)
+                        self.state_manager.update_cluster_record(
+                            slice_name, last_error_message=err_msg, status=CLUSTER_STATUS.STATUS_TERMINATING
+                        )
+                except Exception as e:
+                    err_msg = f"Error deleting {slice_name} from Cloudlab: {e}"
+                    logger.error(err_msg + ". Will retry on next check.", exc_info=True)
+                    self.state_manager.update_cluster_record(
+                        slice_name, last_error_message=err_msg, status=CLUSTER_STATUS.STATUS_TERMINATING
+                    )
+
+        except Exception as e:
+            logger.error(f"Critical error in processing terminating clusters: {e}", exc_info=True)
+
+    def run_all_checks(self):
+        """Runs all periodic checks in sequence."""
+        if stop_event.is_set():
+            logger.info("Stop event received by run_all_checks, skipping scheduled run.")
+            return
+
+        logger.info("======== Starting Periodic Checks Cycle ========")
+        try:
+            self.check_unclaimed_cluster_timeout()
+            self.check_claimed_cluster_inactivity()
+            self.check_automatic_provisioning()
+            self.check_claimed_cluster_extension()
+            self.process_terminating_clusters()
+        except Exception as e:
+            logger.critical(f"Unhandled exception during periodic checks cycle: {e}", exc_info=True)
+        logger.info("======== Finished Periodic Checks Cycle ========")
+
+    def start(self):
+        logger.info("Starting Provisioner Daemon Scheduler...")
+        # Run once immediately at start, then schedule
+        try:
+            logger.info("Performing initial run of all checks...")
+            self.run_all_checks()
+            logger.info("Initial run of checks complete.")
+        except Exception as e:
+            logger.critical(f"Initial run of checks failed critically: {e}", exc_info=True)
+
+        # Schedule jobs
+        self.scheduler.add_job(
+            self.run_all_checks,
+            trigger=IntervalTrigger(seconds=DefaultSettings.DEFAULT_SSH_TIME_OUT_SECONDS),
+            id="provisioner_main_checks_job",
+            name="Run all provisioner checks",
+            replace_existing=True,
+            misfire_grace_time=300,
+            max_instances=1,
+        )
+
+        try:
+            self.scheduler.start()
+        except (KeyboardInterrupt, SystemExit):
+            logger.info("Scheduler stopped by user/system.")
+        finally:
+            if self.scheduler.running:
+                logger.info("Shutting down scheduler...")
+                self.scheduler.shutdown(wait=True)
+            logger.info("Provisioner Daemon scheduler shut down.")
+
+    # --- Signal Handler and Main Execution ---
+    _scheduler_instance = None
+
+    def signal_handler(signum, frame):
+        global _scheduler_instance
+        logger.info(f"Signal {signal.Signals(signum).name} received, initiating graceful shutdown...")
+        stop_event.set()
+        if _scheduler_instance and _scheduler_instance.running:
+            logger.info("Requesting scheduler shutdown...")
+            _scheduler_instance.shutdown(wait=False)
+        else:
+            logger.info("Scheduler not running or not initialized for signal handler.")
+
+
+if __name__ == "__main__":
+    daemon = ProvisionerDaemon()
+    daemon.start()
diff --git a/provisioner/setup_daemon.sh b/provisioner/setup_daemon.sh
new file mode 100755
index 0000000..39e8c8d
--- /dev/null
+++ b/provisioner/setup_daemon.sh
@@ -0,0 +1,57 @@
+#!/bin/bash
+
+# Exit on error
+set -e
+
+# Check if running as root
+if [ "$EUID" -ne 0 ]; then 
+    echo "Please run as root"
+    exit 1
+fi
+
+# Get the absolute path of the provisioner directory
+PROVISIONER_DIR=$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)
+ROOT_DIR=$(dirname "$PROVISIONER_DIR")
+VENV_PATH="$ROOT_DIR/.venv"
+
+# Create the service file
+echo "Creating systemd service file..."
+cat > /etc/systemd/system/provisioner.service << EOF
+[Unit]
+Description=Cloudlab Provisioner Daemon
+After=network.target
+
+[Service]
+Type=simple
+WorkingDirectory=$PROVISIONER_DIR
+ExecStart=$VENV_PATH/bin/python $PROVISIONER_DIR/daemon.py
+Restart=on-failure
+RestartSec=5
+Environment=PYTHONPATH=$ROOT_DIR:$PROVISIONER_DIR
+
+[Install]
+WantedBy=multi-user.target
+EOF
+
+# Set proper permissions
+chmod 644 /etc/systemd/system/provisioner.service
+
+# Reload systemd to recognize new service
+echo "Reloading systemd..."
+systemctl daemon-reload
+
+# Stop if already running
+echo "Stopping service..."
+systemctl stop provisioner.service
+
+# Start the service
+echo "Starting service..."
+systemctl start provisioner.service
+
+# Check status
+echo "Checking service status..."
+systemctl status provisioner.service
+
+echo "Setup complete! The provisioner daemon should now be running."
+echo "You can check the logs using:"
+echo "  - journalctl -u provisioner.service -f" 
\ No newline at end of file
diff --git a/provisioner/state_manager.py b/provisioner/state_manager.py
new file mode 100644
index 0000000..bbade48
--- /dev/null
+++ b/provisioner/state_manager.py
@@ -0,0 +1,364 @@
+import datetime
+import json
+import sqlite3
+from pathlib import Path
+from typing import Any, Dict, List, Optional
+
+from provisioner.utils.logger import logger
+
+
+class CLUSTER_STATUS:
+    STATUS_AUTO_PROVISIONING = "auto_provisioning"
+    STATUS_USER_PROVISIONING = "user_provisioning"
+    STATUS_UNCLAIMED_READY = "unclaimed_ready"
+    STATUS_CLAIMED = "claimed"
+    # STATUS_PENDING_CLEANUP = "pending_cleanup"
+    STATUS_TERMINATING = "terminating"
+    STATUS_ERROR = "error"
+    STATUS_TERMINATED = "terminated"
+
+
+class SREGYM_STATUS:
+    SREGYM_PENDING = "pending"
+    SREGYM_SUCCESS = "success"
+    SREGYM_FAILED = "failed"
+    SREGYM_NOT_ATTEMPTED = "not_attempted"
+
+
+class StateManager:
+    def __init__(self, db_path: str):
+        self.db_path = Path(db_path)
+        self._init_db()
+
+    def _get_db_connection(self) -> sqlite3.Connection:
+        conn = sqlite3.connect(self.db_path, detect_types=sqlite3.PARSE_DECLTYPES | sqlite3.PARSE_COLNAMES)
+        conn.row_factory = sqlite3.Row
+        conn.execute("PRAGMA foreign_keys = ON;")
+        return conn
+
+    def _init_db(self):
+        conn = self._get_db_connection()
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.cursor()
+
+                # Users Table
+                cursor.execute(
+                    """
+                CREATE TABLE IF NOT EXISTS users (
+                    user_id TEXT PRIMARY KEY,
+                    ssh_public_key TEXT NOT NULL,
+                    registered_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
+                )"""
+                )
+
+                # Clusters Table
+                cursor.execute(
+                    """
+                    CREATE TABLE IF NOT EXISTS clusters (
+                        id INTEGER PRIMARY KEY AUTOINCREMENT,
+                        slice_name TEXT UNIQUE NOT NULL,
+                        aggregate_name TEXT,
+                        status TEXT NOT NULL DEFAULT 'auto_provisioning',
+                        hardware_type TEXT,
+                        os_type TEXT,
+                        node_count INTEGER,
+                        login_info TEXT,
+                        control_node_hostname TEXT,
+                        claimed_by_user_id TEXT,
+                        user_ssh_key_installed BOOLEAN DEFAULT FALSE,
+                        sregym_setup_status TEXT DEFAULT 'not_attempted',
+                        created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+                        claimed_at TIMESTAMP,
+                        last_extended_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+                        last_activity_at TIMESTAMP,
+                        cloudlab_expires_at TIMESTAMP,
+                        evaluation_override BOOLEAN DEFAULT FALSE,
+                        last_error_message TEXT,
+                        FOREIGN KEY (claimed_by_user_id) REFERENCES users(user_id) ON DELETE SET NULL
+                    )
+                """
+                )
+                conn.commit()
+                logger.info(f"Database initialized/checked at {self.db_path}")
+        except sqlite3.Error as e:
+            logger.error(f"Database initialization error: {e}", exc_info=True)
+            raise e
+
+    # --- User Management ---
+    def add_user(self, user_id: str, ssh_public_key: str) -> bool:
+        try:
+            with self._get_db_connection() as conn:
+                conn.execute("INSERT INTO users (user_id, ssh_public_key) VALUES (?, ?)", (user_id, ssh_public_key))
+                conn.commit()
+                logger.info(f"User {user_id} registered.")
+                return True
+        except sqlite3.IntegrityError:
+            logger.warning(f"User {user_id} already exists.")
+            return False
+        except sqlite3.Error as e:
+            logger.error(f"Error adding user {user_id}: {e}", exc_info=True)
+            return False
+
+    def get_user(self, user_id: str) -> Optional[Dict[str, Any]]:
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.execute("SELECT * FROM users WHERE user_id = ?", (user_id,))
+                row = cursor.fetchone()
+                return dict(row) if row else None
+        except sqlite3.Error as e:
+            logger.error(f"Error getting user {user_id}: {e}", exc_info=True)
+            raise e
+
+    def user_exists(self, user_id: str) -> bool:
+        return self.get_user(user_id) is not None
+
+    # --- Cluster Management ---
+    def create_cluster_record(
+        self,
+        slice_name: str,
+        aggregate_name: str,
+        os_type: str,
+        node_count: int,
+        hardware_type: Optional[str] = None,
+        login_info: Optional[List[List[Any]]] = None,
+        status: str = CLUSTER_STATUS.STATUS_AUTO_PROVISIONING,
+        cloudlab_expires_at: Optional[datetime.datetime] = None,
+        claimed_by_user_id: Optional[str] = None,
+        evaluation_override: bool = False,
+        last_extended_at: Optional[datetime.datetime] = None,
+    ) -> Optional[str]:
+        """Creates a new cluster record. Returns slice_name on success."""
+        now = datetime.datetime.now()
+        login_info_json = json.dumps(login_info) if login_info else None
+        try:
+            with self._get_db_connection() as conn:
+                conn.execute(
+                    """
+                    INSERT INTO clusters (slice_name, aggregate_name, status, hardware_type, os_type, node_count,
+                                          created_at, last_activity_at, cloudlab_expires_at, claimed_by_user_id,
+                                          evaluation_override, login_info, last_extended_at)
+                    VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
+                    """,
+                    (
+                        slice_name,
+                        aggregate_name,
+                        status,
+                        hardware_type,
+                        os_type,
+                        node_count,
+                        now,
+                        now,
+                        cloudlab_expires_at,
+                        claimed_by_user_id,
+                        evaluation_override,
+                        login_info_json,
+                        last_extended_at or now,
+                    ),
+                )
+                conn.commit()
+                logger.info(f"Cluster record created for {slice_name} with status {status}.")
+                return slice_name
+        except sqlite3.IntegrityError:
+            logger.error(f"Cluster with slice_name {slice_name} already exists.", exc_info=True)
+            raise sqlite3.IntegrityError(f"Cluster with slice_name {slice_name} already exists.")
+        except sqlite3.Error as e:
+            logger.error(f"Error creating cluster record for {slice_name}: {e}", exc_info=True)
+            raise e
+
+    def get_cluster_by_slice_name(self, slice_name: str) -> Optional[Dict[str, Any]]:
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.execute("SELECT * FROM clusters WHERE slice_name = ?", (slice_name,))
+                row = cursor.fetchone()
+
+                if row:
+                    cluster_data = dict(row)
+                    if cluster_data.get("login_info"):
+                        try:
+                            cluster_data["login_info"] = json.loads(cluster_data["login_info"])
+                        except json.JSONDecodeError:
+                            logger.error(f"Invalid JSON in login_info for cluster {slice_name}.")
+                            cluster_data["login_info"] = None
+                    return cluster_data
+                else:
+                    return None
+
+        except sqlite3.Error as e:
+            logger.error(f"Error getting cluster {slice_name}: {e}", exc_info=True)
+            raise e
+
+    def update_cluster_record(self, slice_name: str, **kwargs) -> bool:
+        if not kwargs:
+            logger.warning(f"No fields provided to update for cluster {slice_name}.")
+            raise ValueError("No fields provided to update for cluster {slice_name}.")
+
+        valid_keys = [
+            # "slice_name",
+            "aggregate_name",
+            "hardware_type",
+            # "os_type",
+            # "node_count",
+            "status",
+            "control_node_hostname",
+            "login_info",
+            "claimed_by_user_id",
+            "user_ssh_key_installed",
+            "sregym_setup_status",
+            "claimed_at",
+            "last_extended_at",
+            "last_activity_at",
+            "cloudlab_expires_at",
+            "evaluation_override",
+            "last_error_message",
+            "created_at",
+        ]
+
+        set_clauses = []
+        values = []
+        for key, value in kwargs.items():
+            if key not in valid_keys:
+                logger.error(f"Invalid field '{key}' for cluster update.")
+                return False
+
+            if key == "login_info" and value is not None:
+                value = json.dumps(value)
+
+            set_clauses.append(f"{key} = ?")
+            values.append(value)
+
+        values.append(slice_name)
+        sql = f"UPDATE clusters SET {', '.join(set_clauses)} WHERE slice_name = ?"
+
+        try:
+            with self._get_db_connection() as conn:
+                conn.execute(sql, tuple(values))
+                conn.commit()
+                logger.info(f"Cluster {slice_name} updated with: {kwargs}")
+        except sqlite3.Error as e:
+            logger.error(f"Error updating cluster {slice_name}: {e}", exc_info=True)
+            raise e
+
+    def delete_cluster_record(self, slice_name: str, soft_delete: bool = True) -> bool:
+        try:
+            with self._get_db_connection() as conn:
+                if soft_delete:
+                    cursor = conn.execute(
+                        "UPDATE clusters SET status = ? WHERE slice_name = ?",
+                        (CLUSTER_STATUS.STATUS_TERMINATED, slice_name),
+                    )
+                else:
+                    cursor = conn.execute("DELETE FROM clusters WHERE slice_name = ?", (slice_name,))
+                conn.commit()
+                if cursor.rowcount > 0:
+                    logger.info(f"Cluster record {slice_name} deleted.")
+                else:
+                    logger.warning(f"No cluster record found to delete for {slice_name}.")
+        except sqlite3.Error as e:
+            logger.error(f"Error deleting cluster record {slice_name}: {e}", exc_info=True)
+            raise e
+
+    # --- Specific Queries ---
+
+    def _parse_cluster_row(self, row: sqlite3.Row) -> Dict[str, Any]:
+        """Helper to convert a row to dict and parse login_info."""
+        if not row:
+            return {}
+        cluster_data = dict(row)
+        if cluster_data.get("login_info"):
+            try:
+                cluster_data["login_info"] = json.loads(cluster_data["login_info"])
+            except json.JSONDecodeError:
+                logger.warning(f"Failed to parse login_info for cluster ID {cluster_data.get('id')}")
+                cluster_data["login_info"] = None
+        return cluster_data
+
+    def get_clusters_by_status(self, status: str) -> List[Dict[str, Any]]:
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.execute("SELECT * FROM clusters WHERE status = ?", (status,))
+                rows = cursor.fetchall()
+                return [self._parse_cluster_row(row) for row in rows]
+        except sqlite3.Error as e:
+            logger.error(f"Error getting clusters with status {status}: {e}", exc_info=True)
+            raise e
+
+    def get_unclaimed_ready_clusters(self) -> List[Dict[str, Any]]:
+        return self.get_clusters_by_status(CLUSTER_STATUS.STATUS_UNCLAIMED_READY)
+
+    def get_claimed_clusters_by_user(self, user_id: str) -> List[Dict[str, Any]]:
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.execute(
+                    "SELECT * FROM clusters WHERE claimed_by_user_id = ? AND status = ?",
+                    (user_id, CLUSTER_STATUS.STATUS_CLAIMED),
+                )
+                rows = cursor.fetchall()
+                return [self._parse_cluster_row(row) for row in rows]
+        except sqlite3.Error as e:
+            logger.error(f"Error getting claimed clusters for user {user_id}: {e}", exc_info=True)
+            raise e
+
+    def count_total_managed_clusters(self) -> int:
+        """Counts clusters that contribute to the MAX_TOTAL_CLUSTERS limit."""
+        # These are clusters that are active or in a state that will soon become active/cleaned.
+        # Excludes clusters that are definitely gone or in a permanent error state.
+        managed_statuses = (
+            CLUSTER_STATUS.STATUS_AUTO_PROVISIONING,
+            CLUSTER_STATUS.STATUS_USER_PROVISIONING,
+            CLUSTER_STATUS.STATUS_UNCLAIMED_READY,
+            CLUSTER_STATUS.STATUS_CLAIMED,
+            # CLUSTER_STATUS.STATUS_PENDING_CLEANUP,
+        )
+
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.execute(
+                    f"SELECT COUNT(*) FROM clusters WHERE status IN (? , ? , ? , ?)", managed_statuses
+                )
+                count = cursor.fetchone()[0]
+                return count if count is not None else 0
+        except sqlite3.Error as e:
+            logger.error(f"Error counting total managed clusters: {e}", exc_info=True)
+            raise e
+
+    def count_total_available_clusters(self) -> int:
+        """Counts clusters that are available to be claimed."""
+        available_statuses = (
+            CLUSTER_STATUS.STATUS_AUTO_PROVISIONING,
+            # CLUSTER_STATUS.STATUS_USER_PROVISIONING,
+            CLUSTER_STATUS.STATUS_UNCLAIMED_READY,
+            # CLUSTER_STATUS.STATUS_PENDING_CLEANUP,
+        )
+
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.execute(f"SELECT COUNT(*) FROM clusters WHERE status IN (? , ?)", available_statuses)
+                count = cursor.fetchone()[0]
+                return count if count is not None else 0
+        except sqlite3.Error as e:
+            logger.error(f"Error counting total available clusters: {e}", exc_info=True)
+            raise e
+
+    def count_user_claimed_clusters(self, user_id: str) -> int:
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.execute(
+                    "SELECT COUNT(*) FROM clusters WHERE claimed_by_user_id = ? AND (status = ? OR status = ?)",
+                    (user_id, CLUSTER_STATUS.STATUS_CLAIMED, CLUSTER_STATUS.STATUS_USER_PROVISIONING),
+                )
+                count = cursor.fetchone()[0]
+                return count if count is not None else 0
+        except sqlite3.Error as e:
+            logger.error(f"Error counting clusters for user {user_id}: {e}", exc_info=True)
+            raise e
+
+    def get_all_clusters(self) -> List[Dict[str, Any]]:
+        try:
+            with self._get_db_connection() as conn:
+                cursor = conn.execute("SELECT * FROM clusters ORDER BY created_at DESC")
+                rows = cursor.fetchall()
+                return [dict(row) for row in rows]
+        except sqlite3.Error as e:
+            logger.error(f"Error getting all clusters: {e}", exc_info=True)
+            raise e
diff --git a/provisioner/utils/__init__.py b/provisioner/utils/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/provisioner/utils/email_sender.py b/provisioner/utils/email_sender.py
new file mode 100644
index 0000000..0a8d017
--- /dev/null
+++ b/provisioner/utils/email_sender.py
@@ -0,0 +1,160 @@
+import os
+import re
+import smtplib
+from email.mime.multipart import MIMEMultipart
+from email.mime.text import MIMEText
+from typing import List, Optional
+
+from dotenv import load_dotenv
+
+load_dotenv(override=True)
+
+
+class EmailSender:
+    # SMTP Configuration
+    SMTP_SERVER = os.getenv("SMTP_SERVER", "")
+    SMTP_PORT = int(os.getenv("SMTP_PORT", ""))
+    SMTP_USERNAME = os.getenv("SMTP_USERNAME", "")
+    SMTP_PASSWORD = os.getenv("SMTP_PASSWORD", "")  # For Gmail, this should be an App Password
+    SMTP_USE_TLS = os.getenv("SMTP_USE_TLS", "true").lower() == "true"
+
+    # Email Configuration
+    DEFAULT_FROM_EMAIL = os.getenv("DEFAULT_FROM_EMAIL", SMTP_USERNAME)
+    DEFAULT_REPLY_TO = os.getenv("DEFAULT_REPLY_TO", "")
+    EMAIL_TIMEOUT = int(os.getenv("EMAIL_TIMEOUT", "30"))  # seconds
+
+    @staticmethod
+    def is_gmail_app_password(password: str) -> bool:
+        return bool(re.match(r"^[a-zA-Z0-9]{16}$", password))
+
+    def __init__(
+        self,
+        smtp_server: str = None,
+        smtp_port: int = None,
+        username: str = None,
+        password: str = None,
+        use_tls: bool = None,
+    ):
+        self.smtp_server = smtp_server or self.SMTP_SERVER
+        self.smtp_port = smtp_port or self.SMTP_PORT
+        self.username = username or self.SMTP_USERNAME
+        self.password = password or self.SMTP_PASSWORD
+        self.use_tls = use_tls if use_tls is not None else self.SMTP_USE_TLS
+
+        # Validate Gmail configuration
+        if "gmail.com" in self.smtp_server.lower():
+            if not self.is_gmail_app_password(self.password):
+                raise ValueError("For Gmail, you must use an App Password.")
+
+    def is_email_set(self) -> bool:
+        return (
+            self.username is not None
+            and self.password is not None
+            and self.smtp_server is not None
+            and self.smtp_port is not None
+        )
+
+    def send_email(
+        self,
+        to_addresses: List[str],
+        subject: str,
+        body: str,
+        cc_addresses: Optional[List[str]] = None,
+        bcc_addresses: Optional[List[str]] = None,
+        is_html: bool = False,
+    ) -> bool:
+        try:
+            # Create message
+            msg = MIMEMultipart()
+            msg["From"] = self.username
+            msg["To"] = ", ".join(to_addresses)
+            msg["Subject"] = subject
+
+            if cc_addresses:
+                msg["Cc"] = ", ".join(cc_addresses)
+
+            # Attach body
+            content_type = "html" if is_html else "plain"
+            msg.attach(MIMEText(body, content_type))
+
+            # Combine all recipients
+            all_recipients = to_addresses.copy()
+            if cc_addresses:
+                all_recipients.extend(cc_addresses)
+            if bcc_addresses:
+                all_recipients.extend(bcc_addresses)
+
+            # Connect to SMTP server and send email
+            with smtplib.SMTP(self.smtp_server, self.smtp_port) as server:
+                if self.use_tls:
+                    server.starttls()
+                server.login(self.username, self.password)
+                server.send_message(msg, self.username, all_recipients)
+
+            return True
+
+        except Exception as e:
+            return False
+
+    def send_html_email(
+        self,
+        to_addresses: List[str],
+        subject: str,
+        html_body: str,
+        cc_addresses: Optional[List[str]] = None,
+        bcc_addresses: Optional[List[str]] = None,
+    ) -> bool:
+        return self.send_email(
+            to_addresses=to_addresses,
+            subject=subject,
+            body=html_body,
+            cc_addresses=cc_addresses,
+            bcc_addresses=bcc_addresses,
+            is_html=True,
+        )
+
+    def send_inactive_cluster_deletion_notice(
+        self,
+        to_addresses: List[str],
+        cluster_name: str,
+        last_activity: str,
+    ) -> bool:
+        """
+        Send notification about an inactive cluster scheduled for deletion.
+        """
+        subject = f"Cluster '{cluster_name}' Scheduled for Deletion"
+
+        html_body = f"""
+        <html>
+        <body style="font-family: Arial, sans-serif; line-height: 1.6; color: #333;">
+            <p>Your cluster <strong>{cluster_name}</strong> has been inactive for quite a while and is being deleted.</strong>.</p>
+            <p>Last activity: {last_activity}</p>
+        </body>
+        </html>
+        """
+
+        return self.send_html_email(to_addresses=to_addresses, subject=subject, html_body=html_body)
+
+    def send_cluster_extension_failure_notice(
+        self,
+        to_addresses: List[str],
+        cluster_name: str,
+        error_message: str,
+        current_expiry: str,
+    ) -> bool:
+        """
+        Send notification about a failed cluster extension attempt.
+        """
+        subject = f"Failed to Extend Cluster '{cluster_name}'"
+
+        html_body = f"""
+        <html>
+        <body style="font-family: Arial, sans-serif; line-height: 1.6; color: #333;">
+            <p>Failed to extend cluster <strong>{cluster_name}</strong>.</p>
+            <p>Error: {error_message}</p>
+            <p>Current expiry: {current_expiry}</p>
+        </body>
+        </html>
+        """
+
+        return self.send_html_email(to_addresses=to_addresses, subject=subject, html_body=html_body)
diff --git a/provisioner/utils/logger.py b/provisioner/utils/logger.py
new file mode 100644
index 0000000..5b9e39e
--- /dev/null
+++ b/provisioner/utils/logger.py
@@ -0,0 +1,31 @@
+import logging
+import os
+from datetime import datetime
+from logging.handlers import TimedRotatingFileHandler
+
+from provisioner.config.settings import DefaultSettings
+
+# Configure the root logger
+logger = logging.getLogger()
+logger.setLevel(logging.INFO)
+
+# Avoid adding handlers if already configured
+if not logger.handlers:
+    # Console handler
+    console_handler = logging.StreamHandler()
+    console_handler.setLevel(logging.INFO)
+
+    # Formatter
+    formatter = logging.Formatter("%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+    console_handler.setFormatter(formatter)
+    logger.addHandler(console_handler)
+
+    # File handler with date-based rotation
+    log_dir = DefaultSettings.LOG_PATH
+    os.makedirs(log_dir, exist_ok=True)
+
+    log_file = os.path.join(log_dir, f"provisioner_{datetime.now().strftime('%Y-%m-%d')}.log")
+    file_handler = TimedRotatingFileHandler(log_file, when="midnight", interval=1, backupCount=7, encoding="utf-8")
+    file_handler.setLevel(logging.INFO)
+    file_handler.setFormatter(formatter)
+    logger.addHandler(file_handler)
diff --git a/provisioner/utils/parser.py b/provisioner/utils/parser.py
new file mode 100644
index 0000000..3e162f8
--- /dev/null
+++ b/provisioner/utils/parser.py
@@ -0,0 +1,113 @@
+import html
+import json
+import xml.etree.ElementTree as ET
+
+import requests
+from bs4 import BeautifulSoup
+
+
+def parse_sliver_info(xml_text):
+    root = ET.fromstring(xml_text)
+
+    # Get experiment description
+    rspec_tour = root.find(".//{http://www.protogeni.net/resources/rspec/ext/apt-tour/1}description")
+    description = rspec_tour.text if rspec_tour is not None else "No description"
+
+    # Get expiration
+    expiration = root.get("expires", "No expiration date")
+
+    # Parse node information
+    nodes = []
+    for node in root.findall(".//{http://www.geni.net/resources/rspec/3}node"):
+        node_info = {
+            "client_id": node.get("client_id"),
+            "component_id": node.get("component_id"),
+            "hardware": node.find(".//{http://www.protogeni.net/resources/rspec/ext/emulab/1}vnode").get(
+                "hardware_type"
+            ),
+            "os_image": node.find(".//{http://www.protogeni.net/resources/rspec/ext/emulab/1}vnode").get("disk_image"),
+        }
+
+        # Get host information
+        host = node.find(".//{http://www.geni.net/resources/rspec/3}host")
+        if host is not None:
+            node_info["hostname"] = host.get("name")
+            node_info["public_ip"] = host.get("ipv4")
+
+        # Get interface information
+        interface = node.find(".//{http://www.geni.net/resources/rspec/3}interface")
+        if interface is not None:
+            ip = interface.find(".//{http://www.geni.net/resources/rspec/3}ip")
+            if ip is not None:
+                node_info["internal_ip"] = ip.get("address")
+                node_info["netmask"] = ip.get("netmask")
+
+        nodes.append(node_info)
+
+    # Get location information
+    location = root.find(".//{http://www.protogeni.net/resources/rspec/ext/site-info/1}location")
+    location_info = {
+        "country": location.get("country") if location is not None else None,
+        "latitude": location.get("latitude") if location is not None else None,
+        "longitude": location.get("longitude") if location is not None else None,
+    }
+
+    return {
+        "description": description,
+        "expiration": expiration,
+        "nodes": nodes,
+        "location": location_info,
+    }
+
+
+def collect_and_parse_hardware_info():
+    portal_hardware_url = "https://www.cloudlab.us/portal-hardware.php"
+
+    try:
+        response = requests.get(portal_hardware_url)
+        response.raise_for_status()
+        html_content = response.text
+        soup = BeautifulSoup(html_content, "html.parser")
+        amlist_script_tag = soup.find("script", {"id": "amlist-json", "type": "text/plain"})
+
+        if not amlist_script_tag:
+            return None
+
+        escaped_json_string = amlist_script_tag.string
+        if not escaped_json_string:
+            return None
+
+        unescaped_json_string = html.unescape(escaped_json_string)
+        amlist_data = json.loads(unescaped_json_string)
+
+        extracted_hardware_list = []
+        for urn_key, urn_info in amlist_data.items():
+            if isinstance(urn_info, dict):
+                cluster_name = urn_info.get("name", "N/A")
+                typeinfo = urn_info.get("typeinfo")
+
+                if cluster_name not in [
+                    "Cloudlab Utah",
+                    "Cloudlab Wisconsin",
+                    "Cloudlab Clemson",
+                ]:
+                    continue
+
+                if isinstance(typeinfo, dict):
+                    for hw_name, hw_stats in typeinfo.items():
+                        if isinstance(hw_stats, dict):
+                            total_count = hw_stats.get("count", 0)
+                            free_count = hw_stats.get("free", 0)
+
+                            extracted_hardware_list.append(
+                                {
+                                    "hardware_name": hw_name,
+                                    "cluster_name": cluster_name,
+                                    "urn": urn_key,
+                                    "total": total_count,
+                                    "free": free_count,
+                                }
+                            )
+        return extracted_hardware_list
+    except Exception as e:
+        return None
diff --git a/provisioner/utils/ssh.py b/provisioner/utils/ssh.py
new file mode 100644
index 0000000..5c3a1ee
--- /dev/null
+++ b/provisioner/utils/ssh.py
@@ -0,0 +1,181 @@
+import os
+import time
+from typing import Optional, Tuple
+
+import paramiko
+
+from provisioner.config.settings import DefaultSettings
+from provisioner.utils.logger import logger
+
+
+class SSHUtilError(Exception):
+    """Custom exception for SSH utility errors."""
+
+    pass
+
+
+class SSHManager:
+    def __init__(
+        self,
+        hostname: str,
+        username: str,
+        private_key_path: Optional[str] = None,
+        port: int = 22,
+        timeout: int = DefaultSettings.DEFAULT_SSH_TIME_OUT_SECONDS,
+        max_retries: int = 10,
+        retry_delay: int = 2,  # seconds
+    ):
+        self.hostname = hostname
+        self.username = username
+        self.private_key_path = private_key_path
+        self.port = port
+        self.timeout = timeout
+        self.max_retries = max_retries
+        self.retry_delay = retry_delay
+
+    def _create_ssh_client(self) -> paramiko.SSHClient:
+        client = paramiko.SSHClient()
+        client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
+
+        for attempt in range(1, self.max_retries + 1):
+            try:
+                if self.private_key_path:
+                    self.private_key_path = os.path.expanduser(self.private_key_path)
+                    if not os.path.exists(self.private_key_path):
+                        raise SSHUtilError(f"Private key file not found: {self.private_key_path}")
+                    try:
+                        # Try ED25519 first
+                        key = paramiko.Ed25519Key.from_private_key_file(self.private_key_path)
+                    except paramiko.SSHException:
+                        try:
+                            # Fall back to RSA
+                            key = paramiko.RSAKey.from_private_key_file(self.private_key_path)
+                        except paramiko.SSHException as e:
+                            raise SSHUtilError(f"Failed to load private key: {e}")
+                    logger.debug(
+                        f"Attempting SSH connection to {self.username}@{self.hostname}:{self.port} using private key {self.private_key_path} (attempt {attempt}/{self.max_retries})"
+                    )
+                    client.connect(
+                        self.hostname, port=self.port, username=self.username, pkey=key, timeout=self.timeout
+                    )
+                else:
+                    raise SSHUtilError("SSH connection requires either a private key.")
+                logger.info(f"Successfully connected to {self.username}@{self.hostname}:{self.port}")
+                return client
+            except (paramiko.AuthenticationException, paramiko.SSHException, Exception) as e:
+                if attempt < self.max_retries:
+                    logger.warning(
+                        f"SSH connection attempt {attempt} failed: {e}. Retrying in {self.retry_delay} seconds..."
+                    )
+                    time.sleep(self.retry_delay)
+                else:
+                    msg = f"SSH connection failed after {self.max_retries} attempts for {self.username}@{self.hostname}: {e}"
+                    logger.error(msg, exc_info=True)
+                    if isinstance(e, paramiko.AuthenticationException):
+                        raise SSHUtilError(msg) from e
+                    elif isinstance(e, paramiko.SSHException):
+                        raise SSHUtilError(msg) from e
+                    else:
+                        raise SSHUtilError(msg) from e
+
+    def execute_ssh_command(
+        self,
+        command: str,
+    ) -> Tuple[str, str, int]:
+        client = None
+        try:
+            client = self._create_ssh_client()
+            logger.info(f"Executing command on {self.hostname}: {command}")
+            stdin, stdout, stderr = client.exec_command(command, timeout=self.timeout)
+
+            # It's important to read stdout and stderr before checking exit_status
+            stdout_output = stdout.read().decode("utf-8", errors="replace").strip()
+            stderr_output = stderr.read().decode("utf-8", errors="replace").strip()
+
+            # exit_status_ready() can be used to check if status is available without blocking
+            # recv_exit_status() will block until the command finishes.
+            exit_code = stdout.channel.recv_exit_status()
+
+            if stdout_output:
+                logger.debug(f"Command stdout on {self.hostname}: {stdout_output}")
+            if stderr_output:
+                logger.warning(f"Command stderr on {self.hostname}: {stderr_output}")
+            logger.info(f"Command on {self.hostname} finished with exit code: {exit_code}")
+
+            return stdout_output, stderr_output, exit_code
+        except SSHUtilError:
+            logger.error(f"Error creating SSH client for {self.hostname}:{self.username}:{self.port}")
+            raise
+        except paramiko.SSHException as e:
+            msg = f"Error executing command '{command}' on {self.hostname}: {e}"
+            logger.error(msg)
+            raise SSHUtilError(msg) from e
+        except Exception as e:
+            msg = f"An unexpected error occurred while executing command on {self.hostname}: {e}"
+            logger.error(msg, exc_info=True)
+            raise SSHUtilError(msg) from e
+        finally:
+            if client:
+                client.close()
+                logger.debug(f"SSH connection to {self.hostname} closed.")
+
+    def upload_file_scp(
+        self,
+        local_path: str,
+        remote_path: str,
+    ):
+        local_path = os.path.expanduser(local_path)
+        if not os.path.exists(local_path):
+            raise FileNotFoundError(f"Local file not found: {local_path}")
+
+        client = None
+        sftp = None
+        try:
+            client = self._create_ssh_client()
+            sftp = client.open_sftp()
+            logger.info(f"Uploading {local_path} to {self.username}@{self.hostname}:{remote_path}")
+            sftp.put(local_path, remote_path)
+            logger.info(f"Successfully uploaded {local_path} to {remote_path} on {self.hostname}")
+        except SSHUtilError:
+            msg = f"Error creating SSH client for {self.hostname}:{self.username}:{self.port}"
+            logger.error(msg)
+            raise SSHUtilError(msg)
+        except Exception as e:
+            msg = f"Error uploading file {local_path} to {self.hostname}:{remote_path}: {e}"
+            logger.error(msg, exc_info=True)
+            raise SSHUtilError(msg) from e
+        finally:
+            if sftp:
+                sftp.close()
+            if client:
+                client.close()
+                logger.debug(f"SSH connection to {self.hostname} closed (after upload).")
+
+    def download_file_scp(
+        self,
+        remote_path: str,
+        local_path: str,
+    ):
+        local_path = os.path.expanduser(local_path)
+        client = None
+        sftp = None
+        try:
+            client = self._create_ssh_client()
+            sftp = client.open_sftp()
+            logger.info(f"Downloading {self.username}@{self.hostname}:{remote_path} to {local_path}")
+            sftp.get(remote_path, local_path)
+            logger.info(f"Successfully downloaded {remote_path} from {self.hostname} to {local_path}")
+        except SSHUtilError:
+            msg = f"Error creating SSH client for {self.hostname}:{self.username}:{self.port}"
+            logger.error(msg)
+            raise SSHUtilError(msg)
+        except Exception as e:
+            msg = f"Error downloading file {remote_path} from {self.hostname} to {local_path}: {e}"
+            logger.error(msg, exc_info=True)
+            raise SSHUtilError(msg) from e
+        finally:
+            if sftp:
+                sftp.close()
+            if client:
+                client.close()
+                logger.debug(f"SSH connection to {self.hostname} closed (after download).")
diff --git a/pyproject.toml b/pyproject.toml
new file mode 100644
index 0000000..4c3f563
--- /dev/null
+++ b/pyproject.toml
@@ -0,0 +1,184 @@
+[project]
+name = "sregym"
+requires-python = ">= 3.12"
+version = "0.0.1"
+
+dependencies = [
+    "ansible>=11.8.0",
+    "anthropic>=0.52.0",
+    "anyio==4.9.0",
+    "apscheduler>=3.11.0",
+    "asgiref==3.8.1",
+    "attrs==25.3.0",
+    "autogen-agentchat==0.2.40",
+    "azure-ai-ml==1.27.1",
+    "azure-common==1.1.28",
+    "azure-core==1.34.0",
+    "azure-core-tracing-opentelemetry==1.0.0b12",
+    "azure-identity==1.23.0",
+    "azure-mgmt-core==1.5.0",
+    "azure-monitor-opentelemetry==1.6.9",
+    "azure-monitor-opentelemetry-exporter==1.0.0b36",
+    "azure-storage-blob==12.25.1",
+    "azure-storage-file-datalake==12.20.0",
+    "azure-storage-file-share==12.21.0",
+    "bashlex>=0.18",
+    "bcrypt==4.3.0",
+    "black==24.10.0",
+    "blake3==1.0.5",
+    "boto3>=1.28.57",
+    "bs4>=0.0.2",
+    "cachetools==5.5.2",
+    "certifi==2025.4.26",
+    "cffi==1.17.1",
+    "charset-normalizer==3.4.2",
+    "click==8.2.1",
+    "cloudpickle==3.1.1",
+    "colorama==0.4.6",
+    "cryptography==45.0.3",
+    "dateparser==1.2.1",
+    "deprecated==1.2.18",
+    "dill==0.4.0",
+    "distro==1.9.0",
+    "dnspython==2.7.0",
+    "docker==7.1.0",
+    "elastic-transport==8.17.1",
+    "elasticsearch==8.18.1",
+    "email-validator==2.2.0",
+    "fastapi[standard]==0.115.12",
+    "fastapi-cli==0.0.7",
+    "fastmcp>=2.9.2",
+    "filelock==3.18.0",
+    "flaml==2.3.4",
+    "fsspec==2025.5.1",
+    "geni-lib-xlab",
+    "gguf==0.10.0",
+    "gitpython==3.1.44",
+    "google-auth==2.40.2",
+    "h11==0.16.0",
+    "httpcore==1.0.9",
+    "httptools==0.6.4",
+    "httpx==0.28.1",
+    "idna==3.10",
+    "importlib-metadata==8.6.1",
+    "itsdangerous>=2.2.0",
+    "jinja2==3.1.6",
+    "jsonschema==4.23.0",
+    "kubernetes==30.1.0",
+    "langchain>=0.3.25",
+    "langchain-litellm>=0.2.2",
+    "langchain-openai>=0.3.18",
+    "langgraph>=0.4.7",
+    "langsmith>=0.3.43",
+    "litellm>=1.75.0",
+    "markdown-it-py==3.0.0",
+    "markupsafe==3.0.2",
+    "mcp[cli]>=1.9.1",
+    "msal==1.32.3",
+    "msal-extensions==1.3.1",
+    "multidict==6.4.4",
+    "mypy-extensions==1.1.0",
+    "nest-asyncio==1.6.0",
+    "networkx==3.4.2",
+    "nodeenv==1.9.1",
+    "numpy==1.26.4",
+    "oauthlib==3.2.2",
+    "opentelemetry-api==1.31.1",
+    "opentelemetry-instrumentation==0.52b1",
+    "opentelemetry-instrumentation-asgi==0.52b1",
+    "opentelemetry-instrumentation-dbapi==0.52b1",
+    "opentelemetry-instrumentation-django==0.52b1",
+    "opentelemetry-instrumentation-fastapi==0.52b1",
+    "opentelemetry-instrumentation-flask==0.52b1",
+    "opentelemetry-instrumentation-psycopg2==0.52b1",
+    "opentelemetry-instrumentation-requests==0.52b1",
+    "opentelemetry-instrumentation-urllib==0.52b1",
+    "opentelemetry-instrumentation-urllib3==0.52b1",
+    "opentelemetry-instrumentation-wsgi==0.52b1",
+    "opentelemetry-resource-detector-azure==0.1.5",
+    "opentelemetry-sdk==1.31.1",
+    "opentelemetry-semantic-conventions==0.52b1",
+    "opentelemetry-util-http==0.52b1",
+    "packaging>=24.0",
+    "pandas==2.2.3",
+    "paramiko==3.5.1",
+    "pathspec==0.12.1",
+    "platformdirs==4.3.8",
+    "pre-commit>=4.2.0",
+    "prometheus-client==0.22.0",
+    "prometheus-fastapi-instrumentator==7.1.0",
+    "prompt-toolkit==3.0.51",
+    "protobuf==6.31.0",
+    "psutil==6.1.1",
+    "pydantic==2.11.5",
+    "pydantic-core==2.33.2",
+    "pydash==8.0.5",
+    "pygments==2.19.1",
+    "pyjwt==2.10.1",
+    "pynacl==1.5.0",
+    "pyparsing==3.2.3",
+    "pyright==1.1.401",
+    "pytest>=8.3.5",
+    "python-dateutil==2.9.0.post0",
+    "python-dotenv==1.1.0",
+    "python-multipart==0.0.20",
+    "pytz==2025.2",
+    "pyyaml==6.0.2",
+    "pyzmq==26.4.0",
+    "referencing==0.36.2",
+    "regex==2024.11.6",
+    "requests>=2.32.3",
+    "requests-oauthlib==2.0.0",
+    "rich==13.9.4",
+    "rich-toolkit==0.14.6",
+    "rsa==4.9.1",
+    "sentry-sdk==2.29.1",
+    "setproctitle==1.3.6",
+    "shellingham==1.5.4",
+    "sniffio==1.3.1",
+    "starlette==0.46.2",
+    "termcolor==3.1.0",
+    "tiktoken==0.7.0",
+    "tqdm==4.67.1",
+    "typer==0.16.0",
+    "typing-extensions==4.13.2",
+    "typing-inspection==0.4.1",
+    "tzdata==2025.2",
+    "tzlocal==5.3.1",
+    "urllib3>=2.4.0",
+    "uvicorn==0.34.2",
+    "uvloop==0.21.0",
+    "watchfiles==1.0.5",
+    "websocket-client==1.8.0",
+    "websockets==15.0.1",
+    "yarl==1.20.0",
+    "pyfiglet>=1.0.3",
+    "langchain-ibm>=0.3.15",
+    "langchain-google-genai>=2.1.12",
+    "dash>=3.2.0",
+    "aiosignal>=1.3.2",
+    "locust>=2.42.3",
+]
+
+[tool.black]
+line-length = 120
+target-version = ["py312"]
+
+[tool.isort]
+profile = "black"
+line_length = 120
+
+[build-system]
+requires = ["setuptools>=80.8.0"]
+build-backend = "setuptools.build_meta"
+
+[dependency-groups]
+dev = [
+    "deptry>=0.24.0",
+]
+
+[tool.setuptools]
+packages = ["sregym", "clients", "provisioner", "scripts"]
+
+[tool.uv.sources]
+geni-lib-xlab = { path = "scripts/geni_lib/mod/geni_lib_xlab-1.0.0.tar.gz" }
diff --git a/scripts/__init__.py b/scripts/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/scripts/ansible/README.md b/scripts/ansible/README.md
new file mode 100644
index 0000000..e7c1ce3
--- /dev/null
+++ b/scripts/ansible/README.md
@@ -0,0 +1,31 @@
+## Environment Setup
+
+This is the instruction to use Ansible to build a remote cluster for SREGym. We currently use [CloudLab](https://www.cloudlab.us/) but we believe this will work on any servers you have access to.
+
+
+### 1) Modify the inventory file
+```bash
+cp inventory.yml.example inventory.yml
+```
+
+Modify the IPs and user names in the inventory file accordingly, `inventory.yml`. 
+
+### 2) Run the Ansible playbook
+```shell
+ansible-playbook -i inventory.yml setup_cluster.yml
+```
+
+After these, you should see every node running inside the cluster:
+```shell
+kubectl get nodes
+```
+
+### Common Errors
+If you're running into issues from Ansible related to host key authentication, try typing `yes` in your terminal for each node, or proceeding with the following steps:
+
+You can create a file in the same directory as this README called `ansible.cfg` to turn off that warning:
+```yaml
+[defaults]
+host_key_checking = False
+```
+Be mindful about the security implications of disabling host key checking, if you're not aware ask someone who is.
diff --git a/scripts/ansible/ansible.cfg b/scripts/ansible/ansible.cfg
new file mode 100644
index 0000000..86cfd2f
--- /dev/null
+++ b/scripts/ansible/ansible.cfg
@@ -0,0 +1,2 @@
+[defaults]
+host_key_checking = False
\ No newline at end of file
diff --git a/scripts/ansible/inventory.yml.example b/scripts/ansible/inventory.yml.example
new file mode 100644
index 0000000..e21e24c
--- /dev/null
+++ b/scripts/ansible/inventory.yml.example
@@ -0,0 +1,19 @@
+
+all:
+  vars:
+    k8s_user: <your-username>
+    k8s_user2: <your-username>
+  children:
+    control_nodes:
+      hosts:
+        control_node:
+          ansible_host: <control-node-hostname>
+          ansible_user: "{{ k8s_user }}"
+    worker_nodes:
+      hosts:
+        worker_node_1:
+          ansible_host: <worker-node-1-hostname>
+          ansible_user: "{{ k8s_user2 }}"
+        worker_node_2:
+          ansible_host: <worker-node-2-hostname>
+          ansible_user: "{{ k8s_user2 }}"
\ No newline at end of file
diff --git a/scripts/ansible/setup_cluster.yml b/scripts/ansible/setup_cluster.yml
new file mode 100644
index 0000000..45b4852
--- /dev/null
+++ b/scripts/ansible/setup_cluster.yml
@@ -0,0 +1,815 @@
+---
+- hosts: all
+  gather_facts: yes
+  become: true
+  vars:
+    docker_key_url: https://download.docker.com/linux/ubuntu/gpg
+    docker_repo: "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable"
+    # kube_version: "1.31.0"  # Adjust Kubernetes version as needed
+    cri_dockerd_version: "0.3.12.3-0"  # Example version for cri-dockerd, customize as needed
+
+  tasks:
+    - name: Kill any stuck apt processes
+      shell: |
+        pkill -9 apt-get || true
+        sleep 2
+      become: yes
+      ignore_errors: yes
+      changed_when: false
+
+    - name: Wait for apt lock to be released
+      shell: |
+        for i in {1..30}; do
+          if ! lsof /var/lib/apt/lists/lock 2>/dev/null && ! lsof /var/cache/apt/archives/lock 2>/dev/null; then
+            echo "Lock released"
+            break
+          fi
+          sleep 1
+        done
+      become: yes
+      changed_when: false
+
+    - name: Fix interrupted dpkg state
+      shell: dpkg --configure -a
+      become: yes
+      changed_when: false
+      ignore_errors: yes
+
+    # CRITICAL: Install Ubuntu generic 6.8 kernel and headers (must match for dm_dust)
+    - name: Install Ubuntu generic 6.8 kernel and matching headers
+      apt:
+        name:
+          - linux-image-generic-6.8
+          - linux-headers-generic-6.8
+        state: present
+        update_cache: yes
+      become: yes
+      timeout: 900
+
+    - name: Get current running kernel version
+      shell: uname -r
+      register: current_kernel_check
+      changed_when: false
+
+    - name: Get installed Ubuntu generic 6.8 kernel version
+      shell: dpkg -l | grep 'linux-image-6.8.0-.*-generic' | grep '^ii' | awk '{print $2}' | sed 's/linux-image-//' | head -1
+      register: target_kernel_check
+      changed_when: false
+
+    - name: Set kernel version facts
+      set_fact:
+        current_kernel_version: "{{ current_kernel_check.stdout }}"
+        target_kernel_version: "{{ target_kernel_check.stdout }}"
+        need_kernel_switch: "{{ current_kernel_check.stdout != target_kernel_check.stdout }}"
+
+    - name: Debug kernel versions
+      debug:
+        msg: "Current kernel: {{ current_kernel_version }}, Target kernel: {{ target_kernel_version }}, Switch needed: {{ need_kernel_switch }}"
+
+    - name: Set Ubuntu generic kernel as default in GRUB
+      shell: |
+        KERNEL_VERSION="{{ target_kernel_version }}"
+        MENU_ENTRY="Advanced options for Ubuntu>Ubuntu, with Linux $KERNEL_VERSION"
+        sed -i "s/^GRUB_DEFAULT=.*/GRUB_DEFAULT=\"$MENU_ENTRY\"/" /etc/default/grub
+        update-grub
+      become: yes
+      when: need_kernel_switch
+      register: grub_updated
+
+    - name: Reboot to switch to matching Ubuntu generic kernel
+      reboot:
+        reboot_timeout: 600
+        pre_reboot_delay: 10
+        post_reboot_delay: 60
+      become: yes
+      when: need_kernel_switch
+
+    - name: Wait for system to come back after kernel switch
+      wait_for_connection:
+        delay: 10
+        timeout: 600
+      when: need_kernel_switch
+
+    - name: Get current kernel version
+      shell: uname -r
+      register: kernel_after_fix
+      changed_when: false
+
+    - name: Fix apt lock file permissions and clean up
+      shell: |
+        chmod 644 /var/lib/apt/lists/lock 2>/dev/null || true
+        chown root:root /var/lib/apt/lists/lock 2>/dev/null || true
+        rm -f /var/cache/apt/archives/lock 2>/dev/null || true
+        # Remove lock files that may cause issues
+        rm -f /var/lib/dpkg/lock-frontend 2>/dev/null || true
+        rm -f /var/lib/dpkg/lock 2>/dev/null || true
+      become: yes
+      changed_when: false
+      ignore_errors: yes
+
+    - name: Remove old Kubernetes repository e.g., v1.29 if it exists
+      file:
+        path: /etc/apt/sources.list.d/kubernetes.list
+        state: absent
+
+    - name: Refresh and upgrade packages
+      apt:
+        update_cache: "yes"
+        upgrade: "yes"
+
+    # - name: Install python3-apt
+    #   apt:
+    #     name: python3-apt
+    #     state: present
+    #   become: true
+
+    - name: Remove old Docker versions if any
+      apt:
+        name: "{{ item }}"
+        state: absent
+      loop:
+        - docker.io
+        - docker-doc
+        - docker-compose
+        - podman-docker
+        - containerd
+        - runc
+
+    - name: Install prerequisites for Docker and Kubernetes (batched)
+      apt:
+        name:
+          - ca-certificates
+          - curl
+          - gnupg
+          - lsb-release
+          - socat
+          - conntrack
+          - libssl-dev
+        state: present
+        update_cache: no
+      become: yes
+
+    - name: Add Docker GPG key and repository
+      shell: |
+        install -m 0755 -d /etc/apt/keyrings
+        curl -fsSL {{ docker_key_url }} -o /etc/apt/keyrings/docker.asc
+        echo "{{ docker_repo }}" | tee /etc/apt/sources.list.d/docker.list
+      args:
+        creates: /etc/apt/sources.list.d/docker.list
+      become: yes
+
+    - name: Update apt and install Docker
+      apt:
+        update_cache: yes
+        name:
+          - docker-ce
+          - docker-ce-cli
+          - containerd.io
+          - docker-buildx-plugin
+          - docker-compose-plugin
+        state: present
+
+    - name: Add user to docker group to run Docker without sudo
+      user:
+        name: "{{ ansible_user_id }}"
+        groups: docker
+        append: yes
+
+    - name: Get system architecture
+      command: dpkg --print-architecture
+      register: system_arch
+      changed_when: false
+
+    - name: Download cri-dockerd .deb package (amd64)
+      get_url:
+        url: "https://github.com/Mirantis/cri-dockerd/releases/download/v0.3.20/cri-dockerd_0.3.20.3-0.ubuntu-jammy_amd64.deb"
+        dest: /tmp/install-cri-dockerd.deb
+      when: system_arch.stdout == "amd64"
+
+    - name: Install CRI-Dockerd from .deb package (amd64)
+      apt:
+        deb: /tmp/install-cri-dockerd.deb
+        state: present
+      when: system_arch.stdout == "amd64"
+
+    - name: Download cri-dockerd .tgz archive (arm64)
+      get_url:
+        url: "https://github.com/Mirantis/cri-dockerd/releases/download/v0.3.20/cri-dockerd-0.3.20.arm64.tgz"
+        dest: /tmp/cri-dockerd.tgz
+      when: system_arch.stdout == "arm64"
+
+    - name: Extract cri-dockerd archive (arm64)
+      unarchive:
+        src: /tmp/cri-dockerd.tgz
+        dest: /tmp/
+        remote_src: yes
+      when: system_arch.stdout == "arm64"
+
+    - name: Install cri-dockerd binaries (arm64)
+      copy:
+        src: "/tmp/cri-dockerd/{{ item }}"
+        dest: "/usr/local/bin/{{ item }}"
+        mode: '0755'
+        remote_src: yes
+      loop:
+        - cri-dockerd
+      when: system_arch.stdout == "arm64"
+
+    - name: Download cri-dockerd systemd service files (arm64)
+      get_url:
+        url: "https://raw.githubusercontent.com/Mirantis/cri-dockerd/v0.3.20/packaging/systemd/{{ item }}"
+        dest: "/etc/systemd/system/{{ item }}"
+      loop:
+        - cri-docker.service
+        - cri-docker.socket
+      when: system_arch.stdout == "arm64"
+
+    - name: Fix cri-dockerd binary path in service file (arm64)
+      replace:
+        path: /etc/systemd/system/cri-docker.service
+        regexp: '/usr/bin/cri-dockerd'
+        replace: '/usr/local/bin/cri-dockerd'
+      when: system_arch.stdout == "arm64"
+
+    - name: Reload systemd daemon (arm64)
+      systemd:
+        daemon_reload: yes
+      when: system_arch.stdout == "arm64"
+
+    - name: Start and enable cri-dockerd service
+      systemd:
+        name: cri-docker
+        enabled: yes
+        state: started
+
+    - name: Check if cri-dockerd socket exists
+      stat:
+        path: /var/run/cri-dockerd.sock
+      register: cri_socket
+    
+    - name: Install QEMU user-static for x86_64 emulation on ARM nodes
+      apt:
+        name: qemu-user-static
+        state: present
+      when: system_arch.stdout == "arm64"
+      register: qemu_install
+
+    - name: Verify QEMU registration
+      shell: ls /proc/sys/fs/binfmt_misc/ | grep qemu-x86_64
+      register: qemu_check
+      failed_when: false
+      changed_when: false
+      when: system_arch.stdout == "arm64"
+
+    - name: Display QEMU status
+      debug:
+        msg: "QEMU x86_64 emulation is {{ 'enabled' if qemu_check.rc == 0 else 'not found' }}"
+      when: system_arch.stdout == "arm64"
+
+    # - name: Wait for cri-dockerd socket to be available
+    #   wait_for:
+    #     path: /var/run/cri-dockerd.sock
+    #     state: present
+    #     timeout: 30
+    #   when: not cri_socket.stat.exists
+
+    - name: Install Kubernetes packages
+      apt:
+        name:
+          - apt-transport-https
+          - curl
+          - gpg
+        state: present
+
+    # - name: Add Kubernetes GPG key and repository
+    #   shell: |
+    #     echo "deb [signed-by=/etc/apt/keyrings/kubernetes-apt-keyring.gpg] https://pkgs.k8s.io/core:/stable:/{{ kube_version }}/deb/ /" | sudo tee /etc/apt/sources.list.d/kubernetes.list
+    #     curl -fsSL https://pkgs.k8s.io/core:/stable:/{{ kube_version }}/deb/Release.key | sudo gpg --dearmor -o /etc/apt/keyrings/kubernetes-apt-keyring.gpg
+    #   args:
+    #     creates: /etc/apt/sources.list.d/kubernetes.list
+
+    - name: Remove existing Kubernetes GPG key if it exists
+      file:
+        path: /etc/apt/keyrings/kubernetes-apt-keyring.gpg
+        state: absent
+
+    - name: Add Kubernetes GPG key
+      shell: |
+        curl -fsSL https://pkgs.k8s.io/core:/stable:/v1.31/deb/Release.key | gpg --dearmor -o /etc/apt/keyrings/kubernetes-apt-keyring.gpg
+      args:
+        creates: /etc/apt/keyrings/kubernetes-apt-keyring.gpg
+      become: yes
+
+    - name: Add Kubernetes repository for v1.31
+      shell: |
+        echo 'deb [signed-by=/etc/apt/keyrings/kubernetes-apt-keyring.gpg] https://pkgs.k8s.io/core:/stable:/v1.31/deb/ /' | tee /etc/apt/sources.list.d/kubernetes.list
+      args:
+        creates: /etc/apt/sources.list.d/kubernetes.list
+      become: yes
+
+    - name: Install kubeadm, kubelet, kubectl
+      apt:
+        update_cache: yes
+        name:
+          - kubeadm
+          - kubelet
+          - kubectl
+        state: present
+
+    # - name: Hold Kubernetes packages at installed version
+    #   apt:
+    #     name:
+    #       - kubeadm
+    #       - kubelet
+    #       - kubectl
+    #     state: present
+    #     mark: hold
+
+    - name: Hold Kubernetes packages at installed version
+      shell: |
+        apt-mark hold kubeadm kubelet kubectl
+      become: yes
+
+    - name: Disable swap
+      shell: |
+        swapoff -a
+        sed -i '/ swap / s/^\(.*\)$/#\1/g' /etc/fstab
+      become: yes
+      ignore_errors: yes
+      changed_when: false
+
+    - name: Install software-properties-common for PPA support
+      apt:
+        name: software-properties-common
+        state: present
+        update_cache: yes
+      become: yes
+
+    - name: Verify kernel matches headers
+      assert:
+        that:
+          - kernel_after_fix.stdout is defined
+          - "'6.8.0-' in kernel_after_fix.stdout"
+          - "'-generic' in kernel_after_fix.stdout"
+        fail_msg: "Kernel doesn't match expected Ubuntu generic format. Current: {{ kernel_after_fix.stdout | default('undefined') }}"
+        success_msg: "Kernel matches Ubuntu generic 6.8: {{ kernel_after_fix.stdout }}"
+
+    - name: Confirm kernel and headers match
+      debug:
+        msg: "Running kernel: {{ kernel_after_fix.stdout }} (should match headers)"
+
+    - name: Remove broken kernel headers if they cause dependency issues
+      shell: |
+        # Remove any broken headers that prevent package installation
+        dpkg -l | grep "linux-headers.*6\.8\." | grep -v "^ii" | awk '{print $2}' | xargs -r apt-get remove --purge -y || true
+        # Also remove headers with unmet dependencies
+        if apt-get check 2>&1 | grep -q "linux-headers.*6\.8"; then
+          dpkg -l | grep "linux-headers.*6\.8\." | awk '{print $2}' | xargs -r apt-get remove --purge -y || true
+        fi
+        apt-get install -f -y || true
+      ignore_errors: yes
+      become: yes
+
+    - name: Install additional packages for module building
+      apt:
+        name:
+          - flex
+          - bison
+          - bc
+          - libelf-dev
+          - build-essential
+          - gcc-12
+        state: present
+        update_cache: no
+      become: yes
+
+    - name: Get full kernel version
+      shell: uname -r
+      register: kernel_version_full
+      changed_when: false
+
+    - name: Check if dm_dust and dm_flakey modules exist
+      shell: |
+        DUST=$(modinfo dm_dust 2>/dev/null && echo "exists" || echo "not_found")
+        FLAKEY=$(modinfo dm_flakey 2>/dev/null && echo "exists" || echo "not_found")
+        echo "dm_dust:$DUST"
+        echo "dm_flakey:$FLAKEY"
+      register: dm_modules_check
+      changed_when: false
+
+    - name: Set module facts (reusable throughout playbook)
+      set_fact:
+        dm_dust_exists: "{{ 'dm_dust:exists' in dm_modules_check.stdout }}"
+        dm_flakey_exists: "{{ 'dm_flakey:exists' in dm_modules_check.stdout }}"
+
+    - name: Check if Ubuntu kernel headers are available
+      stat:
+        path: "/usr/src/linux-headers-{{ kernel_version_full.stdout }}"
+      register: ubuntu_headers
+      changed_when: false
+
+    - name: Install generic 6.8 kernel headers (should already match running kernel)
+      apt:
+        name: linux-headers-generic-6.8
+        state: present
+        update_cache: no
+      when: >
+        (not dm_dust_exists or not dm_flakey_exists)
+        and not ubuntu_headers.stat.exists
+      become: yes
+      ignore_errors: yes
+
+    - name: Re-check headers after installation attempt
+      stat:
+        path: "/usr/src/linux-headers-{{ kernel_version_full.stdout }}"
+      register: ubuntu_headers
+      changed_when: false
+
+    - name: Fail if headers not available
+      fail:
+        msg: "Kernel headers not available for {{ kernel_version_full.stdout }}. Cannot build modules."
+      when: >
+        (not dm_dust_exists or not dm_flakey_exists)
+        and not ubuntu_headers.stat.exists
+
+    - name: Check if build symlink exists
+      stat:
+        path: "/lib/modules/{{ kernel_version_full.stdout }}/build"
+      register: build_symlink
+      changed_when: false
+      when: >
+        (not dm_dust_exists or not dm_flakey_exists)
+        and ubuntu_headers.stat.exists
+
+    - name: Create build symlink if headers exist but symlink is missing
+      file:
+        src: "/usr/src/linux-headers-{{ kernel_version_full.stdout }}"
+        dest: "/lib/modules/{{ kernel_version_full.stdout }}/build"
+        state: link
+      become: yes
+      when: >
+        (not dm_dust_exists or not dm_flakey_exists)
+        and ubuntu_headers.stat.exists
+        and (build_symlink is defined and (not build_symlink.stat.exists or not build_symlink.stat.islnk))
+
+    - name: Ensure kernel module directory exists
+      file:
+        path: "/lib/modules/{{ kernel_version_full.stdout }}/kernel/drivers/md"
+        state: directory
+        mode: '0755'
+      become: yes
+      when: not dm_dust_exists or not dm_flakey_exists
+
+    - name: Load dm_dust module if available
+      modprobe:
+        name: dm_dust
+        state: present
+      when: dm_dust_exists
+      ignore_errors: yes
+      become: yes
+
+    - name: Build and install dm_dust module if not available
+      block:
+        - name: Create dm-dust build directory
+          file:
+            path: /tmp/dm-dust-build
+            state: directory
+
+        # Download kernel source for dm-dust.c
+        - name: Extract kernel major.minor version
+          set_fact:
+            kernel_major_minor: "{{ kernel_version_full.stdout | regex_replace('^([0-9]+\\.[0-9]+).*', '\\1') }}"
+
+        - name: Debug kernel version for download
+          debug:
+            msg: "Full kernel: {{ kernel_version_full.stdout }}, Major.Minor: {{ kernel_major_minor }}"
+
+        - name: Check if kernel source already downloaded
+          stat:
+            path: /tmp/linux-{{ kernel_major_minor }}.tar.xz
+          register: kernel_source_exists
+
+        - name: Download kernel source for dm-dust source code
+          get_url:
+            url: "https://cdn.kernel.org/pub/linux/kernel/v6.x/linux-{{ kernel_major_minor }}.tar.xz"
+            dest: /tmp/linux-{{ kernel_major_minor }}.tar.xz
+          when: not kernel_source_exists.stat.exists
+          register: kernel_source_download
+
+        - name: Check if kernel source already extracted
+          stat:
+            path: /tmp/linux-{{ kernel_major_minor }}/drivers/md/dm-dust.c
+          register: dm_dust_source_exists
+
+        - name: Extract only the dm-dust source file from kernel tarball
+          shell: |
+            cd /tmp
+            tar -xJf linux-{{ kernel_major_minor }}.tar.xz linux-{{ kernel_major_minor }}/drivers/md/dm-dust.c
+          when: not dm_dust_source_exists.stat.exists
+          args:
+            creates: /tmp/linux-{{ kernel_major_minor }}/drivers/md/dm-dust.c
+
+        - name: Copy dm-dust source to build directory
+          shell: |
+            cp /tmp/linux-{{ kernel_major_minor }}/drivers/md/dm-dust.c /tmp/dm-dust-build/dm-dust.c
+          args:
+            creates: /tmp/dm-dust-build/dm-dust.c
+
+        - name: Create Makefile for dm-dust (use system headers)
+          copy:
+            dest: /tmp/dm-dust-build/Makefile
+            content: |
+              obj-m := dm-dust.o
+              KDIR := /lib/modules/$(shell uname -r)/build
+              PWD := $(shell pwd)
+              CC := gcc-12
+
+              default:
+              	$(MAKE) -C $(KDIR) M=$(PWD) modules CC=gcc-12
+
+              clean:
+              	$(MAKE) -C $(KDIR) M=$(PWD) clean
+
+              install:
+              	mkdir -p /lib/modules/$(shell uname -r)/kernel/drivers/md/
+              	cp dm-dust.ko /lib/modules/$(shell uname -r)/kernel/drivers/md/
+              	depmod -a
+            mode: '0644'
+
+        - name: Check if dm-dust module already built
+          stat:
+            path: /tmp/dm-dust-build/dm-dust.ko
+          register: dm_dust_ko_precheck
+
+        - name: Build dm-dust module
+          make:
+            chdir: /tmp/dm-dust-build
+          environment:
+            KBUILD_MODPOST_WARN: "1"
+            CC: "gcc-12"
+          ignore_errors: yes
+          register: dm_dust_build_result
+          when: not dm_dust_ko_precheck.stat.exists
+
+        - name: Verify dm_dust module was built successfully
+          stat:
+            path: /tmp/dm-dust-build/dm-dust.ko
+          register: dm_dust_ko
+          failed_when: not dm_dust_ko.stat.exists
+          ignore_errors: yes
+
+        - name: Install dm-dust module
+          make:
+            chdir: /tmp/dm-dust-build
+            target: install
+          become: yes
+          ignore_errors: yes
+          when: dm_dust_ko.stat.exists | default(false)
+
+        - name: Verify dm_dust module is installed
+          stat:
+            path: "/lib/modules/{{ kernel_version_full.stdout }}/kernel/drivers/md/dm-dust.ko"
+          register: dm_dust_installed
+          failed_when: false
+          changed_when: false
+
+        - name: Load dm_dust module
+          modprobe:
+            name: dm_dust
+            state: present
+          become: yes
+          ignore_errors: yes
+          register: dm_dust_load_result
+
+        - name: Debug dm_dust module load result
+          debug:
+            msg: "dm_dust module load result: {{ dm_dust_load_result }}"
+
+        - name: Verify dm_dust module can be loaded
+          shell: |
+            modprobe dm_dust
+            lsmod | grep -q "^dm_dust" || exit 1
+            dmsetup targets | grep -q "dust" || exit 1
+            echo "dm_dust module is loaded and functional"
+          become: yes
+          register: dm_dust_load_test
+          failed_when: dm_dust_load_test.rc != 0
+          changed_when: false
+          ignore_errors: yes
+
+        - name: Clean up build directory after successful install
+          file:
+            path: /tmp/dm-dust-build
+            state: absent
+          when: dm_dust_installed.stat.exists
+      when: not dm_dust_exists
+
+    - name: Load dm_flakey module (built into kernel 6.8.x)
+      modprobe:
+        name: dm_flakey
+        state: present
+      ignore_errors: yes
+      become: yes
+
+    - name: Load necessary kernel modules
+      shell: |
+        modprobe overlay
+        modprobe br_netfilter
+        modprobe dm_dust || true
+        modprobe dm_flakey || true
+      become: yes
+      args:
+        creates: /etc/modules-load.d/k8s.conf
+
+    - name: Create modules-load configuration for Kubernetes and modules
+      copy:
+        content: |
+          overlay
+          br_netfilter
+          dm_dust
+          dm_flakey
+        dest: /etc/modules-load.d/k8s.conf
+      become: yes
+
+    - name: Configure sysctl for Kubernetes networking
+      copy:
+        content: |
+          net.bridge.bridge-nf-call-iptables  = 1
+          net.bridge.bridge-nf-call-ip6tables = 1
+          net.ipv4.ip_forward                 = 1
+        dest: /etc/sysctl.d/k8s.conf
+      notify: Reload sysctl
+
+    - name: Start and enable kubelet
+      systemd:
+        name: kubelet
+        enabled: yes
+        state: started
+
+  handlers:
+    - name: Install CRI-Dockerd
+      apt:
+        deb: /tmp/cri-dockerd.deb
+
+    - name: Reload sysctl
+      command: sysctl --system
+      become: yes
+
+# Control Node Setup
+- hosts: control_node  # Control plane tasks
+  become: true
+  vars:
+    kubeconfig_path: "/users/{{ k8s_user }}/.kube/config"
+  tasks:
+    - name: Resolve control node hostname to IP
+      command: getent ahosts "{{ hostvars['control_node'].ansible_host }}"
+      register: resolved_ip_output
+    - name: Parse resolved IP from output
+      set_fact:
+        resolved_control_plane_ip: "{{ resolved_ip_output.stdout_lines[0].split(' ')[0] }}"
+    - name: Set resolved_control_plane_ip globally
+      add_host:
+        name: "global"
+        resolved_control_plane_ip: "{{ resolved_control_plane_ip }}"
+    - name: Initialize Kubernetes control plane
+      shell: |
+        kubeadm init --pod-network-cidr=10.244.0.0/16 --cri-socket /var/run/cri-dockerd.sock --apiserver-advertise-address={{ resolved_control_plane_ip }}
+      args:
+        creates: /etc/kubernetes/admin.conf
+    - name: Ensure .kube directory exists
+      file:
+        path: "/users/{{ k8s_user }}/.kube"
+        state: directory
+        mode: '0755'
+        owner: "{{ k8s_user }}"
+        # group: "{{ k8s_user }}"
+      become: true
+    - name: Temporarily set permissions to read admin.conf
+      file:
+        path: /etc/kubernetes/admin.conf
+        mode: '0644'
+      become: true
+    
+    - name: Set up kube config for kubectl on control plane
+      copy:
+        src: /etc/kubernetes/admin.conf
+        dest: "/users/{{ k8s_user }}/.kube/config"
+        mode: '0644'
+        remote_src: true
+      become: true
+      become_method: sudo
+    - name: Ensure ownership of kube config for kubectl
+      file:
+        path: "/users/{{ k8s_user }}/.kube/config"
+        owner: "{{ k8s_user }}"
+        # group: "{{ k8s_user }}"
+        mode: '0644'
+      become: true
+    - name: Display ansible_user_id
+      debug:
+        msg: "ansible_user_id is {{ ansible_user_id }}"
+    
+    - name: Fetch admin.conf to localhost for kubeconfig
+      fetch:
+        src: /etc/kubernetes/admin.conf
+        dest: ~/.kube/config
+        flat: yes
+      become: true
+    - name: Generate kubeadm join command
+      shell: kubeadm token create --print-join-command
+      register: kubeadm_join_command
+    - name: Extract kube_token and cert_hash from join command
+      set_fact:
+        kube_token: "{{ (kubeadm_join_command.stdout | regex_search('--token\\s+([\\w.]+)', '\\1')).0 }}"
+        cert_hash: "{{ (kubeadm_join_command.stdout | regex_search('--discovery-token-ca-cert-hash\\s+sha256:([\\w]+)', '\\1')).0 }}"
+  
+    - name: Display kube_token
+      debug:
+        msg: "kube_token is {{ kube_token }}"
+    - name: Display cert_hash
+      debug:
+        msg: "cert_hash is {{ cert_hash }}"
+    - name: Install Flannel network plugin
+      shell: |
+        kubectl apply -f https://github.com/flannel-io/flannel/releases/latest/download/kube-flannel.yml
+      args:
+        creates: /etc/kubernetes/kube-flannel.yml
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+    - name: Untaint the control plane to host pods
+      shell: kubectl taint nodes $(hostname) node-role.kubernetes.io/control-plane:NoSchedule- || true
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+# Worker Node Setup
+- hosts: worker_nodes
+  become: true
+  tasks:
+    - name: Join Kubernetes cluster
+      shell: |
+        kubeadm join {{ hostvars['global'].resolved_control_plane_ip }}:6443 --token {{ hostvars['control_node'].kube_token }} --discovery-token-ca-cert-hash sha256:{{ hostvars['control_node'].cert_hash }} --cri-socket unix:///var/run/cri-dockerd.sock --v=5
+      args:
+        creates: /var/lib/kubelet/kubeadm-flags.env
+      become: true
+    - name: Ensure .kube directory exists
+      file:
+        path: "/users/{{ ansible_user }}/.kube"
+        state: directory
+        mode: '0755'
+      become_user: "{{ ansible_user }}"  # Ensure directory is created under the correct user
+    - name: Display ansible_user
+      debug:
+        msg: "ansible_user is {{ ansible_user }}"
+
+# Label Worker Nodes
+- hosts: control_node
+  become: true
+  vars:
+    kubeconfig_path: "/users/{{ k8s_user }}/.kube/config"
+  tasks:
+    - name: Wait for worker nodes to be ready
+      shell: |
+        timeout=120
+        elapsed=0
+        while [ $elapsed -lt $timeout ]; do
+          if kubectl get nodes --no-headers | grep -v "control-plane\|master" | grep -q "Ready"; then
+            echo "Worker nodes are ready"
+            exit 0
+          fi
+          sleep 2
+          elapsed=$((elapsed + 2))
+        done
+        echo "Timeout waiting for worker nodes after ${timeout}s"
+        exit 1
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+      ignore_errors: yes
+
+    - name: Get all node names
+      shell: kubectl get nodes --no-headers -o custom-columns=NAME:.metadata.name
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+      register: all_nodes
+      changed_when: false
+
+    - name: Label worker nodes with node-role.kubernetes.io/worker
+      shell: |
+        node="{{ item }}"
+        # Get node labels as YAML and check for control-plane/master labels
+        node_yaml=$(kubectl get node "$node" -o yaml)
+        if echo "$node_yaml" | grep -q "node-role.kubernetes.io/control-plane:" || echo "$node_yaml" | grep -q "node-role.kubernetes.io/master:"; then
+          echo "Skipping control plane node: $node"
+        elif echo "$node_yaml" | grep -q "node-role.kubernetes.io/worker:"; then
+          echo "Node $node already has worker label"
+        else
+          kubectl label node "$node" node-role.kubernetes.io/worker= --overwrite
+          echo "Labeled $node as worker"
+        fi
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+      loop: "{{ all_nodes.stdout_lines }}"
+      ignore_errors: yes
+      register: label_result
+
+    - name: Display labeling result
+      debug:
+        msg: "{{ label_result.stdout_lines | default(['No output']) }}"
\ No newline at end of file
diff --git a/scripts/ansible/ssh/hosts.txt b/scripts/ansible/ssh/hosts.txt
new file mode 100644
index 0000000..c1cc49d
--- /dev/null
+++ b/scripts/ansible/ssh/hosts.txt
@@ -0,0 +1,3 @@
+pc790.emulab.net
+pc853.emulab.net
+pc854.emulab.net
diff --git a/scripts/ansible/ssh/keys.sh b/scripts/ansible/ssh/keys.sh
new file mode 100755
index 0000000..6928fd2
--- /dev/null
+++ b/scripts/ansible/ssh/keys.sh
@@ -0,0 +1,39 @@
+#!/bin/bash
+
+WORKERS_FILE="hosts.txt"
+
+# Read the file line by line, 
+# including the last line 
+# even if it doesn't have a newline
+while IFS= read -r host_ip || [[ -n "$host_ip" ]]; do
+  echo "Generating SSH key on $host_ip..."
+  
+  ssh "$host_ip" "[ -f ~/.ssh/id_rsa.pub ] || (echo 'Creating SSH key on $host_ip'; ssh-keygen -t rsa -b 4096 -f ~/.ssh/id_rsa -N '' -q)"
+  
+  ssh "$host_ip" "[ -f ~/.ssh/id_rsa.pub ]" && echo "Key successfully created on $host_ip" || echo "Failed to create SSH key on $host_ip. Please check connection or permissions."
+done < "$WORKERS_FILE"
+
+ALL_KEYS_FILE="all_worker_keys.tmp"
+> "$ALL_KEYS_FILE" # Clear file if it exists
+
+while IFS= read -r host_ip || [[ -n "$host_ip" ]]; do
+  echo "Collecting public key from $host_ip..."
+  
+  # Retrieve the public key and append to the temporary file
+  ssh "$host_ip" "cat ~/.ssh/id_rsa.pub" >> "$ALL_KEYS_FILE" 2>/dev/null
+  if [[ $? -ne 0 ]]; then
+    echo "Warning: Could not collect key from $host_ip. SSH key might not have been generated."
+  else
+    echo "Collected key from $host_ip"
+  fi
+done < "$WORKERS_FILE"
+
+while IFS= read -r host_ip || [[ -n "$host_ip" ]]; do
+  echo "Copying all collected public keys to $host_ip..."
+
+  # Send the file with all public keys to each worker node's authorized_keys
+  ssh "$host_ip" "cat >> ~/.ssh/authorized_keys" < "$ALL_KEYS_FILE" && echo "Copied keys to $host_ip"
+done < "$WORKERS_FILE"
+
+rm "$ALL_KEYS_FILE"
+echo "SSH key setup complete. All workers should now be able to SSH into each other."
diff --git a/scripts/ansible/tidb/README.md b/scripts/ansible/tidb/README.md
new file mode 100644
index 0000000..49bdfc7
--- /dev/null
+++ b/scripts/ansible/tidb/README.md
@@ -0,0 +1,32 @@
+## TiDB Cluster and Operator Deployment with Ansible
+
+### Set up local PVs for TiDB cluster
+
+```shell
+ansible-playbook -i ../cloudlab_inventory.yml tidb_pv_setup.yml 
+```
+
+This will set up the local PVs for TiDB cluster to use in the self-managed Kubernetes cluster.
+It will create a loop device with four directories mounted on it under `agent-ops/tidb/`.
+
+### Deploy TiDB Operator and Cluster
+
+```shell
+ansible-playbook -i ../cloudlab_inventory.yml tidb_operator_cluster.yml 
+```
+
+This will deploy the TiDB Operator and a TiDB cluster with dashboard and monitor.
+
+### Check the Deployment Status
+
+Check the status of the TiDB Operator:
+```shell
+kubectl get pods --namespace tidb-admin -l app.kubernetes.io/instance=tidb-operator
+```
+
+Check the status of the TiDB cluster:
+```shell
+kubectl get po -n tidb-cluster
+```
+
+We should also consider the local Kind cluster setup, which is much easier (without the need to setup local PV and bind the storageclass): https://docs.pingcap.com/tidb-in-kubernetes/stable/get-started#step-2-deploy-tidb-operator
diff --git a/scripts/ansible/tidb/local-volume-provisioner.yaml b/scripts/ansible/tidb/local-volume-provisioner.yaml
new file mode 100644
index 0000000..fd7f351
--- /dev/null
+++ b/scripts/ansible/tidb/local-volume-provisioner.yaml
@@ -0,0 +1,167 @@
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: "monitoring-storage"
+provisioner: "kubernetes.io/no-provisioner"
+volumeBindingMode: "WaitForFirstConsumer"
+---
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: "ssd-storage"
+provisioner: "kubernetes.io/no-provisioner"
+volumeBindingMode: "WaitForFirstConsumer"
+---
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: "shared-ssd-storage"
+provisioner: "kubernetes.io/no-provisioner"
+volumeBindingMode: "WaitForFirstConsumer"
+---
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: "backup-storage"
+provisioner: "kubernetes.io/no-provisioner"
+volumeBindingMode: "WaitForFirstConsumer"
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: local-provisioner-config
+  namespace: kube-system
+data:
+  setPVOwnerRef: "true"
+  nodeLabelsForPV: |
+    - kubernetes.io/hostname
+  storageClassMap: |
+    ssd-storage:
+      hostDir: /users/yinfang/agent-ops/tidb/ssd
+      mountDir: /mnt/ssd
+    shared-ssd-storage:
+      hostDir: /users/yinfang/agent-ops/tidb/sharedssd
+      mountDir: /mnt/sharedssd
+    monitoring-storage:
+      hostDir: /users/yinfang/agent-ops/tidb/monitoring
+      mountDir: /mnt/monitoring
+    backup-storage:
+      hostDir: /users/yinfang/agent-ops/tidb/backup
+      mountDir: /mnt/backup
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: local-volume-provisioner
+  namespace: kube-system
+  labels:
+    app: local-volume-provisioner
+spec:
+  selector:
+    matchLabels:
+      app: local-volume-provisioner
+  template:
+    metadata:
+      labels:
+        app: local-volume-provisioner
+    spec:
+      serviceAccountName: local-storage-admin
+      containers:
+        - image: "quay.io/external_storage/local-volume-provisioner:v2.3.4"
+          name: provisioner
+          securityContext:
+            privileged: true
+          env:
+          - name: MY_NODE_NAME
+            valueFrom:
+              fieldRef:
+                fieldPath: spec.nodeName
+          - name: MY_NAMESPACE
+            valueFrom:
+              fieldRef:
+                fieldPath: metadata.namespace
+          - name: JOB_CONTAINER_IMAGE
+            value: "quay.io/external_storage/local-volume-provisioner:v2.3.4"
+          resources:
+            requests:
+              cpu: 100m
+              memory: 100Mi
+            limits:
+              cpu: 100m
+              memory: 100Mi
+          volumeMounts:
+            - mountPath: /etc/provisioner/config
+              name: provisioner-config
+              readOnly: true
+            - mountPath: /mnt/ssd
+              name: local-ssd
+              mountPropagation: "HostToContainer"
+            - mountPath: /mnt/sharedssd
+              name: local-sharedssd
+              mountPropagation: "HostToContainer"
+            - mountPath: /mnt/backup
+              name: local-backup
+              mountPropagation: "HostToContainer"
+            - mountPath: /mnt/monitoring
+              name: local-monitoring
+              mountPropagation: "HostToContainer"            
+      volumes:
+        - name: provisioner-config
+          configMap:
+            name: local-provisioner-config
+        - name: local-ssd
+          hostPath:
+            path: /users/yinfang/agent-ops/tidb/ssd
+        - name: local-sharedssd
+          hostPath:
+            path: /users/yinfang/agent-ops/tidb/sharedssd
+        - name: local-backup
+          hostPath:
+            path: /users/yinfang/agent-ops/tidb/backup
+        - name: local-monitoring
+          hostPath:
+            path: /users/yinfang/agent-ops/tidb/monitoring
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: local-storage-admin
+  namespace: kube-system
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: local-storage-provisioner-pv-binding
+  namespace: kube-system
+subjects:
+- kind: ServiceAccount
+  name: local-storage-admin
+  namespace: kube-system
+roleRef:
+  kind: ClusterRole
+  name: system:persistent-volume-provisioner
+  apiGroup: rbac.authorization.k8s.io
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: local-storage-provisioner-node-clusterrole
+  namespace: kube-system
+rules:
+- apiGroups: [""]
+  resources: ["nodes"]
+  verbs: ["get"]
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: local-storage-provisioner-node-binding
+  namespace: kube-system
+subjects:
+- kind: ServiceAccount
+  name: local-storage-admin
+  namespace: kube-system
+roleRef:
+  kind: ClusterRole
+  name: local-storage-provisioner-node-clusterrole
+  apiGroup: rbac.authorization.k8s.io
diff --git a/scripts/ansible/tidb/tidb-cluster.yaml b/scripts/ansible/tidb/tidb-cluster.yaml
new file mode 100644
index 0000000..1f7dde8
--- /dev/null
+++ b/scripts/ansible/tidb/tidb-cluster.yaml
@@ -0,0 +1,54 @@
+# IT IS NOT SUITABLE FOR PRODUCTION USE.
+# This YAML describes a basic TiDB cluster with minimum resource requirements,
+# which should be able to run in any Kubernetes cluster with storage support.
+apiVersion: pingcap.com/v1alpha1
+kind: TidbCluster
+metadata:
+  name: basic
+spec:
+  version: v8.1.0
+  timezone: UTC
+  pvReclaimPolicy: Retain
+  enableDynamicConfiguration: true
+  configUpdateStrategy: RollingUpdate
+  discovery: {}
+  helper:
+    image: alpine:3.16.0
+  pd:
+    baseImage: pingcap/pd
+    maxFailoverCount: 0
+    replicas: 1
+    # if storageClassName is not set, the default Storage Class of the Kubernetes cluster will be used
+    storageClassName: shared-ssd-storage
+    requests:
+      storage: "1Gi"
+    config: {}
+  tikv:
+    baseImage: pingcap/tikv
+    maxFailoverCount: 0
+    # If only 1 TiKV is deployed, the TiKV region leader
+    # cannot be transferred during upgrade, so we have
+    # to configure a short timeout
+    evictLeaderTimeout: 1m
+    replicas: 1
+    # if storageClassName is not set, the default Storage Class of the Kubernetes cluster will be used
+    storageClassName: ssd-storage
+    requests:
+      storage: "1Gi"
+    config:
+      storage:
+        # In basic examples, we set this to avoid using too much storage.
+        reserve-space: "0MB"
+      rocksdb:
+        # In basic examples, we set this to avoid the following error in some Kubernetes clusters:
+        # "the maximum number of open file descriptors is too small, got 1024, expect greater or equal to 82920"
+        max-open-files: 256
+      raftdb:
+        max-open-files: 256
+  tidb:
+    baseImage: pingcap/tidb
+    maxFailoverCount: 0
+    replicas: 1
+    service:
+      type: ClusterIP
+    config: {}
diff --git a/scripts/ansible/tidb/tidb-dashboard.yaml b/scripts/ansible/tidb/tidb-dashboard.yaml
new file mode 100644
index 0000000..8045534
--- /dev/null
+++ b/scripts/ansible/tidb/tidb-dashboard.yaml
@@ -0,0 +1,23 @@
+apiVersion: pingcap.com/v1alpha1
+kind: TidbDashboard
+metadata:
+  name: basic
+spec:
+  baseImage: pingcap/tidb-dashboard
+  version: latest
+
+  ## tidb cluster to be monitored
+  ## ** now only support monitoring one tidb cluster **
+  clusters:
+    - name: basic
+
+  ## describes the compute resource requirements and limits.
+  ## Ref: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/
+  requests:
+    #   cpu: 1000m
+    #   memory: 1Gi
+    storage: 1Gi
+  storageClassName: monitoring-storage
+  # limits:
+  #   cpu: 2000m
+  #   memory: 2Gi
diff --git a/scripts/ansible/tidb/tidb-monitor.yaml b/scripts/ansible/tidb/tidb-monitor.yaml
new file mode 100644
index 0000000..9e1259d
--- /dev/null
+++ b/scripts/ansible/tidb/tidb-monitor.yaml
@@ -0,0 +1,24 @@
+apiVersion: pingcap.com/v1alpha1
+kind: TidbMonitor
+metadata:
+  name: basic
+spec:
+  replicas: 1
+  clusters:
+  - name: basic
+  prometheus:
+    baseImage: prom/prometheus
+    version: v2.27.1
+  grafana:
+    baseImage: grafana/grafana
+    version: 7.5.11
+  initializer:
+    baseImage: pingcap/tidb-monitor-initializer
+    version: v8.1.0
+  reloader:
+    baseImage: pingcap/tidb-monitor-reloader
+    version: v1.0.1
+  prometheusReloader:
+    baseImage: quay.io/prometheus-operator/prometheus-config-reloader
+    version: v0.49.0
+  imagePullPolicy: IfNotPresent
diff --git a/scripts/ansible/tidb/tidb-operator.yaml b/scripts/ansible/tidb/tidb-operator.yaml
new file mode 100644
index 0000000..c190fb1
--- /dev/null
+++ b/scripts/ansible/tidb/tidb-operator.yaml
@@ -0,0 +1,306 @@
+# Default values for tidb-operator
+
+# clusterScoped is whether tidb-operator should manage kubernetes cluster wide tidb clusters
+# Also see rbac.create, controllerManager.serviceAccount, scheduler.create and controllerManager.clusterPermissions.
+clusterScoped: true
+
+# Also see clusterScoped and controllerManager.serviceAccount
+rbac:
+  create: true
+
+# timezone is the default system timzone
+timezone: UTC
+
+# operatorImage is TiDB Operator image
+operatorImage: pingcap/tidb-operator:v1.6.0
+imagePullPolicy: IfNotPresent
+# imagePullSecrets: []
+
+# tidbBackupManagerImage is tidb backup manager image
+tidbBackupManagerImage: pingcap/tidb-backup-manager:v1.6.0
+
+#
+# Enable or disable tidb-operator features:
+#
+#   AdvancedStatefulSet (default: false)
+#     If enabled, tidb-operator will use AdvancedStatefulSet to manage pods
+#     instead of Kubernetes StatefulSet.
+#     It's ok to turn it on if this feature is not enabled. However it's not ok
+#     to turn it off when the tidb-operator already uses AdvancedStatefulSet to
+#     manage pods. This is in GA phase.
+#     Ref: https://docs.pingcap.com/tidb-in-kubernetes/stable/advanced-statefulset
+#
+#   VolumeModifying (default false)
+#     If enabled, tidb-operator support to increase the size or performance of volumes
+#     for specific volume provisioner. This is in GA phase for AWS EBS.
+#
+#   VolumeReplacing (default false)
+#     If enabled, tidb-operator support generic volume changes (size, storageclass & number of volumes)
+#     by deleting old pod + pvc completely and replacing with new pods/PVCs.
+#     pd, tikv, tidb supported. If enabled, takes precedence over volume resizing & modifying.
+#     This works by deleting pod+volumes one at a time (similar to scale-in), and recreating it.
+#     For PD & TiKV this will first create one new spare replica to take the load before deleting existing ones
+#     Safely deleting a volume and replacing them can take a long time (Especially TiKV to move regions).
+#     This is in Alpha phase.
+#
+features: []
+# - AdvancedStatefulSet=false
+# - VolumeModifying=false
+# - VolumeReplacing=false
+
+appendReleaseSuffix: false
+
+controllerManager:
+  create: true
+  # With rbac.create=false, the user is responsible for creating this account
+  # With rbac.create=true, this service account will be created
+  # Also see rbac.create and clusterScoped
+  serviceAccount: tidb-controller-manager
+
+  # clusterPermissions are some cluster scoped permissions that will be used even if `clusterScoped: false`.
+  # the default value of these fields is `true`. if you want them to be `false`, you MUST set them to `false` explicitly.
+  clusterPermissions:
+    nodes: true
+    persistentvolumes: true
+    storageclasses: true
+
+  logLevel: 2
+  replicas: 1
+  resources:
+    requests:
+      cpu: 80m
+      memory: 50Mi
+#  # REF: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/
+#  priorityClassName: system-cluster-critical
+#
+
+  # REF: https://pkg.go.dev/k8s.io/client-go/tools/leaderelection#LeaderElectionConfig
+  ## leaderLeaseDuration is the duration that non-leader candidates will wait to force acquire leadership
+  # leaderLeaseDuration: 15s
+  ## leaderRenewDeadline is the duration that the acting master will retry refreshing leadership before giving up
+  # leaderRenewDeadline: 10s
+  ## leaderRetryPeriod is the duration the LeaderElector clients should wait between tries of actions
+  # leaderRetryPeriod: 2s
+  ## leaderResourceLock is the type of resource object that will be used for locking during leader election
+  ## If using "endpoints" before and want to migrate to "leases", you should migrate to "endpointsleases" first
+  # leaderResourceLock: "leases"
+
+  ## number of workers that are allowed to sync concurrently. default 5
+  # workers: 5
+
+  # autoFailover is whether tidb-operator should auto failover when failure occurs
+  autoFailover: true
+  # pd failover period default(5m)
+  pdFailoverPeriod: 5m
+  # tikv failover period default(5m)
+  tikvFailoverPeriod: 5m
+  # tidb failover period default(5m)
+  tidbFailoverPeriod: 5m
+  # tiflash failover period default(5m)
+  tiflashFailoverPeriod: 5m
+  # dm-master failover period default(5m)
+  dmMasterFailoverPeriod: 5m
+  # dm-worker failover period default(5m)
+  dmWorkerFailoverPeriod: 5m
+  # detectNodeFailure tells whether tidb-operator should auto detect k8s node failures for recovery of failure pods. Currently it is experimental
+  detectNodeFailure: false
+  # podHardRecoveryPeriod is the time limit after which a failure pod is forcefully marked as k8s node failure. To be set if detectNodeFailure is true default (24h)
+  # podHardRecoveryPeriod: 24h
+  ## affinity defines pod scheduling rules,affinity default settings is empty.
+  ## please read the affinity document before set your scheduling rule:
+  ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  affinity: {}
+  ## nodeSelector ensure pods only assigning to nodes which have each of the indicated key-value pairs as labels
+  ## ref:https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector
+  nodeSelector: {}
+  ## Tolerations are applied to pods, and allow pods to schedule onto nodes with matching taints.
+  ## refer to https://kubernetes.io/docs/concepts/configuration/taint-and-toleration
+  tolerations: []
+  # - key: node-role
+  #   operator: Equal
+  #   value: tidb-operator
+  #   effect: "NoSchedule"
+  ## Selector (label query) to filter on, make sure that this controller manager only manages the custom resources that match the labels
+  ## refer to https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#equality-based-requirement
+  selector: []
+  # - canary-release=v1
+  # - k1==v1
+  # - k2!=v2
+  ## Env define environments for the controller manager.
+  ## NOTE that the following env names is reserved: 
+  ##  - NAMESPACE
+  ##  - TZ
+  ##  - HELM_RELEASE
+  env: []
+  # - name: AWS_REGION
+  #   value: us-west-2
+  # SecurityContext is security config of this component, it will set template.spec.securityContext
+  # Refer to https://kubernetes.io/docs/tasks/configure-pod-container/security-context
+  securityContext: {}
+  # runAsUser: 1000
+  # runAsGroup: 2000
+  # fsGroup: 2000
+  # PodAnnotations will set template.metadata.annotations
+  # Refer to https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
+  podAnnotations: {}
+  ## KubeClientQPS indicates the maximum QPS to the kubenetes API server from client.
+  # kubeClientQPS: 5
+  ## Maximum burst for throttle.
+  # kubeClientBurst: 10
+
+scheduler:
+  create: false
+  # With rbac.create=false, the user is responsible for creating this account
+  # With rbac.create=true, this service account will be created
+  # Also see rbac.create and clusterScoped
+  serviceAccount: tidb-scheduler
+  logLevel: 2
+  replicas: 1
+  schedulerName: tidb-scheduler
+  resources:
+    limits:
+      cpu: 250m
+      memory: 150Mi
+    requests:
+      cpu: 80m
+      memory: 50Mi
+  kubeSchedulerImageName: registry.k8s.io/kube-scheduler
+  # This will default to matching your kubernetes version
+  # kubeSchedulerImageTag:
+  ## affinity defines pod scheduling rules,affinity default settings is empty.
+  ## please read the affinity document before set your scheduling rule:
+  ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  affinity: {}
+  ## nodeSelector ensure pods only assigning to nodes which have each of the indicated key-value pairs as labels
+  ## ref:https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector
+  nodeSelector: {}
+  ## Tolerations are applied to pods, and allow pods to schedule onto nodes with matching taints.
+  ## refer to https://kubernetes.io/docs/concepts/configuration/taint-and-toleration
+  tolerations: []
+  # - key: node-role
+  #   operator: Equal
+  #   value: tidb-operator
+  #   effect: "NoSchedule"
+  #
+  # SecurityContext is security config of this component, it will set template.spec.securityContext
+  # Refer to https://kubernetes.io/docs/tasks/configure-pod-container/security-context
+  securityContext: {}
+  # runAsUser: 1000
+  # runAsGroup: 2000
+  # fsGroup: 2000
+  # PodAnnotations will set template.metadata.annotations
+  # Refer to https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
+  podAnnotations: {}
+
+  # additional annotations for the configmap, mainly to prevent spinnaker versioning the cm
+  configmapAnnotations: {}
+
+# When AdvancedStatefulSet feature is enabled, you must install
+# AdvancedStatefulSet controller.
+# Note that AdvancedStatefulSet CRD must be installed manually via the following
+# command:
+#   kubectl apply -f manifests/advanced-statefulset-crd.v1.yaml
+advancedStatefulset:
+  create: false
+  ## resourceLock indicates the type of resource object that will be used for locking during leader election.
+  ## If using "endpoints" before and want to migrate to "leases", you should migrate to "endpointsleases" first.
+  # resourceLock: "leases"
+  image: pingcap/advanced-statefulset:v0.4.0
+  imagePullPolicy: IfNotPresent
+  serviceAccount: advanced-statefulset-controller
+  logLevel: 4
+  replicas: 1
+  resources:
+    limits:
+      cpu: 500m
+      memory: 300Mi
+    requests:
+      cpu: 200m
+      memory: 50Mi
+  ## affinity defines pod scheduling rules,affinity default settings is empty.
+  ## please read the affinity document before set your scheduling rule:
+  ## ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  affinity: {}
+  ## nodeSelector ensure pods only assigning to nodes which have each of the indicated key-value pairs as labels
+  ## ref:https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector
+  nodeSelector: {}
+  ## Tolerations are applied to pods, and allow pods to schedule onto nodes with matching taints.
+  ## refer to https://kubernetes.io/docs/concepts/configuration/taint-and-toleration
+  tolerations: []
+  # - key: node-role
+  #   operator: Equal
+  #   value: tidb-operator
+  #   effect: "NoSchedule"
+  #
+  # SecurityContext is security config of this component, it will set template.spec.securityContext
+  # Refer to https://kubernetes.io/docs/tasks/configure-pod-container/security-context
+  securityContext: {}
+  # runAsUser: 1000
+  # runAsGroup: 2000
+  # fsGroup: 2000
+
+admissionWebhook:
+  create: false
+  replicas: 1
+  serviceAccount: tidb-admission-webhook
+  logLevel: 2
+  rbac:
+    create: true
+  ## validation webhook would check the given request for the specific resource and operation
+  validation:
+    ## statefulsets hook would check requests for updating tidbcluster's statefulsets
+    ## If enabled it, the statefulsets of tidbcluseter would update in partition by tidbcluster's annotation
+    statefulSets: false
+    ## validating hook validates the correctness of the resources under pingcap.com group
+    pingcapResources: false
+  ## mutation webhook would mutate the given request for the specific resource and operation
+  mutation:
+    ## defaulting hook set default values for the the resources under pingcap.com group
+    pingcapResources: true
+  ## failurePolicy are applied to ValidatingWebhookConfiguration which affect tidb-admission-webhook
+  ## refer to https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#failure-policy
+  failurePolicy:
+    ## the validation webhook would check the request of the given resources.
+    validation: Fail
+    ## the mutation webhook would mutate the request of the given resources.
+    mutation: Fail
+  ## tidb-admission-webhook deployed as kubernetes apiservice server
+  ## refer to https://github.com/openshift/generic-admission-server
+  apiservice:
+    ## apiservice config
+    ## refer to https://kubernetes.io/docs/tasks/access-kubernetes-api/configure-aggregation-layer/#contacting-the-extension-apiserver
+    insecureSkipTLSVerify: true
+    ## The Secret includes the TLS ca, cert and key for the `tidb-admission-webook.<Release Namespace>.svc` Service.
+    ## If insecureSkipTLSVerify is true, this would be ignored.
+    ## You can create the tls secret by:
+    ## kubectl create secret generic <secret-name> --namespace=<release-namespace> --from-file=tls.crt=<path-to-cert> --from-file=tls.key=<path-to-key> --from-file=ca.crt=<path-to-ca>
+    tlsSecret: ""
+    ## The caBundle for the webhook apiservice, you could get it by the secret you created previously:
+    ## kubectl get secret <secret-name> --namespace=<release-namespace> -o=jsonpath='{.data.ca\.crt}'
+    caBundle: ""
+  ## certProvider indicate the key and cert for the webhook configuration to communicate with `kubernetes.default` service.
+  ## If your kube-apiserver's version >= 1.13.0, you can leave cabundle empty and the kube-apiserver
+  ## would trust the roots on the apiserver.
+  ## refer to https://github.com/kubernetes/api/blob/master/admissionregistration/v1/types.go#L529
+  ## or you can get the cabundle by:
+  ## kubectl get configmap -n kube-system extension-apiserver-authentication -o=jsonpath='{.data.client-ca-file}' | base64 | tr -d '\n'
+  cabundle: ""
+  # SecurityContext is security config of this component, it will set template.spec.securityContext
+  # Refer to https://kubernetes.io/docs/tasks/configure-pod-container/security-context
+  securityContext: {}
+  # runAsUser: 1000
+  # runAsGroup: 2000
+  # fsGroup: 2000
+  ## nodeSelector ensures that pods are only scheduled to nodes that have each of the indicated key-value pairs as labels
+  ## ref:https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector
+  nodeSelector: {}
+  ## Tolerations are applied to pods, and allow pods to schedule onto nodes with matching taints.
+  ## refer to https://kubernetes.io/docs/concepts/configuration/taint-and-toleration
+  tolerations: []
+  # - key: node-role
+  #   operator: Equal
+  #   value: tidb-operator
+  #   effect: "NoSchedule"
+  #
+
+
diff --git a/scripts/ansible/tidb/tidb_operator_cluster.yml b/scripts/ansible/tidb/tidb_operator_cluster.yml
new file mode 100644
index 0000000..4aed79b
--- /dev/null
+++ b/scripts/ansible/tidb/tidb_operator_cluster.yml
@@ -0,0 +1,107 @@
+---
+- name: Setup TiDB Cluster and Operator
+  hosts: control_node
+  become: true
+  vars:
+    kubeconfig_path: "/users/{{ k8s_user }}/.kube/config"
+  tasks:
+    - name: Check if CRDs already exist
+      shell: kubectl get crd backups.pingcap.com
+      register: crd_exists
+      failed_when: false
+      changed_when: false
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Delete existing CRDs if they exist
+      shell: kubectl delete -f https://raw.githubusercontent.com/pingcap/tidb-operator/v1.6.0/manifests/crd.yaml
+      when: crd_exists.rc == 0
+      ignore_errors: true
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Create CRDs for TiDB Operator
+      shell: kubectl create -f https://raw.githubusercontent.com/pingcap/tidb-operator/v1.6.0/manifests/crd.yaml
+      register: crd_create
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Check CRDs creation result
+      fail:
+        msg: "CRDs creation failed. Ensure Kubernetes is configured properly."
+      when: crd_create.failed
+
+    - name: Create namespace for TiDB Operator
+      shell: kubectl create namespace tidb-admin
+      register: tidb_admin_ns
+      ignore_errors: true
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Create namespace for TiDB Cluster
+      shell: kubectl create namespace tidb-cluster
+      register: tidb_cluster_ns
+      ignore_errors: true
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Install TiDB Operator with Helm
+      shell: |
+        helm repo add pingcap https://charts.pingcap.org
+        helm repo update
+        helm upgrade --install tidb-operator pingcap/tidb-operator \
+          --namespace=tidb-admin --version=v1.6.0 -f {{ playbook_dir }}/tidb-operator.yaml
+      register: helm_install
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Check Helm installation result
+      fail:
+        msg: "Helm installation of TiDB Operator failed."
+      when: helm_install.failed
+
+    - name: Wait for TiDB Operator pods to be ready
+      shell: kubectl wait --namespace tidb-admin \
+        --for=condition=Ready pod \
+        --selector=app.kubernetes.io/name=tidb-operator --timeout=300s
+      register: wait_tidb_operator
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Check if TiDB Operator pods are ready
+      fail:
+        msg: "TiDB Operator pods are not ready."
+      when: wait_tidb_operator.failed
+
+    - name: Apply TidbCluster configuration
+      shell: kubectl -n tidb-cluster apply -f {{ playbook_dir }}/tidb-cluster.yaml
+      register: tidb_cluster_apply
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Check TidbCluster configuration apply result
+      fail:
+        msg: "Failed to apply TidbCluster configuration."
+      when: tidb_cluster_apply.failed
+
+    - name: Apply TidbDashboard configuration
+      shell: kubectl -n tidb-cluster apply -f {{ playbook_dir }}/tidb-dashboard.yaml
+      register: tidb_dashboard_apply
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Check TidbDashboard configuration apply result
+      fail:
+        msg: "Failed to apply TidbDashboard configuration."
+      when: tidb_dashboard_apply.failed
+
+    - name: Apply TidbMonitor configuration
+      shell: kubectl -n tidb-cluster apply -f {{ playbook_dir }}/tidb-monitor.yaml
+      register: tidb_monitor_apply
+      environment:
+        KUBECONFIG: "{{ kubeconfig_path }}"
+
+    - name: Check TidbMonitor configuration apply result
+      fail:
+        msg: "Failed to apply TidbMonitor configuration."
+      when: tidb_monitor_apply.failed
diff --git a/scripts/ansible/tidb/tidb_pv_setup.yml b/scripts/ansible/tidb/tidb_pv_setup.yml
new file mode 100644
index 0000000..eddf455
--- /dev/null
+++ b/scripts/ansible/tidb/tidb_pv_setup.yml
@@ -0,0 +1,173 @@
+---
+- name: Configure Local Persistent Volumes for TiDB
+  hosts: all
+  become: true
+  tasks:
+
+  # Step 1: Install necessary tools
+  - name: Ensure necessary packages are installed
+    apt:
+      name: 
+        - e2fsprogs  # For mkfs.ext4
+        - util-linux # For losetup
+      state: present
+      update_cache: true
+
+  # Step 2: Create a single loopback device for SSD
+  - name: Create a loopback device for SSD
+    shell: |
+      dd if=/dev/zero of=/tmp/ssd.img bs=1M count=2048
+      losetup -fP /tmp/ssd.img
+    # when: inventory_hostname in groups['worker_nodes']  # Apply only to worker nodes
+
+  - name: Get loopback device for SSD
+    shell: losetup -a | grep /tmp/ssd.img
+    register: ssd_loop_device
+    # when: inventory_hostname in groups['worker_nodes']
+
+  - name: Format SSD loopback device as ext4
+    shell: mkfs.ext4 {{ ssd_loop_device.stdout.split(":")[0] }}
+    # when: inventory_hostname in groups['worker_nodes']
+
+  - name: Mount SSD device
+    mount:
+      path: /users/{{ k8s_user }}/agent-ops/tidb/ssd
+      src: "{{ ssd_loop_device.stdout.split(':')[0] }}"
+      fstype: ext4
+      opts: defaults
+      state: mounted
+    # when: inventory_hostname in groups['worker_nodes']
+
+  # Step 3: Create subdirectories and bind-mount them
+  - name: Create subdirectories for sharedssd, monitoring, and backup
+    shell: mkdir -p /users/{{ k8s_user }}/agent-ops/tidb/ssd/{{ item }}
+    loop:
+      - sharedssd_vol1
+      - sharedssd_vol2
+      - sharedssd_vol3
+      - sharedssd_vol4
+      - sharedssd_vol5
+      - sharedssd_vol6
+      - sharedssd_vol7
+      - sharedssd_vol8
+      - sharedssd_vol9
+      - sharedssd_vol10
+      - monitoring_vol1
+      - monitoring_vol2
+      - monitoring_vol3
+      - monitoring_vol4
+      - monitoring_vol5
+      - monitoring_vol6
+      - monitoring_vol7
+      - monitoring_vol8
+      - monitoring_vol9
+      - monitoring_vol10
+      - backup_vol1
+      - backup_vol2
+      - backup_vol3
+      - backup_vol4
+      - backup_vol5
+      - backup_vol6
+      - backup_vol7
+      - backup_vol8
+      - backup_vol9
+      - backup_vol10
+    # when: inventory_hostname in groups['worker_nodes']
+
+  - name: Create target directories for bind mounts
+    file:
+      path: /users/{{ k8s_user }}/agent-ops/tidb/{{ item.split('_')[0] }}/{{ item }}
+      state: directory
+      mode: '0755'
+    loop:
+      - sharedssd_vol1
+      - sharedssd_vol2
+      - sharedssd_vol3
+      - sharedssd_vol4
+      - sharedssd_vol5
+      - sharedssd_vol6
+      - sharedssd_vol7
+      - sharedssd_vol8
+      - sharedssd_vol9
+      - sharedssd_vol10
+      - monitoring_vol1
+      - monitoring_vol2
+      - monitoring_vol3
+      - monitoring_vol4
+      - monitoring_vol5
+      - monitoring_vol6
+      - monitoring_vol7
+      - monitoring_vol8
+      - monitoring_vol9
+      - monitoring_vol10
+      - backup_vol1
+      - backup_vol2
+      - backup_vol3
+      - backup_vol4
+      - backup_vol5
+      - backup_vol6
+      - backup_vol7
+      - backup_vol8
+      - backup_vol9
+      - backup_vol10
+
+  - name: Bind-mount subdirectories
+    shell: mount --bind /users/{{ k8s_user }}/agent-ops/tidb/ssd/{{ item }} /users/{{ k8s_user }}/agent-ops/tidb/{{ item.split('_')[0] }}/{{ item }}
+    loop:
+      - sharedssd_vol1
+      - sharedssd_vol2
+      - sharedssd_vol3
+      - sharedssd_vol4
+      - sharedssd_vol5
+      - sharedssd_vol6
+      - sharedssd_vol7
+      - sharedssd_vol8
+      - sharedssd_vol9
+      - sharedssd_vol10
+      - monitoring_vol1
+      - monitoring_vol2
+      - monitoring_vol3
+      - monitoring_vol4
+      - monitoring_vol5
+      - monitoring_vol6
+      - monitoring_vol7
+      - monitoring_vol8
+      - monitoring_vol9
+      - monitoring_vol10
+      - backup_vol1
+      - backup_vol2
+      - backup_vol3
+      - backup_vol4
+      - backup_vol5
+      - backup_vol6
+      - backup_vol7
+      - backup_vol8
+      - backup_vol9
+      - backup_vol10
+    # when: inventory_hostname in groups['worker_nodes']
+
+####################################################### 
+- name: Apply Kubernetes Configuration for Provisioner
+  hosts: control_nodes
+  become: true
+  vars:
+    kubeconfig_path: "/users/{{ k8s_user }}/.kube/config"
+  tasks:
+
+  # Step 5: Deploy the local-volume-provisioner
+  - name: Apply the local-volume-provisioner YAML configuration
+    shell: kubectl apply -f local-volume-provisioner.yaml
+    environment:
+      KUBECONFIG: "{{ kubeconfig_path }}"
+    args:
+      chdir: "{{ playbook_dir }}"
+
+  # Step 6: Verify the setup
+  - name: Verify Persistent Volumes
+    shell: kubectl get pv
+    environment:
+      KUBECONFIG: "{{ kubeconfig_path }}"
+    register: pv_output
+
+  - debug:
+      var: pv_output.stdout
diff --git a/scripts/geni_lib/README.md b/scripts/geni_lib/README.md
new file mode 100644
index 0000000..5285529
--- /dev/null
+++ b/scripts/geni_lib/README.md
@@ -0,0 +1,180 @@
+# Getting CloudLab Credentials
+
+1. Go to https://www.cloudlab.us/
+2. Login with your cloudlab account
+3. On the top right corner, click on your username, and then click on "Download Credentials"
+4. This will take you to a page with a button to download the credentials. Click on it.
+5. This will download a file called `cloudlab.pem`.
+
+The `cloudlab.pem` contains the encrypted private key to your cloudlab account and ssl certificate. You need to decrypt it before using it.
+
+## Install OpenSSL (if not already installed)
+
+For Ubuntu/Debian:
+```bash
+sudo apt install openssl
+```
+
+For macOS:
+```bash
+brew install openssl
+```
+
+## Decrypt the CloudLab credentials
+
+```bash
+openssl rsa -in cloudlab.pem -out cloudlab_decrypted.pem
+```
+
+When prompted for a password, enter your CloudLab account password (the same one you use to login to the CloudLab website).
+This will create a new file `cloudlab_decrypted.pem` containing your decrypted private key.
+The SSL certificate remains in the original `cloudlab.pem` file.
+
+# About `geni-lib` library
+
+The `geni-lib` library is a Python library for interacting with the GENI (Global Environment for Network Innovations) API. It provides a Python interface to manage slices and slivers on GENI-enabled resources. The original library can be found [here](https://gitlab.flux.utah.edu/emulab/geni-lib). For this project, we have made some modifications to the original library to make it python3 compatible as the original library has some python3 context that causes issues when using it in python3.
+
+The modified library can be found in the `scripts/geni-lib/mod/geni-lib-xlab` directory. It will be automatically installed when you run `uv sync` to install the dependencies.
+
+## Building a context definition for CloudLab
+
+To build a context definition, you'll need:
+- Your CloudLab certificate (`cloudlab.pem`)
+- Your decrypted private key (`cloudlab_decrypted.pem`)
+- Your SSH public key
+- Your project name (use lowercase to avoid Slice URN conflicts)
+
+Use the following command format:
+```bash
+build-context --type cloudlab --cert <path_to_cert> --key <path_to_key> --pubkey <path_to_pubkey> --project <project_name>
+```
+
+Example:
+```bash
+build-context --type cloudlab --cert cloudlab.pem --key cloudlab_decrypted.pem --pubkey ~/.ssh/id_ed25519.pub --project aiopslab
+```
+
+# How GENI Works
+
+GENI (Global Environment for Network Innovations) and CloudLab use two core concepts for managing experimental resources:
+
+## Understanding Slices and Slivers
+
+### Slice
+- A slice is a logical container that groups resources (nodes, links) for a specific experiment
+- Think of it as a virtual workspace for organizing resources
+- Has an expiration time that can be renewed
+
+### Sliver
+- A sliver is a specific allocated resource (node, link, VM) within a slice
+- Each sliver exists at a particular physical site (aggregate)
+- Examples: A compute node at Wisconsin CloudLab
+- Slivers include details like:
+  - Node specifications (e.g., c220g5)
+  - IP addresses (public and private)
+  - SSH access information
+- Sliver expiration time cannot exceed its parent slice's expiration time
+
+## Understanding RSpec Files
+
+RSpec files are used to define the resources and their configurations for a slice. We can get them two ways:
+1. We can modify the `generate_rspec.py` script to programmatically define our resources and generate the RSpec file corresponding to our resources.
+2. We can simply go to cloudlab and copy the rspec of a profile we want to use. Store the rspec files in the `scripts/geni-lib/rspecs` directory.
+
+## Using the GENI Manager
+
+The `genictl.py` script provides a CLI to manage both slices and slivers.
+
+### Available Commands
+
+1. **create-slice**
+   - Creates a new slice container for your experiment
+   ```bash
+   python3 genictl.py create-slice <slice_name> [--hours HOURS] [--description DESCRIPTION]
+   ```
+
+2. **create-sliver**
+   - Allocates resources in a specific site
+   - Saves login information to `<slice_name>.login.info.txt`
+   ```bash
+   python3 genictl.py create-sliver <slice_name> <rspec_file> --site {utah,clemson,wisconsin}
+   ```
+
+3. **sliver-status**
+   - Checks the current status of allocated resources
+   ```bash
+   python3 genictl.py sliver-status <slice_name> --site {utah,clemson,wisconsin}
+   ```
+
+4. **renew-slice**
+   - Extends the expiration time of a slice
+   ```bash
+   python3 genictl.py renew-slice <slice_name> [--hours HOURS]
+   ```
+
+5. **renew-sliver**
+   - Extends the expiration time of resources at a specific site
+   - Note: Set sliver expiration slightly less than slice expiration (e.g., 2.9h instead of 3h) to account for command execution delays
+   ```bash
+   python3 genictl.py renew-sliver <slice_name> [--hours HOURS] --site {utah,clemson,wisconsin}
+   ```
+
+6. **list-slices**
+   - Shows all active slices and their details
+   ```bash
+   python3 genictl.py list-slices
+   ```
+
+7. **sliver-spec**
+   - Shows detailed specifications of allocated resources
+   - Includes node specs, IP addresses, and network info
+   ```bash
+   python3 genictl.py sliver-spec <slice_name> --site {utah,clemson,wisconsin}
+   ```
+
+8. **delete-sliver**
+   - Removes allocated resources from a slice
+   ```bash
+   python3 genictl.py delete-sliver <slice_name> --site {utah,clemson,wisconsin}
+   ```
+
+9. **get-hardware-info**
+   - Gets the hardware information from CloudLab. This is useful to get the hardware information of the nodes available in the different sites.
+   ```bash
+   python3 genictl.py get-hardware-info
+   ```
+
+10. **create-experiment**
+    - Creates a quick experiment with the desired hardware type, number of nodes, OS type and duration
+    ```bash
+    python3 genictl.py create-experiment [--hardware-type HARDWARE_TYPE] [--nodes NODES] [--duration DURATION] [--os-type OS_TYPE] [--ssh-user SSH_USER] [--ssh-key SSH_KEY] [--k8s] [--pod-network-cidr POD_NETWORK_CIDR] [--deploy-sregym] [--deploy-key DEPLOY_KEY]
+    ```
+    Options:
+    - `--hardware-type`: Hardware type (default: c220g5)
+    - `--nodes`: Number of nodes (default: 3)
+    - `--duration`: Duration in hours (default: 1)
+    - `--os-type`: OS image (default: UBUNTU22-64-STD)
+    - `--ssh-user`: SSH username
+    - `--ssh-key`: SSH private key file
+    - `--k8s`: boolean flag to bootstrap Kubernetes after sliver is ready
+    - `--pod-network-cidr`: Calico pod CIDR (default: 192.168.0.0/16)
+    - `--deploy-sregym`: boolean flag to deploy SREGym after K8s cluster is ready
+    - `--deploy-key`: Path to SSH deploy key for SREGym private repo
+
+11. **renew-experiment**
+    - Renews both slice and sliver for an experiment
+    ```bash
+    python3 genictl.py renew-experiment <slice_name> --site {utah,clemson,wisconsin} [--hours HOURS]
+    ```
+
+## Quick Test
+
+Under the `tests/geni-lib/` directory, there is a script called `test_experiment_creation.py` that can be used to create a quick experiment.
+
+```bash
+cd tests/geni-lib
+python3 test_experiment_creation.py
+```
+
+This will create a 3-node experiment with 3 c220g5 nodes in the Wisconsin site for 1 hour.
+The login info will be saved to a file called `<slice_name>.login.info.txt`.
diff --git a/scripts/geni_lib/__init__.py b/scripts/geni_lib/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/scripts/geni_lib/cluster_setup.py b/scripts/geni_lib/cluster_setup.py
new file mode 100644
index 0000000..1a6b66f
--- /dev/null
+++ b/scripts/geni_lib/cluster_setup.py
@@ -0,0 +1,357 @@
+#!/usr/bin/env python3
+
+from __future__ import annotations
+
+import pathlib
+import subprocess
+import sys
+import time
+
+import yaml
+
+from scripts.geni_lib.remote import RemoteExecutor
+
+CFG_PATH = pathlib.Path("config.yml")
+
+
+def load_cfg() -> dict:
+    return yaml.safe_load(CFG_PATH.read_text())
+
+
+def nodes_reachable(cloud: dict, verbose: bool = True) -> bool:
+    """Check if all nodes are reachable with better error handling and retries"""
+    print(f"Checking {len(cloud['nodes'])} nodes for SSH connectivity...")
+
+    for i, host in enumerate(cloud["nodes"], 1):
+        print(f"   [{i}/{len(cloud['nodes'])}] Testing {host}...", end=" ")
+
+        max_retries = 3
+        success = False
+
+        for retry in range(max_retries):
+            try:
+                executor = RemoteExecutor(host, cloud["ssh_user"], cloud.get("ssh_key"))
+                rc, stdout, stderr = executor.exec("echo 'SSH test successful'")
+                executor.close()
+
+                if rc == 0:
+                    print("✅")
+                    success = True
+                    break
+                else:
+                    print(f"❌ (command failed: rc={rc})")
+                    if verbose and retry == max_retries - 1:
+                        print(f"      stdout: {stdout.strip()}")
+                        print(f"      stderr: {stderr.strip()}")
+
+            except Exception as e:
+                if retry < max_retries - 1:
+                    print(".", end="")
+                    time.sleep(5)
+                else:
+                    print(f"❌ ({type(e).__name__}: {str(e)[:80]}...)")
+                    if verbose:
+                        print(f"      Full error: {e}")
+
+        if not success:
+            return False
+
+    print("✅ All nodes reachable!")
+    return True
+
+
+def install_k8s_components(ex: RemoteExecutor) -> None:
+    cmds: list[str] = [
+        "sudo swapoff -a",
+        "sudo sed -i '/ swap / s/^/#/' /etc/fstab",
+        "sudo modprobe br_netfilter",
+        "sudo modprobe overlay",
+        "echo 'net.bridge.bridge-nf-call-iptables=1' | sudo tee /etc/sysctl.d/k8s.conf",
+        "echo 'net.bridge.bridge-nf-call-ip6tables=1' | sudo tee -a /etc/sysctl.d/k8s.conf",
+        "echo 'net.ipv4.ip_forward=1' | sudo tee -a /etc/sysctl.d/k8s.conf",
+        "sudo sysctl --system",
+        "sudo apt-get update -qq",
+        "sudo apt-get install -yq apt-transport-https ca-certificates curl \
+         gnupg lsb-release jq",
+        "sudo rm -f /etc/apt/sources.list.d/kubernetes.list",
+        "sudo mkdir -p /etc/apt/keyrings",
+        "sudo rm -f /etc/apt/keyrings/kubernetes-archive-keyring.gpg",
+        "curl -fsSL https://pkgs.k8s.io/core:/stable:/v1.28/deb/Release.key -o /tmp/k8s-Release.key",
+        "sudo gpg --batch --yes --dearmor -o /etc/apt/keyrings/kubernetes-archive-keyring.gpg /tmp/k8s-Release.key",
+        "rm /tmp/k8s-Release.key",
+        "echo 'deb [signed-by=/etc/apt/keyrings/kubernetes-archive-keyring.gpg] https://pkgs.k8s.io/core:/stable:/v1.28/deb/ /' | sudo tee /etc/apt/sources.list.d/kubernetes.list",
+        "sudo apt-get update -qq",
+        "sudo apt-get install -yq containerd kubelet kubeadm kubectl",
+        "sudo apt-mark hold kubelet kubeadm kubectl",
+        "sudo mkdir -p /etc/containerd",
+        "sudo containerd config default | sudo tee /etc/containerd/config.toml",
+        "sudo sed -i 's/SystemdCgroup = false/SystemdCgroup = true/' /etc/containerd/config.toml",
+        "sudo systemctl restart containerd",
+        "sudo systemctl enable containerd",
+        "sudo update-alternatives --set iptables /usr/sbin/iptables-legacy",
+        "sudo kubeadm config images pull --kubernetes-version $(kubeadm version -o short)",
+    ]
+    for cmd in cmds:
+        print(f"      Running: {cmd[:60]}...")
+        rc, stdout, err = ex.exec(cmd)  # Removed timeout parameter
+        if rc != 0:
+            print(f"      Failed command: {cmd}")
+            print(f"      Error: {err.strip()}")
+            raise RuntimeError(f"[{ex.host}] `{cmd}` failed:\n{err.strip()}")
+
+
+def _wait_for_api_server(ex: RemoteExecutor, timeout: int = 300) -> None:
+    start = time.time()
+    print("      waiting for API server to be ready…")
+    while time.time() - start < timeout:
+        ok, _, _ = ex.exec("kubectl get nodes --request-timeout=5s >/dev/null 2>&1")
+        if ok == 0:
+            print("      API server is ready!")
+            return
+        time.sleep(5)
+    raise RuntimeError("API server not ready after 300 s")
+
+
+def _wait_controller_ready(ex: RemoteExecutor, timeout: int = 600) -> None:
+    start = time.time()
+    print("waiting for controller manager to be ready…")
+    while time.time() - start < timeout:
+        ok, out, _ = ex.exec(
+            "kubectl get pod -n kube-system -l component=kube-controller-manager -o jsonpath='{.items[0].status.conditions[?(@.type==\"Ready\")].status}' 2>/dev/null"
+        )
+        if ok == 0 and out.strip("'\" ") == "True":
+            print("controller manager pod is Ready!")
+            return
+        ok, _, _ = ex.exec(
+            "kubectl get secret -n kube-system -o json 2>/dev/null | jq -e '.items[] | select(.type==\"kubernetes.io/service-account-token\")' >/dev/null 2>&1"
+        )
+        if ok == 0:
+            print("ServiceAccount token found!")
+            return
+        time.sleep(5)
+    raise RuntimeError("controller manager not Ready within 10 min")
+
+
+def _apply_calico_operator(ex: RemoteExecutor) -> None:
+    print("applying Tigera operator (server side)…")
+    operator_url = "https://raw.githubusercontent.com/projectcalico/calico/v3.27.4/manifests/tigera-operator.yaml"
+    rc, _, err = ex.exec(f"kubectl apply --server-side --force-conflicts -f {operator_url}")
+    if rc != 0:
+        raise RuntimeError(f"Applying tigera‑operator failed:\n{err.strip()}")
+
+    # Wait until CRD shows up
+    for _ in range(60):
+        ok, _, _ = ex.exec("kubectl get crd installations.operator.tigera.io >/dev/null 2>&1")
+        if ok == 0:
+            break
+        time.sleep(2)
+    else:
+        raise RuntimeError("Installation CRD never appeared")
+
+    print("applying Calico custom resources…")
+    cr_url = "https://raw.githubusercontent.com/projectcalico/calico/v3.27.4/manifests/custom-resources.yaml"
+    rc, _, err = ex.exec(f"kubectl apply -f {cr_url}")
+    if rc != 0:
+        raise RuntimeError(f"Applying custom-resources failed:\n{err.strip()}")
+
+    print("      Calico install initiated…")
+
+
+def init_master(ex: RemoteExecutor, cidr: str) -> str:
+    print(f"  ->cleaning previous state on {ex.host}…")
+    for cmd in [
+        "sudo kubeadm reset -f >/dev/null 2>&1 || true",
+        "sudo rm -rf /etc/kubernetes/pki || true",
+        "sudo rm -rf /etc/kubernetes/manifests/*.yaml /var/lib/etcd/* || true",
+        "sudo rm -rf /etc/cni/net.d/* || true",
+        "sudo systemctl restart containerd",
+        "sudo systemctl restart kubelet",
+    ]:
+        ex.exec(cmd)
+
+    print(f"   -> running kubeadm init on {ex.host} …")
+    rc, out, err = ex.exec(f"sudo kubeadm init --pod-network-cidr={cidr} --upload-certs --v=5")
+    if rc != 0:
+        raise RuntimeError(f"[{ex.host}] kubeadm init failed:\n{err.strip()}")
+
+    ex.exec("mkdir -p $HOME/.kube")
+    ex.exec("sudo cp /etc/kubernetes/admin.conf $HOME/.kube/config")
+    ex.exec("sudo chown $(id -u):$(id -g) $HOME/.kube/config")
+
+    _wait_for_api_server(ex)
+    _wait_controller_ready(ex)
+    _apply_calico_operator(ex)
+
+    print("      generating join command…")
+    for _ in range(30):
+        rc, join_cmd, _ = ex.exec("sudo kubeadm token create --print-join-command --ttl 24h")
+        if rc == 0 and join_cmd.strip():
+            return join_cmd.strip()
+        time.sleep(10)
+    for line in out.splitlines():
+        if line.strip().startswith("kubeadm join"):
+            return " ".join(part.rstrip("\\") for part in line.split())
+    raise RuntimeError("timed‑out fetching join command")
+
+
+def join_worker(ex: RemoteExecutor, join_cmd: str) -> None:
+    print(f"   ↳ preparing worker {ex.host}…")
+    for cmd in [
+        "sudo kubeadm reset -f >/dev/null 2>&1 || true",
+        "sudo rm -rf /etc/kubernetes/pki || true",
+        "sudo rm -rf /etc/kubernetes/manifests/*.yaml /var/lib/etcd/* /var/lib/kubelet/* || true",
+        "sudo rm -rf /etc/cni/net.d/* || true",
+        "sudo systemctl restart kubelet",
+    ]:
+        ex.exec(cmd)
+
+    print(f"   ↳ joining {ex.host} to cluster…")
+    rc, _, err = ex.exec(f"sudo {join_cmd}")
+    if rc != 0:
+        raise RuntimeError(f"[{ex.host}] kubeadm join failed:\n{err.strip()}")
+
+
+def setup_cloudlab_cluster(cfg: dict) -> None:
+    cloud, cidr = cfg["cloudlab"], cfg["pod_network_cidr"]
+    executors: list[RemoteExecutor] = []
+    try:
+        for host in cloud["nodes"]:
+            print(f"Installing K8s components on {host} …")
+            ex = RemoteExecutor(host, cloud["ssh_user"], cloud.get("ssh_key"))
+            install_k8s_components(ex)
+            executors.append(ex)
+
+        print("\nInitializing control plane…")
+        join_cmd = init_master(executors[0], cidr)
+        print("✓ Control plane is Ready!")
+
+        if len(executors) > 1:
+            print(f"\nJoining {len(executors)-1} workers…")
+            for ex in executors[1:]:
+                join_worker(ex, join_cmd)
+
+        # health check
+        print("\nPerforming cluster health check…")
+        time.sleep(10)
+        rc, nodes_out, _ = executors[0].exec("kubectl get nodes --no-headers")
+        if rc == 0:
+            print("\n🟢 Cluster is up:")
+            print(nodes_out)
+        else:
+            print("⚠️  Unable to list nodes — check manually.")
+    finally:
+        for ex in executors:
+            ex.close()
+
+
+def setup_kind_cluster(cfg: dict) -> None:
+    print("CloudLab unreachable — creating local Kind cluster…")
+    kind_cfg = cfg["kind"]["kind_config_arm"]  # adjust arch detection if needed
+    subprocess.run(["kind", "create", "cluster", "--config", kind_cfg], check=True)
+    print("Kind cluster ready ")
+
+
+def deploy_sregym(ex: RemoteExecutor, deploy_key_path: str) -> None:
+    """Deploy SREGym with proper SSH key handling and host verification"""
+    print("Setting up SREGym deployment…")
+
+    # Read the private key content from local file
+    try:
+        with open(deploy_key_path, "r") as f:
+            private_key_content = f.read()
+    except FileNotFoundError:
+        raise RuntimeError(f"Deploy key not found: {deploy_key_path}")
+
+    # Create the private key on the remote server
+    setup_cmds = [
+        "mkdir -p ~/.ssh",
+        "chmod 700 ~/.ssh",
+        # Write the private key to remote server
+        f"cat > ~/.ssh/sregym_deploy << 'EOF'\n{private_key_content}\nEOF",
+        "chmod 600 ~/.ssh/sregym_deploy",
+        # Add GitHub to known_hosts to avoid host key verification
+        "ssh-keyscan -H github.com >> ~/.ssh/known_hosts 2>/dev/null || true",
+    ]
+
+    for cmd in setup_cmds:
+        print(f"      Setting up SSH: {cmd[:50]}...")
+        rc, stdout, stderr = ex.exec(cmd)
+        if rc != 0:
+            print(f"      Setup failed: {stderr.strip()}")
+            raise RuntimeError(f"SSH setup failed: {stderr.strip()}")
+
+    # Clone and deploy SREGym
+    deploy_cmds = [
+        # Use the correct repository URL
+        "ssh-agent bash -c 'ssh-add ~/.ssh/sregym_deploy; git clone --recurse-submodules git@github.com:SREGym/SREGym.git /tmp/sregym'",
+        "cd /tmp/sregym",
+        # Clean up the private key for security
+        "rm -f ~/.ssh/sregym_deploy",
+    ]
+
+    for cmd in deploy_cmds:
+        print(f"      Running: {cmd[:60]}...")
+        rc, stdout, stderr = ex.exec(cmd)
+        if rc != 0:
+            print(f"      Failed command: {cmd}")
+            print(f"      Error: {stderr.strip()}")
+            raise RuntimeError(f"[{ex.host}] `{cmd}` failed:\n{stderr.strip()}")
+
+    print("✅ SREGym deployed successfully!")
+
+
+def setup_cloudlab_cluster_with_sregym(cfg: dict) -> None:
+    cloud, cidr = cfg["cloudlab"], cfg["pod_network_cidr"]
+    deploy_key = cfg["deploy_key"]
+    executors: list[RemoteExecutor] = []
+    try:
+        for host in cloud["nodes"]:
+            print(f"Installing K8s components on {host} …")
+            ex = RemoteExecutor(host, cloud["ssh_user"], cloud.get("ssh_key"))
+            install_k8s_components(ex)
+            executors.append(ex)
+
+        print("\nInitializing control plane…")
+        join_cmd = init_master(executors[0], cidr)
+        print("✓ Control plane is Ready!")
+
+        if len(executors) > 1:
+            print(f"\nJoining {len(executors)-1} workers…")
+            for ex in executors[1:]:
+                join_worker(ex, join_cmd)
+
+        # Deploy SREGym
+        print("\nDeploying SREGym…")
+        deploy_sregym(executors[0], deploy_key)
+
+        # Health check
+        print("\nPerforming cluster health check…")
+        time.sleep(10)
+        rc, nodes_out, _ = executors[0].exec("kubectl get nodes --no-headers")
+        if rc == 0:
+            print("\n🟢 Cluster is up:")
+            print(nodes_out)
+        else:
+            print("⚠️  Unable to list nodes — check manually.")
+    finally:
+        for ex in executors:
+            ex.close()
+
+
+def main() -> None:
+    cfg = load_cfg()
+    try:
+        if cfg["mode"] == "cloudlab" and nodes_reachable(cfg["cloudlab"]):
+            setup_cloudlab_cluster(cfg)
+        else:
+            setup_kind_cluster(cfg)
+    except RuntimeError as exc:
+        print(f"\n X  {exc}", file=sys.stderr)
+        sys.exit(1)
+    except KeyboardInterrupt:
+        print("\n⚠️  Setup interrupted by user", file=sys.stderr)
+        sys.exit(1)
+
+
+if __name__ == "__main__":
+    main()
diff --git a/scripts/geni_lib/generate_rspec.py b/scripts/geni_lib/generate_rspec.py
new file mode 100644
index 0000000..c0c1f49
--- /dev/null
+++ b/scripts/geni_lib/generate_rspec.py
@@ -0,0 +1,35 @@
+import geni.portal as portal
+
+RSPEC_FILE = "rspecs/test.xml"
+
+# Create a Request object to start building the RSpec
+request = portal.context.makeRequestRSpec()
+
+# Create the raw "PC" nodes
+node1 = request.RawPC("control")
+node2 = request.RawPC("compute1")
+node3 = request.RawPC("compute2")
+
+# Set the hardware type
+node1.hardware_type = "c220g5"
+node2.hardware_type = "c220g5"
+node3.hardware_type = "c220g5"
+
+# Set the disk image
+node1.disk_image = "urn:publicid:IDN+emulab.net+image+emulab-ops//UBUNTU22-64-STD"
+node2.disk_image = "urn:publicid:IDN+emulab.net+image+emulab-ops//UBUNTU22-64-STD"
+node3.disk_image = "urn:publicid:IDN+emulab.net+image+emulab-ops//UBUNTU22-64-STD"
+
+# node1.routable_control_ip = True
+# node2.routable_control_ip = True
+# node3.routable_control_ip = True
+
+# Create a link between the two nodes
+link1 = request.Link(members=[node1, node2, node3])
+
+# Print the RSpec to the console
+portal.context.printRequestRSpec()
+
+# Save the RSpec to a file
+with open(RSPEC_FILE, "w") as f:
+    f.write(request.toXMLString(pretty_print=True, ucode=True))
diff --git a/scripts/geni_lib/genictl.py b/scripts/geni_lib/genictl.py
new file mode 100644
index 0000000..ec3b0ce
--- /dev/null
+++ b/scripts/geni_lib/genictl.py
@@ -0,0 +1,606 @@
+import datetime
+import json
+import random
+import re
+import sys
+import time
+import warnings
+
+import click
+import geni.portal as portal
+import geni.util
+from cluster_setup import setup_cloudlab_cluster, setup_cloudlab_cluster_with_sregym
+
+from provisioner.config.settings import AGGREGATES_MAP
+from provisioner.utils.parser import collect_and_parse_hardware_info, parse_sliver_info
+
+warnings.filterwarnings("ignore")
+
+# List of available OS types
+OS_TYPES = [
+    "UBUNTU22-64-STD",
+    "UBUNTU20-64-STD",
+    "UBUNTU18-64-STD",
+    "UBUNTU16-64-STD",
+    "DEBIAN11-64-STD",
+    "DEBIAN10-64-STD",
+    "FEDORA36-64-STD",
+    "CENTOS7-64-STD",
+    "CENTOS8-64-STD",
+    "RHEL8-64-STD",
+]
+
+
+def validate_hours(ctx, param, value):
+    float_value = float(value)
+    if float_value <= 0:
+        raise click.BadParameter("Hours must be greater than 0")
+    return float_value
+
+
+def create_slice(context, slice_name, hours, description):
+    try:
+        print(f"Creating slice '{slice_name}'...")
+        expiration = datetime.datetime.now() + datetime.timedelta(hours=hours)
+        res = context.cf.createSlice(context, slice_name, exp=expiration, desc=description)
+        print(f"Slice Info: \n{json.dumps(res, indent=2)}")
+        print(f"Slice '{slice_name}' created")
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+def create_sliver(context, slice_name, rspec_file, site):
+    try:
+        print(f"Creating sliver in slice '{slice_name}'...")
+        aggregate = get_aggregate(site)
+        igm = aggregate.createsliver(context, slice_name, rspec_file)
+        geni.util.printlogininfo(manifest=igm)
+
+        # Save the login info to a file
+        login_info = geni.util._corelogininfo(igm)
+        if isinstance(login_info, list):
+            login_info = "\n".join(map(str, login_info))
+        with open(f"{slice_name}.login.info.txt", "w") as f:
+            f.write(f"Slice name: {slice_name}\n")
+            f.write(f"Cluster name: {aggregate.name}\n")
+            f.write(login_info)
+
+        print(f"Sliver '{slice_name}' created")
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+def get_sliver_status(context, slice_name, site):
+    try:
+        print("Checking sliver status...")
+        aggregate = get_aggregate(site)
+        status = aggregate.sliverstatus(context, slice_name)
+        print(f"Status: {json.dumps(status, indent=2)}")
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+def renew_slice(context, slice_name, hours):
+    try:
+        print("Renewing slice...")
+        new_expiration = datetime.datetime.now() + datetime.timedelta(hours=hours)
+        context.cf.renewSlice(context, slice_name, new_expiration)
+        print(f"Slice '{slice_name}' renewed")
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+def renew_sliver(context, slice_name, hours, site):
+    try:
+        print("Renewing sliver...")
+        aggregate = get_aggregate(site)
+        new_expiration = datetime.datetime.now() + datetime.timedelta(hours=hours)
+        aggregate.renewsliver(context, slice_name, new_expiration)
+        print(f"Sliver '{slice_name}' renewed")
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+def list_slices(context):
+    try:
+        print("Listing slices...")
+        res = context.cf.listSlices(context)
+        print(json.dumps(res, indent=2))
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+def list_sliver_spec(context, slice_name, site):
+    try:
+        print("Listing slivers...")
+        aggregate = get_aggregate(site)
+        res = aggregate.listresources(context, slice_name, available=True)
+
+        # Parse and display the information
+        sliver_info = parse_sliver_info(res.text)
+
+        print("\nExperiment Information:")
+        print(f"Description: {sliver_info['description']}")
+        print(f"Expiration: {sliver_info['expiration']}")
+
+        print("\nNodes:")
+        for node in sliver_info["nodes"]:
+            print(f"\nNode: {node['client_id']}")
+            print(f"  Hostname: {node['hostname']}")
+            print(f"  Public IP: {node['public_ip']}")
+            print(f"  Internal IP: {node['internal_ip']}")
+            print(f"  Hardware: {node['hardware']}")
+            print(f"  OS Image: {node['os_image']}")
+
+        print("\nLocation:")
+        print(f"  Country: {sliver_info['location']['country']}")
+        print(f"  Latitude: {sliver_info['location']['latitude']}")
+        print(f"  Longitude: {sliver_info['location']['longitude']}")
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+def delete_sliver(context, slice_name, site):
+    try:
+        print(f"Deleting sliver '{slice_name}'...")
+        aggregate = get_aggregate(site)
+        aggregate.deletesliver(context, slice_name)
+        print(f"Sliver '{slice_name}' deleted.")
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+def get_aggregate(site):
+    return AGGREGATES_MAP.get(site.lower())
+
+
+def get_hardware_info():
+    hardware_info_list = collect_and_parse_hardware_info()
+    if hardware_info_list:
+        print(f"\n{'Hardware Name':<20} | {'Cluster Name':<30} | {'Total':<7} | {'Free':<7}")
+        print("-" * 100)
+
+        for item in hardware_info_list:
+            if item["total"] > 0 or item["free"] > 0:
+                print(
+                    f"{item['hardware_name']:<20} | {item['cluster_name']:<30} | {item['total']:<7} | {item['free']:<7}"
+                )
+    else:
+        print("No hardware information available")
+
+
+# Gives error when hours too high -> Error: expiration increment is greater then the maximum number (7200) of minutes
+def renew_experiment(context, slice_name, site, hours):
+    new_slice_expiration = datetime.datetime.now() + datetime.timedelta(hours=(hours + 1))
+    new_sliver_expiration = datetime.datetime.now() + datetime.timedelta(hours=hours)
+    try:
+        print(f"Renewing slice: {slice_name}")
+        context.cf.renewSlice(context, slice_name, new_slice_expiration)
+        print(f"Slice '{slice_name}' renewed")
+    except Exception as e:
+        if "Cannot shorten slice lifetime" in str(e):
+            print(f"Slice already has sufficient lifetime")
+        else:
+            print(f"Error: {e}")
+            return
+
+    try:
+        aggregate = get_aggregate(site)
+
+        print(f"Renewing sliver: {slice_name}")
+        aggregate.renewsliver(context, slice_name, new_sliver_expiration)
+        print(f"Sliver '{slice_name}' renewed")
+
+        print(f"Your experiment under slice: {slice_name} is successfully renewed for {hours} hours\n")
+    except Exception as e:
+        print(f"Error: {e}")
+
+
+# Kubernetes bootstrapper
+
+
+def _host_list_from_logininfo(logininfo) -> list[str]:
+    """
+    Extract hostnames from GENI login info.
+
+    Input format examples:
+    - "[node0][saleha] c220g5-110426.wisc.cloudlab.us: 22"
+    - Raw tuples: (node_name, user, hostname, port)
+
+    Returns list[str] of hostnames.
+    """
+    hosts: list[str] = []
+
+    for item in logininfo:
+        # Case 1: Raw tuple format (node_name, user, hostname, port)
+        if isinstance(item, (tuple, list)) and len(item) >= 3:
+            # The hostname is at index 2 in the tuple format
+            hostname = item[2]
+            if hostname and isinstance(hostname, str) and "." in hostname:
+                hosts.append(hostname)
+            continue
+
+        # Case 2: String format "[nodeX][user] hostname: port"
+        if isinstance(item, str):
+            # Pattern to match: ] hostname: or ] hostname (space before colon)
+            # This will capture the hostname between the last ] and either : or end of string
+            pattern = r"\]\s*([^\s\[\]:]+\.(?:wisc\.cloudlab\.us|utah\.cloudlab\.us|clemson\.cloudlab\.us|[a-z0-9.-]+))(?:\s*:|$)"
+            match = re.search(pattern, item)
+            if match:
+                hosts.append(match.group(1))
+                continue
+
+            # Fallback pattern for any hostname-like string after ]
+            pattern = r"\]\s*([a-zA-Z0-9.-]+\.[a-zA-Z0-9.-]+)"
+            match = re.search(pattern, item)
+            if match:
+                hostname = match.group(1)
+                # Make sure it's not just the username
+                if "." in hostname and hostname != "saleha":
+                    hosts.append(hostname)
+                continue
+
+    # Remove duplicates while preserving order
+    unique_hosts = []
+    for host in hosts:
+        if host not in unique_hosts:
+            unique_hosts.append(host)
+
+    return unique_hosts
+
+
+def are_nodes_ready(context, slice_name: str, aggregate_name: str) -> bool:
+    try:
+        aggregate = get_aggregate(aggregate_name)
+        sliver_status = aggregate.sliverstatus(context, slice_name)
+        resources = sliver_status.get("geni_resources", [])
+        return all(resource.get("pg_status") == "ready" for resource in resources)
+    except Exception as e:
+        print(f"Error: {e}")
+        raise e
+
+
+def create_experiment(
+    context,
+    hardware_type,
+    nodes,
+    duration,
+    os_type,
+    k8s,
+    ssh_user,
+    ssh_key,
+    pod_network_cidr,
+    deploy_sregym,
+    deploy_key,
+):
+    hardware_info_list = collect_and_parse_hardware_info()
+    cluster_name = None
+
+    for item in hardware_info_list:
+        if item["hardware_name"].strip() == hardware_type.strip():
+            if item["total"] >= nodes and item["free"] >= nodes:
+                print(f"Creating a {nodes} node cluster of {hardware_type} at {item['cluster_name']}")
+                cluster_name = item["cluster_name"]
+                break
+            else:
+                print(f"Not enough {hardware_type} nodes available at {item['cluster_name']}")
+
+    if cluster_name is None:
+        print(f"No {hardware_type} nodes available")
+        return
+
+    print(f"{hardware_type} is available at {cluster_name}\n")
+    aggregate_name = cluster_name.replace("Cloudlab ", "").lower()
+    aggregate = get_aggregate(aggregate_name)
+
+    slice_name = f"exp-{random.randint(100000,999999)}"
+    expires = datetime.datetime.now() + datetime.timedelta(hours=duration)
+
+    # Build simple RSpec
+    req = portal.context.makeRequestRSpec()
+    pcs = []
+    for i in range(nodes):
+        n = req.RawPC(f"node{i}")
+        n.hardware_type = hardware_type
+        n.disk_image = f"urn:publicid:IDN+emulab.net+image+emulab-ops//" f"{os_type}"
+        n.routable_control_ip = True
+        pcs.append(n)
+    req.Link(members=pcs)
+
+    print(f"🔧  Creating slice {slice_name} …")
+    context.cf.createSlice(context, slice_name, exp=expires, desc="Quick experiment via genictl")
+
+    print(f"🚜  Allocating sliver on {aggregate_name} …")
+    manifest = aggregate.createsliver(context, slice_name, req)
+
+    geni.util.printlogininfo(manifest=manifest)
+
+    # save the manifest to a file
+    login_info = geni.util._corelogininfo(manifest)
+    with open(f"{slice_name}.experiment.info.json", "w") as f:
+        f.write(
+            json.dumps(
+                {
+                    "slice_name": slice_name,
+                    "aggregate_name": aggregate_name,
+                    "duration": duration,
+                    "hardware_type": hardware_type,
+                    "nodes": nodes,
+                    "os_type": os_type,
+                    "k8s": k8s,
+                    "deploy_sregym": deploy_sregym,
+                    "deploy_key": deploy_key,
+                    "pod_network_cidr": pod_network_cidr,
+                    "created_at": datetime.datetime.now().isoformat(),
+                    "login_info": login_info,
+                },
+                indent=2,
+            )
+        )
+
+    if not k8s:
+        return  # user didn't ask for Kubernetes
+
+    # ── Kubernetes path ───────────────────────────────────────────────────
+    print("\n⚙️  --k8s flag detected → bootstrapping Kubernetes once nodes are reachable")
+
+    logininfo = geni.util._corelogininfo(manifest)
+    hosts = _host_list_from_logininfo(logininfo)
+
+    print(f"🔍 Debug: Raw logininfo: {logininfo}")
+    print(f"🔍 Debug: Extracted hosts: {hosts}")
+
+    if not hosts:
+        sys.exit("❌  Couldn't parse node hostnames from login info")
+
+    # Validate that we got actual hostnames, not usernames
+    valid_hosts = []
+    for host in hosts:
+        if "." in host and not host == ssh_user:
+            valid_hosts.append(host)
+        else:
+            print(f"⚠️  Skipping invalid hostname: {host}")
+
+    if not valid_hosts:
+        print("❌  No valid hostnames found! Raw login info:")
+        for item in logininfo:
+            print(f"    {item}")
+        sys.exit("Cannot proceed without valid hostnames")
+
+    hosts = valid_hosts
+    print(f"✅  Using hosts: {hosts}")
+
+    cfg = {
+        "cloudlab": {
+            "ssh_user": ssh_user,
+            "ssh_key": ssh_key,
+            "nodes": hosts,
+        },
+        "pod_network_cidr": pod_network_cidr,
+        "deploy_sregym": deploy_sregym,
+        "deploy_key": deploy_key,
+    }
+
+    print(f"🔍 Debug: Config: \n{json.dumps(cfg, indent=2)}")
+
+    print("⌛  Waiting (≤20 min) for nodes to get ready …")
+    t0 = time.time()
+    check_count = 0
+    while time.time() - t0 < 1200:  # 20 minutes
+        elapsed = time.time() - t0
+        check_count += 1
+
+        try:
+            if are_nodes_ready(context, slice_name, aggregate_name):
+                print(f"✅  All nodes ready after {elapsed:.1f}s!")
+                break
+        except Exception as e:
+            print(f"⚠️  Error checking node reachability (attempt {check_count}): {e}")
+
+        # Print status every minute
+        if check_count == 1 or elapsed % 60 < 30:  # First check or every ~minute
+            print(f"  Still waiting... {elapsed:.0f}s elapsed, checking {len(hosts)} hosts")
+
+        time.sleep(10)  # Check every 10 seconds
+    else:
+        print("⚠️  Nodes not reachable after 20 min – skipping K8s bootstrap")
+        print("    You can try running the following manually once nodes are ready:")
+        print(f"    ssh {ssh_user}@{hosts[0]}")
+        return
+
+    print("🚀  Running cluster_setup …")
+    try:
+        if deploy_sregym:
+            setup_cloudlab_cluster_with_sregym(cfg)
+        else:
+            setup_cloudlab_cluster(cfg)
+        print("✅  Kubernetes cluster ready!")
+    except Exception as e:
+        print(f"❌  Cluster setup failed: {e}")
+        print("    Nodes are reachable but Kubernetes setup encountered an error.")
+
+
+# Define Click command group
+@click.group()
+def cli():
+    """GENI CloudLab Experiment Management Tool"""
+    pass
+
+
+# Create slice command
+@cli.command("create-slice")
+@click.argument("slice_name")
+@click.option("--hours", type=float, default=1, callback=validate_hours, help="Hours until expiration")
+@click.option("--description", default="CloudLab experiment", help="Slice description")
+def cmd_create_slice(slice_name, hours, description):
+    """Create a new slice"""
+    context = geni.util.loadContext()
+    create_slice(context, slice_name, hours, description)
+
+
+# Create sliver command
+@cli.command("create-sliver")
+@click.argument("slice_name")
+@click.argument("rspec_file")
+@click.option(
+    "--site",
+    type=click.Choice(["utah", "clemson", "wisconsin"], case_sensitive=False),
+    required=True,
+    help="CloudLab site",
+)
+def cmd_create_sliver(slice_name, rspec_file, site):
+    """Create a new sliver"""
+    context = geni.util.loadContext()
+    create_sliver(context, slice_name, rspec_file, site)
+
+
+# Sliver status command
+@cli.command("sliver-status")
+@click.argument("slice_name")
+@click.option(
+    "--site",
+    type=click.Choice(["utah", "clemson", "wisconsin"], case_sensitive=False),
+    required=True,
+    help="CloudLab site",
+)
+def cmd_sliver_status(slice_name, site):
+    """Get sliver status"""
+    context = geni.util.loadContext()
+    get_sliver_status(context, slice_name, site)
+
+
+# Renew slice command
+@cli.command("renew-slice")
+@click.argument("slice_name")
+@click.option("--hours", type=float, default=1, callback=validate_hours, help="Hours to extend")
+def cmd_renew_slice(slice_name, hours):
+    """Renew a slice"""
+    context = geni.util.loadContext()
+    renew_slice(context, slice_name, hours)
+
+
+# Renew sliver command
+@cli.command("renew-sliver")
+@click.argument("slice_name")
+@click.option("--hours", type=float, default=1, callback=validate_hours, help="Hours to extend")
+@click.option(
+    "--site",
+    type=click.Choice(["utah", "clemson", "wisconsin"], case_sensitive=False),
+    required=True,
+    help="CloudLab site",
+)
+def cmd_renew_sliver(slice_name, hours, site):
+    """Renew a sliver"""
+    context = geni.util.loadContext()
+    renew_sliver(context, slice_name, hours, site)
+
+
+# List slices command
+@cli.command("list-slices")
+def cmd_list_slices():
+    """List all slices"""
+    context = geni.util.loadContext()
+    list_slices(context)
+
+
+# List sliver specifications command
+@cli.command("sliver-spec")
+@click.argument("slice_name")
+@click.option(
+    "--site",
+    type=click.Choice(["utah", "clemson", "wisconsin"], case_sensitive=False),
+    required=True,
+    help="CloudLab site",
+)
+def cmd_sliver_spec(slice_name, site):
+    """List sliver specifications"""
+    context = geni.util.loadContext()
+    list_sliver_spec(context, slice_name, site)
+
+
+# Delete sliver command
+@cli.command("delete-sliver")
+@click.argument("slice_name")
+@click.option(
+    "--site",
+    type=click.Choice(["utah", "clemson", "wisconsin"], case_sensitive=False),
+    required=True,
+    help="CloudLab site",
+)
+def cmd_delete_sliver(slice_name, site):
+    """Delete a sliver"""
+    context = geni.util.loadContext()
+    delete_sliver(context, slice_name, site)
+
+
+# Get hardware info command
+@cli.command("get-hardware-info")
+def cmd_get_hardware_info():
+    """Get available hardware information from CloudLab"""
+    get_hardware_info()
+
+
+# Create experiment command
+# @cli.command("create-experiment")
+# @click.option("--hardware-type", required=True, help="Hardware type for the nodes")
+# @click.option("--duration", type=float, default=1, callback=validate_hours, help="Duration in hours")
+# @click.option("--node-count", type=int, default=3, help="Number of nodes to create (default: 3)")
+# @click.option(
+#     "--os-type", type=click.Choice(OS_TYPES), default="UBUNTU22-64-STD", help="OS image (default: UBUNTU22-64-STD)"
+# )
+# def cmd_create_experiment(hardware_type, duration, node_count, os_type):
+#     """Create a 3-node experiment with specified hardware type"""
+#     context = geni.util.loadContext()
+#     create_experiment(context, hardware_type, duration, node_count, os_type)
+
+
+# Renew experiment command
+@cli.command("renew-experiment")
+@click.argument("slice_name")
+@click.option(
+    "--site",
+    type=click.Choice(["utah", "clemson", "wisconsin"], case_sensitive=False),
+    required=True,
+    help="CloudLab site",
+)
+@click.option("--hours", type=float, default=1, callback=validate_hours, help="Hours to extend")
+def cmd_renew_experiment(slice_name, site, hours):
+    """Renew both slice and sliver for an experiment"""
+    context = geni.util.loadContext()
+    renew_experiment(context, slice_name, site, hours)
+
+
+# Create experiment command
+@cli.command("create-experiment")
+@click.option("--hardware-type", default="c220g5", help="Hardware type")
+@click.option("--nodes", type=int, default=3, help="Number of nodes")
+@click.option("--duration", type=int, default=1, help="Duration in hours")
+@click.option("--os-type", default="UBUNTU22-64-STD", help="OS image")
+@click.option("--ssh-user", help="SSH username")
+@click.option("--ssh-key", help="SSH privatekey file")
+@click.option("--k8s", is_flag=True, help="Bootstrap Kubernetes after sliver is ready")
+@click.option("--pod-network-cidr", default="192.168.0.0/16", help="Calico pod CIDR (default 192.168.0.0/16)")
+@click.option("--deploy-sregym", is_flag=True, help="Deploy SREGym after K8s cluster is ready")
+@click.option("--deploy-key", help="Path to SSH deploy key for SREGym private repo")
+def cmd_create_experiment(
+    hardware_type, nodes, duration, os_type, k8s, ssh_user, ssh_key, pod_network_cidr, deploy_sregym, deploy_key
+):
+    """Create slice + sliver quickly"""
+    context = geni.util.loadContext()
+    create_experiment(
+        context,
+        hardware_type,
+        nodes,
+        duration,
+        os_type,
+        k8s,
+        ssh_user,
+        ssh_key,
+        pod_network_cidr,
+        deploy_sregym,
+        deploy_key,
+    )
+
+
+if __name__ == "__main__":
+    cli()
diff --git a/scripts/geni_lib/mod/geni_lib_xlab-1.0.0.tar.gz b/scripts/geni_lib/mod/geni_lib_xlab-1.0.0.tar.gz
new file mode 100644
index 0000000000000000000000000000000000000000..cd48f55ebaf7321fd49ca588ceee2c934b927b2e
GIT binary patch
literal 104018
zcmV)FK)=5qiwFpYU^r+3|7T@xX<uw<VqbV{VPY*YE-)@IE_7jX0PMZ_cjHE`C_F#w
zui#amK9O!Ddbbn5+xLxQyF0$|_PiuBpP!FHi<HbUMRK^<*5u^<?H_>JNow=b?w+R4
zOj;zXP$(1%1)xwUd&yq<>#6hjv*);8@|RcnTV{Wg{#{;PTT{RB{mSy{%F17?$G?1r
zzdX&H1e*WLxB0iaWsNd_<b7D#TK{2Vbz|knWqV_FYh~?+#$W2cfB(Os7y7-xzv(>&
z&P{j4UbdH)USs}mZEfJcD_a}O`oD6{uWT%@Y%XsuuP$%F{9oPLg!#YmIp=@uJHfPa
zv%Y_&fA*Ik|5rE5@_((C|DQ$vuWIst{l|@!jV*h*7X9C}{69R{-9J9xf6@8Bxw$?;
z{;w}@!2Cz~zp=HsvAzlG#L7A>27j@ZKj-}aM&<ue^e;aM9P2c{3H-iw==Z%a^{ijL
zB=w`vS_NV7Vdh_>v0__$-oOw23~Hr~uJMPTp+Ivt3bVw&$+IYFHZ1rXc}|#Gp3}dz
z{LuC9eK&UkD@v@u8^RAS%=~O@Ww%ad^%Kv@ytHHW1rRT_vWUQBw;ubB7)OH+LWmv!
z@@{nRC7x@YM}zFaNjw`dSv4^cUDYunfYIp24+TtmC2L_H@nr;WlhkVY1Ir1=Z7WYb
zm%!YNEyvOuaYC2%BX*L^@8^M&=-<Cf4d8_5nvQ1y!D7b{8D|1)0=7=T%t|`I^C(aH
z*hAN|K1Rt1NNYXZ`Y<rqaT-?`5WPpYPHH(>24lzjj0M985Ww=*{^PBG<7d`Rhd%5-
zdi^|eZUPP-@J(}ouC+@*@MDLlbriY&!0$Vf*v0a^EVM-o)OS(_!VmjF?)u@-ilc<p
z#$ocJ0a0QDC~*+N=*9pV@%hcq0Immo<vPh&%z#v*PJ@27oHiT6c_^Y&!}ZcWl;LDz
zC`$VLgp_8?Wsc7O0xsqa-)Ie&M*aa>9f9s<Irokq5QXy)R5>c0dC3TgCtJSf^BN{3
z&Jxc_0w2n92Iqb6SkNKF-g1I8Qs5*M0Ty_!L^vYyCJ?zW<T|&(WU&UE4Y1vZD7j;k
z2|F5=Mwwu40n9@u8A74opu7Q(L12P{=B-yTM;>sXSt}!uB?*ilu@3=qtki?~1MjVY
z4=4k1@ZYq<p!zA%qf(&!fQYfqn?eLCxlunKfgGcPKgxng6}{}ObB_#*v`GBnZH7!S
zOq?+52=*8`kNzkhS>9s?;DEK$6uGxUKpt*A>K5k_)aL|g1)~x)>{XiIq~1Ss01}Kl
zG!ih|7zu(v)FLEOl(qNX82WoNX5G=pcx4&7W6aXx5OZLIC<vkl=-;-QNW=k1XFsfv
zJxKAyOY;D57$ngMid&BB(&7RH=}1O&y}+ZFSc>HSNJB^<fJ+ASmpGP>poCC8-4MOd
zdzgVD!gYM!*-3yIt#J7}b!g~z1IHhwO*VZr`B5NV%u4sMbSrIlG`WV19Kj3?{E?qg
zPdiW%-noo2aT4{tG-YzsiHWWAlz~c#<+TPBL*gi-kR=$pV581HM0o&=faDk?fQ9EW
zF)@gksNoDYkb*)9lQHMuJE+!yMUwtWy&#|;(O}>qK!TJyz|(v>FoJ++1C&Q7%V~f!
zXeS*ondSM!_I{QY*JgTI>Ih%z*^r<fP?BDTUgC3!<XNANFRf2r=p`_dOiihyt4bYF
zm=OTR0P4@Kw<7CVJ4lR3)FCjF>aAgWq*{!v0Ogqw?kO9Eh_8nMU(i^uQL89&b5Zpv
ziRL)*04)@JI7VzBjhV)Qqn7daC~sOVD2Bh1X4_!vf|}=;ik|oAC4C>+LkJ+T^!TaH
zQZ{0(SM^a&vzFN`@z@;F6iBL1x?>dJ97x4OK;n%k>5B$o4H*H2c?q^~0CZ}X&9FQH
z3G8u7qnww@FCfC}HF>w0;^2YIe(;ix<@$-&XZT>7A$ul4-*-TRq_XTK$uJ~%=nOqv
zMx-9ZdS*(0m}k_o(<ebsE8T;SECWv{)j%f(4!QMX1T%^fk5*fPG4KaKs2J#vt+Y0l
z-?s$^fTRHvDJ030-hxD<>2(7f3Zw6HCN)577y@6wJQG&MCzKH>i6xkpZl$qM{zDKT
zKUw8QV;{9WL+=8)3w<9l;4n^19|+v;gO9=^iN;Qljk|-ygY`0u!mjrSOp^Ndo|qi4
zGT|t((f47s0Ji97$fY1lfhs^7&XFxmP2m!h2_@GXImumH<5OLxn({P4O92q`0J@v^
z;U~-~O@m|ON)v3143oxz13v(f0qMN(hTA|)#>=6GDHI10sFfw@hm`IJkrv?!0KH{X
z7$<;}`tX?;-B{9*cbIaJl6k>aElmykU!*=Xki8i7j8#r@L!tZF-3}uHt^<4#V4SG0
z0$xG>o1K+Qfm#R3o#t!7gmqvQ&B1+W93~sIwg<>J8W*>cF;d1>KqAxv_>=^8WTb+*
z5W_p{5mNzFyNw%IT0jl+B<um{+d3_1dWUSjqvC1Un52LvY1UAKofc>*y0C^bOsE1W
zf~2`(o%exvCwGSgm+X_}Bn*Qn3?#RU(loRULj|;sBdL?YJmD2kE{mofd{8J+VHm{$
zG8t)ds2#{2arwq-pnOpZno`@<8lcqA<0!)cka9^I8B*VF07wTkb}>acPAK6;m(WCS
zXw>E+V8B<@J}!==_&6maFY!hIpLeKaw{gkN=EQ(RJX4rPq=S--$L6=KmfuEk#k>Qg
zFmu`BCoavl@pq|`1iCF;Y?O(3-)~pBE~=-6W(}o+)GZK<UYzNZy)bnM5T8D6rZczt
z)l*;UiAd_wsQQfW9WX}1z9&r7k|t*(`>K%#d&*;$7*jWqXq@vnKq-k+6fMa;8sO})
zft(f%BWAej(-mo_dOmW-$hDz|Iy9<=xG+b+!(*aZL$mA?Fr;9iW&^7Uh&6k?O*0b|
zqH}3)N!LOH_}6G1#bK(?Ccc)TLxCGYh&1s^|2D#=vq%#R)t&)1D2`_FN%NnpEe%1|
zR_b{Ydob))+sII5KSGtkkM6GqEKMMQq^K|}DYC3FvTWGa8LWLCj6D-t6{~t83Z%O8
zLw&#TK&adU*^s?W)+YWUVdM{eB&To=f*r+{1DeKZK0ply>B4xZA*^oQ28MTK`(lb=
zyo%0`kB*;Mm#J6aUhYLe1p}z$B5bnZbUsG?g;qW$bHRKA;YF$hNb@oC4!BVtkO`Uo
zIl#7PDWzYo=Wx4<tAGt;(tB7@fs};bmaS`F4L&+43=bG0YxXMsXN|43z{o_+zAP`a
z!s3F`FxN+DXblHBjiHWz;|HXqH!8KeHPr6*j5T2(EN(PU8jT%TNZdk!Dv46%9TY}0
zkho#`6p5{n+|0LZG1Y{5J?XXdG=qMYrx{8Gu@Gw9ZLW$~kqU$OLo*80ct7?{HfCrx
zls7^8my2Bj^5VNta9W|+hBOLsux_IVECOp6D0k5fx+Y-0BG*hn69gTwW5a=YJBpbW
z6QCVQvk$4==QBa};k$yg)!nz;QMZN~RdF;6zQ9J~fTWqG$X1SL(Q6D%hJ2monoyw*
zQJ$QZH(t>zYVwEfZBCVo)|BEajIdM2l&@P=F7D~WG12>t0}cF`!a9JUm<dT$(X9uI
z5LkmD+L5H1^lwoWM@<LqIgX1Hay1~OWy6>`+?^=9py}^|C$vE!EQ=khknlwdy~90?
zQt!%mEtr3xu%pPOx*fEy?tPMle0JzQ3+Y@cq9D}(jdz(OMfDAtSPsiv%xiYckmqZt
zUKjb<Fo7BkK{+l+kY_X^8ihq8f^yoL-f5V`AWIf`S<^mvmo&AbFtw3njVfVcTL;|9
zuOZ{7#FB=(C>)ul-<-SHb#WAh9`m>+Ud8@NhwpizoGXhp9J_gTVLGOs!qg15NM^eI
z5tP}s*leSMZ`mv?wo2~SG*SXv@(|AVA`M4qnzMqi{6;Zz0uAznbn9v*tx>XWG^C{8
zQ5#j7PCBj)g)1@XIvQlCl%|Ruk;u$ek<)@&LWK}4r@kjNVKLo84xy!%O{H}3j~!uC
z$!F*yxt4J&6aYfEP$d{Mg<H2v2k_{SE--Ej=Q#`z^4Fv($?09TceuVTCkpnL^{}Et
zs4XKHzInpu59wbxjoh(y7e)^uC{WDl1GAyu&l3lf!<48C3hNG2#KbJwQOf!S4xA<g
zZlegD6A^Q2@OcmkQSDd*k7j8{Q3^&RCI<&-QDD7<=(Hr_acaTx5%@!)wnWCvGZv!~
zf7#a0(F3T-(3%wQ5%M-!`Op=TKiKyh@74(h3|nLza$(@B3Uf(QbI5Up8thFP1;FJ1
zwI6s6-!wp_i}<$ORZDiYGpVmAD2Rq6ZyHP<Lf_S@%w2!ZF!6}u9OhtbVV_MCk6ZQ)
z)e>-do-p8LFIB<znt!a=JVxvYccp7_*R&?J8WW}t^>5PDvC!v)YAkm<HU5z&e(L&t
z?hgV<a1csl(9opSV=pHPodd|6DZ6LhFb|md)m{9LbU2@OM$tRRwj+tiTsZ5imbM#M
zslb-pX({^7NN5EUwPTlh)JR#6I@UixVxdDC>bc19q{fOalI|$kcAK2?MXSD2rJu0@
zOZpRf*Be5I<mQnYJiZPJml9}%4mkzUHvmk>>d~@6xWTlu;=t)MWfastXi;oL5(BxM
zrUj!YEfA_P&4UIS6_cN=bD~p8L{SNRN-)AU3_5n$OerFb`nIyCaW(cpx(9s6$Z6;+
zD2@+ESeTya9l8iJ($-12%XqW_Irf0NfSp0~qJZTJN-45v1C7TEWv&|@OLHK}ADMAj
z&>&3n5diI@_R#Q|K>{XpFoAhd?;sA*WGb)4e7y~-<g;CS<hE=swAco>7QE9i#1M&i
zKg7X+`pCAVC8k{M=>W*UOBt8tVFu{a9<B}pHw9o|a9FU^z-J1RBt^<r0p@h-2!>|6
z1dS*hMyLqzEdsy7p^rqPbqSYSkiAUyk?x1PErKk4wi|*oyJX<RiO<aM&1K7V#?YMs
zuI0iR(jZ^@jnltF=LsJk0%==EunI<Eg%iD4jH+xu#OP^NM;p{X-%GU~T66Z0DY7Un
zku2odXK@<R-vd*`^U<x$or?g!0Gk^Cigy~+%OaX;dE|Q#k}nmR*K{&Bh;Y<?oT+{x
z7Bm4@$#y`1ESe-k`Id=A+8JUDM5b@J;*yMe-x)bxxWd@b{opJZf!wZK(R4j{l{kR^
z7$y0TN;%9m)q(K`-u9BNh+)7U_7jl7{7oChp*LhfG$p4!cUU*ru4*vWH(rCW^i=DC
z7n7$jEICBmu?U_aNvt)OO0#u>OO`tra9gvq+N8IRE~SY6Yq+8_IepJXXr@G>2{g4f
zSZEgvo7e{dhz$?L1BN3A)tGc9W<u(tAQlwt2KEhout3=aC`_KQ2Jz~R2ei3&0^beB
z`i=_Ci-b)?15{b=H6$<UePP{C^W+}4%(O2+i2r<{zs7%BFY-r#Hpw}_l{g%k--Hgg
zAfSng)}nx3tZP+vyYx_0EM!cIHXW35O&yT7yNqE=Qp@Fr#T`sVxit-IRf2IdZb$4J
zk|M_dF^vQygyz`oRE9(GHc(beD}F}TFg$?VWgaSLDTY)fV6%nfb^?RmXR%I>K_e~X
zmdAu3wkWr`P=Wt3{RBlLt~!2thqeV*yd<E1g5BwJ&7be{3k!XcYgmP)=op>fQlOR=
zlBO!*=y|+@IKOx#7}vX*i6{ZJ$iHS9er=TN`N%W;i!4}9?3S@jHyRiYDDh&)XZm<Q
zN_bog5(VRCjJYE@qYr`%RubCt2A<-8kS{`tW)!=Vr5$OEpON-znPeOgsD8Im;{U6f
zkGX3>`=YS4UuCYnlwkWZMdX$qo`9osC{5WH5|Q1v5|Nk0BOxfHe$vlJ%&R7JasG+L
zslkLHxg~<NU@~PIAkE_zdc(jU;;wkRBLliRg@`V;P9mF^gtn#!GLHv(iym$xOAjO|
zO%5k508%@;T#LBz$Opl!G_sX=sDub$Q=x1IAaYl*Q0qP{9UxBwE(=1wEsZnUbw<w6
zlY8^%EQ4+Xp%kDQB40ol&^~`k)+`8Z5ajSgfCZpo6uD>&c9>5)&7wGlsvT04b8HkX
znml1nHYXV5VV||Zdo1M$SN>QS1x5{G0HfX;LWTU;sJcm`f`U7A8qshn)rxI2p=C1Q
zp@S*kMOB+eybUf$IiSFpXqwN68X$=tqhU+?CE_De%=H|M2T8QyPszLKhyTcvG53T~
zn69)rc!-L|vHG$mgf??6X#3cK^B_G9JfumXZ39b=ysEjTySXs1o*z&M*fyKRWBNoy
zkxqsJAjO9h*^s;cfvyTH4z>wMYel%*C3W?6`E$vm7h6VtK#463yhg#}vP1rLY5pZ1
zI)>2hip*t{$I;v*QI6XO<ZxzgezfM2jK`Dc!-~?8N1>sT61r%!j=;QRVfM%_U^T$-
z#ZJ&59~r{9!H9C<0^#f=(PNAcc<4J<z=7Ob=46KZR7n<!cor<}v$GHb;NYwq4Z56z
znHMIdaI{+_K{2R~H4X|bnQe}oFq(Jv29?ByZpt#I)XiP6eSWm9BTz!X6mvo^%FB@y
zg-8=4dWL%dyiBwDus?kuh&XnV<~RSqu;dZ$sIr*aXh3#9*~Fr=C3_Wq-g<${oOq2q
z^iXp3J*G1=DIx31u>j(7@fNb#qI{4IBkoG<E@)6~ix?0_!1V93xD9Tfqz$R{1Hpzl
z%xT7LGC*45LaJtx<2uJ38N_}G^Nc9DiNPN!+cOeXOiD;UNb&I9vMn4CY2lz%W2%20
zDz1Q1>pjTojfOa``4Jezm7645Kn|>C9xUjt^zb^G(WZhM5cnEJNYY-CifOI@MZr?W
z(Igg`jM0BF?(wI$bXdkbeqcD8F}O>_o{6x~p^qz~Lt$*dg*kvhW)#K3e01Y+`pFnw
z1Z@(eB4}ZX=cVA~_e5(Ab6j|76$&IG$uKfjxalhQB^wjM=E8AR7#^pditgc*Z-_yp
z-mlp_CL7ABj>F6xtJozO!b!1_M$C{J2<A4!S`QTD7Bxh`0*#*@bU`yWmAkFua)1L`
zT24bokQX8gm3&}mf+%%Hp21zryM(*b4Q7OLfh%oes$qtkNtP7xn#}3UB6ZnLqr^y5
zVIe1}2tQW1wHbNW_3#diC9XW{1=Xg+D>PJSC-;=9U0{tf=Lg*=heAw>yD>?x9pYsE
zck>9UdGxe6SYjtfoMHt6$#c9`w~W51$083J3+*0SOm8j0^i#1G2|h3;ta)C&p+y|s
z+js<vEm>OB8&o+xq*JmuHPm3Z%AMY@Xn&3QKeT8q6pb)Gw^<f%FD;E&%XX9umjL7v
zG`3`GyPybO?t_v>o%)Hem%ywj9FR8lCRp=oi&EPyF4hVn9)!>$cBgG>p0J@Ijw|BE
zb>Q9OBxfcWn4WE}Tsc}ai#*d8_;((+3Zm$)AtivLwgF_2h3o2($}CVKQ=t|>bQLoq
zj|FL*^b>H>d?&D<z*h@!*?c%)cwoa~=ev}guFjeudGIUBpJLbf-|GBtb^f<H|Bsgc
z=k%9P-Gk$gCoh`+XMIxspXIf6p8rSXe_LP1{BL#spU;s0$IBcrB%Lm|EVf|*TW=hL
z>b-3tZ*+k-y2u+1S%8?Nah{Jxuu^Wr;&+qalF7mxqkwr}(X%RY70@QKlVCC#FU?R3
zg%`9U^W8ZfQpZlg?;jsnJ4e>e>4AQH13w*~e`KF8IGEPM!-I`j+M$=V*}38%%3VO$
zYW4XqJI4^&pQDl2MKA9*>2oP4bVEPG&x0U;wDZilwLLdq@<yPL-7JZ&H+E>NXxlpW
z`*+q)4w|YmpzAX9N%v+>*-HSyi+8<|;|JST2$lYNlad_;^hj+`I2yZw14<&8C;)ZO
zyZ3@9CWj0~=B3v5wzUBo(kYz`MkQ<MoOU3Mdi&wMpF|<mg9^J~5k`d~0AQFnqY)DC
zQ20Qg?CBUV4Dr{hy|rMCHKV-H{^7&P`2hyVCUh(ko+o6L0^P`Jp*jvf+QMe)egv&`
zTk5c9EI2pqqEWUD7Uww55U==lT>R$8porpb@&B@7!m%ezp${LdCUmb^tPwnpg5o=j
z1_pjgi|-$x&8)FE1~b&}Z}UCF;xij*^|mkRquyz;a_Z%+;79d}8?0T_;?>(kV1=fO
zdY!WA*Jub%WwHExtO7nK+3`~_pfHd|%tmD0-{oBT=z-qHEQ<f)mX1EF{`>bHIW_n`
zG1H@CnC5Ke=4hCr8V$CRJdFV03AA*+?7-ajGdxib52BS}66J9!8=@(<lsFGvW_==W
zFFp8o{?aG-AR%0M&S(jtzh7Mz@ZqQ40zBTMjEda>U=NnZE=%V?xC*l>f(m%XiTSP*
zFZLXEzQlWsy~JmMF*wm55}%5sBMQtB0<PhQv}rEW_DG3loH%m0n`<DcY@<m+h8X@I
zk9RoS*M&|f$A#(VGraCS6oS?*V1WTR8sN%dl`bHby#mZRN=JtIv9vCAHM0{fK1>sW
z1tL0s%}>m-AafCq!RrDFK+8Rz(1>vi8p}6`PmVibnf1Grt(+_E1ndd`<VO9}_9Hg<
zQwp#FyWpX64)*j;CZZ6>IVH;rHW%4=VES{1H<JgeJmxmy&ui#B#sJ7i9$?JU21q-Q
zA5*lyA=S6e|61pN)$G6Zm95P>|LZqy|DEmc>>cgfNt%6*{IAO^z;@jJ+t^%P#reO!
zzOh={f1hjoYxS{KA8YmT<<!So|6A1mzh2h=R%`w5v*>?6RQUf_wpP}*>J5NzRsZXg
z>vZWw=l^2&zpSsWt=9Ly)b@WZ|39n!U*G>y%YP;Rdp$hv+w0l!_*L!y<+YWS!u>Cs
zYa3g&{r@@s8jW`^5{UQiMFR2OJv|Vwp31fTSFiuI{a63J)cWtl{?d!h|HbUT4Uh@7
z{a4$6wfwK`zxwYD<^PM=fQ#FIpnoja_FrxP)%IV#{@3gOXIuX_R@ax8H|q7jUjN1V
zKis%`w)=P1`oF%pz9HhjHn!Hu|GT_d`+q;n-#b|G#c5r<$!QhTFw6SMNy0S4932S@
z!;0uarNa!5g#Vi;4DiRUl~X4`#0v^4>-D3=%Q2xYVDM@8vQ*rTo&FuAV9JvKrqJ5V
z0yfK9KnWZs7lNK*m{#w>q4X?it2GZm`v7R!&lB&A75<IYR(Ivj^S4k#r-74U9v9wH
zyWMEe@fR4_@U9gRC$zWO;b}`45_r`VrkVFMZ$uw0ya8}vCthHEptn~|_}#o#pKcSV
zFTUY}{xKWJp8SXp@KNA##)IlGK_{lf7|%iqGfs4@+bGRCba^-cUSD79SU?2$c??{o
zqfGfJK2Rm~k`;yjvir;i>McwUgs{yAL@V7CQEl(j?e}iedT+H94()~l-phTLBci>O
zhn|WbFbRN@dgTuR3{VQM|M;^ZC=o|7X43H(DR?&%C?i>7=w&T|bjSM7|762<2V6Q#
z*|nE=ju30u|45^-)h^+U->;hRTOU9TefFI{8)Z~aSQ-Az%TPQcFaSnOvhUQv=Cwg<
z*6S;c#jXJ!@hUMRlH#x8x=&6P-aUgT*pok+x1=wpO>3JoDSOtY8+ODWjIqQ=CrG_N
z8A-h?PXNuT);Nrc)^^zq*4+zaZ~)kJ)NK??NbM$r?%H{bS4p-&UfBTB$%Bk(_Gzo#
zo{0bslis*LAkizw(4?nenU(=q7OrYQjP=Auc!BvF5(#|pL)8Fs#+le4FED?Dyh2s)
zQXf+*PHc+!Z)!s+7j-(nHVJC;n#5rBtZcqd-=`!t)chn+?fK^^rTl=F)EvS|q0OPO
zk7>Tn;cW}cwWXA$R|`seT>{CM`kewoqHFJTfxtyCD}xXEM<#68w}P;d$y3C4@xmzN
zVCq>{H6UJ?kiuc1lz5{_rGQ8cB;`dWi={vcHcc+kOQ3XZ|JU|^ZU5JQpV$8PLN|_l
zyfyTh9)MZ?|Ba3HqW!-KBB8ebYy1Co?SD!MXgjfQ4>#`kCG%ygvC*KUBCsfz4a#Q!
z7PODRi$a<+%?_&OzHPq6hMTXujDOwhe;xnzcI$s-{MQdFYg=2j7VwR(|8$i0h3Efb
z@n36Ob^O;iB>!vs@5`|N>iDl({tNm4VyA!Ri2nkaUpW7>ytYx>f1k(xtE0cZ<-dCU
zuh)Ow|GT-qQm_B@`VZ^B2!DC?_^+*1F!s3rcWY&R1=s)8^*a9RGp+w+|8E!mv-Pb7
zfkmnMWyel-D<0D{kcHyAVNa&&YBYX3I9^-r?Oa@(^?p9s+uJ|3K3L0-%d3rF_s`A`
zPVmvFVe@3Zt)`J$yV<^4zP3dqLjyO^hhDbF!Z-H(#A?yr`Ohau`v8%nXM2ya6S{b(
zbF2CPniRg`5AZA79RFZ7F)P<&lkGO|?SJg;9h_mb(ff4CzDd&uHqR+;0719)hy~RM
zP&{q%+HJ9O4WIF9F4s@ww~n<OZEbBJ6fY<s5@wZHyebj|hmBev<HAz@?x*wf-?a7%
zEz7o99s9u#-5{{<@IIwrZPh;aGE7&!lZl%&e`^6pwh(B$W0m+p;%Zrm<ENeg`<ox`
zCrOmFXxMms3GYLZ0d|JN#2Y%9cM7y%oZv#Ap$`U=P#gz`gq?FlwUoj<sGnG`E#aS>
zW14r)TvJ#_0qycI6DXNu(H1gp$I>3xuctGBm`6NxZ~}bs*%m)qKwSCK(USEM271r)
z@GguV!e)bY(~N=QePuCKmoRg>JHUP!MO0x@!0zF}Pu6=V_C9SBB77cq6uDaM_MZ(s
zipm@;3e<YcaHy>L#!4`G2wlS;7|pZPXJ85=$A^x`hh9=-CJ(+8UCWZOLFmb`s`C`m
z<5j7G2uXzwU9l(^*`WGpJ8|rV?sKA6*<|E*e96g1Q%1BFJ1Ix%rBEowvwlt-&W{g{
z{1lTYKBe^qVu`an4!o9lq?kb7$N@2f)&gJRwd=)1JC+-HY4}~nZmi{Pu`nlXMl)_r
zZ@nO3umzL){7D3$>QUEpx1tkfY2iI;qJ>upX3(_bVdd-l5(M_%AHuw<{Nhdg;twlY
zm-5vfBp??^Iht4mFNSpR-NX`QeAPGaF`8Oe+;lOqK$bXR>T8{g@fy`k(LTLuVi%j&
zB&mwzhOeie)VC7d;rp)_=fwhgkD$cCr=25JWEyE0xa!gcp!*Ym7AXcrcMq$JmWT&s
zFV1$3&kruDD-?-IefwLn_a>has--esvCP4zOJfu&*$+qKl*+JCwE19a-_N{ZCF+V(
z?IRC!#zH~VsK<KcbG(V8cXo2PuRzFIX{)aWLT4xcv%h;Wv6lYbKy?5AoL}r*T%K1|
zk{>l4iPvnP0TPb`==Zi*4?jF4Q8?_f5?xea=*A6-@sI-2ah(`b(Ta)i^ToyK4tv+&
zGMp+1`H88DM@|R~nusc=@al-Yg3>Go_TupTXD~B3q?QI%gmHr;B!9XFkjKVCheLKL
zD;QTJ=P~vFg}1E-QUC4(1&(77FIMaE7+xcMR7dcGj$13tN7P#Sp{j)sqNRDxhcIO5
zza6xPMAY>M_>E(Gak6`I*aIT88`X=6NgqH|r+e*$`PTivb^OoU`F|_pe|}t9+xoGd
znBTJhmr}{URsN^-t*tu#r{4do<^Sj1|EuGFYWZ)<|Id^EsTBXSwX#~r|9qzXzdHV>
zw*Tt&zh3|A^PlzlUt0eMLG*C%r&0181z_g=f9qR?^PgMmtM&cwpK1Ls#s92-BcVUs
zpZ_=tlDKd81K-0fG3L<Ul`iw?sV(%R78r_yktKtBnmbMP1$SzJgyq~lnC1toU>b@5
zAGAui_s^3M{jmJQiu%A1R-cyj3_<V_-Tmd9KL}3$Qjxzz)GcH%F#%VlG16K!sA->j
z$-S4HCeh=#Wn?)@|4O-zmRNBLagZAkl9(NndL2cxPLUGricBpWDUsr6=w-iFq@PJe
zz7<}ajswSjIBYcsQPgB`?`dRHJB<TBYc)SK+gB^s;%S@3Z}F!tebceI|C0AOYW=U)
z|7!nFt^ZBZ{~~Af+V?-Lt?~G8{r;!rI{v%X|2~WUhl)`-6DUg!qT;ENkx&hHaAN3M
z;pN$3DT(6}o}S=y=zZF3OvsC-A~THaXk3?4U#qk=_&V^1ciz}cImc2;5|TDzCbGg2
zP+fUqFR*(Zs|m_cmjUb|M6ULfGR^6!A6b1Pu^d-;L}IzC=Dic-l#z43RDe&%T_lZs
zS-kaRluC=-B|3>A1aiF)<vH?bB_JNQn~&nO^+yw0Xl}!Q{;cR+3{Y9`+@}o;<7o_j
zer1-P$<Jxv-xsrAGLj;81&W&F6toOLMszux`B<Tl7_pcY5v(5<lk#PF5qR_3`i~FR
zvaozOP0<*#-d&vRomgiS;xD6mS?>cCD-D7Zifvm*&K-y+0N@0?*H*;kCf!61ax8E_
zWQ~#AtQ)6)M*?*mdtD3&^ap;Qax|*MjSL8;Zq#^J5JKe}3`9&a`()ZoL8HR>MZst9
znnOC-3eI6XTdFi0pSCRu>nUNSu?z}E(OjlyF_l;Y>LV&AoG19FT8XRezuNw*?Z5i(
z<?TO`|F3NSt*>mB@_($=_dmUz{fFm&H@`t6uw(@m&&N4=c3WQqG4C}H&)Gvkx$`2s
zD14h_ZF6<A%ILUpQV)#`<JJRyl(c*+LvjB>-p}x&_XZ%B$?y2^;+G2W^7Gv*PyrK>
zssd<C6dTWY{N$v5e+QmglXi953;Q<M0a<B_7F`!|p!nF%VF$i~6Qcr2;Y)Ze1fSxq
zm`KYBSU%f1F*m8nB~XDrtQ1&iS})Qk_o8EQ6t?M~*Xq=vxQ0ObO!6>GpmlN60Q?fS
z3C!xKyuo13uJX2Uw##Pe?gD%xTg7({9gG(!y(}$i#k;ouYy1C8v;XV(zuNvc?f=M2
z)7Q5DH@3D`iuXUPt*_Pg{~Ou=8{d}cKf~H*8^LtXpv)SucY3fVcT0W)+6<E@kLSBx
z@Ie&s`L1sH>hJMRsW599MXT=}luadGoD>XdVaHy*cdsq|f-oI!N5Pba`!NjZ%+Ao&
zR2u$nOn4({T8MneF0{he&Fgjr`s{o0@~#ltRumA0*vsa%1_q{Wroln8jPzh9=+P$~
zXzGP-@5V_I-%ENod2k2yZlWmA5iOM=tmmLF=Ko^5i9Ofv1BqrhKz`ae-#0f`Ny>sU
zpWMTYNT+SCqVIvRQO^D$E85^AQ3RS0Ka00hD!gn$M)zzmuuY_i-5>f*jpFg#wZTfh
z_t6sd!(kB$`3^ozbrqO>n>a;87%Mlbu<AiLhy<-BQfP4uDlC7AOFHk3nb^z+<<kM+
zi8D$+{LyrXn9Xer1?VZbO>S{L=;^j_xA$R)JH5)LO1v}=GHsvtK_#D3!s%fsCL72g
z_^lIDPEgL$0HCVRI1OL8yG{`FXm;bA&1Ij%!0dA9&ggO|x3)=mg|6A5FsSr0`AI+b
zvls3XWh(^6?+NhD#hkC&pE*d|rAhGT1S?yTNAm+AT@FH6kq1s+j3Qf;7Vda;cdDtu
zM7L}gFG!lvsTtIw#h|&3h|k@9DUW_V+&MmVvi_~;Ki)6du`*}aA@1(6c@OvwdXD~Z
z)6*ywJL4d7m_L_y7Ja9(6*2Oq&I+gQ)b2KUZC;_fg5p@a1{2;fteZDZ=sx%^^A<1b
za<_*jU6U%8z$e})y7yQK0Uz(6#D}YE0^7d>)QopnDf4JFQ~t6NFq8perdmBzBjIJ#
zixYq3Fvk<(O2a6MNd}n&8-TJ;e>U_XV5&j$T1<X9hHbNyf-j3|V_YbVZOLNr(0<V-
zZx(2>>}-<@aakJiTU|NKnNy?o|J44U+W%Agf2R9??w^1A=Pduv${OZ;FZh3e8*Beh
z9slte^S@U|fJ`|D@J3Ox6?RNK?2o`Ap1BDPlX)o~cCqj)?~)TjHW=j@CCMxzNqe{^
zrV~TWHKdnxCsrX0gMln$Lzdf<#U4}=@jh_E%6NkrxKX_+@gc7lelR&?emc$~GW;!Y
z1|wkTEsip)_9htLB)<C;l%xA}iP!xsc(Z)>ftPvbI$v~<P5NFB>dg`kRM41ZTsr75
z${4dopN_QSx))H|%YGtinf~&dM6<l-A$vxkx{UHO2w#ehAP*TBn%t4e8pjvx*Pjz5
zj9V#Wc<)X>{R%R|?AN_?|IaUFp4ppw=25uU97hZE1El%+`Qfjp#|NjPCw>ge@dCZL
zA1tM5a36<D6sp(t<HdT!+I!Lv>@ugyDNs=|ST>F^<mSeM%Hp#74wyqZeezQ7W5$no
z{s)n{NMz^{zbJ%CZp#W+*NwT!!5uv@;xv721LzZmn9yf&I@FJ*=m@@(ovL)HH9-?W
z@SfWx?6C&@ASl#h284dXOP~zCfPX53f%5rcfyAINKUCGYP*)aUtNH23Ae#&{O?oN!
z>7J80cs++MR6)j;rRp3DFK+p`0^SsCwI*I=nGk)F&d`_%3Otw=jG-|KF*VtpeUn#E
zVCMN&^S7O|<AdW*{{ep%Y2j`}g&&-d%m6ncMV)?1I<l<gu5~j8g`b~b%fr9})p`sd
zI1+f9i}irV;_#)DcmND{m6~ni7~T^W<>{QlXz>b*9Sg}s1I1jSpTkUj3Ghw02`ckw
z^D{i3_(GlHxOM3ggtzL~krVoZ7w*`I!+gV@G1+^HCT*!tN)E6jKD~t$m9m7x-`Jn2
z^X;iSWEFqYd-5vU>**(q=ndwgWd|)`wqX6ck+r0pWa3x>81SU=;f`2(3sT(ek~+Js
zi18eiV#?4Qpxr3-Reb0zXire3r)u7+#n*}@zdSnz=DVxnJ@g(uSxVt$9}CE)5(TjF
zE__BR2t;0EjJYZUCi_kF_-j;}g!w|^%Vlt;>jpaLmzO6lDn1z0&&~LkQaB~p&%5H(
zTP$__e|`VUm%IO4b^pui%F5c-Ry}pU>HS}EYuwU{%>Tvif7#evTdD7V`DWyQ9sl!X
z#Q)U!UuyYZmjBPb17_C!FPp2&#rt2jHtYQFZx#QuhVegJ6XJjVeIkF%$Q~yKaONxR
zUgtvD5p9zR5NL9XPdldv;!fR;wR41dHPrJ*0Z_fdP~DFJMP9^PumAP>|7Pod9sgUe
z|K;_ci@T@C0nb?fH#bY?zqhu~|5LC3Z?gWcPh0>0ZR3BPo4)*=`j3^1yRn|jeBkt!
zpYZKiBQJC4!v}z9@BFlT<ne>jlg@<eXHyGjyZ?$XoEvD)>1P1>HgZL{s*|MNj(hJV
znV)(iFO)mE+QDod8!;P@*yf%BgZFm-F{0GFtk+Zf^`YrKMkq^~M&vVxPz-yvTKo+9
z0{!D>^JyPl3{pIFT>3}{^zg|xz_cDm!3TEan{QDV8yJq;n3FKojf>5FDk2^T5%FLP
zn1~5{nT(5sC5V5TMA-u5kB27ZW%W|X`P-5n%6Ul=;l7h12+O#Ag=ZQw;-a1`)4YDQ
z5%UKi!F&*VPT2QaShoX!{6`z*PB`q*O4x3T_@}uCn03?(Qg7j^1!Ae1&mmfgwLYHg
z9L>j7coxCrE3ErUEENrOmcpmcIGdxvq}i;#JYzPW#9lc6WR9S8S(pkKU)YTP8ieVu
z7w7X){ys}hqC?GBqBk_96PzADBgLV;7m|h=q=m)djJosAuKn{l#}~7&6lN9FeJz0o
zjTs`1o<FBhg9cw{kabWCkMgX_Gl$vK#_fcDz~He3s>4>ac6)L;DN#F06i+J;>QqNl
z!KM`zif>2i%hO7ufa#Dtnu;#6X@~K3`^9d(sQrJn|F8D{)&9R}{=e9NUJ`&A=l|C?
zHcI|K_+9(|-qQc~!%Y9*3poH^$OHH+7a-|Lek4^S&<18~?(whcIt1k-+((PMuwxhx
z^UMz{M|0sI3FC3#huOBpuX^|}%7e_01FuUN3{e$Kg_DuT?h^18Z=}6V8R|qng2a<C
z!&8dwX(xoI6#FD^OP*5b5NL7crNjd1lyavcFV&PXXI|(%%tVV7IHzQB(;7V4sr;%)
z?u8R6t{l5C;P-2K?#91jF~4s*P$LIs4ql}2m~||6SehM=aCm+PP+Zkn(ung5do~sI
z5ttgo{y^<BgXmpDuGu+S<ClE<nBkDF(!=&JCi@&uW@F;RR;rGy@zZ+Pve3Ob7FPtq
zh9`bfHKB8>(1Hy;VFBKB?yn;o=@0C_hvDJc3rd#HU|q8ws{ZmWN=%>y<(i@ehhL}n
zp?sYlmDM8R2|&{s_1IYwKh&X#y2Um`acV(1!<yUjJdB)%c7m7oF=hc6BJmd8<R`g^
zfJb>2=NYC?6y++p!6|V=fh<oPd2N`S1&8T%#^vcW5(g0`OdB#+Cy<NtHUGA)75d}P
zm!C-m!VA2gI7#HhD|Ydz1M(KrLyf$-BrP&U#A+~M{9jO9&SV!TK+X9~yTCRys^Kfm
zH^QVGUNQ>ni4dpw@Ac;p&Vp*s6475Z#}(9w1z3)q$(q7%pM%j}ftw0Eq8~l08Kjy)
z4CQWhmU4%~lL!rW0{<+&P|f14RmNMZRIZ<RuAW&WMN(^5pg~K7h`i-@PAMcINtwf6
zQ-dNIDcV9URsv5QV@lU1Pl)1&!w+~%kRNtenr$1*54Y9kJXwYz(805y__enPIKkqp
zwlN@!aXR57hpR)~|C;z*WAqBcYXNE4Crgp1+?b++%@%@^Q5RbOX!v=$+C}+`XV>Ai
zwG`o$Dh~!hG~UA(a((6H|7dC_l9?*jWS7QmTUUh2<4g>wwMT4<fb_8b^`BxLr^NZ3
z@7W$mfq`}6FDR)c-71yITy430ZF0Npx>$glc``e42~=|Pm&?YAEA&ph1Xn!Y#(PtS
zD7$$UV2A`gNmHd8Q0uGU3auwEBPyulFTxsZoJvl+g>~{N<McI*klu+eXWp{GDSLVs
z7#$#<yxdeDn?(mjkxD^agitR@kfKk!+CI>{{Mzn2b?tt&*^!n5?$u8zx+aURksAAj
z?*G*L|MmWVz5ieD|4-fj&z^S&z>M=hD;w)u#r^-~mHPbeo9+LLo&SoBf6ED7>*Ch4
zE<-X{{ET+#FEi)%-|$S3AEIfU$zwrddFEFdHbV6|{j?j6K#}l73G(ymC6GpYd%IS7
z+dmKU)N{M6oODpe+0Ic*f)zX14S0_V6@6{O)Wno}H&Ketw#@cMIZR_a^yoFHLfbJB
z)pxfK_Kv?di+qpw21N-B;rIPf6I2x1n-kL>Y-!T<Mv<EbcqR#YZ?lK=sz)j9dOg&x
z&>hn2L^uCH3z1U{mA#QSx&aPpu{z2vs=2_SQpeJ|$hEk!?*%T5*gqIb)KnJrBx)Qp
zc9#)`i~9YHZcTUtTp1Eq@RiPPU879_i0i5-eE)J6)LQ?m^}kyGtM$Jr`d>eYau?T(
zSIYmgy0%)-|5h<!SgrrPW&Gz>tpq+x34CWA&^t<cAN&0~E01;M%DH#^0JT5VM6fqv
zmRXkv&($DVbx`(XP%8YKQ|;VEG!C7cO5L-u8+fBM!cAkXT(ci^`|N{MM)|WXWk;S?
zYNQqAifSqLy4+w6Z)I!vFte#*p<+9~`Ds52LE$Sm_8>mdjjj(5HolnIV6jlGZ`b;E
zt^e2h{}-+QZ*BZg>;JX>Z|MJgL++LGKdr8;Y)buqYYk<=%GTEMX089frT+iJx0e42
zLnBZSRvrcuzf<*#;ss>w;Bge#UY2+s?tbrIG}L*ezK1*gr%CiU)}u|U@)7WvrYD5z
z@pme&p&=`SBIRe^s4|-rSBDH3c29&v>;gt+LIVJlATaZqOAZA;wlMOtRe+a@?ol*n
zY7>N3yKR8Q0J&#DMF2WbARAOIT&pXi@}>hbb>2r~oRBIMETRpQJX_~_VFn^#|1tLA
zfdvrki{pPBhe<gmI+jP(QmMwWJQGH%c6B2Yt_SAq!QldT@L&4JRL>@+@PjE-pq(6&
zrow>;O2o6?ryM#M38AH5jl$!pbX4?Fs$y<_m1r^XnS6=Xg!rvKmuG>RA#{bE77$$^
zjQPG0JWcN~V6F60M86c@_il1O;E_PoO?ozOc-GOvYgXT<UG~2e8PNt=p-3ng6(fOM
zpAWaK1;G%B7rMyFfDk7UOH5~y**J;9r5O+nW@Fk?_$z*;S8ntWV#Zp<C9QIf4^cZw
zS>%<XRJpoAHlz)Xexd)m%wn}tgL37bF?k@PyJT<Bc)$6c-yArwA5h@6Xhhf@m#y#e
zY|#DTyLQ18#Ujv3mb9s(gs1=l_I>K<S9VwST)s2qAfUK^Vbe#Q=&S?pED{3_$`?lD
zN4)+NZ{)EDe(1KEeMyle&hE{&Ehh)`fz`O`u27WJcmLmaVvHmxUSb=HRLvc+DBAJ|
zl#cO7i`4{@zW;mo{iyriy?Fog_WPsl_vcO7fy=Yw;>@eSon6?AmktT^d38*LLO-*K
z{iaw`R*Ul0#4X9#tP%yG`uCt8485koqI}k~Sh95BH1&^a_OBr(zj@Ye#F6m=9k_Gj
z^sC|0mui?Rl^2l9n>fXMxb^yXNbAah2&0Eq+xlL8!T-2kkU1^a8K)oCBq5A3{VxSp
zU`^d)--R<WL|MCOAs|`k;$-h++d7PfRvKZbpdSwB6Ao2KOz4k_5|(kmGZ)B~IsJ>P
zQArtMdRv+Pq$AM5E<=|0T{<^FTq5tYlRVSmzxmkW$F)C2MINWf0}%~*G+(f(j(gvg
zXP0)F;M3KVz5S0nmxmX<y@NAsN6Pcq30*v<&}#m_CHp2#AC_1SxrS72F5xQ@c45V)
zTBYH**;QblqRPxxS+FHdL7SwiOjl2gl^d7h9<0UXwLkRxcfGy?Q>a?&V24g<5zCB4
zp+BfDOH9Y(mhm%Av=(CyjxZg}V;53`k;K?chb;A5?XV$zalM;-C@%5U#4uN~Ol0)l
zU^WdpSmE4zk~;5b9y4PHSqL@k#1mO9KJ8vMSP}H~5+35|swwm6(;O&hHd;9h|Lr0o
z#d7$8O<PqMY=UxGJd0B`wUN@uD-}kF7#^FKk?f(X9r6l3O>5<YM)fB}nhQfmgqQ2U
zg;W!;HFe9-3z$amxz>Mpe#WxTPcm1d2+ISzTJUqN@=&X4eSg~0&VlKRdSN}6!;Lgj
zvsRn56`a}Y-{KvL2507dows_qlo9-E#e&4DT&-PKtVjIYIzOY9Pg<9Fx#jDH)}<B?
z<7XPVh~XDc?4$!Ud0pB2yn4<3stAzx-N{{xhgC91GfPz8=4!V}ZDjV{MA-(Tz>A35
z_}hjBD)W*m7{IVjps$At0w(8lf+<+^rb$@^M<gXLYG8wD5}IlN3<Gmfg^<pLY!=Gu
zt`h_S%-A~+!C9m(bg^!|#QWctb>xh1JiH|sL}w~oiU;TCm;2pS4u}<TJy4cFJw}re
zMuv1`T+>IG9V)v;pCcHGxDsB5FjQ$o*@ar!sQtf-N&w+GLkp-P4yqozsCgJP5}I{M
zGx1X+nFW2}i@eYd!zdZyj~2Qpus#){3tW}j#N85YLshHLgJc8cp(_-w>Kt#Sx@%G$
zEA*+_c_9=~O(WLK3Mf2s?mU22UDC8@lpa`7w%k!so_ff;WU{N#Pko|=@UvQRFO3#f
zn&!O;6;!jo^r2eK4QX1xdnYCi>C|cgPQf6A=>b#d#tS0k|A>m<Y5K$(_>UOeg06U!
z1L%tfyuuXy`c+Gwl6l4PZdFYQKI(03s;a;hXg3oLN=b;kU-HKZD5gKI;D_V>H%)hL
zPh~&Wj>d6@SBq3dVHz3EEUtcX*NNf4VjvCY)r&c>OeYq9)hd}DN{NxHvZlg{P8*Y_
zDA!~+rT}l46Mz0;-fldN*z-{Oh3IU$3g4W_hTt;5OfsP49*Qw*-{FScILcuG48}}M
zI4l<fCx-A9;WC+7w1;STnKrDEALbbU1QQ)Jf6ul!NDd#@T{l7q3Kp%qOcHs?2!Vx!
z1aF^hTPXQuIpO#=dgxdWw-L96-!T%AcNNzCAb??uVgdrIxSv_+ZIlNto8oyEIB7;W
z=cZ(|S{Mt7T#x~hKyVHmQMLMk=U@tLfCS8N3vfY?@LiOoNDJsMW)yn>9<iV2@Z%Kx
zu+c6|pu+5_aQ(4E!e-Yfz7vfiMvefL&oMhz4<G$Zm_*6gSXdKp6y1AOimj40Q*<6-
znWE>(Iyongk%A9~8d!zVLkcVuewSH*H6U!UHfi?KCUB}%U`yGK6$cJ*18ryFs4%}s
z5DkaQgK6;q$EnntA$xc#iz)uERt4P3>8R6A_zXZxrB#`$4oE`7X+@qV8%nk4lhA`<
zTnDiD1M?zZJpfYz&(T`lfsy<!Whc4C_8R(cfhrv=D6Qgm)_K$+4q=d3rj-=_?GUHn
z6nOw8du&BeD6wKMiUZG3#3@z)Ljy84)AHDNS>*>$>J};Jj|qkwDm~rl_oF<_IF=&s
zk9@6bL27|Eyz#=_MY&q!wMqr?ruon+43NSeJ{4%FWAf7TV|a-=ma>`3X`%QxfvGCW
zoN?S<(<-2j-sSF0wWCMsh}!d3-B3<hVM?1D+`2o<SWpy*tH~{*#moSgd3Qblb%0qN
z|5?X>*5|+Kzpo<xGx1(C|Nq8XMgISdwL1Q@j{p1|@t;qM_oN#_*#>$~qyU;8-C5dU
zmZ?Bl&N7xg$c!2UfTe0z`mq<Kh0Y2ARaMy`AJF*m#;M((S9iojKaahB+Unn~qGrc7
zBz5JLohs9>lG-^sr_6&pM;CuT-A80_J7(nIPT3!XLNoV!@)%ps8R2#eD{UWq>c}Ge
zx+Jr}zE<EqOU;jX1)Kbe7e1Mv=|)2Noy-!mz{$nW`{==?0l+?C9I8ktiKZfRJ%$!1
z2cxJnV#%zq+uV@@uk8NFN3RnZY|ZoivtJK(_j{LT$2|EI7ID3_Un;V<f4+NmaC&iY
zq8CNC1~*#F;>SBj`&zm57RJCR*u$)PJyHDp=aaLGVkLH2WD(OttppEW;v;!g1$pP<
z;_Tq3%ZvSU%*Azi(AzocAyu2#Jcx|bQ{=$}uw*a^hUA|aBcjRq5m-yiBAISXV>-cb
z(lAU*pAe{gDc`cBwzD|5gD&h{FQFYWXT%v8cMEC9MnxhtiigztFyj<b_U_L+rw6Ob
z)a#22eLq-DmUp8I{3Q338D6TsJVq+-2obJ~Bj?UTzt%VeR?hssb^6KL{fH74r#?za
zb&gQDLJ@WCwlet|H)YNE3XGbNUvUGs9DY%b^1K&QX0jw1*f_ZIEyi$*p2G~o$%LjW
z1Ef4X&Io`aCyGE@@c{_xjJCB%SQ@G;XCzMoI-^-5Bncv7>>?m}h}V8#PZ+|x@||Qw
z8DTEPf-EC97|_X(gf>x|%^Hk#xYo7{a>fmm2RyW{nti;ct_gDKTH7vw7X2_6?yw4p
zQz3JxA=M6hd5bTvx@+4k6(`ha>O`&*Ags!EckS9J$b<%NoH!#~H_4<IEeE`YKu%|p
zsqIuWp}}nEePt}kCn;}v=(`4SwYoNWhgwa!@-*8fMqI|pl}Msq4M$}$oeJl47Mv*Q
zJJUhze`-vf1cfP3H35{IrLQXAxvrixo6Vmb+@PRu4+#irbgLupLP?7f9FlvEKdf1U
zJfvGhoWRe<Hq_T52<cp}Kkz*@b&i}6D4$G=CY%=22hB2U$*E2=<`$#T95wOqDoAX?
zI@q&h`x;gUxTop6XE<|CL6w<5u+a>Br>MrABfApb#E3>1sK5(Z@Rs%87MRuBnyZ-<
zEBxnb8@^my-^28@Z6jD%D>Ns~2s1$>T~%0JZLh>>af-WJaf-WBytsRdyZeTs#kIIQ
z6nA%bcXxM(y$=6(ZgQLT<RV#_%*@N#!U*MtFYG}5<BV-G3by5&mp?lZgh9)yWHKeH
zu$>&=SdVS}AD^em(0;01_LuBt9*-_JVK&y{jt%|(Btv(S#ZW}DINgzLp%tCBm?+Wy
zt&ryyB!64xUqPQ2dx{)klbyd04*TQAL3^b`dv)j#HTjw2NJ{%m*(vkXm`&u2ERmc!
z<or5DkaA3xV#D>hOE1XguXB!57nh~@Q>IOAtYAynnOaUSQe<FP%CZHm<`0FebMJ%H
zA1|S8Z6zgJ-5p@alS|qrCo=eD6TwDCO$9l&5bkfmTn+7&hz|}IG#Of<G-Ar!;q$Of
zL-skPSP83rT_as)1Hlv5z%q6CV_}f^vMJaryxoWkH`EYCwztUzLjp2EuzOr{X7a0N
zFAERF7ulb*g-L9~tCZgpnxF#S+(h@?!eQNG439NC2~4i}R>iSoqg#%X^aLYXFiK0r
zvL%Kd&Cm;Nv}nvT1iJWtgrpbxQ~z3Qa&In$<@wQo>)0_F{41!6>;VdnS@)|^CjHE9
z@NKr3v<f@zes7k|E^m}^UEIWs^~2J>Y`zXc=S_F1G}_+&u;>2B-jmwwuMTPdg#91n
zj#GQmzv~W<TQmNpJ}~#+CNhLue8)^9b|8YAg7z}~({pB6a2uas^Uk)XL@z68y|~Ge
zW}j2!EdU$5ea~*ns(i1wgQXIov@EIS`BI9`dNZqthXd7@ON549oa~#89I#g4+pHAh
zW-%0PM&edpUtdqs+VmB!1EVHjPIsMjgd$G+AFQt_u73&&VsIm4m2xoo_h?p?C&`IC
zp%E!wzb=wzEt%t%oLIqrlMPAKg)Wg>xjyPGTNji$GghP{EII$kZMWR+nrEuQI+`e(
z8%!?43?8VskWps5QV#%IrjR(?Ge8Oro6bqBhg6(p5o5Yghs=XNApC9)91j~cvRJ7%
zuaqJLSg53JhVK`byF6`EJx0v1m$Az1V^P;-N2;R5&`NT?537{j;HRCW<ZqgMbNOmi
zd5;CuzfL5Pm#OKx=Nwg<n?o=GV-Ao7jd1O9sPLWOg2b0-&NNrKB<1Sp&x_`=Ir&)I
zg%O6cCWJ1z_}bR><NaZ$O}LHB_HT!uo4M4*h|uy3u;0&*uF}6xjj$?Q_DaN!KAXr1
z?P6yR-&QsePU`=z$1r`tLQs1qlJotiX)j^pGi_`+5s&Az!)tl|Jl3H&pe9Qz-7Mq%
z;~NvXDw;R`xZmB102);f&V_*=x=Jhkd9Vc^rl2pTLdWOL)A9{oa9$Kpyeo9lS=0x*
zvo9frneJ7A5;0u|sv7h|0Zl!vjpAESyT#k!z{lE;c>99Q2EGw*83HVKHLZ)&y{*p)
z<;V8==LT14e>IvW{`R}p>lW#ATSi;Qyz<Git+c7IWiqnwok7DaDp0$bp^)<p3vZxS
z5d6zY#?IXCYNv)lW^@oT0BNo#ee|nrir6_154oj-!JkWPse{(Y%QlL~{V`f?c@0rw
zoApm1*k;X)$6f2Vam0FbuvgAPC;aI@nC1Dd^PYrDowMOT3Wf9gB!<_)F-D%B*%4?|
zXH*VYU0PYw+{}L^Sx7p4+H9NwIL%6Zne$)UV{RUi&K3IxRAEC@OI*fu3i`i>y2BGw
zu`$vHQiYgEGvrV(Vrf!OX4E=mDVR7mg<Qy)ptS#wA_sh25`p%E7sc-A%0$4&!^O&_
z-5qS^RNDdEj=u?Qrk<MJAS=#SWcfJIkGBz%5)TaZ%w(RSXlrR180hqn?i36v#q_<)
zfMUdL^&8Q$Hsn8)ZqrM^>c`A2Bu!ZFV>|v%$=AOW)Db;r-9V6~pokz5vTj5;Juk;)
z^vGEk^wcFQy&74&9-#c3A6?G1o#pr(4WCqS11&@YpOBR_Y5>;#nmH?>^la07b$#K1
z=eeZ#nIEhJ3G5m*`-=!OBK>xJj=zmAxKZNmy17z>m4R=?;ro^T<|{dDdMwqv;DJ|?
zU@t@eqh*Qb>m#p|<eb%8qwapAL9{Ff@x`)><|9_#n+~iV39c4NY4Hmc4^n3xUllv0
z!S+p=Hc)vF{1@n6I$galINm^~rv&r_AIG4@(^rE{1puJF1jW(3ZB|EU4s%cB8twEo
znixUy+cE%}*UKF)U=Bw%0*rCb9Qx?%-^ANpj%&M@W!7QJQ`&j<emu95tgZ^l#GUTD
z0@3)7c~yJ$ds<_C@)g<-%}EaSe?=y?PucBGJxbH!-A)py;!<5=|F-PI`&u<5H4zB&
z(<p6W@s?g7*zc>s*j{5}xK`-4<-$3>hvJ8X1MG#)vu!we?&|+M?uiT2o&fNs0_w!W
zW5v9ZfXq29%TaM~<PSBXAzc@$mOnU(xPK2otnPpwY_u4<+;^It{^Dy84T?@gY{7v;
zjr#4~*&gV@joC8^-b-FJ=Ux=stA!0g&no2clS2Hgf*SLhRt|;M&XF-<@?wt4@&$P#
z`}GS{En8o0e6No~*D|*|us|FB^2LQ?Me66wSQdQ22^$lKUi~w-<6E{a+kM=~C<Cp$
z(LRpcuGX{vFS8?yo38Y+lCcHl5h7Z}M#V3N$ylWS@r^p|8m>9vc!rgkPjmV%vDm7@
zolo$~tYBt4ORu?CgkCIwe;#_mZ>25l*M0Zmh7qqzNHaIymK5yBp9gf18MA2q=}3wy
zCfe41S||K-qW%!ggzDz|<@>~RgtWD(2cmXu(dYaHL46L1!=I)&k%Wn`R9Hw%6<=FG
zbx!u?!fIoBpI^KIIoWe%<JVGN64Z$a=CH&%JSDY5dnxtU=cpwHkmv%%#Wl+p5}u0D
zf@B9gnG}FS5O4Txh;V2A4v#fa0u47w$MowMj}gT-E=}~=jJGWw(KJ=>cM1qA{Yy{^
zO_3{zJV~(fFuq&eEj7{ZcnGIujl}~#+8nc~gmFo(bYOp#JBMO&;)t|+mACGgOO-J*
z9uji*K7}nDHq%{XwXYk4v)~`%*F3lcf~Q`>1W`GU--kopUqF_e$VX&Uw^PDe6jfg3
z1knl-8}86`(l?mV%Di9o6r8m2LlNqm*;;$^*%3Y95R0-R>Ei@d*UC6bzoW#eQ$-k-
z7$eyEFJN4p8aKxvFprP52N8~{@gn|HM_=;rI4b=Kt=L>v@Hm#H?RmQ~tK3#7v1idh
z>2%yAKN9HQS0?A}PZBn`c^r|Q>Y}36M*calX&DjBK}R0TQs`l^wx2&gsMi^f=m$3b
zeG>C>wUr7dz0HtMrX7~S4wE>tu{n|ro3tPNOe*i)QoKv?hK9q+zdX%S@0h;zYyoV<
z&-<77&|Criw)l({oDs^Bcq4K1;R3n`Z(g_@lxE>5PGMfic6;6OBK->J^0CMfl?t6Z
z7Gfqo#&iF!-0ffNHJ}^=yFQeX76WoWAD>f{U!4K-;ARtb{$IjEGg?xw<PN%7`|I5P
znVDH6OfYBMQ2g%9;*;MT>H~QVQ?ZzKr<&(8+?}Wp+E0+!pZ0^yjI(G)Ug^QKYXg+%
zbm7!YDKtX`r35b#foyGlvAlM<(YB%~5(m-090Jj^jorO-E9}44*R{4S&6`nQDsFi+
z(1(Iq$EZS_12^?ULyTu_1h$C^x5B5ownEdtZJsFj9eyKB9~exQpi=%540FYQjm`~~
z9njXaKV-`<>vfg!cOSdE4atXp(raL{gJfzR8`@xlIXeeh*yb+DjLy?QC)wSWk6NSR
zk`u9iG@N>lDWM6HcU^5$O4Kcou98I2gm(EaKHuiF7$q?=anpTh>&Pm7nN^w))9{)N
zzp3$`N<Z1l*@A=%7=BN|m}5)jZ^WF)T%~6U((8L#<Z0(MV3;2-jpMngb)*~AfnQ-|
z=(G_}nCAt&f<;we(P$+Ir%$D)9!U3j@-=NvGumu+7Emt-`oS`xoc5?kn?bVGlBOvX
zYLY**+1SL@v(63`-q0gXs)W#t;o$8h6yZdf&%~xE>Js9O?fL#X)aJIR$6lyn9`p2b
z1h74#33pf;Uj$GW_~<e%LEWWndTA<@blI}dT@w5#r=8s47n3q38y49PqZ0Yzv1#T-
zFhEHR@0)D1i-JNe`w|lZv3|}w%re*~^=()^e}%^N+m}vr?TAbE+;+%6&NNRlBChfn
zxbHeN5ArG9hN=V3YM&9|a<+m&kVxt{16|1nO`3Y*AL}jFaq0ZIlS(9-hk@*8?Dli{
zX76AA*kgV5!Chqs$|o14g00I0KZtT$`7exo@x&)_7AwaxcQxF}jwXr}&0e!ynI62P
z_y+m19wt-mIOnw{5>!+SM=^;bE}ZWfsat*Vt2HrZyf`Q8;CNGd&?@8GnRaj0ReRSQ
z(@mw;04>T4UyqZ7)!&|}U@P@$JLDa=vI)|6N=__$3Huc%N#R}x>ia~irxWej7%6^h
z1rn@+Ur|TY_9jwdt88dqb@=YFF>7}`D}|^nL52mHOx{UIUE%hDmbPESt`;KRk3X~7
zJizSA1!gzE3JV^+*hY^Nwy8C$S}=zDFH{z%j)g0WBMP~<8c#%b@sdP@r@NgFP8xN<
zHgLGS@o{qx1(r)S6v($O_k~3dg%CEMa>Y}hb+mdcA9@hpGNK4|Dxz`w;cg+~d)N@s
zMROmm_<b|wn>EqB%Wrgw=JlKDiKJmfJGP2epo1y;N^<h^Zm7TeF;5VKq@>Mi$9MT-
zAemlAANhA+Vt)Z!{F~1ab{@aYHBk0rFi9}Y%vNp1*0NLj7iBtzVzaA8^SHQLs-J@c
zHDMN2d~IA?SUfmsRz9hGG;a~qJomf|4W#}Kh*K0Sc*PjUgZf@;P4>$t_On{K8us7p
z=DJZ0n)Cd`<e~iKrdq8?yy_Kg%as;J*lJcEdu)|$f=RqDe{R!|Va#oABgN`%-zoL9
zv#reM4ny2U;wltR@7c+irp?JPTt3FxPY<LK)7Bo!FC&A9Ri88(k+7ewNB;JC`wG0;
zV4cIJSSksYK8xJ+5{5nEobUMdD2EX^o=|&`6-!N6S7uv2er9jh?&vUn#BF1V-NTxN
z{n|cnsVTo%^jwo!-`9@PpHi7nfR#m_Ix-=_Cc9_n`)xaSG#jM>&5$KpEIYfup62y;
z3H>BV>lfAzm`xTvC>AFe$jN3YQ@_Dvx}Jt%RrIi#%^Z5_avPW+o*j7io!b86wvaSL
zl4zzC5EJjds)O%v8)+vR+*!r5g%f-9IxM`$z=>l4S`8Hj=A-PPc2QmbAEo>AF(l>F
z$w?5npCGB=D=)!;UI29}5-weljeKM#`!pqW?WdsfKZqJ6m8qR)K)ajgGsYEtLOddX
zdD&ktZ4Y??`$rFDSpBYoU+010#0q_O63?$0li9;h-Z1O60)1a?gHWl@TpkZobARsd
zBc1c=XYG}s;`m9pDq+;pA1I-C1L*51E176~YiFA)Y_WZPN4Vuv52&Z7r?Ra=T;U=l
zi9xKpBhw0W=BCEWPI(Lji=`Oy0`G=heYFx8xi0sbB{L(Xoi;cPoAgg90TE?fU+x3k
zRr^rsuk6xrRurZ|$d3ndgN}3!FDZfrpH~x<jnyK@v3v(?BxW7xs?>Oi6Ri}Hju-qG
z(J;u!pYFL^&jZ?bFF871Gkc#i4R+1fVpWLfSg9m)s~%0FwEe{nBpqITUIdKD?IZfT
zC7_pykC5dSbcxRdrnM|!B1fKSUi<_6P;Pmsu4KP${X|XWzA3og2@QwyuQldqzjNsy
zCh{e>>Cs{j;QIwT9>sSr8j*DH&v&4L%oF{PRr@Dvz{c((LHmYxmZ(L*^d8mZE!090
z1Y;PKA7j!CS2fiPZPOz)63*Xuvq`sEl+H+7FfCE_Y&?X<v?OYG$y(qpcWAXwMou~L
zVqjGDsh*0L*~^c&5Kc_QFWQlrs!k7dJFbt1YI?ICGOBEPa|yh%W%6?7uVYQ7$V;<5
zX`j1>$aJIhA(E!^aV^AP6Z+CIu?6(d87x3wGJQH!RJW+T2~swrTm?haA1Gmkk$aL_
zz*g35Ue5;HGi`kg%wEnHC1*FbBT`t>VB3d@v(^;HXFch+hh(;IMYRz;p{el^&q849
zTI#QhHE!`ZwQiOiUXKa;{}M3Z|6;vC25dwO%fO_kG%sapYbHnCCPsy5{(u21GMD|y
zi^AWjyoqY&1q?EP$_YT@5J-yyq92O0;vu~~!JUbT<M;K(;LiE|dtP9ZU?0%weFN#Z
ze6f$MQcUF%h2+EXhz!DWC&eHdRb<1<;&yaK@l=G+<U5ie(rlH2_mb;$TJz#pO!st0
zLGk3qHB5l_=^<Y8{9IRin!jO3Y)NudsCLfrZqx|G{4m{5qm@q?MYf|WYF*;R@@!Vx
z@v;#0*&H0*b`^PCW^9B|d-){y2g*}I;jxtS>qw$@SlkriZ%3W8b~(-qGfogkyOe3O
zvQ?w+CZ6Q}!jjjr_Jo0)oh-AOCEb;zg(|DenU8<i*?!-`SJ}UGc;bI{)t#e2v~|Oq
z6SKwYbxSA2>U3`3T8KQfzBI$S8Zl>#LHa^a!wu!(*=Wqs=3ZGG_E5-fibLX*gUgqF
zzexI|`6TCU2F(<>(jEHbC}rLfA7(?r*iFNAG=Dxks@7^+Iue1{i+Zb@tC<u^Cc?Hm
zJSx}!NW-j<%)8Hdc~rl=qlY4Z#^*4rGZ+3>J8*mA)os@??Ja=PX)Dn6B-quLD|2a7
zG{w>6h_tItYJcGghYo))?YO3!R^9qC=4L025tf0uBNwGD*<{YW#28VE4@6(j;z*2G
zJMBUEB1RLn!vi<Upldm)$Z8X4V4DD<oe*QL?JsIJHO}!ad5`ZTN?45|Mm&GHjhU;=
zKVoHgZbZdc*!b~k-cSrOvQc!kRTL}zR1~;z?15L-#KN`RPxyXVAj9}Z6p!qw)turW
z)7Xc-vSWArI|dKgQew1RU!6TU{5YBWov%1cF(bk=hx|<?InRf=OtZw~x}eIou;Gnu
zaz%?)-x^?;3}#4Qv=%VBM4Sz7PdDo+j_b#sR2<1Ai$utU)E^_ma4%6tOu<0O?PKKX
z6~g>Tb9nUkf92c1*j6a%CuG0<{mC9<a$xcHJ5;-MNxK2qx9+uUddF>PXWf0S6R0rp
zfd`JlQ98cXtI?X&T@%$iyo^3us!?3)wS<vgZ>Ef6A||fz+=wI*@ftN3pnHoX<J)<Z
z98zXuOgH|qQ7HRi3nZ<F6<)rWjy{=2J&0E;)2FDYV_f%GmdH+>&x`)d$1oFa*8Ibh
z-M6t}`^$=HHtbix6~9?pL0o|;b7?9A?e>*1%Eo^MJIHU$UQm@DdlT{frlWd!Xuiat
zYYlJ-ol6;M8#(faG6ywm-}9H>7~8RqZXT^rj7wklZ~CeZxJ<~#6jQk8EiX>R5|h7t
zS>&026}ks2w*L>w7y&Dy#_OT{J~HZ#%*K1{tgtJ$!+rp%Yp9>TZf@Rziz4l80C+BM
z1RW6-W`BVv=NpHOR|8p%4rNRf-+;xZNzuoyivOWK$mC{q?9Rp@i~1XUO>w&o0z-6c
z{T{8AU%!dt6hWkq$yMe?(bAjjGhag)DN2><?S9%qT5!z6#aNbCA^x<jHFue(maW#a
zDe7Np`;iz~9xi%c`i^J<E$XkdiVBO{FYu{8He1bf^;1x4kWFBZsb6Wi9W16W?ki-l
zfq|Na{=4X}-g*Q3X{&h-cmYUS-lK4^YkTQ|jYghr%Ua^AuG-$jEmTKOK*id2DV$p{
z&fwx*D9+o8w#|5%9{xtImCmh#6<U*B3%4NDZd|LD8Y6ESBB>0q**@WdVV@c_!&@(`
zS*5zX(>?a-30Qx>asD(lx7U6ho2a@pbvu}G;vkoK;jZW_X)0Gew{EJe+OwpZ`~@E4
z+?R{#-<2w5g&w@&E-r3G2Mwx;L9;bO1i^>OPN^0gQf_L-vfO>Csi<;geFBE6B|Xrl
zp0#7171Y#aK3Wn<k)?Lr)(E(=mB<xR2J7WhpttAx^-p@MA5v?B{{^9buv8hqvz=9Y
z1~P1!H-4jet84%^*}zU80AIQ-kTqnJ!;=AVw4?EdB8=GIBN9MP#!rOn>@(9ZGmtx_
z7DK*cWRdcs$;uX)=i(K|h}D8yFl)SwXnAM&Ec{~(eTB0=xB*9UBV@hzJ?}Pt_Y2gT
z{o(genrA!A-$qeWkv~QT*8Dl0AQ^T%pGS>8Prfm2aiioUjq2z$G@|^qg9y`ObL?Sq
zUB53CQ!7+mB7T7HKj;)}f4a4)ZO^xTV|<%`0hI%?@Bi<(TmC=v2&4x@hj<*oD=vT!
zrvQybX<+j|91rH5q~k-V{sIsj18Kzoa20t3$n`(=`TQtRzB>-(b**!ES^iW9CxpU(
zcW>%!Nzb^UG8EP5gnL7aOHX;B^+u<-?6byLn@T$&19&z$dE@bZxWO9k*3uIOS_tC$
z*?x9^-wV75xC|pOKP-1e%1dEV-yb577$#ijiHb_+e(2q<%MIJp=Z@XUcULxrOp*0t
z7cvX{gCM*(8;7myzdmaslmjEnO)3+52aT*uBXN$pFv2@afv)N?q{*0qJAfF`Ql`B=
z0-3JlBc_(cmj2DpS{-^C&JE75+!EsD$E4p?!0#WpPs$RpZ$q<{2LEVRr<iCStWgo~
zk`t{X8u@FN<0Z^PpMUjsx|^Jr8gcSTWFlOq&G=frcP;={z(*YwXMrFFpNu!u(bLnk
zw1PKOtF(GB@D~j50=+N*XmEu`0F5W-XUlHmGE#Dk?<AhlWmqdr0z3QXi$%1dSLeti
zKMjr5^?ECcO8qkx*7BmG0GsRcfcnCYYx|a?0q9>VJ31)j$L2=?QIR;KNf_IRv__VN
z#k2gKPt{__b1Pw*WO|9e0rfqB0^22ry*gE~IN=&4R|~No7Ar?e=ln^UJl$9<`y6$x
zG)b$Z1O}2za%q}4x_vEcFMN&-EdB6CjRlfA0)H;(HyorJkl3o*26z7<{q;b@xz(xS
z%c3VWnMVys9FC%f+}2_D7wj3IkKcg2Gr%5N6;44sM%nK)tk`6nsV!Q%SfqZxJ>&}c
zNPERJiBfcR<}`g&D>>wQd?Y8|ydXhpdWp%Emw@)dq<;M6N*CYsJfBo9C9e9WE>$bv
zIrPT(@US$P<wcgAEzf_r3*_|Mu>KPfrNkqoQ1+bg)tzA;S;jJW2z7m~qhv$5j6sW6
z`BRWOHAhP>R|}h49(^soPuFE)<PQ8Yt>D=5{77!U>8U`k=VaCYR8^e~z-cG!IVhoM
za_K$I0;sh4$CUN}j9~LG{HLkfj5?l-c+AKP@65W$`?_^qRwwj9;?7BwgWuhHUPR=V
zoNb#__U08{FF!`Tek^(L%JTKPd)?bPeE;Shkxe44!r_7vFKuV(sNg-aEKu6S_r0}R
zv0YANdGyCGI-k$E_L|Qk%|vsp)`Urj#s~J-%DHdR><Eaotv^TB14dw7iB=rwwMq3c
zUVk(H8oY~MqIpIqxr@$)ukmxw!HI*3DcB=u$HiC9h47@VQ(SU;MkYZz^M^z5a(`0c
zIy-tv=$yfg=AUZS6Db5`Lncx29AsR=vjiC)@zkfI7ucfCsO#{DUk8h7MCdQxV34@H
zh|ei!-BlM|hGCb+48W;Meo@0RLJ~3P_r-hdYX04UmN-W<L4ahEAG=NA_vN>Vts}`C
zC_^tjcETb%$%^pFe^TakE8e3yfuD|&-;qrKky-MG+QeTd8vE$99g*SBHd<LPbG^Np
zI~~y8-OLs#eh0pg@|V*?xUB|3d*DOKFMY{>s6Mg#lX=fN1Poeej)x=Iz}uC@2^fAt
z^J_~VrbE`%(q!{Fo$bzaX#xF2|Dg$Ln?krUOmW#oezzY+)U(>7bR)GG`b+o}-8vM)
z$e_3ei~NCG@1JwD+!idKyQb;Nu!>*HH@?n-ivmon+<>#4t=;a6iGIQM_s;FtJ0SSZ
z32?96`R1We!ukt;$7Hu`Hr?v=qm5hsFBC3;v~~hZvIN#)(y@T%>T3Nuph4a8^|JiK
z8|39}k?^pSY3W~b`}S$X(BG<L>X6iU-(x)ZZ-*NtD2QBst|%JQY*<a~@ADNH|CCz-
zK6HE|?@$a7md=vW1nQ%MX)+;2dr{xk_a*09*8?DP(-YvP__%qPNDphRQLY2~x|Ete
z8OsaSAeAe@Du19_r)i;|WueJg9bR*WpxGd?xEzB0#{1S5Ri^xT*QdErUR<frf-onC
zNUM7y>ugh>@kWWiL4H#=)aINThSpSbb3_wqx4J_<!~d`GFCKPUzJtQR(daCd%|I=~
z1u!!KDrd5rdjSrgYN_!c(l$dOyXrh5DAPbXrai7Qnx2cj_Ph~GE!ej9gD#-!fgaJ&
zjI)KNAnegqg@~m5#v_wFr9)7~{|+@DUL?yepsa#PZLrxt!0ObhY6<5JG-{>up(*(b
z?j$*Rn?y_po_J(xXX7)RTM!^K#+1$SnV;&GW$fyQZZc|T5&7x)=_=Ytws_VuFBJsQ
zbHYNM(6t#=zt5@g6lZZ-(!i9Mv?zX4Ad;~?Y)lyUB#61>m0lZ1d$-`qoF);1xY~}U
z?kz-IVs{b09|F!8ej5Q{$8n@!X2q1d4p1hKR;I6yDjDiidzR#9qO-}_r2O#5qx)A1
zH%_&wv<qL0e37#(MP#{T&fIMJCwS@J{`q%a`NF**aqJ~_n!_TJXn_XtF|nJeQ5ZhX
zv~i-vdbHnEB3&!nl*HfPY4arvk2bw>Bvfc~V#r5Vq=QTByKV{_jst(-%;8-JgJ_T-
zDv_Mz(tAgCV`;SJ)S*{)OxnZ(B4uMJ%Y$SUx#c{l&O{`x)rVT9$lg}f{|@>mg++A;
z#CLa*#lL@pf1g+mjy;vM;6F09(+}Kqe>}#;fqE~MXp;V?fw=>bI!-#(Ynw~?u07oA
z@#k^p7cFJfk|c}G;ADdOB{wdmb=YG0rX>1zf;EJfIyX<a(J5T_T9U|}E-A~>?Pdtk
z1WBsD)6Ft}eQww)9z<ck;+ZPHM{1q^d7LD?y=!d<da=d*gIX*QaB__5{lh+E3icW&
zLOS*rtfu!S1(H=*DdX=1S8aIWZK4qIaUs6}t95tpP=UEsoW%60ejCVJ!%53uyGxgR
zkcJW?*O$Wh#8<C;ivMO!Bh!`AYKYJ>R~IB=skJKuonbP+OHjM)*!5+TJyW$?*2w5Z
zL<Rl6^1vtHi(gKDN`j;~=ocNRR<%};SJL!%<ylm{@*jZs@#6-k(ZBC1m<bIv5@(P5
z&9B4d^yUork@UJb%bjTsS_eZ&0MvyvBN#2-CL0vcYRMwJCAKP4NVVbP%tbOhQCv)k
z?|`lCimP%=R!*GW_wJTUl{Ze9kEzwgG$E1wne<BMH}Os&FNz9!r>jVkBsA7gwG#|n
zDaTN+puc2bmbZk`rNkwzGAT_y<<yri|M&&SAY)86RAJn6#jFm^7IZAeG0^Uxw^V5-
znhKA2opVSHehP+4g!^ExIHHOBgy|OR?_%ge_BA`aF^ZNQcTePY5)oy_e_a`2U7rsL
zr+n1hrJ%WkC%zXEvSiXu_uSCsn6EIjN8*FJP*A=MZJhoRIULn54KqM^wKj+G%yT)8
zH7ghsVzJYczrSzedZ5pO!wiHBsS2;gUg;>R`!)a5iN2z4wrH^V(YCIhCM-m*TPmVM
zzX(Ezk|;LL3vx+)<Yh!te6aj_U%1C6d<1IfKVz*)xTXL<`5C>8e$D&|cm8?gL%IG#
zWu_B!8YqU@l-$J&5vL$03sDPE-GfZcAIIj0^%lT+&rvT2b$atb)<qazd6E$vqDmvR
z4CfSWwG3N@Zruq)>mN3praAmB9Q$Efr8U`#phKla<+A3D2?|`GIa$D$m{~o_aXW3T
z^7ei@g0TqlT%3##T=)w0rxYJtGZh^h20Nw_migNjBOj;1km?R0T-95}(xp3Y-qWi7
zLzdiyy_M0wS<TdN#URC9v2ek1Vo6YY!uTF0Cp{_bLqo>QB-e*-Uf2ob<UqtX1o?SE
zBVFa*k=w*t?>+vZKmYCRZ?ZvkSCmE`wq1tTDmFMu+!8_Rj3hTbR<(nou{qb4ktBFz
ziJ;zk3_SoHcY~<tq*<Q`m!@Vj`v5&D-9hf@N98s7S+uwlTlxS)RA%SQm}=%Wl$vxy
zSCFbGJcU`RudPeYl%l8TX6(6?Hj4LJ{|;^9XO|h}iIJyIoQs~hxxQ%*LYxUwFl%*Z
zgb?C|$6IbPUj<*{qy=TxAFe9c7v@p9Si^tJ<dRuP&)&Wco@gk!9z_OPgcep%S#Xxd
zek^gQi<2kXRV^8&4mc`?0(Sds>y-wIm+=}$U^<qI#i{o`k8G+G>J`};(qHUP!>ukC
z@3dLwq=vnoU~bRCTQKDn@@jby32RtK<ln#l=oScTOIeyUsUl(<CCL5NTi1O#=aoh3
z38woc0`X(V#h2#J`DyM8S*LIc$D118laF0PpS-`a;8oRP;Y~;<uX=yQs9vx9GdDHz
z-O>CqhInQ7KKyFXXDjeFzGn|HSn3ZFjx_PcIA03&4@lW$b~Gn>!8SSIoA^Ts49g+R
zzmCI0A>cPzg_HGjF0j9UAb|(dlawg2#>nH7DZ$0C^^}toQzJrLWTr@2M>D%xVQ;YA
z38!-Y-sa_*xf!_8=UhzZlfls$p&Z9KphFpV{aXpq-o=Z8MxBq9_UzgwBvI1BZf;dQ
z?N}8<YD@wZm44nG-69xiY)hUXaD?m#O2HfRlh92Cz2pX;AWkEHx`$8Oq6fC@ZV-%S
z)!=*4nSaLQ9_n6>N><HQ@50H=&9`~|e2HXgr37>-YQj?{tNqVo7FP#zC-MuD8u`o9
zpIH<IVvVGV=K1fFi&WHpI%kyiGfWYTL2*p#GGDP>QVqWE!~NZUsE;ns5jckt`Ll40
zQ}G>3GANfIz%N?z1*UVV?<iV~X55dT_9>4$gU0Xcph{`G`Bb<uvqLc>i&0OVo8y9*
z)^ouR1&f@iex^$k9NuTS8+kJsN#ZtZ{aE-?4P~3Jq(>r;d;h}Q{a)~WEZ%?6bILFE
z7K6B4Zp)UfGpRQOB;baM8`%9oUk=7wuixy4B;u{sBN%D&ksPg~BSQF3byn9V%~rX`
zHX1a8(Bm=1rvCXx(Iv8(=ZdXj{^1I{z_X6n?K<!^J7?whZDc%c)QPsq*-h4h?D}nN
ze29eJoobPzA7Xhm5jupiff3;(LQSb3k;i^NO_we~NZ_zQV54ju$&0_AlK6C-LHVf=
z-d(Hmz=<$^iSU?0SDj*G9K~GL(qB6FiQ1F@PIkb52kzzjdtv%vC~UBxw%5Ok{kvBs
zlr_<AL17`h^I9}2YPh{2Q%$fRXgZ>brGUo}y?4ti`>=Zw{&Jv2IyWTYa$cSy{hPl%
zB?h;Aga744OPkX;dB5OG4#pGk^%9>nwMnn^h$fu;66;TJ<cE(pO?*@l(=IZi;0o)J
zgu#+-uvUMyJ07nREq-+p$rmpU^hBm}yk2AatFNr<zX-)Ae(D_vBGeHDhxd`7C=FD}
z4Eb5$-}{7B(0xhlOIWdwIf#X2xs83iAwUiMx8}^fr-Rbjs5<HxbYxGtW%l}5I;Ddy
zn=O~BPEsnuSS&*JX(^f5!>|_<zJ=E#MoH=Pq=j)!^WRGC!gtn*h`S&^(!QV`0<>5w
zj)BJBS;D?k?|@NT8Hj1ScYgj{^q=g?;nIF30&J25%>{jP>_<4?t%Snku5tJ(Dp{(m
zfAV2VEb!a;*@djKA}x%?+MLy#4tQKh{G-31T)Yq%jEH=YPZg|MV<hDf%E&xY3w99K
zh#6FBK7y=xh|N0L_W?&Kk3V^I>YhH`=~ki*sA7ZZaN6JYFN-?UD^L1wTOGWUl>cD?
zS{1=b#e_4E?B(Q{BZya2>WQfPBQ9a7IPyv+%C{8Xp~L=|Jbv=A?J=fAw?(fa6~_*0
zVyt(G;(o{#9MH)EDkp)(!;eibi4RcxGn#SLYz7<-0kt(X^=jNeXLEz{CID7H1Ul<q
zNhVPL$MQ9!2^k<l3wh=9a%X@9Bz7IlE{`B)wK$LAJ9s|G8h`X|x_qbGQHx&9_;6_M
z)ZYqMlDy#GH~_lKKyCrP=dAbja2yd~UDi$j<jM>#gx-x5UdD3ICGNdcd-7=j`8s+?
zMq52u0B0Hx4tjP*V$eRm)lLo`w!)i28+_aYr_6uRr&Y|)7vBXomM$i)FTmSm0=01H
z7@oRiIH~{ft(YZ&vRk2rm#itEZLnjIUwu*?!t5AyI+_;r7M*sQ1_*iCt!!|{QGR+{
z+^-a#RV*L=8piAGGMeYB)1b;Uexxm3VbbPn9tuNMC;c1RkGG`}{7Rsa3E_TJRaSPC
zah~fZ{?qj5&!6Hy2}j>94LE?=a3R%~!E+}+0@quCHXA(2ymTg4*I9OHf>uikO=<Y-
z`Xn6Xe@gd_gxRck{Ro(nH;7Mu;bIm%=PccA@ovWlET3O2xFhW4pJdbzk*B7Hcfg#H
zp7TUa*If(qlu|P-Xb2+p>V5PD1WO2WHoFnqr;2kwKr->u{bYI*B=?Q8;h)KwTH(QB
zL=ZL?JQdX#4v@k-2x>z2LRTJ-X)!>i0P_flK=%1Ed<X<`I0G>+04)o?)sQ=nWt~g~
zT|zZ)Trkw2>GMj#DKO~%MB*3NZtd0@@M><Ten5Bt!p%-A!I*8DBcKliY#2y-0d6)I
zcLAA|&JZj^_4g37(^KCMo0-Wh=6ito`qC|Ln7Q%h=FK1zc;o|;z$Bx$n?eAc&c=Yr
z0?4x(Y}x(;*xrA+c>}%xGG_p@`hg>q2Wj=T|6Z_{E+qeFg<E!nkN|fWVUt4yh>$K=
zR;q)~2X#Jv9<%{vkywee+>L}WkZb7F=NUhhup{hlM}Ow`P_bQS+8jR>qHQUWOv`5m
zcOM`7PK8gw3gEk#_^HL?V`_QN4hWaX&F5^fx-5waLabduFAbGi_ESc~m%6~~N3sUd
zAlZ5&-i~ph$0n~?TCx4!A8E1RFZ`)Nf3~0$-y|+QFQvt!11TxuIzf|1Jds0Sgc3bD
zU4Fh&QTs_|EvId{u6+|kRk;f&SuoxYttMA6TCwL_lr6`-esN~n=o#}8lG*7hyw*`y
ziHAg3!k((Z*Pq2}oMZ1VhQ`uM8&4*JTXmt#N)%eehHG=7P<ge=94^BgOb22y>`K!^
zyQzcWlZ8$ury%uV7Z*0qi7)0s^<vm~-`%kWpk>tI%4vTYRU<3YkMV?iwoF%Y5SOP0
zP5{Z$jxwJ9MivSGlsI-(S5~3N+(Z8i&%GHsrAt9hS)@9iblvKpX!OaZsG4qM{t%bx
zRhZ(ABt$rx<nQU4LdVib7l5!?Qi^nnk)&py%1O^hZN*~fnn~<Q4TnMz5-1=Of`D_s
zNJ+qYZtQ}X%%IQVhk%<g$JE=5h4D;?Xoo@GBuQ7w-8E3}z^m|{<$FB{8Mi~>?Bsd3
zwXt!sDF;u5_BhlT?cOPM*a;twf8ER2vL=b}jA<O`y)srB@D$kjv;;4th_t1wuHU2Z
zVE%;ahj_%&_Ki6wK1X8lb@>CnnAzZ8Yb!YB|5U)BR$1_FW&voefc^qt<TIg3;(73`
z<F3avxb`3Lu68a2N_fd~;{fyP;Dd;JpYp7QqRpQ1Xtuq7b5oC6z>@LAZv6V&Kc<7E
z^hJM*B-sWLke%O_=BmaxQy%EYEOG2JF+Pp3EviuqC6cBY&NHT6Dvf*wt>@ClH5KO}
z$;?GKVIyFgc;>p@JXU@iXXob;Xo5OO{T9}}jOa^Pp!sd*`~DFE{3^^D*<Ydb`ZqVd
zYrLmsA>Ib8G!K@a$;#qxvvQYyxs`JJSl>Ho&b>zJtRZlu!x^3${*8)FwbG5S3(dZ+
ze`_5i3xGmo;L0T|qw-+Uxp%Yy(OZoMKY=J_muA4VbpXS;knF2s!F!R{^AK2wz=~Nv
zaS8PI*}!)fEYz7q$>LUDUFQ-^c^@fFIqO){Qb$Q9JNi>G#j<F5S#b4SRSz3*^AQnK
zFpHtgqS?h`BM((jTg*%QCZ0!^)zX8Gx(AuR5l(yQ4ZDj;MQp<z-$PX+d5hL~7)bd~
zef3Yt!W5Lo(bo|6@!1J3UZmR#s#omy#S3O4X&lOa=j(8T0E6<_Tin9O2)`4x(+fG+
zmL}16_wD0iR2Q3|Fgodp+=*r8!B*Au*_R6x3=I2Q`KVd#4Wp8}LEN_}uM@X|NK*XZ
zYhjST$8yjcyB>xpLk9AC^V2r`FzUPq$nm?c?om&_O;uO(qUp!r?GvyS6L>9mMQwO|
zC?RS;_-m=^yZe4VTibgcpl4Z$uf|C8j%Kw26;4el;4{8NuxslT9wt6%98{3DW8hNi
zP*zs+eo`$#JP%zhp@L_qFv%F>d&Sq!QOM@Gt_pf*2C;465|0H13!vj@vzBxwQUhCL
zQd}nO{+>z;^<1cxF)IRZiy^!uN2$(1*1H{WEyo;cMI9^Vr5R`WY1KgY#pIwD&8nG~
z)EcoiZZsnm9Q(5sVGZy+adEsF-){0Q(2(+LcuTQJnGSfVx1SNfEvP{}B3hWMsk<RH
zvy<k~+x*@-HRjQU>ee=ESfd~$y$_@H3DNN=A^om%A{-gon0OgkiIjp%%oo#oD@tVF
z2;F&ztClir2fM$<^<cF%6yeng5kby34))cS9dy`VLHUkn#hB;AP3@aB|BDkP-9f*i
zT-{xN;{>G9b6H|SXAsa{3%LqhDXeJ<f?M8_E76I6-p-#I!)VyCe1hQA8D~}wTzO%E
z;SeeSNG&HtjFNhU1>hxv@!dmfj3%1X20q8!m1DXo^=ssZ$@{MUZ9xlPo76@$lDF7E
zp7r|F3ScNN?pwD3+WZbYIb=nk_ZRvOZ+`2e*)N{m6N!j&uk0f~<ZZ9g9?(u>uV6OY
zeKrMGh2F^~2Upwekw(|dIXx2a!fdo!ky1kcFb>dCVBTFdfm-*oPva^$?FnyW#R`Mi
zoCd!zXhHK?tLQ~5ZM;=Ipo1$9>>cIfQL`_}G{UYe$960ia;N{~W3_gfyGoc+eobQb
zUn$)<i$-Y4im+V>>9cfm!_4ZpqpS(VKdB;5Uxeq0uV#GL)?6$zPANF7&@O)+)vm=p
z)zJ71?BJ$baRG&Ug8kYT<XH0PFT^Q}LQVFR5a;BaDrl?{eLj{tJ(;#}ijAA?e9Jx|
zH51(r+Yhbl@kO0Xw%V)@Rj4HA@*gjjQ41J0RXBU$MPHWA1qt-xH*;o#YrXKIm~!d7
zm<vTa+El8*DE>7v^Cs{XY+Z4#g*ld%-e{WgRdV^<6)n~0DzPdMw^p;O@%+yyy?Nuq
zLLTP)Y2zbyPXa!L;p9DL{8j>Vk%3_z%j4y!#Llir%JMNlsX*#iav0O^r;wcKU3W{9
zxj#><qBbG6OY`~+bYH)oY^J%Bm<PL&Z+Q{nMT_*ATS&ACPZFJ*_~H!1(XW5-_S#dh
zIbQiXmaGvS3Atf|9u_5ZNk>hk*gkD&3Vipo`-@aT4(mnMH_WAsNVp}pRF8B2p0aey
z%89)6{-e0?DCc_nACFsi202=K#lRwnSm_rA198nQcxx+Z;$eCD^IxL;nv8J6S-9vQ
zSj3D~k7A{K_s<T`I>`QdF972^@b_6L2@IMCgNBPq4ERmo4hL4saD2g&_eqm~!JtkX
zpmS3m%*-Tm-MhS8tvCBmzp|5n@^G7Ui-<*<idxl~OI07mFuKj_RRH9*vPY}r@@(JW
zR^@d^objYz!P?fY6rq6ra|RC056`e|n9>eD8~;GFmv}&?{-j^~`%(aB_Xnw-XDm1~
z+e#t~U!A#`IA^>C>kYa%d82;@wnezRrX+JNx#96K+V>>=?BXoLuPN{gc7gxSwu2xI
z2aRT%uc)HED?|x=M%?`C@`|Sl<eHG@BG0m9OwpiJNKq^Ccg+z7a?wu#W%g)~zZD}z
z9H$`@!~4YF1VSrv{lA_@PFDwr*k=rA))M*_Y}aSPF1*>MOZj>HGxH^g=w*k-s~A=r
zrDDS&g|`D`XYraRp&|Of8rkaMC=K@idCPiiEi#K{M_n)}Ei~#0zhwRMNb`!y?tX#@
zMnpRXBlET+i{i2u8w#8_dU%6Z0i6**_8Ei+)FuG*`@prtqvN|T6@=LkFu7o0`*fdW
zP|kb`_%J>L^CZ;wqm%Hj^fZHZ0k_Ev`3!R;MbepD*btws@14^EtJvd6U+zODM}EVp
zjqyBj`g2kIlj2&<<eeRPt88)TQSYAUY>;6iO4YwK8|~9-3%_Y>Sv-!nUo(mjia?l}
zE-^2fM8BOmktNNbNGio%05J}eSW8O9N5U;(4G53T;?(6$99ixvwEvnOi;@wI7%^P`
zct<N^LXIndFT#0SPC%`ffBQ6iIW4Cj27<mPsq7FSZ4BLk^ZP|#fctbgMwojDm}A8i
z&O8wt=i*eM=Q$5Vb$@5f>@RTipvx$kuksz9ZD&{~bxUE3zSDQoAJLV4w<`e{?>qN9
zL5T0DK?`2$epxQS?b|ZF0pRs~Gp`K1j-P-!)5@}1j~r*j32xPRKb0@L#IuvDp>}vZ
zKD4)KR6cW-sQ3E84{uxv5<%=`K^ztba*8vk8X+Rb_DQegR_6M0<LwC*8wN|<iiCDy
zC%~#S)ufu6s2?ylBM;E$G_=^5Uzhu18Z%p68=aeY#povZz8k$$cwP}@WZJ-O{=DBJ
zz}LW_8Vj3>Z6=p8MPBPTO%a4_{WUM1&dE&{q=ubfCQ-$5a2TOS$4fuVLC#(?Nc9-a
zICA5@&Whu1`|VPus)SJRTg2a9OMKzUs&1eS_Megbape^o@-72;G{5aaGR~o+5;y8h
z!LjqdGRX*6de<UOjZjnz^(I{OKO$zwl*&p%B3G|CfxZ|wK<%N#GsuJv0HHqv%u#QE
z@q4A!ISxU#Z~M!sGUAiiDA08eUxwNM7_@sTX#seT{G$N#G#=6efVlM;grLu`4}AOz
z4g;O(?`Fq9>mI-aTslwXRn2;Q_%PLfY%8$9rrGE#z<hJ*=9JdCHZpn(@&IpMz8P$M
zkaa+hZ$hZGN12U6-zEW<JmB~>D^lZh^cIkPqi+U0K77KM!7R_6JZ~Xi!7JB7&T8Z{
zc2h&SA_j8vPqpO&3u6?!GY3$=ic;=eeYZxaK3;;cujA$0uwPYYL6U;tv4K@JYreAK
z3wLa$viuRw`SS1mbnyWG8BK*`DtzU?t?9qd(MSh0_r5fp=e+=x?Z4kI7XkNbexP&Z
z85sQf?mxFdZK=V8PkUEN@y2N9m%;ryMh+$2=k>BwE;vlHOKbC#)p(R(+b~Weuk#xh
zGe3-y-Xk!l9X!iY&=<e}Vz>wPpFttFAPeAQOS^amAU3j`j)0&y66UOS_vVj0Gta;q
zsw4Oo61a6pHUNA7=7A`(Ix2@ynF0+&k0jiuRo_QwcZ<DL`ole4<-;Ix_puP;*7_H+
zk!~0d*b*4G27Hla#@qRxhJQhd?_t<~iLB3#q<Pydk<hCdY-;LoIq+UnrviNf?S18d
zH*(AO)R+MLy~$z(+E<=NmBBhApzE)a-ln@%1izvg0UQ2R_kz97Bxd~`FzDIahYs-J
zc%39U28RT7iAkK*ig!8S-|rHrC78!J^U$RywhN03+kU6ox(e|iqsu91h~ck;D9Pdw
z_|1-Aw11NUr&;#y?HOv(IVOI>rKLNFW}gYZzjt|k!5jC5ZrD8eXi!D#qvp63#rBb&
zwd(P>*f=pGE~iiwwac_48m!|iUql*GO?Qi1U#u^J%b=Ql;_tH`^DZkhn+0fg&F4rc
z7jH!)Y;V-=ks|_x1wq0wlaPDI(XXo^Ok-zka(Nr`q=bx6iJjWrlj@77zvx0Q;YJ2e
zSk(zP?yLPo_@<4&XDfaUwuEbCX`8R25%U4Hc<n^R$N4a`e78oW(6yxg=(ThJGZVmk
z2}-)@j03Kz8QMC}-3s42!DsUWFHV<WoI1b#_e+ghAomT>h`G$$dZ#TMdEk-Wy}Z4O
zQ=SEru?KjzcaUTi8IAm+_EO>wmBK+vr#SsKF&s|kFgyIoriuG&7=6dELyQq=Yv_md
z(H!KmO`$LK3(k-zm%{}WV$<Jrh|*~xwjW4y@W-&GC{a%s_en3xh)Si;q|HqbKMHpr
zxW|~slZB;XC#2Jr?ROB9WtYRR`&kJ4ebCs?8_%zUEbV)YX}|QLyykAVn0=;B5EVBi
z`v<k$Nn-&)@g8wu{wj6(9X_}E_rIje-bq>;eyZx|>Ss(0N(ikCMJDH5lNZDlurN>L
z{ki)ZYG%i(z}o7j*DQ}9FVE`6<=I(>2XH~hgq=-_uh(xu-h6;0hXi#f1zTllUgUuv
zB<8U(bX3Wxx#apcfH0ABR8Xpse+@ykzb=O~g+{yL0`<21g$r3`B;rKx+v;0k4hZ4{
z)Cu%`pvk)+6GH8<=n6ACN{WHKr$&XCT1N2_;E=Q9FGNPNCgGb6AZOsPqBhHbm#*ha
zM}j-SyQ4d~Q&=01#M}(%)P7M+)FrBog`P(qgkEC1!?K~?`*O`f97sp?54+U%bW#WM
z%)uIV6y>s{iE1lqWWZP|o2NI*20bme5B|g9Os5?IK0Y*jL^QmC7|Lpi#YYqJM~&9#
z;3nfsPxDc?skhBcmG<134i-t6cQkCr7BgiF<P}}VcYh-zDrJ}DUEQ{10{oLOoDqg#
z+sJRWr<s4=dDhdqyXQ!(?IEoEyQL?81@z`jzjR2)iR`YCN3N&wBX8$_3UG4o|GXiT
z0oq~f(ruwJH@tC{vs|<`Lf^h!HT>-{mqR3K<;zxfR#?DoXVifMH`9IjE#S|sp%r~G
zhGGfEkC#?Okk_mV-U3xLWuy3nkx%k&)`nY;?p~!+X7dWqpb<g>3XBijE<&3p%nQ{x
zFCsO?*rzxeX;d2E?<A2NDm0R4qs@`-yH|)=>!on-0EndlHx=5d9C6a41~2`_HUa0V
z|9E+LW4l$@r<+!VWD94t3hE70yOW1^WpiCnwcNo}iMwWNcT59o<pHH(^BfMJ(}Til
zYU$;D*vL;xX05Yd4LMf%rio8vp{rxGOGMR27A}|Ge4)%Q;<wE_HFp=ELHfb=^aPXo
zSVB(37U7oeAAD9h`w8<Z*v#uCe40+5rrX(#iDgtak1e4^2j<Q>if7-LKpyWFHU)_8
zZgbH@bN|5%Cs7|>gnP5(F_J=;rw5!M(k1cfVlS&4C#KLFJf?#U5WV-T@c>YF6?ygG
zzJC18n}9tx+|~Z75UVW!AlYB%w7uVbv;$i`;vk#y^T6wG&xqSQwh%=~M~NM*7LLFa
z716XQ=!$ZTDz_`l$3xmsKB01t1^}OgIUu=7W!HK{a81+#bxOn*5Irr}3N3NFS@7k*
z=kqI67&#5ab#vF%fAaJ0e7wDwxY(Y!Mz{V<s36qQjg%^I(yGwgP19Y$KVt5$=r$eK
z;O1QXmpgnaFlbo81I2FZ^Av(WkKz_E2g!*vsM@XdutjZK^Y^S$eod6I-iH%e%KDmm
z`;khLOa2{7WV#xv_`Bn`BMR41;ZLz8*y5CI-1_GJ1q*fvwD4t~pYSd20-^9TVWdcD
z^2QEpY9}dlMW&I36Mj<!D|#hd=A}9OX7|AgdCKf^Pe=L2(U@Y@4)QW}DwpPRqs8Q6
z=l^C9_k+1V=f0|DQ8k%3d<GuyKp15@L>Z>5Dly#MwGiJyu6c_I^PVcvFgzrtq1g^e
z%Wi?-{R|!DuE461Dgp~tj8wdseS*(|!+QHCb|A0|@|!bz%OQNCcZkhehk4_taIu)4
zU92y<o^O=mxPi!mGOHq0@lynX%(vY6BkZIO*X}&wb6XD_H@Nt0W}&d$i*)KIa^DI*
z5C6&UYlWeP7czQ+>*vlwH<#AJ4uDydyy50#4$)jVU~B8aigEu-;&5g&CXBN_b2IdR
z0BAs$ziSj-0Auj|0J!^rnq|;#doT!SzIs#x61ExkIiqr=o1{1^78{wo`mElnX6Fg&
zlvZ1oFcs0jT6MgR-J$RRH9hqQSj>gT?1JUN3PE8DO!V6iHdZKI7Q7G&xWwg!(;uXd
zXoy+rpivZdFFCCiNyrXh07Ibl96_1`+Ux1>V<zToJb*#cEfpRFAbDY$tX`(1Deq#8
z<vF?z!%B;&7GwEJ?73wxS<Ax37Uli+S;!z6UF;YT+$bK6C;9hC#y<d4+N#%E7ilsX
z@AdfgW!#IlNTMi!<9oNQdIU5dp5u){Ta#V8&VYeHf%Ze>@a1FbWS`@)lx=!@8FfEr
z+?%ZzlwRmrxPW)oU-q4!GhfmzohMebnS%w4-Etmy4Xs(Jrq(0Vn3%{G5s7&y=!NI<
z%e+ElV<Nh^7tL|c*<qE-cT=}_2~OGi3#iR&YZDNm(fp|dcH~sWRZ=2%+!tJ%ZZ?gU
z4ISQS&%4qlY9MqZ)62$9vu3>km2k%zRl^>lQLjnwMk4{=;Wqud-IA-_`ZrnQn{4Zw
zOzk50*`(}<HFszo;;x+z{6Z4!bXuA!`4{hcp-OvnbcP<j+0-S+h_N76M&ab*GQY)Y
zs%SqG)tqEX;NmH<8K9+vAdI_&AK}>_=qIY{A3xCX^YOJ)(kv!!!hnzy5{Qdv1S<T1
z&d!xV{F!x-v=91zyXdsYEC+v=`7HX%Ftx+E{vBomr&E3_5N%}G3&6*75S%bnIh4tM
z#UxGEN0^RbC(d`yXdIF)8H7c3)nmwLUm!8(v_yD>juQS>#suOmOqt9dc=(Wjbsa0V
zm<kwuOxoXK`v#Ihaeu}+KEqRsz`%M%F^O&lkSTp_KP@?}2m+||6FufQD?i1^G|Y9#
z)KR65rAx)_<XiU$Yd0O_33n(=%hSg-&yl}B+^8=to577rS4oDB;O4{HM~{ElJ$x)%
z>Z|F5mU%?=Gy|CfG<<z(_fcvQQHF$`^C%i|8!50}gun(<Er_uYI)z-X6rIwRv$!5@
zIol+rJ{LnxhIK-(V73`6>LRUL8wL&IEa8xB063=amFU-E8xJk&WIP_AMEi+8|Af+B
zLQm1Gj4iIhG>+&_f)^T(I1<>xoRmMqj(`9o{V5NT>bP*)U#8uF7+FA&dCgog`ZXXY
zav!xVy^dd_Ig$&`(*`lBMK(Dn4h^f;@YIeb(f2UE0Wu332Pm6Mc2^+0F76sod0@|U
zqj7F)Aep;@=7ixxgO3Sy+R#bRY~i20eqtJqg(A^Tg<C-H3e4*o><x&V^-zflcGENw
zD0H4MppiQ0D>3vziyI$h4CUhvR{n-5fIT5>+Fa=8$eEYW^T;LTE{X*+NSQ?kxzi~T
z%2|;DO_V4;BBPtNN1CjV1!9@5(hTNVI&*-RteP*a5E1bJ`GBpIXBJ-C2cZ#J0+5tu
z;D2v)m3(HjeiDxLiNu7MG%X%Ufy=ce8#yXy%u#SfGT{^W3F4>AYa8cm6vJ`H`K`Mc
zSD2*P7xyfB<#!e(T{TO@-7A|4udLbc`0|FMA9=Vqjq;KM!I4AMkq{%=(0l-=wM~x%
zr$Iu#knt$WGUhqfECNicEXsjKOjDHlJCLh0DWO^=W=4+CWwc>dSwVxyND(bLQD4LC
z1k@-38bL}wx3yq>(g?J+B49*-J1C@P?h#SpjHs+@Mf6jY5l$9eK|w{8U^*dr{b&-(
z6WVF;vrLG1tBzkHnq!M-;J+coC{Y1eIz~{=W^o?&8XbEiCvZfPDE#iqlPHf0+lQcz
zOI>f(Eu|Lz@^n{t;_9gIfNbgo6}xWZ8d^E?hrdM)g<q(6mVECkxb=V+19e!Os6<$k
zF#{Kvr=nK1FY0^WXpHm-lb-`R(J<I}+IiZv)JF9M{`bTB=0`;zALt3DRuL71cX{7A
zmwGiL4#t>uylgSIl_`x6BVk@_g7P;J(y)CRz&u%+!SjoGpT^CK#R#f)wmD~OrTTA)
zB3Vk)744>I<hVjt)AjKpd)7B+Bt8|*tUsZB(K276m8&QEXQ+iUx-rlq8`nAxz9r7`
zEdU|2>3DFv5|2Q*i}CEI&srj{3J|KAEaDn!LR2+5CX<WSw9bsyQUz7pbTcupq8w2R
zJbO97`YEF7&^*1+Htssd<AHf@LlG?kutDZ#E_AL9M~z`TS{;TrN{s1Z!G$InXicqh
z*D6a3STPK?E+SG02a~L&(CW8T!va2k&3l!x{0S9#`waa=b<xo5d>NxXA}d$b84z1v
zc`9Ubo{Y5R9CreV5aKU@V9=46+*R;O^j6*c1%i}Se=NbbF`DZ@Yngnj)E&qA$=2dg
z0J|DAjFgP(4(>=NA6<|P1HCXU!3n3XxPVc2fyb(Ag2Djs8}#GMXo=oYZE$Q@Cr(1w
zwxbX@kTG8f1!G-#I62Z7Z!;qJb!!azVlg*6gXuH6ArhzkDqO4uW9^1`BLMKCejhd=
z3}Jw}uYn#aTf8cHzDoRpFJ^nH(z)IsE9Cz&W&1tNSlDAQN@SsN$x>fwnY+?-4Txjg
zFRZKBoITu@n}%sn^!_Z)2i(Xu3!C@0LlM7<(b_wVEekL1G<X!=lmVa)@U{EI;=2WM
z*eXy+&9+(Yc`qA&YbCdRk7TG=vb)()gD&(N_xtjtjy*2OUTeG?lsW4uYA^)J-Mnq*
zyl}-dwk48P?ElKbAV|+>Q~0ojY@q3CF~=nOu-XE$1Q9f2+Gk-;zsa7un-)dj&3b7#
z1Rbt?!$!=<)yW;47=x{+<RP8dQ^hIj7k>-ZoVhnj(L~?jeSYC3EX0S8%}rP-Qiw_y
z>pygNP2ZwkT=~pV5zEk9bELLenC3fK*qz_>930n!wH0QS#l;XRAZl`6YG(gu8<eZO
z$W&Y9tJG9>f7{ckLT3L^fg^1(Oex*Kn(nh1l$s2E0Mo695uJ1;8!2GdStZ$%Cv4BS
zQLxdX*K?Vs*0f1{2)rd~@w@CYnGAZOiLnaA!~kSJ$?@`F!2DQ^j=Pv*fh@2sqd@PK
zVZ*T`ENo68g^dz5(JWh%oT)<pFE*^w;Y#@N)uJ}9l2IGdEcDQ{Zk47PyR=D1F$cpt
z=vdlvS%y4Y^E?4<`?|$&ud0~rOj8jN)|Rn6>77Ea6|gCm&S`7Ic)KxMc=}4-H0QE_
zKdjkRnU6kvG%ke&%vSg<x=`zN!<{^+KJ&`cTl=n4wMH*<sgz}rKYdP;pZ(2LE<cOU
z+g>$%+u3w?!c1f6yaYJ^DNkb(doP|ta71D!&KWMdu{kHLqG%_j?HoeXmh%rYn9xnr
z>qJZ(Rovu3Z06Ml+q+SI(dy+}53~tY%d7U$;1BMBkAk}iU01%Kg_6`&rSvpqx7=AG
zs-vgYq~DLbRIJiffQcx|gr92BXD)VCF7|vZ9ujcqd#|;bXCBt>u9xB9a~$0BF?-!i
z4YZAhw^47ZO;)unQkuO1ow2J=taG}|0yy0cS0x0s%hk7150whL+>?0?eNVoSrEk{a
zPPK~nO3A}&+bmeMjdERY)nPB-|Asec$M$fGFI+`jS)40O%)Jl&*+yZ@h-sWgdGO}G
zc=O9T-#w(Oo$=u-?SDRZym@UkQ*1LDnK}h)!(wTR;?nx92J2(e`&%Pb{>ym9|4{%0
zo04h7L!SGm`lNt8|3Rz7k&!B$5&$Bza(p1h@nArN!~ZYh+kc>j<S&8uw|y^o9hG?S
zX?tSQXJ@dGotxl!ejTxKQ(&-yipQ}rREjOI6=VtDn*c%L>BuJTNjFcFd-1sfgSs#p
zS|ixT5e`c6XV9O2NUqT|O5P;;{_#4DDWs8Dp#Tv|StY`-&BT@|GSKo2vwte!TzVor
zaVge)&2JYy7oIF~FbG%j+*TSkLz<5x^@>}R3<25JhmT*B7tP0a=5hPAE-a{0L-EB?
z+M|$BOYRxs=^#_rXC0?+?)40Uhql4N!+y(6Agy+50p+eY4#z~ejO^YF%jHz};YGzq
z`ha&3L)0}cT?WFo65htX<YYUjw$(N5coDZyCC+rJEYYR0k_DILD?=@=|DZb&Z5H@&
z^HDh!SaZ1f*e*b}T}~EsGi4I9@8EhI1437Ewy)@GaY|ER5x_(O@l+?TU_XYY)Y8W}
z%I7myl`8mntv`=~pLz3QHHsA){JALxdW2VP#-FY?npK1mL_L1#$Ir?{N>)4b4dw@N
zhF4>n<_`#?JTXF$>wxYOMM1s(fN5IqVa=MVFFTrHkfdccD5cX2%`a%zatu_n%u~K`
zY7xS)EK&95W7FQIWUPSKje^N*e##qpxP1~Fr%5+L2Lk0mYwhR;3P=%-5jHGHOShbb
zfxH=;?MESH2QQNm$M*?dgi#Pulr4Zr?ndkQBSpdG46tCOCt7zA;TS{sCZc;84+Jsd
z>v<ie>^iB?R*nsC2qk!-)+5KP5m0<zJQ5zg(4=NC{pPeoBr97k3hysn)S2TdoHkQU
zk5yL}rB+8bS;WZAs!(l&oMuj(i;zoZse5zjX<_SRxl!T{K6LCd=ljGJT;O~kxw<P%
zC}+IizLQ+<gBf~O|LDp}1hSgay>CCLe*AT&=S5r4JpOs}NNgo!WovqtoyS+J*xKXA
z2yFh=G^~eon0b(>O<5cdadX;t9F0h!O#b^@(vW@w)|!IV;xRYMB0i<_n67m>Cys>j
z97Q>Wkxt!3889Tp*Lj3u66g2IFalO5^{OeqK?Z$EFfs>-@vUyb=iR}iM=8WOCN2pu
zY$=)K@E-tmaypK>9L+(Xu%$*%{7;bPWJuKUsSJ-(-dGN<=-fdODCeA&td7!aF9eze
z`Kl2|ZT6kN6$2WNu8G4FN6K!<asALD{OmYpCMv<%a7bRqv0RTi<CjL<Yuc0f`N$%7
zP#pRo%0ZeB4ieBOL211pu}s`b(3Li$ppE<zw${a^Gv>BJG)9AA{-@U{)!P27btSsP
zaVJihyzJy%S)+hP*qN{x*hV?LsB}5-pEC(uwT8;$e+|<d+)^Gn#CLRq?xh?y6b~ak
zSNuOrse{3Z?87O}kho@@&M3O>bXYg;sG*vGY1-hx0BGsAbh;rv3+U5EcaXJ$Z^IPh
zFTefv^ELi*RcC0?*09yia~|rO64@Fpe2w;{DP7nHrUR@tts>eJbVI`YZ*;BN?ZRdn
z<($VwdwyE>Sxrd__3U#bpn#=bMI+h(w9~F*baF*%qc|9R9VhUPk_@{B91}5ZVc7F;
zvG|IlQ!Ylbqq>j+fo@Mgm`FJ=-z0_7OsU*TXx_ZTQ-fXy^{{t^XzbNDgZj4m9h83N
zSr@&xq;zGKuYZ!ff-@Uzr_uKzhL9GghGALIWCvHX_%<3{9kY(5=UtMF@8D=>w=@@@
z#<6BzP9J)_#0ezRAQtk0Rt6O24{Z2dN{aK&@%GsdPg^8ExOdu<;h0B0AH1FS2gk?T
zC))?7l_1k7>@5Ov2DoX9^nbNLMTx~`boA5q$>HANyVK70$!_QSZFnU86?3|kEQfY#
zp0*m^o+;gX3YIVrBrE|!XNt<bPYEWC<?>A|!QmI=?5?&ce<E3gx{9Y|iKG|IiDAp7
z5Bew$!(6gSQ9zVr0%A{cN<}cnt!<B|&D>!-mxy7GT0_R)GRJ}%4)-RZ+!S*nW3r;u
zT|VPE()vt@upsXw)oMRt&;B$T!uiq*CZjwa;8hiNj%J?E`T*r{5sC;Lp+7(7u+qTJ
zBg~AW{={UKY*M>SlFvG_Z3sd^$2@N++I+$ZOxvndwfHH9ia81fOR@#B*^_<zBf>Co
zFGUX6VUZjR9UP#P!ciU$4YW9LG|sgrtEL7NTIBeO^+IrV(=C;^)RsYgifk|`+Q%R-
ziwwCyG7bs5)gmyj9~~YQq)eF=NOT!lWMt2W&wANr@R)!Ik-~|KLZG#88xkaJMAIe*
z*r;Ar<Oxk8lHOzwyF%S-?AgkEt0i3v$RO;Z<O-)g{nVf&GXYZQIPQMNZzf|iXbTyH
zvR)Ep=0+k6&M;{#3v=R%%)wVcz{7E_BKprKXzRmS>*NBM&jcfBldf2MW%XIP0YSTe
zYZ6egl0$n`a^JdpvuyAB*FlD`oTjDzn7kDZ6SD~#b+WB%gD&O>R5YL%i5VpJ&1rZq
z!wgZ>FqU*g*cPYrZSyNL34GZG_P3+3(r9|a$NNe83Y(e^LEvuqf{rnc(}x<HJ8(o5
z8`owCRO(<*;I1+L=jVg{M#Yh%)lxq>oa{g@++te*Fq*FAMQgc9ib^dN6}A-BJSgOB
zvL3q`n)rnh{gj;33QQ^{ZZX9sQ?#*2!~1y5RQ596NMrcg4lRN3W@?dhR2_-+gfZFi
zXL`Gnkxy|CK9MOyoROn3`wi`ZHhpGi+7j*HJdJ?>E~CLXApXc!et`+PrO7f#VSdyB
zoHD3C04G_+{2f3n5jmVtCpw_k3V5I^FG*HI=?j_QNXv8Y-n|g>OpcBJnZzk(;lm7v
zHoY}CU<lJm1j(3H+1Dk(^Op09H5Mlc-R=l>vz7U-A{`wk^^wFQlmb>|MxhL#_2Kii
zwR*XUz{aXh4QMA+K@8Iowy~m8{BUX@hTUM`El_t(4qiToUhIBMEFen_Fr8aO%eBfB
z?XP8fT7m&B1!|np=|fSFS$NwDo)UuiuIR(s$EVta!^^<*=I?iv^kbwK3z<nC#^_9B
z6K5f96q|Yy4A}v4z(lP&6;0wM$fWcKQz)22>28BC`%FQr5obog9l)D7NjW{_I2o@@
z#;ZB#1|V&<1I=}W+puUvKk-V2#Km!%T%p}dkA@&pn;<;Ta^;!Twp^9?HSbkmTRluv
zbgOUU^kGcIQB%&;dOB=U8OyUFPU$KJ7DCx_k{$-)((@R(e1^LS`hIhZmqj_JA~qAl
zkMRs?1-DoOfTC%g6h%A{WIH{hb6ZI$>#v2DQL>`8v<{q;l+s<LW>G{E!?nKUwDy{9
zp{Ilrex9n)J;emE6W$d(PNiH>Y7b5ZYTE%bmTGMgMf+li16y<x(k4ux17*wdQ((KN
z9cQ+hGtY(CU*3dWGzRrh3LTC^WA4<5m(0H`C#Z*-yzpFeUCNae-55di$j#}b8e=wH
z&so-7WtRAGF66@b08X5IO=8>P@8H%M1hWnJGc5NOs9CoTMa^t%Cw2O*;rDL%oDT^_
zkG!#??2TO^)4#}@_lB<0@1ydLPHhd5?&iI+b7e$xFF1#|I2F_b$dU_qe=jbB{&v`u
zPa@Tu$=ygZ_K5~ly<zTrCphy~&|_&8m#25;JYNrGQ|GlHhbVDhb*}cy?fTk}Rg-i{
zMjj{Qs%}J%t&XS`_pL(kmg<d^y{<4`ZoQ+sS2VO%snv9OA*!`Pq>&#zH&d+-deT?h
zP5LcDyUNmIB(IjJ1(%_gx#<o`YBJ=>XOJ^-pHrrI%>6PLUxp))uhO_1bT327+lRhz
zGSsHzWg%#nlVLboL0df)lOaX4VWt9ud}oAOFO97(x1gAU%0y@6ciTi3yx(iF#4f^d
zj2?L+^HT5dBO0heR*{joNh)7iSt$z4-OB_Wb4C33L}k*zKxBnU{E|$h+7ZdH6wQDi
zNroG|LS^CoHA~C@S|!2BC;dLD1fFawNjOC#DHWncbUxQYIyEhmgC(b@Z@y9DF<A$3
zU^H;a3=_$aTk;tX5Cn3AI7y6l9ePRsN-yI+2z`81X|NB&p>sW9k*gH688D|hO}ksJ
zaaZMMuv`#{5G-G7V>l?*ZmBs*9zs*sD`?Q|gi5p7B<(it%c8*|^^*jK?`sP!p?0$c
zRrf?}MD_LaFs;+QH(kJUZ2<t+hUY;$IHlyI!gOUPrjcdQAg$3g*j!BDZ`d<TY-GfB
zv+|pIWhHj&xXNzr^)jB22Bh^%@l+s)3<M1b0C=P;xvi|AmfWl|WwToCf;P!wc{6jC
zWX!spw$utJrI|zxLmQgRTWWJL5z6LMWNXb!l6P1jVpDYDTA9jXUA7=luC1YIrhG&q
z6n5y1S$!(=ZW1laq6mZa68TmQhHA5^@^7jtT>C(N;4ldq4OOzI`g=h7k9GDDy@m=5
z^!<H2!i&0=7T5fNu-OVbe2Vv6=`A_ga9O-u3S_(s)Chx{;Xqhnmlmasxy{7(g4u*K
zK11x)1Dcwo7)hp+f}y{#&XSl2TRgN~6+2V>pUN|*mpeka7w-D@)kTDLHDT%dR)bdH
zc(8l%DlWS~*IfHslLBW7_!1JBuQ%0t;T{`>_<?3+jte!mqw{~Dpi~@d1E^xFWCZgL
z-s)gl-i!#7LdX?sCm!{aMpI=GbzJCG2PlNejZm0n6SP*rj2-I4QkXD!Jw-At*QaVx
zI)wml5(*F4v@=LVH#*Hl`DInv0F|r1JvdyK&5}$v6;Th+H6?Df7ebGOh{1PAC=I`I
z*XZpKz3SAavS(w0yBzP2LYgQ27UM<q4ce40cSl#oQxb2okA3G2_S`6o%Gw=~C`fWk
zBF1JuU9Lkm7)r+|I#OVVZ4*{`K;f{KB-TDRZ(+K>kv1NSrvhHs%NJx<Wv4wks94nP
zPX;71qV3uwOH_vS3dyR(S;cnxNFzK=iGTu6PojsdcnCC)c@v#bOp^tRYoc0{bWkEL
zgBTg-fTeRo;@4=8lBJ%V1f?>MA#wVG&%nRy;UEMuFcT0u!CBc<=N+6px-py@VJ_DI
zROgIj5ICoSu;d1Z$HMMg6tmMOY^h4HBw<8E8B`2QCI6+;f7Jxm#M6j^oH$LsKMUnM
zAXkrwG8uzPYC1tf3rv@tOH_~kjk$s&w&;eED{Npn-nSVCgXUC$oE_N;`Y=7#fm(VR
z&e>Xin{S9s5L8NT1@eL|(R0X476j9<DrY+1bHXmzVO{G8E)u%8QR`}zbfB98QY&fc
zsfNbLS?A)+49-c_yXLI7*f$Y)VlMb5=NaCXk1VR>5w+*py;TdL{64esAZCt@{BsX<
z!ndf8kI+@q!ZY2}i}_<+87%N&n*cPPwx5dRv*89%cS)+!R*Nj|;W^rEg9_7YJpJ(0
za%!M=e+yRDD`f%x7}l!M{eZ2%Ti;w+|F~GTD;@7=C<E&%OL*xp98euGpoLK{B9Hj4
z!Ur{>gI3SJ)oq&Ivkisp?uShr-p8_c@Vp{1q50ggOl2E-u`Z%~SKKtePf{E}`4UY#
zZHovIJx!FOVbY6U<M~0}$fy~XbZbH`EfLRPr7}EJH__fTQ|ZslORU3ZtReK3Ct;Gt
z7pP-Ms3}EgngV+&S2_+!dm$(1z>05mwhGk9<Zz}b(*YqQWU|9+=hzQ*5$dx#)A-=Z
z_L(G#hw&3W)!<8GW9hrA57^iUkyeZzy|?7Lft5>%M>e?nQ0FMjQUKof*602%!CP6b
zr0wiAE((syUvwTyz6>=HdDbSziOz+M=A3Cn@wOFjVR1kCWoIyRy0h6Bjj}oYJfJWs
zY|Vj+hEm*E#evSo@3Y`i32sjv0EW4Xt9zn(xhLkJCcH{=i^K7KM$9Mc>~mk+N_FRW
zLWr}AK6~h#X^JBq))Xf(h>o*t98-)6x$tq=aomkalvwFY<?@~-JE1Crp8H$|-LJ<~
zVu$7fo)ZJRxz$P<tGRj212J#Tk~#f))@!w5p(x8$Qm20NJ-AEU{GMnpTB~kYhGu~C
zL2|CdP@RHR0*_%J-6*~iHy{ndVjV0YvdFNi7mQ1qU=mp={gV0PpfD3W-qy{DSdD#O
z(Xkj5cWuXFGGBt{B^C~bHwU;6q+QY=n+|Ntih}T=2@}6lmCrlKZQfdPsL}ULr~O=<
z&2YD1R}(lW*^%4#D7qeI7g%a`Cz+teMuyQ%ysSX=EtSg&sdA^pEe!o{LC3J|u$Jru
za~z>XTT2YCK;dZRJfRliW*B8zcoDTC^~;^--1w&;U;(kkGjbsbL49W^sx-d6D2P})
zO!ZC?|C^pA;L4%34<Bn4FO^thO`us$I~4DZNTT}A;uKeieE&D4rpXu$geJ}7ABL8I
z6wG=Ot$0h!hSZO>`;FT|h@}w}242oq^*J?#6DnptFKbmW=K}dv+3REQ%xfk0d=*Ns
zM(mg2o4Wrh&gl?Sk$0NcOYXVkp7-OPbMA#X`6nfFLi1<C>!^j7BdkTVx`S+sH9*um
zc43j=anXuzWbhrdr%JIiyUMy`K$0|!mb4r?Nz%hMXjQaJN~Psl%{2Ef%rOe*m{!e<
z><JKitgXaEn^fnWEr_HgvF>KshqdF(`r2C1Znp)H+=li58_;eNXP2PXr7-fV2y4WJ
z_;r6W7~KBZ>L2tZ926Dm9!<lBHW5|oUY6=bAivw1dT_G!kM76fya7}BPChiLfeO(=
zrK#<t72m|GcuzLbQouNeO>j_^#EznFHbUJNqe3r<VX_jf%&IC=0a^F6GQ;V#P$sgy
zmEKG_GoULujM-8y9_?*$9yq2qR?42y9M{cbyEdVd3#Tjtx66meR!;YEMOl<5!JBl#
z7KbiHA;7@8fGImMhnTh54ABmPZJC+M$G~tXhL);Yvj4;<+_|5OT|&9gOh!5^PDK`A
zV2Xyr=66%>0$rQvLPwXaZo4k;XoxOmx~lM<=R|O1#V@{dDiGN4H7m$;Tg*|_!E<$s
z;}o(87YGy7ZZ)2^;Qwtt)ktQVK*z(5@+4{0S61r5ckC58<#Lr~4*#~?C7Je#8MYeh
zl*Zl5B<@nU+_+up^IiN$5n3`N%b&9;E=81{KxRz;!8vCOl6^VJn@nFS3l(R$u!=C1
zW+%f|?M?@mzSA+c9{mBD!A45f$=p1piZh(qE-z>nf_-uwVIHgit)Etms<IO4_@#?D
zl)~p^lU70MT-Q_A|II98HHb!H&fN_DgMR!CI*;Xs4gsL_k10ECPcU8sy5u}fg1XGB
zZtWw2LC${K4JwT<F7tqf!nr#pY1A&O#BLk+d5e@)?HYS27L`M7nHz}L7GBDv$<$ln
zby8TZv9^3$H~PL(_F2os<DwJ{?LU0h$;Qfh_^e@Dd=|TLD|Wz>rtRfWMA@b@L@l%E
zj7#pUwYXnCE+hQUJ1Q0K9_1BB82}H;>r{okf(wG7c}Y`2E}&Fr+Z2R%%F;I3g;fP&
z(pfRdA{APP###1}fb$$ilZTdPTpCHTh7j3IBWt?5ZIW>kpbY;gxW4%WU1k{8`SLKw
z$5=}@ZlhLEPwQ?*4?9_k&TiW1t495HcaUVtZ^f}V=r7&0hH9mw-mV3@f(WMENmb<m
zDFrXv#iAtLY_m|6rUZmXVwDbQmEY6X<y5IZ<jYMyn+p7yQ#MiV0kk`yoao&talJ|M
zw^Z^7Iwqpg26(CExolHV!S!A-5DInWAU}3I!IO*Yc9)%LsGy4bq$-E5_m38ZtlEjY
z$li?$wXRbu&Z+1QX$xnZ^@Lm|qZCzN<BoEpqC8ttsT0NEiE>@$Qvh!xI9oraHB;Wb
zxyodY*MI0hdW6oyp^?f2HeP{TM-n9&>hd*LacHtnM7cfCrb-Ys8L{+k6{oWUeJdmY
z?f`Y>FqZOpdMLVX9+tY5b1uxS0fe`dQRUjWUMW{98=<|J4!0Jju<9x}cpYd$9Lh@X
zvX=<-I12pg?MxfY9z%n2DqO3tg4#`otVh~oe9Mz&9$106BBw5Ee^JgMPPi~GN!#bJ
z3iBBi)pWEET};Yo8-8MFU#z9p&IPsS#^u?L9{AFl@MO8PH7py5XQr89)OzfJSzo#c
zYSiD-35(JhD`|z~=~KNqVe#w~z`TYaT(_8Jnw1D~mUisq<Xx`l{Z>@UFj|XfOujlt
z`RsMoOR5)mo^{Pc)6)D%C1cSGE9tC;q)$*T8<GUt!PE>rGackrbvrx4q(nr}9^9Nt
z)pcEWWCS@V<+#Wyq*`{({4_l{;*%=FP1%t$$!jpup&KfCh0P&ZrBLLGr(@C*o#e@?
zXCn?^B@#89Vm4(0@uBdQ4lyjgDbI^tCWjGhqdmJ`)o#j2p^GERH{}M6uqv#Re6#Qb
zU-MrW#}i2ihZ_$0q#$uM+eY}4!?q=nh24-`oweB}XqeMkpn)tWU|2XBPC)94!Yo#Y
zxRSfj+(>{dYj3bA?ypZoyYGDu`n8)$($gkf7j@7kuD=s?qR-ip8c+ZAbg`oyS(5Z@
zrSMkJTEWwD7ei~bRxZGqa>BSrr*$C%HzIQzRO}q9ou8|~?G*{!MzdnujCb5t@!6Dt
zR{vF;DTnk~M@sL*QytXz^kZ?f5(B7Vek_>riEmlznILM@Aj-5I_f$*W?pL)uj$UUn
zkD9tDl;hB=LQ@{gi<K#rF{Qu_)#TMBK^uQG>X!E!)j$x<g;NrZu;7*0#mU}O55B9F
z2aotMhV@o(f^Oo&NX+?Wulwl${mEH=SiS|_%^U4!*fY-EeuhG)i)7I2xJeD2EQd;g
z3+xPsR057!d&?ZguEJdytsflXc3cJ1W}jB`T1}<;+fqJ%03W&iLDHKHqLqt5avo~0
zd=<d35)3h|GKOblI{na)zEJiP3GIa@HF}$dmhz!*OLf{DOyuQuLZhf5%0Srfbk*Px
zIVwRgKT{dF3m0AupC{^+_o6aLczI%|#IlMdEz333HyS4GP6vj`=Gv05pC<wHFS;8u
z3AX4O*kX^4L@J>DLAU+ERtSTY&gdxoL?d-gry_fFNMnde!a|)l&^~5Crb>LL^|B7J
zkA2QU1nd<AdR`DUX_0E!-xk|o@-oiES?F{2>}yYIPgKA^x{ewbQ8WVV0&lrJPkOhS
z4wY@fTFo}VC_D@rdS(@+5!9vgrd31D0?-P)0&127DW9Tv!@o>EYrwK}Ab=eq$E3CG
z;MvgW1m6Xi!x{c#12*6cRk|Qqm8FaHe+5s;w1CS1M@vOVt>9O4)*BnOwB|laO4WQu
z2U;6`mDG-HtIK?Njd=pLC0s@Tk38!!w5w^B;OcP=e@C-eyRDMb@ke-<P4^Y&Q8Dbx
zOA|mF3N@r!U@SIrsgB%n#oU|t20wA!J=S>}F#kO6#7J?)MlTsX<rMYTO)C|jil-Dt
zse-H{j(`F%0y8}4q~#c2fH$MabCqMarPsAJA}UFqZJYbB{w>R)W9whPdP>Y&#m)<n
zZGTrgK+K?+t{!7Hcp~!hwP++ZVt$IwDXE2(rmh!fpw!%AvCJrB`zWa~gDXEhhA1dE
z@erfwLE7u)I#Lg3!@=F!kHe00XX%BkbDWlg;j7V!r)|>D(K?sQv}#PcLy%iSm733o
z#*3R-P%sT4DGegApV?#~&hi`)iB?S;VT^!p5d+^=p#bPC9$}}M#8aC43(HNREKrLX
zoEJsl@i@m3#}wYkl)Y|W64}|w;4KouLO#}C&=54s!tT|f3HRE+Ca%ui!6Z;{kmpEy
z11_?M&5lDtz2hFP1<o#>e-A6<kgADe>9gbkLbA(XFbhS-ainNESQ*6UCZJT$_9>cz
zivhiu?3xmVh-tiTA_h_kC#+LQ7R8U$0*=LW8u4)X2ATbgw0evgT4`wLi*!lFBWPXl
zdp8i6BZ}FOgX>G^!4*$P7~s-#Sw0!ZJwYkPykwJ$3)BfhE-TsR3^w{wBeN2@0wtxu
zoMc_IIG==a7xSom@+VE4Q#oag^Q<wqyc4I?Mjzs4cjJ^MPstpdQv26_d0wfyF5#9{
zXjqtA3NN8sGM4rKZkAqbZFzB!9Al#qsmV}!1*vry=Q>F`=3nAon2sq%E6$B~lVTe~
ze2TY2S)%T<d9SG0K^f=YZLX^V`on;WyDGf3bns!^w{{mM4ZzFs(6rN6V#tT%D08CK
zscsPI`keE%8yVsV&oeBMqiCu>Nl8oO+_QMyhxu0}MhrPxX2(GeMCG8?m>9xbsM&m<
zQO(^a-R^{M@vbAyU545iYNaUn^R%<@CpGaeaT-ctw<*<I{bRAnpQv|9IA`Tg<7rI+
zU6^6bPW4F1Xh0tcBr+GZ66&cushq-snvz@^m^|*R>Q%_<#p*v;wUK9LXU5_=O@m#S
zRDF~v9`XOxy~>PSm$7;(jvD7!gy>ozM?Xv7w}U?2wCZb1vywX#&$q$Cu4B?c$4X9f
z&e@sl>ZIs{j&?VREkqv9hj3^YVD>uFw=nRiS*uzxBGgA&F9Z4axLW3#?3+xj%i^n1
z%#d^6RVYIIJ!1dd@fQ<oHeOB^T#3r@ZkN%R7vm0^Z2)&c@DxO<IUXkBb52}Ac|ABY
zYq>>3of0{BnpP3aBTeo|)k5Ma7Aql1QXWy1>a{;D|9$a)?bY_`-;cwaAEFQ>=*Q_}
zjsI2scWv$2GxHmtudi*aum35y`4R}2pm7tr|AVgo#;ah6BKy|*tLJ}tvGHR4uWRiW
z8_(CD{bjiw{|Nuk#?%?a=bf8Dc)qgUUTd$d;<Ht9Sy_Fs{r~FK3;gf;s~2nbfAyYU
zf3ddya_!~X#@Z{`|M17FKLszo<o+MW;b2<3S?`zp|L**M<7JWmKU?zuFT(#f9RB}&
zZS6&SZOQtV{Ga*1QVH7Q+xzYRmoJ}J@qdsuHiZAbc=75voD=J>)}L?uDOmfG`~MHh
z|DObJlkqKw@HM*4U}J6lSrEJl(@~aV_JcGyP5SwDl77xw!G7Lr*J|RXdzwrz!1pcQ
zCVh|5B3O`Z!k$NRYpy*oDUo;b&v-BhgX78hAnpQ`{kR*AFx%)=JJ<liquk;_7lxxh
zIo_wN#%OrK!1XjfpX4f4Jrx6gLIpirWI{&;Gdag_4$?Z&XE4vlo2#os?zx?$7pnkr
z6*^mmdDLp;r#rx$$>M$;<tY|V$b#Lonmi)^UF|ze+0)-0o+_POs=M;_V3h_Qr0DKt
zm-{$8J=i|>D}s+Q>V|wLobt1sLDHo=9k*I{*z1{C4j5DW=hMSe>oW=-+2YQvawJv-
z0V#=z?#EQ?gbX{DGhWtqy+>t))wR;40S>JpUz=i~(#M~%6UTXuu<?Okqw9!#Ssr`F
zjiE`gy)|yYSSaQB3aQ#0oT>mxJ=*DQ6kP3Xm?u9U?4Od8mcl0tEYEK{W4k1LE1008
zl#{#IsSA4%<vT|QCd7}Ld+uzzXYD+Z0<H9Mp)dPS&Sru}v#t7M6eGNPN%iHsfY!6;
zQM=Y3nH50X<${lmIz6i+r42*v9!v|_v`V{TbU=Lmq5iLLvR||AWi$-;1>0orQxwkY
z^pUKK_4YrKSh>T>YL$V+El}59NwgsfwVRjrpQZf&2bce!|MkWCi&snee<}Yf`5*m+
z?<M=sA^)$v+*l|1|HZ49FP^_d`Tym!jb}^w|F<ar|9-@O7T`g8QxO%jgm@N<(gY*A
zyOXqo^{gdZw=LT%0f?mv^BBIvr|=*15Wol&1@KF=-sSnfJpY&WzvcN~asEdalzsm8
z-ur)={cr8%Gtd6_@&$+l%k%&1od3`NF!sOc20(t>ZmV}iBOo^zU#J#`fD0v9?8MpU
zy<vC}&5|o52||=+DyB_@1G2qs1=<v*5+GnZ^upm^+7pL@ixtp_O)mnj7qda;baJk2
zGSZ+Gkhukr`?(Y2Xtk;3WcUBP-#tCEJ+peTHmKlJV^GmUv|7mUOd~a3%ka{RwHS7E
zis?2Rh`||{(ltFganBRK$iGQI6`Y#*>-tU7&hUNRh16m|W;_Q`FP;n^W<U&U%7}*4
zVAhcK!xYHrK}JNNrVMC+?<>Z$JT#Z~zlW9opFJ<i{~JsB|BJ}~e<}0-db$4W)zSfM
zDgUoVSoQII_5S;RG5@cZ8=x*M{lAv>pC$ia+JBb+zB>QEpBvZ=`_KB?`U}_ov$6Jk
z?Zwjm^OfvBFDYF6{U|1lJtu3-`#ik-{aAkL_4?anbOmHiVa-7PX~=n(F!6Rkar{`>
z1??4?N?yzrV0URltl+(9uNGchq|pV&zQYtooNWtBP-HDG(~hysI0Kc0hM-GY2?bwz
zkE5)HA#PW3Z-RA4TERbnGSwFp%pJ8U*Os<R#b}#Vrl)V^DQwu1rx<%p3HtSOd7&PR
zN0_2($qtwL|5E;2%705nu$2EC`7eZ{>U?llPoU}Y-}<X(&z|}6-^Qz@{P#uv&3OlA
z?zm2(jKsed-FCG=mK%L;1(J#t9_mZ7T5bFAbnngnZs&0OVE6QR`|WP96{vbkrd=zj
zOT)UlVUR?yh3_|OR;u(0$9!y2)-m2`8F%@*P&9N|7g_Q8`no+%lRRO-QNEhWR5P_1
zZgRB~R@dwLV&-@d-kxJpSA`lcjnp<K)}gO3%QrQp^d4D|huLRLhj~DPV=^3a=`&8_
zlx0ab4z<u525ABiBnePA84RMX$}S&*a5-KXL|4&3rSZfxO%qN;hDCv*bcH^r9$#~!
z5y|;8$hedf*UCYcd8|QktpLLZG}<=1*Q?2LnzH<Mj485V&?yi=%z34vQJ#P_&1I?5
zIK+u#daRUcj$lHFE^NAF82^)VcG(G<I5kxsU8EtE=L<PoT-@c^Q|SvX3dfvjrI&O+
zN9iYe-DI&FXEn)8)+Uu^MGvio<v_9W73W+>asM*G^}w=L3>}_*3Ml_Gr)^XzkHTJ$
zi*WD<SfQ4(MbpJwPnV_(r5Fp2D$}X#Qu=#U69FbF&IB2H#G(K>Bftc7*!?x8X6;gS
zcub`*4pT~#CfR@W{8lY&gN`IM*o;OZ+DImenLg<cDW~Wsm5%L`1|!c^kuff=g5@J?
zc9}S-)r*xWC9R&6vWsLGgh@oh*dn44Cz9gS_d;Ys42q`gIw_1S%sUFW<Z?5L;1ElC
z;xZU2Sp%?m(_k`o$`W`>rJ^#c!Z4O_xrw@y9LY693c+k%S>D6Ubt+LC){ZjS1cM^x
z%CJUrr}=PxZ7M4>TKQ*`CR9H%pmLbhML&!OCcmYHq(I781(=gQMePxGbWFvvC^ze5
z3}XWh4BBit3N3`$aLtC1nn1YW7{$Ca0uAfnNXo83DWR>(N-|nGkKh2%e?{3BKjGs~
zYTE&Si3XU&SzG~3J1MP+7^6IdSxgH{snBs9dU0x|_vt(WmI(-sGdeanfg9`RoNNr%
zP$*H5XRxMLl#(PeAZFJ1p_hB|6Z&j^67nE|!kweL$N5o<7Mz@2lbn-&bj%ra+UZ~b
zSIOb@v1am)JNdxqJ|1yLIe=O&wed5T+W1*9O}qJ0lY7U&H89HF7NPN4TTRAk)WJOE
z@)xj1>rcj$oyEw?WF)j$k(9YS)UAL(ud(kpV`X`Rb99Sn)P3P17Mi#Z+{P}(u{MMA
zpbD~!TBi^9RaI{V09CKN(lBPR(EZr_<>5w_kR!c1IvKucpjH)IsNZfAUTJvGKP;-|
z!UsgtxK%7Vhz14MB=WE(w<N`?$SJ9?>@BO-Of;C~n&h=Y4477g9bn$|dRbeS8q8N7
z*;Ib-5{UWUqog_dcNe;BBp#K_F{Ub*m6TTr(;_Yd#-_i@FBQpIE28MJ`Wr=r)<>E~
zE58z6uRjr*b=y}kC#K?P(DaJ|L<6M@0Hf0CfaUi$_d!s84(K!6W}uusO&#W2x{a!W
zSloJnxA&YB_9&XFDN?(d=ydJfpU-w-s7IhcNgyn!PiCI=mi0$dYegpjZw`%!#CnmT
zNff}d8kLlm5*k5=$mnQg@jMK!qrqSW6N#b&AtnI@x)%*bs?P=u)af!%>Oein+RAzX
zE3Nf6>?zAv@wo3?On}U_Se|v#2p)G>cE8Mr14&}Lms8=s%aDW>rElraL_VU#tt^?R
zBrS<RuMz|sJ%&$Ks>cCp(m!G1oUfC$hNeh5co*}D5cJ8;mdf&6R#a{*$(Q9ABO84p
zfz;MAXfR3^f=N@tNh&9)m*q8=Wf`qR!*PDw;>!rmjOctQ1%c@sE+2ss7k(o(EL5on
zQC{#POPFIi`4lv;*fGe&1H8zgZkj0IiFn%MB(~H91w=grYTwfe91GCXB}vqaSun+_
zluEs7$ul+DaT2r4A1W0h8BtZJZ6V-Kh{I0=(4s%mQy+r}A4jre?AyOP7$nUPXi51e
zX5Qs8<$9o7A3heuI^6qTS)}7xAeW~fWiLCDAi?^}ZN{{`#Wd}W9uNU<@IT&wG&|U`
zSOX^$zPCJt)bN#MAx4&IEqI>MzT*bq+xV~ilCW;R;l-$IjVr;8Rq{-HVvs_4NOdL)
zy)v7Qb~7$J<4Z_-K0$y^zy}lp$i(Ff0K~z!=-vDW{~b?!oDiM%_`^Nv-*9?Xce?7h
z$CsS%7(PhFEXIZD=s+JOz34%?TPdn+Og+d>R29}1+L5${jc}}%t(1lk{zDUyjJZGz
z@*I^n{<SDI$!9J>;T1tCHL0o9Tk4mgrz253s-#Et9t(k}Q&<_ATWG)zl|>Zye3Y)B
ztrja@#hE1ACqrPwakx>;hTWinu@2~D(hSn@TGeJtIQ6h3tkv=t5pP3|&ANVGXPHj;
z8(C!P|3Pn8`u{WfTfIp`f=ON{Y0v(ipVV80Px-|P{{1&e-|}{nra+B@+m<qK>uQ#L
zuSBL=Rjm6K_Q*5FGJ>UCq)&>4uzWL!$*2hEea)gCCeVqxm<$-?r@mm+0uqh7>Frn-
z%~swrQVTP@l@bow7|oDeJd<2xU@11U%T!gteMq^622v^5ShllKhXhoTXbM7%BC{_e
z$T0G@0#ikGAyG!)T7P+FB$+CjjpXP3nV_-|Jc3AaM=`?%ZsVrf5F+Ssg$MPtX_sxb
z7OEtzl!h#Y8cpk2gf*Wyq1oaCo(5_K3*212u*{5$9ti5Yg+vTBNfI;EAI&KT$&_!F
z&K*ntuciOj(*JAu@814j>{Wc%JP_0Uzh1t8?e6=3tz-Px(*Nu0`2VkLtZh8|BLo4|
z-jdIiDmTc<T&q0)hvCR|{|}7&f6evGx4q>GesRiWj@{=@qx339Z#o<bs7$TkB)mR;
zTZDwo&!}qnE;%B=k3B4cjhPO1CS$-U3}jc0o$EH21qvLCN;xCH?R2j|7D@qaZ<7I~
zM2)@=@gAmN|Jm;KB2k{rm5HkT&W+_t!48NRq6->Qz-WROBI?HC$Ac`OapC$}DkxnE
zh~o#B?Ng&d)s_m+jxTRBG}~+6Ew_kjr*m}pcK7IT{}+;>Q6KcgT~}@%_G!A7%nOj@
zAvy1j*o!SnTUgqM%BaJ1sB+_EDAQ6?0_+T>CeMwA=MS6*UAHeOsj#&4xuu3Qzm#63
z+7<mh%s*25G<G}OC8>XgzT3M8@AtRg*oi|tm8+XfM!BnRDTMkO5T#3-sx%adu-+=6
zOk-YxcgJD(GpxyJj?QTpw+}+K`bJKfQZj+g*JEfo(L4<40arfkrU{J5S>tRbVO9~P
z>d@E3^gy<BlP^FeW5#hub-6H==nox2(UZIrrFaX^l;S;<(HLquNod7R^IP8(`%t8k
zau3YNkbO+@WEke+S_{ql@x=rU=Tg?!;(ZMa>slEP!jY=vh+4ZGpreQ~H{FldWjOC5
zP2G|;o&Ng;s7Wx?q5kebO1H}DZs-VSbtfXS>47Q8e&R5iooEo=7P3IynQ#CipNp8U
zDWH5!rkJX88{Ze_gB}imE?6>~j+CFWA*B1!2;j~=3*o_L@c!fwDG}u+8f&nE^MxM!
zC@*6Fa7d024gJZe%dVC9)Y#nUt04wL;vIiDW?yo&#O1VMCgb2dje8g5D$ZWZu#5Zs
zxEo}b;TZ2D>`}Qij0?VnL;nKwOY2}|*jj{oVT3O2BDU{DxrQ8>Zq45g)q*(RjZPVV
z)94oESTwBeZy#1sY#%{oN;n(92h5}xID$Dxr)FGN5Pc&ojT-kQ0s_T;JTSXCFhP9>
z(I)kS>j1+Ef6W^LAxmB494i|$V6G|L3wpPJUE!uzacDaVW0#VU^)}1V1O4v%pkM-(
ziIsmjh0JtWO$|WG2)MRpd+BFUD3c*AM@O)~Fd@olh#2cR%&1;Yg-91wBxutX6QTXY
zA;ZJu4eaUbxR+mkL1F~f$~Z?Jd9DUfpv@9;#LKdaQG)z6?i;F9><haQuzU@M<;!7I
z4dM;0U;v_E^Y==AGZ`dP<|sM8{+iTTBsr$h;&YEu_dwfAPp{*=dx`L~hoMx9PYrRH
ztla?+BvNF4^qAwMh}NWDdn#fC2o}j8xuDDjqLQX78I6)4;WzDo?K#3s(HD)_r-~dQ
z*@B~H;8bNvg1d>;aHNxSG`i%VwDLsBjS#QixWh*D`=xFsVL~rYc46Wr>@(^1aV&SD
zU7rXQ?fTCh+WpVT@I3h*9R}`8w2aRz_y<A^`UJ8jwhYY;8-HC}TMN!_^C&ntd*5th
zXc0-O-2w1Pq&+dZN!E+82@(9g(hcE@(e+iBo<#vnG1db^DjY}!+z-yTA3@z*m{?#i
zV$_SSgR24aBW#@!OaeoXiQ`DMXnqI3^6LoCU(gnC;N*Csb(gFi+)H~Q^v*#hR-G%)
zjpOSQ5HC%Kan(T_>MXveKf)SJp&!>_!gU;(kAQr-z@)L>Ba4WV5lBw?-KmJeB?*Q{
zOQn>gg8$Aj8kvQzhthce-Dw7y@z<glp9m<=u=mW+4A1=Eo@9Re=g^%=g5u~elR+;^
z?|u;Z%Uo|2R^E|Y@WENQuu7;z<Iu>oObp@0{SFZTP*`FFx`l5Rh{=LKO%8P!8GP+p
ze-LVO@l#&##V5S{;a-Yp>&ZRkz&siZw3f|@(%7|B1UxJCKz2JEMrh&*2e$P_%-0g^
zj&!-o8`jF{ki{q%bb&a+E`W`*Jnm*e!_wF>x@Oe9#pt=T$$C0=(wlTeE*&NqN{`k;
za(eywU>{+Rv~@95W4fj5xT`3=6%Wf*=pUL;loiJsg>ec5OEg7hCUQfjFDR8d{O_n8
zXeE+t1*71<&c~S^Cp_R$#e+edMZmLq8I2tP^#=*(!{Bfvxj$4=(Hi;MuD65tSrmMZ
zZs~d#LCH0BdNCm}sYQae{*%J=S-=hln}$TSX6O=y#_ZNQ`EBTd!{0Q{t+n=xrU7%;
zjb!@a$Tigq|Aqbdq2%m;u5r6%KzMBwrUPgrzYFn{sr-%MJLy7PxltGhr{1U4aR*?%
zahSFl#Fmq`|L#oP?5g>63w^qnY5aMs+|N~C=Y{|<_C06~fD+&e53@i^I}frvErE-e
zn*|duCZoKA<~9#5@`=S6tJxxQov8nI*emQ!bl=$Fc+Hu2LTG4VO{kYdVhfklC82fw
z<1^oy#5!4aP5?K_IMW3%%icBadWyW#p`&!m5|4m8hdtrFCL<7hLOvpHbK*7q$$))v
zgzZ`I$!J6olr_m1p-x;(R6`Jc*RmAGZX%L9f;GANnPvukB+b9lbGn=+nTAVVxHm*$
zJeZ`>HeK4yLB@`JKo^xLBsemH<xQmydbXwq5&AM^!8uHaFUjd{2y^DpVU783`2Nq9
z)NP}tmKtoIp#%^2F6MVp`HZjy<&C+-An2H*(|XbQ<f47ovn(V8`Q*w^F?_VE1&H7B
zr4cW7hex}(X_G(GDx){)xrx=GIk`HrA0dH0sXb9d1#I{t4Tr(@1zCvTm1Jw<=k&NC
z-gge^A|aK*Q0a@rG9^wNh-mjpk)z74D2$4)6oVrXvb5|KJk^;Co+?EI=pG0<C8~=@
zSIK9S!K}-^f#m#F3JuP?n=$PK02kh728N035*V~;yv;ygg78d^;A<$E%J|1o_*se0
za?90=`~4^tw>yR;4vDZL;>*a0q6~2?HS=yl<s0`c?&Qqn|5Ixjv0tRdm{c^vP(L+m
zRc5`IV8~kSS%F-Yu~`arTWT=wYkOdBLJBMV${MNp!w<nKuii!UbknUY;Wh10(Lx|%
zVI@Q~%(;PYy7Po=;e}|1qC+_9GGA)z1rv`}PlUArOH%_|9<(v@;@~Q3*bK#IWb*(j
zFh{*U)v$CE0|1FYcE7E-stTT2%W8n8&6L9$K2YZ?x%GnT3rFG69EWS71w(cpL)*sB
zu*ZKqP&q8lam!6cI!8w%Ha(zESyP+32%=mfs(Zb55Ns<(6C0m3Y04`fh(D2pkH$Ur
z`<VjN+5KwXSK%P;9f!zW8oM{$XzZPyWn5xR%{?OH&F>(x?SP-c3#{A{#OAi73#S2(
z1XKq#5N`n1%GSThls8L=&fUTBTiSwFAH4a@QNO5|QNV$_EyprtT{+JDdm^NgskAmW
zv0%<o8gJYAMzXV(bU?1_Wta#taizPyGUhV%*TuUZBkJ>kC&4ydg^vg5`meGIs0=f~
zHVbycL|nzA;P4a=Z#b87xllKdWS#Q#Rvbc-v?mmtwOCM$f-8zAA5zE!C$sUO^y4(k
z+rjLqIV~0w@)V>pWp{BAkCQMaqiNM2J+V$_^r&0hqyr#IJ-&%AbYhD`cRUo#CkHxP
zy54emrBP8}mI&gg@3PM&pZR)x=0Mz_mds_zTozz1+2kA%)Jgh}%UCqW0H&gUE0uCP
zc!OTXAS}`K2S&Qxj&gL+2M%x%rtD9Bosii)(`k?S7Lh%aBLG8!5URgut>A<>$~(JF
z{k$ImpnNidZza1&Dyas7>+qJd731y(#j7_^c{^me<u(SOkmzOXEks(^kxu)35lO@p
zNTq|g8|Q;tqaDjUahf*kM7dMu(GyQI!9mv`LDImf<j)!(H5VURyXM(97;KZ#Kv9R*
zAcSS3$*88_LW@2I_gwQfVu5nAR{LLVxx0w^`3eov5H0Q}dRF^i*v~r9w*Ds*vmb5I
zXf|p!9FDw3bCNb;vgnOg)J8VI7)j2TR;M}Dn_^I+i!c<J-yX0=4jOV^z<`#d#rzry
zw`pL|LzF7aY}f4Ol$$*bN13etE)vTKmR3fq?uN+m3J^k<5QGL;jtjZ}IZv)YjmBi~
zXqF?TorH98p*KD_=(u{F0^2dyYc+knhLF*k-o`jkpsH{<9stv*8J_jlteitc_8^g5
zh!wV-ODN3PBu?!%ZPxK!y=nD<mK%gYUU>ab-SO$mtgzSHQ?D8^{_lEoR*Mb0gLjmq
zTKlmnvdu7ksB$6JnRmQdwC&p|x;}GX+ZR*oFWh(bmDE~$ZCx_uNEoiBF&#U?JI1<X
zRqR}{ONM<)Ac;#Naft*?*ar#)KW!hL9dDoP9-e8j;B}48kSa5cTVxu~aC|6<xz+h$
z8(HW=WfWcGfA@AoDzcB?f<?xZKxfR`{xrdNLA}F|>!ux&J+}(%cKFz8MSDV;S*_@?
z4~&Q+kjeTW_@%t7m0e7#dGG9gzx{sytn=olTG`#C-)w*TtX6hI>9;%HKjD6bG?3wE
zisK_ONZfQp7u-=Q37#&a!5IC1VV?<wa5zyUut+gvQ3STC?cp2Rk_KZ!Xwb$2js`29
znI!r-UB0GliiDF1bGce4nZMEneA8M8b0}L0`xU(VySl|!1kByo;<TL!SLQ%pO4BwY
ztmJ#`P@?Lq+gRW=Qt<p)xvz!0HGB$hmQCCKj@Y3~?`7Y(+|BBxO?11~d|isg(vHlQ
zX_kF7qpNl3N-$Yy*fQ)}%cV*xwRT{MU^;EK24?98YUAo=wQ_A>>NKnSaJhr&q=YgJ
ztEeJQ!%gUW{g+Fj9vsY}Jg^B=mSY@`qc!Jff_AS<o2^f2*707I%}jB(%6Tbw4E$Dp
zyK{0NOrMeVvY0lXszx2>McG`C16R%iokr-JLF$fQe>G$5AV^Wkl<9-7YQ?@IYUI-u
zzPTd@Ex`-4BkM2A;6gGYu?YLU)*Z}yk)v-%$>?@SijxhVWt;iL3^u+P$OT&qW%^?_
zHFbUl1S)^}51gG$FXl`eCxEK|if*$<yYXfv0lNyuX?%q%EMcu<N}Cd7*(G{-aTz6C
zIemLge^6q}jNP7;aIHgjr~;8w10}!2T-b2Hi$TH^fl-MkS&V&itGz$Y6OkdT@u|VV
zz@&f^O@ZUpDT{^4@cKS0V26T@IM7pWKxu|9B+TkU<`Th_Dj^k#-ompa-;)&m410{r
zn5=SCJPUCJ*rQM=b1}iADpy=sdXX$E<PAtuUbUv1Fn-saZ|F(erx{9{O~Q1uq6ez@
zO1Ld_uu<q>qtF4}fZ9E%>y=7#o-84Y_$}2f|5@;{iAUYRq!*Ptw;NFM%YV<H@jd7N
zS==b4`+p#}2K)&aUeGO0rdRD<#_z40zSq<4Fe^Uf7_iqR-4phzfzazabZ&j;_dTEe
z%p=Bn%jcQqtdI!Xd6=mVWV|~+C2R6xJhgqt6fBSGmWB}g^;<mF)+8k0MObJP%q=i@
zD_n2+Yi>D{eU8WIjs7Lb0OT=FA)iNK8uYM$2zuCOZOR{Jm8Y1<A@%2fZ$jXeMhw$5
zA9#`V%Aqfo`fV0=JC}TIvxFsaVO9AU^y+eDo=jSGLIrQO;}8&ZOKOLB3xOx<7QUaB
ze7V9YXXM^$g?Rz#G@F@`?(S^nTa?hmgy3$~cOCXjtTr?c)5=XkEDMaon8MHX^1<rr
z-)42M<1`vXS#}ziEpU*<C`!39-Y`r*EBQFgV0p!0nzPOOBE|#@3a;72)yu6c23Qn^
z663j9Xt*#I?zz}=*pj**#eyFuBTV`3^hls&-xb6(&XldDwUWj8!U<rW#=WPe(pRsn
z1y04ZaVBQ9f{B?%D(}twBw?>PP=)=cA&gzEUwjYmui?~fSl7XKW9!%${W9_HlRzq_
z&c2ac*;3`YB3_PlnlO$W196nMWI7qJ9u$wc$R}T5-OPE~i=JCd0!AeXj&~2mo>xx*
zUFNRx?f%i}?he1{g4!PS%)2++r+aVZD=bgYtq|8;hsZ)cE>eSwcrR6l;Y?6StT$(+
z^s;IQBD%Jm8a7x41Rkq%Yf@5h1HV$_Lk+4}t9R;=tL4mT*;&PPzsQtFy>>r_F8TB`
zw{x@ZpZnK^?VM>JXz9JfNwntM!u{*A3}hPDPHh^*k1kI`n45XV_pg;EGnqFhnwy~>
zzbo*7-t<$yxFGdb$)-09VSk;hLfRa(h;4_zts>+>cpIfuhkM$983qiJe^@3fPD`S>
z(^MDaF$|6T3`$K<1gT<}DsOB1Wc#O?qIux=W&hbiC(*$q!+XdrOU-ABDvvOlW%=T4
zB`raQK@Lvg$HTV|lC=(NW~+2EJt+r*cA0?`04D>`WE4Pu$j!0zT!wZJvR7GG!n1-f
zDlabQ4I|QpS+;bR+(!Ls)TQUWy5%@!n}jPbm8M)Qm0c~(zFaD~X0tDsxIbQO<jzt(
zr{T=4sXc;f=H49LMSSsFr3n0K_f7DAuf0e?$=SMtkQZ4A=$EAsqNDT-(z{<&k+SDu
zR3^FPheUc9y%44CJ5m|FJ3ZSzIYU@*pf|d`VD&0YSM%XG_}~9K_`e!U4J`T>tVH_t
z>L>v!TVeI||NTF!sZ|S66%&LfFuQhtFu7?@^6;`9^(HD!y9K8W?V4`CtLO1(6|izy
z+VLvk0{(1gm(6-*lG#y0?Y0Wx7Ia^qs2B(Nb<Z8c0_ptQ#gor9jDY=l3Tm|;Z>dR<
z%)_veBuJ<sVJ?mA5~yseo?X^;bjlWiQ_JrixVZI<ABpd>!cOr4b5cZgJNPLCUd$;x
zgPuz5&0%mY35v6zWHCD6U!&psR*A|$HTXFP->{OMhGg@m0C!FUYQey30LpELA#-UI
z_HKh-f~D$po7@kXAnd4BQOAW7KN5}es?6k@)d+I_xC4)R66|8^(uAV$IY}C&lj4~9
z_FRfxm2S`C*3J4lY?FnoDKj)H#q-dTB0mj79AdWYx6%0W`_o6~iP((<ajZ}xVGNcA
zIU;LW7cL6xu%r3BSAjM(QoP)ooST>^jwgN_AY`iO%Q12HX0va1kAGN{&yJJpUX-o?
zWnQjGsLGw#?IqTnOH06&aNTUuO9Gec7Qb7~x+$oo88czv-oJky{3Q6#go1)}G_Ueb
zA|jN;UxUzCDKG`dmdkhcw+}6zgE=-Frwqlx&6B3v`Wz^v6ZO&S*1y-n*OU=Q=jP|~
zh=oR84n4PnV#2GswfgnuYYQKz=vRemAh~EUAp}eq3!Yq0g2VQkHl7K17@!y}p_ze%
zIiE)t@o1!~Jl^lX!;RQ1yV#t;))x{cD_N(-9bt6VU$!no%xxzD?Q{@5-sL@BC=8OY
zN0Q}agsc<Qq%fr_)W8Qxp=tM$oEf3MlfOh4Qq3{>i2B8A+d!bI4aN$`1TPrGpV0|b
z2l~kZgGj*{K1r;Qd^&0<9BOc@{Cjz*kpe%s<-~k?XcG3ThDR>i8kFvs65hy-+I4iU
z#A#+7J4eCc(OGc({wz2>{bBX=bU!#g+52((Y&ZC?-Cs_Fy~E(_hur|k>HEF?-9Ph3
z2N?X%)yxOz4u9)j(u^l~*0k~V&YU(X%#epC3Gq=r(n$r`0Smnhh~b1?szxDqLtL}+
zb3|EwLG#Y2x~NL3K_dXn43Z1%D5S)d_tH(d{P`j5qy7Cw4>KX_6`&C!5jZov)9e}@
zKUa=|vX<(6yS~0|vs~34Mfs|t;j9dNnLc5kYh|BQpJK8`{#l_YYs*>0-`@G<GfQ#e
zXi!o0y2c6M0x!rW>0ryAo^=i_%yorcED&=rS8rPL$)z6WG?)772{PGb4Yg(c$7TJ;
zW&OwHzu$5FM?5IbAE*A~+WNC+#rltH%leOBt^VWhzVu^Rp+<}@Z>g&+c|RV39F^(H
ziHAG8-=8{l6UkLX(iEc<^`>D*sdsh{k9Kz7bdF9@w&$(1l7QI#ZufBaWbf_H?vE>n
zN0?mqv_wo+caS>7dD=y!xs2p-6fPsHq1b<VE&(c^Uq?J<>dXh~WOfGK;_{kaP>30+
zX@G?{tV9!1+J2&>>@z3A16T@wZN8{v<hG9wch5T82Q5Ko+n{j9O(wUms}GmuznAjg
zQvO@Yf6IRlBma%Nn9=NU<iE9-uU-`7zh`Sp`EM!zJ(~Q7*;b_Z_wMmqxvi$!tSGlc
z0N!Ndqr^fd$sj7^iYl>crb&q-WJ2~#{7=nG>QrI5tp60Ics;YJx~EYhfX(0=a^xpq
z%kzJE{x8q}<-ad+{^M=-<DCB+FV|ld&i{?&`M*5>zo7kRfBSH{^#=}MG}K6raX5{s
zS`=A10zk#+3N}qdo_Hyh>NGjkpfNgrz}L;q+O&FNfR7<Nxs)ffW<aHW=1!zCLD?*3
z2*fBrtR8g1o-FId7J%m~pz}`hx%_>ZL(ID6!a}utgW<(652V5tW_-k(Yj(0}+rwn9
z|1E{t_QAV@vyxHU*+o`L#^n0&tQ!o+*#YG<D!&26`}}y6_jS;PNgTH6XQae-atX}0
zz?Dfj9q%A{MvLhL&J@OFRlUJ1U#2Dy{lPgs*6g@Y9QamH^l#$i*UHxCP=)Tnn;y<>
zdhwiCXJ0A#)Qr@xs1sAtlafz(KB~NqDU0Cc)9Dx7DDh!!-oROo__Yb>0f@`@FeuxX
zc3{%<SQ`2c<7eo{SFu?x<^QGpzm)%%^8ZZvpU#@QDF8F%|5qEY3irPouU;<Y|E2u@
z#qWQ``Oa4b+VKU3%u3szqtTBC@`f$r>WyVAtWqLQj`nv?Tk0}dfD9)Vc)Ml|s~Zy1
znXO`YB&M3rIN9=fG)S(sp3wp52-J0OK7ywma@0P3d$M<YhS#{O$v9s<0x1OEu@@&g
zlXqY)?d*~rSx?{Z9KG2)q}G!x<yMnk!f$^(=$vdHP%hhz=lo=Qe{ZKllY_?%HPQC=
z;V&&c?e^~B_M83PlT+)_@w=Z|L0Md^ZgKkVr_RB_Zs+vf>7n)E+x@-W!!rjsUKLBq
z?(ai(2p&fHWzypiYm(VeY5DO0v%p~bd9Fu94&BKpxELho;Xu{@1Pv}Y<)4{^|AQo-
zNKr8=6{hp-%9nh(jb6k~sXZiC=n%C=iD$KRL%gq+(W>6u6~tO{SHlixI1}BFUijDZ
zIv1*Q(JnXZ@IM_`P$GxDgLmSw-pOu9-Hua3sa8YbdiYs*e&gFPy~tX@x8Hug#$Pfh
zaf#JkdYNBE2CvKGI%-+`{iYwQiV0ch%?I83qg9DvQ1KR^mm{xj<IB+q1VAy4&B}5L
zFn>HaESvX~Oj-hC#<%Ww^N;85qpAL~8hZ{=ZMt5{KEcfcVn%m{RK30&8lL&_tX^zF
z_d3ECY6Hykd9C0-jr`^f@DSSI!}um1**-9VDxb!YH<Q6<b;wbY9E>jHFnC}Q0EiMS
zjxTRBDvFG(1h|y}XEP6E_}DKkv%@lG_z~gdQ7gE#(k_(x7L}zd7^l%?l6=;mjgu_5
z9u!q@y8Hr+sMD!!ofKXQKf90z-M7(Ynr8&FC;c#9PX6_raeop7T^38iam74}&4LDc
zZvJ8G<rmPnlV9FzgG%+&>(ruD&!{xb7DAtNhlmBN5d;6XlFBV&Lyug}`&MCk<%e_O
zpT=Y{XCk4`v%RPxeFtL-RxV{Yrg;H~U~DRwV;hW*Vhu=8I~CHI1Ib?u1xl|+iDAhK
z=x{1dx(2%7yWlB`U29KUdI&AqSrkw=jnDi2c!48bH*!Rv7h{vBY%9l-MQrX^F(xI;
zFjw;B85f-G6G@>ev#etH6`RE<JB#WZ7-4m{a`HMIlc4?^Vu{*Z$b+56zO3=Iyeu$t
z?MG{1W<(z2^V7*--01F)yC;;5h2r@n3Kwe<mH2X^Q5wHNl@B;PWe>)XNffcUHgA;w
z+2gh0(B_w{N6e%LMi)~A|6clcF73Zd`|r~JyZrY>?7xF>6y4;H<p1$}ZKLS_3IAEz
zf4`FbcV%O3<M|)b2+U##NZ>lJPb=UQgyt0qZu+9y2?rYK&oIO7yF;<>4sM16)kT!2
z5#_(#J=2K@L5<k0*5AuBN~7*UrKlW_1D38A$}CNQ7Ro1$A1st^QYFEZB-UkBunSS_
zPWBIt?eZjsh(F9>i2s$|1+~X#$BQC%oR1#@tpH{bq(bxG5=sGYfKd2f7o9tkaBzV6
zEI~o|3{t*}+lQ@4=hURTLvlxSsmg(S{m33wz9!~mRS$ylsum6e^T+EF!uTS&DF!Nu
zs^^l0&No=wQafUC&B5yAMw(2`q+Dtx0G_{?1HqIooRuT#0a5|^Y48`>Sv{cHA>cU|
zn!U$1tJ-BVvFSnMW*tPYRkqfAZ0th?DAkB`b~n`pEZf-r4u)OsKU%8ROZ|VT|1b6b
z<-eu=uk?TRVtK6mA1|LhFUEf^^M5S;zaCHZ_mg<of1A=XAk*gwKI8kRQ@p6}k`|Nn
zbws9f3q{x3u3EHx_=}O>Kz<BIw=6y?XDIa|8h2M%&`dLKas2Kl=hN}UwRmS)E>ZX*
zySQE%4x^RqB9q!9>>Xu3Mc^z}s?O0_%6iY4J*p;(wVi@S8g-M4QT$JIJ-ZE#FT+uu
z3=bofJ+X@yGd4CbtiweH#&~dt7$m|&p_Cu=Y!u}yp?Ua5KRh=N-|B~5^KeH$l=3Ru
zhn@YiT}JoHAdh5XN0b9woVBzwogOl~O1UGJj3g>!NeOYZ-=A&&&^cz8D$mWTEYXQ%
zIH?=_ZN7i={_yPm`o_x3=PUAc{mY2qOZjgp|1IUerTjNb{=3KZ&+Pmk#rWT~^^K+c
zx0L@L`Rd1Y&i}U5rQdprcHrVua!2wXlQiW&ofO)oeKOzbr%U_K^88<(|I2^Bwevsi
z{qxSJ|IG9M<%@OC{{v|8#jEA{|FzElrT>SyAH0u$$CF@B!v45$$o7cJNvz<`iu-Zb
z6dB3dPCvBwR9S|Qzv8YcU#tEbN3dXNjD{F7YD}`|WaqyNRZqSjgml#&5Hzj{0yx7z
z@^ms(0Z1@Y3}Tz4BS1XW1p#2eMT&NlSw$}@D>jqer5kOrzckiH;9q(2IT~$Ey{a$0
zrw0gBw|U?_CwN#%0{`p1Q-i?z(DKv1Z*Cw=jJ`qQqwkv-GuU8|>IF1vmIblsL~)He
zqkl6P0;6FUX^c3;ARpBOg9MrfE?alPC-fMpqD(rtOII4k(FuZBt>{hPB|rLwJoLMw
z!vg2Mi`N|%u;AUT!+Yya-6n~W#)J#2xl1Rd*X+(<6mF-ENHwzhDG*#`SJhYi(_H46
z5U}hB{V=7Fc)38<PxJFA%!{><&aloA`R>3j$GWUswl%oapHQ4EZU6S&_WwLv`->1E
zR|e1S<Pc);vAF9MF9kdHlyPPiE=VEX>@`KDiEvF;;?W8&O{6O>GYio^SMg{h?nBt@
zGPy<wSR*~`vhP(gL1!y?+2(T`j@3yQMi+6RD=Z;3xj?{j&~owfH0r@45P^bTm}6DS
zR6MnWzrZVsVFa!NIJ64(-nlAL$+_{*VYg!ri(Zynf5kMu{8m3IMj|%kd%~D}O~37L
zXR-4Go3{eM7657~0LWl7zpnb!qe~5GOHIy;vXN14sqwn6?SbPtX8l=JFjz-t|J&3t
zRsv1KSs4Aa4igytbC^ko9l;|ozpHRCiMDJsJHc;v?Lbz-?LZzrNC);Zy1h7r+AQ%x
zd}2Fd!v9?)v`rJPUx(ZEn5qx@yEY_&TEsux<;Wj_)xduQB1U*!fG8d@PXac<1!519
zOeL-Wcr6v?EDoM@pth}{JvLA0G0)G^?{>aw-VMv6fB$>>%`NSJOZ(r_{<pOM&9MLV
z(bVub_kYh`uKD+W>#trd<G;R^{cq#NAIJ2ktY+hjl8nH1+!x3L--8Izd5exfb&wJ^
zxzugk+uYkZ{LWNR{Vts3mk9_sx8HS#=ymk}v-kG>Z5zj;@c;T0D0BTY*-*44+ewdF
z_Z-ER6W!Xf9!XBp$MvNl5~6Sn61)JYm-h6#-+9@W*~J1RB|GUkp?_@z0=u)bv$M0a
zv$HekOf?(FlvMoP>B+Gh8LHfa-sG^wxW2@cwAgh%Pn?bN0?@$x!WdoV?b#3X5hDQr
zA)@`Gmu$R?$7yar4z^Cu;LHB&w?_v<Y;1V;*JBFE^*-v%7NciR9zO<^1t0&g`|RKJ
z<1_pC&9ldy=mVnt11NSt@VlW*cX+<?u#0d57<Dm%7F``-I~8b>KwnVy((+QJVa7nO
z;{<grjDYr)=`@BR=nb}hczb$w@Uq^&Cp*-+8~n?Ccmo<6D!{;0CWJzC_>%4-ajIwR
z&mf9^y2O;TY4s3x-7~x}vzS3QvRmY`BA(z!sFKV^CO<Uxy${HbV%Vk=5%j>*H4cpC
z0T@HUPq1?YFe))I@DFaFG2&RC+oM#*D$y`S35#)i$;p*Dz6`VsJXjzyDl>Rx^E|`S
zEv&ex@>3=*7&_?I>&56(im8*6s|4H67n4ghG-$A}NRDqoH%>?W2=B_2l-D>~%*Qm8
zNlH$0m`Qw=TvOn*Brb}0HbFSa4a`oYF@@XeqaAs4iQfQ|^a?-V+@zGvK)RSfQ1mEd
z2oNy0z$D1HUqy!%Vlpq13&39!!zD$@CMg&aASX>&V7hEE#%8opUGa+<YZ#<OMM0i1
z%k~HeUq)SwRuLCfI)Z5njl?NNxnOR+&WlgyFw&O*i2Bsid=X#e=@>B^Y~crrZiNBa
z{=vo$m_9q5Ju%PB>)r6{C*jvm!>^x(Uw;#R{cZU5AHuKyE&LkhQTTmBhjw(2SfbeX
z4PDx4=+jO^r*^&#!{62Tuu!w_4L&H=#QSdp<?|}u7DFhTP@i_2KRs#w^fZJs^lO`2
zBB3ST?grmJ3BG;mza7Cd!@Uu2^ElnUKHrWTKkPPqIB%+P-c)1MRAXdoZ2c2O^GO0T
zy)?1UbcXtTo@e>Qr~%=bxd-*TCv2G>J2H4mq4%S4o|LnP75q$Rq!qBB19<`xC%w2e
zhg&Kz<H;*pkV=46T_+$ak57JzPG6psgC4mJ<8<Fqhd$$Emyg8MYHR`ok)5U_c=!zg
zCSw!t5p}BD=*_#+GhFf1Y5)r+Cawp>&?eL6X8y#D^sth;R|$GXg-9!sv5952pv$vB
zsrV{RGZLB9i^0~sxE^wcU}dCn_y;fwLdQ|C{LtsOyYlTWzLo95$DQb({U$KyK``eb
zFuMqb7G}DAJc~0}Ml&3+i^XiDW8mRRg93dqOJR^GO8}ib@^xiW5IAt3ic^_Vym%Ex
zABa7Qls&0jTwJ6#7^H}PUeg+nCRh;wki$I@I2n|yv)6(D5-|9&jXyvK?P`!RCLO)_
z+Rv8YTyHh$1|k(1ur=4fK<7oMhfTwO=dk*IYKaPFzx#m--2nUCcXKiX+}>69ts`@v
z`zNyUJ;db`RDiVNH5Zxh$i(2XN)U8TrvZgE9{?&S<^&R_CFwiF_a#gn()W^^cvNM#
zq`I>jldy4bu%(X?_U#>VGYj+#JWppvhCriM-Q;h2(~!cn!E=xz&oX2$tyD5A@udL~
zp44(f7e>CfM|&bv+n8>|r?XpxI06zgn3C_Xvli>(X*BdGdP$lssiiChK9=JGb%~FC
zRxPKr8G{D+0ST7i`R|;>n=<IeQ3+3(rWk2gYIBrmT?i2QX!`L{2k>%)R`)HPYsA@m
z=;a61O{qU=NesOsX^Rx@rh{bAxBHLY9eYL5bX{JMdmN7QCUDU`P>{pO(-*}G>huy-
z;TMYn?X<vV<zkNeJLn5CiMws+FW)BNDqwU90DQpe@kdG4kJwK`0JG0A!}3Q~Db;KN
zoP^ek2Y!Gd%?J38g@Wlc)ILEIBAH#KMLwfrK*6TQzvTGsPcIKnXnBjzY5Sy4?SMLM
zM2V{^nJwZ9Huo{?y>B{ZS?dC-S82W|#r2;aa31o8trc;#K50SFwyh64yBr>KSctdb
z_cko>h@7G;ulKez!wqWzng}9LY>gpaVw5`mrj~pT^ju>z5H9&BjfIJUX{6e)X+mrh
zAj7c<=s%()iYWNB#nlRhY!G`Y1r-bgXfs)I1@z=Wr(n^@R(PXHDH6EdMSa9hVt@q_
zy{Myfc#LZ(%qnzKD$~g<3C}INs7jPo$@^kRqqR1E*y?iJ9NE1#ZrW|ZE^_)*>(dO+
z%kA-1q5Z-15_g?Egq`tqOh;Qv+AA>LN`PFXw7e1*3|xBf4n_01cZ17B)S3lcoqj7J
z@w_QSr4SUV#_xX*eT=7NBo5!cieA!cKSmqOEuHvL;vjTZa#oEYu<+1`VU!rK*H1)T
zl&_Sw1u6rJdysy!RB3M@C8qNVSFm`7dhO^k8GY&lZPAVg%_A%UDF%9T*mev_3IChx
z=rL&tVrFzHcK}5~CY5NC=VLNN%#uvN;&mCVd-38X&C<BIMTZDrCe2zH)t!YA9{rR3
zBD#nxOl@8ic_Dk4FEZSHKuz?~xI$x?+>0P2)qCPAv_CLSua#QmWW#a@jO{xwl;Wst
z4%+=pjer*xRt?K@QRBS}?ZZ}3N5#WeRT<g~niAcnzKY)d<&W4Mavj0^PX*tqM3)k>
z+oqt`>*@N41vt%*=0n&dbJ3_-`_@4LRZ61<Dm1>fXe_~^k;J}NNYnwjrTp%A@x9d*
zJ5gH*-v&U78FI|bkb(9e>bbY&1%)=lt)8|*<0>_U=g$KRd>d6^$)D4fH@Bu*Gy-P4
z-&{gPziFirv^5AzLS7_yg03`(<xJvQ0)RbMX^nMp)8hJEAu8XCGi0}sJLGSlLmU#x
zl3qEx<#`^}BM@<s=Ai0cEOTC5o=5z!CFJJWWsJ%%nwW8=hVBdo1Ca5sRxD;!n&CL1
zdtDTt=Zi`##{!0S93tN~jG|v9cGd&A2FrqS5th;CaBzwo52t8#7pHnS@s)+184FZ`
zY_153v)zqqA;vq~Bgt$&1nk+nGC6~`RiYWbsUE1oqH~oNi%x&#IMsF5YHGTcfkG0l
zsZL|}!uc&l_wWcXOwX#wI*|wAtLW&-&0|`ef5r#WIZ+LO-OvPfV^-}=N~P7Ng$Lo1
z+^HI@LtpuYt7=~EJ$i&EB;^3ub5SB0A5CKr?b)L_^m4c;i}~;d&>37-)2tQTD>{7I
zc^rLz&f2!pyvt;SyYtgm$6rUNJN3PKFmc&+G|wyEJ?;G4?qKJeKMbBe9_$XB(j&6g
z0f~*>PI4mb7d2(;mC$^(&-Cj?^U2`w`0A<ty%l6BmObwQsNF4fq7Rgq#(AYvfGVl=
zw}3l0jABQ0YbU_oo!w{82KxVxp%WoCrkHuIAx_c6EnI{NMI7BgrsBS2GFvuHB=KT>
z677CQ5*3<64W(roPq$Czi|SJyaaqLcCG}}XxurEU4btT(|4xHAy^PU9=gH1mdLA;&
zd#o=6><3R9_Ev`#G;?o-SY3FpF17y^g}6ssO-;GfcC5X~AMa)oy4i?a4wLX2HddtP
z=sjHB<X_j)mTTzLTS0G-`G7&edYSfB3DkH=c3e;=i;Hb-4hMa?AMHf`Wrrrrf(rcI
z@PQ@syFFC+Kv6q~jRkC*F7>uru_<nt0aqMKG|vS<Aa&oK?URj@kK3Z?JJK9uwK9#2
zo%142vj7OtBd77)+Ig6d`0S%hk|`FrjIR<Co7Tf1iRlIf2rW9RVvD)*^8oEOP{kby
z-Mh8MA-L7~9DJbw*Kv_Ktc7$A*^;C_ttU}att}t6&S<j^<Uk!4E*(Q<*~`3oh5FL!
zz*{N?TQ~td=r76b`YnVix-C!^pC6B2tPVO<!-JVruV7XH|L%`?s~LjrZx|Y@Y=wn)
zdwKtEKx8imxCY97n3~)9d{3Ey9h2*rQZw?oL0)_sc=sck9r`2QU1JFGmnWo?s6$Z>
z&#}(ADDD{ib5U|UVo+t&O$L)eU%|=p2_;i<oevyY)>AFTqiR7%MfSXG%g8Q62nH0B
z0~cE{%iNe7*>26}g(h6|SNgD3-PvkAajp4DAiebQZW%a5Wsim~6zlCpZ)b@<P2>S%
z%x6H_fhfPL%i~d2PKRskt7l6`(HlNe%W`$SMVr|HLn$W7gA`CO@UcwolxTmZu1;N~
z&={Ji^=Xhj3?f}GLPu3{*y9UeW1zA0Q!rQPtP|e-PaKpD`PVpfAlmVt-9GiO<@A8e
zV@PW`0Ka1^^zL8{s~Jy~J=LeFJJQrI&x+QL!b;}O>x2xNFu!OBiP*|Zl_x*D5nk6v
z&I6?FJ&N>z`30IX`EWy6rqgP$)Ycg4NrUy2j@ZowP8O1XG?Ij;sWvLmfelJZl3t`2
zdC=6M8QOc}(WRP%*Ov+Xz0DWKoJlGc8S(Deod$C)nrdCK$Bv%r7*LBWt!lAM>()m@
z`GYYm8nJ7{7&-=vg`V5fo*7)CARkM4km!(#8#5MT<E=)J2r|H+W{mC90~0>V77pAs
zBD(7-3sjy|JM~Yy>eH_GNx3=I(pdUt+S<<LmonF`a3l3sG}+cnwRe;<xT4jZB((OD
zT%@=_!v8yFu6Ck%;+qKP3Hl0NU#26QC)UvmO2<D4R>Y9ePA#R##g_&7g~$556eZz^
z4k~q82Wqp7uF|+BcGO8d`tpraToVg3D{DRNQ7&8%IVci+gh<k$>mRSp+)d@cgH}`>
zjQ~f6+{k?^q)BMvZ?EYXPfvsTZpm{Kl>b65gEbR@np}b}Tw5_7&-`tx)oj8`WW8G0
z=P-c$a{oj5kCLI|C}~R&P?)atlzWYM0v#{o62l*KqXG?(8d)^rp`!V>Hp5XN50{>|
zjYhMpqi<|%uFLh-vF<Bh$mPbxofb<V1q2@Dct^Q&ynFom?4Z+Z1#Gf(y5?TyCpP-7
zXPE0$IkQlRzg9K7){)u$Jjm=cAY+XkjoMF5sPf)Mt7XD>Wtsj{6Chd}`Xc&IORs`T
zkR!O5WYW0GjXJ|CKG)|)vzo0`653-Kc`Jd{4!YdlIB5N8b&O^^p41E-CY!>$vhZ$m
z;jm<I+uB{HEf29RUy#mGkB*GTeZ6h;+sxi;$NA_3xpwny0`q=Xzuyf@HN^~6-f^mr
zJ~WHL<{?jRE@5*?-kzY=nO!|h(bea5N811d{}2f5+&XaB^Aqds`iy2~Q=s3`Hm-SF
ztF0Shu4vnO)@>brKbLnA3E}szDeu)UZ}H;3cKXURMRIs^AO5%YZxjDx6aQlq|6>#X
zV`=;k+Tnbe{7<_(_59CIHt|1xwfMik#n8WAv=6-X`$8XpU8ZAp=}%$ni|LOqi?~b^
z>Yqr0q&3EY$tQI3ifjz8ZQ9mgn%b!o?shRxiZ0h=r=Z@z)S$AiwK8O#SSi$6M#hj}
zb6ktc%i<>brM7f%>`UL)q3p6yp*@NkHwp?UKWy@jZuGy6{<qQpHvj$w^*@Xn{H5|g
zJ^SX#<9hz5Cma3m*V6wm|HG3_{s)R3+m8-zk`XjpFO4xU&><O9sH0snu95?t(BXhC
zi>hQ$(*=5hs9M?~Pkl7`7Sv~TICZLDL-$WkkMEO(Li@5Y;O`dY2~K7=>iC+0xP6sX
z<*#pWGH`sSP5fzlfsq|I$!+_C_eoPB@CnIyH5<XFS8-M*f4pZ<>*42%YCUXlAXui5
zw?{WVUz8+;SBq^dLe=9Jk$b=ypPFNX9jkg^no@iEb-kkfh+<FF4C3Ro)}bU*-H~4N
z&>`UB!O6k@_wL~IEEJ}hp*3{Lf~q@Cw;^p3vwjzs$*+TcRrqN2Ryeots_6Y%lJ!<h
zC{e$9sOF$|1LA7bOaWbGmHy*7nJRCtT!fqC?$H<BEx_XL{ZdlG>zDS4?lqCF0h$s=
zd-cxQZUxIwtM?cu8JWDnSw2!i1<AD+mauy3?NHP<<T#jX2T*$PoJ4F5tQEmdVgov?
zq>p%{NmX5HjPmIe55=C#kvKiuKRLs7vBv2JeVEE1*1M0*n%pfflPr7QDK9&H4fVPD
z+ZO2kD|x;)9_!F^QI=dKc$}M7gXkv;Ex`df$9jF|AP{|ZL0v!rF*71B&#Jg3_bY&k
ze&J9(p(vLeo~($;g#i9D1I=Z!aA2VO9EvQ=xs(;KAHP*G_DvZ89=M~V*DA!DXlYjg
zI@)YfPxhJ#<T8b)lPKQE^6P$d35sJsn&;O^QDYBPTyq_$G2L1nb>O?~yt3Qz)R#`*
zS7>aK8}(ryFI2#Xvg?=JTb`JPtYSW(nmMi$XBjQZnDk@4ju@b}C*~D)Wn=%@*nc+m
zpUuC24f~Ig<##dxEwTSRdHnQS-~RJ#XOsVPWB>V=u>UwGgMG64^dsXW`}r(0M!j+@
zGXd+%1ymT4CPhy|o$A{tgyAfjx@rWvw|)*4L72J-K6_=TG5Y<S8}`2Qc_e=~7_FYz
zuiX%$WzpJ(kP9O8Y;=pghW)qPfE&szsfomJx9*l;!Ky?aY)t=?RapnFC%<C){f@0=
ze2vq6|9Gz{F`*4+;dPK+uA2M`nY>MV)x2tzSN#S^Z|26GA*`T3x7Jq^3px(3UKMy1
z59%(TS6nbKYxo1t8h-v9COr-7z9v0`Q*bQXhr^{&r|%I>wZBmaH|PJG{oiK)xB2(m
z-2W}^e)zw9|F`pO_nDvnZTFjv|L3o^|NE_M{TlaW^^GBhN^`e`+EtXx&S#(smb&=y
z(aVEZr&<ktchIH!0nJk%+B8J>R_En4!}Pm@nkl*&g8b?Ej{1SvIx>klm59gZLzo|v
z#N>|l^xi0}`10wFk8H@VRBw80OYYvLnp8C%dNx)Xw5_yy%3lCz6lt!DcN~p2Z9)3#
zG%EdVJCk<@pgzAl`0wS%y3zkO`rk(X+vtBw^uIDGFrMKTvH$Oa(&yX%pMJZu(f>C3
z-@l6f$3}nuB*17JM$?07@)D-WX;MjRV@Tt}*`$K0Ve+T+=6S~^5gwTN)=@eYXi4}R
zDUBq-ids!#Z!rA$oXTwZj$^XGKmNI8gFjKbXu_w5tu5nHgniJ6s#seBV~djTuCv9`
zkyQju(*w>XtBduvjECORZoOA^KIs1W)LuqvO-!8@5CQ9V(j(RFkS@`eqw01{0MU<{
zh^}(1du<5kRuA-kF%Ed%DGGP6(y#=bw<QeAtenR4=l`GsggwEkgO~ef`=l2CQ>(@3
zr1UAd?Q;f8^kmCm#&sPWc@UvX)3VzWdj2BdB)J%C9I<?-Ckr>2u<iQ7Joz;u<T&7o
zks&nu*y!-UA*^VHb#f}%oMi(`Qjosq-1RL--CvAb&OtO!bS!&--j4!ejp7^qf203z
z^#9Gje_{PUonZXfd)R)L>;Itm@9cW^-*2AnZtj2mTKfOfZTQc(QS@D0z>*94eNuqR
ze?e(3(I2K75B?`@1<b`O{Z!tT`Vn*v^eR}gU(oeXhgMq$U97<)NNz2h634+Jn5xcy
ziMmGZ<%tU9s6Ob|^NEiaC^%Y;e*5Z$&I3_MRl3vZyan~;6}k(VOc8}iF3UNWVT{iy
z)gh%-g>n5p`tkMt5fGOA>T?-F8KZdW{IjoBu)!CXX*TZmB20~#BVPfEFwn^!VsK`H
z8dL6tSso=97sy#D@(3`(RjPugBirfR%jdToeRMJ@k_o)Qs94AuIzr$y{*(ZZQVMsB
zluihn*vS;x8(rj~aJRahtLUl#6zU=NB|GhN-73nG7z5j0=Q6;cOj(M-2I2QO1=K0T
zw~pCLxt_}20E2@!>|C%!pTf63|K^(~Pvi!M5=A|y5@JV(L;IX6tg;bFV1_mCGSI%B
z0|Q(D0}L$#kf9yfRGHY7bsb<C-F{K1$Pm?NzW1Qqd%zwp2JgPbwkMO60}Qjd`#G8Y
z_@;}TubC0vY-2u+ar9$aU{vVn4TY)2sD+B_w`BDBS_W@mg2HC+rij@;z8NSs(>a<|
zG<OwA-9*v-sCNAy6)$tBwdJX_{j|_5(#lk);Kg8)I<otDiaD?uE%?2qZg6BUYp!I}
z`tv-`5dMjds;sJTdepScGnxm)A!=qa2j3zA$_(u~6sv!~Qo>YIEXUA~-4q!lI$BK6
zVY&mxFOJ{wCmySKs*CJT^93f|y@2UE%?k|D4NsH!{I*hs@se7-G`%I6M>*qDS>q;|
z4d<NQn@8<fPZv%CK-s-#5r;pna+Q6cqG0_<S{%_cPLc`}Z~x7<mREx<9fyDY1Gv5z
z2X&)K&qX@oB4%wnl2f*wZRlO6^?=T8$vpSAL=KLE?#ddoh03!rt-T{M`!6kh?Rj47
zX`VRAbGzvu=8-&_jRzON#$EQ*Bvu=88r0@ng4!O!J)^6Fsz>@6d!je)(1DuJDz&^q
z`g-!oJpy#vvbF%IXQUT>a(z7Ml@9_C3<H1<ZgqI!SC&0;YvY&t<xrPWb`S%mqj}Xz
zAFkL=rFqq0r!n=nymQg{WYBgrN}L0nPk+%tQ%U)k`RG$pp#A|08*rGE_xw$X{E;ql
z4`FX${7cGw+rxE5zpeQ{Vg(q}xZi6L5F_2V7MO-$gUi7QR9pL?h}@`<_RNEk`i`l?
z_o{f(BgHn4$6C>|?McA=2e&2$boB1zHLH&EJjDbS6siBEEl6rQ_X|go+BFPJo!5%0
zQg@vetMhm<!5PoWxoY*yO<Dne&N1?@EJ+t%{|GAXErL!`x~2N?Vv%JJ`_aSm1t{ss
z><XWe4d`7A1A-4T;Pi($qjC+>^hn{KQa3A9yD5koy+o&WmG+7gB;iF{cviFJfYwVj
ztxJr*h84yM%9CU^O3?!c-*9MdPPc=4I&eE+4Z1$<R#9IECi?^p;^obpNsswTaVrZV
zEuLmcSyFltO_(xbi33z&Bw8pu<Wr5Pi}MmFeRv^ycp2M!yyqA|Sk=U=K`P7LHOL-@
zkh)>SRcmE=IV`JN%Rr|p?l|Qdxg_ygVqo$aM<p+5HqazTUNHmuaGVw(z#d{750jf@
z^pH~-QAsO4V4w_+(Vrt4VkR>}SK07P<nt6r3TTfx9V3mgZl?)4E>*ULN{t8Kx?ZOl
z-38OHX%Yh=2%0k=vC(2Nn;|2>d;$Uy*QI!xhYjK!n}N8djU7-=WyQcLq378pl*{b4
zQZ6Elhiu#og$2~-RtX%I$Mpqott&h{Dh(oI#lUPF6SYa@8i0bLi{3^*G%_q14XMyW
zKFaVUoc=0B0>8kl8jBff7KF${pYt9f2{oPn$n)(Q!)Egpcvt?wxE8l0*>ppQq!I?=
zqg?@=!BV(De<_tPr%D5Qf!xhtsUX?H!Vm<+(b>sgkKZ01ooS1N&Ah1Md!UtIcH0xo
zXylQ@h<%o>>h!CmYcT+f`<&5re(nPEjKZe0O+73HI-%x7Q)t_o!m7`5H@^^Mc{G}i
z4cieRN@NxrH^ZS8<+G=4MHL`1!Ma$?Myxob)h*{ZBD_LPB1LSo$A>SY9oUOh?ox@R
z>jSI9IedmueeveyFE^Y~mlh!@vm1p63G<ntoYRU~lWAzJZ88xR{z%7<eVZ+Ng)#0e
zVWwZ613(MV9H6uW%Eglbw%cWbS)@?1<M}c2_ElV@@p*=J(h}qa<?QO?B7~+{Obdjm
z(L#mTn5gt{1kQv&;#`nHy3bh+IS0mK&L-J%6wfh2KjQ-}EoND&v<^j|gQFiw?QjxL
zX^j&Nidiy2%b!}%fjKa=N#9qrZI)VF>5tADMMi?CyO`Mmy)S8k@ODzG7$dmbzo0!r
zD)tQ@jWXWwUFg&eB|IH?rBYgtQ-rORwt842+Gd4qDq&Z@h7vdt8!KNmQqwZ6#(oWp
zP7~MslC~Xh;B_7;@4GjwtzY$UHh{9D>3zTv@X-RwH-Hf%>V2_eqHQw#q1i5@rs7>p
zS6uae)+-OjN(L-<*cxH!0-j0Bt=$0JPWDFdwn(r6`?;YBkF5gcv|5vHm0+`Ok(HX(
zJR8ISYA&xTJ)2rlR^<)mJIx+aYr%Qk&`~?zRw1t`9i*)J+Q^Sa5U<jhE#APN`g2or
zRtBupoGBh|&U|iY4h7UI?LfI;1Mt4FBUdZ-;Hm-js|Ltofm)>jTRhl~(5ALRjorm4
zF6-XWE-pc=X&U#IU{J@rH^N-LKOTc9FONYv?dqd`Z7$!B=I|P|?m78ZMB`h)5&j+?
zqf0N=OG=eUIpti+F`9x$N$3Px1bRjNa51Z%!)^e(_q+qUFpLub8UiSY(j%C43V~!z
z3zd4KO$cdY#;WydL0S_1wXc=hXh_UK<`@ec2Y%XelGU>s3%gTTWD2WHV{c`YSnN5c
z1{ZPQWOP`Atftec3HgwY<*~fQ$ChnW#OAHhAuzBU?u&*vu5Eldw}BySR!+m37IjyN
zs1wJ`6#*|$On?r2-KwF4qv$In3oYVAL7ILBwi#v<e3L0_9I#W;*Inw(O>ok*5>xqq
z@4xuVshPz1%`_^zqd7>9{ybYcfd#+Av=G0<#QiRVIgP$l$uehko^ew(1;pfnN&13J
z{%9~Dc&7+YolRMb!vys5nd0WSI8Uo0E^awRD?z38WuP<C2h&5-OO3+RorS|P{d;{I
zbd9Mq(c=T~ih)@<i#R_2SCLHfO70AkcudDpwau0_2VpK{5Hbh^{{B~aTVCbaf6ek4
zKW#bp1Inbnr7EsR8QK_B8;s9eY?X4~5=zmz8I*Dmk_gmOH!`FXF&e*9J$$f{qTQ<G
zRd4D~DX1vMg&xpjx9I$z?%&2=_rCw`e|5O1T}7#c)W)0vfKlvHiNORU#T>LaUDa3O
zYSpNj75szF%VddvkR@S*TM&R~STYT_=?PAZrty~bEZf@JmMdjRnryZZai!A+Q6ba@
zzGt7M2jlO*v+hb%q23k4s<tun%4tw@d#FwQP5DX{`tr4@%S;@s%AcBQs%f#e)f~K=
zOZ1_e>CFJ0DrXbg%$M?Zhip>S5IPUP*lLTmty>91*=~ewG(LXmc!-^&c?0Be<Gl<k
zXkj|pA3_wL(Bu~aS%F(aBBL!D23v{EPI~dU<7hyB6Tvi2)($5ok>)f2D=;+kMWLZf
zS+UC!O^Ea%!8k9)8{?m7Z@P<I&!$H!Nd`v_o}0+lOS-SaUo)iMA45XdV%emN*^aCv
zw0%_9mfB8DzA6-I*h;C^=2>uIeX$xlSonZ~xM+54K*lVxZK&u%1VI0AadF`UF%j!|
z6EbQsZpDSmFe?1)VIqNq5ix6i10GhtXv4(HaRQ-#x!8E1g7`>vrU4_ZzO><^#Vl4=
z&n_+wkRT>jOCmg$=(GOx#RP5MD;r|(yCNM=Tp7wAj?;P49C6Q6t7?ht9?K7SzBL=&
zQtU+cLtd76;6xt=D)C*j2nRVWMK-?Ju`hO98O|MRlHB7Yi*Gw(Hw&`VIP$X^^zz{K
z{$G1G=p_{+Df_rV06(_b{aB*_5<ZS}VIpYnj~=X@23R`*SUWXXYn&8#^!RKC1VqVZ
z+l+uREHC3Zs3}&{BoaG2VWOB1jG9pJu*5O|Rw*O{3kUCfE(g#muWp4g%qbn~Q&!k%
zsxXRyVKAS$8?2KHnF$fXO-%}FtyWWg4AxU~CfK6>Xe;jAmzq0Esp%1CXDKxwH&tk%
z=1z#3JF8H0r%uhCRj9e+QPWriY1)0Icy*E|CGXw2YwTjel=r^vsM$J6DxAN1x*BcB
zyIn3wg$7YmY%dDzWeJ&D-~hh_Vz6xWU^#)xH$B*u;#FEC*KwA~MS;JZqCMYTE8ZR-
z9I0{d;2jj!Y+t;7dwTGa-@;m7CS!j8-Tvv}3sst&*2tWxJdDZhBh6=S1BXX1-o80J
z`krLJ@&IFCZ{MAL|5km;7u6)EFAWO|A4N#}pE@O`zxFjJ;s7jEmMa@-;Xr>;5YdyN
zubfrLdn}#1b|4R)ru;uTShExDDF__{0^bREopg?G()m9dH2s-g$fM}ux*mFqB4Kd&
zS~a2#TmOq|JN4~(jv>;P4n079G5K?B&omb%H#H<Ku5tIIOPUA+$&CoRTu9jg6O)ST
z4}lt%ULV-g0ZWUQb}y~I0UbYxNWT^mey||$mlOaO*IQfU1|OV0dX~Th(vLt+??hmY
zntJw~f$)_x;0!>J?I5|Skni8@pZw+J+n<i`-83#fjq~eShXvJJ;j43=#j{V5@~*ka
zvn;=6*T~MHb*d@%I_STXRu9Vvz)<l%<-8$ye@}`$1aJ@?#1(th$+uAF^!WAR+3@7x
z`-7j^c7}%M6l6xx`P=O4|MR!&-wT(X5`OOeJN)N=!MC;u88{+?!|#vYo*cZ`KRt;4
z3x5LxpB=tFJUZxY3Hg-FUFq?aO{s%UK%;n3Cfaj3zW#I_7h^!3F1^O15j^363j@>M
zPAHMLOx_>#qRVtNZhvf=MyDZ+H3zQ)8IqKvBBdE(sZc^+g#V3GN=E_It@VWc=rS&m
zy}JtdLvyO|(2tf)haX(bJA3dgleTziAosS!DWbyFtD&&eUmNUCnhHl&n)whqD9bua
z>WkdnwfcC!v(wx)w;3m_jU_q;wXwe%3h9yYU#%335ed~ChaA5e0m?;%5CyGa*l;e>
zP?`=@tiGm49x)GS`3QivQ>I@A7ksCqv-tFoMZ(8NAxbrFKm%i9juXD38zkhAt!Lg=
z+Yq6k9pDTW8#N)ERt7CAwZKLa)^rLISXx0z=B|DM<xL(q{HW`_w0+TngmRl=9~<a2
z3?9kWnOip@*9fN#?5u1f)OoiNkEZxjw*s;l)=M^Nt5&A@cwwCPte&i1gLW)k1x(@c
z7VT{KqkP{P4yUm84u@(nryO@xy~BLWhIIx*^gbF6g$o$qL<ef}v;8`ci>lP4ES9`M
z2}=#^yQqGDw<l$U95kw@Wp`f#eE;}^I8w@zSyzAQVRpV<!q{|0lGT%D&fqn)wPV^+
z%8tnk7}!><=B)UYnkvV5(Vkp>Q+4g_8n>Z~S(WMwL>CddHvjL_XoUBqpu|Obqc12h
zm}=Z41}WOfumS+hDuWwRixl3ox9?75FfDTcW5;E$O#)WqUq<>l8^gdD<GV0&vb4bt
zUpm;yQnE}Kz1sBN66|Tkl(T}BVf5%zM@BNkH#Qq5e%^DmA9GegO-RkW8XI-_I4)oS
zZa|U0P^;DA%guG+Qpzy<79%p4A1=cW%?E}>-1w<~)epo3G(`u^ESi?n1TSqm2|MSL
zS?RLv@&3vFn^R_7O?wr2%@c+uMqsBCh>>^IM^Aq<PDwUxnqL$S4hzHfgy#`rB_z`)
znKWfuKQp$0;lx;HG}2doz80Uf0I*NmZZ<cB?eq<;P)Lb@giimQXok!B$6WncdpQ1N
z;_+P#J|(wq^u6Zpj)95Zk3W4_)?X`?spnk6LA15UT%P0ng}Uu(#mk^Ig1HOz{E=*k
z7f8TVw7^EJjjV%x%9WHEOP8<a6=!)6$H00cCvMMJP-y6n$j~?Qg^!uYF<;5>KEF40
zg@J?K4K7n&MZE;RVV(nFY#{N|fWtH@{^M8t!zJJnd!i$WfjOMt!oWcec}oPf>#Eo4
zr6-JFK~FPb25a^;YxFcz+ahgWg<|bq4cIy8JN^OCP_i-5q+8O2SxCxsRoAoY1Y?0o
zLIvH!xEQ?VhvlZkajPkD++;)?FLNIfB^VXgi$rzDvA~Vnsm;_vM_hUkbUcRtT<66&
z;Cwqyph&^D2smkU0h)C_&2H80bTk#sRsF%%7T&-`TV$N^?K@qFY)HCXKT2k!;&zUA
z*44=XqQOxIw$wL(%eN3!ytVx|-ID$N@P1x$krxaU$=wadn-UCA_vbw}$TU0iN*1}F
z*Q@S&o5QQtWbswNX*IwozDp+$=Yb|5oou^<+UN|8OMycl7s{$svQ{EqTJX<3NvHVX
z^HR=~k?Oui)}iSpmgaxQf1CKfoA|#b{_oR&d$#lJ+fDr6P5fUQ|94TP**yaQFUkM$
z_}Mp{|NGgu-#mNz4aNWcc9Z}6*NgxATM7M3KEIc7k&K5JRj_NeE6Tc$zXvAffjKsi
z!5neNO~r(xTDccAf;(pK&HBGt|2OgfH~;?C*Z({z%Xs`{*Z<v}r{DVV|KZ<e{r{EL
z|7RHg{|~>J`2W8`Xn$RxtkMcYm`}F0hCd%4onnHnhm(iVUgUer_oIi&LwyP$>^kti
z!uJN!;PmY9?8Og9`gG4k4gl?>N=r5xEj`erOBn1RhJ^7QC$NBXcVmcVD7H<_<DyKu
z=(O9#Vm)!P2B5@g6J9(#{_7L}WWhp0S}8XUiVoX_`u(W0s4lku&}q2s+5!V=_kuUZ
z6zMK<$0?}O>6|1KvVUYutA@%E6<6WfrtvJjpp0;Qj9Mn*f^}8g+T+8-oWKx@gBzq!
z_u-?-9!uM5&$RHcFBt4OaYyg{;}4!^wi)&P@gZPDck6mOdT=tYqQluZxj86`yzrFL
zrZ5O(<_p|M0$NtNaH`=RQ1ZH}y2ZF0v+6m=N&|}JV<`8$vzVpmi_z(A6pD@gZ=?Tj
z^#9Gj|8DyK#l5xvrTYKVZ=O8%_5UZkk2m`NuVw$+=>I|eUp?dO7&I&Y@z`YO$~j5a
z*4EkE<F}ysq3&*P33sY|o_9c@RR|K?^Rm>G##=5r3-?X+2unZO0aa>i=}sZn@87<<
zdg5#o5D{-<P*w5ha`~=ciL1QHB_`n6$0ac77+qFvJ4EMD7sJsst%plh-;nx4b=Yq7
zTtbl3jA>+W$i^^g-BDI@gbRfcX7qKs!tKXi&#}f}l2l!C;qB-`E{3)czuz`dv$oT*
zUq@nItB4=B>4@HOXR!&9kD<WoqbLbvUvkb5|1~n7bIV{jERuQQfmH}~{)C7`56b?7
z^3OJu4)dXCrMLFD;8jTKq`HecsF6yLXKp(qzSFCY^__zS4)<|XLT$&YJ)DZ$`GvCw
z12D7+Gj0<^6zw%6xn-a`&;{T<XRPMdB`dCCYHsyeHxF=pAX2oO4o+PT5it`+PGID9
zhX7kKxT`Dt8Z|K==7zV&K907O{LoQ1zckKrK=M6&8ypSm14+AU7)b(PobH(hdX$iN
z?C4OHo@zH!yK}c)O|9m($!i_z*cJta^$K9yq_T7;L$bwqYh$NbYNz=^mWhV2EJ%~m
zX^z~n)feMv%XS=$dVyElIh?2}W1?P|RoJ?2-=;}6HuK1`hpzj}8B8|&|IPk?v;W`h
z{~P!JDs$L<i~vja|2t2f`T4)UeY(55+5i8V`~PRZnf<?aCU=54)@-myV*W0@TxA!l
zD%3Wx9W{+)%&?(OWm&tx{XIr>mDe&<8x-jk4G9$S)eG@u!D)4uiaYxcdZQbnw0>_W
zBCYI*j!{crx~&aRQKtcV6OKrz>Ndu@GbPsBBK3h_!*M7`&QO1#zne8}qyKI6zoq)$
zA9gnS-$ws4`rmwV@6(@U`ror}p6r<OpKqV;e2eElpnz=jzh6oJdxHAkx4#+vPw9Or
z;92E)R+=-PTk}Y16y-Pm1JmY?$44}|mK-R_uXIydk=(?+!$^=AFRj2JYnUAqG^4ji
zFAm-wz5Xj`N0`KVR+@64R&vhW81HvueB-ZlP;U;!R$azSGh7a|3Z}!H9cW<WOVl+{
z3mcWPPgvj0P#A{QcGg2cK!N+DVxw_Gzyb{i4+e77eNgt87bx?2Qt!S_oRQB)bbZ@4
z2&mv_42MASHU9xkG0eTm&%PbKQ90%@GjTpABci=?9DTKZ3*OGeveUqBQbY^xq0JZB
zw}?}sMg8b#Sj5*u#b|b;6AGIwPBQzf%r_LYewBk4uMZE7&UykQCY2kGE@5i}qihjG
z!qW*9T9H9G)ME~~hVttoo<q^Dt|NnG(iivEykz(PFydl>Wy`MSDyC`A1Z~5w-QUN>
z1f=TkfB)%P2Hb-=O9A(&Za?bCsf{5XMSK@kBc9!M-;0nJH+@Emx_)CV){;ISdNNT+
z5o2QKra8~hM06i)MNdwr8*RP#Y5(Z#c>e?jE!+<UcQ915l>H?|M3fmuP7DA(+JAF!
zdc6PQ;FJKr|KP_-aahR47O4|O?`}0NUQ8?fTCp7C;Y3h?VeN_CyuMd%E_9d0NSrBf
zhw!CX1RQ1zV&1SNC*b$ofJa{ks3JOq(Z6(OaL&t3chf{wQ5}{S<Nz8qp@M%j3YT$d
zQ3&*es)!_TaxCI&b#q=Ows5QlQeJ7QvS00%p0=PX{QTy%JchGQ!#~m8eM;lJD2RoX
z2&MGFBm_B^G(w<6wv^!=kJHI>n7*-oz!QRCeSdItc=d#mAIFsr;b6}A{HRSADtcX6
zjq^oS3-yDa&A}f`p6jpm>FfF8!rbxC0l`x~R-@B18#d@-z#+7t^kAIeIa>E2o%TKK
zd0}^;L_eZK!5(3N4fJZL`^ow+X<1$-T|;q!iy^u=-P38F`q6?yzq$F5$&s4_e62Pp
ze3p2hVWD!GkRYmFzJ1fR-8MYxOmci-;_734Re=*$DG8F+=Bjn;<`+#MK-&o~0U7`l
zXsWA^*6Z`bv`z|$KUt`^G$ba65%HHiv89@|;gmna$F@FC-vzRJ2oDgpM3x{X=X&lm
z#y>!6MFEAx$|EEAj5<+<fokHS_}^$ELKFECI>9R1%@@`i+OjXLJD+uJ$?fW$VR(#&
zgyCo<!~c9h5vRp<XL$MY?Tf!0oQU@-cQt%E+5d@>QN`Ez>&G{KW!=_`d^(MRP)qFk
zqv^O$9v5;(aF%rVubTuABhA8}EurjWS1tKG0m=hg+eQ&fimP<RS&xy5Oht^2iXI>e
zKx3a4Mdm0By!%qM+qS|`5&8)Kl@TV%{RjW7!ZqovT$0T%Wi(pzxnsrw6)gymvB82g
zX0m{SHzaQun<x+Qb?1d4<H1cbS^&o`BO~Qx#>BM5NNzYL2GK@K&JX>Zp*X&D2#qq&
z($gwbO>Ra@sG2ZBZBzvyHdlhpMs0B2YRKZJ@a*duWg}GzfU1y_wiRCt)FkQF7t>X$
zJHq5<<mV_}dT57{66C~IVV+}-)~%=2@zqleQ2lK=2BhyGO_ORGm!I4jW&zc09O?Y(
zsh7+N3)0CUJ&6UGVPh08ep+ef&6iEQdFz~;o54`{*ujtpigF4$5z9+q>y>MW?XG9$
zT*x<_TS|;;z|5peU&UEERs_doC1f^i9!4AaSBXc}_@DuB!(<o3sm4;YTDKxvJ0itp
zClexN&Y?DG)wS6PO-k(n4IPrMYg+5|wpwE>a^yqHX8y@_b8hSz?{Dx=jbCe;XRC9t
zOt<EK(fQVD?!;NZx)-*#r5Cz)z9B=;X7#xjG|t%p-<an%=D9DWX5TLZyyazY0kZDb
zVzkZTwC@!1C$R3DGdrBv`NRWD1)>G8l44k0EY%EEgYCLub#b3e^ftMBSk*Db`sPr~
zPb%!9Ag>pA3Fz&Yuz&gzKt2#7#b~Y3bJ+~5hKn!srVLx?-Dx{#YZ{iXF3d`ep@H2{
zrv5S=MX!(ka`;kZ(|mdGYX9Bqv*CBRciY|(Z(i@8d1a1YpQu!uEz6s^k&x*GI56Ki
zP`JO=(dv!}H!R?(nv|Y-v$jT3IOJJ!jeiec1{B)xsw&foDE^iwRG1+|p&c?(VhStz
zj02|%Iuc*7Fn{hJdb#>s5ny#JF5VL%$O9SO12x=tJ$Wpq#v*gms0^p^XqY8&F++>z
zbDOV&zg}hWY*@vU34isLewZ9rX`Bu7PxWt@8fgey|0<nl$qiTM$Y&xmZBkal<l+KP
zx$9rUibd0rqWxy4CG1k-2{WB60aCxpM|mc0Kw*NB!;9!PUtqirJSE0-xmH8EOedEx
z&U8W^N0W3CpJPDg<L@H?b{?N+x6ySzdsszT`YAy$VKs}`)Xuk%#^n@&3FvEI&UcuO
zTS5KF3lF|goi?h|mpR$I=V@Bt=An_|boEeyB7WvY>+9#yj^p!zl4kn>#|yXRB$h9*
z_ZmT1M;-h^<iRqc{-K+ao>Hz}xaq3&>R}07T}TjUT@3`qx7$hH(s}ZGNegNz@iYN`
zE4!}+;v1HS#=PnaN{23WF{)dx*VB!S(-Kn~zS)2AS}!Rr$0Qn_IQ#wa?Co){d3AC!
zMkO<B>ql6j&eQ@W+mg;x*9?FitA3K7^%r`le^B{uhj^*hNS90kV>}h4?2r9u&WWio
z10<dZQZ;AYWG!-0B{aX1cpT2(^Zic)JWYI^p1)MkK|cM&IQ64lK^AXSrZqdTopFja
z9{S5t1Vz4Z6V2BF*0RmFj&98bz}GJ*JAJ()Qcq~?hbTla#BaA3HE8$kgsa9h^r5Z~
zHTI-dl;G9gy1i<Ef8V}^)VPKo3T?2lYqktQus_|-_@M6F3rA5^=(i`Gi{`h`^=eOx
zwCAAoY=gMF-99g1g}h8yWMs2XZ3!7DKWNK_8LF?pU)JiY)&V3C{Y@OUs5e$mq}{$&
zne4h^6ttq&qYU?Ft{GrhBo}QxLpTjxqn&lQYqUrC9c~y+=c*QLh&joE-HJ(8HRQLD
zndeLfL}$%0XcRLQ9-tK$Bk2htZ(Z|{Vu%K_PsuGI)|urJflfnlO8CMRZj*UO?_pl%
z)RF6WM&8%uJgqRhFzi`S(nea+f|ggY*0z{sXuwKtP%%!c>{bCPG4(Ad+#_DpV6wy@
z1b7>4z~EU~oL$GaCACx;ry1>Y^cAPJIZt3KHCB!+6SRn+hi(O86UCUr0q%<MyXVf1
z+b$GMqabVhV^B|q($K6`uJtOYsm|H}vvH?_WjCDsx3$^@>M$MG7f3E4t9MpZTBWZm
zbjC%hCi_=MtycAmASlFoz&@kCwqR-Nuf;32niz6^w>GD=Rg;|ZRrGrQ2xHaHk??Be
zP4TWkkwlj;5i?H1P8ukbWK-aIlI7Qfu!seQ??_V?ZCUpF_}}k(xIUQs5Cdpyx~O8C
zwpT10{avvcJ-=4+eP5V8&=BUmB2PfqI$~gCab<vLvxotqUswR@jj7I75-yF;rYioh
z)!<h!p&c<Ul9$<ps9_hYzJeuQoL~15W!wf7cl5S{me%sMqXoa_X-DQrwZSvh>zg<Y
zWYo5p)vC2Gu%kdaMpe;qu!9D??5CF8tb!2=WijeUW4w#t5Z9cl0GIu)W=o4O8z`{O
z@9HKr{Pedi!5_b?o6&5#(|q1S7_IWQ(*sLccMh_{8@;X=g$j*Pl&d1pb1QLzeYF$L
z0Wyj~c%{{?IqEo<_NoTrG{92R%7B930@e~DdawYiPf0b*a_zSO@OZYg<$Xlpoj$c8
z67Yd+BO_014#VIf!~Rk2jDc-hBnf*<w*;)}*MTXISuD7+j&0;*T}-YdC9RC~MdVTm
zY2~97kB!o?p}!$HDW#&jeF;iQDHB@xVE+i&VE;&R!ISS#4(`YYSha~0KsVj47Bf(_
zJIlBe!607v7co<a?cN=+-4?`>H89&%nC&{4ol>OmWK5@n20{MzZuV)GU(b9y;p#3s
zqjc<f?8xQ@ZSdPYcZMT6tQ)C);&R6wYpSK&q4vb@fjPsADNdih3wWL{U>8HSR~xAi
zo9$U|rn5W;ly42}vW+rr*lDVeR4ZYPyd{iae>BQrY)2JiWp86v*SR(6mYuCNc}k8#
z6KhGoH+fdIi&wLkN=2Eo-6GnH{v7SP9t#dbG!Rrr;uDfK*aInYSG8&=IY$FsQ*V$#
zyd&ly-mMeGm4UrqNY85T)moBPb`?_yi=S4G;6X+p`|WvLrX%{ub7l}lXSefo6ld8j
z9jj`S1RpU~DQ3FGyT&;TOhs45sa}HKnTydSn(9BE#Mj3!KK7%JKPR&v-@pTm^T(Iu
zZT=#k;T7+s_&7kO*)Jw)sFe>-1^Oah2j^o^;t;$k&J#W2d(=~PGj}mdfhZ&}Qas)*
zVT+X|&^*)Xqq-=}`=}Xhpi~2t!}s#G#C{@jS7}i#;BgvbQU;jASQa{ceVL9fEdsEQ
z%NN-g+nyrz#|+x>*6Y3{(Gq9xp{Wn5t&g(EM}0q@@>3f$r~%WaB>j0xDS<T=wBs=+
zHxmt>!=?{g)OVPv%19F&lMjPrO3OT>l*X4i6j_w;#5b*JxQmF>p#iC1vgxQq3>GuI
zl9OJfcy0o$kzcdPNcW-0M`#>U@AM5VzD$ME8oo_t_97!PNm^0ncRZdVM$i^G#SV4>
z_<}sK8Mu269Ic*d`DvI=L2!jhh~FdrPBun6hq64ztNmz=EEY3Pj%|na)Re={Q~h@*
zM*|jILFXv<Bwrn{{c(vyFHZG-6mYohi=hfE(MRM7+<aA`*%MfTHP7NwjHPESm@~Tq
z&0JTY%eWX{$3-$!pWQmXgOt5X!8bMh*G0al(3Uks{wwlqNIvkMkB>*LnnRseNUYW?
zx*_|1F<#2|75rjagBW-*GK@Zhmc%=#hX#=F3!sy(&c;J$<Dqj;=VsNXrlVQ@I#i;Y
z0H_-7(X0g1*OFcy&ANbqgc_u|GN%c1Zx8HyAK%hlug23`TtM0s^4WO(!&@t~<%tC!
z-J$>BwF({pUnx?|_ljDgEd#=JX*REW16ZDu!g|ntelKg;^LzMMw}J_JSl4@F*MyaN
zWs9%bJ6o}-m$t+jz4gI1fmBOT{WKge{}H!}{KIWbTecpCJ4Ch`gzm&w(b?OVZ}%|J
z*GOt)q$7fc#Y!=VMAXGf40i-d4mw()W|(LA?lwzQe1)=kyll&TnBD2kfNOAa<(?R-
zaatotsi&_6(!Q%kC=E2RAk2s^!M2H~z96ES6D^pQi2JsXHlvi47ns7)19kPw>lW5?
zYP9zO;55+M0pem*H|MNi@ljVeR4->^ua{bFH7elMsAX=c!tH%Sq*O_Rm)}gJOBnKB
zjXcZ(nzOFmfL@?R`+@eIjwuZZS39LdaaTK}RLl8n+~!^D+#w0xkxXt<@*SZLqBedr
zFkAYY08f1IFO&Gb0_qdxap-pTI%vRr>~hi(V`cVWp$kK*Oy@zl_n@@qWN{E;LpD3=
zkQ1B-d7C0a#j{D$ecX?B9zX6iHk4jGNP|tKJ?Acpu7zF4d^eJWQV%~blK7M1NK>t;
z3ajn3uWHx_Y4+wzX4bn|gXZ0@y*;<wt-5ye$?%d28(^XYT#fLe`9+c27(v!>tv)!L
zKs{ffZFsDZ`ZPm>_lZnlg`J+upT#-8%~Ffx?(~W3)-p@hQnDwso;?MP6mBR$1k`X`
zpreEgPWFGQL2{KxX`kTGQLTNVR-se$*Y@hi|KFH;SLvH<R1P=yOaN;<Y2$Du7#-{C
z?;QcKXJZ3dxhgNib0orgmN%Y~BG23P^)<U?a@^0PdSnb^BHbHTql9l!baGmUTa;_V
z<jyIWyd>1&a-sXdMt{es4*CjI!n*^8iU?q6;+hU_N=`C$_Vyj#ORVSDTNG<I7tgD0
ztf+cI(dg<u`OkRtX?^-rEd}`S=v5#kAf}aG8!Xyjx3Q)IeY}6N|0aMmY|Y^Z$kg>Q
zhY}d7Zrg%TZN1z-+po8TF?H5%V*&DX8*6IN2e0@48W`4blEt@cL#J8_@;(Tk?_M9&
z@s5G7K#^LXX}BJzXQYs>fc^2w!HfN~gO?G<ZDrX(M_E>qp$&R45cf&;_M*pwrzo@D
z!MeIPzulvHdmlxd*K`7H4){>a-YFq#_F7WESzO-#_KZMxK4Dy2F3yBIr~9_{b(x-!
z`2=a%YWDNN(Hg6nSQCVmx*%0_N0`84Jp0{!_Kj<lhj)KiYQZAQRHy^~**BR4K-Xr?
zbqzzn4cW;Xwxk%XYpF}@4O%OWMFYC;TSnkjy(Cb@Ee9{^rI1kd?QPHBL{Nw^BG4vd
z!6yI5CjZAK|J&x@=g$A}#q+=KKEY(~e*X8JZ#Vfre$D(JoBZ#!1Rk6x&LoO!P64k=
z962S9Z4q5yKJi|Z<aCF3epO>rAZ#{RRH?!4=i|7#{P_fpgIim}rMcis{r>dF*ZW8O
z)~eGF6a0*rNd-@5i#ON|PR|a{Ui<*1oZRt;c#v?<gyVTxdj;xiDKb>IrJeV}qsn0K
z?HS4m^*zi{9_8g;^zcFX5Ll2K);~pi`V}<8kKw%Lxe6|+yAayA-20zTi@u?Nh&p%~
zmzUwb<CkvdLAfnW)S?dvM*vFxuiZ)JFdd5kG-@Pz{+xetDGOniv_jA~Z?QgoUOOc@
zo~<z}sx$A_wD4%v9)zMw1*&0$TMaWWolkjbzF2;>pVd24#^qg+DBZp{Wto>lSZJ%a
zy$PWbjITZkGbmpz#`TGq<+F+NWu<wf5rC-#!~5Vu%nRL8--F*<dw?^MN?na{COdMG
z<uOOBV}j{VI{A3!bgouff78Xa!?Xx#YmY7FlYtw>i&8$I8N1LKg(wajJ44&UEpj7O
z=>nW2?_s}H$EB2ASB=|wbodf|7#Y_*bKH?lrU3dtD=399HD_#<cFR^=-%*E#9duys
zBsb8H6w!)-=LS*q5n16Q#qoz#T021tC+k;5n#{)8t>;v0TI`2Fv>U4&o4ufYqZMc7
zT4Gv)o)T3of3L-bNos_{4W%W0nCzKuKI}(M0svZ=dzM;qK0D4XJ$a7;nsAODb=5R^
z|M){)lJSw6<W4?cw9yznVzlFc6%>JNL4471k8hoDgZmWQNXnnq2_dIJT$=`<T)}dX
z>~a4O(baC26miBprJ$ixbCHk_b3WT1Cls?Av!E>|m(fROZhbT^DJr{3MUK^|Bcj)^
z1C|sng(YSI(YeviZ=;2AZT_g)<D+sfH|#TD68RH(jj0?(L08vW6&=ROsoFdx=S6;%
zj`@0cJed^91U*d6L^XLsZ0K+8SdRYWC{~I^!s+G6MIDKEPJ$*WuF&rql-sC?ucPA^
zI?Cl$oMz~dU_ktInN%D=PhWw+LF7y<fTyjXlAQo#zHYAFMx=8{8Fj}g@)}TLPWRzK
z%zgX^-L{~_ZJ@c*bD8Dnj5GkQ`sYV|aBHoj6t@+@oU)S=^o74h#xXk5{!QT)1u$sy
zeW~HFhs}`16Ey$9M*{i-t!e6fL<*CDv?MuCuo-gCCjzS~dbErutnte3W+^&i!hWi(
z5Iu2pAOwV&5S9UsbSP<9C)FAob)DLJ>HUbf8evX%>GZ%EZ-6NU5<q?pjBa^bR>?Fv
z*?+?!Gbb^n26C1e2drkw(R`udzKL(r>0%lkC&f0Jn4=fR@1k;^0C523o6EnqLsKbw
z+I6JXC8W(CeaT+OKN1%aybX<NPVye_!(Q*7!uwvbGkQ{0PSiMNUatysQmvgv4}ZfI
zwZ)VUI6UgWNY$P5Id;ySR$UeFTrD#_^UgrUKlbf93m#QyS)IjF+k9^@TvhmWng!mL
zvo5@}Yf_Ou%%YEN)lTM^x8f_&YpsS%_6+;9s39o9xi-b^p+~D#<kt!p3RdEvB6(BC
zn!|%9#d9tuf+1UQAy+vPo9L`XkoH^wt%ilZ)f69vm}GwRu<wexPC=dr@5Sd2md8=X
zm!>Jx5$h@0(hudWMXqoFML7F5G^_nx4%r1$aeX(PYOlP@Fj*ZTu!OLeny{A+Vfo_9
zrR-(0hj=c7$?kEL-#b?>y}$HF>H}RdDh-R-C0VPJ7vr*~P+yFf^zMS>JXG~`<co2D
zO|;7&F!sawh$Y`cuOCJp8i}m@d`(S|X?`UZb09Liy4~vpO{kq-F9-rer4NFoXBb57
zTC>XyOLiU3?5#V|33WhlAbQs63)uN6C}s3Q&@N<DZ3hXlglJ{LHmxcEqj+ATsF;KT
z4Vnv3t}#O9epBvsbeThDe0xrr41)>f?1qM7B&=*uX;l_Xh`PY)>@17*Wf(*3*{f#j
z*-KKoLa%z#Gw<qaCcRyC&Ey(k0cAS6Wcp@WIAxA-B0MayNSbH9M9~{tMVN*;fplAf
z1VSK@jgTA^T<ROQQ}_|0h!@Hv<@iRwIKQ5f1Vi)w-E8s86Kk6)YqMfWfd`+vSoZ9v
zR#UBR9ShpbjLO@6Unf^sz0*>Yc`Rq}>>`~kcoldY8bTdfsrhc20U^dk7$R1&k0`4M
z+8*kbk+*n9n+~*!$%5<>Y9Ef9&Md{<B!-L1t4j(AXEyyGaejO>aTsw!*>fW%P!>6~
z9P}f_T(HZ+GbTL0GdXHOc9Zjxx=zmFA6-1ziD#PCfE~`Zr^z%gZV4Q2`OvK=f%UH)
zTH{`gGw2yFHf+=JV^*nU-Rr$Lx!B`r9v5ZOl?iZ*bG>lWvJC*m%>cZBbo|#R-c1?-
z51C)hW7^Mlp*{emjJQ%EsNKd1!+_dOhG%`dLuPsMHdtn($4iX3t63%nfWy31ach#j
z@tR;U(n9soWKX#`^4|a|j-Y+cVip#1V-5hg_4#V<w8qYiOlQ(6Z@yRxLV0JZx)tmv
zTcd@7MXci}B=agVm$gkGI7;pq$f8|`CCN&`P-;Ea^IWhy8WU#=${vzmM50@~Inz{`
z(=j<reKUxM$2RpCo^F#32R(q52dEd#wvMkmD_j=o_5xYKYY>9DlVGaXNrATFadJb5
zV?4>Y!b?YFVuSwkp59obQWdzt6@I!`3MX;;Ef!63f5h~g%P#KrRinM87~Sjl0d=g;
z--nja(S6luun)YOp?J2dc0~mv;cXBt*EFSJRl?9%_vw)@M@l6}1d{MBY`jpyr0-}B
z!7ghPZN0PD#dCcOW`eq?@~d>unMzzwUelVX6AhD@PwbJ|Fo0%YG|ZC53xB)9FfgDX
z&L9q*I0&X5+Y~f_y{(!HfI^6LWpVG*0T9CcHchfI7YTBZa{9Q)eUhGFxR!)sLbGR&
z@ehfpxXOt>jc4gag1*GK4s-T&L(#R?oodgtuw<c80?YWT;2!rPS9hs|oIgbVr;rj}
z@C{>|T&BDuYe`-qoyJKbukJVZRaSW8s&st`49U5^=?Z0BrU{;Q#HiW(GwQyZ10Cc8
znnVPJ+GP9jlL|JF=yL~m7EotqRt2Q6J8B7|FC5=TjXHN$p>Ki_v(ZwYI+;%5v8B|%
zuD@0q|HXhE+*j^?PuCk|d5P=S#-nrN|Gn}5-uQoS{(UC@Z@rw~!wY<g|M%maXWw}K
z-`_riKO6t=jsN#A;Qy`ss`GMfS8(g;jr+0B=pX)N+`gN<y@fk?Y6{@}WL<4;-tyIA
z{eGbvd3Snn;<|>vQBuQ=H{EQWC0{>TsVyjC=#0d7i3l9VC{y%jbWY$<#ZF&sW~cgL
z3!b%zc#gt$W#Wg~>ariUq<Je!s(uOQV|Y=;laBU{R2z$Xo|>pb6X(pN@yNuSm<WV*
zKt(oAxTutTf+Q>h?Wc?k#1BmMg7UM{@fQaC6p_AdOl_13!r1Ze1_Vc7J5OLNt`f}c
zs{FZ1*t9NYDEZKTkOG|2#%G)-CDwo)97Z_?5}jil=}OQ>jSM5}yKn|lWBkHLN1Aa@
zuST!)NxFs?dAu<8cj2i7C<XnV=A0VOyRlIwg?9?Io@0=hd8Px(TSwz3%*pTqrdY~{
z&)Ta;qHN3Rm!_1$-?ca6OKoYM$=(RZef82C>{)04-a*+ly!f%Vbvo0cI{cK}-iN60
z&d^b}BfaI}jiSu_6TbJS@?y{8(LRY)ed8+Nc0hf_X@m2Cg22sP3w526zB97AsAL?Z
z#ite;2ZHY!N~>>}rOgda<%9+bEkco#6@ExIv-;<dKf&rt=dyUhG<^P&iG1q6Yjg(;
z5@oq3MDwy7_JbJWEWG%?<5~DiI=^}<nf%UyME#nkStpyUv;*rB-a$$}UtnPEAK)w5
z9s@@yx@J?m)T!2XvBcfl#hUhD(5vJ$N`b+ji?I=IXz;0hN@EEZK{1Z_=&pkD_C{cM
zoeKC)sx)_AEu<%Dz>Rc89c{LrujvZ<oN~TW6V&soRI$b$p&J&ISmtJ<1N1RCqpt<l
zOyP)S&E-b+8-*@Y_-R?ufZoD94zc7CG#468f~v7xxLD%KXpvmFNK!?O<HBBjv9fC|
z*ExHFqA?5P67g7R;AiZ{JA9Id(q<;YqLMMvW=)@<x*V6bvK&@$S1D0md@#ku*$mX3
ztBH|%1e}K{XAfhrU2l!+GBl-%>1O+pd_7C5X<U914igPW^G+D)Stv?iP2Kv{H0xs>
zFRNX((?Oc(L@>Cn8$fM~`^<|`$-7>J$$5`eo^VY6nvPt-sZu!TXoOuMI-%!RaVD2x
z?aU5)O!670D7JAG57R1{(y4XLSRjMlGc<+(!(jbx!a(u(b5)?mr<+dLwCAiy>O%!J
zqtu8ysMA6E1%>egZdr_0#!y|wXv9!&BIH(aP|mXyehoUk_uD%kyxzRm4(%&-XIXEi
z2|A_RYb33o6GsO%GZ=P6oIxovapW-TYou<XYlQmlJzQ>Q{S`m#SQw(EYN$SGsl%&~
z6`Sq(lV8qxWuE(S7sIx$99wSpb2`9rDaY*%$bsk2-F1E67*xR7t;N@k>%f1vmiWJ!
z;?fIlP77XM;!whKw-<KK$}3-g7F953rGeJu9N3IVGb#a}sk{n$80kCf63Hwd1>GRh
zJ#_1$CG=6cy7Rr~*Z^;g25s-f2az*(<bNgX>^=MtddbZ^MZKXa8aH-~pt@p3r8_G+
zdS&FK^ITsNU&R|s#}>ev1ByvH?k=mYCBwjogPtqvq$3qU?mO1y-fFIQv-aME{NuDC
zYlYsJ>TC68=Jux13C~6tb-KjC)vE&;cf5`oug6JvF}8kI2#ng%;K(&gfp-(z;P%@T
zrPUIOzh6P)>8%j^Wd$8)Juoe*NH6*zeaO&{C!LuKPbjjdVHHAeybKj=Tygd!gPOmj
zhOO2^3QBTWO|x)dl1^vqPvo}xXL$Xms`&GtV7)9yfZ_8_kzaTIe82+YPmiig_%{CY
z1AH9+8U9l=RY9H=6~;>|P@2!RDkw23u<Az+X7FF?6?D)9TCtL`Z?kcdROpEpB=qX+
zv^-RcaU=_Sku}AyH34i<UvuKu&L;yM30ym<xp8biQw&;+hhk(D`<3+~)*f48(YiGN
zH>h;iK(zg6S12(CAQAAcK6=_8<6p`>Z{wY}@&DWS|84yLHvj&I`Ttp$`g;U{ZTJ7%
zdGh4hQ{VsZ>EmxU{(rxc|KGFUn(H6zof4FROB?{3g0}`d{#Nwk(_vMW(O!kx7YQkN
z`iXoLm-E>GRMl#bmgyiFFJu}JD*Nd1VCNC;ldO**#c~ZtaOEWLbZ$&qxyb9j#Noi!
zY&(${q6X=E5ID(DHC{4v(lK92_SInlQCsj?lNK94d=bvBplr1URxSI1Dxh<|X~9SP
zEQ6))o5@rFWUSuJk%P`smCsJI)4)8;^6PF79at{#XSeg<uMegV#(NKb*n9A1@4;zD
zMEoGbuDQ8IowavTt4otNE^!aJFhGzRQ>5N1$4!B70Pe}r@G_s<2o!2;e#qw<2z+)%
z28-)~!Ea8S*nGaqu*{bY3(_DoB6B+;GMA=~S%Ch1KP4bb(kfcaa5^FqbP+d?CKzT3
z#LYB1e2D>ka}y+RoMX20=u<iylNc+j1zLYGDZJWpeidcuCya)d7oa}#MfNdtGfN0M
zw}q}}_GEc{(+6tM$<J&t#ao#A(j*cP+K2V1dcI@qQ1Eu3&U?o<)--Q6_Ee3G+wk4m
zc&OS8llsAvssHtkWi^F`1>&^Gd^Y#^Y;O4sIAINkHT3Qb`3&jE3Qp>jaxs~}7FT(K
z2JX8DyolVc+Hh>zu@kTC7U`Hq8n^nh3=hR|m9bF~VGEs<IQmjp4X-E@-!RLsT`cXV
zOISYP+tbJYw(GhZ4=X58W;*zdiR86x9$YS)2hh>bG`OrygU*AowG>fuS{Wk7ZQ?Rf
z(2c>`15YthLi0=wFT<|LZ@>kekxMrL2a;S|q@#n`B%LKRXWqann~p*aR_bICJF@dw
zS%yYQ8+gr8A#kI_K$B$ARkVZhXx!F7d97B47f|gy&7k5-6~#F({8kmfdiGRk#D@oH
zoawAR{(>{A4CdKxIZ~8JW}_Cs+I-ps6uujv6rXdJR2_|RxeCUX0;iybq%f+e5Cl1A
zHw>~|4dn1Ob~;4cbXqOyqqS=x8~>0uXYWFoAppx`&mL<oyQ1h7&2VvglNz_r_ty#M
zPy+x+aNV|KJV&_nLsG@~%onZ57=ekmJqW8H7hM%W{&&T#YVxXD+Wj*t+=3l9JZrKz
z`7+TaE9c{<%VwE`^8JUf)YGYR<r-j|iZ6p*mPPC7Jw>J2BFj3?5_ky`oPq-73Fyk-
z<#`r$u{4S9ln*|1w`$=X6$~AFlaAbL6+{e1RbIuWvp71})@_t>(BqeAe)SxreDrPn
zANj3W6IJ-ozyXga(&)2l%gD1gFMF^!Rj&3-jnIvMnFW^|%l0P|@1lRG3-7Tsrse)X
zUi=q%{p8pdwgH?J?9W0_Y)Lw!7%x4My~2<9AD}tzCzl+5GbKABcEXg?#fIW1u-i^3
z3Itx9S!BsryK}nHgF-F=*rZ>pwON6`olD&+e8`<l@+!r{nzazBSNnVz)sNkqkZ7QP
z<577Zc~6~?TW0jHHnc0;Ar)D1W|PxAUv`p^<_$ffyDw|>XihykhFZNl2LM(CkP(3W
zna06Y#^H(PM3uBuMWpUURk4G4ygID|E+`GOCS80DT4zLS>n*Ylt<^;*O_rW{S*JC<
zZK5@O6okQ>Q(fUl4Bawnddqz5sXITNPv`T}%g%vK$Z=dRXs0tgZKGQx)4WQCEWVot
zGX}+|7BEMygBHqQlrLuJ1PxW#bs3cIU9{wNdZCasZ1*Xu(zx?jP|A~WPY@liO=0Qx
z+q=r(MtZe<{p5qL_I2F>vdg9W1gdxEu%l`)WZY4odpOu;1NYEJhwv`z@F#5JaJ;HG
zr{J8M)1J-w@8<k>bN;*exAOV#RaM?Q{pXVN-)B$0*?r>Y|J;4DvpN6$mCk>kV*HnH
ze`|-p=W&^Q^Hl%3Sj<KhZ2n4fMx2b&DPBWSztg$8$F}6mSh_LNlycrQ#E5a6B{f)m
zI%~9E8$L!VzCWJfsV{o}igRR`#^Ml}z@L|;9#gzmC=QaL@S}nqG#~AdPImh8s1CCn
z&sK*Cg&mlx3*W_KN`-+YY6{EPHJ61N4K4-7g_p`ay}*#ZDsR)0VCJ1u9WtB4WKKZ>
zV7L%uHv}Z}Vscx+?Q8x6mi!JKN|m2$v>m-stzgLBd`@PtgP+e1j!qBX9-T&Ct>1zU
zht4f@1<RbE<(&E~T9C)MEywx_T<uK1qXw_zgr?TlmAnIf=wLqdVta(n{>A-+S{gs6
zpyl)du=fh3fMI)EGQ_}5H5^^08O+$3MV4Z?;uSBn^@70AUdfhh?k%C~BA!FhuCCJ)
zM|t$cz0LUv2S`!(Ka4;bVA--u9}RtbCLRTT?fyP4CLn2l|NBqZW><(l$nlKMzNoHK
z$U#$f*4&9zwR`R!Q@>WEs_<;j=>wu8T{E;0GLx|^M&gRbj6xveOCj3!yyzEp#AaoX
zolFoR1ipfw^iqFi#g$O|l%1A?&dK`Xf-Ps-5{}LK7`GoSMr@j*pIXL{)3w^G!?yP2
z+c)}fL!VNZ*<msSrnOTK0;3N!>CX6es!!Iu$<Q-U%*iaauuaz;Kgh!u)39(iG5JER
zIbM%~HAkonfyyO-a1$V4?Xk5b?`Z%~AXFC<f+7WVvGc_R)4{lwD=K)@mp{XIMEv8N
zyFhl`9sok{!l9;>8$8A}${Qj1b$~`qOA9O@6jopsXVEJZ9heQVahc!)sbM@F0y&D?
zIS8W372axy(Zr;Vrj*83UgnEzj7yQa3IIiNyf1LTRdbV;f^HOOR~VF2piu#*po7aO
zE{fYIE-;2RfF`AdYfnI6T;2{Y<G)YiYH%KpJ|*ZpW3;G?c#%~@^}ektjKVan(yPQ&
z#_ZAwW!Nr27f=6ACy1+o7{ul6bV_ap#(fVY5hhv(0Q1E;ha7Ss4=_dOaGp$uHY^d4
z^}SvS2VAZ5p&zO4JomcS<wI&<bXg6%ffMt2)G06H9d*!mi3>#ZTy=7A`osQ?J|AqZ
zy!-5%#_I5GIe;gBc-ja6zAXpvY-hI-0DQyl>nTL~_2B%Qr!-}gE|YJdIJRq;wXcU}
z@OJ;;xT}A>`To^Tmm29}41D#Z^adpKR(Kk{tLS7tdaFY82j`I1rd}ple7nl2ADT?e
z{p<fsE4<3Ce~$8^NHUo-v2Qmn_N7!|6*zK2H7^ZVevpBdWCP-tE#kE&e_Ac@Kg)dP
zX@O{x{Ric0>qL7|Cz;?DXM2of>HO1O#sJs7Xbh{3_Iot1opOvkmE=cTR`g4k7M-Cg
z;<v5m_gGh!y`<Xmg{|%oL&)p#DxO*6C5~AR#p=tox``U1q+Pz#+RB~kjD|I;np%>$
zx*oslwNThpuMt|q5FdJN)HaaTCc4RGUzV#(y*VDt3P)ZHe8;bF3FoI)9#<{b*&Osh
z+9oR?^hr96=$8Na85xDzY*gzkRW(jEpFWLLn5ZZ0n7RgC9r@LdCh<HVuj&L}M>sJ|
z`0r<=qw>IAmz0Lh9Wvf$T0pn79%#Y9OSk$Yp4Ub!ynelmtC*a^4>@m1>-t4yK9BSF
zMG^yMwY|N{ZH*mseZyh*NUfU;=(W&B&H=0dqqloqTe7zbXQWFwgPK?-gUt}x{gQDU
zH#tX{6n2-RX=9w4__yBWq&AKi_X)e?rDNf)YXEWGr8Skk*p4+-+qQslQtyrFi1V3(
zK^cxj^dvK;=6VR|%31RAhZo1pSoGgUzA6{zv!wE*1z#3%;nb~5i_1YtWwytcqq*Z7
zWuWrIDvUvygIgQsaniM%`OD21n}u%OW3=@LhauGmsKXyR;bQJU2?U)1vo>KZE&TD~
zd}dtc?T@GY*(tn|xFDkH`n6#+wuPEE*#$b!2i9QYQ9&gJAVXLo^eRd50ppaG+HQrc
z+mB9PK}k1stC^x&xELPSv7*l|3jm*Jb930~tXhh=D&wN=R9u4mQBr*-^pzBTlcFKr
ztm^2>vA5L>nTwOZ50$k(XE4rhp$KBf{GtcGkySAKK#^w|hN;Uhu4wbp*%>?rrD{Ak
z-ZefmIgQk1!+BZm<yR#hN^R#CQZy)-_{YiSsc<0mL;tV^G-C93)pceGvH^KAYLw^}
zDPLZkzC4nP)5wScbO;sOAJZxJvu<n&jiShi+tAZeducZ>hF2l6V@T#&F~=f?)_6Gr
zSbRzAQeO&)J%r#I<;*hmj-$$*o*lo*$19&B`5Flav%^qx%a4#$ixD&#y&<362jiab
zE~n|Lbut*KNt|J^S1{2ijLwQEQp_Dk?~XZbIQ?A#PYi)#W9>bBP(H*1T0BYBDJMA@
z;LHgzg1wsRC{MQCo)8SLccG9}G_elfjymDT-L2(bcvCi@Yj^|rzdR2ptND;xE^XjM
z{^WmI+f{n1lZ#I&2fP&CwxTDwkwJdvVoSzQ|2-1Gjer<pP$SVDQs_vBelR6GnDo30
zWjz-w&ko%IYISUczlM4zfr<sy47myyX<qmVkwyGiht_tmVDF_Wc0S0oe1A!9mn7xm
zTJAu(NYp2ExLq^H18f#37vik=W{3yJ>-HV$ZR3t)<*wsz;!$qUV^fJmd*@BV?S1!)
zg`$)vS(XpUTG`BvziZ$|nhK55utTu7$@tY<nWm!BS{!9N;!@S`peF*pKrh?-)I1ch
zyS$Ez@sKQyYxAP2t?ZO*bEMO_OThqM?cC|1($1sd!Xck*74>>u!j!jVl}xwsa_c($
zq?&U{;o#6t1kr3e0d(~2wysZ-bT(OMmY%G^zzltrdFtXVs;x&^+Z&I%em7T}tM}{c
zvYv^-3yjRoG{sAY*?36T0KUNJU<=#W!Zx+A&ItKc*BT|SXYNP^yZ!k`E8O>0dTQs=
zXNVgz4_kp&SKCB%5jvq@E0NaW*sl1ge<cE!y3%BTK}p@b(t)@drM6)`2%SIlqffn_
zsNQ5b?5(9&276X4?OO3K*0=4Q)((x+5_eT&_u8;x6T@V2NoP~E|B`Y5-D%_*EFS>E
zkAJStL3iK~X!iXlnh0x+=v@ZPYf8}v-fnG~Hh4YcSRUr3_PCYX(3LDxzQsvZYqd2w
zHt1?D@Q?wHFpmaBWF402-|LyrD9y$s@$)#XYHafH449cTe%{%`bl!ZT07z{U&f7dh
z%~os818y(%NKOO75ZX1Z+-zg%Hk<ggOxjF7ZnJfifHVe|co{C?vmlE~yc8AWFICzz
zLxs-n(1VNoi(l!3w9v_&IcY(g;<AIg5gPqQRbC8JC-RbfPexDsGgL@j6#VAN(<dT%
zAKm{NQcQm|<m~=Iuva{tXQ*r8iS9Q~Wn#aK-j@jl_jtC_3c73oMSI~AQ(-C2XH~D%
z!Fajn1a=XW=!eMQgJUXe6BS$rko56uY5Ht?XT+9neho#qZ6us`4lPLPW)`r1|9oQb
zYjO)JyZHj&?>_z<gRTxtnkVQN8*$Z>y1xy)^y#nCd)Nb$WgZpY*-I4{6FN-f`_VED
z-F*o-C8SoNA0r_gw&=Il)1Wx}9-S*A)&3H3cKZ6q<0I|3+FcS@5O`J7!aX*2ptQvq
zl<BrCU9FtLEGxhVYplb|+)geOR!bz6@FX#*zwAMdgXuV=^_SVzeAe+iMe6qyj0;7_
zrCF!%4F#apRvYviDt?+2S4k17t(~=0!57qpyAH4m<?{@1XE9dW33*>Woi|<W4<@Ib
z!I#=gH?Qg!WS|=F_zbblB<S3o#klj^sppntsMQOXr@$Yf8dkL0I!HvfFuu{H{LoN9
z-QF5}?y?SWs{2A5V{0#m<xHBgvK{7C4W@xhRk#Ony04(soh+;^qkjDj$>G+JdC#Z3
zm!Q9HdgZn(t*!Y^*T|HLMLj=<c-nLTArTO^70$_xi)UbwOfS5Z5f3YIzKM)fRDjy`
zzD0iBx^lq&WhQVY(XAKGSrvv=`mhW(J#RQnfLb#zoVX=Sj8Q(Df&TEK$jkDS(miUT
z<QR@`IG($4S@eyN7ilqCq*a$)%l-e#>v4wK0ujR5s3N*0Pf`T1y^pXPE0(^`YU%nX
z(j3s6-m!JK<IA}-F%%|zF2%8NDy$}I^nC2t$t=Xn3r@K~cPE8>S?TJf5jiy<D+9G{
zQEZn7QXB+bJlU1NTNFX<O{`;Q{f?wTY_(gGk-R3k(&P`#?fcAZIj?__SsjnZhsP(m
z^ngw1PBc1GSIKpJ>s($Yf*WQt*UATn$5&5}xFW3z3P_LArpiM5{7i*(13l|O``ZyR
zBh8whMapPH6U-8My8(WB3Q#=leP*#lb1td+lWURdY*EQ8nKe@A*sN5r&Cpc{Ct+qO
z(;wqj>XcGEWlBxdb>k*Mbq5J+fPjcK&qBtove_2*&71TPPsbNBah1^I%OaDbYTV9v
z^VKzVJvA%|zSk4-Sj)^MROm-^NUn1**E}x`#0EcJ>t-pz*dMDBt*NzuF?$}^@ysXN
zm|ZgKxbBAr4QKJOuT22+o<~p2v8II^z&ChlLjU+`B|@`oa|mi`wyoJlCMvtjT12e3
zup$w!E_mx^f@Qj#JlCPQ**4V9#g)G)WX_emT(>D%M)ud26{rlG3mXPLz}B$x=Qi1R
zjnTap+eSyVgMXTbZ0W?XQSSv>=2==G=+2Tvd_8_>>e-51k*ezM)WXi2#mSzDz+3H}
z;)HYVHO<Q<Gg8+ublLNMH<Xt|+pE9wYW=#rZq_ndz`W7=vP|zZU1NFKgoG`CO7DrQ
zr%K^W+&f>ZacLNp0FR>HgALiMQljCOt5SMM)A`lYZS5en+C3@vs1NJ<>xEG2jjk<h
z9*e|vBDV;e&?}C%eyGFIch$|Sg}S}Y9P|Cj!AgR0#D#`)7(mLDI-ck0%w3NxtX9ja
zgoM^2`P&xLEnqZG^|&4v1h83AOihZU<LgfhX`7G~I#dmJTSa4SOPhXpbGI=fhvK*B
z0P`c4OCoZp!y*dzy43QBoz*ubr&wj^=RHy}u2hJtwr#zw51;H0XTw%lzxib&IHhRq
zOHQB2jjD0R5s3Q0ntlZeHQdH@3z1RA6!N+n^i1LVroKyx1ND>V|Dza#%4}_g%pZ0i
zL!%9Q82T$_^$!!~1AdRqV*cJ28AYgzIJ^k70L+W=N1(}h9_2ImbeWel&Gw6l5`fC&
zS{1!L_+BIzNs(Yw7J84Fj4<vU-R2;AU=XAIH+>W2Y%xn=8%DA7Qf#0kivaV64(vp*
z5yHEZ*E)!w`j}r3a%EcO#VwDB<u*~1eqY0;pL5sRI?=U`K0_5L{0tSro>CY;_WU8(
z=S4glIdIh*6&X-~1vCNX2q`*70uZ<^=nV0UjukkyZPSjaulgq^Utc$d9$g&QrQ?WK
zHK=tbqRUAqFqggg_rAkTGXHX5KfeScKqdHb8UHDipn3Hqc<?j<?n>&M7@`U22I|Jx
zFke*jMRgA{Iqimsg-#GqqMc?##ej{p64VrNkh+1MC{er$wRM!I^K>?Dq>Yr)>mwsN
z*IPEc4k__)R{oYJUPV4X&u>;4>82%zkGuq&`pAv>YjE6_bVLG1tGf7EkK|)w_@s3o
zDxHaiOq`y69d*a^9lUtDySnxaHLk3o2&!I*eVKcCmw;D`d8QRWRTuueS7FuRQN4Kl
zAp~I82e8Wkb}fKi^&$*lN1Dsj$f3sN?mN^50?=zw^~vGW2X2l#1njVVxD|T1>pte=
zX3Tfj!+f`f`M3@9-B!$@XVS!7(#8@h$(Lh}kyy^Ht-v#OkHx2Q?jEd~==*cT<`+(q
zzKQ?7iT}Qd|GtU;-W>lu9^W?te0%)&$Il*rTZ{kx?8)vX{`;>P|NRfYnfULm@!Qp_
zGQHVaIdJ=uq~BXVo}C_jju`Fnm_n)BMBfuk^euvFD|d#6SNNV<)!DyMYaTDA=bYs%
z>T2gLb5YR5hpu#>0(BA41g%i^J&G%&!y^Q;7<w5D1LahDL^m~}Rg1`ZOxx30b2~=!
z-Ws`w<MSk|9seqWn)?7#K&-z~SUJ7Y3)o_0L#$MDwaa0a6d1fz1fy6dZ_<bqU)ePk
z{$*}Zw^@?tO~;(TBYP!dH$~FJt3C5&n-MP`UG4GHHg>_ut%#dc&M0Q=W>6H0kr`eC
zGQq0n4lVSaj%zTAWV_Qh9>vvDs4A_<4#N6F7&FZ1M4;JR-;*~}4`<`##<`p7wqpa(
zW6wr9_oUmr7{f>MR~Q}9kf`{6WJd|(0{18vyqRQO@mY1l4QDeFXQa!+_yq#^t-#;Y
zWI9w<n&7u-It#y#Z~OzwmZ&rDAC!C1gYtv*t77}ML3aJzV(D~3o~)&Ix1COOw=G$j
z@yvHc0sEaS&-S}Zj8s{*xhQ-CVf?t~mS*zQN^ZmZPTz;=*Ci4L>c%&Xb+r_pPHd{X
z@l{e(X~|~zWfxHR5P&zjxWYLHh3Ihy1zhhvm8tFE3}gP3z=R^MesSLEiA%8nP&nqo
z5;-{j>yte%3#)~PW2?fi(=Dnl)CZu8>SFs3od!4D78p=F7;DZs11dxODYGTkGcLmP
zmxoIv51iAcph)OD0z8OV%JDnzfDqSwq#l|OV0ZCg^dOU(!fjVZ#JBCbVey~i!W|B?
zzu7!(^8an@KO6hc=HLHl`_D9<r5BX%;`Sc%zuErtWapd5yPo~$+i#z3^8an@Kfh%D
zzr6gsrl7%mqGyhV_D20ay&ApFC+Vy&-@Gd^#Oe}Tj!}#sF7)?zrw1qgM>6=VVM)@6
zKHBLBDCHVZFu$LG@=qI@^)jA~vt*3tWb0)4gT0z_799rE>S=vDXNRd3cC2(KiS~;s
zM(XTgCCn@5w|s%)e353LB@LqJI4LgUc}eM!R7NEV%gd4P%N%y5s3rfqvjrAze#tB;
z($OmS8U!KQ?=x5rF;N<C{S4X3M`tP%P8C7J!EikHa`&y5Lmn-gqI>@KTl@LRj@UBx
zVno;v6E?`ec=NnW_@3|KOJ_X4iuTKL0rQcQS5Z(~d6`r>8(n~;g3q1toD;F(;L?-p
z32mzCtnGUpGFh7NPhCl{z94F^cB{kB)_zA!hc`nXTN|pW3E$nlD2(uMJ)FZ#MV8%F
zZWgO6(zZp{@=zPuZm%A<SKrq08&f>n*c^YqLxWtgetW_3QxN=4jjK2<`J4S0%40Yr
z_L@9<$2Jzc>*X)o9MqsU$U@!Q5#I&ZkpLP5q9+n*jkSFFpp3?O!b|aGd<ARs{tF%D
zav;KAk5s7cC6Ty-9jiMUnQIEYTJVNuX*it5BOQOU_ASoRIPh8lt;@e!0N_z5yr{!)
zwu~3PaJ9kgx-+qUmDP=AZ5rd4*5;=lGI+EkB&kERhVY`T5d)aCcUm;UQ)|8DVjf})
zTin0Ip({Dv7UtP_WUdqFqK0>BX6M>^RnHbF*{hLroMO_z8sht=m8prP!$7Q@M@KVl
zh+VPG-Otsgmo`%Xsfpj9)Ll{9d`=+~lo;YRNEXjTz5C3HUv4s3q}{^`eFKb-MK;|2
z<+=U)lY_f3x~f*^alA;=a`VS!Ub=KUY&;NG7zYko*WWFuZm!4O*mB~YBX{gMvU5oC
zTpuFq2E2|FDAkH{)T1$~(L&VV%gNr13m4^&wVjQ*;Z0YQ?=s?|YJJqr1!@^E^fE4z
z@lf0_ywk`@l-HF_E(*3Jzu$(}O@#XK)m>=Bwd&-#x>!Zz--SB%wEBxm>>7QvQHlNk
zSN0+ZIt&EYHF2ygu1@FK-N}U)%v`k9&9T-){HbYFtWtTlZAde1^%0orj@Yksqs+bc
zRU@kn__H!;n>7d>!pD8fd+Sj74DE)#2hyTU3jbXwC>Y()@NV!9q2G8P&Tc?45Zm4g
zflHi#J+LxDJ-aq~p<V6~b!;t9D#1o}m~=9&)#l*HjEOD7=kEHu933II^jp0ZFheC>
zjV60AR#z!3N{=RcRKj;LVpl9p{!IHTF*Hr!OmtLRlLwkEU8<ya|0BgS+EXi2=xL^D
zz;0n4hgh;5%Z0|0fNCTcE|O^Awm2?a9I2v4aiLJuJnZ^v;oEj}Mw)5eKsy4R!H`V3
zw2n~eKAEvBK5n=tg^!s(E<*IW9iyox5Q8umPkpgx=`(fd!}T;mQ_pkE7f~kg>aq~Q
zex$?p(1GhrMYg_&eXlO~tBr4JqRB%QH{z%zh@^+=_eD)Mn^=#(f@ls(T+YSlyUzVG
zGIyQf(rG34$740^vRLP4AIq6zD6C>>t*Y8U!FIU{1y&TShN#{&q}R>!5NO9mOxnV^
z9Up!$ex@ooh-#3-|9c*`)x5PS_%7PPd<ZJT8$8-(cv9R;*sUe&Y=AaG%a?L8Vwcq?
zy<pD1komkpojsE$Yo_yXlwRJJ1w#9ZNWH<3zN^d*F*!g))dZ6@j65_bKh$|N=QDw`
zEm+Md3e!VdO7y@MqnF$1T$JMuQ4w_JGw)TWY+Zcu&>2W5=1WN_9Xp-QPX%&75%F7M
zs_zeu4x^vnypGHfHXZe%YhZqrq9Y*2Ew}~Z&C*e{e|)G9`*jSyafBg1@z(t>?V74f
zGt97y<GN0)3@hNZ+Tygzb>P2SOI=w_1$p6}bKB-6jw?LNlWl!%Sp@Ky=ko<hZ2sg}
z+mJa*ZJ3gtr669gbgLNS+U_`DrS~0-us}E5xrmWz^u8CU0CHU2iT7&ohfo!sS=&`U
z&$mrP5U+NvOmC%iR&F>h(%JZoBz~8oP=~CUIBuR1Q;ZGftTMy4xAus)kGX3p1aK?)
z_`=*frN%H!Mv;_2q!<Mky4B=G3R{9WqbZJ4mO{DEVP8BRqi@Y6(2Y2P#6c35DF}!n
ziE-+4ERE0QMI6d5IvFZET<Le|5R{U*0+c9LREDAw9W+#NW@H@zh2&^-{Jr_g_P%ah
zMvQLR8|c0?PLj^mo(^98h?nE{|6xs3A3CjTv%G9#CebZ0@VLp~wG}bimH^KsIfB$8
z#bF7ZBHanfSZgAss>(4rZP6l;kgL|-{C1Ci?tK(ywvTFwC=J;V`gm@1RozG_(?ii`
zt!!8+$z+(@O`CyYu&aX^H9-ko1TbJ4iIbxT15!tDlC1?)5p<~873$PzW1^7=ae6n7
zsUhI+jY3I6mA0}L32db>1+)sZ9svy0NA~&Nv}oEUhCD<xZ>~cMTPaKmy&GDO6k{7u
z{C?fn&9BgX4v5rr3RerH>M9hWg-B`vp$2JHZ$JCHbE`^~2(E*m2YjJc>)MFcG^_&A
zwD$qF_&%u|6&V<=uwvOP(zs${F^=W+(E$3WUBZk%Ht!p4Xs}3l>Zq7mD(EuGHTo1C
zzSM5DO4~;V#_M=S-n!Tg26{rhH*niHzuzt-``F8msM>$jgpfJZ#`9Gs%KQH?J$sH0
zntZd+(zs27RV{daGtDzdl?VM&ZOlj2N^<=^II1QZa1021RY4=Ec~FMdZ{a}0bnN)d
zjIf*mS7A8&La`Y&u`ZLjI!BOy=4)wecORNo?r}^j&WQX+iQ4wawJ(^$5y|Pk5CzIN
zR~t{;Os8Zx#iM)=DRqn<vY66Nmn)jnV6V0~%3T6M$CCB{@cHVJy2i^!?70mQYL?8f
zuUya~?C!w5`c2i?Bd@_l-KMQ@f@6xHQpk#f0Th9WL+ZlbUi5gt=@H)nU}R`yfW438
zJWm#sfxJ*-*oazyy%@@Pkk;{dpe!d*BySpA$Hfe{Ep*S|C;3@_p?CTRmG5@W@D7F3
z66{x*G11Z3q7R+RV5j&0+I#oDHjX84eE-&~m{rz4q*xm6IENFmhX8ii*uVjtY#zd+
zjHE%DAZc`FMqrX(&TD__Th-mubCCcWJ7?FUPhzCLRCiZbcUM=}#m6g-Q|KF2Qk}DG
z1k%r|A6*EIUI*QM1(4XXAEhTPXU&pc7=X%EoP}guM@#YiBToVL6BH?4XkiAD%Br-_
z%Gq>EYrM~}N;WUsX(cRhQBVBxu{}v<yTQwZEpNJgu2!TPPor=Po^uIq>T11F7{k-U
zpKNRQFJb?=zEQOQT&wIqKZ*V4R~h@y&DFoGxSMNRtLrbms;odiXZufO{j~f<>;J`z
z&3XR6c+HFb=hn*F$_rZmn;WYy{>|B}>_02}|7!pLboT!nf7x8!d{No|SNngu|Lcd_
z4{!o`kN-!r|8Kt7+T7S;`~S`L7nS{gwf|T9f93zB`uwT;e;{f;AL0Y}9{(>dUTm!9
z{l9FkR{nqgEdMW?pOgQWFIco14<S>fs=*0UJHi%Ah$qo+k0oS|^ItPs4e-;V<gVza
z{vJ?95{9EV^(eyzCi*A)OHEzJMBa3G6a1!sBWiL|v%Cm<gF)mY_Nwb^uK}?Z_wK%7
z8FgvttH>MsJXN~%_x|0!&k;xn#{7ymiK+3!`B}^PE{v0t<6WBZn+*<U9N|~S^-V#f
zoymm<<V=FXz}a`lKXwjIPmfPKh%ltxlGJp#k1xK^)6fR|;40{)5kP8o;19%BdDrWR
z{NBVh_Ql&MJ6UZxNf-Zj!mF#;Pi!qiP_XZ)?ak?jy;ywTf~++}FG7H(QQ$jm^{61K
zk3@yD9{nUTOd_x6cfH;<gQU7dEF(6t*Py$2<#P5;-a5Uz9%Z3tLEqztHbg@sa&{&@
zD<2R{Z#23Coli&JUCc1O39p49X}0(!ZQ`R@T3p_>PxKyfSSHr-ky<De0TmE=?}ei<
zGVf&kB0{YMH~#szuH@BFjOJIXuG3eo5?p^4bAW6|#mJTlAjl&L?hQ=49rnu6>9ka1
z?h%}pj9N}M!W}>MWaoZ6?;_Z4d-sj=IvgMf)wc8Xv-lhC0fTdW5OHS~jhY!(z`Kds
z95U{J*+n(|fe60QsQ)~vyT69Pq(N;-<UOr6;50NDLpOdh2-rB3O+rJ7X{7WBtY9Nn
z4MZ8!=4?6@I5j^+T_8*dEtGDSh|AA{l%4{^sNnBbZxXI-vkj@txvuG;d`TT<4{Ej7
z$FB~LPLF>?_rFe}Z@y0Y-~7Jv$JfjBm%p!C-`A|~>+1V5RjLb^z2ny$!oDtEQrd_6
z@KO$A9@c@N@7O5t7w>1#iC~1X(a|9*qo%_Gc1B8hH64Ga7e+ppXZ?!|7Sxzd{p2;F
z_aqA6-8DuMrp5G5eWmeAJRRkerYRkXhv6;L1NNE*eq|n82cxj-jdFBJi*9;1g8eQn
zDX%;7ccfSwue$7cmueQaF~FwL58|N;)EB#N!v1XJ<596uXHHA)2^|c)-mKA<gpg4U
zszV3_01zS}6MypAOu+_E^;U}GGC+FFRL=g{RQoJ%vwPtL-h}-~ZL2sAkBGp{K9st^
z5)NS!-nN|a9Rg%QsW0@|QC9l2KcFp<HY%)R9g8Z6{DLjg`T4hmq80k~`uvo>t!fQ*
zO!BKJ=-+3!gtHd&f+uuXvJCrhf1@pdwE>SR1f5~^)%Myx!s^7IG;zq6V62+DW$`0w
z{P?5a;HkNc29Z@yt+ydVo_dp=`m=uBiHTA0cj{4iTmR<k?l;fkua~=6Wka>p>Y|aL
z$D*F6!`mLOJb<iU8pW`n{|>r95&H{9oz!;^)iC=f7Bm{7KlKz~n#~Q{rq8@G>S}jH
z*;JDnFRq<oG9GpEdQ}ERMkPeliDQK_zu&lc$K8Hs6g>58T$+Ha(SWx~WHdB@=B4vx
zI#&e;IGH*buq72~G+fvW^qEB7YFyxqx@&R=@6f?_m(8@dhNW|V3#Oe>NC=OU1~Ho>
zK8JSd|KFq=Pyb3w>`Qc~DRU%eseU>BIzgYl;qT94`wz`Pnx#m<A}3nM=Bz^hvp&JG
z!epaWOXdx61H=MlR|fTCjVa2QS}1BxH$Vl?ti1V4tCrhk1`&G$$#ekc>Dl>7=j8bG
zyrWJaSrav;N2PVs4*E^vke)RrvvITEGzZYL1}vp`mu<$m)F>Pk6WJFUfaO8>J=!ud
zkZKmFcOCZX(d_4{CG#?b<FNB;dgU53sq+&#pO}?*k9h~<lyn=LvyQq^N-;LQ6!wz!
z>{jwEp?%;Jd(_QhHoLpnpi~v-a9{H2|9w9W1`}3yJq^Req~nL^MeNZ5UkXlRr^`Ug
z=AmzZi{VXiQbUOuNVttnwrWN%5NmBTwelAcU21EYH=4YtvzmDQ(wN|hwT$}V&ZfkE
z`&nx^JMp5<C#>0@*abm`tf@QwG#9-wW^~Gmc)D;(zX7vkP<;k6wGcl_f3UikHCu-h
zhf4z;y||fH`fu~~JpIb2ew>>--hQmjN1->}ZDc^%{f4drKTp&(fXKBq#ePsb{h+lT
znH5}I@o8RR-ABcRU$b&%Q^+%mHA)wKG<VfU4_x-ApXs`f<}duntn9fN|1*~S>A%LB
zf6Em8ud(9Ulp^Tyb?jSlhwFe_NBtJ$aKt`zgmX~h2$l{Ak9uX#A!d*&Vgglt72(>y
z9cAa4z@d}{Tu(B}>Pa9V7nG-F@XDSa6k}$V_|fqcs{Z<B%nWiQvIWihUNGzY`?J1W
zhB@z@#T5$UJ@O}w><F8eBIYQ&vt9{)G8I~BceMKnv#Hp1@3{+6HuGw;@dO~l+fE8q
zU59PmV$qid;&)KhN>ec8R)lZ1qdN;M6|jG1A#}1B9twts-&hx_4zu34Bh%m1Sd$Q1
z?wuK!HoabC-5HcQqy$+6S${WdK4MjCIlt-)4O{_u?-~J|+;PgUD&<#`QiQ(!s|8=F
zGsl_B>Nwjoq?p?fU|3etAn`03vX>_m&sqb$yYHHoM8&-mm!L9``bsC0l&Vw<485R=
zMB$33;>MShI479TgFz@5Vto;gik%nwO#83sHNAq4iY;YmQ!d+7C+EqK`4`?Lf1X&|
z1NK2AAV=?=YO_#nHSOD)4AfwuR(pN0dv=hQ$H8=p!||o!w_vLMjarG87g8$~A<2Wu
zKqOLDIt_UH*-!0f<My+@^X$9rXK%Kjon@tZ=!}u-eW!W>0p8(>qkPcf7kv9#Kl!}E
zmxD<kQofVJqnF1y;h-bJ!2mWMKEhhD(?|w({uY0B`v{?BK)nto*Xgg*|8~BGiM`V}
zxu)wslFoBUm(pw=m4*efaVed!QW9@qqcxdXzdUrTlSk%=`d3I~%Z@k+dhrFZl<XAX
z@(-txOP_kZYuafp|7e!hOy<-~iZx}{YA;_O|7g&C&Xh<9+Mh+9vZSn^NJV^Qq%lrs
zBiN~-avo_+&7BO+`U;wrG|~OZq;cP^l!%(i5Lu0=$Mlv3!_=7{Uhf_$%3@*|plkFa
z-!t%I7I4r|c0Je=H^?<?OE)8*#mwzd&~?V)<l4U@zOy&<jkr@BmC~Nj^Uv<aUE(tu
zV;0%!p!Tp-)qXPGgf~Qqk}n>3l2HE?SNgE6jtN)!LU_g`9>iGIDw`{1EUKj{y5)LD
zab4_{y+uRF=5unhq@vYj85*IADP^BMojVPla*_Ikx73H&=Ec;Bz-2C0w-qC8vC)0u
zvDpa&71sVVDVbNfPF^+1)I6uAkALm~p(2|23C%i$S{G}V#;^%L*Dvvc21%7+<1gy)
z5d<*xcD*14w6gKMBQT7#6GPOeK;L>!P+5Yct5JA62TSJ%Z%$tCo*w`Qb-iBd&bG5c
zv!oXbev53aZWfC!qgIM8@<%NdMPA&wc*~wP>aDshf7GsG9R!dxM?W_X#L@{lEt@ug
zRXhfjU><II=i;A+9z|+etoaY1YrDN_?o4oh(SlEK5t)y5Uv`Xl4gkNPQkTj<xJj!=
zywfNeXe%P%-s%~^4|@`jXF}0VUygtnZM+B>@H=?x6q+`6*e&PFFRyP|*joM|XO*-b
z<Wf6s!kqbWDcpK$MQHlbct{7-lP1_x0%Ch4F24a}$gF|hp`Od4<hap<gIZecdY_kX
zv^DBGg;|N1!7jhPwU{i}J)nk$X#+6Rk^Y60#nde9kdS?82huqscrs<QDbeNl(0H3!
zFlQfQrqbr;PgV22`7x3k%GQRPlqGi~3)Q?-{Mgh5)8CDZK{#y*mzN?S6mZ=ri!x^L
z71B=sWUQTjINDC17;mSG5vMWt8n%gxP-hH!=ix3bkU?IW4D6-9%Ft&z(OA%Wjg8wM
zzBQC?1ue%g>guanilxZDZrv>227vqP!X9ulx0Q101t<52DaavD*ItObr@)-Ko2akW
zF8XA6D{Z3`Z(y4C!`sO`q)qj^HT-R*)GBUC**vvo>9Mdib)ncC3*)?xY;iLPpF%K+
z&Up9Ch&6PV8>M|shxK;4cu>yA_$<Pd^RYfpGX+o9k+NBIKFOz6_*tNwx6^XEQPPmi
zg{#53hIPYv(Z$ewZ<ZEKkN$egVngN@KFyRqy|1|0;ibI!Ik$q|)ug=sRbE`Lt9r}q
z3iAuTovLDQr%me^Tw|u~Pdx;s3s1L=XYZ+VSz{$r;4kwS<I!3_!*&QKf>)}RljWAF
zWNy2+uf@4833Hr!yZ~1XpoNn`L73awEEnAy`CjyA&#2vr`{vY)Ag;|_Kx<k$mHsFv
za=YPrD}xLW{O;*V=jGw+^Mg~CA`Nd%Feb<tr}i&M&}RIt@85`TDAZ1+oIl#4%&eUA
z%+zJ=*ej2#tJOwO9y2+)g`#UeaHSNukdk$idwb*J({PF!jpoHFF+VBV<U5e?!Q4;2
z*_(Oo<T;@1yr(+lbqhU0D*6}o_4N4d`GGz6eL6{liIH@Uz4#h`p|^hP-DT!o>YAC~
z&(?gSYQ9QqmdrY<yMMsEr}aPS%-d+wzdqLN&u{B76p$iHozCVr_4)4wGGI?gSnmGF
z?<GF8&*~GO4O8UnyQDn~r@TLyS*0I%KBw9JdyY1E^;@8hQcy>5r}~|MI<!F<fx97=
z!;?=$E>BD?f6q?g-#;$BENX2r#n{#-<y2$O0QLRo;PBOV-yWaZl*5{e(4Y>ZAi2{=
zhA%sZ*Kae0&=32BvGxT6($J2)be&iL%{$gU0d&q4K>OG!ZZyYdCohluU@+{4QT%?y
zlL7H5=_iL~E8%0&(0wgFmX0#06H>|~(HQoR&Q4Fuwjljx$}B2Ps1!^e=v1*IRqO{<
zOtTfE5i0mG+jX20j~Vsj_hT_iA$>wJurZ{6eJlc)-`3)(H@s;nwiNqOmPLbjy?b^}
z8T;SuWf&58x4*PA&D6gR2kAt=_ToeeoP^W+XBc@i_~Hhcl}&dJ-a{ch^`sY&l1chl
z)BliGA4mvUJgU1&CatM;v5vw$!Sejj_45PEABB3hY522AzhzmL_Phyha$R^T_xgU{
z&AeV8m~xyOsVuRr^7_V-D1`@uL%Aa6jWE+|V`_CZ^kO(aRby)yAtQ%nP^PP{|8D9{
z`UuX{sQ+_098=})45pE(KgzTyO;+5n{PsC{8#mR~%P1Uw%TSazz3Hrb?ca4&+i9gY
zyWbylzCZZsWcTp2`G`S?U&q|M2>=T-Y<9-z(dn^n-DJ7(&>xKsC6_$|tCAOWF&mcm
z?Rc00p0J#-292kHmoF@xV71wq-lpcRmf@o&5qt2MWIZmyP8?5%5&SdmIQ1*@;h9hd
zkj8uE!@ycKi#Ebq8B_OKhk3^wNTQUu9R|erBG(vP-g1kK1y}uTfK|GI>J_!*oS3m}
zJLYLwko6qaU^>AHZe;MT29+un+>fp4ZPUQ%M!t8g)zcP_T{~Rmetqp&Q9%T?!DQwy
zf_r$J1E$NQ3Jj&AQr{Wb(>r%Mi-!$Wu&L5wKk4*laT2ltbfcjR!duN&&L+BfpDT~b
z|4ZfnrSkt$`F|<+e}S$n+-iJ?<Cll||61EvTg&->*;;wAS^0md{J(sB|1VI%JXfR+
zr`O(qMoT^SCoIp4{T@u(dvtOeU(-I$VlTSmRtX`{`t187UkXeRBdrGqAjA<PNCUi#
zh=yi+<lp!s=a;c}?Z2eDzi2nyGlbpo;4He$Y&1NB#PkorBzR-hEAdX^JMhs@eNxS|
zYQlj*AN(fh&pc{C4@iwi+=}C^C}#Y0)quo}2;#i@gxRYrKY|W7xP4~vV$o-X-C681
zqEgQ``dd7-y}S@e8nbbDqtQx}2e&!$OJA#UeaywAdnIle42V1qXjZth8rR8?W_mF5
zB9C|{KThZ4cIZpk3^OZ}e(cT-OlKR(sQXCTb$5K-$M=RYLg6Q?Y)wXp8;z65_ZtRI
z%LxV(x>SfoVVt_C5ICA5^08_5c$$bbvP9=P?7IdI$@#aA;eh$NnvF(sje}<xxrfr-
zQZu2hi-lxaW$>yQdv}5|U;N+5v?c6%2HZi*38A=qi+fd&(9)weh>E02zXZud25Bsu
zhA^Ybse2x!F{88}L|V=ve&MZKbc61gSABNBt|8TLyY;35NK5SH8(=g?QIuiuO1UrJ
zxcX<UCY0(%{(zPnl|?R3X7e-SeJcLH;{PlDzvBOk{6E`kd^q!eFaN(vdFwg;e{*A_
z^8fg!^8YVB6aHWEs@-7X#l0Xf332d_F9+gy@J{@Bfj5?h3B0x}b1i2O`zMF{IZjps
zkOG+~TgSxFK+)0BQOKObeU=+DYNdim9|@Jh`LLhAQE=^#U@bJAC9%4G!~vWUO86R@
zB)$`{*Sj=cv)m{g9fOI71jv|I!KR8ZhsdlPFQ+tsY|Lt~KC9V{Y4v~+G$kZ?=)V)U
zhTtoeL39m5)A2ZjqUhA)h>I~>;UWll--AaXjAZIZLD)yEA!a_QGJ6%{mbp)91fLrk
zLnFW&7d$hy92HYmG=Wj{6z>44FlNR*o+Zaur!e0a$t;Ks14d?M4Bb2D7Xtqa$a#do
zez<jbf*ol1a)`*=SbHsuoRPYOOq}2RD0I^%4>3upTpleN$e?J?^09_TMV=L*91P*j
z?tc^S+E{bG{L<OlXgY29N^=x#<c5=bnkx4e0P8N}yNm;}mtm$5mOT@v7>G~JzvexG
zrH^2Y1M$b{G@jAq!b29VZg!-AFYFML@fD|Du+Y<VtXVvM$WXJ8KITZ{Cav0-NLj|m
z>kX-yG0F>VI^^cOi0SEYl(Cvbi`D_{^Gfjyx`BY^5|ygMJ6NjfDno<OBz<!enu{2w
z@eO6lxZQSf!CKvF&IL|&o0i)E0Q_2r9#o6PjHGXNoRxfRbk%i@*FyL<e!nZD%LWrg
zzJ^skM<$wv1fTvtEUy{3&zAX%kiP9m0rgY6gWNX$Ab&)JsuVI!^RWB{I0af;@La5K
z%DIq;RB+q*&S(F5V=uuTfl;bZ-Mn|knfgXofOcSbw#zzn*)|SN;MY~C@Z#MiErE-7
z&sQ%CE>2cjtDCL0=B0%~_ApUC&?HjsdQ9P8<8bo8!qVS7PTo$^fm4Z+z;8fD?a`>i
z{!@ZI<M@VH(Rb-0<=Hdp0G0)_^YEj7<EwTzNK9qNa<1T4NB+k-@~xSgd-7u*9&qsM
z7ik>uGL`YXQ{Qg&Ne+KL`!~LN>SKQacK(#p-z*KYEIukLFn^l<=W+yNulE5Afl?3?
z^Zy-ZD?N{8%=(Iivt<-q-KA%-E&)bD>034Eupus@zMw$6q<~^a-h=P3=kq@HL-4ei
z`&h6%7BM07$?AQ05$>pAMeyr`IS~T#G>iz1@DuVOt2sX85v;|dn3nhDLkJtS$082<
zV0tjl<3!eMPK0Lfi61B``F|z<ujK!g{J$Xor~T(?r2qHH|JPn@Y!u}Gt1DZT{Qpmq
z|8I!=9~uU4C&7&$#kkbcA@?@%hRj%fE}B7S!5E%OX?ck11+gXY>oA>-Bzn)=)1w$l
z2vHLBC@rEJIvwl82J$-rioZHII;@G5Am&@0d0>eA@@P*`Jx}92Sw)Irpni<#5_~ip
zcm3%2iZ01BL?($P!V?<`z$Jep*5V1pnlS2?#vxtfb$F#Ej6^GuuqsWEFut_9&49>&
zxg{F4hzV3pL<wmrb_FU-7%u}0WQwE;=AO{bnZgLQaDDcOkYe0-RfQl?7h{+1z8-K1
z=Vl&#AEB1tr*b?x$Kaya4&SS5j=EI>GW1wRBc+W(<<Si{h<`u<e5W#vILj9zxnT#O
zK}Q>@O-P|fxmzf;b&z&((kDbQ!7y&Ud~YGLp*tx$J6|&?bKT=BY@ri#Zmz;QrWe;N
z`(I|YVj!bS+ba5#0i%%soa9AdoK_<Lf?x-8(Kvm%=d7)6tTy#XPfibB9zxDhr=~gO
z=y1PtvU`4hK;<d<!fXGw(*Db(`rE$zeWkU&`UfWS=<LiY84*NPsL_1h`nm0H@BHnr
z|IzvPFPEMz|K}H%&xHa2{`BD00oshP-o{hfBO3Mp`z-zsjMHi!l<gkAIyyc**xNm0
z2YP67VePa_CAA3!<+W+-+Z<|(fiyCGus}9jwYiR2a*a{Jzp-P{o+ufrSyyy#)4a7c
zKq;-bq`Y)7wZwWwS>m|4`wC{?HDh$gaJEU!XhPSLi3R<lfj_=qN095@+b=Wk@71rf
zv-jxN+1W$-r77xB{p#RgIK%Zdjm3jH46<aBwSc0ybH$m<xrD_bT2ihbx9hE#?%s1{
zP+uBfj9G<6xH}z)>m$&OT#j*GY7JC?A(krmP2|Tol5woxhIFLg(fye#tTx$JC?m|)
zc%JZvBFBl-Si%aTDc&Y@E-Bg3T3Q=$rDE(fFk4iVSsDI*cGlE4aes8DCrJs!cz~9X
zBtr5Xh48Mf=Rou!`Lu!vJ9|2fHNv%z%}z^grIVm<zQ$-mCeO?)8fN!;B5KNaXU&p<
z<!2ttNLSBGwu%%`2j0{!pJ}ulHZ27%wfZpFXJ;AMtCtyhDzHE!SIuT~;#lV>ccMjk
z+X5D-(X2hdK$AD!Z6$@`VakCtXOaNY2$Xg-WPKtsgTqktdAL_R3PEwa5SU5q-f=B{
zzUd7)(kLs^G8Zg+8|ajv9q!Zd*$>BHVA%z*6ZeKbbaNA^--0Kk%5exk#QlB%`lBPC
zBUR24TF~me1wcAgbpz@cO;2HJhRYEfPuwH1fM7t;C3eG}a?Q85w=VH5NyyCU#7~xQ
zgX>@!Bg1pnPbUYR-M8o89iJYa{{*<+jCL>fl|Zn!on6iFYNdN(q|e}&-`Q0K1L)TK
zNzc{b4&Us)I^ek{aKRXUf7N>2cJ_n#+Tk?Q`r#3sm@jwt4!F4Sy}-qlrw_*@n_90A
zkG^+wBk=#N+CZ(7kjl4{usy{W-af{&Q4+{c6gFUvj`t4?m<ip1Y%s&S7@V`nsDlWx
z_TX=77);WBoV`BWGlS)T1?gb-<atf0!$TFN$IASXGG4cV{BUrZ0-?KHT>}whBXX#@
z1{eUk{@XLD&GlgyV2^?}(_SzYe)0?FN51qhk#eW(Nn}KU0}T3D16Kjfwj+TMCUh0V
z{fV!ELfi~a1;~i$H1H*6S%|Ha&PT@^AiP2X^M89w4`%~WdB+O41)n{pn-l{hW_cXY
zIdH><@Klf3snhe6bF!Gs=Z4GtvaZU$eEa&fT^4L+<5}$fXY;wl0?+{YsZx`?&A~p4
z8??hTzvMkegKQb#O^t3{MKxsL(hA*uQ^+>VgG#4j*hy@jSa<hX{PT1C-}ujyukq^h
z4fO^oDwcs+|E*&G7ciXnee5x{GDB#pzJgV>`?_E^W*#p$zGfEV!dN?V81v%DitIV}
zScB2iT>>jRvf>>9Lwx`k8zm)R^k`E^<zRAHnFA@kdMt)y%}J}|PVpEXkgxTkU!d5u
zj9f$s9AaVC&WApNEk`Ij<DE^*hM*V`P9)?q%&Be8u#7D<GKdUss1Lkt+M=FgdwPzQ
z@EjXWj$Z^P=c6l%o7m<NnDfhN<l1buM4H8qxv|d&c+Fk|U($Ub3h-JN3qG`}N3&&k
zP$hgpcce4x^E%_j&KGN<Yhm}R5x~zP@TYV&5YU_tZL@@xTnri@Q)P>mj*5r@_`3=s
z4&)R<!BO}V?A-CJYi;S$!;MGw@Q&|Bx-%tWFL(Ei!b6IeOy$JpNW4UYk~$Ay+s`03
z5mwEjC>%g+fTyE37<Nx{Ww*ZYSbQfk(D?9zCJ4g{k{JxrnE3cabDa*Cr={tPS-z^|
zS=I%?&FCaBBbXE6<oI#vTIO_B;d(gcx#~H>PV9)B%k-gPF|p+rigoKkVZFJl9<)+V
z#4>zZuy@YDyTQS4WLhm91Q?H-BGQww4^c2jMJX(fwVHdSw@PLQV=;(%^yEGB>b^U>
zZ!&#9yiy`fnvC5y?34vz(Rns4ic`<NG*N$bydFDs@B=)?r(_KF!btD*DrVVcEW%^K
zi|tUN*gxKh=>|MWI?B+ogKG!I+_b$;lp$sj2)7K|S#5{;*k0JVW(nvl;01lHWr&&g
z&FnqT$r3VWt(j_HID13CcMVk19v0m}8-IW`ItUYf54iQ|I-a?7+bro_8aK-7UB=}H
zuDrICSX10x!vM+5%iPPasc5dirhaX1Yv)G$r(@he-O~=LWaYHl?bDn#;FqkCBKbiV
zc`BD}gKMU<a;T0rRK#@flBX>)^37(e#VxXjL$Ogk<#14Vs`KkCPB&P@)?(+3_wJHB
zG_Z(TP2$?eme*{)uh`&kvZ#|g#qwB`lG6=2HE$n$K~}1dEU}_Hq3=-|KQ|fbQ;bSO
z9mEbF#0)JZ4$+GY>CVy}-DR%xnH@AQPb^UNqM_WC4y3?P^}H#iYr%!GJvT6xtqu_n
zF{GjAby&2vPoZ<Ah@NP|EMl17t(afq16J;?n%OHyg=VMntr!KnIjtc7;jOUNrsj<`
z?Ul-!p6mbkf+JL$UcMNb!Di-UUw8}4t;SMuamof{<;D5OFuTZt&43YNiS`szF_!RJ
za=j1<GVY&0<EGq-TN_!k?m1_=0s={4OGBjXKmERbdCxd)XtD8ZCJw%`qU|&$5>Gar
z3|wxz_JFehB_FbJGOh|I0oS(Ck?+{z2Z{V#Sr3<P=HmE1uN~<a%fRPu-0#zX9B~S^
zh|}e5l#YOYI9W=F-GW$bggpgky%zfLLyOO=@_GVsyV&KiZ#@Of>xMVP3Pa5{NuOAI
zqY#%Os#_ROdh36$mm%J;O3;)_0UiZb-N7>$%56`~F{y)7ah&Q6if`QM1C-vj@Y>FR
zj`*2HyK*qQS-NZu{S;sE^sb=`=K{5<q4UtJ->S4bh{D;lA?{NjLfa2`ptO||a?g|n
zZ3FSS$Ct&z=<`b_#eR0a(8FCz3SeKt3=@@q12e)1xqM^hmdqBvr21fM9b~|!^l28I
zYD>CfTnc|kcZ?AH5#2Gu^=x+_fG_Dv%V8~|aH7=HAKo<pTuN0pG#G1MjH^T8F#W#1
zHPll{qVxgEz6t;{hACTEQkyx4hoJ(`60HIZg%S>N`T>)JSA|E+3!X1BQ*s3Ts}E=&
zZx@efAMYNS_T`!313JKOACKq(Kb+*daDyo2AJhke@VHL=0Qa<3FW$x<)(1SlJfa79
zx-snsklErp9xZ8QbUJuw>2&Jb@;;I?DY(V$s4YrnZMuc<<)f8J4WqsvwFc~^Nn#M=
z2F1``V*$<RUgjizoW!YP)c7vWxnNDje=HF}8qV#*S2!Syr=%6*Z3(PEhgnDZrzKW3
z>Wq-Cs7m^%!iuMoEZyS5MlJs?cH^WU&Jy>QaOXGbC%b27_2PB0Sn%cU;cH{HV*04Q
zJQwrqvU<e!Im-^>Nb{D20Z9Lw+2P66q~#=Y2L=S}Xx+XNBN@g`%9;Laj5TpJ1<HWU
zT=FwdqaMWFNxfBH+1y;;e6hLy)keM9f=1XjGPdpHOl4jIb$>h?d0jk069|5%Y}KQn
z*9+=7g{gYsB_OT(92K9dY9&2PJF~j6vijB5+U91qk5+O?AMb7XSMToe-Q`Nf)(&5}
z-_v@W^{(#>LWZ+A_Qv-&G4dvE+@H9!>pR!)&!in)Inxv$_h<`>!TbArt@_(<-yWU6
z-P&lMo$ue@(u}J0`#l%yKJt3kF^`MS{O4Ink7>5GvG!ywZ*Q#S8pk${w)aN<IHp~(
zetqjr2KSHEY;bThhMFmE6@(I+AvU!~<-=JYlP*DuMDc;XMBbRQ+9$78wuk@N>dd+`
zn)1~xcV(j^GMtmW?UnnxmTyJj;lc3J<;;7RwIbFxHrHRQ{)JX;i<M$Z3cepfv{*F$
zRNyen3Sv#RGdPE9$UgVK+#y_L|5e$4RrX(%{a4Zc3vNuG#sF-w{nrNUzVh~8Yn$tp
z{nwvq|Mj`}e>V15eY%EXBh<fPVXnW6mZ$i(<(IvfdR26WtU{rb`$i_LC<tQH<vKYx
z$;NH6)d^@N_+1YI@YqSZI{CLixl*>B)d|$}O6^SpV=0C}Iy$sbtZaq$*?F%BM=YB$
zL>Z#L9u1j|ds>9Ugo>*)9fNe}#Yj&}WF_DT<Ac=8R9c|`sKBS-+q@eu7)9RgwCALe
zjJ$E)UQNBMhIotVYl(N>z6hY$V>iKbPWEEVJoK=Xnuo!P(t_sl2-k!TdaQvycF~N{
zq18QVs>ns$HeA&7U3`tLSG2wl<Gj%f8m9bm%Son7)?*Se?YHe|uMR+5NF+<*iX(kW
z;;J-(Q-9KLpqyoi#(63nFvqDGg#)}dBPhELI?WgqdME^>)+F&p|0c@%;r#4PuEun*
zsKUvsH^AbEn^joM3L$ju7Rol$SiBmICO)=>Oa;*8kVgH+1rI%qZ{2d<xwtTiH20l5
z4C6$9m-y1gZv<Cl#Kf1)l8D`D?=W<$dp)CCZTHcn&g-Zt@Ls)5Yg=7b)6EU3>7GWx
zB(bJDjqf8)+q|*)%2HGF%S>ff{0<dvXkO1~lY}`agBDecjN0aQZF{?xMi9Qd(Bryv
z^r*Hmq*{$PZ_}E7n~IfBD!*@ZJ(OCN@gzQ`;rF#>A60-iq*g6;I(`Qy<?uWOhe=S0
zu!5*zsG=}P2;e_y7Zm(j<o{zvztcAK^HE`EP*1)Z!nS%KGYFiwPpFPam?>En+2xt8
zP93V6#_TABt2b&)NTX4|cotvcf9F}e?L6zV5DleSm5slw>Mv{h%lc&#k~KOE)iJn~
zIP7}JkM0O{y<rCL*vK40$;>D0T*2fR7#@1GmEJ-9_V|ndCD9%0eS{9n_4I*04OrEX
z^>xAtO@_)v79D@F*4>oIWq>pE$MS-U@CYb}BP}L^kX>v%#i7$NNVZTKBuvb`mh%s$
zS`!oM3um9-iD7iWViglAfc1#m=}YphH%X)m1$XtmVKC}vA_FMc=g0fU+va2@mSz~v
zs3i5W#OJ-2i9|3BXlT+NAKbI4P|y`z;?QvBQ%_GMtqDpR|M+-b?w@P#|8QR4kRI&t
zlcuhsB(LKuSD#rXmK$ZN$1E<$58=u(_#ZA&NTb2sQg38HHG9>!f`b*ghwVkxd5f{C
z8%t=Zm2_REbB<iqd;lOFOHm&{afVxn)xwL5Yy)wuO3fL;1ff6`8Lkpbf%moFxwbs}
zZ9Bj79Cg&rwQUxDN9!fKuIv24fBvY|_EKdpz#N+nD!ZI?-;*vXQ*<3FfwO98Fm~ZN
zh_|Sib-2f#9Fwp~9F6>u(TBd8O?W6ycNBuqX2kz6z*-E2ZS0U(jM^f<0Rw(wD0!DR
zHrFUJ_NI1VM%p^DCydnzr%GJVZYLW(Ha=AS2c8~I+`nV%Xy~1co3yKQ;;6@(mOOG3
z8&0a9$YN<EaIu%{<adA;t9<Uv*$4E4#MH&rEfIx134%hPJwnfo-{GZA3sc7g1QLkb
z^8IOJ#od%Q7d?Kdi(UU8F0HiWPFG@zY@yk)4qfpNM6_$9&dE4KkB$#ujXM0*>a6VC
zZ-)bRGz63z`Ci|+mgC)laP5u33A(J1uF1WD%DP}5q2ClI-C%tD{zvm7(<J6<d{wg;
zZ_O<#EPH)A6B0UA@nl!nY;*f8^TzY{t$FL$>o3>=ip6s)eb??`Zn+ni`J%<0Th5uG
z+iSYGn7wQt^omAS%1jvU!Ct_%_glb@y?|?T7I3Xb`_C<1%&D8(z{H8|e1tt#=6eo@
zoE&*j8X0=<8anpJA>oTT0D_`TQAK}O^-y+;2e0|XOFPr4IqO?5?N7C^iAb##&C5%c
z5Ef&<WCiu@E3?Eq^~S9nE2;@}H^CvEuqRg)TL%OrH@-OUT7~&_xwEPy*d>75jkM5#
zD(i4Q>J3(@1Eh;}>`F`0NP#sq3$k$c*E*7jTgrO{2W<8F{V-{GbeHKz;k3h7wY&<C
zR(s)<7$y>q2-koloQA~wBCt^0i-N8;Cd$&MBiBvGIc820A|^12%(ZsCIOwrX!_9h*
zs_~}9I?_?t^`IjSx0<6+>`1#&2s<IaPm7`F#YRuMsOgY|VH=jI?QTT(!l5Wks~bQ%
zWaU@XM!^MJBhYv|YHQ~!aKDeQI#pfZVRr;gcn|&K9qMihix4T_s1G7<I&^-QceMK@
z4a}%eZoYd~OwvsGf*67u{TVi)V*P2LmT1dcWu1#Sxg(UpZ?E6KEL2S|HP@>1Y!IDM
zHkJU?lWW(goOL4qD(B8XE<trxoMIUt?0Ch??wVz=y=@c|)UAmD^O>YhXI3{@r3oo%
z5_T;{+qQYpUNb+R<EOGiVF+t;Agta8!Hit`k(o1?2r1|fm`i&a+HJ?4Jciv;u#_$d
zO8-%BS{qpX=ZVt7*TmUWTN<x(N=$`E@qJ5M87|}(cc8CB##6Mu&xz-NN#Ag#K_b?P
z%AwSwR;MMT(vm4#y7d9ltS4E`{h+X()236Lr0e1ynHhu$$yLYV)*mKG%dK770er|i
z<+rtZl>id*s{BTv8!~inBx}|xv~&w}M=wlv3LQr(H`q$S8Pg$q-!P-Gb`KV~sR8gx
zG@>Yzt+Y0CxwcIgXWfjviQQ!lwf@8F-J_o;N?p_xZCXX`7LZq4fao3h)goqVN;_sa
zBWmsiQE%k8u4rM$!EgS~>Z-ePX=$f&#b&dXL45?J=t<f3V~--UJ$&Qnt`Ijnvb!U#
zWt2h8lo7~F-V-fyK(`i@UbQU)gMMZ+T)k{I@9Us7_W9jlkye>yXI6sizOg0W8hia|
zhNAi^%FetsBC{3ImB52?%jI9Why7_vP|Xa<_LBRg#H9^{H{M9WCJ1G~xl%mq%1(lZ
z1)BNJ%@uDdR*`g3pPjvSemFUzR{okTLL28bE^vhAGzXo(xytli^ZZ#mNZa%FmBKVN
zMJ>Hl<(u>9uxud={de9VoT$OyT-m~M`h~cZ%}nprA!f_ue)KsuDVS<wA~Fcsv>FaT
z%p8j~_pCP*JM>$hUj}IpkHUAs7^=3ihu&H^;e)}(3ddZZhY@5doV+?cI0-YxK#G@6
zZEok*J$dyy?0KU?{YNcoz;pXkSxx*y?s*;TRPXJ=g8}6Zghh+F(6D3m%Yv~08;2@V
zMG+l1|59=dCjE21VA?~sdr2+O${h#nE|S<wE@tR$JA)F<Y>833Sco_fPs{Ux3d0e=
zX=T4Zy0hwPs{BrhNOR(b0t7k{P?{*8ZgwNOz9)W1r9I{RK45N)`=P=lY0GSmDs1d@
zEPS$+j+zuk(JX%O9B0Oyn`*1W{b}w<(81N3*-58bHdsR%AQnS8+qJxpMJ|kr+EAnv
zNbWGqL76l8L*MIXcFjCBw2C*d+MHR<5{OfzAo-dfPiCPP?;)xCJ2i<A40yK=YiC4b
z6HwuQDuw^>@?qQX;y&9a`hx-G>*n{)hjjmy_*=a1D9XBjNH@PP^ltWcl7^)LFz1{N
zoF8+w6elaYCx-_U1n7wxP^WSK>+JYQC2$8trlxdFR4k0{ug&d}yWqjf+RB=~Gi8)d
z>N*-kJs*69vR$3oXqK{(3?cTDd{taok(sg3&5yw~f_T$)b*sk1r}1zX(-g~7oDrPm
zb#?69?Cu*lS2l%oGCw9mp$Mz()!ti6Qk6bIsCFnDLd|{Yp6SR5<%&?%8(SAjBR-@7
zP#TXC1Be^^ULoPj>rq|5S)?}8-dHOOK;Ng1QN;Dj^fd&MG8vBB`PCT6HKbb8el(%7
zE{h@>meUGvY^lVIi_cL;oOyU$5MrkKGN>rCGMhrl%bpkOVS!4OPL1u48(4Ws`KKH<
zJi0?O6aQA-&hxo>4WjGTja=r4v{Wq@4>xh6ncC!E^Na?n-zh3F`fH5)2Jd&?jWvvh
zbY8}o&2l8K<&+cPN1-jDqTdxYINQ#}JGVpg3lcXfFN_54o6A;EzyX>xMK4)?5AmN(
zgtyP@P4w|fiDX4u!xY<}ji<4!=iVsZNw*$FuIh!{mVIHu_LL5dy+m8iwSU(E9ZiQ3
z99mn5v(48EXj6F2+P3K`FC(H{2)GUPloofjR*$NtIyk2=G;wrEn5L+i<H2MMv`c4C
z!B%r;pAD+G(r9%3cT?hU(HP^&nrE|H<Tnd0lbZcnYK3asR(bW7v)WYM&Y?XJdvCQi
zG~yF;oE2tCWxDEb0~$^@m;x&4q$RhVx^B^Q(D(`K;VHH-SNulAo7|Pos$VwMX4Rvc
ztRF!+h)dvm8;Gc1npK_YsihEza9k%pt*853VNBgSEb(kIVQ-dPwZAeqdg=ikV&D6B
z(nl(-I*=#jqKKcW0z0bjX-(lcn7($HwA5gc;ws*kt019`1T|bPAU29=K76}d*<QbI
zI?MUfS(loYmKC#;YPTse)!3F_fWh5D{cH|TVecxFM)!Vx16G|<KUJShA)$J{t7)x4
zi$d16=XOjTiM%ATWYWf2r`wrNTUT6*-6NFH)z#w&D<y}k_os(^)kmQC>ftyhg5c)?
zi&$b+1Bb;7D5dj)3+XNvi84!;GXu&Z%M4-KyU|RxBT%SPL{R0gRmWx;5wQWq$GOle
zdUtL2E=%I7RMUFbDH5;V+<Vd8GznSkcc(YJcbhAJDa&_<-fv?saiL@e%{5(K4XdNl
zVIwCr1VFq~cc%WhgI^uwa1;+Z7<v2F-RmgQ!&crkj9)7cTzEkuLzIR5uEQQUI^I=6
zGxW95sdvqnNqDQ@;MF_dmtTJQ<L>Fv;n6Gl=IrtP$ALW4>YQkO2Ktdn9D>Rr850jU
zMIh9=r8KK@)iF=E1;_x*Nq_%2UVGqqsqY!)lw_3vbwcV;Apt+%i@^g?L|M3y`<#^j
z1eMJ0jAcyy&{sZfrc>XGAZt;AXS}VSoqeZ#hl4&{hm}FIinBa2szsFU)=f7trlT-<
z2}e5fyO{O+YDrbZHCqA5!iXffo!~wsoGblO7?&F)Fv?vkLY_jtgh&V`{Z1SYJA?|F
zXf^XEyXW7X;f=4pJd2~{ZZKJ<GHodX!`iYWl#EN#^J$kg?M+H{25!tS_hp2VyLbvV
z-t2yV(E0x0r<2{oQ@otDSA|P5FSd#jaozY<=%OL?(Gd<z&eKkYsl|foOmoQ(S`6PE
zzd0!92J8P6R_Y5!Ik14h&+W$XE#2JlloE0<W03^jDUDnnKD=umyzK1r0JF<%KTuxy
ze#0rFj9uLS6HHnCwWJr;(1q`$I-Md46mM*$D;62A@tNW~jy(ff<2a`E)*H(Fa_Kh0
zGPCg!=9(Hc=hl^0)A&uaZ~4AsM=j+7qURLjn$xHg6)nrsU9O7*Kq-UGT}rr=UAH7V
z#Zg`vO<#Oi>#JrfVB~AC3XS#q-^&JWT$`2dWNP|f`3XFhET71szpPJRIk>{{B<M(B
z=bCn4p=KoI8njoe5Ybr)Z+s%vt*UjSInN@89v@3kevcdJ1$vZ0Do%BSF==<Cg|j>L
zCM$6yQ82Z|Ls<y=$kW_RGu2bk9iImgL)9!vG=VBYUO&Vv8<%EZ`OC%LX0MV|JQKTc
zE=cQ&ZZ^;2Wz^xF56hDd=aulqi%m<(>-elhD)NOG*vX{Bt`1F^<2BUL!0BdAqygNv
z@OB0rLjCN<vNKp!ghVjlic*sbS%(rl0;e=TpY+&kKbQmzm5n~U*wUfI^W2q3YY4o`
z^jeji<yX`V)5k?YLXi@rq?eFVq!Ew~!KD|L4(XJZ3sw<CkPw8$rMtUBx}>|iVPQd$
zS~h;S*K@9a;CVA==FFLQGxK83e7>1ve1_0&lEJ>4){G9FMF!^4WHX#!;;FDUYt0y!
zHzI&m{CyugRi8!hNz`ahZ=2{5=hMc<Bhn}0**pTLU%#V->}@GN2m~1YpgO>enK%{i
zzZyyO510HU+qS4^PO}{6g%X6PNpF3K9d`Kv(-*G1`B8O{Do_<9v!qzQJr-9upjHWc
zi-)1>{ohpuJxE!Gnm8$naE2mwhTwust%S8HkJ#mtgptidZV>xjCyr;qkSL}DcYe#G
z+favBb0;k`D`NwVgRCR-&BUCqD1FmuR92sFnK`_*-HDWdKiPmxIePx%O~RptpCTbp
ztmsoG-Z$*rQ5?18husVXH9-Ac=^0ihx`vf$W6y;u8|YaIJf|n(?2K)=X-Y^$f0@7X
zez+K+=10C07n^>Tt5j_vL*y<%Uh00|);x@cP(j-5ApG6y)}yj=*MD~FD$`&?${($)
z%Ey}3#-^ypTVHaCL`Qhy1cqx7g>b#g{98s37R#Qx5)cNtyHFJHO6h!g(fGt(vBVf|
zh&Q&-N}eGUkorBdts|)HJOm5O9lIChVQcU~(xA`A$qN!oG@?!tbXhXgz1aj}Oo%}U
zdy@JqhvsUVE6?>G3sWKH9W2w?+DPRI?pQUnQJ2|cnn|kLBG?;}IT{M{`mvW?@_&iu
z2eHa4RT3qIX!y=9JBePs-XdujXdWq`kAN@S$9}L`Io5(BNKd~GSLeTx<oC{s*&qr$
zOBabr{L$41ja|fFl(T|FlysNV;K}~Sr4iFl)u$o%*61(t>eFU!XxF8W;UiEX!BvT7
z^^+IZ;%8nbi~;e_dUU>(#nKu!zHzL4mC7wsB2H^e$#EADN_(`S<8Ev`_;Ng|H5?_5
zP#om-_<ccvj5ZNMCZr!}NBJ`a_{r|4jGn)n%$-nt@@^sLdB<LPi>t%XBg87u{7O51
z_s493<3$E2*&4iVyJ}+An~Ah8IRgyPuoA4iAwH7~pP3kMjU|-JqQk(TCW{LzLul9%
z)O@)ND~~h5XUZ|ngPmsP<`w)|@nP=-vTt-9JF@X2kfGakL%_D06fi&kWgl?%#lsT*
z04jUfbu-*>RBQ94jW4b=iuBrS99RI`>o@v~1$19@9AGUMC-#B=s6D3hd}%<wZ@-)M
zzO;^ROBrbGCD#j|;9b_>z$4>gL(?u`3G540o&c9Pn5}PH3jo=dPY1x;7&O5?a5GoZ
z40yP;cmB<NODOpRfLj3AYka1Oe>kZeX;1uQ&Tb-I$4~zPi_;~hPR!3>mdrv<;SZ<P
zj2I?z4li1R##z6kW=H0(nWL-Ct;5Q(b0LOL-(vM7*B4Eo-j)Kp!*OddYG~2?S2X+6
z9>pp}mh*KXq^)%K7c+a0)0?!CAR-TDm;WpUSVq>jknUEu7A%)CFeg@1JSm~#tt{~h
zg`xXY4VYABBQwF<8|LZv^hM;|#8V#eC#Rtq-R2uzylEZaxV%Q@f!sGIBQ?mRDZ<!Q
z3p<~xbF)4he@)nGtYg1V-5eda{7D`o#t*R=rlakN3mM?O53VHsUOVzbA|<U1_e@w&
z%tfpq?vvgLw3~aWK)WtR+ec$u(HUFQizylW`qf-rp6uOx-55y{%{JQ!D(rC>dp}$G
zt=^_V!{cjPFN-$OY$WWczuF?r^QSf07YCNP4VA@tg-0yP`3&5?2QgWUYUBMjp>rfI
zk{q6o%x>uYVL4PeWs2#b{e8WUD<B`sob>h&C?4jZbJf~*zhZx%OTC(LT5LZGC8*}0
zU`00>xT5dn==fZdb4t|wd5NxM_7@F%$FtbrcU7&xUT4f!UPiUi4DE&MSrD3S4CH@9
zz`b*o4{}KDC%_62*RUl+MY_^@EP1mB+P1kaE-3E&c4xkH;55OQv9k!7Bh3z*b~K*<
zv#Uo~#Hzcz0AI>^-DqHgGc!tp)y-BCB^j&POQDi=W9<^Qh?JIh+0@@-N+*y1o&}^y
zAaw$hg>bRvRMkXHtAVA9bBKAEO1ZHsv*L00c||(~artIqa929WLgY(2%FSWgNrs1N
zGrlcaKws5=#}s3VvwBOTyct%i8+ctpRtqYUc5B{#R&-h~!7xIZnh=%ot89x2RT)=W
z<^Bl5^Jpq={PWHxbm!COln@87RB-?1Ki-UzV+XIMZ|9e5;-e!rVC3ji)!+C=qg6m|
z5O-QijXp)rA^)m7+`=}m0Xt~{OBcZHtCqksOK7mv-`o<iLn?I^SGfd~;(+N>z-1P1
zi2@MAeLQPGV?!38j{;^f;CcYIbd{+I)Gh(1G(xh!@nC~S_$-h&+hKAD`zPfp6DDCn
zi5-l2_pvDH2U**-7E9PnZs;R&NiwjB<OG^Z{&Y%>gU-eKmQLg<vDM=+SzUKtNdggv
z)r3|ia{I3i8J-W8)il`yz9<-uxy>xQ`Oy%12zb@#L*zf<9b5Dz#=<v}*B}b28^WM7
z3`x>q4D#N_R(4;fScCZ8>&P?a+w0F7g5WA_l{lF@x~3z%lMZx6sFOD-Ehy(h2M$^b
zHv7!mPXjM)stp@&teIyV_v!v%KzCmhxWHxO7=_AGeAa6$4C%-rska!K_8LD$zIRVa
z@b#$YC%8;a-AP{&a28JEyT`Z62J+Fmt+Y;c${Hm{;*E6<FSwor%f^7RQ7_f%;nZ%q
zPVv84n8~VrQ>)vs-BP=wHq>jH>#*=~hR3G_wr>ixJ-~6jtP;eav&W=ad?7@XX5*<V
z8ozo?clVg8`Dkk<)&_hM&(*;i&gT@rzV<#~`mNKqm-E7|VI+d~udL|t1QZpf(9u=S
z%6j5Iwibf1Bo5k7U!C74E>vsXkC12fiS=7&7F`TirL48Qio6Ef8E<LC6Ifr|%WM30
z3p^zqvd->tCm>>SOqAqd&;rNj{>ZzypRJP%a3ad{d+tWXRU(v+ZIhEwf{AJs0z{)h
ze^jg`#NtM-Bc!L>`9zqMi&@zkq({2+9+XIm9jRF<K%%|ugt%i4hefv`o?ezB_K16o
z^@4-L&%UmHI&oXL%WM5ml;heptGK1;NX_U6V(2L2a^3m(S+$dfQLBVmsY^$I)XO2e
zl+KL}ej<_YpZEyfyquGtvbj(vM5CUHQCUw9f-9aB1eX;t_NmLkHC*Tv-GqF1O6gt3
zQxM4>T{PR(I;d>wc=b08e^_Ov)25bVYmj1&j?lif62a-jDbA5cTO>dHvS*y?td&-x
zFB;r_q^k@D)2#$fL3dJ3hn)F6@cH9Bly<iwESZ~&?#zD8e@)D!URWE(*9kdhm^H6U
z01VDD!JNS2_3$2Y?~5j0e-Or!m3(e@mN^?!ZU_fl|BnL?#X7ictAGIXd;;LA$RBXT
z!afl}2A+ZJo;~A##n%*yCJcoK<r5ZTyKP1$uLgc{*vTS{1U%s3MjPal^+Utt9qv5q
zoa;`dt*=x?zFjmLIQquAa!X7+mK{-14C~XfTr8hFd;eXecK5Z;Zpc@!FsK#8%}-*R
zkmpeeqrsl()l<S!*XvQhP0cnR&^?41+_2IDkR2fL26HxD1`Hg+T-`VEkiWw!^e?Br
z4PFNL0oGZ3hbJ(e=!xrk&$%QZ{}w0j3|N|)E|y#Zns`$bkZFW3{m;ER0eIFsoLO1g
zUW9DitS@~(1*~mHF9GGCuB98K5eUF>WlDr>bqRW5h^vhv43AY&pIH;1+oQzv-$&;8
zi8IBu9k?$CD)yYkImlaJgqSg?Vu>tk+5X<<hGFij<*^=t3&Y>yrUxD}Z!XdGvbLmc
zs2APWQu>uEH&XgL3VY*mWz`vcz=yjNVo6J%UNb7ltjI`8%M_(Q>G^#rXM=nr+I$x1
z9qdq*OKR-D@6s8hDyJPZ{<E<5DtZaO+RH@T=C&Ke4w%|YYip0LOp6YiDx^rxoPXzz
zc_?>%*puh1bR%wHKD}cMw=6H<qm63F$S946eq&~|OSmR^U~R;ye)XspZgJClrD2v)
znPgwqR??2npDtma`Li=t26fOJHZwXAxXdn;%=ko;qmny|x%Y8zpS_8BF~6RbD?}JE
zNwGS_M&>ZRAj)MC!Fk$%0!7X<g*GJr`%{LdeM3*O-!5Ts_uRpSpHVKj-ZU#yVj;Hx
z$B%3?Ek%WIKO>LBJdq*e2)XzqdPFa^2|6om9~i#BNr>a6|KnISK^1yOW$Rfe3xd3Y
zPK&ZYaxzH2B{xt)nd&~7Y54OjS(`0027%UCZ@F_)ikHz6QA$sqBVt;WpM|}s1P=>;
z4OzWjAWYAW*pL2s*G#&+y5BD@LZ+qXJ!WQn<m*y^nMNoJ>Ma#5yK`jVi1o<F^W4<;
zjk^=1PR8+u$t^FNRw#n7X<QHQ>>?|K<E^uxxG#&Qw1zbnTm;C7wgqxU1eS=%uG{!q
z+98@O#X72}o0p!D#=~w5q_n3M)kcXoqn;E`!dZ<f5ITmWZ?7L!)P8Al?)oc^Fyk5c
zS(#e7Q#8x{X-@N{)AvjY0I~{{U@U!s(i2!*JCOdkLv~e0()$|*)phb4Xsm8-i0=T}
z7R)M7V3}LC3+~%;r3I_<bG@~*H4oNYK<ICHQLYDE4O2gybc`MjejIhldm7>JD4wu<
z-d68`t58FCLaJ{b%HTw8pe}hEn!+W0u;;K92YOqk(Uc0!&*pP)Umi7$7v}nasIeIU
zp`9PDtr2?B?@lXuq`hLi)|KN^UTAfliV<`7c={Pj5DKC*l`vV8lzGbUz?jIx11jEY
zH%rL3ZA{)##;5H(IJSGAo`6k2*F9HifB4Wldg`5tn4h9}Va}lG44>U-vHW8@-rk|l
z-F6lpUh=#e+-o7!#BYA?H2v<gOJ(zvp+B#P+R1wU<C*piH1O;ld$WXqpx~z8y}@Y(
zk0z-4sFl4I_Od9?KP_7QO*5D0S}j**3IPK_oXXdPGy*;id?&Y|#y!nx&6KWp=Qrry
z(gZG$_|JSWad?>G>Y>%Kc4(>1t|Vy!3)XdS%I)@3KBB5bapH;ur%{FMAtGHrwU9t=
z93O|yzP967i}zW9EEMVeM|I84oh1wIpjY0Uj(B~8H+&)N;a*<^ET={D2dRxX5Pdt6
z3e47?K?uMZm215MPh4LMx{^~)r<j361Yeho=^Qgno!0JG%4%)48tvTMwk88UoD$U!
zyiKMkow(Xeo6S5wk^T<9-W02UkJ=PV@LXb0c<W+V-R5j`1t9U3t3c^EfW*KSKVd?y
zVAzpWpwVa^Qi1^ruMJ+|{@@MvVZM0CzefHB+gPd1$_*6m;yL{B9<Hv2`v4Ex?%c&#
zw*R2#^KC7ZO;GIH(Kn;K8wO0O|5ZUU$M>+~BntA!SWA=Dkxam}bQTRbod9QA;~vDb
zHI-uk5(`9+1497B7oVH~V8<{DN3cnBM|FGB1)x&bWZ3ubx}*kMnr7-BSkA5LNz+tt
z1ftk)hR3Z~%djv5y!?~D+Zk>70#M04ES>{6aq{JxxQ;VG_iyjxI$8k3OnDCgMiw&{
zbOQ5~K(qpGZm#Y|R~_KDKu{vEkNNmsc5?Msq)-HymDsfc<7}L=FRKG<x`S+APbW`I
zweQuL?2z>%uhAdSx=!axSq%AZ`7SpgzQd{E`SbS7i%N>yh)4xPY8cX@apG9AN2(`d
zngpRk@84M{?&Zl?E#Gq6teb%SBW8v=ne-4$TNlnmdo}9Q%ER^i0Dgy38}iX^MkejR
zxe6<xJ-31ONGVI1WVfCecNCvAzu(uS?VC08r8((N^8BJ!vc$U5VA4+wIFsugs&*RH
zuHJov-A?F}$I80&hy#@{D4$LDNgkW((=JAI9kaFp4*{}2Wa=4$yfmxTL2vd}O2wG#
zUUpGn#<@)0z&X=J?~(gax35@@a2jhcbeLw1*%2V+EM%e%0k(Gv|D49gjg9$($JaBe
zWFA2LibzydL{qc9X=7D41%C|i;Efe*A(S*3w=2RXY^01K3J+_0vNi7J@he0Y-I1oU
zc)?gV7wpyi@ug|ZySqkhi*MohX4j7<BJsHfojmD{ZaKT1o!s9?{*hH{X@1NvIg=<&
zF`W5n%*{R<nV=9IEF>t_Nc$y>d68G@JEEARaDU6gZkg<8yW>v~`3M7JyerMA76kM#
zYk?Z%lu~rKq?PQ+mz1rkk}ORJX}RnDaEM=tfvLr&swwOJg1iuKr)u;UsMYd-)`#ny
z_N!GWPEUB6C_Ou;)k8B1?sHGavi->i=+cL8kkY;!5%~SPfvHb=*c_T9G}0olJ?O;~
zeCophsOMOP5`X70uTziHfq-m%WANR<aPx~~_-k$-=wC=KUad7j-y>zHz(x92&LPuj
z%;%B99^+!Sh4Ytcl~bPnd7Pi<sG0@BMbEc_g@21y?G>H^p=(GSwy7z3-p=VN7!pL_
z?9(>b8|R1gjF|~}?31p9Vm;_jwoQ7yqr31&RmMJ8D7MckeAn|=<&yJfzAp*=n!~Pg
zbu`hx^0R5))fTZTQ-`>|rhl1NT+1>^AFx>Z^S)MywEM@XQOZ`I2Jx`Cq6*j9!W)B3
bq<(M-_@Y?u{~L^V;N+Wv<|uC6BD?iJW;a<u

literal 0
HcmV?d00001

diff --git a/scripts/geni_lib/quick_k8s_experiment.py b/scripts/geni_lib/quick_k8s_experiment.py
new file mode 100644
index 0000000..18ac11f
--- /dev/null
+++ b/scripts/geni_lib/quick_k8s_experiment.py
@@ -0,0 +1,104 @@
+#!/usr/bin/env python3
+"""
+Create a CloudLab experiment *and* stand-up a Kubernetes cluster.
+
+Usage example
+-------------
+python3 scripts/geni-lib/quick_k8s_experiment.py \
+    --site wisconsin --hardware-type c220g5 --nodes 3 --duration 2 \
+    --ssh-user saleha --ssh-key ~/cloudlab_decrypted.pem
+"""
+from __future__ import annotations
+
+import argparse
+import datetime
+import random
+import re
+import sys
+import time
+from pathlib import Path
+
+ROOT_DIR = Path(__file__).resolve().parents[2]
+if str(ROOT_DIR) not in sys.path:
+    sys.path.insert(0, str(ROOT_DIR))
+
+import geni.portal as portal
+import geni.util
+from geni.aggregate.cloudlab import Clemson, Utah, Wisconsin
+
+from scripts.geni_lib.cluster_setup import nodes_reachable, setup_cloudlab_cluster
+
+AGG = {"utah": Utah, "clemson": Clemson, "wisconsin": Wisconsin}
+
+
+def _extract_hosts(li) -> list[str]:
+    hosts: list[str] = []
+    pat = re.compile(r"]\s+([^\s:]+)")
+    for item in li if isinstance(li, (list, tuple)) else [li]:
+        if isinstance(item, (tuple, list)) and len(item) >= 2:
+            hosts.append(item[1])
+            continue
+        m = pat.search(str(item))
+        if m:
+            hosts.append(m.group(1))
+    return hosts
+
+
+def wait_ssh(section: dict, timeout: int = 600) -> None:
+    t0 = time.time()
+    while time.time() - t0 < timeout:
+        if nodes_reachable(section):
+            return
+        time.sleep(10)
+    raise RuntimeError("nodes never became reachable over SSH")
+
+
+def main() -> None:
+    ap = argparse.ArgumentParser("quick_k8s_experiment")
+    ap.add_argument("--slice-name")
+    ap.add_argument("--site", choices=AGG, default="wisconsin")
+    ap.add_argument("--hardware-type", default="c220g5")
+    ap.add_argument("--nodes", type=int, default=3)
+    ap.add_argument("--duration", type=int, default=2, help="hours")
+    ap.add_argument("--os-type", default="UBUNTU22-64-STD")
+    ap.add_argument("--ssh-user", required=True)
+    ap.add_argument("--ssh-key", help="private key file (optional, falls back to agent)")
+    ap.add_argument("--pod-network-cidr", default="192.168.0.0/16")
+    args = ap.parse_args()
+
+    ctx = geni.util.loadContext()
+    slice_name = args.slice_name or f"k8s-{random.randint(100_000,999_999)}"
+    exp_time = datetime.datetime.now() + datetime.timedelta(hours=args.duration)
+
+    # tiny RSpec
+    req = portal.context.makeRequestRSpec()
+    pcs = []
+    for i in range(args.nodes):
+        n = req.RawPC(f"node{i}")
+        n.hardware_type = args.hardware_type
+        n.disk_image = f"urn:publicid:IDN+emulab.net+image+emulab-ops//" f"{args.os_type}"
+        n.routable_control_ip = True
+        pcs.append(n)
+    req.Link(members=pcs)
+
+    print(f"🛠  Slice {slice_name} → {args.site}")
+    ctx.cf.createSlice(ctx, slice_name, exp=exp_time, desc="Quick K8s experiment")
+    manifest = AGG[args.site].createsliver(ctx, slice_name, req)
+
+    geni.util.printlogininfo(manifest=manifest)
+
+    hosts = _extract_hosts(geni.util._corelogininfo(manifest))
+    cfg = {
+        "cloudlab": {"ssh_user": args.ssh_user, "ssh_key": args.ssh_key, "nodes": hosts},
+        "pod_network_cidr": args.pod_network_cidr,
+    }
+
+    print("⌛  Waiting for SSH …")
+    wait_ssh(cfg["cloudlab"])
+    print("🚀  Bootstrapping Kubernetes …")
+    setup_cloudlab_cluster(cfg)
+    print("✅  Cluster ready!")
+
+
+if __name__ == "__main__":
+    main()
diff --git a/scripts/geni_lib/remote.py b/scripts/geni_lib/remote.py
new file mode 100644
index 0000000..ac33b0e
--- /dev/null
+++ b/scripts/geni_lib/remote.py
@@ -0,0 +1,76 @@
+import os
+import time
+from pathlib import Path
+
+import paramiko
+from paramiko.ssh_exception import PasswordRequiredException, SSHException
+
+
+class RemoteExecutor:
+    """Thin SSH helper around paramiko suitable for non-interactive commands."""
+
+    def __init__(self, host: str, user: str, key_path: str | None = None):
+        self.host = host
+        self.client = paramiko.SSHClient()
+        self.client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
+
+        keyfile: str | None = None
+        if key_path:
+            keyfile = os.path.expanduser(os.path.expandvars(key_path))
+            if not Path(keyfile).is_file():
+                print(f"Warning: Key file '{keyfile}' not found")
+                keyfile = None
+            else:
+                print(f"Using SSH key: {keyfile}")
+
+        # Try multiple times to connect
+        max_retries = 5
+        retry_delay = 2
+        last_error = None
+
+        for attempt in range(max_retries):
+            try:
+                self.client.connect(
+                    hostname=host,
+                    username=user,
+                    key_filename=keyfile,
+                    look_for_keys=(keyfile is None),
+                    allow_agent=(keyfile is None),
+                    timeout=30,
+                )
+                return  # Successfully connected
+            except PasswordRequiredException:
+                try:
+                    self.client.connect(
+                        hostname=host,
+                        username=user,
+                        look_for_keys=True,
+                        allow_agent=True,
+                        timeout=30,
+                    )
+                    return  # Successfully connected
+                except Exception as e:
+                    last_error = e
+            except (SSHException, Exception) as e:
+                last_error = e
+                if attempt < max_retries - 1:
+                    print(f"Connection attempt {attempt + 1} failed, retrying in 5 seconds...")
+                    time.sleep(retry_delay)
+                continue
+
+        # If we get here, all retries failed
+        print(f"SSH connection error to {host}: {last_error}")
+        raise last_error
+
+    def exec(self, cmd: str, timeout: int | None = None) -> tuple[int, str, str]:
+        """Execute a command with optional timeout"""
+        try:
+            stdin, stdout, stderr = self.client.exec_command(cmd, timeout=timeout)
+            rc = stdout.channel.recv_exit_status()
+            return rc, stdout.read().decode(), stderr.read().decode()
+        except Exception as e:
+            print(f"Error executing command on {self.host}: {e}")
+            return 1, "", str(e)
+
+    def close(self) -> None:
+        self.client.close()
diff --git a/scripts/geni_lib/rspecs/test.xml b/scripts/geni_lib/rspecs/test.xml
new file mode 100644
index 0000000..8ad5c47
--- /dev/null
+++ b/scripts/geni_lib/rspecs/test.xml
@@ -0,0 +1,28 @@
+<rspec xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.geni.net/resources/rspec/3" xmlns:client="http://www.protogeni.net/resources/rspec/ext/client/1" xsi:schemaLocation="http://www.geni.net/resources/rspec/3 http://www.geni.net/resources/rspec/3/request.xsd" type="request">
+  <node client_id="control" exclusive="true">
+    <sliver_type name="raw">
+      <disk_image name="urn:publicid:IDN+emulab.net+image+emulab-ops//UBUNTU22-64-STD"/>
+    </sliver_type>
+    <hardware_type name="c220g5"/>
+    <interface client_id="control:if0"/>
+  </node>
+  <node client_id="compute1" exclusive="true">
+    <sliver_type name="raw">
+      <disk_image name="urn:publicid:IDN+emulab.net+image+emulab-ops//UBUNTU22-64-STD"/>
+    </sliver_type>
+    <hardware_type name="c220g5"/>
+    <interface client_id="compute1:if0"/>
+  </node>
+  <node client_id="compute2" exclusive="true">
+    <sliver_type name="raw">
+      <disk_image name="urn:publicid:IDN+emulab.net+image+emulab-ops//UBUNTU22-64-STD"/>
+    </sliver_type>
+    <hardware_type name="c220g5"/>
+    <interface client_id="compute2:if0"/>
+  </node>
+  <link client_id="link-1">
+    <interface_ref client_id="control:if0"/>
+    <interface_ref client_id="compute1:if0"/>
+    <interface_ref client_id="compute2:if0"/>
+  </link>
+</rspec>
diff --git a/scripts/terraform/.gitignore b/scripts/terraform/.gitignore
new file mode 100644
index 0000000..3983ce0
--- /dev/null
+++ b/scripts/terraform/.gitignore
@@ -0,0 +1,33 @@
+# Local .terraform directories
+**/.terraform/*
+
+# Terraform state files
+*.tfstate
+*.tfstate.*
+
+# Crash log files
+crash.log
+
+# Terraform variables files
+*.tfvars
+*.tfvars.json
+
+# Override files (used for local development)
+override.tf
+override.tf.json
+*_override.tf
+*_override.tf.json
+
+# Plan output files
+*.tfplan
+
+# Module and provider lock files
+.terraform.lock.hcl
+terraform.tfstate.lock.hcl
+
+# Sensitive files
+.env
+
+
+# keys
+*.pem
\ No newline at end of file
diff --git a/scripts/terraform/README.md b/scripts/terraform/README.md
new file mode 100644
index 0000000..993767b
--- /dev/null
+++ b/scripts/terraform/README.md
@@ -0,0 +1,87 @@
+## Setting up SREGym using Terraform
+
+This guide outlines the steps for establishing a secure connection to your Azure environment using a VPN and then provisioning resources with Terraform. This will create a two-node Kubernetes cluster with one controller and one worker node.
+
+**NOTE**: This will incur cloud costs as resources are created on Azure.
+
+**Prerequisites:**
+
+- **Azure VPN Connection:** Set up a secure connection to your Azure environment using a VPN client.
+- **Working directory:** SREGym/scripts/terraform/
+- **Privileges:** The user should have the privileges to create resources (SSH keys, VM, network interface, network interface security group (if required), public IP, subnet, virtual network) in the selected resource group.
+- **Azure CLI:** Follow the official [Microsoft documentation](https://learn.microsoft.com/en-us/cli/azure/install-azure-cli) for installing the Azure CLI for your operating system: 
+- **Install and initialize Terraform:**
+  
+     a. Download and install Terraform from the [official HashiCorp website](https://developer.hashicorp.com/terraform/install);
+  
+     b. To make the initial dependency selections that will initialize the dependency lock file, run:
+   
+      terraform init
+  
+**Steps:**
+   
+1. **Authenticate with Azure CLI**
+
+   Open a terminal window and run the following command to log in to Azure:
+
+   ```shell
+   az login
+   ```
+
+2. **Select subscription**
+
+   The output of az login will have a list of subscriptions you have access to. Copy the value in the "id" column of the subscription you want to work with:
+   
+   ```shell
+   az account set --subscription "<id>"
+   ```
+3. **Verify the plan**
+
+   *Note*: The SSH port of the VMs is open to the public. Please update the NSG resource in the main.tf file to restrict incoming traffic. Use the source_address_prefix attribute to specify allowed sources (e.g., source_address_prefix = "CorpNetPublic").
+
+   Create and save the plan by passing the required variables
+
+   a) _resource_group_name_ (rg): the resource group where the resources would be created.
+
+   b) _resource_prefix_name_ (prefix): a prefix for all the resources created using the Terraform script.
+
+   ```shell
+   terraform plan -out main.tfplan -var " resource_group_name=<rg>" -var "resource_name_prefix=<prefix>"
+   ```
+5. **Apply the saved plan**
+
+   Note: Verify the plan from the previous step before applying it.
+
+   ```shell
+   terraform apply "main.tfplan"
+   ```
+   
+6. **Setup SREGym**
+    Run the below script to setup SREGym on the newly provisioned resources
+
+    ```shell
+    python deploy.py
+    ```
+   On successful execution, the script outputs the SSH commands to login to the controller and worker node. Please save it.
+
+   Please activate virtual environment before running any scripts and add the path to `wrk2` executable to PATH:
+
+   ```
+   azureuser@kubeController:~/SREGym$ source .venv/bin/activate
+   (.venv) azureuser@kubeController:~/SREGym/clients$ export PATH="$PATH:/home/azureuser/SREGym/TargetMicroservices/wrk2"
+   ```
+
+**How to destroy the resources using Terraform?**
+
+1. Before deleting the resources, run the below command to create and save a plan (use the values previous used for resource_group_name and resource_name_prefix)
+   
+    ```shell
+    terraform plan -destroy -out main.destroy.tfplan -var "resource_group_name=<rg>" -var "resource_name_prefix=<prefix>"
+    ```
+
+2. Once the plan is verified, remove the resources using the below command:
+
+    ```shell
+    terraform destroy main.destroy.tfplan
+    ```
+
diff --git a/scripts/terraform/data.tf b/scripts/terraform/data.tf
new file mode 100644
index 0000000..641213c
--- /dev/null
+++ b/scripts/terraform/data.tf
@@ -0,0 +1,3 @@
+data "azurerm_resource_group" "rg" {
+  name = var.resource_group_name
+}
\ No newline at end of file
diff --git a/scripts/terraform/deploy.py b/scripts/terraform/deploy.py
new file mode 100644
index 0000000..5aff408
--- /dev/null
+++ b/scripts/terraform/deploy.py
@@ -0,0 +1,215 @@
+import logging
+import os
+import subprocess
+
+REPO = "/home/azureuser/SREGym"
+
+# Configure logging
+logging.basicConfig(level=logging.INFO)  # Change to DEBUG for more detailed logs
+logger = logging.getLogger(__name__)
+
+
+def run_command(command, capture_output=False):
+    """Runs a shell command and handles errors."""
+    try:
+        logger.debug(f"Running command: {' '.join(command)}")
+        result = subprocess.run(command, capture_output=capture_output, text=True, check=True)
+        if capture_output:
+            logger.debug(f"Command output: {result.stdout.strip()}")
+        return result.stdout.strip() if capture_output else None
+    except subprocess.CalledProcessError as e:
+        logger.error(f"Command '{' '.join(command)}' failed with error: {e.stderr.strip() if e.stderr else str(e)}")
+        if capture_output:
+            return None
+
+
+def setup_aiopslab():
+    try:
+        run_command(["terraform", "plan", "-out", "main.tfplan"])
+        output = run_command(["terraform", "apply", "main.tfplan"], capture_output=True)
+        if output:
+            logger.debug(f"Terraform apply output: {output}")
+    except Exception as e:
+        logger.error(f"Error in setup_aiopslab: {str(e)}")
+
+
+def destroy_aiopslab():
+    pass
+
+
+def get_terraform_output(output_name):
+    """Retrieve Terraform output."""
+    try:
+        result = run_command(["terraform", "output", "-raw", output_name], capture_output=True)
+        return result
+    except Exception as e:
+        logger.error(f"Failed to get Terraform output for {output_name}: {str(e)}")
+        return None
+
+
+def save_private_key(key_data, filename):
+    """Save the private key to a file."""
+    try:
+        with open(filename, "w") as key_file:
+            key_file.write(key_data)
+        os.chmod(filename, 0o600)
+        logger.info(f"Private key saved to {filename}")
+    except Exception as e:
+        logger.error(f"Failed to save private key to {filename}: {str(e)}")
+
+
+def copy_and_execute_script(username, private_key, public_ip, script):
+    """Copy and execute the shell script on the remote VM."""
+    remote_path = f"{username}@{public_ip}:/home/{username}"
+    try:
+        # Copy the shell script to the remote VM
+        run_command(
+            [
+                "scp",
+                "-o",
+                "StrictHostKeyChecking=no",
+                "-i",
+                private_key,
+                script,
+                remote_path,
+            ]
+        )
+
+        # Execute the shell script on the remote VM
+        run_command(
+            [
+                "ssh",
+                "-i",
+                private_key,
+                f"{username}@{public_ip}",
+                f"bash /home/{username}/{os.path.basename(script)}",
+            ]
+        )
+    except Exception as e:
+        logger.error(f"Failed to copy or execute script on {public_ip}: {str(e)}")
+
+
+def get_kubeadm_join_remote(username, private_key, public_ip):
+    """SSH into the remote machine and generate the kubeadm join command."""
+    generate_join_command = [
+        "ssh",
+        "-i",
+        private_key,
+        f"{username}@{public_ip}",
+        "sudo kubeadm token create --print-join-command",
+    ]
+    try:
+        print(generate_join_command)
+        result = run_command(generate_join_command, capture_output=True)
+        return result
+    except Exception as e:
+        logger.error(f"Failed to retrieve kubeadm join command from {public_ip}: {str(e)}")
+        return None
+
+
+def run_kubeadm_join_on_worker(worker_username, private_key, worker_ip, join_command):
+    """SSH into the worker and run the kubeadm join command."""
+    ssh_command = [
+        "ssh",
+        "-i",
+        private_key,
+        f"{worker_username}@{worker_ip}",
+        f"sudo {join_command} --cri-socket /var/run/cri-dockerd.sock",
+    ]
+    try:
+        run_command(ssh_command)
+    except Exception as e:
+        logger.error(f"Failed to run kubeadm join on {worker_ip}: {str(e)}")
+
+
+def add_ssh_key(host, port=22):
+    """Runs ssh-keyscan on a given host and appends the key to known_hosts."""
+    try:
+        # Build the ssh-keyscan command
+        keyscan_cmd = ["ssh-keyscan", "-H", "-p", str(port), host]
+
+        # Run the ssh-keyscan command and capture output
+        result = run_command(keyscan_cmd, capture_output=True)
+
+        # Append the output (host key) to known_hosts
+        with open(os.path.expanduser("~/.ssh/known_hosts"), "a") as known_hosts_file:
+            known_hosts_file.write(result)
+        logger.info(f"SSH key for {host} added to known_hosts.")
+    except subprocess.CalledProcessError as e:
+        logger.error(f"Failed to fetch SSH key for {host}: {e}")
+    except Exception as ex:
+        logger.error(f"An error occurred while adding SSH key for {host}: {ex}")
+
+
+def deploy_prometheus(username, private_key_file_1, public_ip_1):
+    """Deploy Prometheus on the worker node."""
+    try:
+        run_command(
+            [
+                "ssh",
+                "-o",
+                "StrictHostKeyChecking=no",
+                "-i",
+                private_key_file_1,
+                f"{username}@{public_ip_1}",
+                f"bash {REPO}/scripts/setup.sh kubeworker1",
+            ]
+        )
+    except Exception as e:
+        logger.error(f"Failed to deploy Prometheus: {str(e)}")
+
+
+def main():
+    # Retrieve private keys and public IPs for both VMs
+    private_key_1 = get_terraform_output("key_data_1")
+    private_key_2 = get_terraform_output("key_data_2")
+    public_ip_1 = get_terraform_output("public_ip_address_1")
+    public_ip_2 = get_terraform_output("public_ip_address_2")
+    username = "azureuser"  # TODO: read from variables file
+
+    if not private_key_1 or not private_key_2 or not public_ip_1 or not public_ip_2:
+        logger.error("Failed to retrieve required Terraform outputs.")
+        return
+
+    # Save the private keys to files
+    private_key_file_1 = "vm_1_private_key.pem"
+    private_key_file_2 = "vm_2_private_key.pem"
+    save_private_key(private_key_1, private_key_file_1)
+    save_private_key(private_key_2, private_key_file_2)
+
+    # Path to the shell script
+    kubeadm_shell_script = f"./scripts/kubeadm.sh"
+    controller_shell_script = f"./scripts/kube_controller.sh"
+    setup_sregym_script = f"./scripts/setup_sregym.sh"
+    prom_worker_setup_script = f"./scripts/prom_on_worker.sh"
+
+    # Install kubeadm on all the VMs
+    copy_and_execute_script(username, private_key_file_1, public_ip_1, kubeadm_shell_script)
+    copy_and_execute_script(username, private_key_file_2, public_ip_2, kubeadm_shell_script)
+
+    # Setup kube controller
+    copy_and_execute_script(username, private_key_file_1, public_ip_1, controller_shell_script)
+
+    # Get join command and run on the worker
+    join_command = get_kubeadm_join_remote(username, private_key_file_1, public_ip_1)
+
+    if join_command:
+        logger.info(f"Join command retrieved: {join_command}")
+        run_kubeadm_join_on_worker(username, private_key_file_2, public_ip_2, join_command)
+
+    # Setup sregym
+    copy_and_execute_script(username, private_key_file_1, public_ip_1, setup_sregym_script)
+
+    # Deploy Prometheus on the worker node)
+    copy_and_execute_script(username, private_key_file_2, public_ip_2, prom_worker_setup_script)
+    deploy_prometheus(username, private_key_file_1, public_ip_1)
+
+    # print public ip of controller and worker and give ssh command to access it
+    logger.info(f"Controller Public IP: {public_ip_1}")
+    logger.info(f"Worker Public IP: {public_ip_2}")
+    logger.info(f"SSH command to access controller: ssh -i {private_key_file_1} {username}@{public_ip_1}")
+    logger.info(f"SSH command to access worker: ssh -i {private_key_file_2} {username}@{public_ip_2}")
+
+
+if __name__ == "__main__":
+    main()
diff --git a/scripts/terraform/main.tf b/scripts/terraform/main.tf
new file mode 100644
index 0000000..77db20c
--- /dev/null
+++ b/scripts/terraform/main.tf
@@ -0,0 +1,197 @@
+# Create virtual network
+resource "azurerm_virtual_network" "aiopslab_network" {
+  name                = "${var.resource_name_prefix}_aiopslabVnet"
+  address_space       = ["10.0.0.0/16"]
+  location            = var.resource_location
+  resource_group_name = var.resource_group_name
+}
+
+# Create subnet
+resource "azurerm_subnet" "aiopslab_subnet" {
+  name                 = "${var.resource_name_prefix}_aiopslabSubnet"
+  resource_group_name  = var.resource_group_name
+  virtual_network_name = azurerm_virtual_network.aiopslab_network.name
+  address_prefixes     = ["10.0.1.0/24"]
+}
+
+# Create public IPs
+resource "azurerm_public_ip" "aiopslab_public_ip_1" {
+  name                = "${var.resource_name_prefix}_aiopslabPublicIP_1"
+  location            = var.resource_location
+  resource_group_name = var.resource_group_name
+  allocation_method   = "Dynamic"
+}
+
+resource "azurerm_public_ip" "aiopslab_public_ip_2" {
+  name                = "${var.resource_name_prefix}_aiopslabPublicIP_2"
+  location            = var.resource_location
+  resource_group_name = var.resource_group_name
+  allocation_method   = "Dynamic"
+}
+
+# Create Network Security Group and rule with only CorpNet access
+resource "azurerm_network_security_group" "aiopslab_nsg_1" {
+  name                = "${var.resource_name_prefix}_aiopslabNSG_1"
+  location            = var.resource_location
+  resource_group_name = var.resource_group_name
+
+  security_rule {
+    name                       = "SSH"
+    priority                   = 1001
+    direction                  = "Inbound"
+    access                     = "Allow"
+    protocol                   = "Tcp"
+    source_port_range          = "*"
+    destination_port_range     = "22"
+    source_address_prefix      = "*"
+    destination_address_prefix = "*"
+  }
+}
+
+resource "azurerm_network_security_group" "aiopslab_nsg_2" {
+  name                = "${var.resource_name_prefix}_aiopslabNSG_2"
+  location            = var.resource_location
+  resource_group_name = var.resource_group_name
+
+  security_rule {
+    name                       = "SSH"
+    priority                   = 1001
+    direction                  = "Inbound"
+    access                     = "Allow"
+    protocol                   = "Tcp"
+    source_port_range          = "*"
+    destination_port_range     = "22"
+    source_address_prefix      = "*"
+    destination_address_prefix = "*"
+  }
+}
+
+# Create network interfaces
+resource "azurerm_network_interface" "aiopslab_nic_1" {
+  name                = "${var.resource_name_prefix}_aiopslabNIC_1"
+  location            = var.resource_location
+  resource_group_name = var.resource_group_name
+
+  ip_configuration {
+    name                          = "${var.resource_name_prefix}_aioplabNICConfiguration_1"
+    subnet_id                     = azurerm_subnet.aiopslab_subnet.id
+    private_ip_address_allocation = "Dynamic"
+    public_ip_address_id          = azurerm_public_ip.aiopslab_public_ip_1.id
+  }
+}
+
+resource "azurerm_network_interface" "aiopslab_nic_2" {
+  name                = "${var.resource_name_prefix}_aiopslabNIC_2"
+  location            = var.resource_location
+  resource_group_name = var.resource_group_name
+
+  ip_configuration {
+    name                          = "${var.resource_name_prefix}_aioplabNICConfiguration_2"
+    subnet_id                     = azurerm_subnet.aiopslab_subnet.id
+    private_ip_address_allocation = "Dynamic"
+    public_ip_address_id          = azurerm_public_ip.aiopslab_public_ip_2.id
+  }
+}
+
+# Connect the security groups to the network interfaces
+resource "azurerm_network_interface_security_group_association" "aiopslab_nsg_association_1" {
+  network_interface_id      = azurerm_network_interface.aiopslab_nic_1.id
+  network_security_group_id = azurerm_network_security_group.aiopslab_nsg_1.id
+}
+
+resource "azurerm_network_interface_security_group_association" "aiopslab_nsg_association_2" {
+  network_interface_id      = azurerm_network_interface.aiopslab_nic_2.id
+  network_security_group_id = azurerm_network_security_group.aiopslab_nsg_2.id
+}
+
+resource "random_id" "random_id" {
+  byte_length = 8
+}
+
+
+# Create storage accounts for boot diagnostics
+resource "azurerm_storage_account" "aiopslab_storage_account_1" {
+  # storage account names can only consist of lowercase letters and numbers
+  name                     = "diag${random_id.random_id.hex}1"
+  location                 = var.resource_location
+  resource_group_name      = var.resource_group_name
+  account_tier             = "Standard"
+  account_replication_type = "LRS"
+}
+
+resource "azurerm_storage_account" "aiopslab_storage_account_2" {
+  name                     = "diag${random_id.random_id.hex}2"
+  location                 = var.resource_location
+  resource_group_name      = var.resource_group_name
+  account_tier             = "Standard"
+  account_replication_type = "LRS"
+}
+
+
+
+# Create virtual machines
+resource "azurerm_linux_virtual_machine" "aiopslab_vm_1" {
+  name                  = "${var.resource_name_prefix}_aiopslabVM_1"
+  location              = var.resource_location
+  resource_group_name   = var.resource_group_name
+  network_interface_ids = [azurerm_network_interface.aiopslab_nic_1.id]
+  size                  = "Standard_D4s_v3"
+
+  os_disk {
+    name                 = "${var.resource_name_prefix}_OsDisk_1"
+    caching              = "ReadWrite"
+    storage_account_type = "Premium_LRS"
+  }
+
+  source_image_reference {
+    publisher = "Canonical"
+    offer     = "0001-com-ubuntu-server-jammy"
+    sku       = "22_04-lts-gen2"
+    version   = "latest"
+  }
+
+  computer_name  = "kubeController"
+  admin_username = var.username
+
+  admin_ssh_key {
+    username   = var.username
+    public_key = azapi_resource_action.aiopslab_ssh_public_key_gen_1.output.publicKey
+  }
+
+  boot_diagnostics {
+    storage_account_uri = azurerm_storage_account.aiopslab_storage_account_1.primary_blob_endpoint
+  }
+}
+
+resource "azurerm_linux_virtual_machine" "aiopslab_vm_2" {
+  name                  = "${var.resource_name_prefix}_aiopslabVM_2"
+  location              = var.resource_location
+  resource_group_name   = var.resource_group_name
+  network_interface_ids = [azurerm_network_interface.aiopslab_nic_2.id]
+  size                  = "Standard_F16s_v2"
+
+  os_disk {
+    name                 = "${var.resource_name_prefix}_OsDisk_2"
+    caching              = "ReadWrite"
+    storage_account_type = "Premium_LRS"
+  }
+
+  source_image_reference {
+    publisher = "Canonical"
+    offer     = "0001-com-ubuntu-server-jammy"
+    sku       = "22_04-lts-gen2"
+    version   = "latest"
+  }
+
+  computer_name  = "kubeWorker1"
+  admin_username = var.username
+
+  admin_ssh_key {
+    username   = var.username
+    public_key = azapi_resource_action.aiopslab_ssh_public_key_gen_2.output.publicKey
+  }
+
+  boot_diagnostics {
+    storage_account_uri = azurerm_storage_account.aiopslab_storage_account_2.primary_blob_endpoint
+  }
+}
diff --git a/scripts/terraform/outputs.tf b/scripts/terraform/outputs.tf
new file mode 100644
index 0000000..e612f0a
--- /dev/null
+++ b/scripts/terraform/outputs.tf
@@ -0,0 +1,19 @@
+output "public_ip_address_1" {
+  value = azurerm_linux_virtual_machine.aiopslab_vm_1.public_ip_address
+}
+
+output "public_ip_address_2" {
+  value = azurerm_linux_virtual_machine.aiopslab_vm_2.public_ip_address
+}
+
+output "key_data_1" {
+  value = azapi_resource_action.aiopslab_ssh_public_key_gen_1.output.privateKey
+}
+
+output "key_data_2" {
+  value = azapi_resource_action.aiopslab_ssh_public_key_gen_2.output.privateKey
+}
+
+output "username" {
+  value = var.username
+}
\ No newline at end of file
diff --git a/scripts/terraform/providers.tf b/scripts/terraform/providers.tf
new file mode 100644
index 0000000..ca5acba
--- /dev/null
+++ b/scripts/terraform/providers.tf
@@ -0,0 +1,23 @@
+terraform {
+  required_version = ">=0.12"
+
+  required_providers {
+    azapi = {
+      source  = "azure/azapi"
+      version = "~>1.5"
+    }
+    azurerm = {
+      source  = "hashicorp/azurerm"
+      version = "~>2.0"
+    }
+    random = {
+      source  = "hashicorp/random"
+      version = "~>3.0"
+    }
+  }
+}
+
+provider "azurerm" {
+  features {}
+  skip_provider_registration = true
+}
\ No newline at end of file
diff --git a/scripts/terraform/scripts/kube_controller.sh b/scripts/terraform/scripts/kube_controller.sh
new file mode 100644
index 0000000..197b303
--- /dev/null
+++ b/scripts/terraform/scripts/kube_controller.sh
@@ -0,0 +1,25 @@
+#All below steps only for setting up controller
+
+sudo systemctl enable --now kubelet
+sudo kubeadm config images pull  --cri-socket /var/run/cri-dockerd.sock
+sudo kubeadm init --pod-network-cidr=10.244.0.0/16 --cri-socket /var/run/cri-dockerd.sock
+
+#copy kubeconfig to user
+mkdir -p $HOME/.kube
+sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
+sudo chown $(id -u):$(id -g) $HOME/.kube/config
+
+
+# install network 
+wget https://github.com/flannel-io/flannel/releases/latest/download/kube-flannel.yml
+sleep 3
+kubectl apply -f kube-flannel.yml
+sudo systemctl status kubelet --no-pager
+
+
+# commands to troubleshoot
+ip addr | grep cni
+kubectl get pods -n kube-system
+
+
+
diff --git a/scripts/terraform/scripts/kubeadm.sh b/scripts/terraform/scripts/kubeadm.sh
new file mode 100644
index 0000000..aea5154
--- /dev/null
+++ b/scripts/terraform/scripts/kubeadm.sh
@@ -0,0 +1,136 @@
+#https://www.nathanobert.com/posts/blog-kubernetes-on-ubuntu/
+#https://earthly.dev/blog/deploy-kubernetes-cri-o-container-runtime/
+#https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/
+
+
+# refresh the package list (info about available packages and their version) from the repositories
+sudo apt update -y
+
+# upgrade installed packages to their latest version
+sudo apt upgrade -y
+
+
+# removes any automatically installed packages that are not longer needed
+
+
+
+# install docker - https://docs.docker.com/engine/install/ubuntu/ (follow the docker page)
+
+# remove unofficial versions of docker if any
+for pkg in docker.io docker-doc docker-compose docker-compose-v2 podman-docker containerd runc; do sudo apt-get remove $pkg; done
+
+
+#Set up Docker's apt repository.
+
+sudo apt update
+sudo apt install ca-certificates curl
+# Creates a directory (/etc/apt/keyrings) to store the GPG key. (install doesn't install anything - https://linuxhandbook.com/install-command/)
+sudo install -m 0755 -d /etc/apt/keyrings
+# download Docker's official GPG keys
+sudo curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc
+# set read permissions for all users on the key file.
+sudo chmod a+r /etc/apt/keyrings/docker.asc
+
+# Add the repository to Apt sources:
+# deb is the format, as well as filename extension of the software package format for the Debian Linux distribution and its derivatives.
+# this line tells APT to use the specified Docker repository for Ubuntu 22.04 (Jammy) with the appropriate architecture and GPG key verification
+echo \
+  "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu \
+  $(. /etc/os-release && echo "$VERSION_CODENAME") stable" | \
+  sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
+
+# refresh the package list with the newly added repository
+sudo apt update
+
+# install the packages
+
+sudo apt-get install -y docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
+
+# start service if docker is not running
+
+sudo systemctl status docker.service --no-pager;
+sudo service docker start
+
+# test if docker is properly installed
+# https://docs.docker.com/engine/install/linux-postinstall/, https://askubuntu.com/questions/477551/how-can-i-use-docker-without-sudo
+# The Docker daemon (the core component of Docker) communicates with the Docker CLI (command-line interface) via a Unix socket (not a TCP port).
+# By default, this Unix socket is owned by the root user.
+# Without proper permissions, non-root users cannot access this socket. Docker daemon while creating the socket, creates a group called docker 
+# with #read/write privileges. So we can skip using sudo before every command by adding the user to docker group
+sudo usermod -aG docker $USER
+
+# for the above command to take effect, we need to start a new session. If we don't want to do that, we can use newgrp to start a new session with
+# with the specified group as the group ID. Only needed for debugging.
+# newgrp docker && docker run hello-world
+
+
+# Install cri-dockerd - the driver between Kubernetes CRI interface and the docker APIs
+# pick the latest stable release from here -
+# wget https://github.com/Mirantis/cri-dockerd/releases/download/<version>/cri-dockerd_<>.deb
+wget https://github.com/Mirantis/cri-dockerd/releases/download/v0.3.12/cri-dockerd_0.3.12.3-0.ubuntu-jammy_amd64.deb
+sudo apt install ./cri-dockerd_0.3.12.3-0.ubuntu-jammy_amd64.deb -y
+
+
+sudo systemctl status docker.service --no-pager;
+sudo systemctl status cri-docker.service --no-pager;
+
+
+
+
+# kubeadm installation - https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/install-kubeadm/
+# apt-transport-https may be a dummy package; if so, you can skip that package
+sudo apt-get install -y apt-transport-https ca-certificates curl gpg
+
+# add kube repository
+echo "deb [signed-by=/etc/apt/keyrings/kubernetes-apt-keyring.gpg] https://pkgs.k8s.io/core:/stable:/v1.29/deb/ /" | sudo tee /etc/apt/sources.list.d/kubernetes.list
+
+
+#Download the public signing key for the Kubernetes package repositories. The same signing key is used for all repositories, so you can disregard #the version in the URL:
+
+curl -fsSL https://pkgs.k8s.io/core:/stable:/v1.29/deb/Release.key | sudo gpg --dearmor -o /etc/apt/keyrings/kubernetes-apt-keyring.gpg
+
+
+# update the packages
+sudo apt update;
+
+# install packages
+# Don't pass "-y" flag as packages could already be installed and held at a particular version
+# sudo apt-get install -qy kubeadm kubelet kubectl --allow-change-held-packages
+sudo apt-get install -qy kubeadm kubelet kubectl
+
+
+# avoids the package being automatically updated. Good for stability
+sudo apt-mark hold kubeadm kubelet kubectl;
+kubeadm version;
+
+
+# disable swap
+sudo swapoff -a
+sudo sed -i '/ swap / s/^\(.*\)$/#\1/g' /etc/fstab
+
+# check if swap is disabled
+free -m
+
+
+#Enable the necessary kernel modules: overlay & br_netfilter
+
+sudo modprobe overlay
+sudo modprobe br_netfilter
+
+#create script to load modules on every reboot
+#heredoc example - https://stackoverflow.com/questions/2500436/how-does-cat-eof-work-in-bash
+
+cat <<EOF | sudo tee /etc/modules-load.d/k8s.conf
+overlay
+br_netfilter
+EOF
+
+
+# these are the default values of these kernetl parameters but they need to be set to these values for Kubernetes to function properly
+cat <<EOF | sudo tee /etc/sysctl.d/k8s.conf
+net.bridge.bridge-nf-call-iptables  = 1
+net.bridge.bridge-nf-call-ip6tables = 1
+net.ipv4.ip_forward                 = 1
+EOF
+
+sudo sysctl --system
\ No newline at end of file
diff --git a/scripts/terraform/scripts/prom_on_worker.sh b/scripts/terraform/scripts/prom_on_worker.sh
new file mode 100644
index 0000000..68e1847
--- /dev/null
+++ b/scripts/terraform/scripts/prom_on_worker.sh
@@ -0,0 +1,18 @@
+#!/bin/sh
+
+echo "Checking /datadrive/prometheus directory"
+if [ ! -d "/datadrive/prometheus" ]; then
+    echo "   /datadrive/prometheus does not exist. Creating the directory structure."
+    
+    # Check if /datadrive exists; if not, create it
+    if [ ! -d "/datadrive" ]; then
+        sudo mkdir -p /datadrive
+        echo "   Created /datadrive directory."
+    fi
+    
+    # Create /datadrive/prometheus
+    sudo mkdir -p /datadrive/prometheus
+    echo "   Created /datadrive/prometheus directory."
+else
+    echo "   /datadrive/prometheus directory already exists."
+fi
\ No newline at end of file
diff --git a/scripts/terraform/scripts/setup_sregym.sh b/scripts/terraform/scripts/setup_sregym.sh
new file mode 100644
index 0000000..8a35af1
--- /dev/null
+++ b/scripts/terraform/scripts/setup_sregym.sh
@@ -0,0 +1,40 @@
+#!/bin/bash
+
+# Function to generate an SSH key if not already present
+generate_ssh_key() {
+    if [ ! -f ~/.ssh/id_rsa ]; then
+        echo "SSH key not found. Generating one..."
+        ssh-keygen -t rsa -N "" -f ~/.ssh/id_rsa
+        echo "SSH key generated."
+    else
+        echo "SSH key already exists."
+    fi
+}
+
+# Generate the SSH key if it's not already there
+generate_ssh_key
+
+# SREGym setup
+git clone https://github.com/SREGym/SREGym
+cd SREGym
+sudo add-apt-repository -y ppa:deadsnakes/ppa
+sudo apt-get update
+sudo apt-get install -y python3.11
+sudo apt-get install -y python3.11-venv
+python3.11 -m venv .venv
+source .venv/bin/activate
+python -m pip install --upgrade pip
+.venv/bin/pip install -U pip setuptools
+.venv/bin/pip install poetry
+.venv/bin/poetry install
+
+# DeathStarBench prerequisites
+sudo apt install -yq python3-pip datamash libssl-dev libz-dev luarocks python3-pip unzip
+pip3 install -q crossplane pandas PyYAML numpy kubernetes scikit-optimize aiohttp
+sudo luarocks install luasocket
+
+
+# Install Helm
+sudo snap install helm --classic
+
+
diff --git a/scripts/terraform/ssh.tf b/scripts/terraform/ssh.tf
new file mode 100644
index 0000000..19039b1
--- /dev/null
+++ b/scripts/terraform/ssh.tf
@@ -0,0 +1,35 @@
+
+resource "azapi_resource" "aiopslab_ssh_public_key_1" {
+  type      = "Microsoft.Compute/sshPublicKeys@2022-11-01"
+  name      = "${var.resource_name_prefix}_ssh_public_key_1"
+  location  = var.resource_location
+  parent_id = data.azurerm_resource_group.rg.id
+}
+
+resource "azapi_resource_action" "aiopslab_ssh_public_key_gen_1" {
+  type        = "Microsoft.Compute/sshPublicKeys@2022-11-01"
+  resource_id = azapi_resource.aiopslab_ssh_public_key_1.id
+  action      = "generateKeyPair"
+  method      = "POST"
+
+  response_export_values = ["publicKey", "privateKey"]
+}
+
+
+resource "azapi_resource" "aiopslab_ssh_public_key_2" {
+  type      = "Microsoft.Compute/sshPublicKeys@2022-11-01"
+  name      = "${var.resource_name_prefix}_ssh_public_key_2"
+  location  = var.resource_location
+  parent_id = data.azurerm_resource_group.rg.id
+}
+
+resource "azapi_resource_action" "aiopslab_ssh_public_key_gen_2" {
+  type        = "Microsoft.Compute/sshPublicKeys@2022-11-01"
+  resource_id = azapi_resource.aiopslab_ssh_public_key_2.id
+  action      = "generateKeyPair"
+  method      = "POST"
+
+  response_export_values = ["publicKey", "privateKey"]
+}
+
+
diff --git a/scripts/terraform/variables.tf b/scripts/terraform/variables.tf
new file mode 100644
index 0000000..0612f85
--- /dev/null
+++ b/scripts/terraform/variables.tf
@@ -0,0 +1,31 @@
+variable "resource_location" {
+  type        = string
+  default     = "westus2"
+  description = "Location of the resource."
+}
+
+variable "username" {
+  type        = string
+  description = "The username for the local account that will be created on the new VM."
+  default     = "azureuser"
+}
+
+variable "resource_name_prefix" {
+  type        = string
+  description = "Prefix for all the resource names."
+}
+
+# TODO: Generate random text instead of taking prefix from user? Below will keep it unique for each resource group.
+# resource "random_id" "resource_name_prefix" {
+#  keepers = {
+#    resource_group = var.resource_group_name
+#  }
+#
+#  byte_length = 8
+#}
+
+
+variable "resource_group_name" {
+  type        = string
+  description = "The name of the resource group where the all the resources should be created."
+}
\ No newline at end of file
diff --git a/sregym/__init__.py b/sregym/__init__.py
new file mode 100644
index 0000000..7c0e64d
--- /dev/null
+++ b/sregym/__init__.py
@@ -0,0 +1,5 @@
+import logging
+
+local_logger = logging.getLogger('all.sregym')
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
\ No newline at end of file
diff --git a/sregym/agent_launcher.py b/sregym/agent_launcher.py
new file mode 100644
index 0000000..2f0fc9b
--- /dev/null
+++ b/sregym/agent_launcher.py
@@ -0,0 +1,61 @@
+import os
+import subprocess
+import sys
+import threading
+from datetime import datetime
+from typing import Dict, Optional
+
+from .agent_registry import AgentRegistration
+
+
+class AgentProcess:
+    def __init__(self, name: str, proc: subprocess.Popen):
+        self.name = name
+        self.proc = proc
+        self.started_at = datetime.utcnow()
+
+
+class AgentLauncher:
+    def __init__(self):
+        self._procs: Dict[str, AgentProcess] = {}
+
+    async def ensure_started(self, reg: AgentRegistration) -> Optional[AgentProcess]:
+        if not reg or not reg.kickoff_command:
+            return None
+        existing = self._procs.get(reg.name)
+        
+        if existing:
+            existing.proc.poll()
+            if existing.proc.returncode is None:
+                return existing
+                
+        env = os.environ.copy()
+        if reg.kickoff_env:
+            env.update(reg.kickoff_env)
+
+        proc = subprocess.Popen(
+            reg.kickoff_command,
+            shell=True,
+            cwd=reg.kickoff_workdir or os.getcwd(),
+            env=env,
+            stdout=subprocess.PIPE,
+            stderr=subprocess.STDOUT,
+            text=True,
+            bufsize=1,
+            universal_newlines=True,
+        )
+        ap = AgentProcess(reg.name, proc)
+        self._procs[reg.name] = ap
+        t = threading.Thread(target=self._pipe_logs, args=(reg.name, proc), daemon=True)
+        t.start()
+        return ap
+
+    def _pipe_logs(self, name: str, proc: subprocess.Popen):
+        if proc.stdout is None:
+            return
+        for line in proc.stdout:
+            try:
+                sys.stdout.write(f"{line}")
+                sys.stdout.flush()
+            except Exception:
+                break
diff --git a/sregym/agent_registry.py b/sregym/agent_registry.py
new file mode 100644
index 0000000..c59f983
--- /dev/null
+++ b/sregym/agent_registry.py
@@ -0,0 +1,41 @@
+from dataclasses import dataclass, asdict
+from pathlib import Path
+from typing import Dict, Optional
+import os, yaml
+
+DEFAULT_REG_PATH = Path(os.environ.get("SREGYM_AGENT_REGISTRY", "agents.yaml"))
+
+@dataclass
+class AgentRegistration:
+    name: str
+    kickoff_command: str | None = None
+    kickoff_workdir: str | None = None
+    kickoff_env: Dict[str, str] | None = None
+
+def _ensure_file(path: Path):
+    if not path.exists():
+        path.write_text(yaml.safe_dump({"agents": []}, sort_keys=False))
+
+def list_agents(path: Path = DEFAULT_REG_PATH) -> Dict[str, AgentRegistration]:
+    _ensure_file(path)
+    data = yaml.safe_load(path.read_text()) or {"agents": []}
+    out: Dict[str, AgentRegistration] = {}
+    for a in data.get("agents", []):
+        out[a["name"]] = AgentRegistration(
+            name=a["name"],
+            kickoff_command=a.get("kickoff_command"),
+            kickoff_workdir=a.get("kickoff_workdir"),
+            kickoff_env=a.get("kickoff_env") or {},
+        )
+    return out
+
+def get_agent(name: str, path: Path = DEFAULT_REG_PATH) -> Optional[AgentRegistration]:
+    return list_agents(path).get(name)
+
+def save_agent(reg: AgentRegistration, path: Path = DEFAULT_REG_PATH) -> None:
+    _ensure_file(path)
+    data = yaml.safe_load(path.read_text()) or {"agents": []}
+    agents = [x for x in data.get("agents", []) if x.get("name") != reg.name]
+    agents.append(asdict(reg))
+    data["agents"] = agents
+    path.write_text(yaml.safe_dump(data, sort_keys=False))
diff --git a/sregym/conductor/__init__.py b/sregym/conductor/__init__.py
new file mode 100644
index 0000000..affab6d
--- /dev/null
+++ b/sregym/conductor/__init__.py
@@ -0,0 +1 @@
+from .conductor import Conductor
diff --git a/sregym/conductor/conductor.py b/sregym/conductor/conductor.py
new file mode 100644
index 0000000..4610041
--- /dev/null
+++ b/sregym/conductor/conductor.py
@@ -0,0 +1,562 @@
+import logging
+import shutil
+import time
+from pathlib import Path
+
+import yaml
+
+from dashboard.proxy import LogProxy
+from sregym.conductor.constants import StartProblemResult
+from sregym.conductor.oracles.detection import DetectionOracle
+from sregym.conductor.oracles.diagnosis_oracle import DiagnosisOracle
+from sregym.conductor.problems.registry import ProblemRegistry
+from sregym.conductor.utils import is_ordered_subset
+from sregym.generators.fault.inject_remote_os import RemoteOSFaultInjector
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.generators.noise.transient_issues.transient_issues import FaultType, PodScope, TransientIssuesGenerator
+from sregym.service.apps.app_registry import AppRegistry
+from sregym.service.dm_dust_manager import DmDustManager
+from sregym.service.dm_flakey_manager import DmFlakeyManager
+from sregym.service.khaos import KhaosController
+from sregym.service.kubectl import KubeCtl
+from sregym.service.telemetry.prometheus import Prometheus
+
+
+class Conductor:
+    def __init__(self):
+        # core services
+        self.problems = ProblemRegistry()
+        self.kubectl = KubeCtl()
+        self.prometheus = Prometheus()
+        self.apps = AppRegistry()
+        self.agent_name = None
+
+        self.khaos = KhaosController(self.kubectl)
+        self.dm_dust_manager = DmDustManager(self.kubectl)
+        self.dm_flakey_manager = DmFlakeyManager(self.kubectl)
+
+        self.problem = None
+        self.detection_oracle = None
+        self.problem_id = None
+        self.problem = None
+        self.app = None
+        self.detection_oracle = None
+        self.execution_start_time = None
+
+        # grading flow state
+        # submission_stage reflects the current AgentAct name (e.g., "diagnosis", "mitigation") or "done"
+        self.submission_stage = None
+        self.results = {}
+
+        self.tasklist = None
+        self.logger = logging.getLogger("sregym-global")  # this is for dashboard
+        self.local_logger = logging.getLogger("all.sregym.conductor")
+
+        self.transient_config = {
+            "switch": False,
+            "min_duration": 40,
+            "max_duration": 60,
+            "fault_types": [FaultType.FAIL_SLOW, FaultType.FAIL_STOP],
+            "scopes": [PodScope.TARGET_NAMESPACE],
+            "interval_min": 20,
+            "interval_max": 30,
+        }
+
+        self.act_sequence: list[dict] = []
+        self.current_act_index: int = 0
+        self.current_agent_act_index: int | None = None
+        self.waiting_for_agent: bool = False
+
+    def register_agent(self, name="agent"):
+        self.agent_name = name
+
+    def dependency_check(self, binaries: list[str]):
+        for b in binaries:
+            if shutil.which(b) is None:
+                self.local_logger.error(f"Required dependency '{b}' not found.")
+                raise RuntimeError(f"[❌] Required dependency '{b}' not found.")
+
+    def get_tasklist(self):
+        file_dir = Path(__file__).resolve().parent
+        tasklist_path = file_dir / "tasklist.yml"
+
+        # If tasklist file doesn't exist, default to running diagnosis + mitigation
+        if not tasklist_path.exists():
+            self.local_logger.info(
+                "No tasklist.yml found. Defaulting to running diagnosis and mitigation for this problem."
+            )
+            self.tasklist = ["diagnosis", "mitigation"]
+            return
+
+        with open(tasklist_path, "r") as f:
+            tasklist = yaml.safe_load(f)
+            if not tasklist:
+                msg = "Badly formatted tasklist.yml"
+                self.local_logger.error(msg)
+                raise RuntimeError(msg)
+            problems = tasklist["all"]["problems"]
+
+        if self.problem_id not in (problems if problems else []):
+            self.local_logger.warning(
+                "problem_id not found in tasklist. Defaulting to running diagnosis and mitigation."
+            )
+            self.tasklist = ["diagnosis", "mitigation"]
+        else:
+            problem_tasklist = problems[self.problem_id]
+            if not problem_tasklist:
+                msg = f"No tasks specified for {self.problem_id}"
+                self.local_logger.error(msg)
+                raise RuntimeError(msg)
+
+            if not is_ordered_subset(problem_tasklist, ["diagnosis", "mitigation"]):
+                msg = f"Task list for {self.problem_id} is either out of order or has an unknown step (allowed: diagnosis, mitigation)"
+                self.local_logger.error(msg)
+                raise RuntimeError(msg)
+
+            self.local_logger.info(
+                f"Tasklist specified for {self.problem_id}. Configured AgentActs to run: {problem_tasklist}"
+            )
+
+            # Use the tasklist as-is (only AgentAct names, e.g., diagnosis, mitigation)
+            self.tasklist = problem_tasklist
+
+    def _build_act_sequence(self):
+        self.act_sequence = []
+        self.current_act_index = 0
+        self.current_agent_act_index = None
+        self.waiting_for_agent = False
+
+        if not self.tasklist:
+            self.local_logger.warning("Empty tasklist; no AgentActs configured for this problem.")
+            return
+
+        # Map AgentAct names to their precondition/evaluation functions
+        agent_act_definitions = {
+            "diagnosis": {
+                "precondition": self._precondition_diagnosis,
+                "evaluation": self._evaluate_diagnosis,
+            },
+            "mitigation": {
+                "precondition": self._precondition_mitigation,
+                "evaluation": self._evaluate_mitigation,
+            },
+        }
+
+        # Determine which AgentActs are actually available (oracle attached)
+        configured_agent_acts: list[dict] = []
+        for name in self.tasklist:
+            if name not in agent_act_definitions:
+                self.local_logger.warning(f"Unknown AgentAct '{name}' in tasklist; skipping.")
+                continue
+
+            if name == "diagnosis":
+                if getattr(self.problem, "diagnosis_oracle", None):
+                    configured_agent_acts.append(
+                        {
+                            "type": "AgentAct",
+                            "name": name,
+                            "precondition": agent_act_definitions[name]["precondition"],
+                            "evaluation": agent_act_definitions[name]["evaluation"],
+                        }
+                    )
+                else:
+                    self.local_logger.info("⏩ Diagnosis oracle is not attached. Skipping diagnosis.")
+
+            elif name == "mitigation":
+                if getattr(self.problem, "mitigation_oracle", None):
+                    configured_agent_acts.append(
+                        {
+                            "type": "AgentAct",
+                            "name": name,
+                            "precondition": agent_act_definitions[name]["precondition"],
+                            "evaluation": agent_act_definitions[name]["evaluation"],
+                        }
+                    )
+                else:
+                    self.local_logger.info("⏩ Mitigation oracle is not attached. Skipping mitigation.")
+
+        if not configured_agent_acts:
+            self.local_logger.warning(
+                "No AgentActs left after checking oracles. This problem will complete without agent interaction."
+            )
+            return
+
+        # Default GymAct: inject fault before the first AgentAct precondition
+        self.act_sequence.append(
+            {
+                "type": "GymAct",
+                "name": "inject_fault",
+                "op": self._gymact_inject_fault,
+            }
+        )
+
+        # Append AgentActs in order
+        self.act_sequence.extend(configured_agent_acts)
+
+    def _gymact_inject_fault(self):
+        self.problem.inject_fault()
+        self.logger.info("[ENV] Injected fault")
+
+        # Prepare diagnosis checkpoint if available, after fault injection but before agent acts
+        if (
+            hasattr(self.problem, "diagnosis_oracle")
+            and self.problem.diagnosis_oracle
+            and isinstance(self.problem.diagnosis_oracle, DiagnosisOracle)
+        ):
+            self.problem.diagnosis_oracle.load_localization_checkpoint()
+            self.local_logger.info("Diagnosis checkpoint loaded after fault injection.")
+
+        # FIXME: Disabled until https://github.com/xlab-uiuc/SREGym/issues/296 is complete
+        # self.configure_transient_issues()
+        # if self.transient_config["switch"]:
+        #     self._start_transient_issues()
+
+    # -------- AgentAct: diagnosis --------
+    def _precondition_diagnosis(self):
+        self.local_logger.info("Precondition for Diagnosis AgentAct executed. No real action.")
+
+    def _evaluate_diagnosis(self, solution):
+        """Evaluation logic for diagnosis AgentAct."""
+        self.local_logger.info("Start Eval for Diagnosis", extra={"sol": solution})
+        r = self.problem.diagnosis_oracle.evaluate(solution)
+        self.results["Diagnosis"] = r
+        self.results["TTL"] = time.time() - self.execution_start_time
+        self.logger.info(
+            f"[EVAL] Diagnosis "
+            f"{'Succeed' if self.results['Diagnosis']['success'] else 'Failed'}\n "
+            f"TTL: {self.results['TTL']}"
+        )
+        return r
+
+    # -------- AgentAct: mitigation --------
+    def _precondition_mitigation(self):
+        self.local_logger.info("Precondition for Mitigation AgentAct executed. No real action.")
+
+    def _evaluate_mitigation(self, solution):
+        """Evaluation logic for mitigation AgentAct."""
+        # Currently mitigation_oracle.evaluate() does not take the agent solution directly.
+        self.local_logger.info("Start Eval for Mitigation", extra={"sol": solution})
+        r = self.problem.mitigation_oracle.evaluate()
+        self.results["Mitigation"] = r
+        self.results["TTM"] = time.time() - self.execution_start_time
+        self.logger.info(
+            f"[EVAL] Mitigation "
+            f"{'Succeed' if self.results['Mitigation']['success'] else 'Failed'}\n "
+            f"TTM: {self.results['TTM']}"
+        )
+        return r
+
+    def _advance_to_next_agent_act_precondition(self, start_index: int = 0):
+        """
+        Execute Acts sequentially starting from start_index until:
+          - The precondition of the next AgentAct is executed (inclusive), then wait for agent submission; or
+          - There are no more AgentActs, in which case finish the problem.
+        """
+        self.current_agent_act_index = None
+        self.waiting_for_agent = False
+        self.current_act_index = start_index
+
+        if not self.act_sequence:
+            self.local_logger.info("No Acts configured; finishing problem immediately.")
+            self._finish_problem()
+            return
+
+        i = start_index
+        while i < len(self.act_sequence):
+            act = self.act_sequence[i]
+            act_type = act.get("type")
+            act_name = act.get("name")
+
+            if act_type == "GymAct":
+                self.local_logger.debug(f"Executing GymAct '{act_name}'")
+                act["op"]()
+                i += 1
+                continue
+
+            if act_type == "AgentAct":
+                self.local_logger.debug(f"Executing precondition for AgentAct '{act_name}' and waiting for agent.")
+                act["precondition"]()
+                self.current_agent_act_index = i
+                self.waiting_for_agent = True
+                self.submission_stage = act_name
+                self.current_act_index = i
+                self.logger.info(f"[STAGE] Go to stage {self.submission_stage}")
+                return
+
+            self.local_logger.warning(f"Unknown Act type '{act_type}' for Act '{act_name}'; skipping.")
+            i += 1
+
+        # No more AgentActs; finish the problem
+        self._finish_problem()
+
+    def _finish_problem(self):
+        self.submission_stage = "done"
+
+        self.logger.info(f"[STAGE] Done, recover fault")
+
+        if self.transient_config["switch"] and hasattr(self, "transient_issue_generator"):
+            self.transient_issue_generator.stop_continuous_injection()
+
+        if self.problem:
+            self.problem.recover_fault()
+
+        self.logger.info(f"[STAGE] Undeploy app")
+        self.undeploy_app()
+
+    async def start_problem(self) -> StartProblemResult:
+        """
+        1) Provision infra & workload
+        2) Initialize Act registry and execute initial GymActs and first AgentAct precondition
+
+        Returns:
+            StartProblemResult: Result status indicating success or skip reason
+        """
+        self.execution_start_time = time.time()
+        self.problem = self.problems.get_problem_instance(self.problem_id)
+        self.app = self.problem.app
+        self.detection_oracle = DetectionOracle(self.problem)
+        self.results = {}
+
+        self.dependency_check(["kubectl", "helm"])
+        self.local_logger.debug(f"Dependency check passed: kubectl, helm")
+
+        self.local_logger.info(f"[Session Start] Problem ID: {self.problem_id}")
+        self.logger.info(f"[STAGE] Start testing on problem: {self.problem_id}")
+
+        if self.problem.requires_khaos() and self.kubectl.is_emulated_cluster():
+            self.local_logger.warning(
+                f"Problem '{self.problem_id}' requires Khaos for eBPF-based fault injection, "
+                "but Khaos cannot be deployed on emulated clusters (kind, minikube, k3d, etc.). "
+                "Skipping this problem."
+            )
+            return StartProblemResult.SKIPPED_KHAOS_REQUIRED
+
+        self.fix_kubernetes()
+
+        self.get_tasklist()
+        self._build_act_sequence()
+
+        self.local_logger.info("Undeploying app leftovers...")
+        self.undeploy_app()  # Cleanup any leftovers
+        self.local_logger.info("App leftovers undeployed.")
+        self.local_logger.info("Deploying app...")
+        self.deploy_app()
+        self.local_logger.info("App deployed.")
+        # After deployment, execute Acts until the first AgentAct precondition is reached.
+        self._advance_to_next_agent_act_precondition(start_index=0)
+
+        if self.submission_stage and self.submission_stage != "done":
+            self.local_logger.info(
+                f"✅ Deployment complete. Ready for submission. Current stage is: {self.submission_stage}"
+            )
+        else:
+            self.local_logger.info(
+                "✅ Deployment complete. No AgentAct configured; problem will complete without agent submission."
+            )
+        return StartProblemResult.SUCCESS
+
+    async def submit(self, wrapped_cmd: str) -> dict:
+        """
+        Called by CLI or HTTP /submit.  Parses & grades the `submit(...)` call,
+        advances submission_stage, records results—and when we hit “done”,
+        triggers undeploy_app. Returns a snapshot of the results dict.
+        """
+        from sregym.conductor.parser import ResponseParser
+
+        parser = ResponseParser()
+        parsed = parser.parse(wrapped_cmd)
+        if parsed["api_name"] != "submit":
+            raise ValueError("Only `submit(...)` is supported.")
+        sol = parsed["args"][0] if parsed["args"] else None
+
+        # If all tasks are already completed, simply return the final snapshot.
+        if self.submission_stage == "done":
+            self.local_logger.info("All tasks already completed; ignoring new submission.")
+            return dict(self.results)
+
+        if not self.act_sequence:
+            self.local_logger.warning("submit() called but no Acts are configured; returning current results.")
+            return dict(self.results)
+
+        if self.current_agent_act_index is None or not self.waiting_for_agent:
+            self.local_logger.error(
+                "submit() called when conductor is not waiting for an AgentAct evaluation. "
+                f"Current submission_stage={self.submission_stage}"
+            )
+            raise RuntimeError("Conductor is not currently waiting for an agent submission.")
+
+        current_act = self.act_sequence[self.current_agent_act_index]
+        if current_act.get("type") != "AgentAct":
+            self.local_logger.error(
+                f"Internal error: current_act at index {self.current_agent_act_index} is not an AgentAct."
+            )
+            raise RuntimeError("Invalid Act configuration.")
+
+        act_name = current_act.get("name")
+        self.local_logger.info(f"Evaluating AgentAct '{act_name}'", extra={"sol": sol})
+        # Run the evaluation function for the current AgentAct
+        current_act["evaluation"](sol)
+
+        # After evaluation, advance to the next AgentAct precondition (if any)
+        next_index = self.current_agent_act_index + 1
+        self._advance_to_next_agent_act_precondition(start_index=next_index)
+
+        return dict(self.results)
+
+    def fix_kubernetes(self):
+        self.local_logger.info("Fixing Kubernetes... to normal state.")
+        self.local_logger.info("[FIX] Imbalance leftover if any")
+
+        injector = VirtualizationFaultInjector(namespace="kube-system")
+        injector.recover_daemon_set_image_replacement(
+            daemon_set_name="kube-proxy", original_image="registry.k8s.io/kube-proxy:v1.31.13"
+        )
+
+        self.local_logger.info("[FIX] KubeletCrash leftover if any")
+        injector = RemoteOSFaultInjector()
+        injector.recover_kubelet_crash()
+        self.local_logger.info("Fix Kubernetes completed.")
+
+    def deploy_app(self):
+        """Kubectl + Prometheus + problem.app deployment."""
+        self.submission_stage = "setup"
+        self.local_logger.info("[DEPLOY] Setting up metrics-server…")
+        self.kubectl.exec_command(
+            "kubectl apply -f https://github.com/kubernetes-sigs/metrics-server/"
+            "releases/latest/download/components.yaml"
+        )
+        self.kubectl.exec_command(
+            "kubectl -n kube-system patch deployment metrics-server "
+            "--type=json -p='["
+            '{"op":"add","path":"/spec/template/spec/containers/0/args/-","value":"--kubelet-insecure-tls"},'
+            '{"op":"add","path":"/spec/template/spec/containers/0/args/-","value":"--kubelet-preferred-address-types=InternalIP"}'
+            "]'"
+        )
+        self.kubectl.wait_for_ready("kube-system")
+
+        # Only deploy Khaos if the problem requires it
+        if self.problem and self.problem.requires_khaos():
+            self.local_logger.info("[DEPLOY] Deploying Khaos DaemonSet...")
+            self.khaos.ensure_deployed()
+
+        self.local_logger.info("[DEPLOY] Setting up OpenEBS…")
+        self.kubectl.exec_command("kubectl apply -f https://openebs.github.io/charts/openebs-operator.yaml")
+        self.kubectl.exec_command(
+            "kubectl patch storageclass openebs-hostpath "
+            '-p \'{"metadata":{"annotations":{"storageclass.kubernetes.io/is-default-class":"true"}}}\''
+        )
+        self.kubectl.wait_for_ready("openebs")
+
+        print("Setting up OpenEBS LocalPV-Device…")
+        device_sc_yaml = """
+        apiVersion: storage.k8s.io/v1
+        kind: StorageClass
+        metadata:
+        name: openebs-device
+        annotations:
+            openebs.io/cas-type: local
+        provisioner: openebs.io/local
+        parameters:
+        localpvType: "device"
+        volumeBindingMode: WaitForFirstConsumer
+        """
+        self.kubectl.exec_command("kubectl apply -f - <<EOF\n" + device_sc_yaml + "\nEOF")
+
+        self.local_logger.info("[DEPLOY] Deploying Prometheus…")
+        self.prometheus.deploy()
+
+        # Set up fault injection infrastructure based on problem type
+        # Only one can be active at /var/openebs/local at a time
+        problem_name = self.problem.__class__.__name__
+
+        if "LatentSectorError" in problem_name:
+            print("Setting up dm-dust infrastructure for LSE fault injection...")
+            self.dm_dust_manager.setup_openebs_dm_dust_infrastructure()
+        elif "SilentDataCorruption" in problem_name:
+            print("Setting up dm-flakey infrastructure for Silent Data Corruption fault injection...")
+            self.dm_flakey_manager.setup_openebs_dm_flakey_infrastructure()
+
+        self.logger.info(f"[ENV] Set up necessary components: metrics-server, Khaos, OpenEBS, Prometheus")
+
+        self.local_logger.info("[DEPLOY] Deploying and starting workload")
+        self.problem.app.deploy()
+        self.logger.info(f"[ENV] Deploy application: {self.problem.app.name}")
+
+        self.problem.app.start_workload()
+        self.logger.info(f"[ENV] Start workload")
+
+    def undeploy_app(self):
+        """Teardown problem.app and, if no other apps running, OpenEBS/Prometheus."""
+        if self.problem:
+            self.problem.app.cleanup()
+
+    def get_deployed_apps(self):
+        deployed_apps = []
+        for app_name in self.apps.get_app_names():
+            namespace = self.apps.get_app_metadata(app_name)["Namespace"]
+            if self.kubectl.get_namespace_deployment_status(namespace):
+                deployed_apps.append(app_name)
+
+        return deployed_apps
+
+    def configure_transient_issues(self):
+        """
+        Read transient issues configuration from sregym/generators/noise/transient_issues/configuration.yml file.
+        """
+        import os
+
+        import yaml
+
+        from sregym.generators.noise.transient_issues.transient_issues import FaultType, PodScope
+
+        config_path = os.path.join(os.path.dirname(__file__), "../generators/noise/transient_issues/configuration.yml")
+        config_path = os.path.abspath(config_path)
+
+        try:
+            with open(config_path, "r") as f:
+                config = yaml.safe_load(f)
+        except Exception as e:
+            self.local_logger.error(f"[❌] Failed to load configuration: {e}")
+            return
+
+        # Parse configuration and convert to required types
+        def parse_fault_types(types):
+            if not types:
+                return []
+            return [getattr(FaultType, t) if isinstance(t, str) else t for t in types]
+
+        def parse_scopes(scopes):
+            if not scopes:
+                return []
+            return [getattr(PodScope, s) if isinstance(s, str) else s for s in scopes]
+
+        self.transient_config["switch"] = config.get("switch", True)
+        self.transient_config["min_duration"] = config.get("min_duration", 40)
+        self.transient_config["max_duration"] = config.get("max_duration", 60)
+        self.transient_config["fault_types"] = parse_fault_types(config.get("fault_types", ["FAIL_SLOW", "FAIL_STOP"]))
+        self.transient_config["scopes"] = parse_scopes(config.get("scopes", ["TARGET_NAMESPACE"]))
+        self.transient_config["interval_min"] = config.get("interval_min", 20)
+        self.transient_config["interval_max"] = config.get("interval_max", 30)
+
+        print(f"✅ Transient issues configuration loaded from {config_path}: {self.transient_config}")
+
+    def _start_transient_issues(self):
+        """Start transient issues with current configuration"""
+        if self.problem:
+            faulty_service = (
+                self.problem.faulty_service
+                if isinstance(self.problem.faulty_service, (list, tuple))
+                else [self.problem.faulty_service]
+            )
+            self.transient_issue_generator = TransientIssuesGenerator(
+                namespace=self.problem.app.namespace,
+                target_services=faulty_service,
+                min_duration=self.transient_config["min_duration"],
+                max_duration=self.transient_config["max_duration"],
+            )
+            self.transient_issue_generator.start_continuous_injection(
+                fault_types=self.transient_config["fault_types"],
+                scopes=self.transient_config["scopes"],
+                interval_min=self.transient_config["interval_min"],
+                interval_max=self.transient_config["interval_max"],
+            )
diff --git a/sregym/conductor/conductor_api.py b/sregym/conductor/conductor_api.py
new file mode 100644
index 0000000..8d60f31
--- /dev/null
+++ b/sregym/conductor/conductor_api.py
@@ -0,0 +1,142 @@
+import logging
+import os
+import threading
+from typing import Optional
+
+import pyfiglet
+from fastapi import FastAPI, HTTPException
+from pydantic import BaseModel
+from rich.console import Console
+from rich.markdown import Markdown
+from rich.panel import Panel
+from uvicorn import Config, Server
+
+app = FastAPI()
+_conductor = None
+
+_server: Optional[Server] = None
+_shutdown_event = threading.Event()
+
+local_logger = logging.getLogger("all.sregym.conductor_api")
+
+
+def request_shutdown():
+    """
+    Signal the API server to shut down.
+    Safe to call from any thread and idempotent.
+    """
+    local_logger.warning("Shutting down API server...")
+    _shutdown_event.set()
+    if _server is not None:
+        _server.should_exit = True
+
+
+def set_conductor(c):
+    """Inject the shared Conductor instance."""
+    global _conductor
+    _conductor = c
+
+
+class SubmitRequest(BaseModel):
+    solution: str
+
+
+@app.post("/submit")
+async def submit_solution(req: SubmitRequest):
+    allowed = {"noop", "detection", "diagnosis", "mitigation"}
+    if _conductor is None or _conductor.submission_stage not in allowed:
+        local_logger.error(f"Cannot submit at stage: {_conductor.submission_stage!r}")
+        raise HTTPException(status_code=400, detail=f"Cannot submit at stage: {_conductor.submission_stage!r}")
+
+    # replace double quotes with single quotes
+    req.solution = req.solution.replace('"', "'")
+    wrapped = f'```\nsubmit("{req.solution}")\n```'
+    local_logger.debug(f"Wrapped submit content: {wrapped}")
+
+    try:
+        results = await _conductor.submit(wrapped)
+    except Exception as e:
+        local_logger.error(f"Grading error: {e}")
+        raise HTTPException(status_code=400, detail=f"Grading error: {e}")
+
+    local_logger.debug(f"API returns Grading results by now: {results}")
+    return results
+
+
+@app.get("/status")
+async def get_status():
+    if _conductor is None:
+        local_logger.error("No problem has been started")
+        raise HTTPException(status_code=400, detail="No problem has been started")
+    stage = _conductor.submission_stage
+    local_logger.debug(f"API returns Current stage: {stage}")
+    return {"stage": stage}
+
+
+@app.get("/get_app")
+async def get_app():
+    if _conductor is None:
+        local_logger.error("No problem has been started")
+        raise HTTPException(status_code=400, detail="No problem has been started")
+    app_inst = _conductor.app
+    local_logger.debug(f"API returns App instance: {app_inst}")
+    return {"app_name": app_inst.app_name, "namespace": app_inst.namespace, "descriptions": str(app_inst.description)}
+
+
+@app.get("/get_problem")
+async def get_problem():
+    if _conductor is None:
+        local_logger.error("No problem has been started")
+        raise HTTPException(status_code=400, detail="No problem has been started")
+    problem_id = _conductor.problem_id
+    local_logger.debug(f"API returns Problem ID: {problem_id}")
+    return {"problem_id": problem_id}
+
+
+def run_api(conductor):
+    """
+    Start the API server and block until request_shutdown() is called.
+    """
+    global _server
+    set_conductor(conductor)
+    local_logger.debug(f"API server is binded to the conductor {conductor}")
+
+    # Load from .env with defaults
+    host = os.getenv("API_HOSTNAME", "0.0.0.0")
+    port = int(os.getenv("API_PORT", "8000"))
+
+    local_logger.debug(f"API server starting on http://{host}:{port}")
+
+    console = Console()
+    art = pyfiglet.figlet_format("SREGym")
+    console.print(Panel(art, title="SREGym API Server", subtitle=f"http://{host}:{port}", style="bold green"))
+    console.print(
+        Markdown(
+            """
+**Available Endpoints**
+- **POST /submit**: `{ "solution": "<your-solution>" }` → grades the current stage  
+- **GET /status**: returns `{ "stage": "setup" | "noop" | "detection" | "diagnosis" | "mitigation" | "done" }`
+"""
+        )
+    )
+
+    config = Config(app=app, host=host, port=port, log_level="info")
+    config.install_signal_handlers = False
+    server = Server(config)
+    _server = server  # expose to request_shutdown()
+
+    # watcher thread: when _shutdown_event is set, flip server.should_exit
+    def _watch():
+        _shutdown_event.wait()
+        local_logger.debug("API server shutdown event received")
+        server.should_exit = True
+
+    threading.Thread(target=_watch, name="api-shutdown-watcher", daemon=True).start()
+
+    try:
+        local_logger.debug("API server is running")
+        server.run()  # blocks until should_exit becomes True
+    finally:
+        # cleanup for potential reuse
+        _shutdown_event.clear()
+        _server = None
diff --git a/sregym/conductor/constants.py b/sregym/conductor/constants.py
new file mode 100644
index 0000000..2ba326c
--- /dev/null
+++ b/sregym/conductor/constants.py
@@ -0,0 +1,8 @@
+from enum import StrEnum
+
+
+class StartProblemResult(StrEnum):
+
+    SUCCESS = "success"
+    SKIPPED_KHAOS_REQUIRED = "skipped_khaos_required"
+
diff --git a/sregym/conductor/oracles/assign_non_existent_node_mitigation.py b/sregym/conductor/oracles/assign_non_existent_node_mitigation.py
new file mode 100644
index 0000000..1fab765
--- /dev/null
+++ b/sregym/conductor/oracles/assign_non_existent_node_mitigation.py
@@ -0,0 +1,53 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class AssignNonExistentNodeMitigationOracle(Oracle):
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        faulty_service = self.problem.faulty_service
+        results = {}
+
+        # Check if all services (not only faulty service) is back to normal (Running)
+        pod_list = kubectl.list_pods(namespace)
+        all_normal = True
+
+        # Check if the faulty service exists
+        faulty_service_exists = any(pod.metadata.name.startswith(faulty_service) for pod in pod_list.items)
+        if not faulty_service_exists:
+            print(f"Pod named {faulty_service} does not exist.")
+            all_normal = False
+        else:
+            for pod in pod_list.items:
+                if pod.status.phase != "Running":
+                    print(f"❌ Pod {pod.metadata.name} is in phase: {pod.status.phase}")
+                    all_normal = False
+                    break
+
+                for container_status in pod.status.container_statuses:
+                    if container_status.state.waiting and container_status.state.waiting.reason:
+                        print(
+                            f"❌ Container {container_status.name} is waiting: {container_status.state.waiting.reason}"
+                        )
+                        all_normal = False
+                    elif container_status.state.terminated and container_status.state.terminated.reason != "Completed":
+                        print(
+                            f"❌ Container {container_status.name} terminated: {container_status.state.terminated.reason}"
+                        )
+                        all_normal = False
+                    elif not container_status.ready:
+                        print(f"⚠️ Container {container_status.name} is not ready")
+                        all_normal = False
+
+                if not all_normal:
+                    break
+
+        results["success"] = all_normal
+
+        print(f"Mitigation Result: {'Pass ✅' if all_normal else 'Fail ❌'}")
+
+        return results
diff --git a/sregym/conductor/oracles/base.py b/sregym/conductor/oracles/base.py
new file mode 100644
index 0000000..465949d
--- /dev/null
+++ b/sregym/conductor/oracles/base.py
@@ -0,0 +1,13 @@
+"""Base class for evaluation oracles."""
+
+from abc import ABC, abstractmethod
+
+
+class Oracle(ABC):
+    def __init__(self, problem):
+        self.problem = problem
+
+    @abstractmethod
+    def evaluate(self, solution, trace, duration) -> dict:
+        """Evaluate a solution."""
+        pass
diff --git a/sregym/conductor/oracles/compound.py b/sregym/conductor/oracles/compound.py
new file mode 100644
index 0000000..421ea0f
--- /dev/null
+++ b/sregym/conductor/oracles/compound.py
@@ -0,0 +1,60 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class CompoundedOracle(Oracle):
+    importance = 1.0
+
+    def __init__(self, problem, *args, **kwargs):
+        super().__init__(problem)
+        self.oracles = dict()
+        for i, oracle in enumerate(args):
+            if not isinstance(oracle, Oracle):
+                raise TypeError(f"Argument {i} is not an instance of Oracle: {oracle}")
+            self.oracles[str(i) + "-" + oracle.__class__.__name__] = oracle
+        for key, oracle in kwargs.items():
+            if not isinstance(oracle, Oracle):
+                raise TypeError(f"Keyword argument '{key}' is not an instance of Oracle: {oracle}")
+            if key in self.oracles:
+                raise ValueError(f"Duplicate oracle key: {key}")
+            self.oracles[key] = oracle
+
+    def evaluate(self, *args, **kwargs):
+        result = {
+            "success": True,
+            "oracles": [],
+            "accuracy": 0.0,
+        }
+
+        total_weight = sum(getattr(oracle, "importance", 1.0) for oracle in self.oracles.values())
+
+        for key, oracle in self.oracles.items():
+            try:
+                res = oracle.evaluate(*args, **kwargs)
+                res["name"] = key
+                result["oracles"].append(res)
+
+                if not res.get("success", False):
+                    result["success"] = False
+
+                accuracy_weight = getattr(oracle, "importance", 1.0) / total_weight
+                if "accuracy" in res:
+                    result["accuracy"] += res["accuracy"] * accuracy_weight
+                else:
+                    accuracy = 100.0 if res.get("success", False) else 0.0
+                    result["accuracy"] += accuracy * accuracy_weight
+
+            except Exception as e:
+                print(f"[❌] Error during evaluation of oracle '{key}': {e}")
+                result["success"] = False
+                result["oracles"].append(
+                    {
+                        "name": key,
+                        "success": False,
+                    }
+                )
+
+        if result["accuracy"] > 100.0 - 1e-3:
+            result["accuracy"] = 100.0
+        elif result["accuracy"] < 0.0 + 1e-3:
+            result["accuracy"] = 0.0
+        return result
diff --git a/sregym/conductor/oracles/detection.py b/sregym/conductor/oracles/detection.py
new file mode 100644
index 0000000..fa9bd9e
--- /dev/null
+++ b/sregym/conductor/oracles/detection.py
@@ -0,0 +1,30 @@
+from sregym.conductor.oracles.base import Oracle
+from sregym.conductor.oracles.utils import is_exact_match
+
+
+import logging
+
+local_logger = logging.getLogger("all.sregym.oracle")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+class DetectionOracle(Oracle):
+    def __init__(self, problem):
+        super().__init__(problem)
+
+    def evaluate(self, solution) -> dict:
+        expected = "Yes" if self.problem.fault_injected else "No"
+        local_logger.info(f"== Detection Evaluation (expected: {expected}) ==")
+
+        results = {}
+        if isinstance(solution, str):
+            is_correct = is_exact_match(solution.strip().lower(), expected.lower())
+            results["accuracy"] = 100.0 if is_correct else 0.0
+            results["success"] = is_correct
+            local_logger.info(f"{'✅' if is_correct else '❌'} Detection: {solution}")
+        else:
+            results["accuracy"] = 0.0
+            results["success"] = False
+            results["reason"] = "Invalid Format"
+            local_logger.warning("❌ Invalid detection format")
+
+        return results
diff --git a/sregym/conductor/oracles/diagnosis_oracle.py b/sregym/conductor/oracles/diagnosis_oracle.py
new file mode 100644
index 0000000..dc79a78
--- /dev/null
+++ b/sregym/conductor/oracles/diagnosis_oracle.py
@@ -0,0 +1,547 @@
+import logging
+from logging import getLogger
+from typing import Any
+
+from kubernetes import client, config
+from kubernetes.config.config_exception import ConfigException
+
+from sregym.conductor.oracles.base import Oracle
+
+local_logger = getLogger("all.sregym.localization_oracle")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+
+
+class DiagnosisOracle(Oracle):
+    """Logic of Localization Oracle"""
+
+    # BEFORE the agent are ask to act, expect function will be called and checkpoint will be saved
+    # AFTER the agent finish its run, the expected function will be called AGAIN to compare with agents answer.
+
+    def __init__(self, problem, namespace: str):
+        super().__init__(problem)
+        # self.expected = expected
+        self.checkpoint = None
+        self.namespace = namespace
+
+    def load_localization_checkpoint(self):
+        # load the checkpoint for future comparison
+        self.checkpoint = self.expect()
+
+    def compare_truth(self, expectation, reality):
+        if type(expectation) == str and type(reality) == str:
+            return expectation == reality  # both string, just compare the string
+        elif type(expectation) == list and type(reality) == list:
+            if len(expectation) != len(set(reality)):
+                return False  # TODO: support fp and fn
+            return all(e in set(reality) for e in expectation)
+        else:
+            local_logger.warning(
+                f"Expectation and reality are not both string or list, can not compare. Expectation: {expectation}, Reality: {reality}"
+            )
+            return False
+
+    def expect(self):
+        raise NotImplementedError("This function should be implemented by the subclass.")
+
+    def verify_stability(self, new_expectation):
+        consistent = self.compare_truth(self.checkpoint, new_expectation)
+
+        if not consistent:
+            # just warn, do not panic
+            local_logger.warning(
+                f"Checkpoints are not consistent, old: {self.checkpoint}, new: {new_expectation}. Possibly the environment is unstable."
+            )
+
+        return consistent
+
+    def get_resource_uid(self, resource_type: str, resource_name: str, namespace: str) -> str | None:
+        """Return the UID of a live resource using the Kubernetes API."""
+        try:
+            try:
+                config.load_incluster_config()
+            except ConfigException:
+                config.load_kube_config()
+            if resource_type.lower() == "pod":
+                api = client.CoreV1Api()
+                obj = api.read_namespaced_pod(resource_name, namespace)
+            elif resource_type.lower() == "service":
+                api = client.CoreV1Api()
+                obj = api.read_namespaced_service(resource_name, namespace)
+            elif resource_type.lower() == "deployment":
+                api = client.AppsV1Api()
+                obj = api.read_namespaced_deployment(resource_name, namespace)
+            elif resource_type.lower() == "statefulset":
+                api = client.AppsV1Api()
+                obj = api.read_namespaced_stateful_set(resource_name, namespace)
+            elif resource_type.lower() == "persistentvolumeclaim":
+                api = client.CoreV1Api()
+                obj = api.read_namespaced_persistent_volume_claim(resource_name, namespace)
+            elif resource_type.lower() == "persistentvolume":
+                api = client.CoreV1Api()
+                obj = api.read_persistent_volume(resource_name)
+            elif resource_type.lower() == "configmap":
+                api = client.CoreV1Api()
+                obj = api.read_namespaced_config_map(resource_name, namespace)
+            elif resource_type.lower() == "replicaset":
+                api = client.AppsV1Api()
+                obj = api.read_namespaced_replica_set(resource_name, namespace)
+            elif resource_type.lower() == "memoryquota":
+                api = client.CoreV1Api()
+                obj = api.read_namespaced_resource_quota(resource_name, namespace)
+            elif resource_type.lower() == "ingress":
+                api = client.NetworkingV1Api()
+                obj = api.read_namespaced_ingress(resource_name, namespace)
+            elif resource_type.lower() == "job":
+                api = client.BatchV1Api()
+                obj = api.read_namespaced_job(resource_name, namespace)
+            elif resource_type.lower() == "daemonset":
+                api = client.AppsV1Api()
+                obj = api.read_namespaced_daemon_set(resource_name, namespace)
+            elif resource_type.lower() == "clusterrole":
+                api = client.RbacAuthorizationV1Api()
+                obj = api.read_cluster_role(resource_name)
+            elif resource_type.lower() == "clusterrolebinding":
+                api = client.RbacAuthorizationV1Api()
+                obj = api.read_cluster_role_binding(resource_name)
+            else:
+                raise ValueError(f"Unsupported resource type: {resource_type}")
+
+            return obj.metadata.uid
+
+        except client.exceptions.ApiException as e:
+            return f"Error retrieving UID for {resource_type}/{resource_name} in {namespace}: {e.reason}"
+
+    def checkpoint_comparison(self, new_expectation):
+        if type(self.checkpoint) == str:
+            return self.checkpoint == new_expectation
+
+    def safe_parse_solution(self, solution):
+        # Normalize solution to list of strings
+        if isinstance(solution, str):
+            # Check if it's a comma-separated list
+            # strip char before [
+            if "[" in solution and "]" in solution:
+                solution = solution.split("[")[1]
+                # strip char after ]
+                solution = solution.split("]")[0]
+                if "," in solution:
+                    # split by comma, strip space and quote
+                    solution = [s.strip().strip("\"'") for s in solution.split(",")]
+                else:
+                    solution = [solution.strip().strip("\"'")]
+            else:
+                solution = [solution.strip().strip("\"'")]
+        elif isinstance(solution, list):
+            # Ensure all items are strings
+            solution = [str(item) for item in solution]
+        else:
+            return None
+        return solution
+
+    def evaluate(self, solution) -> dict[str, Any]:
+        # verify the stability of the environment
+        new_expectation = self.expect()
+        self.verify_stability(new_expectation)
+
+        # load the solution
+        solution = self.safe_parse_solution(solution)
+        if solution is None:
+            local_logger.warning(f"Invalid format: expected string or list of strings. Solution: {solution}")
+            return {
+                "success": False,
+                "accuracy": 0.0,
+                "is_subset": False,
+            }
+
+        # get compare the new expectation with the checkpoint
+        correctness = self.compare_truth(new_expectation, solution)
+
+        local_logger.info(
+            f"Eval Diagnosis: new_expectation: {new_expectation}, solution: {solution} | {"✅" if correctness else "❌"}"
+        )
+
+        return {
+            "success": correctness,
+            "accuracy": 100.0 if correctness else 0.0,
+            "is_subset": False,  # TODO: enable subset match
+        }
+
+    ####### Helper functions ######
+    def only_pod_of_deployment_uid(self, deployment_name: str, namespace: str) -> tuple[str, str]:
+        """Return the UID and name of the only pod of a deployment. If not only or more than one pod, Raise an error."""
+        try:
+            # print("find pods for deployment", deployment_name, "in namespace", namespace)
+            pods_list = client.CoreV1Api().list_namespaced_pod(
+                namespace=namespace, label_selector=f"app={deployment_name}"
+            )
+            # print("pods_list", pods_list)
+            pods = pods_list.items  # V1PodList has an 'items' attribute containing the actual list
+
+            # TODO: use more robust way to select the pod OwnerRef or understand the deployment spec.
+
+            # fallback, use io.kompose.service label
+            if len(pods) == 0:
+                local_logger.debug("fallback to io.kompose.service label")
+                pods_list = client.CoreV1Api().list_namespaced_pod(
+                    namespace=namespace, label_selector=f"io.kompose.service={deployment_name}"
+                )
+                # print("pods_list", pods_list)
+                pods = pods_list.items
+
+            # fallback 2, use opentelemetry label to select the pod
+            if len(pods) == 0:
+                local_logger.debug("fallback to opentelemetry label")
+                pods_list = client.CoreV1Api().list_namespaced_pod(
+                    namespace=namespace, label_selector=f"opentelemetry.io/name={deployment_name}"
+                )
+                # print("pods_list", pods_list)
+                pods = pods_list.items
+
+            if len(pods) > 1:
+                # print(pods)
+                raise ValueError(
+                    f"More than one pod found for deployment {deployment_name} in namespace {namespace}: {pods}, can not evaluate diagnosis."
+                )
+            if len(pods) == 0:
+                # print(pods)
+                raise ValueError(
+                    f"No pod found for deployment {deployment_name} in namespace {namespace}, can not evaluate diagnosis."
+                )
+            return pods[0].metadata.uid, pods[0].metadata.name
+        except Exception as e:
+            raise ValueError(f"Error retrieving pod UID for deployment {deployment_name} in namespace {namespace}: {e}")
+
+    def all_pods_of_deployment_uids(self, deployment_name: str, namespace: str) -> (list[str], list[str]):
+        """Return the UIDs and names of all pods of a deployment."""
+        try:
+            pods_list = client.CoreV1Api().list_namespaced_pod(
+                namespace=namespace, label_selector=f"app={deployment_name}"
+            )
+            pods = pods_list.items
+            if len(pods) == 0:
+                pods_list = client.CoreV1Api().list_namespaced_pod(
+                    namespace=namespace, label_selector=f"io.kompose.service={deployment_name}"
+                )
+                pods = pods_list.items
+            if len(pods) == 0:
+                pods_list = client.CoreV1Api().list_namespaced_pod(
+                    namespace=namespace, label_selector=f"opentelemetry.io/name={deployment_name}"
+                )
+                pods = pods_list.items
+            return [pod.metadata.uid for pod in pods], [pod.metadata.name for pod in pods]
+        except Exception as e:
+            raise ValueError(f"Error retrieving pods for deployment {deployment_name} in namespace {namespace}: {e}")
+
+    def all_pods_of_daemonset_uids(self, daemonset_name: str, namespace: str) -> (list[str], list[str]):
+        """Return the UIDs and names of all pods of a daemonset."""
+        try:
+            pods_list = client.CoreV1Api().list_namespaced_pod(
+                namespace=namespace, label_selector=f"k8s-app={daemonset_name}"
+            )
+            pods = pods_list.items
+            if len(pods) == 0:
+                pods_list = client.CoreV1Api().list_namespaced_pod(
+                    namespace=namespace, label_selector=f"app={daemonset_name}"
+                )
+                pods = pods_list.items
+            if len(pods) == 0:
+                pods_list = client.CoreV1Api().list_namespaced_pod(
+                    namespace=namespace, label_selector=f"io.kompose.service={daemonset_name}"
+                )
+                pods = pods_list.items
+            if len(pods) == 0:
+                pods_list = client.CoreV1Api().list_namespaced_pod(
+                    namespace=namespace, label_selector=f"opentelemetry.io/name={daemonset_name}"
+                )
+                pods = pods_list.items
+            return [pod.metadata.uid for pod in pods], [pod.metadata.name for pod in pods]
+        except Exception as e:
+            raise ValueError(f"Error retrieving pods for daemonset {daemonset_name} in namespace {namespace}: {e}")
+
+    def deployment_uid(self, deployment_name: str, namespace: str) -> str:
+        """Return the UID of a deployment."""
+        return self.get_resource_uid("deployment", deployment_name, namespace)
+
+    def configmap_uid(self, configmap_name: str, namespace: str) -> str:
+        """Return the UID of a configmap."""
+        return self.get_resource_uid("configmap", configmap_name, namespace)
+
+    def pvc_uid(self, pvc_name: str, namespace: str) -> str:
+        """Return the UID of a PVC."""
+        return self.get_resource_uid("persistentvolumeclaim", pvc_name, namespace)
+
+    def service_uid(self, service_name: str, namespace: str) -> str:
+        """Return the UID of a service."""
+        return self.get_resource_uid("service", service_name, namespace)
+
+    def memoryquota_uid(self, memoryquota_name: str, namespace: str) -> str:
+        """Return the UID of a memoryquota."""
+        return self.get_resource_uid("memoryquota", memoryquota_name, namespace)
+
+    def pv_uid(self, pv_name: str, namespace: str) -> str:
+        """Return the UID of a PV."""
+        return self.get_resource_uid("persistentvolume", pv_name, namespace)
+
+    def ingress_uid(self, ingress_name: str, namespace: str) -> str:
+        """Return the UID of an ingress."""
+        return self.get_resource_uid("ingress", ingress_name, namespace)
+
+    def networkpolicy_uid(self, networkpolicy_name: str, namespace: str) -> str:
+        """Return the UID of a networkpolicy."""
+        return self.get_resource_uid("networkpolicy", networkpolicy_name, namespace)
+
+    def job_uid(self, job_name: str, namespace: str) -> str:
+        """Return the UID of a job."""
+        return self.get_resource_uid("job", job_name, namespace)
+
+    def clusterrole_uid(self, clusterrole_name: str, namespace: str) -> str:
+        """Return the UID of a clusterrole."""
+        return self.get_resource_uid("clusterrole", clusterrole_name, namespace)
+
+    def clusterrolebinding_uid(self, clusterrolebinding_name: str, namespace: str) -> str:
+        """Return the UID of a clusterrolebinding."""
+        return self.get_resource_uid("clusterrolebinding", clusterrolebinding_name, namespace)
+
+    def owner_of_pod(self, pod_name: str, namespace: str) -> dict[str, Any] | None:
+        """
+        Return the top-level owner (controller) of a pod using Kubernetes Owner References.
+
+        This method follows the owner chain to find the ultimate controller:
+        - Pod → ReplicaSet → Deployment
+        - Pod → StatefulSet (direct)
+        - Pod → DaemonSet (direct)
+        - Pod → Job → CronJob (if applicable)
+
+        Args:
+            pod_name: Name of the pod
+            namespace: Namespace of the pod
+
+        Returns:
+            Dictionary with keys: 'kind', 'name', 'uid', 'api_version'
+            Returns None if no owner is found or pod doesn't exist
+
+        Example:
+            {
+                'kind': 'Deployment',
+                'name': 'frontend',
+                'uid': 'abc-123-def',
+                'api_version': 'apps/v1'
+            }
+        """
+        try:
+            try:
+                config.load_incluster_config()
+            except ConfigException:
+                config.load_kube_config()
+        except Exception as e:
+            raise RuntimeError(f"Failed to load kube config: {e}")
+
+        core_v1 = client.CoreV1Api()
+        apps_v1 = client.AppsV1Api()
+        batch_v1 = client.BatchV1Api()
+
+        try:
+            # Step 1: Get the pod
+            pod = core_v1.read_namespaced_pod(pod_name, namespace)
+        except client.exceptions.ApiException as e:
+            print(f"[WARN] Pod '{pod_name}' not found in namespace '{namespace}': {e.reason}")
+            return None
+
+        # Step 2: Get owner references from pod
+        owner_refs = pod.metadata.owner_references
+        if not owner_refs:
+            print(f"[INFO] Pod '{pod_name}' has no owner references (may be manually created)")
+            return None
+
+        # Step 3: Find the controller owner (controller: true)
+        controller_owner = None
+        for owner in owner_refs:
+            if owner.controller:
+                controller_owner = owner
+                break
+
+        if not controller_owner:
+            print(f"[WARN] Pod '{pod_name}' has no controller owner")
+            return None
+
+        # Step 4: Handle different owner types
+        owner_kind = controller_owner.kind
+        owner_name = controller_owner.name
+        owner_uid = controller_owner.uid
+        owner_api_version = controller_owner.api_version
+
+        print(f"[INFO] Pod '{pod_name}' is owned by {owner_kind} '{owner_name}'")
+
+        # Step 5: If owner is ReplicaSet, continue up to find Deployment
+        if owner_kind == "ReplicaSet":
+            try:
+                replicaset = apps_v1.read_namespaced_replica_set(owner_name, namespace)
+                rs_owner_refs = replicaset.metadata.owner_references
+
+                if rs_owner_refs:
+                    for rs_owner in rs_owner_refs:
+                        if rs_owner.controller and rs_owner.kind == "Deployment":
+                            print(f"[INFO] ReplicaSet '{owner_name}' is owned by Deployment '{rs_owner.name}'")
+                            return {
+                                "kind": "Deployment",
+                                "name": rs_owner.name,
+                                "uid": rs_owner.uid,
+                                "api_version": rs_owner.api_version,
+                                "intermediate_owner": {"kind": "ReplicaSet", "name": owner_name, "uid": owner_uid},
+                            }
+
+                # If ReplicaSet has no owner, return ReplicaSet itself
+                print(f"[INFO] ReplicaSet '{owner_name}' has no owner (may be manually created)")
+                return {"kind": "ReplicaSet", "name": owner_name, "uid": owner_uid, "api_version": owner_api_version}
+            except client.exceptions.ApiException as e:
+                print(f"[WARN] ReplicaSet '{owner_name}' not found: {e.reason}")
+                # Fallback: return ReplicaSet info even though we can't verify it
+                return {"kind": "ReplicaSet", "name": owner_name, "uid": owner_uid, "api_version": owner_api_version}
+
+        # Step 6: If owner is Job, check if it's owned by CronJob
+        elif owner_kind == "Job":
+            try:
+                job = batch_v1.read_namespaced_job(owner_name, namespace)
+                job_owner_refs = job.metadata.owner_references
+
+                if job_owner_refs:
+                    for job_owner in job_owner_refs:
+                        if job_owner.controller and job_owner.kind == "CronJob":
+                            print(f"[INFO] Job '{owner_name}' is owned by CronJob '{job_owner.name}'")
+                            return {
+                                "kind": "CronJob",
+                                "name": job_owner.name,
+                                "uid": job_owner.uid,
+                                "api_version": job_owner.api_version,
+                                "intermediate_owner": {"kind": "Job", "name": owner_name, "uid": owner_uid},
+                            }
+
+                # If Job has no owner, return Job itself
+                return {"kind": "Job", "name": owner_name, "uid": owner_uid, "api_version": owner_api_version}
+            except client.exceptions.ApiException as e:
+                print(f"[WARN] Job '{owner_name}' not found: {e.reason}")
+                return {"kind": "Job", "name": owner_name, "uid": owner_uid, "api_version": owner_api_version}
+
+        # Step 7: Direct owners (StatefulSet, DaemonSet, etc.)
+        else:
+            return {"kind": owner_kind, "name": owner_name, "uid": owner_uid, "api_version": owner_api_version}
+
+    def pods_of_owner(self, owner_kind: str, owner_name: str, namespace: str) -> list[dict[str, Any]]:
+        """
+        Find all pods owned by a specific controller (Deployment, StatefulSet, etc.).
+
+        This is the reverse operation of owner_of_pod. It finds all pods that belong
+        to a given controller by following the owner chain.
+
+        Args:
+            owner_kind: Kind of the owner (Deployment, StatefulSet, DaemonSet, etc.)
+            owner_name: Name of the owner
+            namespace: Namespace of the owner
+
+        Returns:
+            List of pod information dictionaries, each containing:
+            - 'name': Pod name
+            - 'uid': Pod UID
+            - 'phase': Pod phase (Running, Pending, etc.)
+
+        Example:
+            [
+                {
+                    'name': 'frontend-abc123',
+                    'uid': 'pod-uid-123',
+                    'phase': 'Running'
+                },
+                ...
+            ]
+        """
+        try:
+            try:
+                config.load_incluster_config()
+            except ConfigException:
+                config.load_kube_config()
+        except Exception as e:
+            raise RuntimeError(f"Failed to load kube config: {e}")
+
+        core_v1 = client.CoreV1Api()
+        apps_v1 = client.AppsV1Api()
+        pods_info = []
+
+        try:
+            # Get all pods in the namespace
+            all_pods = core_v1.list_namespaced_pod(namespace).items
+
+            # Handle different owner types
+            if owner_kind == "Deployment":
+                # Find ReplicaSets owned by this Deployment
+                rs_list = apps_v1.list_namespaced_replica_set(namespace).items
+                matching_rs_names = set()
+
+                for rs in rs_list:
+                    rs_owner_refs = rs.metadata.owner_references
+                    if rs_owner_refs:
+                        for rs_owner in rs_owner_refs:
+                            if rs_owner.controller and rs_owner.kind == "Deployment" and rs_owner.name == owner_name:
+                                matching_rs_names.add(rs.metadata.name)
+
+                # Find pods owned by matching ReplicaSets
+                for pod in all_pods:
+                    pod_owner_refs = pod.metadata.owner_references
+                    if pod_owner_refs:
+                        for pod_owner in pod_owner_refs:
+                            if (
+                                pod_owner.controller
+                                and pod_owner.kind == "ReplicaSet"
+                                and pod_owner.name in matching_rs_names
+                            ):
+                                pods_info.append(
+                                    {
+                                        "name": pod.metadata.name,
+                                        "uid": pod.metadata.uid,
+                                        "phase": pod.status.phase,
+                                        "node_name": pod.spec.node_name if pod.spec.node_name else None,
+                                    }
+                                )
+
+            elif owner_kind in ["StatefulSet", "DaemonSet"]:
+                # Direct ownership for StatefulSet and DaemonSet
+                for pod in all_pods:
+                    pod_owner_refs = pod.metadata.owner_references
+                    if pod_owner_refs:
+                        for pod_owner in pod_owner_refs:
+                            if pod_owner.controller and pod_owner.kind == owner_kind and pod_owner.name == owner_name:
+                                pods_info.append(
+                                    {
+                                        "name": pod.metadata.name,
+                                        "uid": pod.metadata.uid,
+                                        "phase": pod.status.phase,
+                                        "node_name": pod.spec.node_name if pod.spec.node_name else None,
+                                    }
+                                )
+
+            elif owner_kind == "Job":
+                # Direct ownership for Job
+                for pod in all_pods:
+                    pod_owner_refs = pod.metadata.owner_references
+                    if pod_owner_refs:
+                        for pod_owner in pod_owner_refs:
+                            if pod_owner.controller and pod_owner.kind == "Job" and pod_owner.name == owner_name:
+                                pods_info.append(
+                                    {
+                                        "name": pod.metadata.name,
+                                        "uid": pod.metadata.uid,
+                                        "phase": pod.status.phase,
+                                        "node_name": pod.spec.node_name if pod.spec.node_name else None,
+                                    }
+                                )
+
+            else:
+                print(f"[WARN] Unsupported owner kind: {owner_kind}")
+                return []
+
+            print(f"[INFO] Found {len(pods_info)} pod(s) owned by {owner_kind} '{owner_name}'")
+            return pods_info
+
+        except Exception as e:
+            print(f"[ERROR] Failed to find pods for {owner_kind} '{owner_name}': {e}")
+            return []
diff --git a/sregym/conductor/oracles/dns_resolution_mitigation.py b/sregym/conductor/oracles/dns_resolution_mitigation.py
new file mode 100644
index 0000000..c504fb8
--- /dev/null
+++ b/sregym/conductor/oracles/dns_resolution_mitigation.py
@@ -0,0 +1,66 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class DNSResolutionMitigationOracle(Oracle):
+
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== DNS Resolution Mitigation Check ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        faulty_service = self.problem.faulty_service
+
+        service_names = [svc.metadata.name for svc in kubectl.list_services(namespace).items]
+
+        if faulty_service == None:
+            faulty_service = service_names[0]
+
+        # Get the service's selector
+        command = f"kubectl get service {faulty_service} -n {namespace} -o jsonpath='{{.spec.selector}}'"
+        selector_output = kubectl.exec_command(command).strip()
+
+        # Parse selector to label query
+        selector_dict = eval(selector_output)
+        label_selector = ",".join(f"{k}={v}" for k, v in selector_dict.items())
+
+        # Get pod names using the selector
+        command = f"kubectl get pods -n {namespace} -l {label_selector} -o jsonpath='{{.items[*].metadata.name}}'"
+        pod_names = kubectl.exec_command(command).strip().split()
+
+        target_pod = pod_names[0]
+
+        if not pod_names:
+            print("❌ No running pod found for the faulty service(s).")
+            return {"success": False}
+        else:
+
+            failing = []
+
+            for svc in service_names:
+                try:
+                    command = (
+                        f"kubectl exec -n {namespace} {target_pod} -- getent hosts {svc}.{namespace}.svc.cluster.local"
+                    )
+                    output = kubectl.exec_command(command)
+                    is_success = "exit code" not in output
+
+                    if not is_success:
+                        failing.append(svc)
+                        print(f"[❌] Failed DNS Resolution: {svc}")
+                    else:
+                        print(f"[✅] Successfully resolved DNS for {svc}")
+
+                except Exception as e:
+                    print(f"Error execing getent hosts in pod {target_pod}: {e}")
+                    failing.append(svc)
+
+        if failing:
+            print(
+                f"[❌] Faulty Service: {faulty_service} | Failed DNS Resolutions from target pod {target_pod}: {', '.join(failing)}"
+            )
+            return {"success": False}
+
+        print(f"[✅] All service names resolved inside target pod {target_pod}")
+        return {"success": True}
diff --git a/sregym/conductor/oracles/imbalance_mitigation.py b/sregym/conductor/oracles/imbalance_mitigation.py
new file mode 100644
index 0000000..b99e046
--- /dev/null
+++ b/sregym/conductor/oracles/imbalance_mitigation.py
@@ -0,0 +1,49 @@
+import time
+
+from sregym.conductor.oracles.base import Oracle
+
+
+class ImbalanceMitigationOracle(Oracle):
+    importance = 1.0
+    RETRIES = 5
+
+    def __init__(self, problem):
+        super().__init__(problem)
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        deployment_names = self.problem.faulty_service
+        results = {}
+
+        results["success"] = True
+
+        for deployment_name in deployment_names:
+            for _ in range(self.RETRIES):
+                usage_dict = kubectl.get_pod_cpu_usage(namespace)
+
+                usages = []
+                for pod_name, cpu_usage in usage_dict.items():
+                    if deployment_name in pod_name and "frontend-proxy" not in pod_name:
+                        usages.append(int(cpu_usage))
+                max_usage = max(usages)
+                if len(usages) == 1:
+                    print("Wait the top info to be ready...")
+                    time.sleep(10)
+                    continue
+                average_others = (sum(usages) - max_usage) / (len(usages) - 1)
+
+                if max_usage > average_others * 3:
+                    print(
+                        f"❌ Deployment {deployment_name} still not balanced (max usage: {max_usage}, average others: {average_others})"
+                    )
+                    results["success"] = False
+                    return results
+
+                time.sleep(10)  # wait for variation
+
+        print(f"✅ Deployment {deployment_name} balanced")
+        results["success"] = True
+        return results
diff --git a/sregym/conductor/oracles/incorrect_image_mitigation.py b/sregym/conductor/oracles/incorrect_image_mitigation.py
new file mode 100644
index 0000000..25c7c73
--- /dev/null
+++ b/sregym/conductor/oracles/incorrect_image_mitigation.py
@@ -0,0 +1,33 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class IncorrectImageMitigationOracle(Oracle):
+    importance = 1.0
+
+    def __init__(self, problem, actual_images: dict = {}):
+        super().__init__(problem)
+        self.actual_images = actual_images
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        deployment_names = self.problem.faulty_service
+        results = {}
+
+        results["success"] = True
+
+        for deployment_name in deployment_names:
+            # Fetch the current deployment
+            deployment = kubectl.get_deployment(deployment_name, namespace)
+            container = deployment.spec.template.spec.containers[0]
+            actual_image = container.image
+
+            if actual_image == self.actual_images[deployment_name]:
+                print(f"❌ Deployment {deployment_name} still using incorrect image: {actual_image}")
+                results["success"] = False
+            else:
+                print(f"✅ Deployment {deployment_name} using correct image: {actual_image}")
+
+        return results
diff --git a/sregym/conductor/oracles/incorrect_port.py b/sregym/conductor/oracles/incorrect_port.py
new file mode 100644
index 0000000..97bd40f
--- /dev/null
+++ b/sregym/conductor/oracles/incorrect_port.py
@@ -0,0 +1,43 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class IncorrectPortAssignmentMitigationOracle(Oracle):
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        deployment_name = self.problem.faulty_service
+        env_var = self.problem.env_var
+        expected_port = self.problem.correct_port
+        results = {}
+
+        # Fetch deployment
+        deployment = kubectl.get_deployment(deployment_name, namespace)
+        container = deployment.spec.template.spec.containers[0]
+
+        found = False
+        correct = False
+
+        for e in container.env:
+            if e.name == env_var:
+                found = True
+                value = e.value
+                print(f"🔍 Found {env_var}={value}")
+                parts = value.split(":")
+                if len(parts) == 2 and parts[1] == expected_port:
+                    correct = True
+                else:
+                    print(
+                        f"❌ Incorrect port: expected {expected_port}, found {parts[1] if len(parts) == 2 else 'N/A'}"
+                    )
+                break
+
+        if not found:
+            print(f"❌ Env var {env_var} not found.")
+        results["success"] = found and correct
+
+        print(f"Mitigation Result: {'Pass ✅' if results['success'] else 'Fail ❌'}")
+        return results
diff --git a/sregym/conductor/oracles/ingress_misroute_oracle.py b/sregym/conductor/oracles/ingress_misroute_oracle.py
new file mode 100644
index 0000000..1909001
--- /dev/null
+++ b/sregym/conductor/oracles/ingress_misroute_oracle.py
@@ -0,0 +1,31 @@
+import logging
+from kubernetes import client
+from sregym.conductor.oracles.base import Oracle
+
+class IngressMisrouteMitigationOracle(Oracle):
+    def __init__(self, problem):
+        super().__init__(problem=problem)
+        self.networking_v1 = client.NetworkingV1Api()
+        self.logger = logging.getLogger(__name__)
+
+    def evaluate(self) -> bool:
+        results = {}
+        try:
+            ingress = self.networking_v1.read_namespaced_ingress(name=self.problem.ingress_name, namespace=self.problem.namespace)
+            for rule in ingress.spec.rules:
+                for path in rule.http.paths:
+                    if path.path == self.problem.path:
+                        if path.backend.service.name == self.problem.correct_service:
+                            self.logger.info(f"Ingress path '{self.problem.path}' correctly routed to '{self.problem.correct_service}'.")
+                            results["success"] = True
+                            return results
+                        else:
+                            self.logger.info(f"Ingress path '{self.problem.path}' still routed to '{path.backend.service.name}', mitigation incomplete.")
+                            results["success"] = False
+                            return results
+            self.logger.error("Path not found in ingress, mitigation incomplete.")
+            results["success"] = False
+        except client.exceptions.ApiException as e:
+            self.logger.error(f"Error checking ingress configuration: {e}")
+            results["success"] = False
+        return results
diff --git a/sregym/conductor/oracles/llm_as_a_judge/judge.py b/sregym/conductor/oracles/llm_as_a_judge/judge.py
new file mode 100644
index 0000000..fee416d
--- /dev/null
+++ b/sregym/conductor/oracles/llm_as_a_judge/judge.py
@@ -0,0 +1,244 @@
+"""LLM-as-a-Judge Oracle for evaluating agent solutions against expected root causes."""
+
+import json
+import os
+import re
+from enum import Enum
+from pathlib import Path
+from typing import Optional
+
+import yaml
+from dotenv import load_dotenv
+from langchain_core.messages import HumanMessage, SystemMessage
+
+from clients.stratus.llm_backend.get_llm_backend import LiteLLMBackend
+
+load_dotenv()
+
+
+class JudgmentResult(str, Enum):
+    TRUE = "True"  # Correct diagnosis
+    FALSE = "False"  # Incorrect diagnosis
+    FALSE_POSITIVE = "FalsePositive"  # Identified a problem when there isn't one
+    FALSE_NEGATIVE = "FalseNegative"  # Missed a problem that exists
+
+
+class LLMJudge:
+    def __init__(
+        self,
+        provider: Optional[str] = None,
+        model_name: Optional[str] = None,
+        url: Optional[str] = None,
+        api_key: Optional[str] = None,
+        temperature: float = 0.0,
+        max_tokens: int = 4096,
+    ):
+        # Load from environment if not provided
+        self.provider = provider or os.getenv("PROVIDER", "openai")
+        self.model_name = model_name or os.getenv("MODEL_TOOLS", "gpt-4o")
+        self.url = url or os.getenv("URL_TOOLS", "")
+        self.api_key = api_key or os.getenv("API_KEY_TOOLS", "")
+        self.temperature = temperature
+        self.max_tokens = max_tokens
+
+        # Initialize LiteLLM backend
+        self.backend = LiteLLMBackend(
+            provider=self.provider,
+            model_name=self.model_name,
+            url=self.url,
+            api_key=self.api_key,
+            api_version=os.getenv("API_VERSION_TOOLS", ""),
+            seed=int(os.getenv("SEED_TOOLS", "42")),
+            top_p=float(os.getenv("TOP_P_TOOLS", "0.95")),
+            temperature=self.temperature,
+            reasoning_effort="",
+            thinking_tools="",
+            thinking_budget_tools=0,
+            max_tokens=self.max_tokens,
+        )
+
+        print(f"Initialized LLMJudge with provider={self.provider}, model={self.model_name}")
+
+    def judge(self, solution: str, expectation: str) -> JudgmentResult:
+        system_prompt = """You are an expert judge evaluating whether an agent's diagnosis of a system issue matches the expected root cause.
+
+Your task is to compare the agent's answer with the expected root cause and determine if they are semantically equivalent.
+
+Classification criteria:
+- **True**: The agent correctly identified the root cause. The diagnosis captures the essential problem even if worded differently.
+- **False**: The agent identified a different problem or misdiagnosed the root cause.
+- **FalsePositive**: The expected root cause is empty (no fault exists), but the agent reported a problem.
+- **FalseNegative**: The expected root cause describes a real fault, but the agent reported no issues or said everything is normal.
+
+You must respond with EXACTLY ONE of these four values: True, False, FalsePositive, or FalseNegative
+
+Your response should be in the following JSON format:
+{
+    "judgment": "True|False|FalsePositive|FalseNegative",
+    "reasoning": "Brief explanation of why you made this judgment"
+}"""
+
+        user_prompt = f"""Expected Root Cause:
+{expectation if expectation else "(No fault - system is operating normally)"}
+
+Agent's Answer:
+{solution}
+
+Evaluate whether the agent's answer correctly identifies the root cause. Respond in JSON format with your judgment and reasoning."""
+
+        messages = [
+            SystemMessage(content=system_prompt),
+            HumanMessage(content=user_prompt),
+        ]
+
+        try:
+            # Get response from LLM
+            response = self.backend.inference(messages)
+            response_text = response.content.strip()
+
+            print(f"LLM Response: {response_text}")
+
+            # Parse the response
+            judgment = self._parse_judgment(response_text)
+            print(f"Parsed judgment: {judgment}")
+
+            return judgment
+
+        except Exception as e:
+            print(f"Error during judgment: {e}")
+            raise
+
+    def _parse_judgment(self, response_text: str) -> JudgmentResult:
+        try:
+            # Remove markdown code blocks if present
+            clean_text = re.sub(r"```json\s*|\s*```", "", response_text)
+            clean_text = clean_text.strip()
+
+            response_json = json.loads(clean_text)
+            judgment_str = response_json.get("judgment", "").strip()
+            reasoning = response_json.get("reasoning", "")
+
+            print(f"Reasoning: {reasoning}")
+
+        except json.JSONDecodeError:
+            # Fallback: try to extract judgment directly from text
+            print("Failed to parse JSON, attempting direct extraction")
+            judgment_str = response_text
+
+        # Normalize the judgment string
+        judgment_str = judgment_str.strip().lower()
+
+        # Map to JudgmentResult
+        if judgment_str == "true":
+            return JudgmentResult.TRUE
+        elif judgment_str == "false":
+            return JudgmentResult.FALSE
+        elif judgment_str in ["falsepositive", "false positive"]:
+            return JudgmentResult.FALSE_POSITIVE
+        elif judgment_str in ["falsenegative", "false negative"]:
+            return JudgmentResult.FALSE_NEGATIVE
+        else:
+            raise ValueError(f"Could not parse judgment from response: {response_text}")
+
+
+def load_test_data(yaml_path: str) -> list[dict]:
+    with open(yaml_path, "r") as f:
+        data = yaml.safe_load(f)
+    return data
+
+
+def main():
+    # Get the directory of this script
+    script_dir = Path(__file__).parent
+    data_path = script_dir / "data.yaml"
+
+    if not data_path.exists():
+        print(f"Test data file not found: {data_path}")
+        return
+
+    # Load test data
+    test_cases = load_test_data(str(data_path))
+    print(f"Loaded {len(test_cases)} test cases from {data_path}")
+
+    # Initialize judge
+    judge = LLMJudge()
+
+    # Track results
+    total_cases = len(test_cases)
+    correct = 0
+    incorrect = 0
+    results = []
+
+    # Evaluate each test case
+    for i, test_case in enumerate(test_cases, 1):
+        description = test_case.get("description", "")
+        answer = test_case.get("answer", "")
+        expected_judgment = test_case.get("oracle", "")
+
+        print(f"\n{'='*80}")
+        print(f"Test Case {i}/{total_cases}")
+        print(
+            f"Expected Root Cause: {description[:100]}..."
+            if len(description) > 100
+            else f"Expected Root Cause: {description}"
+        )
+        print(f"Agent Answer: {answer[:100]}..." if len(answer) > 100 else f"Agent Answer: {answer}")
+        print(f"Expected Judgment: {expected_judgment}")
+
+        try:
+            # Get judgment from LLM
+            actual_judgment = judge.judge(solution=answer, expectation=description)
+
+            # Normalize expected judgment for comparison
+            expected_normalized = expected_judgment.strip().lower().replace(" ", "")
+            actual_normalized = actual_judgment.value.lower().replace(" ", "")
+
+            is_correct = expected_normalized == actual_normalized
+
+            if is_correct:
+                correct += 1
+                status = "✅ CORRECT"
+            else:
+                incorrect += 1
+                status = "❌ INCORRECT"
+
+            print(f"Actual Judgment: {actual_judgment.value}")
+            print(f"Status: {status}")
+
+            results.append(
+                {
+                    "test_case": i,
+                    "expected": expected_judgment,
+                    "actual": actual_judgment.value,
+                    "correct": is_correct,
+                }
+            )
+
+        except Exception as e:
+            print(f"Error processing test case {i}: {e}")
+            incorrect += 1
+            results.append(
+                {
+                    "test_case": i,
+                    "expected": expected_judgment,
+                    "actual": f"ERROR: {str(e)}",
+                    "correct": False,
+                }
+            )
+
+    # Print summary
+    print(f"\n{'='*80}")
+    print("SUMMARY")
+    print(f"{'='*80}")
+    print(f"Total test cases: {total_cases}")
+    print(f"Correct: {correct} ({correct/total_cases*100:.1f}%)")
+    print(f"Incorrect: {incorrect} ({incorrect/total_cases*100:.1f}%)")
+    print(f"\nDetailed Results:")
+
+    for result in results:
+        status_symbol = "✅" if result["correct"] else "❌"
+        print(f"  {status_symbol} Case {result['test_case']}: Expected={result['expected']}, Actual={result['actual']}")
+
+
+if __name__ == "__main__":
+    main()
diff --git a/sregym/conductor/oracles/llm_as_a_judge/llm_as_a_judge_oracle.py b/sregym/conductor/oracles/llm_as_a_judge/llm_as_a_judge_oracle.py
new file mode 100644
index 0000000..4fb1865
--- /dev/null
+++ b/sregym/conductor/oracles/llm_as_a_judge/llm_as_a_judge_oracle.py
@@ -0,0 +1,75 @@
+"""LLM-as-a-Judge Oracle for evaluating agent solutions using LLM judgment."""
+
+from typing import Optional
+
+from sregym.conductor.oracles.base import Oracle
+from sregym.conductor.oracles.llm_as_a_judge.judge import JudgmentResult, LLMJudge
+
+
+class LLMAsAJudgeOracle(Oracle):
+    """Oracle that uses an LLM judge to evaluate agent solutions against expected root causes."""
+
+    def __init__(
+        self,
+        problem,
+        expected: str,
+        provider: Optional[str] = None,
+        model_name: Optional[str] = None,
+        url: Optional[str] = None,
+        api_key: Optional[str] = None,
+        temperature: float = 0.0,
+        max_tokens: int = 4096,
+    ):
+        super().__init__(problem)
+        self.expected = expected if expected else ""
+
+        # Initialize the LLM judge
+        self.judge = LLMJudge(
+            provider=provider,
+            model_name=model_name,
+            url=url,
+            api_key=api_key,
+            temperature=temperature,
+            max_tokens=max_tokens,
+        )
+
+    def evaluate(self, solution) -> dict:
+        print("== LLM-as-a-Judge Evaluation ==")
+        results = {}
+
+        # Normalize solution to string
+        if not isinstance(solution, str):
+            solution = str(solution)
+
+        try:
+            # Get judgment from LLM judge
+            judgment = self.judge.judge(solution=solution, expectation=self.expected)
+
+            # Determine success based on judgment
+            is_correct = judgment == JudgmentResult.TRUE
+
+            if is_correct:
+                acc = 100.0
+                print(f"✅ Correct diagnosis: {judgment.value}")
+            else:
+                acc = 0.0
+                print(f"❌ Incorrect diagnosis: {judgment.value}")
+                print(
+                    f"   Expected: {self.expected[:100]}..."
+                    if len(self.expected) > 100
+                    else f"   Expected: {self.expected}"
+                )
+                print(f"   Got: {solution[:100]}..." if len(solution) > 100 else f"   Got: {solution}")
+
+            results["judgment"] = judgment.value
+            results["success"] = is_correct
+            results["accuracy"] = acc
+
+        except Exception as e:
+            print(f"❌ Error during LLM judgment: {e}")
+            results["judgment"] = "Error"
+            results["success"] = False
+            results["accuracy"] = 0.0
+            results["error"] = str(e)
+
+        return results
diff --git a/sregym/conductor/oracles/localization.py b/sregym/conductor/oracles/localization.py
new file mode 100644
index 0000000..328642b
--- /dev/null
+++ b/sregym/conductor/oracles/localization.py
@@ -0,0 +1,61 @@
+from sregym.conductor.oracles.base import Oracle
+from sregym.conductor.oracles.utils import is_exact_match, is_subset
+
+
+class LocalizationOracle(Oracle):
+    def __init__(self, problem, expected: list[str] | str):
+        super().__init__(problem)
+        # Normalize expected to list of strings
+        if isinstance(expected, str):
+            self.expected = [expected]
+        elif isinstance(expected, list):
+            # Flatten if nested and ensure all items are strings
+            flattened = []
+            for item in expected:
+                if isinstance(item, list):
+                    flattened.extend([str(x) for x in item])
+                else:
+                    flattened.append(str(item))
+            self.expected = flattened
+        else:
+            self.expected = [str(expected)]
+
+    def evaluate(self, solution) -> dict:
+        print("== Localization Evaluation ==")
+        results = {}
+
+        # Normalize solution to list of strings
+        if isinstance(solution, str):
+            # Check if it's a comma-separated list
+            if "," in solution:
+                solution = [s.strip() for s in solution.split(",")]
+            else:
+                solution = [solution]
+        elif isinstance(solution, list):
+            # Ensure all items are strings
+            solution = [str(item) for item in solution]
+        else:
+            results["accuracy"] = 0.0
+            results["success"] = False
+            results["is_subset"] = False
+            print("❌ Invalid format: expected string or list of strings")
+            return results
+
+        is_exact = is_exact_match(solution, self.expected)
+        is_sub = is_subset(solution, self.expected)
+
+        if is_exact:
+            acc = 100.0
+            print(f"✅ Exact match: {solution}")
+        elif is_sub:
+            acc = (len(solution) / len(self.expected)) * 100.0
+            print(f"⚠️ Subset match: {solution} | Accuracy: {acc:.2f}%")
+        else:
+            acc = 0.0
+            print(f"❌ No match: {solution}")
+
+        results["accuracy"] = acc
+        results["success"] = is_exact or (is_sub and len(solution) == len(self.expected))
+        results["is_subset"] = is_sub
+
+        return results
diff --git a/sregym/conductor/oracles/missing_cm_key_mitigation.py b/sregym/conductor/oracles/missing_cm_key_mitigation.py
new file mode 100644
index 0000000..2e044af
--- /dev/null
+++ b/sregym/conductor/oracles/missing_cm_key_mitigation.py
@@ -0,0 +1,51 @@
+import json
+import yaml
+from typing import Optional
+
+from sregym.conductor.oracles.base import Oracle
+
+
+class MissingCmKeyMitigationOracle(Oracle):
+
+    importance = 1.0
+
+    def __init__(self, problem, configmap_name: str, expected_keys: list[str]):
+
+        super().__init__(problem)
+        self.expected_keys = expected_keys
+        self.configmap_name = configmap_name
+
+    def evaluate(self) -> dict:
+        print("== Missing ConfigMap Key Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+
+        try:
+            cm_yaml = kubectl.exec_command(
+                f"kubectl get configmap {self.configmap_name} -n {namespace} -o yaml"
+            )
+            cm_data = yaml.safe_load(cm_yaml)
+            
+            config_json_str = cm_data.get("data", {}).get("config.json", "{}")
+            config_data = json.loads(config_json_str)
+            
+            missing_keys = []
+            present_keys = []
+            
+            for key in self.expected_keys:
+                if key in config_data:
+                    present_keys.append(key)
+                else:
+                    missing_keys.append(key)
+            
+            if missing_keys:
+                print(f"❌ Missing ConfigMap keys: {missing_keys}")
+                return {"success": False}
+            else:
+                print(f"✅ All expected ConfigMap keys present.")
+                return {"success": True}
+                    
+        except Exception as e:
+            print(f"❌ Failed to check ConfigMap: {str(e)}")
+            return {"success": False} 
\ No newline at end of file
diff --git a/sregym/conductor/oracles/missing_env_variable_mitigation.py b/sregym/conductor/oracles/missing_env_variable_mitigation.py
new file mode 100644
index 0000000..6cd733c
--- /dev/null
+++ b/sregym/conductor/oracles/missing_env_variable_mitigation.py
@@ -0,0 +1,71 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class MissingEnvVariableMitigationOracle(Oracle):
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        results = {}
+
+        faulty_service = self.problem.faulty_service
+        env_var = self.problem.env_var
+        env_var_value = self.problem.env_var_value
+
+        all_normal = False
+        # check if deployment exists
+        try:
+            deployment = kubectl.get_deployment(faulty_service, namespace)
+            env_var_found = False
+
+            # check if env var exists in deployment
+            for container in deployment.spec.template.spec.containers:
+                if hasattr(container, 'env') and container.env:
+                    for env in container.env:
+                        if env.name == env_var and env.value == env_var_value:
+                            print(f"✅ Found environment variable {env_var}={env_var_value} in container {container.name}")
+                            env_var_found = True
+                            break
+                    if env_var_found:
+                        break
+            
+            if not env_var_found:
+                print(f"❌ Failed to find environment variable {env_var}={env_var_value} in deployment {faulty_service}")
+
+            all_normal = env_var_found
+
+        except Exception as e:
+            print(f"❌ Failed to get deployment {faulty_service}: {e}")
+            all_normal = False
+            
+        if all_normal:
+            pod_list = kubectl.list_pods(namespace)
+
+            for pod in pod_list.items:
+                if pod.status.phase != "Running":
+                    print(f"❌ Pod {pod.metadata.name} is in phase: {pod.status.phase}")
+                    all_normal = False
+                    break
+
+                for container_status in pod.status.container_statuses:
+                    if container_status.state.waiting and container_status.state.waiting.reason:
+                        print(f"❌ Container {container_status.name} is waiting: {container_status.state.waiting.reason}")
+                        all_normal = False
+                    elif container_status.state.terminated and container_status.state.terminated.reason != "Completed":
+                        print(
+                            f"❌ Container {container_status.name} terminated: {container_status.state.terminated.reason}"
+                        )
+                        all_normal = False
+                    elif not container_status.ready:
+                        print(f"⚠️ Container {container_status.name} is not ready")
+                        all_normal = False
+
+                if not all_normal:
+                    break
+
+        results["success"] = all_normal
+
+        print(f"Mitigation Result: {'✅ Pass' if results['success'] else '❌ Fail'}")
+        return results
\ No newline at end of file
diff --git a/sregym/conductor/oracles/mitigation.py b/sregym/conductor/oracles/mitigation.py
new file mode 100644
index 0000000..04e6498
--- /dev/null
+++ b/sregym/conductor/oracles/mitigation.py
@@ -0,0 +1,40 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class MitigationOracle(Oracle):
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        results = {}
+
+        pod_list = kubectl.list_pods(namespace)
+        all_normal = True
+
+        for pod in pod_list.items:
+            if pod.status.phase != "Running":
+                print(f"❌ Pod {pod.metadata.name} is in phase: {pod.status.phase}")
+                all_normal = False
+                break
+
+            for container_status in pod.status.container_statuses:
+                if container_status.state.waiting and container_status.state.waiting.reason:
+                    print(f"❌ Container {container_status.name} is waiting: {container_status.state.waiting.reason}")
+                    all_normal = False
+                elif container_status.state.terminated and container_status.state.terminated.reason != "Completed":
+                    print(
+                        f"❌ Container {container_status.name} terminated: {container_status.state.terminated.reason}"
+                    )
+                    all_normal = False
+                elif not container_status.ready:
+                    print(f"⚠️ Container {container_status.name} is not ready")
+                    all_normal = False
+
+            if not all_normal:
+                break
+
+        results["success"] = all_normal
+        return results
diff --git a/sregym/conductor/oracles/namespace_memory_limit_mitigation.py b/sregym/conductor/oracles/namespace_memory_limit_mitigation.py
new file mode 100644
index 0000000..05227da
--- /dev/null
+++ b/sregym/conductor/oracles/namespace_memory_limit_mitigation.py
@@ -0,0 +1,41 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class NamespaceMemoryLimitMitigationOracle(Oracle):
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        deployment_name = self.problem.faulty_service
+        results = {}
+
+        # 1. Check if memory-based ResourceQuota is gone
+        memory_quota_removed = True
+        quotas = kubectl.get_resource_quotas(namespace)
+        for quota in quotas:
+            if "memory" in quota.spec.hard:
+                print(f"❌ Memory quota still present: {quota.metadata.name}")
+                memory_quota_removed = False
+
+        # 2. Check if pod for the deployment is Running and Ready
+        pod_list = kubectl.list_pods(namespace)
+        pod_recovered = False
+
+        for pod in pod_list.items:
+            if deployment_name in pod.metadata.name and pod.status.phase == "Running":
+                all_ready = all(container.ready for container in pod.status.container_statuses)
+                if all_ready:
+                    pod_recovered = True
+                    break
+                else:
+                    print(f"⚠️ Pod {pod.metadata.name} is Running but containers not ready")
+            elif deployment_name in pod.metadata.name:
+                print(f"❌ Pod {pod.metadata.name} is not in Running phase: {pod.status.phase}")
+
+        success = memory_quota_removed and pod_recovered
+        results["success"] = success
+
+        print(f"Mitigation Result: {'✅ Pass' if success else '❌ Fail'}")
+        return results
diff --git a/sregym/conductor/oracles/network_policy_oracle.py b/sregym/conductor/oracles/network_policy_oracle.py
new file mode 100644
index 0000000..cff6754
--- /dev/null
+++ b/sregym/conductor/oracles/network_policy_oracle.py
@@ -0,0 +1,29 @@
+import logging
+
+from kubernetes import client
+
+from sregym.conductor.oracles.base import Oracle
+
+
+class NetworkPolicyMitigationOracle(Oracle):
+    def __init__(self, problem, policy_name=None):
+        super().__init__(problem=problem)
+        self.networking_v1 = client.NetworkingV1Api()
+        self.policy_name = policy_name or f"deny-all-{problem.faulty_service}"
+        self.logger = logging.getLogger(__name__)
+
+    def evaluate(self) -> bool:
+        results = {}
+        try:
+            self.networking_v1.read_namespaced_network_policy(name=self.policy_name, namespace=self.problem.namespace)
+            # Policy still exists, mitigation incomplete
+            self.logger.info(f"NetworkPolicy '{self.policy_name}' still present, mitigation not complete.")
+            results["success"] = False
+        except client.exceptions.ApiException as e:
+            if e.status == 404:
+                self.logger.info(f"NetworkPolicy '{self.policy_name}' not found, mitigation successful.")
+                results["success"] = True
+            else:
+                self.logger.error(f"Error checking NetworkPolicy: {e}")
+                results["success"] = False
+        return results
diff --git a/sregym/conductor/oracles/operator_misoperation/invalid_affinity_mitigation.py b/sregym/conductor/oracles/operator_misoperation/invalid_affinity_mitigation.py
new file mode 100644
index 0000000..dc29747
--- /dev/null
+++ b/sregym/conductor/oracles/operator_misoperation/invalid_affinity_mitigation.py
@@ -0,0 +1,123 @@
+import json
+import yaml
+import tempfile
+from sregym.conductor.oracles.base import Oracle
+
+class InvalidAffinityMitigationOracle(Oracle):
+    def __init__(self, problem, deployment_name: str):
+        super().__init__(problem)
+        self.cr_name = "basic"
+
+        self.deployment_name = deployment_name
+        self.namespace = problem.namespace
+        self.kubectl = problem.kubectl
+
+    def evaluatePods(self) -> dict:
+        print("== Evaluating pod readiness ==")
+        try:
+            output = self.kubectl.exec_command(
+                f"kubectl get pods -n {self.namespace} -o yaml"
+            )
+            pods = yaml.safe_load(output)
+            pods_list = pods.get("items", [])
+            pod_statuses = {}
+            for pod in pods_list:
+                pod_name = pod["metadata"]["name"]
+                container_status = pod["status"].get("containerStatuses", [])
+                if container_status:
+                    state = container_status[0].get("state", {})
+                    if "waiting" in state:
+                        reason = state["waiting"].get("reason", "Unknown")
+                        pod_statuses[pod_name] = reason
+                    elif "running" in state:
+                        pod_statuses[pod_name] = "Running"
+                    else:
+                        pod_statuses[pod_name] = "Terminated"
+                else:
+                    pod_statuses[pod_name] = "No Status"
+
+            print("Pod Statuses:")
+            for pod, status in pod_statuses.items():
+                print(f" - {pod}: {status}")
+                if status != "Running":
+                        print(f"Pod {pod} is not running. Status: {status}")
+                        return {"success": False}
+            print("All pods are running.")
+            return {"success": True}
+        except Exception as e:
+            print(f"Error during evaluation: {str(e)}")
+            return {"success": False}
+        
+
+
+    def evaluate(self) -> dict:
+        evaluatePods = self.evaluatePods()
+        print(f"Pod readiness: {evaluatePods}")
+        ns = self.namespace
+        name = "basic"  
+
+        cr_json = json.loads(self.kubectl.exec_command(
+            f"kubectl get tidbcluster {name} -n tidb-cluster -o json"
+        ))
+        cr_effects = [
+            t.get("effect")
+            for t in (cr_json.get("spec", {}).get("tidb", {}).get("tolerations", []) or [])
+            if isinstance(t, dict)
+        ]
+
+
+        try:
+            sts_json = json.loads(self.kubectl.exec_command(
+                f"kubectl get sts {name}-tidb -n {ns} -o json"
+            ))
+            tpl_tolerations = (sts_json.get("spec", {})
+                                        .get("template", {})
+                                        .get("spec", {})
+                                        .get("tolerations", []) or [])
+            sts_effects = [t.get("effect") for t in tpl_tolerations if isinstance(t, dict)]
+        except Exception:
+            sts_json = {}
+            sts_effects = []
+
+
+        pod_effects = []
+        try:
+            pods_json = json.loads(self.kubectl.exec_command(
+                f"kubectl get pods -n {ns} -l app.kubernetes.io/instance={name},app.kubernetes.io/component=tidb -o json"
+            ))
+            for item in pods_json.get("items", []):
+                tol = (item.get("spec", {}) or {}).get("tolerations", []) or []
+                pod_effects.extend([t.get("effect") for t in tol if isinstance(t, dict)])
+        except Exception:
+            pods_json = {}
+
+        try:
+            ev = self.kubectl.exec_command(f"kubectl get events -n {ns} --sort-by=.metadata.creationTimestamp | tail -n 30")
+        except Exception:
+            ev = ""
+
+        bad = "TAKE_SOME_EFFECT"
+        applied_in = {
+            "cr_has_bad_effect": (bad in cr_effects),
+            "sts_has_bad_effect": (bad in sts_effects),
+            "any_pod_has_bad_effect": (bad in pod_effects),
+        }
+        success = not any(applied_in.values())
+
+        return {
+            "success": success,
+            "details": {
+                "cr_effects": cr_effects,
+                "sts_effects": sts_effects,
+                "pod_effects": pod_effects,
+                "recent_events_tail": ev[-2000:],  
+            },
+            "applied_in": applied_in
+        }
+
+
+
+
+        
+
+    
\ No newline at end of file
diff --git a/sregym/conductor/oracles/operator_misoperation/non_existent_storage_mitigation.py b/sregym/conductor/oracles/operator_misoperation/non_existent_storage_mitigation.py
new file mode 100644
index 0000000..a521f7a
--- /dev/null
+++ b/sregym/conductor/oracles/operator_misoperation/non_existent_storage_mitigation.py
@@ -0,0 +1,113 @@
+import json
+import yaml
+import tempfile
+from sregym.conductor.oracles.base import Oracle
+
+class NonExistentStorageClassMitigationOracle(Oracle):
+    def __init__(self, problem, deployment_name: str):
+        super().__init__(problem)
+        self.cr_name = "basic"
+
+        self.deployment_name = deployment_name
+        self.namespace = problem.namespace
+        self.kubectl = problem.kubectl
+
+    def evaluatePods(self) -> dict:
+        print("== Evaluating pod readiness ==")
+        try:
+            output = self.kubectl.exec_command(
+                f"kubectl get pods -n {self.namespace} -o yaml"
+            )
+            pods = yaml.safe_load(output)
+            pods_list = pods.get("items", [])
+            pod_statuses = {}
+            for pod in pods_list:
+                pod_name = pod["metadata"]["name"]
+                container_status = pod["status"].get("containerStatuses", [])
+                if container_status:
+                    state = container_status[0].get("state", {})
+                    if "waiting" in state:
+                        reason = state["waiting"].get("reason", "Unknown")
+                        pod_statuses[pod_name] = reason
+                    elif "running" in state:
+                        pod_statuses[pod_name] = "Running"
+                    else:
+                        pod_statuses[pod_name] = "Terminated"
+                else:
+                    pod_statuses[pod_name] = "No Status"
+
+            print("Pod Statuses:")
+            for pod, status in pod_statuses.items():
+                print(f" - {pod}: {status}")
+                if status != "Running":
+                        print(f"Pod {pod} is not running. Status: {status}")
+                        return {"success": False}
+            print("All pods are running.")
+            return {"success": True}
+        except Exception as e:
+            print(f"Error during evaluation: {str(e)}")
+            return {"success": False}
+        
+
+
+    def evaluate(self) -> dict:
+        ns = self.namespace
+        name = self.cr_name
+        results = {}
+        evaluatePods = self.evaluatePods()
+        print(f"Pod readiness: {evaluatePods}")
+
+        cr = json.loads(self.kubectl.exec_command(
+            f"kubectl get tidbcluster {name} -n tidb-cluster -o json"
+        ))
+        pd_sc   = (cr.get("spec", {}).get("pd", {})   or {}).get("storageClassName")
+        tikv_sc = (cr.get("spec", {}).get("tikv", {}) or {}).get("storageClassName")
+
+        pvc_pd_json = json.loads(self.kubectl.exec_command(
+            f"kubectl get pvc -n {ns} "
+            f"-l app.kubernetes.io/instance={name},app.kubernetes.io/component=pd -o json"
+        ))
+        pvc_tikv_json = json.loads(self.kubectl.exec_command(
+            f"kubectl get pvc -n {ns} "
+            f"-l app.kubernetes.io/instance={name},app.kubernetes.io/component=tikv -o json"
+        ))
+
+        def summarize_pvcs(pvc_list):
+            out = []
+            for p in pvc_list.get("items", []):
+                meta = p.get("metadata", {}) or {}
+                spec = p.get("spec", {}) or {}
+                stat = p.get("status", {}) or {}
+                out.append({
+                    "name": meta.get("name"),
+                    "storageClassName": spec.get("storageClassName"),
+                    "phase": stat.get("phase"),  
+                })
+            return out
+
+        pvc_pd   = summarize_pvcs(pvc_pd_json)
+        pvc_tikv = summarize_pvcs(pvc_tikv_json)
+
+        events_tail = self.kubectl.exec_command(
+            f"kubectl get events -n {ns} --sort-by=.metadata.creationTimestamp | tail -n 50"
+        )
+
+        BAD = "ThisIsAStorageClass"
+        cr_has_bad = (pd_sc == BAD) or (tikv_sc == BAD)
+        pvc_shows_bad = any(e.get("storageClassName") == BAD for e in pvc_pd + pvc_tikv)
+        any_pending = any(e.get("phase") == "Pending" for e in pvc_pd + pvc_tikv)
+        print (f"cr_has_bad: {cr_has_bad}, pvc_shows_bad: {pvc_shows_bad}, any_pending: {any_pending}")
+
+        fault_applied = cr_has_bad or pvc_shows_bad
+        success = not fault_applied  
+
+        return {
+            "success": success,
+            "cr_values": {"pd.storageClassName": pd_sc, "tikv.storageClassName": tikv_sc},
+            "pvc_pd": pvc_pd,
+            "pvc_tikv": pvc_tikv,
+            "any_pvc_pending": any_pending,
+            "events_tail": events_tail[-2000:],
+            "fault_applied": fault_applied
+        }
+ 
\ No newline at end of file
diff --git a/sregym/conductor/oracles/operator_misoperation/overload_replicas_mitigation.py b/sregym/conductor/oracles/operator_misoperation/overload_replicas_mitigation.py
new file mode 100644
index 0000000..2bfc598
--- /dev/null
+++ b/sregym/conductor/oracles/operator_misoperation/overload_replicas_mitigation.py
@@ -0,0 +1,100 @@
+import json
+import yaml
+import tempfile
+from sregym.conductor.oracles.base import Oracle
+
+class OverloadReplicasMitigationOracle(Oracle):
+    def __init__(self, problem, deployment_name: str):
+        super().__init__(problem)
+        self.cr_name = "basic"
+        self.deployment_name = deployment_name
+        self.namespace = "tidb-cluster"
+        self.kubectl = problem.kubectl
+
+    def evaluatePods(self) -> dict:
+        print("== Evaluating pod readiness ==")
+        try:
+            output = self.kubectl.exec_command(
+                f"kubectl get pods -n {self.namespace} -o yaml"
+            )
+            pods = yaml.safe_load(output)
+            pods_list = pods.get("items", [])
+            pod_statuses = {}
+            for pod in pods_list:
+                pod_name = pod["metadata"]["name"]
+                container_status = pod["status"].get("containerStatuses", [])
+                if container_status:
+                    state = container_status[0].get("state", {})
+                    if "waiting" in state:
+                        reason = state["waiting"].get("reason", "Unknown")
+                        pod_statuses[pod_name] = reason
+                    elif "running" in state:
+                        pod_statuses[pod_name] = "Running"
+                    else:
+                        pod_statuses[pod_name] = "Terminated"
+                else:
+                    pod_statuses[pod_name] = "No Status"
+
+            print("Pod Statuses:")
+            for pod, status in pod_statuses.items():
+                print(f" - {pod}: {status}")
+                if status != "Running":
+                        print(f"Pod {pod} is not running. Status: {status}")
+                        return {"success": False}
+            print("All pods are running.")
+            return {"success": True}
+        except Exception as e:
+            print(f"Error during evaluation: {str(e)}")
+            return {"success": False}
+        
+
+
+    def evaluate(self) -> dict:
+        ns = self.namespace
+        name = "basic"
+        results = {}
+        evaluatePods = self.evaluatePods()
+        print(f"Pod readiness: {evaluatePods}")
+    
+        cr = json.loads(self.kubectl.exec_command(
+            f"kubectl get tidbcluster {name} -n tidb-cluster -o json"
+        ))
+        desired = (cr.get("spec", {}).get("tidb", {}) or {}).get("replicas")
+
+        sts_name = f"{name}-tidb"
+        try:
+            sts = json.loads(self.kubectl.exec_command(
+                f"kubectl get sts {sts_name} -n {ns} -o json"
+            ))
+            sts_replicas   = (sts.get("spec", {}) or {}).get("replicas")
+            sts_ready      = (sts.get("status", {}) or {}).get("readyReplicas")
+            sts_current    = (sts.get("status", {}) or {}).get("replicas")
+        except Exception:
+            sts = {}
+            sts_replicas = sts_ready = sts_current = None
+
+        try:
+            pods = json.loads(self.kubectl.exec_command(
+                f"kubectl get pods -n {ns} "
+                f"-l app.kubernetes.io/instance={name},app.kubernetes.io/component=tidb -o json"
+            ))
+            pod_count = len(pods.get("items", []))
+        except Exception:
+            pod_count = None
+
+        fault_applied = (desired == 100000)
+        print("== Evaluation Result ===")
+        print(f"CR desired replicas: {desired}")
+        print(f"StatefulSet replicas: {sts_replicas}")
+        print(f"StatefulSet current replicas: {sts_current}")
+        print(f"StatefulSet ready replicas: {sts_ready}")
+        print(f"TiDB pod count: {pod_count}")
+        print(f"Fault applied: {fault_applied}")
+        results["success"] = not fault_applied
+
+        return results
+
+
+       
+
+ 
\ No newline at end of file
diff --git a/sregym/conductor/oracles/operator_misoperation/security_context_mitigation.py b/sregym/conductor/oracles/operator_misoperation/security_context_mitigation.py
new file mode 100644
index 0000000..e776a53
--- /dev/null
+++ b/sregym/conductor/oracles/operator_misoperation/security_context_mitigation.py
@@ -0,0 +1,113 @@
+import json
+import yaml
+import tempfile
+from sregym.conductor.oracles.base import Oracle
+
+class SecurityContextMitigationOracle(Oracle):
+    def __init__(self, problem, deployment_name: str):
+        super().__init__(problem)
+        self.deployment_name = deployment_name
+        self.namespace = problem.namespace
+        self.kubectl = problem.kubectl
+
+    def evaluatePods(self) -> dict:
+        print("== Evaluating pod readiness ==")
+        try:
+            output = self.kubectl.exec_command(
+                f"kubectl get pods -n {self.namespace} -o yaml"
+            )
+            pods = yaml.safe_load(output)
+            pods_list = pods.get("items", [])
+            pod_statuses = {}
+            for pod in pods_list:
+                pod_name = pod["metadata"]["name"]
+                container_status = pod["status"].get("containerStatuses", [])
+                if container_status:
+                    state = container_status[0].get("state", {})
+                    if "waiting" in state:
+                        reason = state["waiting"].get("reason", "Unknown")
+                        pod_statuses[pod_name] = reason
+                    elif "running" in state:
+                        pod_statuses[pod_name] = "Running"
+                    else:
+                        pod_statuses[pod_name] = "Terminated"
+                else:
+                    pod_statuses[pod_name] = "No Status"
+
+            print("Pod Statuses:")
+            for pod, status in pod_statuses.items():
+                print(f" - {pod}: {status}")
+                if status != "Running":
+                        print(f"Pod {pod} is not running. Status: {status}")
+                        return {"success": False}
+            print("All pods are running.")
+            return {"success": True}
+        except Exception as e:
+            print(f"Error during evaluation: {str(e)}")
+            return {"success": False}
+        
+
+
+    def evaluate(self) -> dict:
+        ns = self.namespace
+        name = "basic"
+        evaluatePods = self.evaluatePods()
+        print(f"Pod Readiness: {evaluatePods}")
+
+        cr = json.loads(self.kubectl.exec_command(
+            f"kubectl get tidbcluster {name} -n tidb-cluster -o json"
+        ))
+        run_as_user = (
+            cr.get("spec", {})
+              .get("tidb", {})
+              .get("podSecurityContext", {})
+              .get("runAsUser")
+        )
+
+        sts_name = f"{name}-tidb"
+        sts_run_as_user = None
+        try:
+            sts = json.loads(self.kubectl.exec_command(
+                f"kubectl get sts {sts_name} -n {ns} -o json"
+            ))
+            sts_run_as_user = (
+                sts.get("spec", {})
+                   .get("template", {})
+                   .get("spec", {})
+                   .get("securityContext", {})
+                   .get("runAsUser")
+            )
+        except Exception:
+            pass
+
+        pod_run_as_users = []
+        try:
+            pods = json.loads(self.kubectl.exec_command(
+                f"kubectl get pods -n {ns} "
+                f"-l app.kubernetes.io/instance={name},app.kubernetes.io/component=tidb -o json"
+            ))
+            for item in pods.get("items", []):
+                pod_run_as_users.append(
+                    (item.get("metadata", {}).get("name"),
+                     (item.get("spec", {}).get("securityContext") or {}).get("runAsUser"))
+                )
+        except Exception:
+            pass
+        print("== Evaluation Result ===")
+        print(f"CR runAsUser: {run_as_user}")
+        print(f"StatefulSet runAsUser: {sts_run_as_user}")
+        print(f"Pod runAsUsers: {pod_run_as_users}")
+        print(f"Fault applied: {run_as_user == -1}")
+
+
+        fault_present = (run_as_user == -1)
+        return {
+            "success": not fault_present,
+            "cr_runAsUser": run_as_user,
+            "sts_runAsUser": sts_run_as_user,
+            "pod_runAsUsers": pod_run_as_users,
+            "fault_applied": fault_present
+        }
+       
+
+ 
\ No newline at end of file
diff --git a/sregym/conductor/oracles/operator_misoperation/wrong_update_strategy_mitigation.py b/sregym/conductor/oracles/operator_misoperation/wrong_update_strategy_mitigation.py
new file mode 100644
index 0000000..4a89d77
--- /dev/null
+++ b/sregym/conductor/oracles/operator_misoperation/wrong_update_strategy_mitigation.py
@@ -0,0 +1,87 @@
+import json
+import yaml
+import tempfile
+from sregym.conductor.oracles.base import Oracle
+
+class WrongUpdateStrategyMitigationOracle(Oracle):
+    def __init__(self, problem, deployment_name: str):
+        super().__init__(problem)
+        self.deployment_name = deployment_name
+        self.namespace = problem.namespace
+        self.kubectl = problem.kubectl
+
+    def evaluatePods(self) -> dict:
+        print("== Evaluating pod readiness ==")
+        try:
+            output = self.kubectl.exec_command(
+                f"kubectl get pods -n {self.namespace} -o yaml"
+            )
+            pods = yaml.safe_load(output)
+            pods_list = pods.get("items", [])
+            pod_statuses = {}
+            for pod in pods_list:
+                pod_name = pod["metadata"]["name"]
+                container_status = pod["status"].get("containerStatuses", [])
+                if container_status:
+                    state = container_status[0].get("state", {})
+                    if "waiting" in state:
+                        reason = state["waiting"].get("reason", "Unknown")
+                        pod_statuses[pod_name] = reason
+                    elif "running" in state:
+                        pod_statuses[pod_name] = "Running"
+                    else:
+                        pod_statuses[pod_name] = "Terminated"
+                else:
+                    pod_statuses[pod_name] = "No Status"
+
+            print("Pod Statuses:")
+            for pod, status in pod_statuses.items():
+                print(f" - {pod}: {status}")
+                if status != "Running":
+                        print(f"Pod {pod} is not running. Status: {status}")
+                        return {"success": False}
+            print("All pods are running.")
+            return {"success": True}
+        except Exception as e:
+            print(f"Error during evaluation: {str(e)}")
+            return {"success": False}
+        
+
+
+    def evaluate(self) -> dict:
+        ns = self.namespace
+        name = "basic"
+
+        cr = json.loads(self.kubectl.exec_command(
+            f"kubectl get tidbcluster {name} -n tidb-cluster -o json"
+        ))
+        cr_strategy = (
+            cr.get("spec", {})
+              .get("tidb", {})
+              .get("statefulSetUpdateStrategy")
+        )
+
+        sts_name = f"{name}-tidb"
+        sts_type = None
+        try:
+            sts = json.loads(self.kubectl.exec_command(
+                f"kubectl get sts {sts_name} -n {ns} -o json"
+            ))
+            sts_type = (
+                sts.get("spec", {})
+                   .get("updateStrategy", {})
+                   .get("type")
+            )
+        except Exception:
+            pass
+
+        BAD = "SomeStrategyForUpdate"
+        fault_applied = (cr_strategy == BAD)
+        print(f"cr_strategy: {cr_strategy}, sts_type: {sts_type}, fault_applied: {fault_applied}")
+
+        return {
+            "success": not fault_applied,
+            "cr_statefulSetUpdateStrategy": cr_strategy,
+            "sts_updateStrategy_type": sts_type,   
+            "fault_applied": fault_applied
+        }
\ No newline at end of file
diff --git a/sregym/conductor/oracles/rolling_update_misconfiguration_mitigation.py b/sregym/conductor/oracles/rolling_update_misconfiguration_mitigation.py
new file mode 100644
index 0000000..d323716
--- /dev/null
+++ b/sregym/conductor/oracles/rolling_update_misconfiguration_mitigation.py
@@ -0,0 +1,57 @@
+import json
+import yaml
+import tempfile
+from sregym.conductor.oracles.base import Oracle
+
+class RollingUpdateMitigationOracle(Oracle):
+    def __init__(self, problem, deployment_name: str):
+        super().__init__(problem)
+        self.deployment_name = deployment_name
+        self.namespace = problem.namespace
+        self.kubectl = problem.kubectl
+
+    def evaluate(self) -> dict:
+        print("== Rolling Update Mitigation Evaluation ==")
+
+        try:
+            output = self.kubectl.exec_command(
+                f"kubectl get deployment {self.deployment_name} -n {self.namespace} -o yaml"
+            )
+            deployment = yaml.safe_load(output)
+
+            new_init = [ {"name":    "hang-init", "image":   "busybox", "command": ["/bin/sh", "-c", "sleep 15"]}]
+
+            deployment["spec"]["template"]["spec"]["initContainers"] = new_init
+            with tempfile.NamedTemporaryFile("w", suffix=".yaml", delete=False) as tmp:
+                yaml.dump(deployment, tmp)
+                tmp_path = tmp.name
+            patch_cmd = (
+                f"kubectl patch deployment {self.deployment_name} -n {self.namespace} --patch-file {tmp_path}"
+            )
+            patch_out = self.kubectl.exec_command(patch_cmd)
+            print(f"Patched initContainers: {patch_out}")
+            
+            self.kubectl.wait_for_ready(self.namespace)
+
+            print("🔄 Triggering test rollout…")
+            self.kubectl.exec_command(
+                f"kubectl rollout restart deployment {self.deployment_name} -n {self.namespace}"
+            )
+
+            deploy_json = self.kubectl.exec_command(
+                f"kubectl get deployment {self.deployment_name}"
+                f" -n {self.namespace} -o json"
+            )
+            deploy = json.loads(deploy_json)
+            avail = deploy["status"].get("availableReplicas", 0)
+
+            if avail > 0:
+                print("✅ Mitigation successful: deployment reports availableReplicas >", avail)
+                return {"success": True}
+            else:
+                print("❌ Mitigation failed: No pods available")
+                return {"success": False}
+
+        except Exception as e:
+            print(f"❌ Error during evaluation: {str(e)}")
+            return {"success": False}
diff --git a/sregym/conductor/oracles/rpc_retry_storm_mitigation.py b/sregym/conductor/oracles/rpc_retry_storm_mitigation.py
new file mode 100644
index 0000000..2a112c2
--- /dev/null
+++ b/sregym/conductor/oracles/rpc_retry_storm_mitigation.py
@@ -0,0 +1,180 @@
+from sregym.conductor.oracles.base import Oracle
+
+import pandas as pd
+import numpy as np
+import io
+
+class RPCRetryStormMitigationOracle(Oracle):
+    importance = 1.0
+
+    def analyze_latency_trend(self, csv_file_path, threshold_ratio=2.0):
+        try:
+            # Read CSV file
+            df = pd.read_csv(io.StringIO(csv_file_path))
+
+            # Ensure correct column names
+            if 'Second' not in df.columns or 'AverageLatency(ns)' not in df.columns:
+                print(f"Error: CSV file is missing required columns")
+                return False
+
+            # Convert data types
+            df['Second'] = pd.to_numeric(df['Second'], errors='coerce')
+            df['AverageLatency(ns)'] = pd.to_numeric(df['AverageLatency(ns)'], errors='coerce')
+
+            # Remove invalid data
+            df = df.dropna()
+
+            # Extract 5-55 seconds data
+            early_period = df[(df['Second'] >= 5) & (df['Second'] <= 55)]
+
+            # Extract 95-119 seconds data
+            late_period = df[(df['Second'] >= 95) & (df['Second'] <= 119)]
+
+            # Check if data is sufficient
+            if len(early_period) < 30 or len(late_period) < 15:
+                print(f"Warning: Insufficient data points, early: {len(early_period)}, late: {len(late_period)}")
+                return False
+
+            # Get latency data
+            early_latency = early_period['AverageLatency(ns)'].values
+            late_latency = late_period['AverageLatency(ns)'].values
+
+            # Calculate statistics
+            early_mean = np.mean(early_latency)
+            late_mean = np.mean(late_latency)
+            early_std = np.std(early_latency)
+            late_std = np.std(late_latency)
+
+            print(f"5-55 seconds: Mean = {early_mean:.2f}, Standard Deviation = {early_std:.2f}")
+            print(f"95-119 seconds: Mean = {late_mean:.2f}, Standard Deviation = {late_std:.2f}")
+
+            # Standard 1: Mean Comparison
+            # If the late mean is significantly higher than the early mean (exceeds the threshold ratio), it is deemed inconsistent
+            mean_ratio = late_mean / early_mean if early_mean > 0 else float('inf')
+            print(f"Mean Ratio: {mean_ratio:.2f}")
+
+            if mean_ratio > threshold_ratio:
+                print(f"Mean difference is too large (Ratio: {mean_ratio:.2f} > {threshold_ratio})")
+                return False
+
+            # Standard 2: Coefficient of Variation Comparison
+            # Coefficient of Variation = Standard Deviation / Mean, measures relative variability
+            early_cv = early_std / early_mean if early_mean > 0 else 0
+            late_cv = late_std / late_mean if late_mean > 0 else 0
+
+            print(f"Coefficient of Variation - Early: {early_cv:.4f}, Late: {late_cv:.4f}")
+
+            # If the late coefficient of variation is significantly greater than the early, it is deemed unstable
+            if late_cv > early_cv * 5:
+                print(f"Late variation is too large (Late: {late_cv:.4f} > Early: {early_cv * 5:.4f})")
+                return False
+
+            # Standard 3: Magnitude Comparison
+            # Check for significant jumps in magnitude (e.g., from milliseconds to seconds)
+            early_median = np.median(early_latency)
+            late_median = np.median(late_latency)
+
+            if late_median > early_median * 100:  # Define a significant jump in magnitude
+                print(f"Significant jump in magnitude detected: Late median is {late_median/early_median:.1f} times the Early median")
+                return False
+
+            # Standard 4: Outlier Detection
+            # Check for a large number of high outliers in the late period
+            early_q95 = np.percentile(early_latency, 95)
+            late_outliers = np.sum(late_latency > early_q95 * 10)  # Define a high outlier as > 10x early Q95
+            late_outlier_ratio = late_outliers / len(late_latency)
+
+            print(f"Late outlier ratio: {late_outlier_ratio:.2%}")
+
+            if late_outlier_ratio > 0.3:  # If more than 30% of points are outliers
+                print(f"Late outlier ratio is too high")
+                return False
+
+            # Standard 5: Persistent Degradation Detection
+            # Check if most of the late period latency is significantly higher than the early period
+            persistent_degradation_threshold = 3.0  # This multiplier can be adjusted
+            persistent_degradation_ratio = 0.8  # 80% of late data points need to meet the condition
+
+            # Calculate the threshold for early latency (e.g., 95th percentile)
+            early_threshold = np.percentile(early_latency, 95)
+
+            # Check how many late data points exceed the early threshold by the specified multiplier
+            degraded_points = np.sum(late_latency > early_threshold * persistent_degradation_threshold)
+            degraded_ratio = degraded_points / len(late_latency)
+
+            print(f"Persistent degradation ratio: {degraded_ratio:.2%} (Points exceeding early 95th percentile by {persistent_degradation_threshold} times)")
+
+            if degraded_ratio > persistent_degradation_ratio:
+                print(f"Persistent degradation detected: {degraded_ratio:.2%} > {persistent_degradation_ratio:.2%}")
+                return False
+
+            # Optional: Stricter check - use early mean as baseline
+            early_mean_threshold = early_mean * persistent_degradation_threshold
+            points_above_mean_threshold = np.sum(late_latency > early_mean_threshold)
+            ratio_above_mean = points_above_mean_threshold / len(late_latency)
+
+            print(f"Late points exceeding early mean by {persistent_degradation_threshold} times: {ratio_above_mean:.2%}")
+            
+            if ratio_above_mean > persistent_degradation_ratio:
+                print(f"Persistent degradation detected: {ratio_above_mean:.2%} > {persistent_degradation_ratio:.2%}")
+                return False
+
+            print("Latency trend is consistent")
+            return True
+            
+        except Exception as e:
+            print(f"An error occurred during analysis: {e}")
+            return False
+
+    def run_workload(self, problem, kubectl, namespace='default'):
+        problem.start_workload()
+        job_name = problem.wrk.job_name
+        kubectl.wait_for_job_completion(job_name=job_name, namespace=namespace, timeout=1200)
+        workentries = problem.wrk.retrievelog()
+        workentry = workentries[0] if workentries else None
+        print(f"Workload Entry: {workentry}")
+        return workentry
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+
+        results = {}
+        workentry = self.run_workload(problem=self.problem, kubectl=kubectl)
+
+        not_metastable = self.analyze_latency_trend(workentry.log) if workentry else False
+
+        if not_metastable:
+            # Check if all services (not only faulty service) is back to normal (Running)
+            pod_list = kubectl.list_pods(namespace)
+            for pod in pod_list.items:
+                if pod.status.container_statuses:
+                    # Check container statuses
+                    for container_status in pod.status.container_statuses:
+                        if (
+                            container_status.state.waiting
+                            and container_status.state.waiting.reason == "CrashLoopBackOff"
+                        ):
+                            print(f"Container {container_status.name} is in CrashLoopBackOff")
+                            not_metastable = False
+                        elif (
+                            container_status.state.terminated
+                            and container_status.state.terminated.reason != "Completed"
+                        ):
+                            print(
+                                f"Container {container_status.name} is terminated with reason: {container_status.state.terminated.reason}"
+                            )
+                            not_metastable = False
+                        elif not container_status.ready:
+                            print(f"Container {container_status.name} is not ready")
+                            not_metastable = False
+
+                if not not_metastable:
+                    break
+
+        results["success"] = not_metastable
+
+        print(f"Mitigation Result: {'Pass ✅' if not_metastable else 'Fail ❌'}")
+
+        return results
diff --git a/sregym/conductor/oracles/scale_pod_zero_mitigation.py b/sregym/conductor/oracles/scale_pod_zero_mitigation.py
new file mode 100644
index 0000000..35d0f7b
--- /dev/null
+++ b/sregym/conductor/oracles/scale_pod_zero_mitigation.py
@@ -0,0 +1,55 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class ScalePodZeroMitigationOracle(Oracle):
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        faulty_service = self.problem.faulty_service
+        results = {}
+
+        all_normal = True
+
+        deployment = kubectl.get_deployment(faulty_service, namespace)
+
+        if deployment is None:
+            print(f"Deployment for {faulty_service} not found")
+            all_normal = False
+        else:
+            desired_replicas = deployment.spec.replicas
+            available_replicas = deployment.status.available_replicas
+
+            if desired_replicas != 1 or available_replicas != 1:
+                print(
+                    f"Faulty service {faulty_service} has {available_replicas} available replicas out of {desired_replicas} desired"
+                )
+                all_normal = False
+
+        # Check if all services are running normally
+        pod_list = kubectl.list_pods(namespace)
+        for pod in pod_list.items:
+            for container_status in pod.status.container_statuses:
+                if container_status.state.waiting and container_status.state.waiting.reason == "CrashLoopBackOff":
+                    print(f"Container {container_status.name} is in CrashLoopBackOff")
+                    all_normal = False
+                elif container_status.state.terminated and container_status.state.terminated.reason != "Completed":
+                    print(
+                        f"Container {container_status.name} is terminated with reason: {container_status.state.terminated.reason}"
+                    )
+                    all_normal = False
+                elif not container_status.ready:
+                    print(f"Container {container_status.name} is not ready")
+                    all_normal = False
+
+            if not all_normal:
+                break
+
+        results["success"] = all_normal
+
+        print(f"Mitigation Result: {'Pass ✅' if all_normal else 'Fail ❌'}")
+
+        return results
diff --git a/sregym/conductor/oracles/service_endpoint_mitigation.py b/sregym/conductor/oracles/service_endpoint_mitigation.py
new file mode 100644
index 0000000..249a5f1
--- /dev/null
+++ b/sregym/conductor/oracles/service_endpoint_mitigation.py
@@ -0,0 +1,32 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class ServiceEndpointMitigationOracle(Oracle):
+    """
+    Oracle that verifies every Service has at least one ready endpoint.
+    """
+
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Service Endpoints Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+
+        # Always verify every Service in the namespace.
+        services_to_check = [svc.metadata.name for svc in kubectl.list_services(namespace).items]
+
+        for svc_name in services_to_check:
+            try:
+                ep = kubectl.core_v1_api.read_namespaced_endpoints(svc_name, namespace)
+                has_ready = any(subset.addresses for subset in (ep.subsets or []))
+                if not has_ready:
+                    print(f"❌ Service {svc_name} has NO ready endpoints")
+                    return {"success": False}
+            except Exception as e:
+                print(f"❌ Error retrieving endpoints for service {svc_name}: {e}")
+                return {"success": False}
+
+        print("[✅] All checked services have ready endpoints.")
+        return {"success": True}
diff --git a/sregym/conductor/oracles/sustained_readiness.py b/sregym/conductor/oracles/sustained_readiness.py
new file mode 100644
index 0000000..7fb53a2
--- /dev/null
+++ b/sregym/conductor/oracles/sustained_readiness.py
@@ -0,0 +1,88 @@
+import time
+from sregym.conductor.oracles.base import Oracle
+
+
+class SustainedReadinessOracle(Oracle):
+
+    importance = 1.0
+
+    def __init__(self, problem, buffer_period=10, sustained_period=60, check_interval=0.5):
+        super().__init__(problem)
+        self.buffer_period = buffer_period
+        self.sustained_period = sustained_period
+        self.check_interval = check_interval
+
+    def evaluate(self) -> dict:
+        print("== Sustained Readiness Evaluation ==")
+        
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        
+        print(f"⏳ Waiting up to {self.buffer_period}s for all pods to become ready...")
+        start_time = time.time()
+        all_ready_start = None
+        
+        while time.time() - start_time < self.buffer_period:
+            if self._check_all_pods_ready(kubectl, namespace):
+                all_ready_start = time.time()
+                print(f"✅ All pods ready after {all_ready_start - start_time:.1f}s")
+                break
+            time.sleep(self.check_interval)
+        
+        if all_ready_start is None:
+            print(f"❌ All the pods did not become ready within {self.buffer_period}s buffer period")
+            return {"success": False}
+        
+
+        print(f"⏱️  Monitoring pods for {self.sustained_period}s sustained readiness...")
+        monitoring_start = time.time()
+        
+        while time.time() - monitoring_start < self.sustained_period:
+            elapsed = time.time() - monitoring_start
+             
+            if not self._check_all_pods_ready(kubectl, namespace, verbose=True):
+                print(f"❌ Pod readiness check failed after {elapsed:.1f}s of monitoring")
+                return {"success": False}
+            
+            if int(elapsed) % 10 == 0 and elapsed > 0:
+                print(f"🚧 Pods still ready after {int(elapsed)}s...")
+            
+            time.sleep(self.check_interval)
+        
+        print(f"✅ All pods remained ready for the full {self.sustained_period}s period!")
+        return {"success": True}
+    
+    def _check_all_pods_ready(self, kubectl, namespace, verbose=False) -> bool:
+        try:
+            pod_list = kubectl.list_pods(namespace)
+            all_normal = True
+
+            for pod in pod_list.items:
+                if pod.status.phase != "Running":
+                    if verbose:
+                        print(f"⚠️ Pod {pod.metadata.name} is in phase: {pod.status.phase}")
+                    all_normal = False
+                    break
+                
+                for container_status in pod.status.container_statuses:
+                    if container_status.state.waiting and container_status.state.waiting.reason:
+                        if verbose:
+                            print(f"⚠️ Container {container_status.name} is waiting: {container_status.state.waiting.reason}")
+                        all_normal = False
+                    
+                    elif container_status.state.terminated and container_status.state.terminated.reason != "Completed":
+                        if verbose:
+                            print(f"⚠️ Container {container_status.name} terminated: {container_status.state.terminated.reason}")
+                        all_normal = False
+                    
+                    elif not container_status.ready:
+                        if verbose:
+                            print(f"⚠️ Container {container_status.name} is not ready")
+                        all_normal = False
+            
+            return all_normal
+            
+        except Exception as e:
+            if verbose:
+                print(f"⚠️ Error checking pod readiness: {e}")
+            return False 
\ No newline at end of file
diff --git a/sregym/conductor/oracles/target_port_mitigation.py b/sregym/conductor/oracles/target_port_mitigation.py
new file mode 100644
index 0000000..7d73fc9
--- /dev/null
+++ b/sregym/conductor/oracles/target_port_mitigation.py
@@ -0,0 +1,53 @@
+from sregym.conductor.oracles.base import Oracle
+from sregym.conductor.oracles.utils import is_exact_match
+
+
+class TargetPortMisconfigMitigationOracle(Oracle):
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        faulty_service = self.problem.faulty_service
+        results = {}
+
+        # Check if target port has been reset to 9090
+        configs = kubectl.get_service_json(faulty_service, namespace)
+        target_port = configs["spec"]["ports"][0]["targetPort"]
+        all_normal = is_exact_match(target_port, 9090)
+
+        if all_normal:
+            # Check if all services (not only faulty service) is back to normal (Running)
+            pod_list = kubectl.list_pods(namespace)
+            for pod in pod_list.items:
+                if pod.status.container_statuses:
+                    # Check container statuses
+                    for container_status in pod.status.container_statuses:
+                        if (
+                            container_status.state.waiting
+                            and container_status.state.waiting.reason == "CrashLoopBackOff"
+                        ):
+                            print(f"Container {container_status.name} is in CrashLoopBackOff")
+                            all_normal = False
+                        elif (
+                            container_status.state.terminated
+                            and container_status.state.terminated.reason != "Completed"
+                        ):
+                            print(
+                                f"Container {container_status.name} is terminated with reason: {container_status.state.terminated.reason}"
+                            )
+                            all_normal = False
+                        elif not container_status.ready:
+                            print(f"Container {container_status.name} is not ready")
+                            all_normal = False
+
+                if not all_normal:
+                    break
+
+        results["success"] = all_normal
+
+        print(f"Mitigation Result: {'Pass ✅' if all_normal else 'Fail ❌'}")
+
+        return results
diff --git a/sregym/conductor/oracles/utils.py b/sregym/conductor/oracles/utils.py
new file mode 100644
index 0000000..e0e4bbf
--- /dev/null
+++ b/sregym/conductor/oracles/utils.py
@@ -0,0 +1,11 @@
+"""Helper functions for evaluation"""
+
+
+def is_exact_match(pred: int | str | list, target: int | str | list) -> bool:
+    """Return True if the prediction is an exact match to the target."""
+    return pred == target
+
+
+def is_subset(pred: list, target: list) -> bool:
+    """Return True if the prediction is a subset of the target."""
+    return set(pred).issubset(set(target))
diff --git a/sregym/conductor/oracles/valkey_auth_mitigation.py b/sregym/conductor/oracles/valkey_auth_mitigation.py
new file mode 100644
index 0000000..cb87b22
--- /dev/null
+++ b/sregym/conductor/oracles/valkey_auth_mitigation.py
@@ -0,0 +1,44 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class ValkeyAuthMitigation(Oracle):
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Mitigation Evaluation ==")
+        results = {"success": False}
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+
+        # Find the valkey pod
+        valkey_pods = [
+            pod.metadata.name for pod in kubectl.list_pods(namespace).items if "valkey-cart" in pod.metadata.name
+        ]
+
+        if not valkey_pods:
+            print("❌ No Valkey pod found.")
+            return results
+
+        valkey_pod = valkey_pods[0]
+        print(f"🔍 Found Valkey pod: {valkey_pod}")
+
+        # Check the current password setting in Valkey
+        try:
+            command = f"kubectl exec -n {namespace} {valkey_pod} -- valkey-cli CONFIG GET requirepass"
+            output = kubectl.exec_command(command)
+
+            if "requirepass" in output:
+                parts = output.strip().splitlines()
+                if len(parts) == 2 and parts[1] == "":
+                    results["success"] = True
+                    print("✅ Valkey password is cleared. Authentication restored.")
+                else:
+                    print(f"❌ Valkey password still set: {parts[1]}")
+            else:
+                print(f"❌ Unexpected valkey-cli CONFIG GET output: {output}")
+        except Exception as e:
+            print(f"❌ Error querying Valkey password: {e}")
+
+        print(f"Mitigation Result: {'Pass ✅' if results['success'] else 'Fail ❌'}")
+        return results
diff --git a/sregym/conductor/oracles/workload.py b/sregym/conductor/oracles/workload.py
new file mode 100644
index 0000000..27bdde0
--- /dev/null
+++ b/sregym/conductor/oracles/workload.py
@@ -0,0 +1,37 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+def truncate(text: str, length: int = 100) -> str:
+    """Truncate text to a specified length, adding ellipsis if truncated."""
+    if len(text) > length:
+        text = text[:length] + "..."
+    text = text.encode("unicode_escape").decode("utf-8")
+    return text
+
+
+class WorkloadOracle(Oracle):
+    importance = 3.0
+
+    def __init__(self, problem, wrk_manager=None):
+        super().__init__(problem)
+        self.wrk = wrk_manager
+
+    def evaluate(self) -> dict:
+        try:
+            self.wrk.collect(number=1)
+            entries = self.wrk.collect(number=50)
+            for entry in entries:
+                if not entry.ok:
+                    print(f"[❌] Workload entry at {entry.time} failed with log: {truncate(entry.log, 100)}")
+                    return {
+                        "success": False,
+                    }
+            print(f"[✅] Successfully collected {len(entries)} workload entries.")
+            return {
+                "success": True,
+            }
+        except Exception as e:
+            print(f"[❌] Error during workload collection: {e}")
+            return {
+                "success": False,
+            }
diff --git a/sregym/conductor/oracles/wrong_bin_mitigation.py b/sregym/conductor/oracles/wrong_bin_mitigation.py
new file mode 100644
index 0000000..b9fbebd
--- /dev/null
+++ b/sregym/conductor/oracles/wrong_bin_mitigation.py
@@ -0,0 +1,37 @@
+from sregym.conductor.oracles.base import Oracle
+
+
+class WrongBinMitigationOracle(Oracle):
+    importance = 1.0
+
+    def evaluate(self) -> dict:
+        print("== Evaluation ==")
+
+        kubectl = self.problem.kubectl
+        namespace = self.problem.namespace
+        results = {}
+
+        # Check if the deployment was updated to use the right binary
+        expected_command = (
+            "profile"  # Command dictates which binary will be ran, we want to run /go/bin/profile and not /go/bin/geo
+        )
+
+        try:
+            deployment = kubectl.get_deployment(self.problem.faulty_service, namespace)
+            containers = deployment.spec.template.spec.containers
+
+            for container in containers:
+                command = container.command or []
+                if expected_command not in command:
+                    print(f"[❌] Deployment for container '{container.name}' is using wrong binary: {command}")
+                    results["success"] = False
+                    return results
+
+            print("[✅] Deployment is using the correct binary.")
+            results["success"] = True
+            return results
+
+        except Exception as e:
+            print(f"[ERROR] Exception during evaluation: {e}")
+            results["success"] = False
+            return results
diff --git a/sregym/conductor/parser.py b/sregym/conductor/parser.py
new file mode 100644
index 0000000..c01ce6b
--- /dev/null
+++ b/sregym/conductor/parser.py
@@ -0,0 +1,182 @@
+"""Parser for various APIs that an Agent may invoke."""
+
+import ast
+import re
+import logging
+
+class ResponseParsingError(Exception):
+    def __init__(self, message):
+        super().__init__(f"Error parsing response: {message}")
+        self.message = message
+
+
+class ResponseParser:
+    def __init__(self):
+        self.logger = logging.getLogger("sregym-global")
+        self.local_logger = logging.getLogger("all.sregym.conductor")
+
+    def parse(self, response: str) -> dict:
+        """Parses the response string to extract the API name and arguments.
+
+        Args:
+            response (str): The response string (typically an agent's response).
+
+        Returns:
+            dict: The parsed API name and arguments.
+        """
+        code_block = self.extract_codeblock(response)
+        self.local_logger.debug(f"Extracted code block from submit: {code_block}")
+        context = self.extract_context(response)
+        self.local_logger.debug(f"Extracted context from submit: {context}")
+        api_name = self.parse_api_name(code_block)
+        self.local_logger.debug(f"Parsed API name from submit: {api_name}")
+        args, kwargs = self.parse_args(code_block, is_shell_command=api_name == "exec_shell")
+        self.local_logger.debug(f"Parsed args and kwargs from submit: {args}, {kwargs}")
+        return {
+            "api_name": api_name,
+            "args": args,
+            "kwargs": kwargs,
+            "context": context,
+        }
+
+    def extract_codeblock(self, response: str) -> str:
+        """Extract a markdown code block from a string.
+
+        Args:
+            response (str): The response string.
+
+        Returns:
+            str: The extracted code block.
+        """
+        outputlines = response.split("\n")
+        indexlines = [i for i, line in enumerate(outputlines) if "```" in line]
+        if len(indexlines) < 2:
+            return ""
+        return "\n".join(outputlines[indexlines[0] + 1 : indexlines[1]])
+
+    def extract_context(self, response: str) -> list:
+        """Extract context outside of a code block.
+
+        Args:
+            response (str): The response string.
+
+        Returns:
+            list: The extracted context.
+        """
+        pattern = r"(?:```[\s\S]*?```)|(.*?)(?:(?=```)|$)"
+        matches = re.findall(pattern, response, re.DOTALL)
+        context = [match.strip() for match in matches if match.strip()]
+
+        return context
+
+    def parse_api_name(self, response: str) -> str:
+        """Parses the API name from the response function call.
+
+        >>> parse_api_name("get_logs()")
+        "get_logs"
+
+        Args:
+            response (str): The response string.
+
+        Returns:
+            str: The API name.
+        """
+
+        first_parenthesis = response.find("(")
+        if first_parenthesis != -1:
+            return response[:first_parenthesis].strip()
+        return ""
+
+    def parse_args(self, response: str, is_shell_command=False) -> tuple[list, dict]:
+        """Parses the arguments of a function call.
+
+        >>> parse_args("get_logs(10, 'error')")
+        [10, 'error']
+
+        Args:
+            response (str): The response string.
+
+        Returns:
+            args (list): A list of positional arguments.
+            kwargs (dict): A dictionary of keyword arguments.
+        """
+        first_parenthesis = response.find("(")
+        last_parenthesis = response.rfind(")")
+
+        if first_parenthesis != -1 and last_parenthesis != -1:
+            args_str = response[first_parenthesis + 1 : last_parenthesis].strip()
+
+            # case: no arguments
+            if not args_str:
+                return [], {}
+
+            # case: single quoted string argument
+            if is_shell_command:
+                # remove keyword
+                if args_str.startswith("command="):
+                    args_str = args_str.replace("command=", "").strip()
+
+                if args_str.startswith('"') and args_str.endswith('"'):
+                    arg_str = args_str.strip('"')
+                elif args_str.startswith("'") and args_str.endswith("'"):
+                    arg_str = args_str.strip("'")
+                else:
+                    raise ResponseParsingError("Error when parsing response: commands must be quoted strings")
+
+                arg_str = arg_str.replace('\\"', '"').replace("\\'", "'")
+                return [arg_str], {}
+
+            # case: positional/kwargs handled w/ ast.parse
+            try:
+                parsed = ast.parse(f"func({args_str})")
+                call = parsed.body[0].value
+                args, kwargs = [], {}
+
+                for arg in call.args:
+                    if isinstance(arg, ast.Constant):
+                        args.append(arg.value)
+                    elif isinstance(arg, (ast.List, ast.Tuple)):
+                        args.append([self.eval_ast_node(elt) for elt in arg.elts])
+                    elif isinstance(arg, ast.Dict):
+                        args.append(
+                            {
+                                self.eval_ast_node(key): self.eval_ast_node(value)
+                                for key, value in zip(arg.keys, arg.values)
+                            }
+                        )
+                    else:
+                        args.append(self.eval_ast_node(arg))
+
+                for kwarg in call.keywords:
+                    kwargs[kwarg.arg] = self.eval_ast_node(kwarg.value)
+
+                return args, kwargs
+            except Exception as e:
+                self.logger.info(f"[ERROR] Error parsing response: {str(e)}")
+                
+                if args_str:
+                    self.local_logger.error(f"Error parsing response: {str(e)} content to be parsed: func({args_str})")
+                else:
+                    self.local_logger.error(f"Error parsing response: {str(e)} content to be parsed: func()")
+                
+                raise ResponseParsingError(f"Error parsing response: {str(e)}")
+
+        self.local_logger.error("No API call found!")
+        raise ResponseParsingError("No API call found!")
+
+    def eval_ast_node(self, node):
+        """Evaluates an AST node to its Python value."""
+        if isinstance(node, ast.Constant):
+            return node.value
+        elif isinstance(node, ast.List):
+            return [self.eval_ast_node(elt) for elt in node.elts]
+        elif isinstance(node, ast.Dict):
+            return {self.eval_ast_node(key): self.eval_ast_node(value) for key, value in zip(node.keys, node.values)}
+        elif isinstance(node, ast.Name):
+            if node.id == "True":
+                return True
+            elif node.id == "False":
+                return False
+            elif node.id == "None":
+                return None
+        raise ValueError(f"Unsupported AST node type: {type(node)}")
diff --git a/sregym/conductor/problems/__init__.py b/sregym/conductor/problems/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/conductor/problems/ad_service_failure.py b/sregym/conductor/problems/ad_service_failure.py
new file mode 100644
index 0000000..81fc65b
--- /dev/null
+++ b/sregym/conductor/problems/ad_service_failure.py
@@ -0,0 +1,32 @@
+"""Otel demo adServiceFailure feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class AdServiceFailure(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "ad"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that causes it to fail, resulting in service unavailability."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("adFailure")
+        print(f"Fault: adServiceFailure | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("adFailure")
diff --git a/sregym/conductor/problems/ad_service_high_cpu.py b/sregym/conductor/problems/ad_service_high_cpu.py
new file mode 100644
index 0000000..070ab3c
--- /dev/null
+++ b/sregym/conductor/problems/ad_service_high_cpu.py
@@ -0,0 +1,33 @@
+"""Otel demo adServiceHighCpu feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class AdServiceHighCpu(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "ad"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that causes high CPU usage, resulting in performance degradation."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("adHighCpu")
+        print(f"Fault: AdServiceHighCpu | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("adHighCpu")
diff --git a/sregym/conductor/problems/ad_service_manual_gc.py b/sregym/conductor/problems/ad_service_manual_gc.py
new file mode 100644
index 0000000..eb4c63a
--- /dev/null
+++ b/sregym/conductor/problems/ad_service_manual_gc.py
@@ -0,0 +1,32 @@
+"""Otel demo adServiceManualGc feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class AdServiceManualGc(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "ad"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that triggers manual garbage collection, causing performance degradation and potential service interruptions."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("adManualGc")
+        print(f"Fault: adServiceManualGc | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("adManualGc")
diff --git a/sregym/conductor/problems/assign_non_existent_node.py b/sregym/conductor/problems/assign_non_existent_node.py
new file mode 100644
index 0000000..442560d
--- /dev/null
+++ b/sregym/conductor/problems/assign_non_existent_node.py
@@ -0,0 +1,47 @@
+"""Assign pods to non existent node problem for the SocialNetwork application."""
+
+import time
+
+from sregym.conductor.oracles.assign_non_existent_node_mitigation import AssignNonExistentNodeMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class AssignNonExistentNode(Problem):
+    def __init__(self):
+        self.app = SocialNetwork()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = "user-service"
+        self.root_cause = f"The deployment `{self.faulty_service}` is configured with a nodeSelector pointing to a non-existent node (extra-node), causing pods to remain in Pending state."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = AssignNonExistentNodeMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="assign_to_non_existent_node",
+            microservices=[self.faulty_service],
+        )
+        time.sleep(25)
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="assign_to_non_existent_node",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/auth_miss_mongodb.py b/sregym/conductor/problems/auth_miss_mongodb.py
new file mode 100644
index 0000000..64da916
--- /dev/null
+++ b/sregym/conductor/problems/auth_miss_mongodb.py
@@ -0,0 +1,44 @@
+"""MongoDB authentication missing problem in the SocialNetwork application."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class MongoDBAuthMissing(Problem):
+    def __init__(self):
+        self.app = SocialNetwork()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = "url-shorten-mongodb"
+        self.root_cause = f"The MongoDB service `{self.faulty_service}` is configured to require TLS authentication, but the certificates are not properly configured, causing connection failures."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="auth_miss_mongodb",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="auth_miss_mongodb",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/base.py b/sregym/conductor/problems/base.py
new file mode 100644
index 0000000..ecdb646
--- /dev/null
+++ b/sregym/conductor/problems/base.py
@@ -0,0 +1,28 @@
+"""Problem base class"""
+
+from abc import ABC, abstractmethod
+
+
+class Problem(ABC):
+    def __init__(self, app, namespace: str):
+        self.app = app
+        self.namespace = namespace
+        self.fault_injected = False
+        self.results = {}
+        self.root_cause = None  # root cause of the problem in natural language
+
+        # Optional: attach oracles in subclass
+        self.diagnosis_oracle = None
+        self.mitigation_oracle = None
+
+    def requires_khaos(self) -> bool:
+        """Override this method to return True if the problem requires Khaos for fault injection."""
+        return False
+
+    @abstractmethod
+    def inject_fault(self):
+        pass
+
+    @abstractmethod
+    def recover_fault(self):
+        pass
diff --git a/sregym/conductor/problems/capacity_decrease_rpc_retry_storm.py b/sregym/conductor/problems/capacity_decrease_rpc_retry_storm.py
new file mode 100644
index 0000000..a757ff3
--- /dev/null
+++ b/sregym/conductor/problems/capacity_decrease_rpc_retry_storm.py
@@ -0,0 +1,55 @@
+from sregym.conductor.oracles.detection import DetectionOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.rpc_retry_storm_mitigation import RPCRetryStormMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.generators.workload.blueprint_hotel_work import BHotelWrk, BHotelWrkWorkloadManager
+from sregym.service.apps.blueprint_hotel_reservation import BlueprintHotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class CapacityDecreaseRPCRetryStorm(Problem):
+    def __init__(self):
+        self.app = BlueprintHotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = "rpc"
+        self.root_cause = f"The ConfigMap `{self.faulty_service}` has misconfigured RPC timeout (50ms) and retry settings (30 retries), causing an RPC retry storm that overwhelms the service. It is a metastable failure."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.mitigation_oracle = RPCRetryStormMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.inject_rpc_timeout_retries_misconfiguration(configmap=self.faulty_service)
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+        self.mitigation_oracle.run_workload(problem=self, kubectl=self.kubectl)
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.recover_rpc_timeout_retries_misconfiguration(configmap=self.faulty_service)
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    def create_workload(self, tput: int = None, duration: str = None, multiplier: int = None):
+        if tput is None:
+            tput = 3000
+        if duration is None:
+            duration = "500s"
+        if multiplier is None:
+            multiplier = 1
+        self.wrk = BHotelWrkWorkloadManager(
+            wrk=BHotelWrk(tput=tput, duration=duration, multiplier=multiplier),
+            CPU_containment=True,
+        )
+
+    def start_workload(self):
+        if not hasattr(self, "wrk"):
+            self.create_workload()
+        self.wrk.start()
diff --git a/sregym/conductor/problems/cart_service_failure.py b/sregym/conductor/problems/cart_service_failure.py
new file mode 100644
index 0000000..b6b3fe3
--- /dev/null
+++ b/sregym/conductor/problems/cart_service_failure.py
@@ -0,0 +1,32 @@
+"""Otel demo cartServiceFailure feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class CartServiceFailure(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "cart"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that causes it to fail, resulting in service unavailability."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("cartFailure")
+        print(f"Fault: cartServiceFailure | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("cartFailure")
diff --git a/sregym/conductor/problems/configmap_drift.py b/sregym/conductor/problems/configmap_drift.py
new file mode 100644
index 0000000..31d6a16
--- /dev/null
+++ b/sregym/conductor/problems/configmap_drift.py
@@ -0,0 +1,69 @@
+"""ConfigMap drift problem - removes critical keys from mounted ConfigMap."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.missing_cm_key_mitigation import MissingCmKeyMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ConfigMapDrift(Problem):
+    def __init__(self, faulty_service: str = "geo"):
+        self.faulty_service = faulty_service
+
+        self.app = HotelReservation()
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The ConfigMap `{self.faulty_service}-config` is missing critical configuration keys (e.g., GeoMongoAddress), causing the deployment `{self.faulty_service}` to malfunction."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.configmap_name = f"{self.faulty_service}-config"
+
+        self.app.create_workload()
+        self.mitigation_oracle = MissingCmKeyMitigationOracle(
+            problem=self,
+            configmap_name=self.configmap_name,
+            expected_keys=[
+                "consulAddress",
+                "jaegerAddress",
+                "FrontendPort",
+                "GeoPort",
+                "GeoMongoAddress",
+                "ProfilePort",
+                "ProfileMongoAddress",
+                "ProfileMemcAddress",
+                "RatePort",
+                "RateMongoAddress",
+                "RateMemcAddress",
+                "RecommendPort",
+                "RecommendMongoAddress",
+                "ReservePort",
+                "ReserveMongoAddress",
+                "ReserveMemcAddress",
+                "SearchPort",
+                "UserPort",
+                "UserMongoAddress",
+                "KnativeDomainName",
+            ],
+        )
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.inject_configmap_drift(microservices=[self.faulty_service])
+
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.recover_configmap_drift(microservices=[self.faulty_service])
+
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/duplicate_pvc_mounts.py b/sregym/conductor/problems/duplicate_pvc_mounts.py
new file mode 100644
index 0000000..5ab5f83
--- /dev/null
+++ b/sregym/conductor/problems/duplicate_pvc_mounts.py
@@ -0,0 +1,55 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.oracles.workload import WorkloadOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class DuplicatePVCMounts(Problem):
+
+    def __init__(self, app_name: str = "hotel_reservation", faulty_service: str = "mongodb-rate"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if self.app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif self.app_name == "social_network":
+            self.app = SocialNetwork()
+        elif self.app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.root_cause = f"Multiple replicas of the deployment `{self.faulty_service}` are configured to share a single ReadWriteOnce PVC, causing mount conflicts and preventing pods from starting."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="duplicate_pvc_mounts",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="duplicate_pvc_mounts",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/env_variable_shadowing.py b/sregym/conductor/problems/env_variable_shadowing.py
new file mode 100644
index 0000000..9dba61e
--- /dev/null
+++ b/sregym/conductor/problems/env_variable_shadowing.py
@@ -0,0 +1,45 @@
+from sregym.conductor.oracles.compound import CompoundedOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.oracles.workload import WorkloadOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class EnvVariableShadowing(Problem):
+    def __init__(self, app_name: str = "astronomy_shop", faulty_service: str = "frontend-proxy"):
+        self.faulty_service = faulty_service
+        self.app_name = app_name
+
+        if self.app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported application: {self.app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The deployment `{self.faulty_service}` has environment variables (e.g., FRONTEND_HOST) that shadow expected values, causing incorrect service configuration."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.inject_env_variable_shadowing(microservices=[self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.recover_env_variable_shadowing(microservices=[self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}")
diff --git a/sregym/conductor/problems/faulty_image_correlated.py b/sregym/conductor/problems/faulty_image_correlated.py
new file mode 100644
index 0000000..26f33d0
--- /dev/null
+++ b/sregym/conductor/problems/faulty_image_correlated.py
@@ -0,0 +1,48 @@
+from sregym.conductor.oracles.incorrect_image_mitigation import IncorrectImageMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class FaultyImageCorrelated(Problem):
+    def __init__(self):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = ["frontend", "geo", "profile", "rate", "recommendation", "reservation", "user", "search"]
+        self.injector = ApplicationFaultInjector(namespace=self.namespace)
+        super().__init__(app=self.app, namespace=self.namespace)
+        self.root_cause = "The deployment `frontend`, `geo`, `profile`, `rate`, `recommendation`, `reservation`, `user`, and `search` are configured to use a faulty image 'jackcuii/hotel-reservation:latest'."
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        # not really the incorrect image problem, just reuse the incorrect image function
+        self.mitigation_oracle = IncorrectImageMitigationOracle(
+            problem=self,
+            actual_images={service: "jackcuii/hotel-reservation:latest" for service in self.faulty_service},
+        )
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        # not really the incorrect image problem, just reuse the incorrect image function
+        for service in self.faulty_service:
+            self.injector.inject_incorrect_image(
+                deployment_name=service, namespace=self.namespace, bad_image="jackcuii/hotel-reservation:latest"
+            )
+            print(f"Service: {service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        for service in self.faulty_service:
+            self.injector.recover_incorrect_image(
+                deployment_name=service,
+                namespace=self.namespace,
+                correct_image="yinfangchen/hotel-reservation:latest",
+            )
diff --git a/sregym/conductor/problems/gc_capacity_degradation.py b/sregym/conductor/problems/gc_capacity_degradation.py
new file mode 100644
index 0000000..d1019ec
--- /dev/null
+++ b/sregym/conductor/problems/gc_capacity_degradation.py
@@ -0,0 +1,60 @@
+from sregym.conductor.oracles.detection import DetectionOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.generators.workload.blueprint_hotel_work import BHotelWrk, BHotelWrkWorkloadManager
+from sregym.service.apps.blueprint_hotel_reservation import BlueprintHotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class GCCapacityDegradation(Problem):
+    def __init__(self):
+        self.app = BlueprintHotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = "garbage collection"
+        self.root_cause = "All deployments have the GOGC environment variable set to 10 (instead of the default 100), causing aggressive garbage collection that degrades service capacity and performance. This is a metastable failure."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.inject_gogc_env_variable_patch(gogc_value="10")
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+        self.run_workload()
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.recover_gogc_env_variable_patch()
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    def create_workload(self, tput: int = None, duration: str = None, multiplier: int = None):
+        if tput is None:
+            tput = 2000
+        if duration is None:
+            duration = "500s"
+        if multiplier is None:
+            multiplier = 6
+        self.wrk = BHotelWrkWorkloadManager(
+            wrk=BHotelWrk(tput=tput, duration=duration, multiplier=multiplier),
+        )
+
+    def start_workload(self):
+        if not hasattr(self, "wrk"):
+            self.create_workload()
+        self.wrk.start()
+
+    def run_workload(self, namespace="default"):
+        self.start_workload()
+        job_name = self.wrk.job_name
+        self.kubectl.wait_for_job_completion(job_name=job_name, namespace=namespace, timeout=1000)
+        workentries = self.wrk.retrievelog()
+        workentry = workentries[0] if workentries else None
+        print(f"Workload Entry: {workentry}")
+        return workentry
diff --git a/sregym/conductor/problems/image_slow_load.py b/sregym/conductor/problems/image_slow_load.py
new file mode 100644
index 0000000..0ef667d
--- /dev/null
+++ b/sregym/conductor/problems/image_slow_load.py
@@ -0,0 +1,33 @@
+"""Otel demo imageSlowLoad feature flag fault."""
+
+from sregym.conductor.oracles.detection import DetectionOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ImageSlowLoad(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "frontend"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that causes slow image loading, resulting in degraded user experience and performance issues."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("imageSlowLoad")
+        print(f"Fault: imageSlowLoad | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("imageSlowLoad")
diff --git a/sregym/conductor/problems/incorrect_image.py b/sregym/conductor/problems/incorrect_image.py
new file mode 100644
index 0000000..517b9e9
--- /dev/null
+++ b/sregym/conductor/problems/incorrect_image.py
@@ -0,0 +1,46 @@
+from sregym.conductor.oracles.incorrect_image_mitigation import IncorrectImageMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class IncorrectImage(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = ["product-catalog"]
+        self.injector = ApplicationFaultInjector(namespace=self.namespace)
+        self.root_cause = (
+            "The 'product-catalog' deployment is mis-configured to pull the non-existent image 'app-image:latest'."
+        )
+        super().__init__(app=self.app, namespace=self.namespace)
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = IncorrectImageMitigationOracle(
+            problem=self, actual_images={"product-catalog": "app-image:latest"}
+        )
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        for service in self.faulty_service:
+            self.injector.inject_incorrect_image(
+                deployment_name=service, namespace=self.namespace, bad_image="app-image:latest"
+            )
+            print(f"Service: {service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        for service in self.faulty_service:
+            self.injector.recover_incorrect_image(
+                deployment_name=service,
+                namespace=self.namespace,
+                correct_image="ghcr.io/open-telemetry/demo:2.0.2-productcatalogservice",
+            )
diff --git a/sregym/conductor/problems/incorrect_port_assignment.py b/sregym/conductor/problems/incorrect_port_assignment.py
new file mode 100644
index 0000000..9d32d30
--- /dev/null
+++ b/sregym/conductor/problems/incorrect_port_assignment.py
@@ -0,0 +1,44 @@
+from sregym.conductor.oracles.incorrect_port import IncorrectPortAssignmentMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class IncorrectPortAssignment(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = "checkout"
+        self.env_var = "PRODUCT_CATALOG_ADDR"
+        self.incorrect_port = "8082"
+        self.correct_port = "8080"
+        self.injector = ApplicationFaultInjector(namespace=self.namespace)
+        self.root_cause = f"The deployment `{self.faulty_service}` has the environment variable `{self.env_var}` configured with an incorrect port `{self.incorrect_port}` instead of `{self.correct_port}`."
+        super().__init__(app=self.app, namespace=self.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = IncorrectPortAssignmentMitigationOracle(problem=self)
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_incorrect_port_assignment(
+            deployment_name=self.faulty_service,
+            component_label=self.faulty_service,
+            env_var=self.env_var,
+            incorrect_port=self.incorrect_port,
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_incorrect_port_assignment(
+            deployment_name="checkout", env_var=self.env_var, correct_port="8080"
+        )
diff --git a/sregym/conductor/problems/ingress_misroute.py b/sregym/conductor/problems/ingress_misroute.py
new file mode 100644
index 0000000..9463f5d
--- /dev/null
+++ b/sregym/conductor/problems/ingress_misroute.py
@@ -0,0 +1,77 @@
+from kubernetes import client
+
+from sregym.conductor.oracles.ingress_misroute_oracle import IngressMisrouteMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class IngressMisroute(Problem):
+    def __init__(self, path="/api", correct_service="frontend-service", wrong_service="recommendation-service"):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.path = path
+        self.correct_service = correct_service
+        self.wrong_service = wrong_service
+        self.ingress_name = "hotel-reservation-ingress"
+        self.root_cause = f"The ingress `{self.ingress_name}` has a misconfigured routing rule for path `{self.path}`, routing traffic to the wrong service (`{self.wrong_service}` instead of `{self.correct_service}`)."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.networking_v1 = client.NetworkingV1Api()
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = IngressMisrouteMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        """Misroute /api to wrong backend"""
+
+        try:
+            ingress = self.networking_v1.read_namespaced_ingress(name=self.ingress_name, namespace=self.namespace)
+        except client.exceptions.ApiException as e:
+            if e.status == 404:
+                ingress_manifest = {
+                    "apiVersion": "networking.k8s.io/v1",
+                    "kind": "Ingress",
+                    "metadata": {"name": self.ingress_name, "namespace": self.namespace},
+                    "spec": {
+                        "rules": [
+                            {
+                                "http": {
+                                    "paths": [
+                                        {
+                                            "path": self.path,
+                                            "pathType": "Prefix",
+                                            "backend": {
+                                                "service": {"name": self.correct_service, "port": {"number": 80}}
+                                            },
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                }
+                self.networking_v1.create_namespaced_ingress(namespace=self.namespace, body=ingress_manifest)
+                ingress = self.networking_v1.read_namespaced_ingress(name=self.ingress_name, namespace=self.namespace)
+            else:
+                raise
+
+        # Modify the rule for /api to wrong_service
+        for rule in ingress.spec.rules:
+            for path in rule.http.paths:
+                if path.path == self.path:
+                    path.backend.service.name = self.wrong_service
+        self.networking_v1.replace_namespaced_ingress(name=self.ingress_name, namespace=self.namespace, body=ingress)
+
+    @mark_fault_injected
+    def recover_fault(self):
+        """Revert misroute to correct backend"""
+        ingress = self.networking_v1.read_namespaced_ingress(name=self.ingress_name, namespace=self.namespace)
+        for rule in ingress.spec.rules:
+            for path in rule.http.paths:
+                if path.path == self.path:
+                    path.backend.service.name = self.correct_service
+        self.networking_v1.replace_namespaced_ingress(name=self.ingress_name, namespace=self.namespace, body=ingress)
diff --git a/sregym/conductor/problems/kafka_queue_problems.py b/sregym/conductor/problems/kafka_queue_problems.py
new file mode 100644
index 0000000..b122c1d
--- /dev/null
+++ b/sregym/conductor/problems/kafka_queue_problems.py
@@ -0,0 +1,32 @@
+"""Otel demo kafkaQueueProblems feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class KafkaQueueProblems(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "kafka"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that causes queue problems, resulting in message processing failures."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("kafkaQueueProblems")
+        print(f"Fault: kafkaQueueProblems | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("kafkaQueueProblems")
diff --git a/sregym/conductor/problems/kubelet_crash.py b/sregym/conductor/problems/kubelet_crash.py
new file mode 100644
index 0000000..cac7c70
--- /dev/null
+++ b/sregym/conductor/problems/kubelet_crash.py
@@ -0,0 +1,42 @@
+import time
+
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_remote_os import RemoteOSFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class KubeletCrash(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.rollout_services = ["frontend", "frontend-proxy", "currency"]
+        self.injector = RemoteOSFaultInjector()
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.root_cause = "The kubelet daemon on a node has crashed, preventing pod scheduling, updates, and management on that node, causing services to become unavailable or stuck."
+
+        # note from JC after talking to Bohan:
+        # We could consider adding an oracle later, but it's not trivial where diagnosis should go
+        # Same with mitigation, this is done with a script to kill the kubelet daemon.
+        # Maybe we could implement an oracle later to check for the status of the kubelet daemon?
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_kubelet_crash()
+        # rollout the services to trigger the failure
+        for service in self.rollout_services:
+            print(f"Rolling out {service}...")
+            self.kubectl.trigger_rollout(deployment_name=service, namespace=self.namespace)
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_kubelet_crash()
+        for service in self.rollout_services:
+            print(f"Rolling out {service}...")
+            self.kubectl.trigger_rollout(deployment_name=service, namespace=self.namespace)
diff --git a/sregym/conductor/problems/latent_sector_error.py b/sregym/conductor/problems/latent_sector_error.py
new file mode 100644
index 0000000..c6cc6d7
--- /dev/null
+++ b/sregym/conductor/problems/latent_sector_error.py
@@ -0,0 +1,312 @@
+from enum import StrEnum
+from typing import Dict, Optional, Tuple
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_kernel import KernelInjector
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.dm_dust_manager import DM_DUST_DEVICE_NAME
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+# Constants
+DEFAULT_TARGET_DEPLOY = "mongodb-geo"
+DEFAULT_NAMESPACE = "hotel-reservation"
+DEFAULT_BAD_BLOCK_STEP = 1000
+TEST_BAD_BLOCKS = [100, 200, 300]
+
+
+class LatentSectorErrorStrategy(StrEnum):
+    """Strategy for injecting bad blocks in dm-dust device."""
+
+    TEST = "test"
+    EVERY_1000 = "every_1000"  # Also test strategy
+    TARGETED = "targeted"
+
+
+class LatentSectorError(Problem):
+    """
+    Simulates latent sector errors (LSE) on a MongoDB PVC
+    (geo, profile, reservation, etc.) using dm-dust inside Khaos.
+    """
+
+    def __init__(
+        self,
+        target_deploy: str = DEFAULT_TARGET_DEPLOY,
+        namespace: str = DEFAULT_NAMESPACE,
+        strategy: LatentSectorErrorStrategy = LatentSectorErrorStrategy.TARGETED,
+    ):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = namespace
+        self.deploy = target_deploy
+        self.injector = KernelInjector(self.kubectl)
+        self.target_node: Optional[str] = None
+        self.pvc_path: Optional[str] = None
+        self.strategy = strategy
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.root_cause = "There's a latent sector error on the hard drive that the mongodb-geo service's data is on."
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+
+    def requires_khaos(self) -> bool:
+        """This problem requires Khaos for dm-dust infrastructure setup."""
+        return True
+
+    def _get_kubectl_json(self, command: str) -> dict:
+        """Execute kubectl command and parse JSON output."""
+        out = self.kubectl.exec_command(command)
+        if not out:
+            raise RuntimeError(f"Command returned empty output: {command}")
+        import json
+
+        return json.loads(out)
+
+    def _discover_node_for_deploy(self) -> Optional[str]:
+        """Return the node where the target deployment is running."""
+        # First try with a label selector (common OpenEBS hotel-reservation pattern)
+        svc = self.deploy.split("-", 1)[-1]  # e.g. "geo"
+        cmd = f"kubectl -n {self.namespace} get pods -l app=mongodb,component={svc} -o json"
+        try:
+            data = self._get_kubectl_json(cmd)
+            for item in data.get("items", []):
+                if item.get("status", {}).get("phase") == "Running":
+                    return item["spec"]["nodeName"]
+        except (KeyError, RuntimeError):
+            pass
+
+        # Fallback: search by pod name prefix
+        cmd = f"kubectl -n {self.namespace} get pods -o json"
+        try:
+            data = self._get_kubectl_json(cmd)
+            for item in data.get("items", []):
+                name = item["metadata"]["name"]
+                if name.startswith(self.deploy) and item.get("status", {}).get("phase") == "Running":
+                    return item["spec"]["nodeName"]
+        except (KeyError, RuntimeError):
+            pass
+
+        return None
+
+    def _discover_pvc(self) -> Tuple[str, str, str]:
+        """
+        Discover PVC information for the target deployment.
+
+        Returns:
+            Tuple of (pvc_name, pv_name, local_path)
+        """
+        cmd = f"kubectl -n {self.namespace} get pvc -o json"
+        data = self._get_kubectl_json(cmd)
+
+        pvc_name, pv_name = None, None
+        deploy_component = self.deploy.split("-")[-1]  # e.g. "geo"
+
+        for item in data.get("items", []):
+            claim = item["metadata"]["name"]
+            if deploy_component in claim:  # match geo, profile, etc.
+                pvc_name = claim
+                pv_name = item["spec"]["volumeName"]
+                break
+
+        if not pvc_name:
+            raise RuntimeError(f"Could not find PVC for deployment {self.deploy}")
+
+        cmd = f"kubectl get pv {pv_name} -o json"
+        pv = self._get_kubectl_json(cmd)
+
+        try:
+            local_path = pv["spec"]["local"]["path"]
+        except KeyError:
+            raise RuntimeError(f"PV {pv_name} does not have a local path (not a local PV)")
+
+        return pvc_name, pv_name, local_path
+
+    def _get_openebs_storage_size(self, node: str) -> Dict[str, int]:
+        """
+        Get storage information for the OpenEBS dm-dust device.
+
+        Returns:
+            Dictionary with sectors, size_bytes, size_mb, size_gb, block_size
+        """
+        script = f"""
+set -e
+DM_NAME={DM_DUST_DEVICE_NAME}
+if [ -e /dev/mapper/$DM_NAME ]; then
+    SECTORS=$(blockdev --getsz /dev/mapper/$DM_NAME)
+    SIZE_BYTES=$(blockdev --getsize64 /dev/mapper/$DM_NAME)
+    SIZE_MB=$((SIZE_BYTES / 1024 / 1024))
+    SIZE_GB=$((SIZE_BYTES / 1024 / 1024 / 1024))
+    BLOCK_SIZE=$(blockdev --getbsz /dev/mapper/$DM_NAME)
+    echo "$SECTORS,$SIZE_BYTES,$SIZE_MB,$SIZE_GB,$BLOCK_SIZE"
+else
+    echo "0,0,0,0,0"
+fi
+"""
+
+        result = self.injector._exec_on_node(node, script).strip()
+        try:
+            sectors, size_bytes, size_mb, size_gb, block_size = result.split(",")
+            return {
+                "sectors": int(sectors),
+                "size_bytes": int(size_bytes),
+                "size_mb": int(size_mb),
+                "size_gb": int(size_gb),
+                "block_size": int(block_size),
+            }
+        except (ValueError, IndexError) as e:
+            raise RuntimeError(f"Failed to parse storage size output: {result}") from e
+
+    def _get_target_file_blocks(self, node: str) -> list[int]:
+        """
+        Identify physical blocks used by MongoDB data files (.wt) on the target node.
+        Returns a list of block numbers (in 512b sectors) to corrupt.
+        """
+        # Find mount point of the dm-dust device
+        cmd = f"lsblk -o MOUNTPOINT -n /dev/mapper/{DM_DUST_DEVICE_NAME}"
+        mount_point = self.injector._exec_on_node(node, cmd).strip()
+
+        if not mount_point:
+            print(f"[MongoDBLSE] Warning: {DM_DUST_DEVICE_NAME} is not mounted. Cannot find target files.")
+            return []
+
+        print(f"[MongoDBLSE] Found mount point: {mount_point}")
+
+        # Script to find blocks
+        script = f"""
+        set -e
+        FILES=$(find {mount_point} -name "*.wt")
+        BAD_BLOCKS=""
+        for FILE in $FILES; do
+            BS=$(stat -f -c %S "$FILE")
+            # Get start of each extent
+            # filefrag -v output format:
+            # ext: logical_offset: physical_offset: length: ...
+            # 0: 0.. 0: 34048.. 34048: 1:
+            OFFSETS=$(filefrag -v "$FILE" | awk '/^[ ]*[0-9]+:/ {{print $4}}' | cut -d. -f1)
+            for OFF in $OFFSETS; do
+                START_SECTOR=$((OFF * BS / 512))
+                # Corrupt 10 sectors (5KB) at the start of each extent to ensure we hit it
+                for I in $(seq 0 9); do
+                    BAD_BLOCKS="$BAD_BLOCKS $((START_SECTOR + I))"
+                done
+            done
+        done
+        echo $BAD_BLOCKS
+        """
+
+        result = self.injector._exec_on_node(node, script).strip()
+        try:
+            return [int(b) for b in result.split()]
+        except ValueError:
+            return []
+
+    def _inject_badblocks_by_strategy(self, node: str, storage_info: Dict[str, int]) -> None:
+        """Inject bad blocks according to the configured strategy."""
+        if self.strategy == LatentSectorErrorStrategy.EVERY_1000:
+            start_sector = 0
+            end_sector = storage_info["sectors"]
+            step = DEFAULT_BAD_BLOCK_STEP
+
+            self.injector.dm_dust_add_badblocks_range(
+                node, DM_DUST_DEVICE_NAME, start=start_sector, end=end_sector, step=step
+            )
+
+        elif self.strategy == LatentSectorErrorStrategy.TEST:
+            self.injector.dm_dust_add_badblocks(node, DM_DUST_DEVICE_NAME, TEST_BAD_BLOCKS)
+
+        elif self.strategy == LatentSectorErrorStrategy.TARGETED:
+            print(f"[MongoDBLSE] Strategy TARGETED: Identifying MongoDB data blocks...")
+            blocks = self._get_target_file_blocks(node)
+            if not blocks:
+                print(f"[MongoDBLSE] Warning: No target blocks found. Falling back to TEST strategy.")
+                self.injector.dm_dust_add_badblocks(node, DM_DUST_DEVICE_NAME, TEST_BAD_BLOCKS)
+            else:
+                print(f"[MongoDBLSE] Injecting {len(blocks)} bad blocks targeting data files.")
+                # Inject in chunks to avoid command line length limits
+                chunk_size = 1000
+                for i in range(0, len(blocks), chunk_size):
+                    chunk = blocks[i : i + chunk_size]
+                    self.injector.dm_dust_add_badblocks(node, DM_DUST_DEVICE_NAME, chunk)
+
+        else:
+            raise ValueError(f"Unknown strategy: {self.strategy}")
+
+    @mark_fault_injected
+    def inject_fault(self):
+        """Inject latent sector errors using dm-dust bad blocks."""
+        print(f"[MongoDBLSE] Starting latent sector error injection for {self.deploy}")
+
+        # Get target node where the deployment is running
+        self.target_node = self._discover_node_for_deploy()
+        if not self.target_node:
+            raise RuntimeError(f"Could not find running node for deployment {self.deploy}")
+
+        print(f"[MongoDBLSE] Target node: {self.target_node}")
+
+        # Since dm-dust infrastructure is already set up by Conductor,
+        # we just need to add bad blocks and enable them
+
+        # Clear any existing bad blocks from previous runs
+        print(f"[MongoDBLSE] Clearing existing bad blocks...")
+        self.injector.dm_dust_clear(self.target_node, DM_DUST_DEVICE_NAME)
+
+        # Ensure we start in bypass mode
+        print(f"[MongoDBLSE] Setting device to bypass mode...")
+        self.injector.dm_dust_disable(self.target_node, DM_DUST_DEVICE_NAME)
+
+        # Apply strategy-based bad blocks injection
+        storage_info = self._get_openebs_storage_size(self.target_node)
+        if storage_info["sectors"] == 0:
+            raise RuntimeError(
+                f"OpenEBS dm-dust device not found or has 0 sectors on node {self.target_node}. "
+                f"Ensure dm-dust infrastructure is set up."
+            )
+
+        self._inject_badblocks_by_strategy(self.target_node, storage_info)
+
+        print(f"[MongoDBLSE] Enabling bad block simulation (fail_read_on_bad_block mode)")
+        self.injector.dm_dust_enable(self.target_node, DM_DUST_DEVICE_NAME)
+
+        # Drop caches to force disk reads
+        print(f"[MongoDBLSE] Dropping caches to force disk reads...")
+        self.injector.drop_caches(self.target_node)
+
+        print(f"[MongoDBLSE] Latent sector error injection complete")
+
+    def _restart_mongodb_pod(self) -> None:
+        """Restart the MongoDB deployment to recover from CrashLoopBackOff."""
+        print(f"[MongoDBLSE] Restarting MongoDB deployment {self.deploy}...")
+        cmd = f"kubectl -n {self.namespace} rollout restart deployment {self.deploy}"
+        self.kubectl.exec_command(cmd)
+        print(f"[MongoDBLSE] ✅ Deployment restart initiated")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        """Recover from latent sector error injection by clearing bad blocks."""
+        print(f"[MongoDBLSE] Starting recovery from latent sector error injection")
+
+        if not self.target_node:
+            print(f"[MongoDBLSE] No target node found, skipping recovery")
+            return
+
+        print(f"[MongoDBLSE] Disabling bad block simulation on {self.target_node}")
+        self.injector.dm_dust_disable(self.target_node, DM_DUST_DEVICE_NAME)
+
+        print(f"[MongoDBLSE] Clearing all bad blocks...")
+        self.injector.dm_dust_clear(self.target_node, DM_DUST_DEVICE_NAME)
+
+        # Verify cleanup
+        blocks = self.injector.dm_dust_list(self.target_node, DM_DUST_DEVICE_NAME)
+        if blocks != "No blocks in badblocklist":
+            print(f"[MongoDBLSE] Warning: Bad blocks still present: {blocks}")
+        else:
+            print(f"[MongoDBLSE] ✅ All bad blocks cleared")
+
+        # Restart MongoDB pod to recover instantly
+        self._restart_mongodb_pod()
+
+        print(f"[MongoDBLSE] Recovery complete")
diff --git a/sregym/conductor/problems/liveness_probe_misconfiguration.py b/sregym/conductor/problems/liveness_probe_misconfiguration.py
new file mode 100644
index 0000000..a1f9502
--- /dev/null
+++ b/sregym/conductor/problems/liveness_probe_misconfiguration.py
@@ -0,0 +1,58 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class LivenessProbeMisconfiguration(Problem):
+    def __init__(self, app_name="social_network", faulty_service="user-service"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if app_name == "social_network":
+            self.app = SocialNetwork()
+            self.app.create_workload(duration=30)
+
+        elif app_name == "hotel_reservation":
+            self.app = HotelReservation()
+            self.app.create_workload(duration=30)
+
+        elif app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+            self.app.create_workload()
+
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.injector = VirtualizationFaultInjector(namespace=self.app.namespace)
+        self.root_cause = f"The deployment `{self.faulty_service}` has a misconfigured liveness probe pointing to a non-existent health endpoint (/healthz on port 8080), causing pods to be restarted repeatedly."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector._inject(
+            fault_type="liveness_probe_misconfiguration",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector._recover(
+            fault_type="liveness_probe_misconfiguration",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/liveness_probe_too_aggressive.py b/sregym/conductor/problems/liveness_probe_too_aggressive.py
new file mode 100644
index 0000000..3c32e7e
--- /dev/null
+++ b/sregym/conductor/problems/liveness_probe_too_aggressive.py
@@ -0,0 +1,46 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.sustained_readiness import SustainedReadinessOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class LivenessProbeTooAggressive(Problem):
+    def __init__(self, app_name: str = "social_network"):
+        self.app_name = app_name
+        self.faulty_service = "aux-service"
+
+        if app_name == "social_network":
+            self.app = SocialNetwork()
+        elif app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.injector = VirtualizationFaultInjector(namespace=self.app.namespace)
+        self.root_cause = f"The deployment `{self.faulty_service}` has an overly aggressive liveness probe (initialDelaySeconds=0, periodSeconds=1, failureThreshold=1) with terminationGracePeriodSeconds=0, causing pods to be killed immediately if the probe fails."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = SustainedReadinessOracle(problem=self, sustained_period=30)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_liveness_probe_too_aggressive([self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.app.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_liveness_probe_too_aggressive([self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.app.namespace}\n")
diff --git a/sregym/conductor/problems/load_spike_rpc_retry_storm.py b/sregym/conductor/problems/load_spike_rpc_retry_storm.py
new file mode 100644
index 0000000..c890710
--- /dev/null
+++ b/sregym/conductor/problems/load_spike_rpc_retry_storm.py
@@ -0,0 +1,54 @@
+from sregym.conductor.oracles.detection import DetectionOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.rpc_retry_storm_mitigation import RPCRetryStormMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.generators.workload.blueprint_hotel_work import BHotelWrk, BHotelWrkWorkloadManager
+from sregym.service.apps.blueprint_hotel_reservation import BlueprintHotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class LoadSpikeRPCRetryStorm(Problem):
+    def __init__(self):
+        self.app = BlueprintHotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = "rpc"
+        self.root_cause = f"The ConfigMap `{self.faulty_service}` has misconfigured RPC timeout (50ms) and retry settings (30 retries), combined with a load spike, causing an RPC retry storm that overwhelms the service."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.mitigation_oracle = RPCRetryStormMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.inject_rpc_timeout_retries_misconfiguration(configmap=self.faulty_service)
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+        self.mitigation_oracle.run_workload(problem=self, kubectl=self.kubectl)
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector.recover_rpc_timeout_retries_misconfiguration(configmap=self.faulty_service)
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    def create_workload(self, tput: int = None, duration: str = None, multiplier: int = None):
+        if tput is None:
+            tput = 1000
+        if duration is None:
+            duration = "600s"
+        if multiplier is None:
+            multiplier = 6
+        self.wrk = BHotelWrkWorkloadManager(
+            wrk=BHotelWrk(tput=tput, duration=duration, multiplier=multiplier),
+        )
+
+    def start_workload(self):
+        if not hasattr(self, "wrk"):
+            self.create_workload()
+        self.wrk.start()
diff --git a/sregym/conductor/problems/loadgenerator_flood_homepage.py b/sregym/conductor/problems/loadgenerator_flood_homepage.py
new file mode 100644
index 0000000..2841727
--- /dev/null
+++ b/sregym/conductor/problems/loadgenerator_flood_homepage.py
@@ -0,0 +1,33 @@
+"""Otel demo loadgeneratorFloodHomepage feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class LoadGeneratorFloodHomepage(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "frontend"  # This fault technically gets injected into the load generator, but the loadgenerator just spams the frontend
+        # We can discuss more and see if we think we should change it, but loadgenerator isn't a "real" service.
+        self.root_cause = "The load generator has a feature flag enabled that causes it to flood the homepage with excessive requests, overwhelming the frontend service."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("loadGeneratorFloodHomepage")
+        print(f"Fault: loadgeneratorFloodHomepage | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("loadGeneratorFloodHomepage")
diff --git a/sregym/conductor/problems/misconfig_app.py b/sregym/conductor/problems/misconfig_app.py
new file mode 100644
index 0000000..7bdef6a
--- /dev/null
+++ b/sregym/conductor/problems/misconfig_app.py
@@ -0,0 +1,43 @@
+"""MongoDB storage user unregistered problem in the HotelReservation application."""
+
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class MisconfigAppHotelRes(Problem):
+    def __init__(self):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = "geo"
+        self.root_cause = "The 'geo' deployment is configured to use a buggy container image 'yinfangchen/geo:app3', this causes the pod keep restarting and entering the 'Error' state."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="misconfig_app",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="misconfig_app",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/missing_configmap.py b/sregym/conductor/problems/missing_configmap.py
new file mode 100644
index 0000000..96f8cdf
--- /dev/null
+++ b/sregym/conductor/problems/missing_configmap.py
@@ -0,0 +1,45 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class MissingConfigMap(Problem):
+    def __init__(self, app_name: str = "social_network", faulty_service: str = "media-mongodb"):
+        self.faulty_service = faulty_service
+        self.app_name = app_name
+
+        if self.app_name == "social_network":
+            self.app = SocialNetwork()
+        elif self.app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The ConfigMap required by the deployment `{self.faulty_service}` has been deleted, causing the pods to fail to start or malfunction."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(fault_type="missing_configmap", microservices=[self.faulty_service])
+
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(fault_type="missing_configmap", microservices=[self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}")
diff --git a/sregym/conductor/problems/missing_env_variable.py b/sregym/conductor/problems/missing_env_variable.py
new file mode 100644
index 0000000..1535628
--- /dev/null
+++ b/sregym/conductor/problems/missing_env_variable.py
@@ -0,0 +1,53 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.missing_env_variable_mitigation import MissingEnvVariableMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class MissingEnvVariable(Problem):
+    def __init__(self, app_name: str = "astronomy_shop", faulty_service: str = "frontend"):
+        self.faulty_service = faulty_service
+        self.app_name = app_name
+
+        if self.app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+            self.env_var = "CART_ADDR"
+            self.env_var_value = "cart:8080"
+            self.root_cause = (
+                f"The deployment `{self.faulty_service}` is missing the environment variable `{self.env_var}`."
+            )
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MissingEnvVariableMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector.inject_missing_env_variable(
+            deployment_name=self.faulty_service,
+            env_var=self.env_var,
+        )
+
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector.recover_missing_env_variable(
+            deployment_name=self.faulty_service,
+            env_var=self.env_var,
+            env_value=self.env_var_value,
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}")
diff --git a/sregym/conductor/problems/missing_service.py b/sregym/conductor/problems/missing_service.py
new file mode 100644
index 0000000..283f933
--- /dev/null
+++ b/sregym/conductor/problems/missing_service.py
@@ -0,0 +1,54 @@
+from sregym.conductor.oracles.compound import CompoundedOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.oracles.workload import WorkloadOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class MissingService(Problem):
+    def __init__(self, app_name: str = "hotel_reservation", faulty_service: str = "frontend"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if self.app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif self.app_name == "social_network":
+            self.app = SocialNetwork()
+        elif self.app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app_name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.root_cause = f"The service `{self.faulty_service}` has been deleted, causing service discovery failures for dependent services."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="missing_service",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="missing_service",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/multiple_failures.py b/sregym/conductor/problems/multiple_failures.py
new file mode 100644
index 0000000..c237d37
--- /dev/null
+++ b/sregym/conductor/problems/multiple_failures.py
@@ -0,0 +1,55 @@
+"""Simulating multiple failures in microservice applications, implemented by composing multiple single-fault problems."""
+
+import time
+
+from sregym.conductor.oracles.compound import CompoundedOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.composite_app import CompositeApp
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class MultipleIndependentFailures(Problem):
+    def __init__(self, problems: list[Problem]):
+        self.problems = problems
+        apps = [p.app for p in problems]
+        self.app = CompositeApp(apps)
+        self.namespaces = [p.namespace for p in problems]
+        self.fault_injected = False
+
+        # === Attaching problem's oracles ===
+        diagnosis_oracles = [p.diagnosis_oracle for p in self.problems]
+        if len(diagnosis_oracles) > 0:
+            print(f"[MIF] Diagnosis oracles: {diagnosis_oracles}")
+            self.diagnosis_oracle = CompoundedOracle(self, *diagnosis_oracles)
+
+        mitigation_oracles = [p.mitigation_oracle for p in self.problems]
+        if len(mitigation_oracles) > 0:
+            print(f"[MIF] Mitigation oracles: {mitigation_oracles}")
+            self.mitigation_oracle = CompoundedOracle(self, *mitigation_oracles)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        for p in self.problems:
+            print(f"Injecting Fault: {p.__class__.__name__} | Namespace: {p.namespace}")
+            p.inject_fault()
+            time.sleep(1)
+        self.faults_str = " | ".join([f"{p.__class__.__name__}" for p in self.problems])
+        print(
+            f"Injecting Fault: Multiple faults from included problems: [{self.faults_str}] | Namespace: {self.namespaces}\n"
+        )
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        for p in self.problems:
+            print(f"Recovering Fault: {p.__class__.__name__} | Namespace: {p.namespace}")
+            p.recover_fault()
+            time.sleep(1)
+        print(
+            f"Recovering Fault: Multiple faults from included problems: [{self.faults_str}] | Namespace: {self.namespaces}\n"
+        )
diff --git a/sregym/conductor/problems/namespace_memory_limit.py b/sregym/conductor/problems/namespace_memory_limit.py
new file mode 100644
index 0000000..b6e2197
--- /dev/null
+++ b/sregym/conductor/problems/namespace_memory_limit.py
@@ -0,0 +1,36 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.namespace_memory_limit_mitigation import NamespaceMemoryLimitMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class NamespaceMemoryLimit(Problem):
+    def __init__(self):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = "search"
+        self.injector = VirtualizationFaultInjector(namespace=self.namespace)
+        self.root_cause = f"The namespace has a ResourceQuota with a memory limit (1Gi) that is too restrictive, preventing the deployment `{self.faulty_service}` from scheduling new pods or causing existing pods to be evicted."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = NamespaceMemoryLimitMitigationOracle(problem=self)
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_namespace_memory_limit(
+            deployment_name=self.faulty_service, namespace=self.namespace, memory_limit="1Gi"
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_namespace_memory_limit(deployment_name=self.faulty_service, namespace=self.namespace)
diff --git a/sregym/conductor/problems/network_policy_block.py b/sregym/conductor/problems/network_policy_block.py
new file mode 100644
index 0000000..d4888db
--- /dev/null
+++ b/sregym/conductor/problems/network_policy_block.py
@@ -0,0 +1,50 @@
+from kubernetes import client, config
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.network_policy_oracle import NetworkPolicyMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class NetworkPolicyBlock(Problem):
+    def __init__(self, faulty_service="payment-service"):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.faulty_service = faulty_service
+        self.policy_name = f"deny-all-{faulty_service}"
+
+        self.app.payload_script = (
+            TARGET_MICROSERVICES / "hotelReservation/wrk2/scripts/hotel-reservation/mixed-workload_type_1.lua"
+        )
+        self.app.create_workload()
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.root_cause = f"A NetworkPolicy `{self.policy_name}` is configured to block all ingress and egress traffic to/from pods labeled with `app={self.faulty_service}`, causing complete network isolation and service unavailability."
+        self.networking_v1 = client.NetworkingV1Api()
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = NetworkPolicyMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        """Block ALL traffic to/from the target service"""
+        policy = {
+            "apiVersion": "networking.k8s.io/v1",
+            "kind": "NetworkPolicy",
+            "metadata": {"name": self.policy_name, "namespace": self.namespace},
+            "spec": {
+                "podSelector": {"matchLabels": {"app": self.faulty_service}},
+                "policyTypes": ["Ingress", "Egress"],
+                "ingress": [],
+                "egress": [],
+            },
+        }
+        self.networking_v1.create_namespaced_network_policy(namespace=self.namespace, body=policy)
+
+    @mark_fault_injected
+    def recover_fault(self):
+        """Remove the NetworkPolicy"""
+        self.networking_v1.delete_namespaced_network_policy(name=self.policy_name, namespace=self.namespace)
diff --git a/sregym/conductor/problems/operator_misoperation/IMPORTANT.md b/sregym/conductor/problems/operator_misoperation/IMPORTANT.md
new file mode 100644
index 0000000..ed356e5
--- /dev/null
+++ b/sregym/conductor/problems/operator_misoperation/IMPORTANT.md
@@ -0,0 +1,2 @@
+These problems are still implemented the old way, so we need to port them to the new format before we
+can test them again.
\ No newline at end of file
diff --git a/sregym/conductor/problems/operator_misoperation/__init__.py b/sregym/conductor/problems/operator_misoperation/__init__.py
new file mode 100644
index 0000000..d6cd490
--- /dev/null
+++ b/sregym/conductor/problems/operator_misoperation/__init__.py
@@ -0,0 +1,5 @@
+from .invalid_affinity_toleration import K8SOperatorInvalidAffinityTolerationFault
+from .non_existent_storage import K8SOperatorNonExistentStorageFault
+from .overload_replicas import K8SOperatorOverloadReplicasFault
+from .security_context_fault import K8SOperatorSecurityContextFault
+from .wrong_update_strategy import K8SOperatorWrongUpdateStrategyFault
diff --git a/sregym/conductor/problems/operator_misoperation/invalid_affinity_toleration.py b/sregym/conductor/problems/operator_misoperation/invalid_affinity_toleration.py
new file mode 100644
index 0000000..70b65fa
--- /dev/null
+++ b/sregym/conductor/problems/operator_misoperation/invalid_affinity_toleration.py
@@ -0,0 +1,46 @@
+"""
+This misoperation specifies an invalid toleration effect.
+"""
+
+import time
+from datetime import datetime, timedelta
+from typing import Any
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.operator_misoperation.invalid_affinity_mitigation import InvalidAffinityMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_operator import K8SOperatorFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.fleet_cast import FleetCast
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class K8SOperatorInvalidAffinityTolerationFault(Problem):
+    def __init__(self, faulty_service="tidb-app"):
+        app = FleetCast()
+        print("App's namespace:", app.namespace)
+        super().__init__(app=app, namespace="tidb-cluster")
+        self.faulty_service = faulty_service
+        self.kubectl = KubeCtl()
+        self.root_cause = "The TiDBCluster custom resource specifies an invalid toleration effect, causing pods to be unschedulable and remain in Pending state."
+        self.app.create_workload()
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.mitigation_oracle = InvalidAffinityMitigationOracle(problem=self, deployment_name="basic")
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = K8SOperatorFaultInjector(namespace="tidb-cluster")
+        injector.inject_invalid_affinity_toleration()
+        print(f"[FAULT INJECTED] {self.faulty_service} invalid affinity toleration failure\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+
+        injector = K8SOperatorFaultInjector(namespace="tidb-cluster")
+        injector.recover_invalid_affinity_toleration()
+        print(f"[FAULT INJECTED] {self.faulty_service} invalid affinity toleration failure\n")
diff --git a/sregym/conductor/problems/operator_misoperation/non_existent_storage.py b/sregym/conductor/problems/operator_misoperation/non_existent_storage.py
new file mode 100644
index 0000000..978d373
--- /dev/null
+++ b/sregym/conductor/problems/operator_misoperation/non_existent_storage.py
@@ -0,0 +1,44 @@
+"""
+This fault specifies a non-existent storage class.
+"""
+
+import time
+from datetime import datetime, timedelta
+from typing import Any
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.operator_misoperation.non_existent_storage_mitigation import (
+    NonExistentStorageClassMitigationOracle,
+)
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_operator import K8SOperatorFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.fleet_cast import FleetCast
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class K8SOperatorNonExistentStorageFault(Problem):
+    def __init__(self, faulty_service="tidb-app"):
+        app = FleetCast()
+        super().__init__(app=app, namespace="tidb-cluster")
+        self.faulty_service = faulty_service
+        self.kubectl = KubeCtl()
+        self.problem_id = "operator_non_existent_storage"
+        self.root_cause = "The TiDBCluster custom resource specifies a non-existent StorageClass, causing PVC creation to fail and pods to remain in Pending state."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = NonExistentStorageClassMitigationOracle(problem=self, deployment_name="basic")
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = K8SOperatorFaultInjector(namespace="tidb-cluster")
+        injector.inject_non_existent_storage()
+        print(f"[FAULT INJECTED] {self.faulty_service} non-existent storage failure\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = K8SOperatorFaultInjector(namespace="tidb-cluster")
+        injector.recover_non_existent_storage()
+        print(f"[FAULT RECOVERED] {self.faulty_service} non-existent storage failure\n")
diff --git a/sregym/conductor/problems/operator_misoperation/overload_replicas.py b/sregym/conductor/problems/operator_misoperation/overload_replicas.py
new file mode 100644
index 0000000..8755774
--- /dev/null
+++ b/sregym/conductor/problems/operator_misoperation/overload_replicas.py
@@ -0,0 +1,45 @@
+# Ramifications: The TiDB cluster can become unhealthy:
+# $ kubectl get events -n tidb-cluster
+# 10m         Warning   Unhealthy              pod/basic-tidb-0                                                   Readiness probe failed: dial tcp 10.244.0.27:4000: connect: connection refused
+
+# Only a few pods (e.g., 4 out of 100,000 replicas requested) are created successfully.
+
+
+import time
+from datetime import datetime, timedelta
+from typing import Any
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.operator_misoperation.overload_replicas_mitigation import OverloadReplicasMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_operator import K8SOperatorFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.fleet_cast import FleetCast
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class K8SOperatorOverloadReplicasFault(Problem):
+    def __init__(self, faulty_service="tidb-app"):
+        app = FleetCast()
+        super().__init__(app=app, namespace="tidb-cluster")
+        self.faulty_service = faulty_service
+        self.kubectl = KubeCtl()
+        self.root_cause = "The TiDBCluster custom resource is configured with an excessive number of replicas (100,000), overwhelming the cluster and causing only a few pods to be created successfully."
+        self.app.create_workload()
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = OverloadReplicasMitigationOracle(problem=self, deployment_name="basic")
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = K8SOperatorFaultInjector(namespace="tidb-cluster")
+        injector.inject_overload_replicas()
+        print(f"[FAULT INJECTED] {self.faulty_service} overload replica failure\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = K8SOperatorFaultInjector(namespace="tidb-cluster")
+        injector.recover_overload_replicas()
+        print(f"[FAULT RECOVERED] {self.faulty_service} overload replica failure\n")
diff --git a/sregym/conductor/problems/operator_misoperation/security_context_fault.py b/sregym/conductor/problems/operator_misoperation/security_context_fault.py
new file mode 100644
index 0000000..4a74385
--- /dev/null
+++ b/sregym/conductor/problems/operator_misoperation/security_context_fault.py
@@ -0,0 +1,40 @@
+"""
+The fault sets an invalid runAsUser value.
+"""
+
+import time
+from datetime import datetime, timedelta
+from typing import Any
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.operator_misoperation.security_context_mitigation import SecurityContextMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_operator import K8SOperatorFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.fleet_cast import FleetCast
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class K8SOperatorSecurityContextFault(Problem):
+    def __init__(self, faulty_service="tidb-app"):
+        app = FleetCast()
+        super().__init__(app=app, namespace="tidb-cluster")
+        self.faulty_service = faulty_service
+        self.kubectl = KubeCtl()
+        self.root_cause = "The TiDBCluster custom resource specifies an invalid runAsUser value in the security context, causing pods to fail to start or be rejected by the security policy."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = SecurityContextMitigationOracle(problem=self, deployment_name="basic")
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        injector = K8SOperatorFaultInjector(namespace=self.namespace)
+        injector.inject_security_context_fault()
+        print(f"[FAULT INJECTED] {self.faulty_service} security context misconfigured")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        injector = K8SOperatorFaultInjector(namespace=self.namespace)
+        injector.recover_security_context_fault()
+        print(f"[FAULT RECOVERED] {self.faulty_service}")
diff --git a/sregym/conductor/problems/operator_misoperation/wrong_update_strategy.py b/sregym/conductor/problems/operator_misoperation/wrong_update_strategy.py
new file mode 100644
index 0000000..f008ff7
--- /dev/null
+++ b/sregym/conductor/problems/operator_misoperation/wrong_update_strategy.py
@@ -0,0 +1,44 @@
+"""
+This fault specifies an invalid update strategy.
+"""
+
+import time
+from datetime import datetime, timedelta
+from typing import Any
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.operator_misoperation.wrong_update_strategy_mitigation import (
+    WrongUpdateStrategyMitigationOracle,
+)
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_operator import K8SOperatorFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.fleet_cast import FleetCast
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class K8SOperatorWrongUpdateStrategyFault(Problem):
+    def __init__(self, faulty_service="tidb-app"):
+        app = FleetCast()
+        super().__init__(app=app, namespace="tidb-cluster")
+        self.faulty_service = faulty_service
+        self.kubectl = KubeCtl()
+        self.root_cause = "The TiDBCluster custom resource specifies an invalid update strategy, causing deployment updates to fail or get stuck."
+        self.app.create_workload()
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = WrongUpdateStrategyMitigationOracle(problem=self, deployment_name="basic")
+
+    @mark_fault_injected
+    def inject_fault(self):
+        injector = K8SOperatorFaultInjector(namespace=self.namespace)
+        injector.inject_wrong_update_strategy()
+        print(f"[FAULT INJECTED] {self.faulty_service} wrong update strategy failure")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = K8SOperatorFaultInjector(namespace=self.namespace)
+        injector.recover_wrong_update_strategy()
+        print(f"[FAULT RECOVERED] {self.faulty_service} wrong update strategy failure\n")
diff --git a/sregym/conductor/problems/payment_service_failure.py b/sregym/conductor/problems/payment_service_failure.py
new file mode 100644
index 0000000..e75152f
--- /dev/null
+++ b/sregym/conductor/problems/payment_service_failure.py
@@ -0,0 +1,32 @@
+"""Otel demo paymentServiceFailure feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class PaymentServiceFailure(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "payment"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that causes it to fail, resulting in service unavailability."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("paymentFailure")
+        print(f"Fault: paymentServiceFailure | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("paymentFailure")
diff --git a/sregym/conductor/problems/payment_service_unreachable.py b/sregym/conductor/problems/payment_service_unreachable.py
new file mode 100644
index 0000000..7a9d312
--- /dev/null
+++ b/sregym/conductor/problems/payment_service_unreachable.py
@@ -0,0 +1,32 @@
+"""Otel demo paymentServiceUnreachable feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class PaymentServiceUnreachable(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "checkout"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that makes the payment service unreachable, causing checkout failures."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("paymentUnreachable")
+        print(f"Fault: paymentServiceUnreachable | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("paymentUnreachable")
diff --git a/sregym/conductor/problems/persistent_volume_affinity_violation.py b/sregym/conductor/problems/persistent_volume_affinity_violation.py
new file mode 100644
index 0000000..0a6589e
--- /dev/null
+++ b/sregym/conductor/problems/persistent_volume_affinity_violation.py
@@ -0,0 +1,51 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.app_registry import AppRegistry
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class PersistentVolumeAffinityViolation(Problem):
+    def __init__(self, app_name: str = "Social Network", faulty_service: str = "user-service"):
+        self.apps = AppRegistry()
+        self.app = self.apps.get_app_instance(app_name)
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = faulty_service
+        self.root_cause = f"The deployment `{self.faulty_service}` is configured with a PersistentVolume (temp-pv) that has node affinity to node A, but the deployment has a nodeSelector pointing to node B, causing a volume affinity violation and pods to remain in Pending state."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        print("Injecting persistent volume affinity violation...")
+
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="persistent_volume_affinity_violation",
+            microservices=[self.faulty_service],
+        )
+
+        print(f"Expected effect: {self.faulty_service} pod should be stuck in Pending state")
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="persistent_volume_affinity_violation",
+            microservices=[self.faulty_service],
+        )
+
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/pod_anti_affinity_deadlock.py b/sregym/conductor/problems/pod_anti_affinity_deadlock.py
new file mode 100644
index 0000000..446b2e6
--- /dev/null
+++ b/sregym/conductor/problems/pod_anti_affinity_deadlock.py
@@ -0,0 +1,61 @@
+"""Pod Anti-Affinity Deadlock problem for microservice applications."""
+
+import time
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class PodAntiAffinityDeadlock(Problem):
+    def __init__(self, faulty_service: str = "user-service"):
+        self.app = SocialNetwork()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = faulty_service
+        self.root_cause = f"The deployment `{self.faulty_service}` has strict pod anti-affinity rules (requiredDuringSchedulingIgnoredDuringExecution) that prevent multiple replicas from being scheduled on the same node, but with insufficient nodes, causing a scheduling deadlock where pods remain in Pending state."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        # Create workload for evaluation
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        print("Creating Pod Anti-Affinity Deadlock...")
+        print("Setting requiredDuringScheduling anti-affinity that excludes all nodes")
+
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="pod_anti_affinity_deadlock",
+            microservices=[self.faulty_service],
+        )
+
+        # Wait for the deadlock to manifest
+        time.sleep(30)
+
+        print(f"Expected effect: Pods should be in Pending state with:")
+        print(f"  '0/X nodes are available: X node(s) didn't match pod anti-affinity rules'")
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        print("Removing pod anti-affinity deadlock...")
+        print("Changing requiredDuring to preferredDuring or removing anti-affinity rules")
+
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="pod_anti_affinity_deadlock",
+            microservices=[self.faulty_service],
+        )
+
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/postgres.md b/sregym/conductor/problems/postgres.md
new file mode 100644
index 0000000..5c14854
--- /dev/null
+++ b/sregym/conductor/problems/postgres.md
@@ -0,0 +1,54 @@
+
+# PostgreSQL 17.5 Installation Guide (Mac Homebrew)
+Follow these steps to **build PostgreSQL 17.5 from source** on macOS.
+
+## **Step 0. Install dependencies**
+brew install gcc make flex bison readline zlib
+brew install icu4c
+export PKG_CONFIG_PATH="$(brew --prefix icu4c)/lib/pkgconfig"
+
+## **Step 1. Download PostgreSQL source**
+
+curl -OLv https://ftp.postgresql.org/pub/source/v17.5/postgresql-17.5.tar.gz
+
+## **Step 2. Extract the tarbell**
+tar xzf postgresql-17.5.tar.gz
+cd postgresql-17.5
+
+## **Step 3. Configure the build**
+./configure
+
+## **Step 4. Build PostgreSQL**
+make
+
+## **Step 5. Initialize the database cluster.**
+export PATH=$HOME/pgsql/bin:$PATH
+initdb -D $HOME/pgsql/data
+
+## **Step 6. Start the PostgreSQL server**
+pg_ctl -D $HOME/pgsql/data -l logfile start
+
+## **Step 7. Create a test database**
+createdb test
+
+## **Step 8. Connect to your test database**
+psql test
+
+## All of the commands :
+
+```
+brew install gcc make flex bison readline zlib
+brew install icu4c
+export PKG_CONFIG_PATH="$(brew --prefix icu4c)/lib/pkgconfig"
+curl -OLv https://ftp.postgresql.org/pub/source/v17.5/postgresql-17.5.tar.gz
+tar xzf postgresql-17.5.tar.gz
+cd postgresql-17.5
+./configure
+make
+export PATH=$HOME/pgsql/bin:$PATH
+initdb -D $HOME/pgsql/data
+pg_ctl -D $HOME/pgsql/data -l logfile start
+createdb test
+psql test 
+
+```
diff --git a/sregym/conductor/problems/product_catalog_failure.py b/sregym/conductor/problems/product_catalog_failure.py
new file mode 100644
index 0000000..2170cdd
--- /dev/null
+++ b/sregym/conductor/problems/product_catalog_failure.py
@@ -0,0 +1,32 @@
+"""Otel demo productCatalogFailure feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ProductCatalogServiceFailure(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "product-catalog"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that causes it to fail, resulting in service unavailability."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("productCatalogFailure")
+        print(f"Fault: productCatalogFailure | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("productCatalogFailure")
diff --git a/sregym/conductor/problems/pvc_claim_mismatch.py b/sregym/conductor/problems/pvc_claim_mismatch.py
new file mode 100644
index 0000000..1147a94
--- /dev/null
+++ b/sregym/conductor/problems/pvc_claim_mismatch.py
@@ -0,0 +1,46 @@
+"""Redeployment of the HotelReservation application but do not handle PV."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class PVCClaimMismatch(Problem):
+    def __init__(self):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.app.payload_script = (
+            TARGET_MICROSERVICES / "hotelReservation/wrk2/scripts/hotel-reservation/mixed-workload_type_1.lua"
+        )
+        self.faulty_service = [
+            "mongodb-geo",
+            "mongodb-profile",
+            "mongodb-rate",
+            "mongodb-recommendation",
+            "mongodb-reservation",
+            "mongodb-user",
+        ]
+        self.injector = VirtualizationFaultInjector(namespace=self.namespace)
+        self.root_cause = "Multiple MongoDB deployments are configured with PVC claim names that do not exist (claimName-broken), causing pods to remain in Pending state."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_pvc_claim_mismatch(microservices=self.faulty_service)
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_pvc_claim_mismatch(microservices=self.faulty_service)
diff --git a/sregym/conductor/problems/rbac_misconfiguration.py b/sregym/conductor/problems/rbac_misconfiguration.py
new file mode 100644
index 0000000..89d5de0
--- /dev/null
+++ b/sregym/conductor/problems/rbac_misconfiguration.py
@@ -0,0 +1,45 @@
+from sregym.conductor.oracles.compound import CompoundedOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.oracles.workload import WorkloadOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class RBACMisconfiguration(Problem):
+    def __init__(self, app_name: str = "astronomy_shop", faulty_service: str = "frontend"):
+        if app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = faulty_service
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.root_cause = f"The deployment `{self.faulty_service}` uses a ServiceAccount with a ClusterRole that lacks ConfigMap permissions, but an init container tries to access a ConfigMap, causing the init container to fail and pods to remain in Init state."
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+        # self.mitigation_oracle = CompoundedOracle(self, WorkloadOracle(problem=self, wrk_manager=self.app.wrk))
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection: RBAC Init Container Misconfiguration ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(fault_type="rbac_misconfiguration", microservices=[self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery: RBAC Init Container Misconfiguration ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(fault_type="rbac_misconfiguration", microservices=[self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/read_error.py b/sregym/conductor/problems/read_error.py
new file mode 100644
index 0000000..4d2ad85
--- /dev/null
+++ b/sregym/conductor/problems/read_error.py
@@ -0,0 +1,52 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_hw import HWFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ReadError(Problem):
+    """
+    Problem: inject syscall-level EIO (-5) failures into `read()` for all pods on a target node.
+    """
+
+    def __init__(self, target_node: str = None):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = HWFaultInjector()
+        self.target_node = target_node
+
+        # (Optional) pick a request mix payload
+        self.app.payload_script = (
+            TARGET_MICROSERVICES / "hotelReservation/wrk2/scripts/hotel-reservation/mixed-workload_type_1.lua"
+        )
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.root_cause = f"System call-level EIO (-5) failures are injected into `read()` operations for all pods on a target node, causing I/O errors and service failures."
+
+        self.app.create_workload()
+
+    def requires_khaos(self) -> bool:
+        """This problem requires Khaos for eBPF-based fault injection."""
+        return True
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print(f"== Fault Injection: read_error ==")
+        self.target_node = self.injector.inject_node(self.namespace, "read_error", self.target_node)
+        print(f"[debug] target_node: {self.target_node}")
+        # Setup diagnosis oracle here since we now have the target node
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        print(f"Injected read_error into pods on node {self.target_node}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print(f"== Fault Recovery: read_error on node {self.target_node} ==")
+        if self.target_node:
+            self.injector.recover_node(self.namespace, "read_error", self.target_node)
+        else:
+            print("[warn] No target node recorded; attempting best-effort recovery.")
+        print("Recovery request sent.\n")
diff --git a/sregym/conductor/problems/readiness_probe_misconfiguration.py b/sregym/conductor/problems/readiness_probe_misconfiguration.py
new file mode 100644
index 0000000..cdbf2ec
--- /dev/null
+++ b/sregym/conductor/problems/readiness_probe_misconfiguration.py
@@ -0,0 +1,55 @@
+from sregym.conductor.oracles.compound import CompoundedOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.oracles.workload import WorkloadOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ReadinessProbeMisconfiguration(Problem):
+    def __init__(self, app_name="social_network", faulty_service="user-service"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if app_name == "social_network":
+            self.app = SocialNetwork()
+        elif app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The deployment `{self.faulty_service}` has a misconfigured readiness probe pointing to a non-existent health endpoint (/healthz on port 8080), causing pods to never become ready and be excluded from service endpoints."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector = VirtualizationFaultInjector(namespace=self.namespace)
+        self.injector._inject(
+            fault_type="readiness_probe_misconfiguration",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector._recover(
+            fault_type="readiness_probe_misconfiguration",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/recommendation_service_cache_failure.py b/sregym/conductor/problems/recommendation_service_cache_failure.py
new file mode 100644
index 0000000..477b685
--- /dev/null
+++ b/sregym/conductor/problems/recommendation_service_cache_failure.py
@@ -0,0 +1,32 @@
+"""Otel demo recommendationServiceCacheFailure feature flag fault."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_otel import OtelFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class RecommendationServiceCacheFailure(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.injector = OtelFaultInjector(namespace=self.namespace)
+        self.faulty_service = "recommendation"
+        self.root_cause = f"The `{self.faulty_service}` service has a feature flag enabled that causes cache failures, resulting in degraded service performance."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_fault("recommendationCacheFailure")
+        print(f"Fault: recommendationServiceCacheFailure | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.recover_fault("recommendationCacheFailure")
diff --git a/sregym/conductor/problems/registry.py b/sregym/conductor/problems/registry.py
new file mode 100644
index 0000000..ef4fcaf
--- /dev/null
+++ b/sregym/conductor/problems/registry.py
@@ -0,0 +1,202 @@
+from sregym.conductor.problems.ad_service_failure import AdServiceFailure
+from sregym.conductor.problems.ad_service_high_cpu import AdServiceHighCpu
+from sregym.conductor.problems.ad_service_manual_gc import AdServiceManualGc
+from sregym.conductor.problems.assign_non_existent_node import AssignNonExistentNode
+from sregym.conductor.problems.auth_miss_mongodb import MongoDBAuthMissing
+from sregym.conductor.problems.capacity_decrease_rpc_retry_storm import CapacityDecreaseRPCRetryStorm
+from sregym.conductor.problems.cart_service_failure import CartServiceFailure
+from sregym.conductor.problems.configmap_drift import ConfigMapDrift
+from sregym.conductor.problems.duplicate_pvc_mounts import DuplicatePVCMounts
+from sregym.conductor.problems.env_variable_shadowing import EnvVariableShadowing
+from sregym.conductor.problems.faulty_image_correlated import FaultyImageCorrelated
+from sregym.conductor.problems.gc_capacity_degradation import GCCapacityDegradation
+from sregym.conductor.problems.image_slow_load import ImageSlowLoad
+from sregym.conductor.problems.incorrect_image import IncorrectImage
+from sregym.conductor.problems.incorrect_port_assignment import IncorrectPortAssignment
+from sregym.conductor.problems.ingress_misroute import IngressMisroute
+from sregym.conductor.problems.kafka_queue_problems import KafkaQueueProblems
+from sregym.conductor.problems.kubelet_crash import KubeletCrash
+from sregym.conductor.problems.latent_sector_error import LatentSectorError
+from sregym.conductor.problems.liveness_probe_misconfiguration import LivenessProbeMisconfiguration
+from sregym.conductor.problems.liveness_probe_too_aggressive import LivenessProbeTooAggressive
+from sregym.conductor.problems.load_spike_rpc_retry_storm import LoadSpikeRPCRetryStorm
+from sregym.conductor.problems.loadgenerator_flood_homepage import LoadGeneratorFloodHomepage
+from sregym.conductor.problems.misconfig_app import MisconfigAppHotelRes
+from sregym.conductor.problems.missing_configmap import MissingConfigMap
+from sregym.conductor.problems.missing_env_variable import MissingEnvVariable
+from sregym.conductor.problems.missing_service import MissingService
+from sregym.conductor.problems.multiple_failures import MultipleIndependentFailures
+from sregym.conductor.problems.namespace_memory_limit import NamespaceMemoryLimit
+from sregym.conductor.problems.network_policy_block import NetworkPolicyBlock
+from sregym.conductor.problems.operator_misoperation.invalid_affinity_toleration import (
+    K8SOperatorInvalidAffinityTolerationFault,
+)
+from sregym.conductor.problems.operator_misoperation.non_existent_storage import K8SOperatorNonExistentStorageFault
+from sregym.conductor.problems.operator_misoperation.overload_replicas import K8SOperatorOverloadReplicasFault
+from sregym.conductor.problems.operator_misoperation.security_context_fault import K8SOperatorSecurityContextFault
+from sregym.conductor.problems.operator_misoperation.wrong_update_strategy import K8SOperatorWrongUpdateStrategyFault
+from sregym.conductor.problems.payment_service_failure import PaymentServiceFailure
+from sregym.conductor.problems.payment_service_unreachable import PaymentServiceUnreachable
+from sregym.conductor.problems.persistent_volume_affinity_violation import PersistentVolumeAffinityViolation
+from sregym.conductor.problems.pod_anti_affinity_deadlock import PodAntiAffinityDeadlock
+from sregym.conductor.problems.product_catalog_failure import ProductCatalogServiceFailure
+from sregym.conductor.problems.pvc_claim_mismatch import PVCClaimMismatch
+from sregym.conductor.problems.rbac_misconfiguration import RBACMisconfiguration
+from sregym.conductor.problems.read_error import ReadError
+from sregym.conductor.problems.readiness_probe_misconfiguration import ReadinessProbeMisconfiguration
+from sregym.conductor.problems.recommendation_service_cache_failure import RecommendationServiceCacheFailure
+from sregym.conductor.problems.resource_request import ResourceRequestTooLarge, ResourceRequestTooSmall
+from sregym.conductor.problems.revoke_auth import MongoDBRevokeAuth
+from sregym.conductor.problems.rolling_update_misconfigured import RollingUpdateMisconfigured
+from sregym.conductor.problems.scale_pod import ScalePodSocialNet
+from sregym.conductor.problems.service_dns_resolution_failure import ServiceDNSResolutionFailure
+from sregym.conductor.problems.sidecar_port_conflict import SidecarPortConflict
+from sregym.conductor.problems.silent_data_corruption import SilentDataCorruption
+from sregym.conductor.problems.stale_coredns_config import StaleCoreDNSConfig
+from sregym.conductor.problems.storage_user_unregistered import MongoDBUserUnregistered
+from sregym.conductor.problems.taint_no_toleration import TaintNoToleration
+from sregym.conductor.problems.target_port import K8STargetPortMisconfig
+from sregym.conductor.problems.train_ticket_f22 import TrainTicketF22
+from sregym.conductor.problems.trainticket_f17 import TrainTicketF17
+from sregym.conductor.problems.update_incompatible_correlated import UpdateIncompatibleCorrelated
+from sregym.conductor.problems.valkey_auth_disruption import ValkeyAuthDisruption
+from sregym.conductor.problems.valkey_memory_disruption import ValkeyMemoryDisruption
+from sregym.conductor.problems.workload_imbalance import WorkloadImbalance
+from sregym.conductor.problems.wrong_bin_usage import WrongBinUsage
+from sregym.conductor.problems.wrong_dns_policy import WrongDNSPolicy
+from sregym.conductor.problems.wrong_service_selector import WrongServiceSelector
+from sregym.service.kubectl import KubeCtl
+
+
+# fmt: off
+class ProblemRegistry:
+    def __init__(self):
+        self.PROBLEM_REGISTRY = {
+            # ==================== APPLICATION FAULT INJECTOR ====================
+            # --- CORRELATED PROBLEMS ---
+            "faulty_image_correlated": FaultyImageCorrelated,
+            "update_incompatible_correlated": UpdateIncompatibleCorrelated,
+            # --- REGULAR APPLICATION PROBLEMS ---
+            "incorrect_image": IncorrectImage,
+            "incorrect_port_assignment": IncorrectPortAssignment,
+            "misconfig_app_hotel_res": MisconfigAppHotelRes,
+            "missing_env_variable_astronomy_shop": lambda: MissingEnvVariable(app_name="astronomy_shop", faulty_service="frontend" ),
+            "revoke_auth_mongodb-1": lambda: MongoDBRevokeAuth(faulty_service="mongodb-geo"),
+            "revoke_auth_mongodb-2": lambda: MongoDBRevokeAuth(faulty_service="mongodb-rate"),
+            "storage_user_unregistered-1": lambda: MongoDBUserUnregistered(faulty_service="mongodb-geo"),
+            "storage_user_unregistered-2": lambda: MongoDBUserUnregistered(faulty_service="mongodb-rate"),
+            "valkey_auth_disruption": ValkeyAuthDisruption,
+            "valkey_memory_disruption": ValkeyMemoryDisruption,
+            # # ==================== VIRTUALIZATION FAULT INJECTOR ====================
+            # --- METASTABLE FAILURES ---
+            "capacity_decrease_rpc_retry_storm": CapacityDecreaseRPCRetryStorm,
+            "gc_capacity_degradation": GCCapacityDegradation,
+            "load_spike_rpc_retry_storm": LoadSpikeRPCRetryStorm,
+            # --- REGULAR VIRTUALIZATION PROBLEMS ---
+            "assign_to_non_existent_node": AssignNonExistentNode,
+            "auth_miss_mongodb": MongoDBAuthMissing,
+            "configmap_drift_hotel_reservation": lambda: ConfigMapDrift(faulty_service="geo"),
+            "duplicate_pvc_mounts_astronomy_shop": lambda: DuplicatePVCMounts(app_name="astronomy_shop", faulty_service="frontend"),
+            "duplicate_pvc_mounts_hotel_reservation": lambda: DuplicatePVCMounts(app_name="hotel_reservation", faulty_service="frontend"),
+            "duplicate_pvc_mounts_social_network": lambda: DuplicatePVCMounts(app_name="social_network", faulty_service="jaeger"),
+            "env_variable_shadowing_astronomy_shop": lambda: EnvVariableShadowing(),
+            "k8s_target_port-misconfig": lambda: K8STargetPortMisconfig(faulty_service="user-service"),
+            "liveness_probe_misconfiguration_astronomy_shop": lambda: LivenessProbeMisconfiguration(app_name="astronomy_shop", faulty_service="frontend"),
+            "liveness_probe_misconfiguration_hotel_reservation": lambda: LivenessProbeMisconfiguration(app_name="hotel_reservation", faulty_service="recommendation"),
+            "liveness_probe_misconfiguration_social_network": lambda: LivenessProbeMisconfiguration(app_name="social_network", faulty_service="user-service"),
+            "liveness_probe_too_aggressive_astronomy_shop": lambda: LivenessProbeTooAggressive(app_name="astronomy_shop"),
+            "liveness_probe_too_aggressive_hotel_reservation": lambda: LivenessProbeTooAggressive(app_name="hotel_reservation"),
+            "liveness_probe_too_aggressive_social_network": lambda: LivenessProbeTooAggressive(app_name="social_network"),
+            "missing_configmap_hotel_reservation": lambda: MissingConfigMap(app_name="hotel_reservation", faulty_service="mongodb-geo"),
+            "missing_configmap_social_network": lambda: MissingConfigMap(app_name="social_network", faulty_service="media-mongodb"),
+            "missing_service_astronomy_shop": lambda: MissingService(app_name="astronomy_shop", faulty_service="ad"),
+            "missing_service_hotel_reservation": lambda: MissingService(app_name="hotel_reservation", faulty_service="mongodb-rate"),
+            "missing_service_social_network": lambda: MissingService(app_name="social_network", faulty_service="user-service"),
+            "namespace_memory_limit": NamespaceMemoryLimit,
+            "pod_anti_affinity_deadlock": PodAntiAffinityDeadlock,
+            "persistent_volume_affinity_violation": PersistentVolumeAffinityViolation,
+            "pvc_claim_mismatch": PVCClaimMismatch,
+            "rbac_misconfiguration": RBACMisconfiguration,
+            "readiness_probe_misconfiguration_astronomy_shop": lambda: ReadinessProbeMisconfiguration(app_name="astronomy_shop", faulty_service="frontend"),
+            "readiness_probe_misconfiguration_hotel_reservation": lambda: ReadinessProbeMisconfiguration(app_name="hotel_reservation", faulty_service="frontend"),
+            "readiness_probe_misconfiguration_social_network": lambda: ReadinessProbeMisconfiguration(app_name="social_network", faulty_service="user-service"),
+            "resource_request_too_large": lambda: ResourceRequestTooLarge(app_name="hotel_reservation", faulty_service="mongodb-rate"),
+            "resource_request_too_small": lambda: ResourceRequestTooSmall(app_name="hotel_reservation", faulty_service="mongodb-rate"),
+            "rolling_update_misconfigured_hotel_reservation": lambda: RollingUpdateMisconfigured(app_name="hotel_reservation"),
+            "rolling_update_misconfigured_social_network": lambda: RollingUpdateMisconfigured(app_name="social_network"),
+            "scale_pod_zero_social_net": ScalePodSocialNet,
+            "service_dns_resolution_failure_astronomy_shop": lambda: ServiceDNSResolutionFailure(app_name="astronomy_shop", faulty_service="frontend"),
+            "service_dns_resolution_failure_social_network": lambda: ServiceDNSResolutionFailure(app_name="social_network", faulty_service="user-service"),
+            "sidecar_port_conflict_astronomy_shop": lambda: SidecarPortConflict(app_name="astronomy_shop", faulty_service="frontend"),
+            "sidecar_port_conflict_hotel_reservation": lambda: SidecarPortConflict(app_name="hotel_reservation", faulty_service="frontend"),
+            "sidecar_port_conflict_social_network": lambda: SidecarPortConflict(app_name="social_network", faulty_service="user-service"),
+            "stale_coredns_config_astronomy_shop": lambda: StaleCoreDNSConfig(app_name="astronomy_shop"),
+            "stale_coredns_config_social_network": lambda: StaleCoreDNSConfig(app_name="social_network"),
+            "taint_no_toleration_social_network": lambda: TaintNoToleration(),
+            "wrong_bin_usage": WrongBinUsage,
+            "wrong_dns_policy_astronomy_shop": lambda: WrongDNSPolicy(app_name="astronomy_shop", faulty_service="frontend"),
+            "wrong_dns_policy_hotel_reservation": lambda: WrongDNSPolicy(app_name="hotel_reservation", faulty_service="profile"),
+            "wrong_dns_policy_social_network": lambda: WrongDNSPolicy(app_name="social_network", faulty_service="user-service"),
+            "wrong_service_selector_astronomy_shop": lambda: WrongServiceSelector(app_name="astronomy_shop", faulty_service="frontend"),
+            "wrong_service_selector_hotel_reservation": lambda: WrongServiceSelector(app_name="hotel_reservation", faulty_service="frontend"),
+            "wrong_service_selector_social_network": lambda: WrongServiceSelector(app_name="social_network", faulty_service="user-service"),
+            # ==================== OPENTELEMETRY FAULT INJECTOR ====================
+            "astronomy_shop_ad_service_failure": AdServiceFailure,
+            "astronomy_shop_ad_service_high_cpu": AdServiceHighCpu,
+            "astronomy_shop_ad_service_manual_gc": AdServiceManualGc,
+            "astronomy_shop_cart_service_failure": CartServiceFailure,
+            "astronomy_shop_ad_service_image_slow_load": ImageSlowLoad,
+            "astronomy_shop_payment_service_failure": PaymentServiceFailure,
+            "astronomy_shop_payment_service_unreachable": PaymentServiceUnreachable,
+            "astronomy_shop_product_catalog_service_failure": ProductCatalogServiceFailure,
+            "astronomy_shop_recommendation_service_cache_failure": RecommendationServiceCacheFailure,
+            "kafka_queue_problems": KafkaQueueProblems,
+            "loadgenerator_flood_homepage": LoadGeneratorFloodHomepage,
+            # ==================== TRAIN TICKET FAULT INJECTOR ====================
+            "trainticket_f17_nested_sql_select_clause_error": TrainTicketF17,
+            "trainticket_f22_sql_column_name_mismatch_error": TrainTicketF22,
+            # ==================== HARDWARE FAULT INJECTOR ====================
+            "read_error": ReadError,
+            "latent_sector_error": LatentSectorError,
+            "silent_data_corruption": SilentDataCorruption,
+            # ==================== DIRECT K8S API ====================
+            "ingress_misroute": lambda: IngressMisroute(path="/api", correct_service="frontend-service", wrong_service="recommendation-service"),
+            "network_policy_block": lambda: NetworkPolicyBlock(faulty_service="payment-service"),
+            # ==================== MULTIPLE INDEPENDENT FAILURES ====================
+            "social_net_hotel_res_astro_shop_concurrent_failures": lambda: MultipleIndependentFailures(problems=[K8STargetPortMisconfig(faulty_service="user-service"),MongoDBRevokeAuth(faulty_service="mongodb-geo"),WrongServiceSelector(),]),
+            # ad hoc:
+            "kubelet_crash": KubeletCrash,
+            "workload_imbalance": WorkloadImbalance,
+            # ==================== K8S OPERATOR MISOPERATION ==================
+            "operator_overload_replicas": K8SOperatorOverloadReplicasFault,
+            "operator_non_existent_storage": K8SOperatorNonExistentStorageFault,
+            "operator_invalid_affinity_toleration": K8SOperatorInvalidAffinityTolerationFault,
+            "operator_security_context_fault": K8SOperatorSecurityContextFault,
+            "operator_wrong_update_strategy_fault": K8SOperatorWrongUpdateStrategyFault,
+        }
+# fmt: on
+        self.kubectl = KubeCtl()
+        self.non_emulated_cluster_problems = []
+
+    def get_problem_instance(self, problem_id: str):
+        if problem_id not in self.PROBLEM_REGISTRY:
+            raise ValueError(f"Problem ID {problem_id} not found in registry.")
+
+        is_emulated_cluster = self.kubectl.is_emulated_cluster()
+        if is_emulated_cluster and problem_id in self.non_emulated_cluster_problems:
+            raise RuntimeError(f"Problem ID {problem_id} is not supported in emulated clusters.")
+
+        return self.PROBLEM_REGISTRY.get(problem_id)()
+
+    def get_problem(self, problem_id: str):
+        return self.PROBLEM_REGISTRY.get(problem_id)
+
+    def get_problem_ids(self, task_type: str = None):
+        if task_type:
+            return [k for k in self.PROBLEM_REGISTRY.keys() if task_type in k]
+        return list(self.PROBLEM_REGISTRY.keys())
+
+    def get_problem_count(self, task_type: str = None):
+        if task_type:
+            return len([k for k in self.PROBLEM_REGISTRY.keys() if task_type in k])
+        return len(self.PROBLEM_REGISTRY)
diff --git a/sregym/conductor/problems/resource_request.py b/sregym/conductor/problems/resource_request.py
new file mode 100644
index 0000000..f6b7d12
--- /dev/null
+++ b/sregym/conductor/problems/resource_request.py
@@ -0,0 +1,91 @@
+import copy
+from abc import abstractmethod
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ResourceRequest(Problem):
+    def __init__(self, app_name: str = "hotel_reservation", faulty_service: str = "frontend"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if self.app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif self.app_name == "social_network":
+            self.app = SocialNetwork()
+        elif self.app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app_name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        # Note: root_cause will be set in subclasses (ResourceRequestTooLarge/ResourceRequestTooSmall)
+        # diagnosis_oracle will be set in subclasses after root_cause is set
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="resource_request",
+            microservices=[self.faulty_service],
+            duration=self.set_memory_limit,  # Not a duration
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="resource_request",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @abstractmethod
+    def set_memory_limit(self, deployment_yaml) -> dict:
+        pass
+
+
+class ResourceRequestTooLarge(ResourceRequest):
+    def __init__(self, app_name: str = "hotel_reservation", faulty_service: str = "frontend"):
+        super().__init__(app_name, faulty_service)
+        self.root_cause = f"The deployment `{self.faulty_service}` has a memory request that exceeds the node's memory capacity, causing pods to be unschedulable and remain in Pending state."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    def set_memory_limit(self, deployment_yaml):
+        dyaml = copy.deepcopy(deployment_yaml)
+        upper_limit = self.kubectl.get_node_memory_capacity()
+        new_limit = self.kubectl.format_k8s_memory((upper_limit + 100 * 1024) * 2)
+        dyaml["spec"]["template"]["spec"]["containers"][0]["resources"]["requests"]["memory"] = new_limit
+        print(f"Setting memory request to {new_limit} for {self.faulty_service}")
+        return dyaml
+
+
+class ResourceRequestTooSmall(ResourceRequest):
+    def __init__(self, app_name: str = "hotel_reservation", faulty_service: str = "frontend"):
+        super().__init__(app_name, faulty_service)
+        self.root_cause = f"The deployment `{self.faulty_service}` has a memory limit that is too small (10Mi), causing pods to be killed due to OOM (Out of Memory) errors."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+    def set_memory_limit(self, deployment_yaml):
+        dyaml = copy.deepcopy(deployment_yaml)
+        new_limit = "10Mi"
+        dyaml["spec"]["template"]["spec"]["containers"][0]["resources"].setdefault("limits", dict())[
+            "memory"
+        ] = new_limit
+        print(f"Setting memory limit to {new_limit} for {self.faulty_service}")
+        return dyaml
diff --git a/sregym/conductor/problems/revoke_auth.py b/sregym/conductor/problems/revoke_auth.py
new file mode 100644
index 0000000..c2a68f0
--- /dev/null
+++ b/sregym/conductor/problems/revoke_auth.py
@@ -0,0 +1,47 @@
+"""MongoDB revoke authentication problem in the HotelReservation application."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class MongoDBRevokeAuth(Problem):
+    def __init__(self, faulty_service: str = "mongodb-geo"):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = faulty_service
+        self.root_cause = f"The service `{self.faulty_service}-db` is configured to revoke the access to the database for the service `{self.faulty_service}`."
+        # NOTE: change the faulty service to mongodb-rate to create another scenario
+        # self.faulty_service = "mongodb-rate"
+        self.app.payload_script = (
+            TARGET_MICROSERVICES / "hotelReservation/wrk2/scripts/hotel-reservation/mixed-workload_type_1.lua"
+        )
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="revoke_auth",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._recover(fault_type="revoke_auth", microservices=[self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/rolling_update_misconfigured.py b/sregym/conductor/problems/rolling_update_misconfigured.py
new file mode 100644
index 0000000..3579716
--- /dev/null
+++ b/sregym/conductor/problems/rolling_update_misconfigured.py
@@ -0,0 +1,45 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.rolling_update_misconfiguration_mitigation import RollingUpdateMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class RollingUpdateMisconfigured(Problem):
+    def __init__(self, app_name: str = "social_network"):
+        self.faulty_service = "custom-service"
+        self.app_name = app_name
+
+        if self.app_name == "social_network":
+            self.app = SocialNetwork()
+        elif self.app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The deployment `{self.faulty_service}` has a misconfigured rolling update strategy (maxUnavailable=100%, maxSurge=0%) with an init container that hangs indefinitely, causing the deployment to be stuck during updates."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = RollingUpdateMitigationOracle(problem=self, deployment_name=self.faulty_service)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(fault_type="rolling_update_misconfigured", microservices=[self.faulty_service])
+
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(fault_type="rolling_update_misconfigured", microservices=[self.faulty_service])
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}")
diff --git a/sregym/conductor/problems/scale_pod.py b/sregym/conductor/problems/scale_pod.py
new file mode 100644
index 0000000..7753955
--- /dev/null
+++ b/sregym/conductor/problems/scale_pod.py
@@ -0,0 +1,52 @@
+"""Scale pod replica to zero problem for the SocialNetwork application."""
+
+import time
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.scale_pod_zero_mitigation import ScalePodZeroMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ScalePodSocialNet(Problem):
+    def __init__(self):
+        self.app = SocialNetwork()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        # self.faulty_service = "url-shorten-mongodb"
+        self.faulty_service = "user-service"
+        # Choose a very front service to test - this will directly cause an exception
+        # TODO: We should create more problems with this using different faulty services
+        # self.faulty_service = "nginx-thrift"
+        self.root_cause = f"The deployment `{self.faulty_service}` is scaled down to 0 replicas, causing the service to be unavailable."
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = ScalePodZeroMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="scale_pods_to_zero",
+            microservices=[self.faulty_service],
+        )
+        # Terminating the pod may take long time when scaling
+        time.sleep(30)
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="scale_pods_to_zero",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/service_dns_resolution_failure.py b/sregym/conductor/problems/service_dns_resolution_failure.py
new file mode 100644
index 0000000..5ea6b69
--- /dev/null
+++ b/sregym/conductor/problems/service_dns_resolution_failure.py
@@ -0,0 +1,54 @@
+from sregym.conductor.oracles.dns_resolution_mitigation import DNSResolutionMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ServiceDNSResolutionFailure(Problem):
+    def __init__(self, app_name="astronomy_shop", faulty_service="frontend"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if app_name == "social_network":
+            self.app = SocialNetwork()
+        elif app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"CoreDNS is configured with an NXDOMAIN template for the service `{self.faulty_service}.{self.namespace}.svc.cluster.local`, causing DNS resolution to fail for this service."
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = DNSResolutionMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector = VirtualizationFaultInjector(namespace=self.namespace)
+        self.injector._inject(
+            fault_type="service_dns_resolution_failure",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector = VirtualizationFaultInjector(namespace=self.namespace)
+        self.injector._recover(
+            fault_type="service_dns_resolution_failure",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/sidecar_port_conflict.py b/sregym/conductor/problems/sidecar_port_conflict.py
new file mode 100644
index 0000000..0826132
--- /dev/null
+++ b/sregym/conductor/problems/sidecar_port_conflict.py
@@ -0,0 +1,53 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class SidecarPortConflict(Problem):
+    def __init__(self, app_name: str = "astronomy_shop", faulty_service: str = "frontend"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if app_name == "social_network":
+            self.app = SocialNetwork()
+        elif app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The deployment `{self.faulty_service}` has a sidecar container that binds to the same port as the main container, causing port conflicts and preventing the service from starting properly."
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="sidecar_port_conflict",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="sidecar_port_conflict",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/silent_data_corruption.py b/sregym/conductor/problems/silent_data_corruption.py
new file mode 100644
index 0000000..4ee4ccc
--- /dev/null
+++ b/sregym/conductor/problems/silent_data_corruption.py
@@ -0,0 +1,249 @@
+from enum import StrEnum
+import json
+import time
+from typing import Optional
+
+from sregym.conductor.oracles.compound import CompoundedOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_kernel import KernelInjector
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+from sregym.conductor.oracles.localization import LocalizationOracle
+from sregym.service.dm_flakey_manager import DM_FLAKEY_DEVICE_NAME, DmFlakeyManager
+from sregym.conductor.oracles.workload import WorkloadOracle
+
+
+class SilentDataCorruptionStrategy(StrEnum):
+    READ_CORRUPT = "read_corrupt"
+    WRITE_CORRUPT = "write_corrupt"
+    BOTH_CORRUPT = "both_corrupt"
+
+
+class SilentDataCorruption(Problem):
+
+    def __init__(
+        self,
+        target_deploy: str = "mongodb-geo",
+        namespace: str = "hotel-reservation",
+        strategy: SilentDataCorruptionStrategy = SilentDataCorruptionStrategy.BOTH_CORRUPT,
+        probability: int = 100, # (0-100)% probability 
+        up_interval: int = 0,  # Seconds device is healthy
+        down_interval: int = 1,  # Seconds device corrupts data
+    ):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = namespace
+        self.deploy = target_deploy
+        self.injector = KernelInjector(self.kubectl)
+        self.dm_flakey_manager = DmFlakeyManager(self.kubectl)
+        self.target_node: Optional[str] = None
+        self.strategy = strategy
+        self.probability = probability
+        self.up_interval = up_interval
+        self.down_interval = down_interval
+        self.probability = self.probability * 10000000 # (0-1000000000 scale) for (0-100% probability)
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.root_cause = "There's a silent data corruption on the hard drive that the mongodb-geo service's data is on."
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+
+    def requires_khaos(self) -> bool:
+        """This problem requires Khaos for dm-flakey infrastructure setup."""
+        return True
+
+    def _discover_node_for_deploy(self) -> Optional[str]:
+        """Return the node where the target deployment is running."""
+        # First try with a label selector (common OpenEBS hotel-reservation pattern)
+        svc = self.deploy.split("-", 1)[-1]  # e.g. "geo"
+        cmd = f"kubectl -n {self.namespace} get pods -l app=mongodb,component={svc} -o json"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            out = out[0]
+        data = json.loads(out or "{}")
+        for item in data.get("items", []):
+            if item.get("status", {}).get("phase") == "Running":
+                return item["spec"]["nodeName"]
+
+        # Fallback: search by pod name prefix
+        cmd = f"kubectl -n {self.namespace} get pods -o json"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            out = out[0]
+        data = json.loads(out or "{}")
+        for item in data.get("items", []):
+            name = item["metadata"]["name"]
+            if name.startswith(self.deploy) and item.get("status", {}).get("phase") == "Running":
+                return item["spec"]["nodeName"]
+
+        return None
+
+    def _get_mongodb_pod(self) -> Optional[str]:
+        svc = self.deploy.split("-", 1)[-1]
+        cmd = f"kubectl -n {self.namespace} get pods -l app=mongodb,component={svc} -o jsonpath='{{.items[0].metadata.name}}'"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            out = out[0]
+        pod_name = out.strip() if out else ""
+        if not pod_name or pod_name.startswith("error"):
+            cmd = f"kubectl -n {self.namespace} get pods -o json"
+            out = self.kubectl.exec_command(cmd)
+            if isinstance(out, tuple):
+                out = out[0]
+            data = json.loads(out or "{}")
+            for item in data.get("items", []):
+                name = item["metadata"]["name"]
+                if name.startswith(self.deploy) and item.get("status", {}).get("phase") == "Running":
+                    return name
+        return pod_name if pod_name else None
+
+    def _get_database_name(self) -> str:
+        svc = self.deploy.split("-", 1)[-1]
+        return f"{svc}-db"
+
+    def mongo_write(self, hotel_id: str, lat: float, lon: float) -> bool:
+        pod_name = self._get_mongodb_pod()
+        if not pod_name:
+            return False
+        db_name = self._get_database_name()
+        collection = self.deploy.split("-", 1)[-1]
+        write_cmd = (
+            f"kubectl -n {self.namespace} exec {pod_name} -- "
+            f"mongo {db_name} --eval "
+            f"'db.{collection}.insertOne({{hotelId: \"{hotel_id}\", lat: {lat}, lon: {lon}}})' "
+            f"--quiet --username admin --password admin --authenticationDatabase admin"
+        )
+        try:
+            out = self.kubectl.exec_command(write_cmd)
+            fsync_cmd = (
+                f"kubectl -n {self.namespace} exec {pod_name} -- "
+                f"mongo {db_name} --eval 'db.runCommand({{fsync: 1}})' "
+                f"--quiet --username admin --password admin --authenticationDatabase admin"
+            )
+            self.kubectl.exec_command(fsync_cmd)
+            self.kubectl.exec_command(f"kubectl -n {self.namespace} exec {pod_name} -- sync")
+            return True
+        except Exception:
+            return False
+
+    def mongo_read(self, hotel_id: str) -> Optional[dict]:
+        pod_name = self._get_mongodb_pod()
+        if not pod_name:
+            return None
+        db_name = self._get_database_name()
+        collection = self.deploy.split("-", 1)[-1]
+        read_cmd = (
+            f"kubectl -n {self.namespace} exec {pod_name} -- "
+            f"mongo {db_name} --eval 'db.{collection}.findOne({{hotelId: \"{hotel_id}\"}})' "
+            f"--quiet --username admin --password admin --authenticationDatabase admin"
+        )
+        try:
+            out = self.kubectl.exec_command(read_cmd)
+        except Exception:
+            return None
+
+    def _get_corruption_features(self) -> str:
+        """
+        Build the dm-flakey feature string based on strategy.
+        Returns features like: "random_read_corrupt 500000000" or "random_read_corrupt 500000000 random_write_corrupt 500000000"
+        """
+        features = []
+        
+        if self.strategy == SilentDataCorruptionStrategy.READ_CORRUPT:
+            features.append(f"random_read_corrupt {self.probability}")
+        elif self.strategy == SilentDataCorruptionStrategy.WRITE_CORRUPT:
+            features.append(f"random_write_corrupt {self.probability}")
+        elif self.strategy == SilentDataCorruptionStrategy.BOTH_CORRUPT:
+            features.append(f"random_read_corrupt {self.probability}")
+            features.append(f"random_write_corrupt {self.probability}")
+        
+        return " ".join(features)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print(f"[SDC] Starting silent data corruption injection for {self.deploy}")
+
+        # Get target node where the deployment is running
+        self.target_node = self._discover_node_for_deploy()
+        if not self.target_node:
+            raise RuntimeError(f"Could not find running node for deployment {self.deploy}")
+
+        print(f"[SDC] Target node: {self.target_node}")
+        print(f"[SDC] Strategy: {self.strategy}")
+        print(f"[SDC] Probability: {self.probability}/1000000000 ({self.probability/10000000:.1f}%)")
+        print(f"[SDC] Up interval: {self.up_interval}s, Down interval: {self.down_interval}s")
+
+        # Get corruption features string
+        features = self._get_corruption_features()
+        print(f"[SDC] Features: {features}")
+
+        # The dm-flakey device is already set up by DmFlakeyManager in Conductor
+        # We just need to configure it with corruption features
+        
+        print(f"[SDC] Configuring dm-flakey device for corruption...")
+        self.injector.dm_flakey_reload(
+            self.target_node,
+            DM_FLAKEY_DEVICE_NAME,
+            up_interval=self.up_interval,
+            down_interval=self.down_interval,
+            features=features
+        )
+
+        print(f"[SDC] Triggering MongoDB write and read to exercise corruption...")
+        import random
+        for _ in range(10):
+            test_id = "SDC_TRIGGER_"+str(random.randint(0, 10000))
+            lat = 30 + random.randint(0, 10000)*0.0001
+            lon = -120 + random.randint(0, 10000)*0.0001
+            self.mongo_write(test_id, lat, lon)
+            self.injector.drop_caches(self.target_node, show_log=False)
+            self.mongo_read(test_id)
+
+        print(f"[SDC] Silent data corruption injection complete")
+        if self.up_interval == 0:
+            print(f"[SDC] ⚠️  Device corruption is ALWAYS ACTIVE (no healthy intervals)")
+        else:
+            print(f"[SDC] Device will corrupt data for {self.down_interval}s every {self.up_interval + self.down_interval}s")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print(f"[SDC] Starting recovery from silent data corruption")
+
+        # Restore dm-flakey device to normal operation
+        if hasattr(self, "target_node") and self.target_node:
+            print(f"[SDC] Restoring dm-flakey device to normal operation on {self.target_node}")
+            self.injector.dm_flakey_reload(
+                self.target_node,
+                DM_FLAKEY_DEVICE_NAME,
+                up_interval=1,
+                down_interval=0,
+                features=""
+            )
+            print(f"[SDC] ✅ dm-flakey device restored to normal operation")
+        
+        # Clean up and redeploy the app
+        self.app.cleanup()
+        
+        try:
+            cleanup_pods = self.kubectl.exec_command(
+                "kubectl get pods -n openebs --no-headers | grep 'cleanup-pvc-' | awk '{print $1}'"
+            ).strip()
+            if cleanup_pods:
+                pod_list = [p for p in cleanup_pods.splitlines() if p.strip()]
+                for pod in pod_list:
+                    # Delete failed cleanup pods
+                    self.kubectl.exec_command(f"kubectl delete pod -n openebs {pod} --ignore-not-found")
+                print(f"[SDC] Cleaned up {len(pod_list)} OpenEBS cleanup pod(s)")
+        except Exception as e:
+            print(f"[SDC] ⚠️  Warning: Failed to clean up OpenEBS cleanup pods: {e}")
+        
+        self.dm_flakey_manager.setup_openebs_dm_flakey_infrastructure() # This helps clean up any corrupted data on the affected storage directories
+        self.app.deploy()
+        self.app.start_workload()
+        
+        print(f"[SDC] ✅ Recovery complete - App restarted with clean state")
diff --git a/sregym/conductor/problems/stale_coredns_config.py b/sregym/conductor/problems/stale_coredns_config.py
new file mode 100644
index 0000000..9eab9dd
--- /dev/null
+++ b/sregym/conductor/problems/stale_coredns_config.py
@@ -0,0 +1,54 @@
+from sregym.conductor.oracles.dns_resolution_mitigation import DNSResolutionMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class StaleCoreDNSConfig(Problem):
+    def __init__(self, app_name="astronomy_shop"):
+        self.app_name = app_name
+        self.faulty_service = None
+
+        if app_name == "social_network":
+            self.app = SocialNetwork()
+        elif app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = "CoreDNS is configured with a stale NXDOMAIN template for all .svc.cluster.local domains, causing DNS resolution to fail for all cluster-internal services."
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = DNSResolutionMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector = VirtualizationFaultInjector(namespace=self.namespace)
+        self.injector._inject(
+            fault_type="stale_coredns_config",
+            microservices=None,
+        )
+        print(f"Injected stale CoreDNS config | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector = VirtualizationFaultInjector(namespace=self.namespace)
+        self.injector._recover(
+            fault_type="stale_coredns_config",
+            microservices=None,
+        )
+        print(f"Recovered from stale CoreDNS config | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/storage_user_unregistered.py b/sregym/conductor/problems/storage_user_unregistered.py
new file mode 100644
index 0000000..2cac6eb
--- /dev/null
+++ b/sregym/conductor/problems/storage_user_unregistered.py
@@ -0,0 +1,50 @@
+"""MongoDB storage user unregistered problem in the HotelReservation application."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class MongoDBUserUnregistered(Problem):
+    def __init__(self, faulty_service: str = "mongodb-geo"):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = faulty_service
+        # NOTE: change the faulty service to mongodb-rate to create another scenario
+        # self.faulty_service = "mongodb-rate"
+        self.root_cause = f"The MongoDB service `{self.faulty_service}` has an unregistered user, causing authentication failures for the associated service."
+        self.app.payload_script = (
+            TARGET_MICROSERVICES / "hotelReservation/wrk2/scripts/hotel-reservation/mixed-workload_type_1.lua"
+        )
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="storage_user_unregistered",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="storage_user_unregistered",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/taint_no_toleration.py b/sregym/conductor/problems/taint_no_toleration.py
new file mode 100644
index 0000000..8c79146
--- /dev/null
+++ b/sregym/conductor/problems/taint_no_toleration.py
@@ -0,0 +1,62 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class TaintNoToleration(Problem):
+    def __init__(self):
+        self.app = SocialNetwork()
+        self.namespace = self.app.namespace
+        self.kubectl = KubeCtl()
+
+        # ── pick all real worker nodes dynamically ───────────────────────
+        self.faulty_nodes = self._pick_worker_nodes()
+        self.faulty_service = "user-service"
+        self.root_cause = f"Worker nodes are tainted with sre-fault=blocked:NoSchedule, but the deployment `{self.faulty_service}` has a toleration for a different key (dummy-key), causing pods to be unschedulable and remain in Pending state."
+
+        super().__init__(app=self.app, namespace=self.namespace)
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        # TODO: support more precise diagnosis oracle: Nodes or DeploymentConfiguration
+
+        self.app.create_workload()
+        self.mitigation_oracle = MitigationOracle(problem=self)
+
+        self.injector = VirtualizationFaultInjector(namespace=self.namespace)
+
+    def _pick_worker_nodes(self) -> list[str]:
+        """Return the names of all nodes that are *not* control-plane."""
+        nodes = self.kubectl.core_v1_api.list_node().items
+        worker_names = []
+        for n in nodes:
+            labels = n.metadata.labels or {}
+            if "node-role.kubernetes.io/control-plane" not in labels:
+                worker_names.append(n.metadata.name)
+        if not worker_names:
+            # fallback to first node if somehow all are control-plane
+            return [nodes[0].metadata.name]
+        return worker_names
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print(f"Injecting Fault to Service {self.faulty_service} on Nodes {self.faulty_nodes}")
+        for node in self.faulty_nodes:
+            self.kubectl.exec_command(f"kubectl taint node {node} sre-fault=blocked:NoSchedule --overwrite")
+
+        patch = """[{"op": "add", "path": "/spec/template/spec/tolerations",
+                     "value": [{"key": "dummy-key", "operator": "Exists", "effect": "NoSchedule"}]}]"""
+        self.kubectl.exec_command(
+            f"kubectl patch deployment {self.faulty_service} -n {self.namespace} --type='json' -p='{patch}'"
+        )
+        self.kubectl.exec_command(f"kubectl delete pod -l app={self.faulty_service} -n {self.namespace}")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("Fault Recovery")
+        # assuming recover_toleration_without_matching_taint can accept multiple services and a node list
+        for node in self.faulty_nodes:
+            self.injector.recover_toleration_without_matching_taint([self.faulty_service], node_name=node)
diff --git a/sregym/conductor/problems/target_port.py b/sregym/conductor/problems/target_port.py
new file mode 100644
index 0000000..1e8bee5
--- /dev/null
+++ b/sregym/conductor/problems/target_port.py
@@ -0,0 +1,44 @@
+"""K8S misconfig fault problem in the SocialNetwork application."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.target_port_mitigation import TargetPortMisconfigMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class K8STargetPortMisconfig(Problem):
+    def __init__(self, faulty_service="user-service"):
+        app = SocialNetwork()
+        super().__init__(app=app, namespace=app.namespace)
+
+        self.faulty_service = faulty_service
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The service `{self.faulty_service}` has a misconfigured target port (9999 instead of 9090), causing connection failures."
+
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = TargetPortMisconfigMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="misconfig_k8s",
+            microservices=[self.faulty_service],
+        )
+        print(f"[FAULT INJECTED] {self.faulty_service} misconfigured")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="misconfig_k8s",
+            microservices=[self.faulty_service],
+        )
+        print(f"[FAULT RECOVERED] {self.faulty_service}")
diff --git a/sregym/conductor/problems/train_ticket_f22.py b/sregym/conductor/problems/train_ticket_f22.py
new file mode 100644
index 0000000..3a6d833
--- /dev/null
+++ b/sregym/conductor/problems/train_ticket_f22.py
@@ -0,0 +1,51 @@
+import logging
+
+from sregym.conductor.oracles.compound import CompoundedOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.oracles.workload import WorkloadOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_tt import TrainTicketFaultInjector
+from sregym.service.apps.train_ticket import TrainTicket
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+logger = logging.getLogger(__name__)
+
+
+class TrainTicketF22(Problem):
+    def __init__(self):
+        self.app_name = "train-ticket"
+        self.faulty_service = "ts-contacts-service"
+        self.fault_name = "fault-22-sql-column-name-mismatch-error"
+        self.app = TrainTicket()
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.root_cause = f"The deployment `{self.faulty_service}` has a SQL column name mismatch error in its database queries, causing database operation failures."
+
+        self.kubectl = KubeCtl()
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = CompoundedOracle(
+            self,
+            WorkloadOracle(problem=self, wrk_manager=self.app.wrk),
+        )
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector = TrainTicketFaultInjector(namespace=self.namespace)
+        self.injector._inject(
+            fault_type="fault-22-sql-column-name-mismatch-error",
+        )
+        print(f"Injected fault-22-sql-column-name-mismatch-error | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector = TrainTicketFaultInjector(namespace=self.namespace)
+        self.injector._recover(
+            fault_type="fault-22-sql-column-name-mismatch-error",
+        )
+        print(f"Recovered from fault-22-sql-column-name-mismatch-error | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/trainticket_f17.py b/sregym/conductor/problems/trainticket_f17.py
new file mode 100644
index 0000000..c42466d
--- /dev/null
+++ b/sregym/conductor/problems/trainticket_f17.py
@@ -0,0 +1,51 @@
+import logging
+
+from sregym.conductor.oracles.compound import CompoundedOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.mitigation import MitigationOracle
+from sregym.conductor.oracles.workload import WorkloadOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_tt import TrainTicketFaultInjector
+from sregym.service.apps.train_ticket import TrainTicket
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+logger = logging.getLogger(__name__)
+
+
+class TrainTicketF17(Problem):
+    def __init__(self):
+        self.app_name = "train-ticket"
+        self.faulty_service = "ts-voucher-service"
+        self.fault_name = "fault-17-nested-sql-select-clause-error"
+        self.app = TrainTicket()
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        self.root_cause = f"The deployment `{self.faulty_service}` has a nested SQL SELECT clause error in its database queries, causing database operation failures."
+
+        self.kubectl = KubeCtl()
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = CompoundedOracle(
+            self,
+            WorkloadOracle(problem=self, wrk_manager=self.app.wrk),
+        )
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector = TrainTicketFaultInjector(namespace=self.namespace)
+        self.injector._inject(
+            fault_type="fault-17-nested-sql-select-clause-error",
+        )
+        print(f"Injected fault-17-nested-sql-select-clause-error | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector = TrainTicketFaultInjector(namespace=self.namespace)
+        self.injector._recover(
+            fault_type="fault-17-nested-sql-select-clause-error",
+        )
+        print(f"Recovered from fault-17-nested-sql-select-clause-error | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/update_incompatible_correlated.py b/sregym/conductor/problems/update_incompatible_correlated.py
new file mode 100644
index 0000000..70be9bb
--- /dev/null
+++ b/sregym/conductor/problems/update_incompatible_correlated.py
@@ -0,0 +1,54 @@
+from sregym.conductor.oracles.incorrect_image_mitigation import IncorrectImageMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class UpdateIncompatibleCorrelated(Problem):
+    def __init__(self):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = [
+            "mongodb-geo",
+            "mongodb-profile",
+            "mongodb-rate",
+            "mongodb-recommendation",
+            "mongodb-reservation",
+            "mongodb-user",
+        ]
+        self.root_cause = "The MongoDB deployments (mongodb-geo, mongodb-profile, mongodb-rate, and mongodb-recommendation) are updated to use an incompatible image version 'mongo:8.0.14-rc0'."
+        self.injector = ApplicationFaultInjector(namespace=self.namespace)
+        super().__init__(app=self.app, namespace=self.namespace)
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        # not really the incorrect image problem, just reuse the incorrect image function
+        self.mitigation_oracle = IncorrectImageMitigationOracle(
+            problem=self, actual_images={service: "mongo:8.0.14-rc0" for service in self.faulty_service}
+        )
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        # not really the incorrect image problem, just reuse the incorrect image function
+        for service in self.faulty_service:
+            self.injector.inject_incorrect_image(
+                deployment_name=service, namespace=self.namespace, bad_image="mongo:8.0.14-rc0"
+            )
+            print(f"Service: {service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        for service in self.faulty_service:
+            self.injector.recover_incorrect_image(
+                deployment_name=service,
+                namespace=self.namespace,
+                correct_image="mongo:4.4.6",
+            )
diff --git a/sregym/conductor/problems/valkey_auth_disruption.py b/sregym/conductor/problems/valkey_auth_disruption.py
new file mode 100644
index 0000000..971020e
--- /dev/null
+++ b/sregym/conductor/problems/valkey_auth_disruption.py
@@ -0,0 +1,36 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.valkey_auth_mitigation import ValkeyAuthMitigation
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ValkeyAuthDisruption(Problem):
+    def __init__(self):
+        app = AstronomyShop()
+        super().__init__(app=app, namespace=app.namespace)
+
+        self.faulty_service = "valkey-cart"
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The valkey-cart service has an invalid password configured, causing authentication failures for dependent services."
+
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+        self.mitigation_oracle = ValkeyAuthMitigation(problem=self)
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._inject(fault_type="valkey_auth_disruption")
+        print(f"[FAULT INJECTED] valkey auth disruption")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._recover(fault_type="valkey_auth_disruption")
+        print(f"[FAULT INJECTED] valkey auth disruption")
diff --git a/sregym/conductor/problems/valkey_memory_disruption.py b/sregym/conductor/problems/valkey_memory_disruption.py
new file mode 100644
index 0000000..bf9ee12
--- /dev/null
+++ b/sregym/conductor/problems/valkey_memory_disruption.py
@@ -0,0 +1,33 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_app import ApplicationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class ValkeyMemoryDisruption(Problem):
+    def __init__(self):
+        app = AstronomyShop()
+        super().__init__(app=app, namespace=app.namespace)
+
+        self.faulty_service = "valkey-cart"
+        self.kubectl = KubeCtl()
+        self.root_cause = "A job is flooding the valkey-cart store with large payloads (10MB each), causing it to enter an out-of-memory (OOM) state."
+
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._inject(fault_type="valkey_memory_disruption")
+        print(f"[FAULT INJECTED] valkey auth disruption")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        injector = ApplicationFaultInjector(namespace=self.namespace)
+        injector._recover(fault_type="valkey_memory_disruption")
+        print(f"[FAULT INJECTED] valkey memory disruption")
diff --git a/sregym/conductor/problems/workload_imbalance.py b/sregym/conductor/problems/workload_imbalance.py
new file mode 100644
index 0000000..bf26a63
--- /dev/null
+++ b/sregym/conductor/problems/workload_imbalance.py
@@ -0,0 +1,58 @@
+import time
+
+from sregym.conductor.oracles.imbalance_mitigation import ImbalanceMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class WorkloadImbalance(Problem):
+    def __init__(self):
+        self.app = AstronomyShop()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = ["frontend"]
+        self.injector = VirtualizationFaultInjector(namespace="kube-system")
+        self.injector_for_scale = VirtualizationFaultInjector(namespace=self.namespace)
+        self.root_cause = "The kube-proxy daemonset is using a buggy image version, and the frontend deployment is scaled to 5 replicas with a high workload surge, causing workload imbalance across pods."
+        super().__init__(app=self.app, namespace=self.namespace)
+
+        # not so precise here by now
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.mitigation_oracle = ImbalanceMitigationOracle(problem=self)
+
+        self.app.create_workload()
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        self.injector.inject_daemon_set_image_replacement(
+            daemon_set_name="kube-proxy", new_image="docker.io/jackcuii/kube-proxy:v1.31.12"
+        )
+        print(f"Service: {self.faulty_service[0]} | Namespace: {self.namespace}\n")
+        self.injector_for_scale.scale_pods_to(replicas=5, microservices=self.faulty_service)
+        self.kubectl.wait_for_ready(namespace=self.namespace)
+        # surge the workload
+        print("== Surge the workload ==")
+        self.app.wrk.change_users(number=500, namespace=self.namespace)
+        self.app.wrk.change_spawn_rate(rate=50, namespace=self.namespace)
+        print("== Wait the workload to be stable ==")
+        time.sleep(10)
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        self.injector.inject_daemon_set_image_replacement(
+            daemon_set_name="kube-proxy", new_image="registry.k8s.io/kube-proxy:v1.31.13"
+        )
+        print(f"Service: {self.faulty_service[0]} | Namespace: {self.namespace}\n")
+        self.injector_for_scale.scale_pods_to(replicas=1, microservices=self.faulty_service)
+        self.kubectl.wait_for_ready(namespace=self.namespace)
+        # reduce the workload
+        print("== Reduce the workload ==")
+        self.app.wrk.change_users(number=10, namespace=self.namespace)
+        self.app.wrk.change_spawn_rate(rate=1, namespace=self.namespace)
diff --git a/sregym/conductor/problems/wrong_bin_usage.py b/sregym/conductor/problems/wrong_bin_usage.py
new file mode 100644
index 0000000..6136daf
--- /dev/null
+++ b/sregym/conductor/problems/wrong_bin_usage.py
@@ -0,0 +1,49 @@
+"""Wrong binary usage problem in the HotelReservation application."""
+
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.wrong_bin_mitigation import WrongBinMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class WrongBinUsage(Problem):
+    def __init__(self, faulty_service: str = "profile"):
+        self.app = HotelReservation()
+        self.kubectl = KubeCtl()
+        self.namespace = self.app.namespace
+        self.faulty_service = faulty_service
+        self.root_cause = f"The deployment `{self.faulty_service}` is configured to use the wrong binary (geo instead of profile), causing the service to malfunction."
+
+        self.app.payload_script = (
+            TARGET_MICROSERVICES / "hotelReservation/wrk2/scripts/hotel-reservation/mixed-workload_type_1.lua"
+        )
+        super().__init__(app=self.app, namespace=self.app.namespace)
+        # === Attach evaluation oracles ===
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = WrongBinMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="wrong_bin_usage",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="wrong_bin_usage",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/wrong_dns_policy.py b/sregym/conductor/problems/wrong_dns_policy.py
new file mode 100644
index 0000000..eeaded4
--- /dev/null
+++ b/sregym/conductor/problems/wrong_dns_policy.py
@@ -0,0 +1,54 @@
+from sregym.conductor.oracles.dns_resolution_mitigation import DNSResolutionMitigationOracle
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class WrongDNSPolicy(Problem):
+    def __init__(self, app_name="astronomy_shop", faulty_service="frontend"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if app_name == "social_network":
+            self.app = SocialNetwork()
+        elif app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The deployment `{self.faulty_service}` has a misconfigured DNS policy (set to None with external nameserver 8.8.8.8), causing DNS resolution failures for cluster-internal services."
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = DNSResolutionMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="wrong_dns_policy",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="wrong_dns_policy",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/problems/wrong_service_selector.py b/sregym/conductor/problems/wrong_service_selector.py
new file mode 100644
index 0000000..b8981ee
--- /dev/null
+++ b/sregym/conductor/problems/wrong_service_selector.py
@@ -0,0 +1,54 @@
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
+from sregym.conductor.oracles.service_endpoint_mitigation import ServiceEndpointMitigationOracle
+from sregym.conductor.problems.base import Problem
+from sregym.generators.fault.inject_virtual import VirtualizationFaultInjector
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.kubectl import KubeCtl
+from sregym.utils.decorators import mark_fault_injected
+
+
+class WrongServiceSelector(Problem):
+    def __init__(self, app_name="astronomy_shop", faulty_service="frontend"):
+        self.app_name = app_name
+        self.faulty_service = faulty_service
+
+        if app_name == "social_network":
+            self.app = SocialNetwork()
+        elif app_name == "hotel_reservation":
+            self.app = HotelReservation()
+        elif app_name == "astronomy_shop":
+            self.app = AstronomyShop()
+        else:
+            raise ValueError(f"Unsupported app name: {app_name}")
+
+        super().__init__(app=self.app, namespace=self.app.namespace)
+
+        self.kubectl = KubeCtl()
+        self.root_cause = f"The service `{self.faulty_service}` has a misconfigured selector that includes an additional incorrect label, preventing it from matching the intended pods."
+
+        self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)
+
+        self.app.create_workload()
+        self.mitigation_oracle = ServiceEndpointMitigationOracle(problem=self)
+
+    @mark_fault_injected
+    def inject_fault(self):
+        print("== Fault Injection ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._inject(
+            fault_type="wrong_service_selector",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
+
+    @mark_fault_injected
+    def recover_fault(self):
+        print("== Fault Recovery ==")
+        injector = VirtualizationFaultInjector(namespace=self.namespace)
+        injector._recover(
+            fault_type="wrong_service_selector",
+            microservices=[self.faulty_service],
+        )
+        print(f"Service: {self.faulty_service} | Namespace: {self.namespace}\n")
diff --git a/sregym/conductor/tasklist.yml.example b/sregym/conductor/tasklist.yml.example
new file mode 100644
index 0000000..2ad43f2
--- /dev/null
+++ b/sregym/conductor/tasklist.yml.example
@@ -0,0 +1,260 @@
+all:
+  problems:
+    faulty_image_correlated:
+    - diagnosis
+    - mitigation
+    update_incompatible_correlated:
+    - diagnosis
+    - mitigation
+    incorrect_image:
+    - diagnosis
+    - mitigation
+    incorrect_port_assignment:
+    - diagnosis
+    - mitigation
+    misconfig_app_hotel_res:
+    - diagnosis
+    - mitigation
+    missing_env_variable_astronomy_shop:
+    - diagnosis
+    - mitigation
+    revoke_auth_mongodb-1:
+    - diagnosis
+    - mitigation
+    revoke_auth_mongodb-2:
+    - diagnosis
+    - mitigation
+    storage_user_unregistered-1:
+    - diagnosis
+    - mitigation
+    storage_user_unregistered-2:
+    - diagnosis
+    - mitigation
+    valkey_auth_disruption:
+    - diagnosis
+    - mitigation
+    valkey_memory_disruption:
+    - diagnosis
+    - mitigation
+    capacity_decrease_rpc_retry_storm:
+    - diagnosis
+    - mitigation
+    gc_capacity_degradation:
+    - diagnosis
+    - mitigation
+    load_spike_rpc_retry_storm:
+    - diagnosis
+    - mitigation
+    assign_to_non_existent_node:
+    - diagnosis
+    - mitigation
+    auth_miss_mongodb:
+    - diagnosis
+    - mitigation
+    configmap_drift_hotel_reservation:
+    - diagnosis
+    - mitigation
+    duplicate_pvc_mounts_astronomy_shop:
+    - diagnosis
+    - mitigation
+    duplicate_pvc_mounts_hotel_reservation:
+    - diagnosis
+    - mitigation
+    duplicate_pvc_mounts_social_network:
+    - diagnosis
+    - mitigation
+    env_variable_shadowing_astronomy_shop:
+    - diagnosis
+    - mitigation
+    k8s_target_port-misconfig:
+    - diagnosis
+    - mitigation
+    liveness_probe_misconfiguration_astronomy_shop:
+    - diagnosis
+    - mitigation
+    liveness_probe_misconfiguration_hotel_reservation:
+    - diagnosis
+    - mitigation
+    liveness_probe_misconfiguration_social_network:
+    - diagnosis
+    - mitigation
+    liveness_probe_too_aggressive_astronomy_shop:
+    - diagnosis
+    - mitigation
+    liveness_probe_too_aggressive_hotel_reservation:
+    - diagnosis
+    - mitigation
+    liveness_probe_too_aggressive_social_network:
+    - diagnosis
+    - mitigation
+    missing_configmap_hotel_reservation:
+    - diagnosis
+    - mitigation
+    missing_configmap_social_network:
+    - diagnosis
+    - mitigation
+    missing_service_astronomy_shop:
+    - diagnosis
+    - mitigation
+    missing_service_hotel_reservation:
+    - diagnosis
+    - mitigation
+    missing_service_social_network:
+    - diagnosis
+    - mitigation
+    namespace_memory_limit:
+    - diagnosis
+    - mitigation
+    pod_anti_affinity_deadlock:
+    - diagnosis
+    - mitigation
+    persistent_volume_affinity_violation:
+    - diagnosis
+    - mitigation
+    pvc_claim_mismatch:
+    - diagnosis
+    - mitigation
+    rbac_misconfiguration:
+    - diagnosis
+    - mitigation
+    readiness_probe_misconfiguration_astronomy_shop:
+    - diagnosis
+    - mitigation
+    readiness_probe_misconfiguration_hotel_reservation:
+    - diagnosis
+    - mitigation
+    readiness_probe_misconfiguration_social_network:
+    - diagnosis
+    - mitigation
+    resource_request_too_large:
+    - diagnosis
+    - mitigation
+    resource_request_too_small:
+    - diagnosis
+    - mitigation
+    rolling_update_misconfigured_hotel_reservation:
+    - diagnosis
+    - mitigation
+    rolling_update_misconfigured_social_network:
+    - diagnosis
+    - mitigation
+    scale_pod_zero_social_net:
+    - diagnosis
+    - mitigation
+    service_dns_resolution_failure_astronomy_shop:
+    - diagnosis
+    - mitigation
+    service_dns_resolution_failure_social_network:
+    - diagnosis
+    - mitigation
+    sidecar_port_conflict_astronomy_shop:
+    - diagnosis
+    - mitigation
+    sidecar_port_conflict_hotel_reservation:
+    - diagnosis
+    - mitigation
+    sidecar_port_conflict_social_network:
+    - diagnosis
+    - mitigation
+    stale_coredns_config_astronomy_shop:
+    - diagnosis
+    - mitigation
+    stale_coredns_config_social_network:
+    - diagnosis
+    - mitigation
+    taint_no_toleration_social_network:
+    - diagnosis
+    - mitigation
+    wrong_bin_usage:
+    - diagnosis
+    - mitigation
+    wrong_dns_policy_astronomy_shop:
+    - diagnosis
+    - mitigation
+    wrong_dns_policy_hotel_reservation:
+    - diagnosis
+    - mitigation
+    wrong_dns_policy_social_network:
+    - diagnosis
+    - mitigation
+    wrong_service_selector_astronomy_shop:
+    - diagnosis
+    - mitigation
+    wrong_service_selector_hotel_reservation:
+    - diagnosis
+    - mitigation
+    wrong_service_selector_social_network:
+    - diagnosis
+    - mitigation
+    astronomy_shop_ad_service_failure:
+    - diagnosis
+    - mitigation
+    astronomy_shop_ad_service_high_cpu:
+    - diagnosis
+    - mitigation
+    astronomy_shop_ad_service_manual_gc:
+    - diagnosis
+    - mitigation
+    astronomy_shop_cart_service_failure:
+    - diagnosis
+    - mitigation
+    astronomy_shop_ad_service_image_slow_load:
+    - diagnosis
+    - mitigation
+    astronomy_shop_payment_service_failure:
+    - diagnosis
+    - mitigation
+    astronomy_shop_payment_service_unreachable:
+    - diagnosis
+    - mitigation
+    astronomy_shop_product_catalog_service_failure:
+    - diagnosis
+    - mitigation
+    astronomy_shop_recommendation_service_cache_failure:
+    - diagnosis
+    - mitigation
+    kafka_queue_problems_hotel_reservation:
+    - diagnosis
+    - mitigation
+    loadgenerator_flood_homepage:
+    - diagnosis
+    - mitigation
+    trainticket_f17_nested_sql_select_clause_error:
+    - diagnosis
+    - mitigation
+    trainticket_f22_sql_column_name_mismatch_error:
+    - diagnosis
+    - mitigation
+    read_error:
+    - diagnosis
+    - mitigation
+    ingress_misroute:
+    - diagnosis
+    - mitigation
+    network_policy_block:
+    - diagnosis
+    - mitigation
+    social_net_hotel_res_astro_shop_concurrent_failures:
+    - diagnosis
+    - mitigation
+    kubelet_crash:
+    - diagnosis
+    - mitigation
+    workload_imbalance:
+    - diagnosis
+    - mitigation
+    operator_overload_replicas:
+    - diagnosis
+    - mitigation
+    operator_non_existent_storage:
+    - diagnosis
+    - mitigation
+    operator_invalid_affinity_toleration:
+    - diagnosis
+    - mitigation
+    operator_security_context_fault:
+    - diagnosis
+    - mitigation
+    operator_wrong_update_strategy_fault:
+    - diagnosis
+    - mitigation
diff --git a/sregym/conductor/utils.py b/sregym/conductor/utils.py
new file mode 100644
index 0000000..a8912b8
--- /dev/null
+++ b/sregym/conductor/utils.py
@@ -0,0 +1,4 @@
+def is_ordered_subset(A: list, B: list) -> bool:
+    """Check if list A is a subset of B and in the same order."""
+    it = iter(B)
+    return all(a in it for a in A)
diff --git a/sregym/generators/__init__.py b/sregym/generators/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/generators/fault/__init__.py b/sregym/generators/fault/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/generators/fault/base.py b/sregym/generators/fault/base.py
new file mode 100644
index 0000000..90e00ae
--- /dev/null
+++ b/sregym/generators/fault/base.py
@@ -0,0 +1,65 @@
+"""Interface for fault injector classes.
+
+NOTE: Each layer of injection like ApplicationFaultInjector, OSFaultInjector HardwareFaultInjector, etc.
+are implemented as child classes of FaultInjector.
+"""
+
+import time
+
+
+class FaultInjector:
+    def __init__(self, testbed):
+        self.testbed = testbed
+
+    # Deprecated method
+    def inject_fault(
+        self,
+        fault_type: str,
+        fault_id: str,
+        start_time: float,
+        end_time: float,
+        microservices: list[str] = None,
+    ):
+        """
+        Base class to inject a fault into the specified microservices.
+
+        Parameters:
+        microservices (list[str]): list of microservices to inject the fault into.
+        fault_type (str): Type of fault to inject.
+        fault_id (str): Unique identifier for the fault.
+        start_time (float): Time to start the fault injection (epoch time).
+        end_time (float): Time to end the fault injection (epoch time).
+        """
+        current_time = time.time()
+        if current_time < start_time:
+            time.sleep(start_time - current_time)
+
+        self._inject(microservices, fault_type)
+
+    def _inject(self, fault_type: str, microservices: list[str] = None, duration: str = None):
+        if duration:
+            self._invoke_method("inject", fault_type, microservices, duration)
+        elif microservices:
+            self._invoke_method("inject", fault_type, microservices)
+        else:
+            self._invoke_method("inject", fault_type)
+        time.sleep(6)
+
+    def _recover(
+        self,
+        fault_type: str,
+        microservices: list[str] = None,
+    ):
+        if microservices and fault_type:
+            self._invoke_method("recover", fault_type, microservices)
+        elif fault_type:
+            self._invoke_method("recover", fault_type)
+
+    def _invoke_method(self, action_prefix, *args):
+        """helper: injects/recovers faults based on name"""
+        method_name = f"{action_prefix}_{args[0]}"
+        method = getattr(self, method_name, None)
+        if method:
+            method(*args[1:])
+        else:
+            print(f"Unknown fault type: {args[0]}")
diff --git a/sregym/generators/fault/custom/slow_service.py b/sregym/generators/fault/custom/slow_service.py
new file mode 100644
index 0000000..16c2489
--- /dev/null
+++ b/sregym/generators/fault/custom/slow_service.py
@@ -0,0 +1,42 @@
+import http.server
+import socketserver
+import time
+import random
+
+
+INIT_SECONDS = 15
+_START = time.time()
+
+
+def _initialized() -> bool:
+    return time.time() - _START >= INIT_SECONDS
+
+
+class MainHandler(http.server.SimpleHTTPRequestHandler):
+
+    def _write(self, status: int, body: str):
+        self.send_response(status)
+        self.end_headers()
+        self.wfile.write(body.encode())
+
+    def do_GET(self):
+        path = self.path.rstrip('/')
+        if path in {"/health", "/ready"}:
+            if _initialized():
+                self._write(200, "OK")
+            else:
+
+                time.sleep(random.uniform(0.05, 0.2))
+                self._write(503, "Initializing")
+        else:
+            self._write(200, "Auxiliary service running")
+
+    def log_message(self, fmt, *args):
+        if self.path not in {"/health", "/ready"}:
+            super().log_message(fmt, *args)
+
+
+if __name__ == "__main__":
+    print("[service] starting on :8080 (init {}s)".format(INIT_SECONDS))
+    with socketserver.TCPServer(("", 8080), MainHandler) as httpd:
+        httpd.serve_forever() 
\ No newline at end of file
diff --git a/sregym/generators/fault/helpers.py b/sregym/generators/fault/helpers.py
new file mode 100644
index 0000000..b227e3e
--- /dev/null
+++ b/sregym/generators/fault/helpers.py
@@ -0,0 +1,120 @@
+import subprocess
+
+# SocialNetwork service process names
+sn_svc_process_names = [
+    "ComposePostServ",
+    "HomeTimelineSer",
+    "MediaService",
+    "PostStorageServ",
+    "SocialGraphServ",
+    "TextService",
+    "UserService",
+    "UrlShortenServi",
+    "UserMentionServ",
+    "UserTimelineSer",
+    "UniqueIdService",
+]
+
+# SocialNetwork MongoDB process names
+sn_mongod_process_names = ["mongod"]
+
+# SocialNetwork Redis process names
+sn_redis_process_names = ["redis-server"]
+
+# SocialNetwork Memcached process names
+sn_memcached_process_names = ["memcached"]
+
+# HotelResearvation service process names
+hr_svc_process_names = [
+    "geo",
+    "frontend",
+    "consul",
+    "profile",
+    "rate",
+    "recommendation",
+    "reservation",
+    "search",
+    "user",
+]
+
+# HotelResearvation MongoDB process names
+hr_mongod_process_names = ["mongod"]
+
+# HotelResearvation Memcached process names
+hr_memcached_process_names = ["memcached"]
+
+
+def get_pids_by_name_contain(search_term):
+    """
+    Get a list of PIDs for processes whose command contains the given search term.
+
+    :param search_term: The term to search for in process names (case-sensitive).
+    :return: A list of PIDs (integers) matching the search term.
+    """
+    try:
+        result = subprocess.run(
+            ["ps", "-e", "-o", "pid,comm"],
+            text=True,
+            stdout=subprocess.PIPE,
+            stderr=subprocess.PIPE,
+        )
+
+        if result.returncode != 0:
+            raise RuntimeError(f"Error running ps command: {result.stderr.strip()}")
+
+        # Filter the output for lines containing the search term
+        matching_pids = []
+        for line in result.stdout.splitlines():
+            if search_term in line:
+                parts = line.split(maxsplit=1)
+                if parts:  # Ensure we have at least one part
+                    pid = parts[0]
+                    if pid.isdigit():
+                        matching_pids.append(int(pid))
+
+        return matching_pids
+
+    except Exception as e:
+        print(f"Error: {e}")
+        return []
+
+
+def get_pids_by_name(search_term):
+    """
+    Get a list of PIDs for processes whose command exactly match the given search term.
+
+    :param search_term: The term to search for in process names (case-sensitive).
+    :return: A list of PIDs (integers) matching exactly the search term.
+    """
+    try:
+        result = subprocess.run(
+            ["ps", "-e", "-o", "pid,comm"],
+            text=True,
+            stdout=subprocess.PIPE,
+            stderr=subprocess.PIPE,
+        )
+
+        if result.returncode != 0:
+            raise RuntimeError(f"Error running ps command: {result.stderr.strip()}")
+
+        # Filter the output for lines containing the search term
+        matching_pids = []
+        for line in result.stdout.splitlines():
+            parts = line.split(maxsplit=1)
+            if len(parts) == 2:  # Ensure we have both PID and command
+                pid, command = parts
+                if command == search_term:  # Exact match check
+                    if pid.isdigit():
+                        matching_pids.append(int(pid))
+
+        return matching_pids
+
+    except Exception as e:
+        print(f"Error: {e}")
+        return []
+
+
+if __name__ == "__main__":
+    search_term = "HomeTimelineSer"
+    pids = get_pids_by_name(search_term)
+    print(f"Processes with '{search_term}' in their name: {pids}")
diff --git a/sregym/generators/fault/inject_app.py b/sregym/generators/fault/inject_app.py
new file mode 100644
index 0000000..ce119d2
--- /dev/null
+++ b/sregym/generators/fault/inject_app.py
@@ -0,0 +1,472 @@
+"""Inject faults at the application layer: Code, MongoDB, Redis, etc."""
+
+import base64
+import textwrap
+import time
+
+from kubernetes import client
+
+from sregym.generators.fault.base import FaultInjector
+from sregym.service.kubectl import KubeCtl
+
+
+class ApplicationFaultInjector(FaultInjector):
+    def __init__(self, namespace: str):
+        self.namespace = namespace
+        self.kubectl = KubeCtl()
+        self.mongo_service_pod_map = {"mongodb-rate": "rate", "mongodb-geo": "geo"}
+
+    def delete_service_pods(self, target_service_pods: list[str]):
+        """Kill the corresponding service pod to enforce the fault."""
+        for pod in target_service_pods:
+            delete_pod_command = f"kubectl delete pod {pod} -n {self.namespace}"
+            delete_result = self.kubectl.exec_command(delete_pod_command)
+            print(f"Deleted service pod {pod} to enforce the fault: {delete_result}")
+
+    ############# FAULT LIBRARY ################
+    # A.1 - revoke_auth: Revoke admin privileges in MongoDB - Auth
+    def inject_revoke_auth(self, microservices: list[str]):
+        """Inject a fault to revoke admin privileges in MongoDB."""
+        print(f"Microservices to inject: {microservices}")
+        target_services = ["mongodb-rate", "mongodb-geo"]
+        for service in target_services:
+            if service in microservices:
+                pods = self.kubectl.list_pods(self.namespace)
+                # print(pods)
+                target_mongo_pods = [pod.metadata.name for pod in pods.items if service in pod.metadata.name]
+                print(f"Target MongoDB Pods: {target_mongo_pods}")
+
+                # Find the corresponding service pod
+                target_service_pods = [
+                    pod.metadata.name
+                    for pod in pods.items
+                    if self.mongo_service_pod_map[service] in pod.metadata.name and "mongodb-" not in pod.metadata.name
+                ]
+                print(f"Target Service Pods: {target_service_pods}")
+
+                for pod in target_mongo_pods:
+                    if service == "mongodb-rate":
+                        revoke_command = f"kubectl exec -it {pod} -n {self.namespace} -- /bin/bash /scripts/revoke-admin-rate-mongo.sh"
+                    elif service == "mongodb-geo":
+                        revoke_command = f"kubectl exec -it {pod} -n {self.namespace} -- /bin/bash /scripts/revoke-admin-geo-mongo.sh"
+                    result = self.kubectl.exec_command(revoke_command)
+                    print(f"Injection result for {service}: {result}")
+
+                self.delete_service_pods(target_service_pods)
+                time.sleep(3)
+
+    def recover_revoke_auth(self, microservices: list[str]):
+        target_services = ["mongodb-rate", "mongodb-geo"]
+        for service in target_services:
+            print(f"Microservices to recover: {microservices}")
+            if service in microservices:
+                pods = self.kubectl.list_pods(self.namespace)
+                target_mongo_pods = [pod.metadata.name for pod in pods.items if service in pod.metadata.name]
+                print(f"Target MongoDB Pods for recovery: {target_mongo_pods}")
+
+                # Find the corresponding service pod
+                target_service_pods = [
+                    pod.metadata.name for pod in pods.items if self.mongo_service_pod_map[service] in pod.metadata.name
+                ]
+                for pod in target_mongo_pods:
+                    if service == "mongodb-rate":
+                        recover_command = f"kubectl exec -it {pod} -n {self.namespace} -- /bin/bash /scripts/revoke-mitigate-admin-rate-mongo.sh"
+                    elif service == "mongodb-geo":
+                        recover_command = f"kubectl exec -it {pod} -n {self.namespace} -- /bin/bash /scripts/revoke-mitigate-admin-geo-mongo.sh"
+                    result = self.kubectl.exec_command(recover_command)
+                    print(f"Recovery result for {service}: {result}")
+
+                self.delete_service_pods(target_service_pods)
+
+    # A.2 - storage_user_unregistered: User not registered in MongoDB - Storage/Net
+    def inject_storage_user_unregistered(self, microservices: list[str]):
+        """Inject a fault to create an unregistered user in MongoDB."""
+        target_services = ["mongodb-rate", "mongodb-geo"]
+        for service in target_services:
+            if service in microservices:
+                pods = self.kubectl.list_pods(self.namespace)
+                target_mongo_pods = [pod.metadata.name for pod in pods.items if service in pod.metadata.name]
+                print(f"Target MongoDB Pods: {target_mongo_pods}")
+
+                target_service_pods = [
+                    pod.metadata.name
+                    for pod in pods.items
+                    if pod.metadata.name.startswith(self.mongo_service_pod_map[service])
+                ]
+                for pod in target_mongo_pods:
+                    revoke_command = (
+                        f"kubectl exec -it {pod} -n {self.namespace} -- /bin/bash /scripts/remove-admin-mongo.sh"
+                    )
+                    result = self.kubectl.exec_command(revoke_command)
+                    print(f"Injection result for {service}: {result}")
+
+                self.delete_service_pods(target_service_pods)
+
+    def recover_storage_user_unregistered(self, microservices: list[str]):
+        target_services = ["mongodb-rate", "mongodb-geo"]
+        for service in target_services:
+            if service in microservices:
+                pods = self.kubectl.list_pods(self.namespace)
+                target_mongo_pods = [pod.metadata.name for pod in pods.items if service in pod.metadata.name]
+                print(f"Target MongoDB Pods: {target_mongo_pods}")
+
+                target_service_pods = [
+                    pod.metadata.name
+                    for pod in pods.items
+                    if pod.metadata.name.startswith(self.mongo_service_pod_map[service])
+                ]
+                for pod in target_mongo_pods:
+                    if service == "mongodb-rate":
+                        revoke_command = f"kubectl exec -it {pod} -n {self.namespace} -- /bin/bash /scripts/remove-mitigate-admin-rate-mongo.sh"
+                    elif service == "mongodb-geo":
+                        revoke_command = f"kubectl exec -it {pod} -n {self.namespace} -- /bin/bash /scripts/remove-mitigate-admin-geo-mongo.sh"
+                    result = self.kubectl.exec_command(revoke_command)
+                    print(f"Recovery result for {service}: {result}")
+
+                self.delete_service_pods(target_service_pods)
+
+    # A.3 - misconfig_app: pull the buggy config of the application image - Misconfig
+    def inject_misconfig_app(self, microservices: list[str]):
+        """Inject a fault by pulling a buggy config of the application image.
+
+        NOTE: currently only the geo microservice has a buggy image.
+        """
+        for service in microservices:
+            # Get the deployment associated with the service
+            deployment = self.kubectl.get_deployment(service, self.namespace)
+            if deployment:
+                # Modify the image to use the buggy image
+                for container in deployment.spec.template.spec.containers:
+                    if container.name == f"hotel-reserv-{service}":
+                        container.image = "yinfangchen/geo:app3"
+                self.kubectl.update_deployment(service, self.namespace, deployment)
+                time.sleep(10)
+
+    def recover_misconfig_app(self, microservices: list[str]):
+        for service in microservices:
+            deployment = self.kubectl.get_deployment(service, self.namespace)
+            if deployment:
+                for container in deployment.spec.template.spec.containers:
+                    if container.name == f"hotel-reserv-{service}":
+                        container.image = f"yinfangchen/hotelreservation:latest"
+                self.kubectl.update_deployment(service, self.namespace, deployment)
+
+    # A.4 valkey_auth_disruption: Invalidate the password in valkey so dependent services cannot work
+    def inject_valkey_auth_disruption(self, target_service="cart"):
+        pods = self.kubectl.list_pods(self.namespace)
+        valkey_pods = [p.metadata.name for p in pods.items if "valkey-cart" in p.metadata.name]
+        if not valkey_pods:
+            print("[❌] No Valkey pod found!")
+            return
+
+        valkey_pod = valkey_pods[0]
+        print(f"[🔐] Found Valkey pod: {valkey_pod}")
+        command = f"kubectl exec -n {self.namespace} {valkey_pod} -- valkey-cli CONFIG SET requirepass 'invalid_pass'"
+        result = self.kubectl.exec_command(command)
+        print(f"[⚠️] Injection result: {result}")
+
+        # Restart cartservice to force it to re-authenticate
+        self.kubectl.exec_command(f"kubectl delete pod -l app.kubernetes.io/name={target_service} -n {self.namespace}")
+        time.sleep(3)
+
+    def recover_valkey_auth_disruption(self, target_service="cart"):
+        pods = self.kubectl.list_pods(self.namespace)
+        valkey_pods = [p.metadata.name for p in pods.items if "valkey-cart" in p.metadata.name]
+        if not valkey_pods:
+            print("[❌] No Valkey pod found for recovery!")
+            return
+
+        valkey_pod = valkey_pods[0]
+        print(f"[🔓] Found Valkey pod: {valkey_pod}")
+        command = f"kubectl exec -n {self.namespace} {valkey_pod} -- valkey-cli CONFIG SET requirepass ''"
+        result = self.kubectl.exec_command(command)
+        print(f"[✅] Recovery result: {result}")
+
+        # Restart cartservice to restore normal behavior
+        self.kubectl.exec_command(f"kubectl delete pod -l app.kubernetes.io/name={target_service} -n {self.namespace}")
+        time.sleep(3)
+
+    # A.5 valkey_memory disruption: Write large 10MB payloads to the valkey store making it go into OOM state
+    def inject_valkey_memory_disruption(self):
+        print("Injecting Valkey memory disruption via in-cluster job...")
+
+        script = textwrap.dedent(
+            """
+            import redis
+            import threading
+            import time
+
+            def flood_redis():
+                client = redis.Redis(host='valkey-cart', port=6379)
+                while True:
+                    try:
+                        payload = 'x' * 1000000
+                        client.set(f"key_{time.time()}", payload)
+                    except Exception as e:
+                        print(f"Error: {e}")
+                        time.sleep(1)
+
+            threads = []
+            for _ in range(10):
+                t = threading.Thread(target=flood_redis)
+                t.start()
+                threads.append(t)
+
+            for t in threads:
+                t.join()
+        """
+        ).strip()
+
+        encoded_script = base64.b64encode(script.encode()).decode()
+
+        job_spec = {
+            "apiVersion": "batch/v1",
+            "kind": "Job",
+            "metadata": {
+                "name": "valkey-memory-flood",
+                "namespace": self.namespace,
+            },
+            "spec": {
+                "template": {
+                    "spec": {
+                        "restartPolicy": "Never",
+                        "containers": [
+                            {
+                                "name": "flooder",
+                                "image": "python:3.10-slim",
+                                "command": [
+                                    "sh",
+                                    "-c",
+                                    f"pip install redis && python3 -c \"import base64; exec(base64.b64decode('{encoded_script}'))\"",
+                                ],
+                            }
+                        ],
+                    }
+                }
+            },
+        }
+
+        batch_v1 = client.BatchV1Api()
+        batch_v1.create_namespaced_job(namespace=self.namespace, body=job_spec)
+        print("Valkey memory flood job submitted.")
+
+    def recover_valkey_memory_disruption(self):
+        print("Cleaning up Valkey memory flood job...")
+        batch_v1 = client.BatchV1Api()
+        try:
+            batch_v1.delete_namespaced_job(
+                name="valkey-memory-flood",
+                namespace=self.namespace,
+                propagation_policy="Foreground",
+            )
+            print("Job deleted.")
+        except Exception as e:
+            print(f"Error deleting job: {e}")
+
+    # A.5 incorrect_port_assignment: Update an env var to use the wrong port value
+    def inject_incorrect_port_assignment(
+        self, deployment_name: str, component_label: str, env_var: str, incorrect_port: str = "8082"
+    ):
+        """
+        Patch the deployment to modify a specific environment variable (e.g., PRODUCT_CATALOG_SERVICE_ADDR)
+        to an incorrect port (e.g., 8082 instead of 8080).
+        """
+        # Fetch current deployment
+        deployment = self.kubectl.get_deployment(deployment_name, self.namespace)
+        container = deployment.spec.template.spec.containers[0]
+        container_name = container.name
+        current_env = container.env
+
+        # Modify the target env var
+        updated_env = []
+        found = False
+        for e in current_env:
+            if e.name == env_var:
+                updated_env.append(client.V1EnvVar(name=env_var, value=f"{e.value.split(':')[0]}:{incorrect_port}"))
+                found = True
+            else:
+                updated_env.append(e)
+
+        if not found:
+            raise ValueError(f"Environment variable '{env_var}' not found in deployment '{deployment_name}'")
+
+        # Create patch body
+        patch_body = {
+            "spec": {
+                "template": {
+                    "spec": {
+                        "containers": [
+                            {
+                                "name": container_name,
+                                "env": [{"name": var.name, "value": var.value} for var in updated_env],
+                            }
+                        ]
+                    }
+                }
+            }
+        }
+
+        self.kubectl.patch_deployment(deployment_name, self.namespace, patch_body)
+        print(f"Injected incorrect port assignment in {env_var} of {deployment_name}.")
+
+    def recover_incorrect_port_assignment(self, deployment_name: str, env_var: str, correct_port: str = "8080"):
+        """
+        Revert the previously patched environment variable (e.g., PRODUCT_CATALOG_SERVICE_ADDR)
+        to use the correct port (e.g., 8080).
+        """
+        # Fetch current deployment
+        deployment = self.kubectl.get_deployment(deployment_name, self.namespace)
+        container = deployment.spec.template.spec.containers[0]
+        container_name = container.name
+        current_env = container.env
+
+        # Revert the target env var
+        updated_env = []
+        found = False
+        for e in current_env:
+            if e.name == env_var:
+                base_host = e.value.split(":")[0]
+                updated_env.append(client.V1EnvVar(name=env_var, value=f"{base_host}:{correct_port}"))
+                found = True
+            else:
+                updated_env.append(e)
+
+        if not found:
+            raise ValueError(f"Environment variable '{env_var}' not found in deployment '{deployment_name}'")
+
+        # Create patch body
+        patch_body = {
+            "spec": {
+                "template": {
+                    "spec": {
+                        "containers": [
+                            {
+                                "name": container_name,
+                                "env": [{"name": var.name, "value": var.value} for var in updated_env],
+                            }
+                        ]
+                    }
+                }
+            }
+        }
+
+        self.kubectl.patch_deployment(deployment_name, self.namespace, patch_body)
+        print(f"Recovered {env_var} in {deployment_name} to use port {correct_port}.")
+
+    # A.6 incorrect_image: checkout service is updated to use a bad image
+    def inject_incorrect_image(self, deployment_name: str, namespace: str, bad_image: str = "app-image:latest"):
+        # Get current deployment for container name
+        deployment = self.kubectl.get_deployment(deployment_name, namespace)
+        container_name = deployment.spec.template.spec.containers[0].name
+        # Set replicas to 0 before updating image
+        self.kubectl.patch_deployment(name=deployment_name, namespace=namespace, patch_body={"spec": {"replicas": 0}})
+
+        # Patch image
+        self.kubectl.patch_deployment(
+            name=deployment_name,
+            namespace=namespace,
+            patch_body={"spec": {"template": {"spec": {"containers": [{"name": container_name, "image": bad_image}]}}}},
+        )
+
+        # Restore replicas to 1
+        self.kubectl.patch_deployment(name=deployment_name, namespace=namespace, patch_body={"spec": {"replicas": 1}})
+
+    def recover_incorrect_image(self, deployment_name: str, namespace: str, correct_image: str):
+        deployment = self.kubectl.get_deployment(deployment_name, namespace)
+        container_name = deployment.spec.template.spec.containers[0].name
+
+        self.kubectl.patch_deployment(
+            name=deployment_name,
+            namespace=namespace,
+            patch_body={
+                "spec": {"template": {"spec": {"containers": [{"name": container_name, "image": correct_image}]}}}
+            },
+        )
+
+
+    def inject_missing_env_variable(self, deployment_name: str, env_var: str):
+        """
+        Patch the deployment to delete a specific environment variable.
+        """
+        # Fetch current deployment
+        try:
+            deployment = self.kubectl.get_deployment(deployment_name, self.namespace)
+            container = deployment.spec.template.spec.containers[0]
+            current_env = container.env
+        except Exception as e:
+            raise ValueError(f"Failed to get deployment '{deployment_name}': {e}")
+        
+        # Remove the target env var
+        updated_env = []
+        found = False
+        for e in current_env:
+            if e.name == env_var:
+                found = True
+                # Skip this environment variable (delete it)
+                continue
+            else:
+                updated_env.append(e)
+
+        if not found:
+            raise ValueError(f"Environment variable '{env_var}' not found in deployment '{deployment_name}'")
+        
+        # Update the container's env list
+        container.env = updated_env
+        
+        # Use update_deployment instead of patch_deployment
+        self.kubectl.update_deployment(deployment_name, self.namespace, deployment)
+        print(f"Deleted environment variable '{env_var}' from deployment '{deployment_name}'.")
+
+    def recover_missing_env_variable(self, deployment_name: str, env_var: str, env_value: str):
+        """
+        Restore the previously deleted environment variable.
+        """
+        # Fetch current deployment
+        try:
+            deployment = self.kubectl.get_deployment(deployment_name, self.namespace)
+            container = deployment.spec.template.spec.containers[0]
+            container_name = container.name
+            current_env = container.env
+        except Exception as e:
+            raise ValueError(f"Failed to get deployment '{deployment_name}': {e}")
+        
+        # Check if env var already exists
+        for e in current_env:
+            if e.name == env_var:
+                print(f"Environment variable '{env_var}' already exists in deployment '{deployment_name}'.")
+                return
+
+        # Add the environment variable back
+        updated_env = list(current_env)
+        updated_env.append(client.V1EnvVar(name=env_var, value=env_value))
+
+        # Create patch body
+        patch_body = {
+            "spec": {
+                "template": {
+                    "spec": {
+                        "containers": [
+                            {
+                                "name": container_name,
+                                "env": [{"name": var.name, "value": var.value} for var in updated_env],
+                            }
+                        ]
+                    }
+                }
+            }
+        }
+
+        self.kubectl.patch_deployment(deployment_name, self.namespace, patch_body)
+        print(f"Restored environment variable '{env_var}' with value '{env_value}' to deployment '{deployment_name}'.")
+
+
+if __name__ == "__main__":
+    namespace = "hotel-reservation"
+    # microservices = ["geo"]
+    microservices = ["mongodb-geo"]
+    # fault_type = "misconfig_app"
+    fault_type = "storage_user_unregistered"
+    print("Start injection/recover ...")
+    injector = ApplicationFaultInjector(namespace)
+    # injector._inject(fault_type, microservices)
+    injector._recover(fault_type, microservices)
diff --git a/sregym/generators/fault/inject_hw.py b/sregym/generators/fault/inject_hw.py
new file mode 100644
index 0000000..7a18b09
--- /dev/null
+++ b/sregym/generators/fault/inject_hw.py
@@ -0,0 +1,294 @@
+import json
+import shlex
+import subprocess
+from typing import List, Tuple
+
+from sregym.generators.fault.base import FaultInjector
+from sregym.service.kubectl import KubeCtl
+
+
+class HWFaultInjector(FaultInjector):
+    """
+    Fault injector that calls the Khaos DaemonSet to inject syscall-level faults
+    against *host* PIDs corresponding to workload pods.
+    """
+
+    def __init__(self, khaos_namespace: str = "khaos", khaos_label: str = "app=khaos"):
+        self.kubectl = KubeCtl()
+        self.khaos_ns = khaos_namespace
+        self.khaos_daemonset_label = khaos_label
+
+    def inject(self, microservices: List[str], fault_type: str):
+        for pod_ref in microservices:
+            ns, pod = self._split_ns_pod(pod_ref)
+            node = self._get_pod_node(ns, pod)
+            container_id = self._get_container_id(ns, pod)
+            host_pid = self._get_host_pid_on_node(node, container_id)
+            self._exec_khaos_fault_on_node(node, fault_type, host_pid)
+
+    def inject_node(self, namespace: str, fault_type: str, target_node: str = None):
+
+        if target_node:
+            selected_node = self._find_node_starting_with(target_node)
+            if not selected_node:
+                print(f"Node starting with '{target_node}' not found, selecting node with most pods")
+                selected_node = self._find_node_with_most_pods(namespace)
+        else:
+            selected_node = self._find_node_with_most_pods(namespace)
+        
+        print(f"Selected target node: {selected_node}")
+        
+        target_pods = self._get_pods_on_node(namespace, selected_node)
+        if not target_pods:
+            raise RuntimeError(f"No running pods found on node '{selected_node}' in namespace '{namespace}'")
+        
+        print(f"Found {len(target_pods)} pods on node {selected_node}: {', '.join(target_pods)}")
+        
+        self.inject(target_pods, fault_type)
+        return selected_node
+
+    def recover_node(self, namespace: str, fault_type: str, target_node: str):
+        target_pods = self._get_pods_on_node(namespace, target_node)
+        if not target_pods:
+            print(f"[warn] No pods found on node {target_node}; attempting best-effort recovery.")
+            target_pods = []
+        
+        self.recover(target_pods, fault_type)
+
+    def recover(self, microservices: List[str], fault_type: str):
+        touched = set()
+        for pod_ref in microservices:
+            ns, pod = self._split_ns_pod(pod_ref)
+            node = self._get_pod_node(ns, pod)
+            if node in touched:
+                continue
+            self._exec_khaos_recover_on_node(node, fault_type)
+            touched.add(node)
+
+    def _split_ns_pod(self, ref: str) -> Tuple[str, str]:
+        if "/" in ref:
+            ns, pod = ref.split("/", 1)
+        else:
+            ns, pod = "default", ref
+        return ns, pod
+
+    def _jsonpath(self, ns: str, pod: str, path: str) -> str:
+        cmd = f"kubectl -n {shlex.quote(ns)} get pod {shlex.quote(pod)} -o jsonpath='{path}'"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            out = out[0]
+        return (out or "").strip()
+
+    def _get_pod_node(self, ns: str, pod: str) -> str:
+        node = self._jsonpath(ns, pod, "{.spec.nodeName}")
+        if not node:
+            raise RuntimeError(f"Pod {ns}/{pod} has no nodeName")
+        return node
+
+    def _get_container_id(self, ns: str, pod: str) -> str:
+        # running container first
+        cid = self._jsonpath(ns, pod, "{.status.containerStatuses[0].containerID}")
+        if not cid:
+            cid = self._jsonpath(ns, pod, "{.status.initContainerStatuses[0].containerID}")
+        if not cid:
+            raise RuntimeError(f"Pod {ns}/{pod} has no containerID yet (not running?)")
+        if "://" in cid:
+            cid = cid.split("://", 1)[1]
+        return cid
+
+    def _get_khaos_pod_on_node(self, node: str) -> str:
+        cmd = f"kubectl -n {shlex.quote(self.khaos_ns)} get pods -l {shlex.quote(self.khaos_daemonset_label)} -o json"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            out = out[0]
+        data = json.loads(out or "{}")
+        for item in data.get("items", []):
+            if item.get("spec", {}).get("nodeName") == node and item.get("status", {}).get("phase") == "Running":
+                return item["metadata"]["name"]
+        raise RuntimeError(f"No running Khaos DS pod found on node {node}")
+
+    def _get_host_pid_on_node(self, node: str, container_id: str) -> int:
+        pod_name = self._get_khaos_pod_on_node(node)
+
+        # /proc scan (fast, works with hostPID:true)
+        try:
+            return self._get_host_pid_via_proc(pod_name, container_id)
+        except Exception:
+            pass
+
+        # cgroup.procs search (works for both cgroup v1/v2)
+        try:
+            return self._get_host_pid_via_cgroups(pod_name, container_id)
+        except Exception:
+            pass
+
+        raise RuntimeError(
+            f"Failed to resolve host PID for container {container_id} on node {node} (proc, cgroups, cri all failed)"
+        )
+
+    def _get_host_pid_via_proc(self, khaos_pod: str, container_id: str) -> int:
+        """
+        Search host /proc/*/cgroup for the container ID and return the first PID.
+        With hostPID:true, /proc is the host's proc.
+        """
+        short = shlex.quote(container_id[:12])
+        cmd = [
+            "kubectl",
+            "-n",
+            self.khaos_ns,
+            "exec",
+            khaos_pod,
+            "--",
+            "sh",
+            "-lc",
+            # grep cgroup entries for the container id; extract pid from path
+            f"grep -l {short} /proc/*/cgroup 2>/dev/null | sed -n 's#.*/proc/\\([0-9]\\+\\)/cgroup#\\1#p' | head -n1",
+        ]
+        pid_txt = subprocess.check_output(cmd, stderr=subprocess.DEVNULL, text=True).strip()
+        if pid_txt.isdigit():
+            return int(pid_txt)
+
+        # Try full ID if short didn't match
+        fullq = shlex.quote(container_id)
+        cmd[-1] = "sh -lc " + shlex.quote(
+            f"grep -l {fullq} /proc/*/cgroup 2>/dev/null | sed -n 's#.*/proc/\\([0-9]\\+\\)/cgroup#\\1#p' | head -n1"
+        )
+        pid_txt = subprocess.check_output(cmd, stderr=subprocess.DEVNULL, text=True).strip()
+        if pid_txt.isdigit():
+            return int(pid_txt)
+
+        raise RuntimeError("proc scan found no matching PID")
+
+    def _detect_cgroup_root(self, khaos_pod: str) -> str:
+        """
+        Detect cgroup mount root (v2 unified vs v1). Returns a path under which cgroup.procs exists.
+        """
+        candidates = [
+            "/sys/fs/cgroup",  # cgroup v2 (unified)
+            "/sys/fs/cgroup/systemd",  # v1 systemd hierarchy
+            "/sys/fs/cgroup/memory",  # v1 memory hierarchy
+            "/sys/fs/cgroup/pids",  # v1 pids hierarchy
+        ]
+        for root in candidates:
+            cmd = [
+                "kubectl",
+                "-n",
+                self.khaos_ns,
+                "exec",
+                khaos_pod,
+                "--",
+                "sh",
+                "-lc",
+                f"test -d {shlex.quote(root)} && echo OK || true",
+            ]
+            out = subprocess.check_output(cmd, stderr=subprocess.DEVNULL, text=True).strip()
+            if out == "OK":
+                return root
+        return "/sys/fs/cgroup"
+
+    def _get_host_pid_via_cgroups(self, khaos_pod: str, container_id: str) -> int:
+        """
+        Search cgroup.procs files whose path contains the container ID; return a PID from that file.
+        Works for both cgroup v1 and v2.
+        """
+        root = self._detect_cgroup_root(khaos_pod)
+        short = shlex.quote(container_id[:12])
+        cmd = [
+            "kubectl",
+            "-n",
+            self.khaos_ns,
+            "exec",
+            khaos_pod,
+            "--",
+            "sh",
+            "-lc",
+            # find a cgroup.procs in any directory name/path that includes the short id; print first PID in that procs file
+            f"find {shlex.quote(root)} -type f -name cgroup.procs -path '*{short}*' 2>/dev/null | head -n1 | xargs -r head -n1",
+        ]
+        pid_txt = subprocess.check_output(cmd, stderr=subprocess.DEVNULL, text=True).strip()
+        if pid_txt.isdigit():
+            return int(pid_txt)
+
+        # Try with full ID
+        fullq = shlex.quote(container_id)
+        cmd[-1] = "sh -lc " + shlex.quote(
+            f"find {root} -type f -name cgroup.procs -path '*{fullq}*' 2>/dev/null | head -n1 | xargs -r head -n1"
+        )
+        pid_txt = subprocess.check_output(cmd, stderr=subprocess.DEVNULL, text=True).strip()
+        if pid_txt.isdigit():
+            return int(pid_txt)
+
+        raise RuntimeError("cgroup search found no matching PID")
+
+    def _exec_khaos_fault_on_node(self, node: str, fault_type: str, host_pid: int):
+        pod_name = self._get_khaos_pod_on_node(node)
+        cmd = ["kubectl", "-n", self.khaos_ns, "exec", pod_name, "--", "/khaos/khaos", fault_type, str(host_pid)]
+        subprocess.run(cmd, check=True)
+
+    def _exec_khaos_recover_on_node(self, node: str, fault_type: str):
+        pod_name = self._get_khaos_pod_on_node(node)
+        cmd = ["kubectl", "-n", self.khaos_ns, "exec", pod_name, "--", "/khaos/khaos", "--recover", fault_type]
+        subprocess.run(cmd, check=True)
+
+    def _get_all_nodes(self) -> List[str]:
+        """Get all node names in the cluster."""
+        cmd = "kubectl get nodes -o jsonpath='{.items[*].metadata.name}'"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            out = out[0]
+        nodes = (out or "").strip().split()
+        return [node for node in nodes if node]
+
+    def _find_node_starting_with(self, target_node: str) -> str:
+        """Find a node that starts with the given string."""
+        all_nodes = self._get_all_nodes()
+        for node in all_nodes:
+            if node.startswith(target_node):
+                return node
+        return None
+
+    def _find_node_with_most_pods(self, namespace: str) -> str:
+        """Find the node with the most pods in the namespace."""
+        node_pod_count = {}
+        
+        cmd = f"kubectl -n {namespace} get pods -o json"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            out = out[0]
+        try:
+            data = json.loads(out)
+            for item in data.get("items", []):
+                phase = item.get("status", {}).get("phase")
+                node_name = item.get("spec", {}).get("nodeName")
+                if phase == "Running" and node_name:
+                    node_pod_count[node_name] = node_pod_count.get(node_name, 0) + 1
+        except Exception as e:
+            print(f"Error getting pods: {e}")
+            return None
+        
+        if not node_pod_count:
+            raise RuntimeError(f"No running pods found in namespace '{namespace}'")
+        
+        selected_node = max(node_pod_count, key=node_pod_count.get)
+        print(f"Node {selected_node} has {node_pod_count[selected_node]} pods")
+        return selected_node
+
+    def _get_pods_on_node(self, namespace: str, target_node: str) -> List[str]:
+        """Get all pods in namespace on the target node."""
+        pods: List[str] = []
+
+        cmd = f"kubectl -n {namespace} get pods -o json"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            out = out[0]
+        try:
+            data = json.loads(out)
+            for item in data.get("items", []):
+                phase = item.get("status", {}).get("phase")
+                node_name = item.get("spec", {}).get("nodeName")
+                if phase == "Running" and node_name == target_node:
+                    pods.append(f"{namespace}/{item['metadata']['name']}")
+        except Exception as e:
+            print(f"Error getting pods: {e}")
+
+        return pods
diff --git a/sregym/generators/fault/inject_kernel.py b/sregym/generators/fault/inject_kernel.py
new file mode 100644
index 0000000..f3379c6
--- /dev/null
+++ b/sregym/generators/fault/inject_kernel.py
@@ -0,0 +1,776 @@
+import json
+import shlex
+import subprocess
+from typing import Dict, Iterable, Optional, Tuple
+
+from sregym.service.kubectl import KubeCtl
+
+# Constants
+DEBUGFS_ROOT = "/sys/kernel/debug"
+DEFAULT_KHAOS_NS = "khaos"
+DEFAULT_KHAOS_LABEL = "app=khaos"
+DEFAULT_LOOP_IMAGE = "/var/tmp/khaos-fault.img"
+DEFAULT_DM_FLAKEY_NAME = "khaos_flakey0"
+DEFAULT_DM_DUST_NAME = "khaos_dust1"
+DEFAULT_DM_LSE_NAME = "khaos_lse"
+DEFAULT_BLOCK_SIZE = 512
+DEFAULT_SIZE_GB = 5
+PVC_BOUND_TIMEOUT = "60s"
+
+# Supported fault capability directories under debugfs
+FAULT_CAPS = {
+    "failslab": f"{DEBUGFS_ROOT}/failslab",
+    "fail_page_alloc": f"{DEBUGFS_ROOT}/fail_page_alloc",
+    "fail_futex": f"{DEBUGFS_ROOT}/fail_futex",
+    "fail_make_request": f"{DEBUGFS_ROOT}/fail_make_request",
+    "fail_function": f"{DEBUGFS_ROOT}/fail_function",
+    # add more if you enable them on your kernel (e.g., NVMe fault injectors)
+}
+
+
+class KernelInjector:
+    """
+    Control Linux kernel fault-injection infrastructure via debugfs from a Khaos DaemonSet pod.
+
+    Typical use:
+        kf = KernelInjector(kubectl, khaos_ns="khaos", khaos_label="app=khaos")
+        kf.enable_fault(node="nodeX", cap="fail_page_alloc", probability=5, interval=1, times=-1)
+        kf.set_task_filter_pids(node="nodeX", pids=[1234, 5678], enabled=True)   # scope to those PIDs
+        ...
+        kf.disable_fault(node="nodeX", cap="fail_page_alloc")
+        kf.set_task_filter_pids(node="nodeX", pids=[1234, 5678], enabled=False)
+
+    You can also inject function-specific errors:
+        kf.fail_function_add(node, func="open_ctree", retval=-12)
+        kf.fail_function_clear(node)
+
+    And systematic "Nth call fails" per-task:
+        kf.set_fail_nth(node, pid=1234, nth=10)  # the task's 10th faultable call fails
+    """
+
+    def __init__(
+        self, kubectl: KubeCtl, khaos_ns: str = DEFAULT_KHAOS_NS, khaos_label: str = DEFAULT_KHAOS_LABEL
+    ):
+        self.kubectl = kubectl
+        self.khaos_ns = khaos_ns
+        self.khaos_label = khaos_label
+        self._pod_cache: Dict[str, str] = {}  # Cache pod names by node
+        self.recovery_data: Optional[Dict[str, str]] = None
+
+    # ---------- Public API ----------
+
+    def enable_fault(
+        self,
+        node: str,
+        cap: str,
+        *,
+        probability: int = 100,
+        interval: int = 1,
+        times: int = -1,
+        space: int = 0,
+        verbose: int = 1,
+        extra: Optional[Dict[str, str]] = None,
+    ) -> None:
+        """Enable a fault capability (e.g., fail_page_alloc) with the given knobs."""
+        pod = self._get_khaos_pod_on_node(node)
+        cap_path = self._cap_path_checked(pod, cap)
+        self._ensure_debugfs(pod)
+
+        # Core knobs
+        knobs = {
+            "probability": str(int(probability)),
+            "interval": str(int(interval)),
+            "times": str(int(times)),
+            "space": str(int(space)),
+            "verbose": str(int(verbose)),
+        }
+        if extra:
+            knobs.update({k: str(v) for k, v in extra.items()})
+
+        for key, value in knobs.items():
+            self._write(pod, f"{cap_path}/{key}", value)
+
+    def disable_fault(self, node: str, cap: str) -> None:
+        """Disable a fault capability by setting probability=0."""
+        pod = self._get_khaos_pod_on_node(node)
+        cap_path = self._cap_path_checked(pod, cap)
+        self._write(pod, f"{cap_path}/probability", "0")
+
+    def set_task_filter(self, node: str, cap: str, enabled: bool) -> None:
+        """Enable/disable task-filter for a capability (then mark PIDs with /proc/<pid>/make-it-fail=1)."""
+        pod = self._get_khaos_pod_on_node(node)
+        cap_path = self._cap_path_checked(pod, cap)
+        self._write(pod, f"{cap_path}/task-filter", "Y" if enabled else "N")
+
+    def set_task_filter_pids(self, node: str, pids: Iterable[int], enabled: bool) -> None:
+        """
+        Toggle /proc/<pid>/make-it-fail for each PID so task-filtered faults only hit those tasks.
+        NOTE: This affects *all* capabilities with task-filter=Y.
+        """
+        pod = self._get_khaos_pod_on_node(node)
+        val = "1" if enabled else "0"
+        for pid in pids:
+            self._write(pod, f"/proc/{int(pid)}/make-it-fail", val, must_exist=False)
+
+    # --------- fail_function helpers ---------
+
+    def fail_function_add(self, node: str, func: str, retval: int) -> None:
+        """
+        Add a function to the injection list and set its retval.
+        The function must be annotated with ALLOW_ERROR_INJECTION() in the kernel.
+        """
+        pod = self._get_khaos_pod_on_node(node)
+        base = self._cap_path_checked(pod, "fail_function")
+        self._write(pod, f"{base}/inject", func)
+        self._write(pod, f"{base}/{func}/retval", str(int(retval)))
+
+        # Typical default knobs to ensure it triggers:
+        self.enable_fault(node, "fail_function", probability=100, interval=1, times=-1, verbose=1)
+
+    def fail_function_remove(self, node: str, func: str) -> None:
+        """Remove a function from the injection list."""
+        pod = self._get_khaos_pod_on_node(node)
+        base = self._cap_path_checked(pod, "fail_function")
+        # '!' prefix removes a function from injection list
+        self._write(pod, f"{base}/inject", f"!{func}")
+
+    def fail_function_clear(self, node: str) -> None:
+        """Clear all functions from the injection list."""
+        pod = self._get_khaos_pod_on_node(node)
+        base = self._cap_path_checked(pod, "fail_function")
+        # empty string clears the list
+        self._write(pod, f"{base}/inject", "")
+
+    # --------- per-task "Nth call fails" ---------
+
+    def set_fail_nth(self, node: str, pid: int, nth: int) -> None:
+        """
+        Systematic faulting: write N to /proc/<pid>/fail-nth — that task's Nth faultable call will fail.
+        Takes precedence over probability/interval.
+        """
+        pod = self._get_khaos_pod_on_node(node)
+        self._write(pod, f"/proc/{int(pid)}/fail-nth", str(int(nth)), must_exist=True)
+
+    # ---------- Internals ----------
+
+    def _get_khaos_pod_on_node(self, node: str) -> str:
+        """Get the Khaos pod name on the specified node, with caching."""
+        if node in self._pod_cache:
+            return self._pod_cache[node]
+
+        cmd = f"kubectl -n {shlex.quote(self.khaos_ns)} get pods -l {shlex.quote(self.khaos_label)} -o json"
+        out = self.kubectl.exec_command(cmd)
+        if not out:
+            raise RuntimeError(f"Failed to get pods: empty response")
+
+        data = json.loads(out)
+        for item in data.get("items", []):
+            if item.get("spec", {}).get("nodeName") == node and item.get("status", {}).get("phase") == "Running":
+                pod_name = item["metadata"]["name"]
+                self._pod_cache[node] = pod_name
+                return pod_name
+
+        raise RuntimeError(f"No running Khaos DS pod found on node {node}")
+
+    def _cap_path_checked(self, pod: str, cap: str) -> str:
+        """Validate and return the capability path."""
+        if cap not in FAULT_CAPS:
+            raise ValueError(f"Unsupported fault capability '{cap}'. Known: {', '.join(FAULT_CAPS)}")
+        path = FAULT_CAPS[cap]
+        if not self._exists(pod, path):
+            raise RuntimeError(
+                f"Capability path not found in pod {pod}: {path}. "
+                f"Is debugfs mounted and the kernel built with {cap}?"
+            )
+        return path
+
+    def _ensure_debugfs(self, pod: str) -> None:
+        """Ensure debugfs is mounted."""
+        if self._exists(pod, DEBUGFS_ROOT):
+            return
+        # Try to mount (usually not needed; your DS mounts host /sys/kernel/debug)
+        self._sh(pod, f"mount -t debugfs none {shlex.quote(DEBUGFS_ROOT)} || true")
+
+    # --- pod exec helpers ---
+
+    def _exists(self, pod: str, path: str) -> bool:
+        """Check if a path exists in the pod."""
+        cmd = (
+            f"kubectl -n {shlex.quote(self.khaos_ns)} exec {shlex.quote(pod)} -- "
+            f"sh -lc 'test -e {shlex.quote(path)} && echo OK || true'"
+        )
+        out = self.kubectl.exec_command(cmd)
+        return (out or "").strip() == "OK"
+
+    def _write(self, pod: str, path: str, value: str, *, must_exist: bool = True) -> None:
+        """Write a value to a path in the pod."""
+        cmd = [
+            "kubectl",
+            "-n",
+            self.khaos_ns,
+            "exec",
+            pod,
+            "--",
+            "sh",
+            "-lc",
+            f"printf %s {shlex.quote(value)} > {shlex.quote(path)} 2>/dev/null || true",
+        ]
+        rc = subprocess.run(cmd, stdout=subprocess.PIPE, stderr=subprocess.PIPE, text=True)
+        if must_exist and rc.returncode != 0:
+            raise RuntimeError(f"Failed to write '{value}' to {path} in {pod}: rc={rc.returncode}, err={rc.stderr}")
+
+    def _sh(self, pod: str, script: str) -> str:
+        """Execute a shell script in the pod."""
+        cmd = ["kubectl", "-n", self.khaos_ns, "exec", pod, "--", "sh", "-lc", script]
+        out = self.kubectl.exec_command(" ".join(shlex.quote(x) for x in cmd))
+        return out or ""
+
+    def _exec_on_node(self, node: str, script: str) -> str:
+        """Execute a script on the node using nsenter (runs in the Khaos pod on that node)."""
+        pod = self._get_khaos_pod_on_node(node)
+        cmd = [
+            "kubectl",
+            "-n",
+            self.khaos_ns,
+            "exec",
+            pod,
+            "--",
+            "nsenter",
+            "-t",
+            "1",
+            "-m",
+            "-u",
+            "-i",
+            "-n",
+            "-p",
+            "sh",
+            "-c",
+            script,
+        ]
+        out = self.kubectl.exec_command(" ".join(shlex.quote(x) for x in cmd))
+        return out or ""
+
+    def _exec_with_nsenter_mount(self, node: str, script: str, check: bool = True) -> Tuple[int, str, str]:
+        """Execute a script using nsenter with mount namespace, returns (returncode, stdout, stderr)."""
+        pod = self._get_khaos_pod_on_node(node)
+        cmd = [
+            "kubectl",
+            "-n",
+            self.khaos_ns,
+            "exec",
+            pod,
+            "--",
+            "nsenter",
+            "--mount=/proc/1/ns/mnt",
+            "bash",
+            "-lc",
+            script,
+        ]
+        rc = subprocess.run(cmd, stdout=subprocess.PIPE, stderr=subprocess.PIPE, text=True)
+        if check and rc.returncode != 0:
+            raise RuntimeError(
+                f"Command failed on node {node}: rc={rc.returncode}, stdout={rc.stdout}, stderr={rc.stderr}"
+            )
+        return rc.returncode, rc.stdout, rc.stderr
+
+    # ---------- loopback "test disk" helpers ----------
+
+    def _loop_create(self, node: str, size_gb: int = DEFAULT_SIZE_GB) -> str:
+        """Create a sparse file and attach a loop device. Returns /dev/loopN."""
+        script = rf"""
+set -e
+mkdir -p /var/tmp
+IMG={shlex.quote(DEFAULT_LOOP_IMAGE)}
+[ -e "$IMG" ] || fallocate -l {int(size_gb)}G "$IMG"
+LOOP=$(losetup -f --show "$IMG")
+echo "$LOOP"
+"""
+        return self._exec_on_node(node, script).strip()
+
+    def _loop_destroy(self, node: str) -> None:
+        """Detach loop device created by _loop_create (best-effort)."""
+        script = rf"""
+IMG={shlex.quote(DEFAULT_LOOP_IMAGE)}
+if losetup -j "$IMG" | awk -F: '{{print $1}}' | grep -q '/dev/loop'; then
+    losetup -j "$IMG" | awk -F: '{{print $1}}' | xargs -r -n1 losetup -d || true
+fi
+"""
+        self._exec_on_node(node, script)
+
+    # ---------- dm-flakey ----------
+
+    def dm_flakey_create(
+        self, node: str, name: str, dev: str, up_s: int, down_s: int, offset_sectors: int = 0, features: str = ""
+    ) -> None:
+        """
+        Create a flakey device:
+          table: "0 <sectors> flakey <dev> <offset> <up> <down> [1 <features>]"
+        features examples:
+          - "drop_writes"
+          - "error_writes"
+          - "corrupt_bio_byte 32 r 1 0"
+        """
+        dev_q = shlex.quote(dev)
+        name_q = shlex.quote(name)
+        feat_tail = f" 1 {features}" if features else ""
+        script = rf"""
+set -e
+modprobe dm_flakey || true
+SECTORS=$(blockdev --getsz {dev_q})
+dmsetup create {name_q} --table "0 $SECTORS flakey {dev_q} {int(offset_sectors)} {int(up_s)} {int(down_s)}{feat_tail}"
+"""
+        self._exec_on_node(node, script)
+
+    def dm_target_remove(self, node: str, name: str) -> None:
+        """Remove a device mapper target."""
+        self._exec_on_node(node, f"dmsetup remove {shlex.quote(name)} 2>/dev/null || true")
+
+    def dm_flakey_reload(
+        self,
+        node: str,
+        name: str,
+        up_interval: int,
+        down_interval: int,
+        features: str = "",
+        offset_sectors: int = 0,
+        num_features: Optional[int] = None,
+    ) -> None:
+        """Reload a flakey device with new parameters."""
+        name_q = shlex.quote(name)
+        if features:
+            if num_features is None:
+                count = len(features.split())
+            else:
+                count = num_features
+            feat_tail = f" {count} {features}"
+        else:
+            feat_tail = ""
+
+        script = rf"""
+set -e
+# Get the underlying device from current table
+UNDERLYING=$(dmsetup table {name_q} | awk '{{print $4}}')
+SECTORS=$(dmsetup table {name_q} | awk '{{print $2}}')
+
+echo "Reloading {name_q}: up={up_interval}s down={down_interval}s features='{features}'"
+echo "Underlying device: $UNDERLYING, Sectors: $SECTORS"
+
+# Reload the table with new parameters
+dmsetup reload {name_q} --table "0 $SECTORS flakey $UNDERLYING {int(offset_sectors)} {int(up_interval)} {int(down_interval)}{feat_tail}"
+
+# Activate the new table (this is atomic, no unmount needed)
+dmsetup resume {name_q}
+
+echo "dm-flakey device reloaded successfully"
+dmsetup status {name_q}
+"""
+        result = self._exec_on_node(node, script)
+        print(f"[dm-flakey] Reload result: {result.strip()}")
+
+    # ---------- dm-dust ----------
+
+    def dm_dust_create(self, node: str, name: str, dev: str, blksz: int = DEFAULT_BLOCK_SIZE, offset: int = 0) -> None:
+        """
+        Create a dust device that can simulate bad sectors.
+          table: "0 <sectors> dust <dev> <offset> <blksz>"
+        """
+        dev_q = shlex.quote(dev)
+        name_q = shlex.quote(name)
+        script = rf"""
+set -e
+modprobe dm_dust || true
+SECTORS=$(blockdev --getsz {dev_q})
+dmsetup create {name_q} --table "0 $SECTORS dust {dev_q} {int(offset)} {int(blksz)}"
+"""
+        self._exec_on_node(node, script)
+
+    def dm_dust_add_badblocks(self, node: str, name: str, blocks: list[int]) -> None:
+        """Add bad blocks to a dust device."""
+        name_q = shlex.quote(name)
+        blocks_str = " ".join(str(int(b)) for b in blocks)
+
+        script = f"""
+DM_NAME={name_q}
+BLOCKS="{blocks_str}"
+SUCCESS=0
+FAILED=0
+for BLOCK in $BLOCKS; do
+    if dmsetup message $DM_NAME 0 addbadblock $BLOCK 2>/dev/null; then
+        SUCCESS=$((SUCCESS + 1))
+    else
+        FAILED=$((FAILED + 1))
+    fi
+done
+echo "Added $SUCCESS bad blocks, $FAILED already existed or failed"
+"""
+        result = self._exec_on_node(node, script)
+        print(f"[dm-dust] {result.strip()}")
+
+    def dm_dust_add_badblocks_range(self, node: str, name: str, start: int, end: int, step: int) -> None:
+        """Add bad blocks using parallel execution with xargs for speed."""
+        name_q = shlex.quote(name)
+
+        script = f"""
+echo "Adding bad blocks from {start} to {end} with step {step} (parallel)..."
+START_TIME=$(date +%s)
+
+seq {start} {step} {end} | xargs -P 32 -I {{}} sh -c 'dmsetup message {name_q} 0 addbadblock {{}} 2>/dev/null' || true
+
+END_TIME=$(date +%s)
+DURATION=$((END_TIME - START_TIME))
+COUNT=$(seq {start} {step} {end} | wc -l)
+echo "Completed: Added approximately $COUNT bad blocks in $DURATION seconds"
+"""
+        result = self._exec_on_node(node, script)
+        print(f"[dm-dust] {result.strip()}")
+
+    def dm_dust_enable(self, node: str, name: str) -> None:
+        """Enable bad block simulation on a dust device."""
+        name_q = shlex.quote(name)
+        result = self._exec_on_node(node, f"dmsetup message {name_q} 0 enable && dmsetup status {name_q}")
+        print(f"[dm-dust] Enabled. Status: {result.strip()}")
+
+    def dm_dust_disable(self, node: str, name: str) -> None:
+        """Disable bad block simulation on a dust device."""
+        name_q = shlex.quote(name)
+        result = self._exec_on_node(node, f"dmsetup message {name_q} 0 disable && dmsetup status {name_q}")
+        print(f"[dm-dust] Disabled. Status: {result.strip()}")
+
+    def dm_dust_clear(self, node: str, name: str) -> None:
+        """Clear all bad blocks from the device."""
+        name_q = shlex.quote(name)
+        result = self._exec_on_node(node, f"dmsetup message {name_q} 0 clearbadblocks 2>&1 || true")
+        print(f"[dm-dust] Clear bad blocks: {result.strip()}")
+
+    def dm_dust_list(self, node: str, name: str) -> str:
+        """List all bad blocks on a dust device."""
+        return self._exec_on_node(node, f"dmsetup message {shlex.quote(name)} 0 listbadblocks").strip()
+
+    # ---------- "one-liner" recipes ----------
+
+    def add_bad_blocks(self, node: str, dm_device_name: str, blocks: list[int]) -> None:
+        """Convenience wrapper for adding bad blocks."""
+        self.dm_dust_add_badblocks(node, dm_device_name, blocks)
+
+    def enable_bad_blocks(self, node: str, dm_device_name: str, enable: bool = True) -> None:
+        """Convenience wrapper for enabling/disabling bad blocks."""
+        if enable:
+            self.dm_dust_enable(node, dm_device_name)
+        else:
+            self.dm_dust_disable(node, dm_device_name)
+
+    # ---------- Disk fault injection helpers ----------
+
+    def _format_and_mount(self, node: str, mapper: str, mount_point: str) -> None:
+        """Format and mount a device mapper device."""
+        script = rf"""
+set -e
+if ! blkid {shlex.quote(mapper)} >/dev/null 2>&1; then
+    mkfs.ext4 -F {shlex.quote(mapper)} >/dev/null 2>&1 || true
+fi
+mkdir -p {shlex.quote(mount_point)}
+mount {shlex.quote(mapper)} {shlex.quote(mount_point)} 2>/dev/null || true
+echo {shlex.quote(mapper)}
+"""
+        self._exec_on_node(node, script)
+
+    def _unmount_and_cleanup(self, node: str, mount_point: str, dm_name: str) -> None:
+        """Unmount and remove a device mapper target."""
+        script = rf"""
+umount {shlex.quote(mount_point)} 2>/dev/null || true
+dmsetup remove {shlex.quote(dm_name)} 2>/dev/null || true
+"""
+        self._exec_on_node(node, script)
+
+    def inject_disk_outage(
+        self,
+        node: str,
+        up_s: int = 10,
+        down_s: int = 5,
+        features: str = "",
+        dev: Optional[str] = None,
+        name: str = DEFAULT_DM_FLAKEY_NAME,
+        size_gb: int = DEFAULT_SIZE_GB,
+    ) -> str:
+        """
+        Create a flakey DM device on the specified node.
+        If dev is None, creates a safe loopback disk of size_gb and wraps it.
+        Returns the mapper path (/dev/mapper/<name>) you can mount/use for tests.
+        """
+        if dev is None:
+            dev = self._loop_create(node, size_gb=size_gb)
+
+        self.dm_flakey_create(node, name=name, dev=dev, up_s=up_s, down_s=down_s, features=features)
+        mapper = f"/dev/mapper/{name}"
+        mount_point = f"/mnt/{name}"
+        self._format_and_mount(node, mapper, mount_point)
+        return mapper
+
+    def recover_disk_outage(self, node: str, name: str = DEFAULT_DM_FLAKEY_NAME) -> None:
+        """Unmount and remove the flakey target; also detach loop if we created one."""
+        mount_point = f"/mnt/{name}"
+        self._unmount_and_cleanup(node, mount_point, name)
+        # Best effort detach loop used by our default image path
+        self._loop_destroy(node)
+
+    def inject_badblocks(
+        self,
+        node: str,
+        blocks: Optional[list[int]] = None,
+        dev: Optional[str] = None,
+        name: str = DEFAULT_DM_DUST_NAME,
+        blksz: int = DEFAULT_BLOCK_SIZE,
+        size_gb: int = DEFAULT_SIZE_GB,
+        enable: bool = True,
+    ) -> str:
+        """
+        Create a dust DM device and (optionally) enable failing reads on listed blocks.
+        If dev is None, creates a loopback disk of size_gb and wraps it.
+        Returns /dev/mapper/<name>.
+        """
+        if dev is None:
+            dev = self._loop_create(node, size_gb=size_gb)
+
+        self.dm_dust_create(node, name=name, dev=dev, blksz=blksz)
+        if blocks:
+            self.dm_dust_add_badblocks(node, name, blocks)
+        if enable:
+            self.dm_dust_enable(node, name)
+
+        mapper = f"/dev/mapper/{name}"
+        mount_point = f"/mnt/{name}"
+        self._format_and_mount(node, mapper, mount_point)
+        return mapper
+
+    def recover_badblocks(self, node: str, name: str = DEFAULT_DM_DUST_NAME) -> None:
+        """Unmount and remove the dust target and detach loop if present."""
+        mount_point = f"/mnt/{name}"
+        self._unmount_and_cleanup(node, mount_point, name)
+        self._loop_destroy(node)
+
+    # ---------- LSE (Latent Sector Error) injection ----------
+
+    def _get_pvc_info(self, pvc_name: str, namespace: str) -> Dict[str, str]:
+        """Get PVC information including PV details."""
+        out = self.kubectl.exec_command(f"kubectl -n {namespace} get pvc {pvc_name} -o json")
+        if not out:
+            raise RuntimeError(f"Failed to get PVC {pvc_name} in namespace {namespace}")
+        pvc = json.loads(out)
+        pv_name = pvc["spec"]["volumeName"]
+
+        out = self.kubectl.exec_command(f"kubectl get pv {pv_name} -o json")
+        if not out:
+            raise RuntimeError(f"Failed to get PV {pv_name}")
+        pv = json.loads(out)
+
+        return {
+            "pv_name": pv_name,
+            "capacity": pv["spec"]["capacity"]["storage"],
+            "storage_class": pv["spec"]["storageClassName"],
+            "local_path": pv["spec"]["local"]["path"],
+        }
+
+    def _create_dm_dust_for_lse(self, node: str, local_path: str) -> None:
+        """Create a dm-dust device wrapping the device at local_path for LSE (Latent Sector Error) simulation."""
+        script = f"""
+set -e
+echo 'Checking for dm_dust module...'
+if ! lsmod | grep -q dm_dust; then
+    echo 'Loading dm_dust module...'
+    modprobe dm_dust || (echo 'ERROR: dm_dust module not available. Try running: sudo modprobe dm_dust' && exit 1)
+else
+    echo 'dm_dust module already loaded'
+fi
+
+echo 'Finding device for {shlex.quote(local_path)}...'
+dev=$(findmnt -no SOURCE {shlex.quote(local_path)})
+if [ -z "$dev" ]; then
+    echo 'ERROR: No device found for mount point {shlex.quote(local_path)}'
+    exit 1
+fi
+
+echo "Found device: $dev"
+if [ ! -b "$dev" ]; then
+    echo "ERROR: Device $dev is not a block device"
+    exit 1
+fi
+
+echo 'Getting device size...'
+SECTORS=$(blockdev --getsz $dev)
+if [ "$SECTORS" -eq 0 ]; then
+    echo 'ERROR: Device has 0 sectors'
+    exit 1
+fi
+
+echo "Device size: $SECTORS sectors"
+echo 'Removing existing {DEFAULT_DM_LSE_NAME} if present...'
+dmsetup remove {DEFAULT_DM_LSE_NAME} 2>/dev/null || true
+
+echo 'Creating dm-dust device...'
+dmsetup create {DEFAULT_DM_LSE_NAME} --table "0 $SECTORS dust $dev 0 {DEFAULT_BLOCK_SIZE}" || (
+    echo 'ERROR: Failed to create dm-dust device'
+    dmsetup targets
+    exit 1
+)
+
+echo 'dm-dust device created successfully'
+dmsetup info {DEFAULT_DM_LSE_NAME}
+"""
+        rc, stdout, stderr = self._exec_with_nsenter_mount(node, script, check=True)
+        print(f"[DEBUG] Command output: {stdout}")
+        if stderr:
+            print(f"[DEBUG] Command stderr: {stderr}")
+
+    def _generate_pv_yaml(
+        self, pv_name: str, capacity: str, storage_class: str, local_path: str, node: str
+    ) -> str:
+        """Generate PersistentVolume YAML."""
+        return f"""apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: {pv_name}
+spec:
+  capacity:
+    storage: {capacity}
+  accessModes:
+  - ReadWriteOnce
+  storageClassName: {storage_class}
+  local:
+    path: {local_path}
+  nodeAffinity:
+    required:
+      nodeSelectorTerms:
+      - matchExpressions:
+        - key: kubernetes.io/hostname
+          operator: In
+          values:
+          - {node}
+  persistentVolumeReclaimPolicy: Delete
+"""
+
+    def _generate_pvc_yaml(self, pvc_name: str, namespace: str, capacity: str, storage_class: str, pv_name: str) -> str:
+        """Generate PersistentVolumeClaim YAML."""
+        return f"""apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: {pvc_name}
+  namespace: {namespace}
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: {capacity}
+  storageClassName: {storage_class}
+  volumeName: {pv_name}
+"""
+
+    def _apply_yaml(self, yaml_content: str) -> None:
+        """Apply YAML content via kubectl."""
+        self.kubectl.exec_command("kubectl apply -f -", input_data=yaml_content)
+
+    def _wait_for_pvc_bound(self, pvc_name: str, namespace: str) -> None:
+        """Wait for PVC to become Bound."""
+        cmd = [
+            "kubectl",
+            "-n",
+            namespace,
+            "wait",
+            f"pvc/{pvc_name}",
+            "--for=condition=Bound",
+            f"--timeout={PVC_BOUND_TIMEOUT}",
+        ]
+        rc = subprocess.run(cmd, stdout=subprocess.PIPE, stderr=subprocess.PIPE, text=True)
+        if rc.returncode != 0:
+            raise RuntimeError(f"PVC {pvc_name} did not become Bound: rc={rc.returncode}, err={rc.stderr}")
+
+    def inject_lse(self, node: str, pvc_name: str, namespace: str) -> None:
+        """
+        Replace the target PVC with a faulty one backed by dm-dust.
+        This simulates Latent Sector Errors (LSE) by wrapping the underlying device.
+        """
+        # 1. Get PVC and PV information
+        pv_info = self._get_pvc_info(pvc_name, namespace)
+        pv_name = pv_info["pv_name"]
+        local_path = pv_info["local_path"]
+
+        # Store recovery data
+        self.recovery_data = {
+            "node": node,
+            "pvc_name": pvc_name,
+            "namespace": namespace,
+            **pv_info,
+        }
+
+        # 2. Wrap underlying device with dm-dust
+        self._create_dm_dust_for_lse(node, local_path)
+
+        # 3. Delete PV, then PVC
+        self.kubectl.exec_command(f"kubectl delete pv {pv_name}")
+        self.kubectl.exec_command(f"kubectl -n {namespace} delete pvc {pvc_name}")
+
+        # 4. Recreate PV pointing at /dev/mapper/khaos_lse
+        faulty_pv_path = f"/dev/mapper/{DEFAULT_DM_LSE_NAME}"
+        new_pv_yaml = self._generate_pv_yaml(
+            pv_name, pv_info["capacity"], pv_info["storage_class"], faulty_pv_path, node
+        )
+        self._apply_yaml(new_pv_yaml)
+
+        # 5. Recreate PVC
+        new_pvc_yaml = self._generate_pvc_yaml(
+            pvc_name, namespace, pv_info["capacity"], pv_info["storage_class"], pv_name
+        )
+        self._apply_yaml(new_pvc_yaml)
+
+        # 6. Wait until PVC is Bound
+        self._wait_for_pvc_bound(pvc_name, namespace)
+
+        print(f"[KernelInjector] Faulty PVC {pvc_name} reattached via dm-dust and Bound")
+
+    def recover_lse(self) -> None:
+        """Restore the original PVC/PV pointing at the raw device."""
+        if not self.recovery_data:
+            print("[KernelInjector] No recovery data found, cannot recover LSE")
+            return
+
+        data = self.recovery_data
+        node = data["node"]
+        pvc_name = data["pvc_name"]
+        namespace = data["namespace"]
+        pv_name = data["pv_name"]
+
+        # Clean up dm-dust device first
+        script = f"dmsetup remove {DEFAULT_DM_LSE_NAME} 2>/dev/null || true"
+        self._exec_with_nsenter_mount(node, script, check=False)
+
+        # Delete faulty PVC + PV
+        self.kubectl.exec_command(f"kubectl -n {namespace} delete pvc {pvc_name}")
+        self.kubectl.exec_command(f"kubectl delete pv {pv_name}")
+
+        # Recreate clean PV
+        healthy_pv_yaml = self._generate_pv_yaml(
+            pv_name, data["capacity"], data["storage_class"], data["local_path"], node
+        )
+        self._apply_yaml(healthy_pv_yaml)
+
+        # Recreate PVC
+        healthy_pvc_yaml = self._generate_pvc_yaml(
+            pvc_name, namespace, data["capacity"], data["storage_class"], pv_name
+        )
+        self._apply_yaml(healthy_pvc_yaml)
+
+        print(f"[KernelInjector] PVC {pvc_name} restored to healthy device")
+        self.recovery_data = None
+
+    def drop_caches(self, node: str, show_log:bool = True) -> None:
+        """
+        Drop page cache, dentries, and inodes on the target node.
+        This forces the application to read from the disk, hitting the bad blocks.
+        """
+        # echo 3 > /proc/sys/vm/drop_caches
+        # We use sysctl -w vm.drop_caches=3 which is cleaner if available,
+        # but writing to /proc is more universal.
+        script = "echo 3 > /proc/sys/vm/drop_caches"
+        self._exec_on_node(node, script)
+        if show_log:
+            print(f"[KernelInjector] Dropped caches on node {node}")
diff --git a/sregym/generators/fault/inject_operator.py b/sregym/generators/fault/inject_operator.py
new file mode 100644
index 0000000..0e8a7b6
--- /dev/null
+++ b/sregym/generators/fault/inject_operator.py
@@ -0,0 +1,249 @@
+import time
+
+import yaml
+
+from sregym.generators.fault.base import FaultInjector
+from sregym.service.kubectl import KubeCtl
+
+
+class K8SOperatorFaultInjector(FaultInjector):
+    def __init__(self, namespace: str):
+        self.namespace = namespace
+        self.kubectl = KubeCtl()
+        self.kubectl.create_namespace_if_not_exist(namespace)
+
+    def _apply_yaml(self, cr_name: str, cr_yaml: dict):
+        yaml_path = f"/tmp/{cr_name}.yaml"
+        with open(yaml_path, "w") as file:
+            yaml.dump(cr_yaml, file)
+
+        command = f"kubectl apply -f {yaml_path} -n {self.namespace}"
+        print(f"Namespace: {self.namespace}")
+        result = self.kubectl.exec_command(command)
+        print(f"Injected {cr_name}: {result}")
+
+    def _delete_yaml(self, cr_name: str):
+        yaml_path = f"/tmp/{cr_name}.yaml"
+        command = f"kubectl delete -f {yaml_path} -n {self.namespace}"
+        result = self.kubectl.exec_command(command)
+        print(f"Recovered from misconfiguration {cr_name}: {result}")
+
+    def inject_overload_replicas(self):
+        """
+        Injects a TiDB misoperation custom resource.
+        The misconfiguration sets an unreasonably high number of TiDB replicas.
+        """
+        cr_name = "overload-tidbcluster"
+        cr_yaml = {
+            "apiVersion": "pingcap.com/v1alpha1",
+            "kind": "TidbCluster",
+            "metadata": {"name": "basic", "namespace": self.namespace},
+            "spec": {
+                "version": "v3.0.8",
+                "timezone": "UTC",
+                "pvReclaimPolicy": "Delete",
+                "pd": {
+                    "baseImage": "pingcap/pd",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tikv": {
+                    "baseImage": "pingcap/tikv",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tidb": {
+                    "baseImage": "pingcap/tidb",
+                    "replicas": 100000,  # Intentional misconfiguration
+                    "service": {"type": "ClusterIP"},
+                    "config": {},
+                },
+            },
+        }
+
+        self._apply_yaml(cr_name, cr_yaml)
+
+    def recover_overload_replicas(self):
+        self.recover_fault("overload-tidbcluster")
+
+    def inject_invalid_affinity_toleration(self):
+        """
+        This misoperation specifies an invalid toleration effect.
+        """
+        cr_name = "affinity-toleration-fault"
+        cr_yaml = {
+            "apiVersion": "pingcap.com/v1alpha1",
+            "kind": "TidbCluster",
+            "metadata": {"name": "basic", "namespace": self.namespace},
+            "spec": {
+                "version": "v3.0.8",
+                "timezone": "UTC",
+                "pvReclaimPolicy": "Delete",
+                "pd": {
+                    "baseImage": "pingcap/pd",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tikv": {
+                    "baseImage": "pingcap/tikv",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tidb": {
+                    "baseImage": "pingcap/tidb",
+                    "replicas": 2,
+                    "service": {"type": "ClusterIP"},
+                    "config": {},
+                    "tolerations": [
+                        {
+                            "key": "test-keys",
+                            "operator": "Equal",
+                            "value": "test-value",
+                            "effect": "TAKE_SOME_EFFECT",  # Buggy: invalid toleration effect
+                            "tolerationSeconds": 0,
+                        }
+                    ],
+                },
+            },
+        }
+        self._apply_yaml(cr_name, cr_yaml)
+
+    def recover_invalid_affinity_toleration(self):
+        self.recover_fault("affinity-toleration-fault")
+
+    def inject_security_context_fault(self):
+        """
+        The fault sets an invalid runAsUser value.
+        """
+        cr_name = "security-context-fault"
+        cr_yaml = {
+            "apiVersion": "pingcap.com/v1alpha1",
+            "kind": "TidbCluster",
+            "metadata": {"name": "basic", "namespace": self.namespace},
+            "spec": {
+                "version": "v3.0.8",
+                "timezone": "UTC",
+                "pvReclaimPolicy": "Delete",
+                "pd": {
+                    "baseImage": "pingcap/pd",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tikv": {
+                    "baseImage": "pingcap/tikv",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tidb": {
+                    "baseImage": "pingcap/tidb",
+                    "replicas": 2,
+                    "service": {"type": "ClusterIP"},
+                    "config": {},
+                    "podSecurityContext": {"runAsUser": -1},  # invalid runAsUser value
+                },
+            },
+        }
+        self._apply_yaml(cr_name, cr_yaml)
+
+    def recover_security_context_fault(self):
+        self.recover_fault("security-context-fault")
+
+    def inject_wrong_update_strategy(self):
+        """
+        This fault specifies an invalid update strategy.
+        """
+        cr_name = "deployment-update-strategy-fault"
+        cr_yaml = {
+            "apiVersion": "pingcap.com/v1alpha1",
+            "kind": "TidbCluster",
+            "metadata": {"name": "basic", "namespace": self.namespace},
+            "spec": {
+                "version": "v3.0.8",
+                "timezone": "UTC",
+                "pvReclaimPolicy": "Delete",
+                "pd": {
+                    "baseImage": "pingcap/pd",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tikv": {
+                    "baseImage": "pingcap/tikv",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tidb": {
+                    "baseImage": "pingcap/tidb",
+                    "replicas": 2,
+                    "service": {"type": "ClusterIP"},
+                    "config": {},
+                    "statefulSetUpdateStrategy": "SomeStrategyForUpdate",  # invalid update strategy
+                },
+            },
+        }
+        self._apply_yaml(cr_name, cr_yaml)
+
+    def recover_wrong_update_strategy(self):
+        self.recover_fault("deployment-update-strategy-fault")
+
+    def inject_non_existent_storage(self):
+        """
+        This fault specifies a non-existent storage class.
+        """
+        cr_name = "non-existent-storage-fault"
+        cr_yaml = {
+            "apiVersion": "pingcap.com/v1alpha1",
+            "kind": "TidbCluster",
+            "metadata": {"name": "basic", "namespace": self.namespace},
+            "spec": {
+                "version": "v3.0.8",
+                "timezone": "UTC",
+                "pvReclaimPolicy": "Delete",
+                "pd": {
+                    "baseImage": "pingcap/pd",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                    "storageClassName": "ThisIsAStorageClass",  # non-existent storage class
+                },
+                "tikv": {
+                    "baseImage": "pingcap/tikv",
+                    "replicas": 3,
+                    "requests": {"storage": "1Gi"},
+                    "config": {},
+                },
+                "tidb": {
+                    "baseImage": "pingcap/tidb",
+                    "replicas": 2,
+                    "service": {"type": "ClusterIP"},
+                    "config": {},
+                },
+            },
+        }
+        self._apply_yaml(cr_name, cr_yaml)
+
+    def recover_non_existent_storage(self):
+        self.recover_fault("non-existent-storage-fault")
+
+    def recover_fault(self, cr_name: str):
+        self._delete_yaml(cr_name)
+        clean_url = "https://raw.githubusercontent.com/pingcap/tidb-operator/v1.6.0/examples/basic/tidb-cluster.yaml"
+        command = f"kubectl apply -f {clean_url} -n {self.namespace}"
+        result = self.kubectl.exec_command(command)
+        print(f"Restored clean TiDBCluster: {result}")
+
+
+if __name__ == "__main__":
+    namespace = "tidb-cluster"
+    tidb_fault_injector = K8SOperatorFaultInjector(namespace)
+
+    tidb_fault_injector.inject_overload_replicas()
+    time.sleep(10)
+    tidb_fault_injector.recover_overload_replicas()
diff --git a/sregym/generators/fault/inject_os.py b/sregym/generators/fault/inject_os.py
new file mode 100644
index 0000000..c6b1877
--- /dev/null
+++ b/sregym/generators/fault/inject_os.py
@@ -0,0 +1,85 @@
+"""Inject faults at the OS layer."""
+
+# TODO: replace with khaos
+import json
+import subprocess
+
+import yaml
+
+from sregym.generators.fault.base import FaultInjector
+from sregym.generators.fault.helpers import (
+    get_pids_by_name,
+    hr_mongod_process_names,
+    hr_svc_process_names,
+    sn_svc_process_names,
+)
+from sregym.paths import BASE_DIR
+from sregym.service.kubectl import KubeCtl
+
+
+class OSFaultInjector(FaultInjector):
+    def __init__(self):
+        pass
+
+    # O.1: Kernel issue via the BPF filter
+    def kernel_bug(self):
+        return NotImplementedError
+
+    # O.2: Simulate a disk woreout failure
+    def inject_disk_woreout(self):
+        pids = []
+        proc_names = hr_mongod_process_names  # if it is SocialNetwork
+        for term in proc_names:
+            term_pids = get_pids_by_name(term)
+            print(f"Found PIDs for term '{term}': {term_pids}")
+            pids.extend(term_pids)
+
+        print(f"Injecting kernel fault into processes: {pids}")
+
+        target_syscall = "write"  # syscall for disk I/O
+        error_code = -5  # EIO (Input/output error)
+
+        if not pids:
+            print("No processes found to inject faults.")
+            return
+        try:
+            # Run err_inject with the target syscall, error code, and PIDs
+            # ./err_inject <target_syscall> <error_code> <pid1> [<pid2> ... <pidN>]
+            command = [
+                "sudo",
+                str(BASE_DIR / "generators/fault/bpf_injector/err_inject"),
+                target_syscall,
+                str(error_code),
+            ] + [str(pid) for pid in pids]
+            # print(f"Running command: {' '.join(command)}")
+            subprocess.run(command, check=True)
+        except subprocess.CalledProcessError as e:
+            print(f"Failed to inject fault: {e}")
+
+        # for pid in pids:
+        #     try:
+        #         print(f"Stopping process {pid}")
+        #         subprocess.run(["sudo", "kill", "-9", str(pid)], check=True)
+        #     except subprocess.CalledProcessError as e:
+        #         print(f"Failed to stop process {pid}: {e}")
+
+    def recover_disk_woreout(self):
+        bpf_folder_path = "/sys/fs/bpf/err_inject"
+        try:
+            command = ["sudo", "rm", "-rf", bpf_folder_path]
+            print(f"Removing folder: {bpf_folder_path}")
+            subprocess.run(command, check=True)
+            print(f"Successfully removed {bpf_folder_path}")
+        except subprocess.CalledProcessError as e:
+            print(f"Failed to remove folder {bpf_folder_path}: {e}")
+        except Exception as e:
+            print(f"An unexpected error occurred: {e}")
+
+
+def main():
+    injector = OSFaultInjector()
+    injector.inject_disk_woreout()
+
+
+if __name__ == "__main__":
+    main()
diff --git a/sregym/generators/fault/inject_otel.py b/sregym/generators/fault/inject_otel.py
new file mode 100644
index 0000000..a85a6e2
--- /dev/null
+++ b/sregym/generators/fault/inject_otel.py
@@ -0,0 +1,70 @@
+import json
+import subprocess
+
+from sregym.generators.fault.base import FaultInjector
+from sregym.service.kubectl import KubeCtl
+
+
+class OtelFaultInjector(FaultInjector):
+    def __init__(self, namespace: str):
+        self.namespace = namespace
+        self.kubectl = KubeCtl()
+        self.configmap_name = "flagd-config"
+
+    def inject_fault(self, feature_flag: str):
+        command = f"kubectl get configmap {self.configmap_name} -n {self.namespace} -o json"
+        try:
+            output = self.kubectl.exec_command(command)
+            configmap = json.loads(output)
+        except subprocess.CalledProcessError:
+            raise ValueError(f"ConfigMap '{self.configmap_name}' not found in namespace '{self.namespace}'.")
+        except json.JSONDecodeError:
+            raise ValueError(f"Error decoding JSON for ConfigMap '{self.configmap_name}'.")
+
+        flagd_data = json.loads(configmap["data"]["demo.flagd.json"])
+
+        if feature_flag in flagd_data["flags"]:
+            flagd_data["flags"][feature_flag]["defaultVariant"] = "on"
+        else:
+            raise ValueError(f"Feature flag '{feature_flag}' not found in ConfigMap '{self.configmap_name}'.")
+
+        updated_data = {"demo.flagd.json": json.dumps(flagd_data, indent=2)}
+        self.kubectl.create_or_update_configmap(self.configmap_name, self.namespace, updated_data)
+
+        self.kubectl.exec_command(f"kubectl rollout restart deployment flagd -n {self.namespace}")
+
+        print(f"Fault injected: Feature flag '{feature_flag}' set to 'on'.")
+
+    def recover_fault(self, feature_flag: str):
+        command = f"kubectl get configmap {self.configmap_name} -n {self.namespace} -o json"
+        try:
+            output = self.kubectl.exec_command(command)
+            configmap = json.loads(output)
+        except subprocess.CalledProcessError:
+            raise ValueError(f"ConfigMap '{self.configmap_name}' not found in namespace '{self.namespace}'.")
+        except json.JSONDecodeError:
+            raise ValueError(f"Error decoding JSON for ConfigMap '{self.configmap_name}'.")
+
+        flagd_data = json.loads(configmap["data"]["demo.flagd.json"])
+
+        if feature_flag in flagd_data["flags"]:
+            flagd_data["flags"][feature_flag]["defaultVariant"] = "off"
+        else:
+            raise ValueError(f"Feature flag '{feature_flag}' not found in ConfigMap '{self.configmap_name}'.")
+
+        updated_data = {"demo.flagd.json": json.dumps(flagd_data, indent=2)}
+        self.kubectl.create_or_update_configmap(self.configmap_name, self.namespace, updated_data)
+
+        self.kubectl.exec_command(f"kubectl rollout restart deployment flagd -n {self.namespace}")
+        print(f"Fault recovered: Feature flag '{feature_flag}' set to 'off'.")
+
+
+# Example usage:
+# if __name__ == "__main__":
+#     namespace = "astronomy-shop"
+#     feature_flag = "adServiceFailure"
+
+#     injector = OtelFaultInjector(namespace)
+
+#     injector.inject_fault(feature_flag)
+#     injector.recover_fault(feature_flag)
diff --git a/sregym/generators/fault/inject_remote_os.py b/sregym/generators/fault/inject_remote_os.py
new file mode 100644
index 0000000..bdb6a1d
--- /dev/null
+++ b/sregym/generators/fault/inject_remote_os.py
@@ -0,0 +1,225 @@
+"""Inject faults at the OS layer."""
+
+# TODO: replace with khaos
+import json
+import subprocess
+import os
+import time
+
+import paramiko
+from paramiko.client import AutoAddPolicy
+
+import yaml
+
+from sregym.generators.fault.base import FaultInjector
+from sregym.generators.fault.helpers import (
+    get_pids_by_name,
+    hr_mongod_process_names,
+    hr_svc_process_names,
+    sn_svc_process_names,
+)
+from sregym.paths import BASE_DIR
+from sregym.service.kubectl import KubeCtl
+
+
+# a script to create a process, keep send SIGTERM to kubelet
+KILL_KUBELET_SCRIPT = """
+#!/bin/bash
+while true; do
+    sudo pkill -TERM kubelet
+    sleep 1
+done
+"""
+
+class RemoteOSFaultInjector(FaultInjector):
+    def __init__(self):
+        self.kubectl = KubeCtl()
+    
+    def check_remote_host(self):
+        # kubectl get nodes -o json, if  (kind-worker) is in the nodes, return False
+        cmd = "kubectl get nodes"
+        out = self.kubectl.exec_command(cmd)
+        if "kind-worker" in out:
+            print("You are using Kind.")
+            return False
+        
+        # try to find the script/ansible/inventory.yml, if it does not exist, return False
+        if not os.path.exists(f"{BASE_DIR}/../scripts/ansible/inventory.yml"):
+            print("Inventory file not found: " + f"{BASE_DIR}/../scripts/ansible/inventory.yml")
+            return False
+        return True
+    
+    def get_host_info(self):
+        # read the script/ansible/inventory.yml, and return the host info
+        worker_info = {}
+        with open(f"{BASE_DIR}/../scripts/ansible/inventory.yml", "r") as f:
+            inventory = yaml.safe_load(f)
+            
+            # Extract variables from all.vars
+            variables = {}
+            if "all" in inventory and "vars" in inventory["all"]:
+                variables = inventory["all"]["vars"]
+            
+            # get all the workers
+            if "all" in inventory and "children" in inventory["all"] and "worker_nodes" in inventory["all"]["children"]:
+                workers = inventory["all"]["children"]["worker_nodes"]["hosts"]
+                for worker in workers:
+                    ansible_host = workers[worker]["ansible_host"]
+                    ansible_user = workers[worker]["ansible_user"]
+                    
+                    # Replace variables in ansible_user
+                    ansible_user = self._replace_variables(ansible_user, variables)
+                    
+                    # Skip if variables couldn't be resolved
+                    if "{{" in ansible_user:
+                        print(f"Warning: Unresolved variables in {worker} user: {ansible_user}")
+                        continue
+                        
+                    worker_info[ansible_host] = ansible_user
+                return worker_info
+                
+        print(f"No worker nodes found in the inventory file, your cluster is not applicable for this fault injector")
+        return None
+    
+    def _replace_variables(self, text: str, variables: dict) -> str:
+        """Replace {{ variable_name }} with actual values from variables dict."""
+        import re
+        
+        def replace_var(match):
+            var_name = match.group(1).strip()
+            if var_name in variables:
+                return str(variables[var_name])
+            else:
+                print(f"Warning: Variable '{var_name}' not found in variables")
+                return match.group(0)  # Return original if not found
+        
+        # Replace {{ variable_name }} patterns
+        return re.sub(r'\{\{\s*(\w+)\s*\}\}', replace_var, text)
+
+    def inject_kubelet_crash(self):
+    # inject a script to create a process, keep send SIGTERM to kubelet
+        if not self.check_remote_host():
+            print("Your cluster is not applicable for this fault injector, It should be remote.")
+            return
+        
+        self.worker_info = self.get_host_info()
+        if not self.worker_info:
+            return
+
+        for host, user in self.worker_info.items():
+            if self.exist_script_on_host(host, user, "kill_kubelet.sh"):
+                print("Kubelet killer already exists on the host. Cleaning up...")
+                self.clean_up_script_on_host(host, user, "kill_kubelet.sh")
+            
+        for host, user in self.worker_info.items():
+            pid = self.inject_script_on_host(host, user, KILL_KUBELET_SCRIPT, "kill_kubelet.sh")
+            if pid:
+                print(f"Successfully started kubelet killer on {host} with PID {pid}")
+            else:
+                print(f"Failed to start kubelet killer on {host}")
+                return
+        return
+    
+    def recover_kubelet_crash(self):
+        if not self.check_remote_host():
+            print("No need to clean up.")
+            return
+        if not hasattr(self, "worker_info"):
+            self.worker_info = self.get_host_info()
+        for host, user in self.worker_info.items():
+            self.clean_up_script_on_host(host, user, "kill_kubelet.sh")
+        time.sleep(3)
+        return
+        
+    ###### Helpers ######
+    def exist_script_on_host(self, host: str, user: str, script_name: str):
+        ssh = paramiko.SSHClient()
+        ssh.set_missing_host_key_policy(AutoAddPolicy())
+        ssh.connect(host, username=user)
+        stdin, stdout, stderr = ssh.exec_command(f"ls /tmp/{script_name}")
+        return script_name in stdout.read().decode()
+    
+    def inject_script_on_host(self, host: str, user: str, script: str, script_name: str):
+        # ssh into the host, and write a script to create a process, keep send SIGTERM to kubelet
+        ssh = paramiko.SSHClient()
+        ssh.set_missing_host_key_policy(AutoAddPolicy())
+        script_path = f"/tmp/{script_name}"
+        log_path = f"/tmp/{script_name}.log"
+        
+        try: 
+            ssh.connect(host, username=user)
+            # Create a script file on the remote host
+            print(f"Connected to {host} with user {user}")
+            
+            sftp = ssh.open_sftp()
+            with sftp.file(script_path, 'w') as f:
+                f.write(script)
+            sftp.close()
+            
+            # Make the script executable and run it in background
+            # First make it executable
+            stdin, stdout, stderr = ssh.exec_command(f"chmod +x {script_path}")
+            stdout.channel.recv_exit_status()  # Wait for completion
+            
+            # Then start the script in background and capture PID
+            # Use a more reliable method to get PID
+            cmd = f"nohup {script_path} > {log_path} 2>&1 & echo $! > /tmp/{script_name}.pid"
+            stdin, stdout, stderr = ssh.exec_command(cmd)
+            stdout.channel.recv_exit_status()  # Wait for completion
+            
+            # Read the PID from the file
+            stdin, stdout, stderr = ssh.exec_command(f"cat /tmp/{script_name}.pid")
+            pid = stdout.readline().strip()
+            print(f"Executed command {cmd} on {host}")
+            print(f"Read PID from file: {pid}")
+            print(f"Started {script_name} on {host} with PID {pid}")
+            # Store the PID for later cleanup
+            return pid
+            
+        except Exception as e:
+            print(f"Failed to start {script_name} on {host}: {e}")
+            return None
+        finally:
+            ssh.close()
+
+    def clean_up_script_on_host(self, host: str, user: str, script_name: str):
+        """Clean up the script on the remote host."""
+        ssh = paramiko.SSHClient()
+        ssh.set_missing_host_key_policy(AutoAddPolicy())
+        script_path = f"/tmp/{script_name}"
+        log_path = f"/tmp/{script_name}.log"
+        pid_path = f"/tmp/{script_name}.pid"
+        
+        try:
+            ssh.connect(host, username=user)
+            
+            # First, try to read the PID from the file
+            stdin, stdout, stderr = ssh.exec_command(f"cat {pid_path} 2>/dev/null")
+            pid = stdout.readline().strip()
+            
+            if pid:
+                # Kill the process and clean up the script
+                cmd = f"kill {pid} 2>/dev/null; rm -f {script_path} {log_path} {pid_path}"
+                stdin, stdout, stderr = ssh.exec_command(cmd)
+                print(f"Cleaned up {script_name} on {host} (PID {pid})")
+                print(f"Waiting for kubelet to restart...")
+                time.sleep(3)
+                
+        except Exception as e:
+            print(f"Failed to clean up {script_name} on {host}: {e}")
+        finally:
+            ssh.close()
+
+
+def main():
+    print("Testing RemoteOSFaultInjector")
+    injector = RemoteOSFaultInjector()
+    print("Injecting kubelet crash...")
+    injector.inject_kubelet_crash()
+    input("Press Enter to recover kubelet crash")
+    print("Recovering kubelet crash...")
+    injector.recover_kubelet_crash()
+
+
+if __name__ == "__main__":
+    main()
diff --git a/sregym/generators/fault/inject_tt.py b/sregym/generators/fault/inject_tt.py
new file mode 100644
index 0000000..b6dec6a
--- /dev/null
+++ b/sregym/generators/fault/inject_tt.py
@@ -0,0 +1,174 @@
+import json
+import logging
+import yaml
+from typing import Dict, List, Any, Optional
+import time
+
+from sregym.generators.fault.base import FaultInjector
+from sregym.service.kubectl import KubeCtl
+
+logger = logging.getLogger(__name__)
+
+
+class TrainTicketFaultInjector(FaultInjector):
+
+    def __init__(self, namespace: str = "train-ticket"):
+        super().__init__(namespace)
+        self.namespace = namespace
+        self.kubectl = KubeCtl()
+        self.configmap_name = "flagd-config"
+        self.flagd_deployment = "flagd"
+
+        self.fault_mapping = {
+            "fault-1-async-message-sequence-control": "F1: Asynchronous message delivery lacks sequence control",
+            "fault-2-data-request-order-inconsistency": "F2: Different data requests for the same report are returned in an unexpected order",
+            "fault-3-jvm-docker-config-mismatch": "F3: JVM configurations are inconsistent with Docker configurations",
+            "fault-4-ssl-offloading-granularity": "F4: SSL offloading happens in a fine granularity (happening in almost each Docker instance)",
+            "fault-5-high-load-timeout-cascade": "F5: The high load of a type of requests causes the timeout failure of another type of requests",
+            "fault-6-sql-error-recursive-requests": "F6: Endless recursive requests of a microservice are caused by SQL errors of another dependent microservice",
+            "fault-7-third-party-service-overload": "F7: The overload of requests to a third-party service leads to denial of service",
+            "fault-8-request-key-propagation-failure": "F8: The key in the request of one microservice is not passed to its dependent microservice",
+            "fault-9-css-bidirectional-display-error": "F9: There is a CSS display style error in bi-directional",
+            "fault-10-bom-api-unexpected-output": "F10: An API used in a special case of BOM updating returns unexpected output",
+            "fault-11-bom-data-sequence-error": "F11: The BOM data is updated in an unexpected sequence",
+            "fault-12-price-status-query-chain-error": "F12: Price status querying does not consider an unexpected output of a microservice in its call chain",
+            "fault-13-price-optimization-order-error": "F13: Price optimization steps are executed in an unexpected order",
+            "fault-14-locked-product-cpi-calculation-error": "F14: There is a mistake in including the locked product in CPI calculation",
+            "fault-15-spark-actor-system-config-error": "F15: The spark actor is used for the configuration of actorSystem (part of Apache Spark) instead of the system actor",
+            "fault-16-spray-max-content-length-limit": "F16: The 'max-content-length' configuration of spray is only 2 Mb, not allowing to support to upload a big file",
+            "fault-17-nested-sql-select-clause-error": "F17: Too many nested 'select' and 'from' clauses are in the constructed SQL statement",
+            "fault-18-json-chart-data-null-value": "F18: One key of the returned JSON data for the UI chart includes the null value",
+            "fault-19-product-price-french-format-error": "F19: The product price is not formatted correctly in the French format",
+            "fault-20-jboss-db2-jar-classpath-error": "F20: The JBoss startup classpath parameter does not include the right DB2 jar package",
+            "fault-21-aria-labeled-accessibility-error": "F21: The 'aria-labeled-by' element for accessibility cannot be located by the JAWS",
+            "fault-22-sql-column-name-mismatch-error": "F22: The constructed SQL statement includes a wrong column name in the 'select' part according to its 'from' part",
+        }
+
+    def inject_fault(self, fault_type: str) -> bool:
+        print(f"[TrainTicket] Injecting fault: {fault_type}")
+        return self._set_fault_state(fault_type, "on")
+
+    def recover_fault(self, fault_type: str) -> bool:
+        print(f"[TrainTicket] Recovering from fault: {fault_type}")
+        return self._set_fault_state(fault_type, "off")
+
+    def _get_configmap(self) -> Dict[str, Any]:
+        try:
+            result = self.kubectl.exec_command(
+                f"kubectl get configmap {self.configmap_name} -n {self.namespace} -o json"
+            )
+            return json.loads(result) if result else {}
+
+        except Exception as e:
+            logger.error(f"Error getting ConfigMap: {e}")
+            return {}
+
+    def _set_fault_state(self, fault_type: str, state: str) -> bool:
+        """Update fault state in ConfigMap.
+
+        Args:
+            fault_type: Name of the fault (e.g., 'fault-6-sql-error-recursive-requests')
+            state: 'on' or 'off'
+        """
+        print(f"Setting {fault_type} to {state}...")
+
+        configmap = self._get_configmap()
+        if not configmap:
+            print("Failed to get ConfigMap")
+            return False
+
+        flags_yaml = configmap["data"]["flags.yaml"]
+        flags_data = yaml.safe_load(flags_yaml)
+
+        if fault_type not in flags_data["flags"]:
+            print(f"Fault '{fault_type}' not found in ConfigMap")
+            return False
+
+        # Update fault state
+        flags_data["flags"][fault_type]["defaultVariant"] = state
+
+        updated_yaml = yaml.dump(flags_data, default_flow_style=False)
+
+        try:
+            result = self.kubectl.update_configmap(
+                name=self.configmap_name, namespace=self.namespace, data={"flags.yaml": updated_yaml}
+            )
+
+            if result:
+                print(f"✅ {fault_type} set to {state}")
+
+                verification = self._get_configmap()
+                if verification and "data" in verification:
+                    flags_verification = yaml.safe_load(verification["data"]["flags.yaml"])
+                    actual_value = flags_verification["flags"][fault_type]["defaultVariant"]
+                    if actual_value == state:
+                        print(f"✅ ConfigMap verified: {fault_type} = {state}")
+                    else:
+                        print(f"❌ ConfigMap verification failed: expected {state}, got {actual_value}")
+                        return False
+
+                self._restart_flagd()
+                print("✅ flagd restarted successfully")
+
+                print("Sleeping for 20 seconds to flag value change to take effect...")
+                time.sleep(20)
+                return True
+            else:
+                print("Failed to update ConfigMap")
+                return False
+
+        except Exception as e:
+            print(f"❌ Error updating fault: {e}")
+            return False
+
+    def _restart_flagd(self):
+        print(f"[TrainTicket] Restarting flagd deployment...")
+
+        try:
+            result = self.kubectl.exec_command(
+                f"kubectl rollout restart deployment/{self.flagd_deployment} -n {self.namespace}"
+            )
+            print(f"[TrainTicket] flagd deployment restarted successfully: {result}")
+
+        except Exception as e:
+            logger.error(f"Error restarting flagd: {e}")
+
+    def get_fault_status(self, fault_type: str) -> str:
+        try:
+            result = self.kubectl.exec_command(
+                f"kubectl get configmap {self.configmap_name} -n {self.namespace} -o jsonpath='{{.data.flags\\.yaml}}'"
+            )
+
+            if result and fault_type in result:
+                import yaml
+
+                flags_data = yaml.safe_load(result)
+
+                if "flags" in flags_data and fault_type in flags_data["flags"]:
+                    return flags_data["flags"][fault_type].get("defaultVariant", "unknown")
+
+        except Exception as e:
+            logger.error(f"Error getting fault status: {e}")
+
+        return "unknown"
+
+    def list_available_faults(self) -> List[str]:
+        return list(self.fault_mapping.keys())
+
+    def get_fault_description(self, fault_name: str) -> Optional[str]:
+        return self.fault_mapping.get(fault_name)
+
+    # Override base class methods to use feature flag-based fault injection
+    def _inject(self, fault_type: str, microservices: list[str] = None, duration: str = None):
+        """Override base class _inject to use feature flag-based injection."""
+        print(f"[TrainTicket] Using feature flag injection for: {fault_type}")
+        return self.inject_fault(fault_type)
+
+    def _recover(self, fault_type: str, microservices: list[str] = None):
+        """Override base class _recover to use feature flag-based recovery."""
+        print(f"[TrainTicket] Using feature flag recovery for: {fault_type}")
+        return self.recover_fault(fault_type)
+
+
+if __name__ == "__main__":
+    print("TrainTicketFaultInjector - Use via SREGym CLI")
diff --git a/sregym/generators/fault/inject_virtual.py b/sregym/generators/fault/inject_virtual.py
new file mode 100644
index 0000000..cd138cb
--- /dev/null
+++ b/sregym/generators/fault/inject_virtual.py
@@ -0,0 +1,2128 @@
+"""Inject faults at the virtualization layer: K8S, Docker, etc."""
+
+import copy
+import json
+import time
+from pathlib import Path
+
+import yaml
+from kubernetes import config
+
+from sregym.generators.fault.base import FaultInjector
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.base import Application
+from sregym.service.helm import Helm
+from sregym.service.kubectl import KubeCtl
+
+
+class VirtualizationFaultInjector(FaultInjector):
+    def __init__(self, namespace: str):
+        super().__init__(namespace)
+        self.namespace = namespace
+        self.kubectl = KubeCtl()
+        self.mongo_service_pod_map = {
+            "url-shorten-mongodb": "url-shorten-service",
+        }
+
+    def delete_service_pods(self, target_service_pods: list[str]):
+        """Kill the corresponding service pod to enforce the fault."""
+        for pod in target_service_pods:
+            delete_pod_command = f"kubectl delete pod {pod} -n {self.namespace}"
+            delete_result = self.kubectl.exec_command(delete_pod_command)
+            print(f"Deleted service pod {pod} to enforce the fault: {delete_result}")
+
+    ############# FAULT LIBRARY ################
+
+    # V.1 - misconfig_k8s: Misconfigure service port in Kubernetes - Misconfig
+    def inject_misconfig_k8s(self, microservices: list[str]):
+        """Inject a fault to misconfigure service's target port in Kubernetes."""
+        for service in microservices:
+            service_config = self._modify_target_port_config(
+                from_port=9090,
+                to_port=9999,
+                configs=self.kubectl.get_service_json(service, self.testbed),
+            )
+
+            print(f"Misconfig fault for service: {service} | namespace: {self.testbed}")
+            self.kubectl.patch_service(service, self.testbed, service_config)
+
+    def recover_misconfig_k8s(self, microservices: list[str]):
+        for service in microservices:
+            service_config = self._modify_target_port_config(
+                from_port=9999,
+                to_port=9090,
+                configs=self.kubectl.get_service_json(service, self.testbed),
+            )
+
+            print(f"Recovering for service: {service} | namespace: {self.testbed}")
+            self.kubectl.patch_service(service, self.testbed, service_config)
+
+    # V.2 - auth_miss_mongodb: Authentication missing for MongoDB - Auth
+    def inject_auth_miss_mongodb(self, microservices: list[str]):
+        """Inject a fault to enable TLS for a MongoDB service.
+
+        NOTE: modifies the values.yaml file for the service. The fault is created
+        by forcing the service to require TLS for connections, which will fail if
+        the certificate is not provided.
+
+        NOTE: mode: requireTLS, certificateKeyFile, and CAFile are required fields.
+        """
+        for service in microservices:
+            # Prepare the set values for helm upgrade
+            set_values = {
+                "url-shorten-mongodb.tls.mode": "requireTLS",
+                "url-shorten-mongodb.tls.certificateKeyFile": "/etc/tls/tls.pem",
+                "url-shorten-mongodb.tls.CAFile": "/etc/tls/ca.crt",
+            }
+
+            # Define Helm upgrade configurations
+            helm_args = {
+                "release_name": "social-network",
+                "chart_path": TARGET_MICROSERVICES / "socialNetwork/helm-chart/socialnetwork/",
+                "namespace": self.namespace,
+                "values_file": TARGET_MICROSERVICES / "socialNetwork/helm-chart/socialnetwork/values.yaml",
+                "set_values": set_values,
+            }
+
+            Helm.upgrade(**helm_args)
+
+            pods = self.kubectl.list_pods(self.namespace)
+            target_service_pods = [
+                pod.metadata.name for pod in pods.items if self.mongo_service_pod_map[service] in pod.metadata.name
+            ]
+            print(f"Target Service Pods: {target_service_pods}")
+            self.delete_service_pods(target_service_pods)
+
+            self.kubectl.exec_command(f"kubectl rollout restart deployment {service} -n {self.namespace}")
+
+    def recover_auth_miss_mongodb(self, microservices: list[str]):
+        for service in microservices:
+            set_values = {
+                "url-shorten-mongodb.tls.mode": "disabled",
+                "url-shorten-mongodb.tls.certificateKeyFile": "",
+                "url-shorten-mongodb.tls.CAFile": "",
+            }
+
+            helm_args = {
+                "release_name": "social-network",
+                "chart_path": TARGET_MICROSERVICES / "socialNetwork/helm-chart/socialnetwork/",
+                "namespace": self.namespace,
+                "values_file": TARGET_MICROSERVICES / "socialNetwork/helm-chart/socialnetwork/values.yaml",
+                "set_values": set_values,
+            }
+
+            Helm.upgrade(**helm_args)
+
+            pods = self.kubectl.list_pods(self.namespace)
+            target_service_pods = [
+                pod.metadata.name for pod in pods.items if self.mongo_service_pod_map[service] in pod.metadata.name
+            ]
+            print(f"Target Service Pods: {target_service_pods}")
+
+            self.delete_service_pods(target_service_pods)
+            self.kubectl.exec_command(f"kubectl rollout restart deployment {service} -n {self.namespace}")
+
+    # V.3 - scale_pods_to_zero: Scale pods to zero - Deploy/Operation
+    def inject_scale_pods_to_zero(self, microservices: list[str]):
+        """Inject a fault to scale pods to zero for a service."""
+        for service in microservices:
+            self.kubectl.exec_command(f"kubectl scale deployment {service} --replicas=0 -n {self.namespace}")
+            print(f"Scaled deployment {service} to 0 replicas | namespace: {self.namespace}")
+
+    def recover_scale_pods_to_zero(self, microservices: list[str]):
+        for service in microservices:
+            self.kubectl.exec_command(f"kubectl scale deployment {service} --replicas=1 -n {self.namespace}")
+            print(f"Scaled deployment {service} back to 1 replica | namespace: {self.namespace}")
+
+    # V.4 - assign_to_non_existent_node: Assign to non-existent or NotReady node - Dependency
+    def inject_assign_to_non_existent_node(self, microservices: list[str]):
+        """Inject a fault to assign a service to a non-existent or NotReady node."""
+        non_existent_node_name = "extra-node"
+        for service in microservices:
+            deployment_yaml = self._get_deployment_yaml(service)
+            deployment_yaml["spec"]["template"]["spec"]["nodeSelector"] = {
+                "kubernetes.io/hostname": non_existent_node_name
+            }
+
+            # Write the modified YAML to a temporary file
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            self.kubectl.exec_command(delete_command)
+
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+            self.kubectl.exec_command(apply_command)
+            print(f"Redeployed {service} to node {non_existent_node_name}.")
+
+    def recover_assign_to_non_existent_node(self, microservices: list[str]):
+        for service in microservices:
+            deployment_yaml = self._get_deployment_yaml(service)
+            if "nodeSelector" in deployment_yaml["spec"]["template"]["spec"]:
+                del deployment_yaml["spec"]["template"]["spec"]["nodeSelector"]
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            self.kubectl.exec_command(delete_command)
+
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+            self.kubectl.exec_command(apply_command)
+            print(f"Removed nodeSelector for service {service} and redeployed.")
+
+    # --- V.5 - PVC claim name mismatch (per-service) ---
+    def inject_pvc_claim_mismatch(self, microservices: list[str]):
+        """Make pods Pending by pointing Deployments at a non-existent PVC claim."""
+        for service in microservices:
+            dep = self._get_deployment_yaml(service)
+            original = copy.deepcopy(dep)
+
+            pod_spec = dep.get("spec", {}).get("template", {}).get("spec", {})
+            volumes = pod_spec.get("volumes", [])
+            changed = False
+
+            for v in volumes:
+                pvc = v.get("persistentVolumeClaim")
+                if pvc and "claimName" in pvc:
+                    pvc["claimName"] = pvc["claimName"] + "-broken"
+                    changed = True
+
+            if not changed:
+                print(f"[{service}] No PVC volumes found; skipping.")
+                continue
+
+            modified = self._write_yaml_to_file(service, dep)
+
+            # Replace the deployment with the modified one
+            self.kubectl.exec_command(f"kubectl delete deployment {service} -n {self.namespace}")
+            self.kubectl.exec_command(f"kubectl apply -f {modified} -n {self.namespace}")
+
+            # Save the original for recovery
+            self._write_yaml_to_file(service, original)
+
+            print(f"[{service}] Patched claimName -> (…-broken). Pods should go Pending.")
+
+        self.kubectl.wait_for_stable(self.namespace)
+
+    def recover_pvc_claim_mismatch(self, microservices: list[str]):
+        """Restore the original Deployment YAML saved in /tmp/{svc}_modified.yaml."""
+        for service in microservices:
+            orig_path = f"/tmp/{service}_modified.yaml"
+            self.kubectl.exec_command(f"kubectl delete deployment {service} -n {self.namespace}")
+            self.kubectl.exec_command(f"kubectl apply -f {orig_path} -n {self.namespace}")
+            print(f"[{service}] Restored original claimName.")
+
+        self.kubectl.wait_for_ready(self.namespace)
+
+    # --- V.6 - Storage provisioner outage (cluster-scoped) ---
+    # TODO: This fault does not work because the PVCs are bound before fault injection
+    # def inject_storage_provisioner_outage(self):
+    #     """
+    #     Make all new PVCs Pending by disabling common local provisioners.
+    #     No-op if a target provisioner isn't present.
+    #     """
+    #     cmds = [
+    #         # OpenEBS localPV provisioner
+    #         "kubectl -n openebs scale deploy openebs-localpv-provisioner --replicas=0",
+    #         # Rancher/Kind local-path provisioner
+    #         "kubectl -n local-path-storage scale deploy local-path-provisioner --replicas=0",
+    #     ]
+    #     for c in cmds:
+    #         try:
+    #             self.kubectl.exec_command(c)
+    #             print(f"Ran: {c}")
+    #         except Exception as e:
+    #             print(f"Skipping: {c} ({e})")
+
+    #     print("Storage provisioner outage injected.")
+
+    # def recover_storage_provisioner_outage(self):
+    #     cmds = [
+    #         "kubectl -n openebs scale deploy openebs-localpv-provisioner --replicas=1",
+    #         "kubectl -n local-path-storage scale deploy local-path-provisioner --replicas=1",
+    #         "kubectl -n kube-system scale deploy hostpath-provisioner --replicas=1",
+    #     ]
+    #     for c in cmds:
+    #         try:
+    #             self.kubectl.exec_command(c)
+    #             print(f"Ran: {c}")
+    #         except Exception as e:
+    #             print(f"Skipping: {c} ({e})")
+
+    #     # Give the controller a moment and ensure PVCs start binding again
+    #     self.kubectl.wait_for_stable(self.namespace)
+    #     print("✅ Storage provisioner outage recovered.")
+
+    # V.6 - wrong binary usage incident
+    def inject_wrong_bin_usage(self, microservices: list[str]):
+        """Inject a fault to use the wrong binary of a service."""
+        for service in microservices:
+            deployment_yaml = self._get_deployment_yaml(service)
+
+            # Modify the deployment YAML to use the 'geo' binary instead of the 'profile' binary
+            containers = deployment_yaml["spec"]["template"]["spec"]["containers"]
+            for container in containers:
+                if "command" in container and "profile" in container["command"]:
+                    print(f"Changing binary for container {container['name']} from 'profile' to 'geo'.")
+                    container["command"] = ["geo"]  # Replace 'profile' with 'geo'
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            # Delete the deployment and re-apply
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+            self.kubectl.exec_command(delete_command)
+            self.kubectl.exec_command(apply_command)
+
+            print(f"Injected wrong binary usage fault for service: {service}")
+
+    def recover_wrong_bin_usage(self, microservices: list[str]):
+        for service in microservices:
+            deployment_yaml = self._get_deployment_yaml(service)
+
+            containers = deployment_yaml["spec"]["template"]["spec"]["containers"]
+            for container in containers:
+                if "command" in container and "geo" in container["command"]:
+                    print(f"Reverting binary for container {container['name']} from 'geo' to 'profile'.")
+                    container["command"] = ["profile"]  # Restore 'geo' back to 'profile'
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+            self.kubectl.exec_command(delete_command)
+            self.kubectl.exec_command(apply_command)
+
+            print(f"Recovered from wrong binary usage fault for service: {service}")
+
+    # V.7 - Inject a fault by deleting the specified service
+    def inject_missing_service(self, microservices: list[str]):
+        """Inject a fault by deleting the specified service."""
+        for service in microservices:
+            service_yaml_file = self._get_service_yaml(service)
+            delete_service_command = f"kubectl delete service {service} -n {self.namespace}"
+            result = self.kubectl.exec_command(delete_service_command)
+            print(f"Deleted service {service} to enforce the fault: {result}")
+
+            self._write_yaml_to_file(service, service_yaml_file)
+
+        # Restart all the pods
+        self.kubectl.exec_command(f"kubectl delete pods --all -n {self.namespace}")
+        self.kubectl.wait_for_stable(namespace=self.namespace)
+
+    def recover_missing_service(self, microservices: list[str]):
+        """Recover the fault by recreating the specified service."""
+        for service in microservices:
+            delete_service_command = f"kubectl delete service {service} -n {self.namespace}"
+            result = self.kubectl.exec_command(delete_service_command)
+            create_service_command = f"kubectl apply -f /tmp/{service}_modified.yaml -n {self.namespace}"
+            result = self.kubectl.exec_command(create_service_command)
+            print(f"Recreated service {service} to recover from the fault: {result}")
+
+    # V.8 - Inject a fault by modifying the resource request of a service
+    def inject_resource_request(self, microservices: list[str], memory_limit_func):
+        """Inject a fault by modifying the resource request of a service."""
+        for service in microservices:
+            original_deployment_yaml = self._get_deployment_yaml(service)
+            deployment_yaml = memory_limit_func(original_deployment_yaml)
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            # Delete the deployment and re-apply
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+            self.kubectl.exec_command(delete_command)
+            self.kubectl.exec_command(apply_command)
+
+            self._write_yaml_to_file(service, original_deployment_yaml)
+
+    def recover_resource_request(self, microservices: list[str]):
+        """Recover the fault by restoring the original resource request of a service."""
+        for service in microservices:
+            # Delete the deployment and re-apply
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f /tmp/{service}_modified.yaml -n {self.namespace}"
+            self.kubectl.exec_command(delete_command)
+            self.kubectl.exec_command(apply_command)
+
+            print(f"Recovered from resource request fault for service: {service}")
+
+    # V.9 - Manually patch a service's selector to include an additional label
+    def inject_wrong_service_selector(self, microservices: list[str]):
+        for service in microservices:
+            print(f"Injecting wrong selector for service: {service} | namespace: {self.namespace}")
+
+            service_config = self.kubectl.get_service_json(service, self.namespace)
+            current_selectors = service_config.get("spec", {}).get("selector", {})
+
+            # Adding a wrong selector to the service
+            current_selectors["current_service_name"] = service
+            service_config["spec"]["selector"] = current_selectors
+            self.kubectl.patch_service(service, self.namespace, service_config)
+
+            print(f"Patched service {service} with selector {service_config['spec']['selector']}")
+
+    def recover_wrong_service_selector(self, microservices: list[str]):
+        for service in microservices:
+            service_config = self.kubectl.get_service_json(service, self.namespace)
+
+            service_config = self.kubectl.get_service_json(service, self.namespace)
+            current_selectors = service_config.get("spec", {}).get("selector", {})
+
+            # Set the key to None to delete it from the live object
+            current_selectors["current_service_name"] = None
+            service_config["spec"]["selector"] = current_selectors
+            self.kubectl.patch_service(service, self.namespace, service_config)
+
+            print(f"Recovered from wrong service selector fault for service: {service}")
+
+    # V.10 - Inject service DNS resolution failure by patching CoreDNS ConfigMap
+    def inject_service_dns_resolution_failure(self, microservices: list[str]):
+        for service in microservices:
+            fqdn = f"{service}.{self.namespace}.svc.cluster.local"
+
+            # Get configmap as structured data
+            cm_yaml = self.kubectl.exec_command("kubectl -n kube-system get cm coredns -o yaml")
+            cm_data = yaml.safe_load(cm_yaml)
+            corefile = cm_data["data"]["Corefile"]
+
+            start_line_id = f"template ANY ANY {fqdn} {{"
+            if start_line_id in corefile:
+                print("NXDOMAIN template already present; recovering from previous injection")
+                self.recover_service_dns_resolution_failure([service])
+
+                # Re-fetch after recovery
+                cm_yaml = self.kubectl.exec_command("kubectl -n kube-system get cm coredns -o yaml")
+                cm_data = yaml.safe_load(cm_yaml)
+                corefile = cm_data["data"]["Corefile"]
+
+            # Create the NXDOMAIN template block
+            template_block = (
+                f"    template ANY ANY {fqdn} {{\n"
+                f'        match "^{fqdn}\\.$"\n'
+                f"        rcode NXDOMAIN\n"
+                f"        fallthrough\n"
+                f"    }}\n"
+            )
+
+            # Find the position of "kubernetes" word
+            kubernetes_pos = corefile.find("kubernetes")
+            if kubernetes_pos == -1:
+                print("Could not locate 'kubernetes' plugin in Corefile")
+                return
+
+            # Find the start of the line containing "kubernetes"
+            line_start = corefile.rfind("\n", 0, kubernetes_pos)
+            if line_start == -1:
+                line_start = 0
+            else:
+                line_start += 1
+
+            # Insert template block before the kubernetes line
+            new_corefile = corefile[:line_start] + template_block + corefile[line_start:]
+
+            cm_data["data"]["Corefile"] = new_corefile
+
+            # Apply using temporary file
+            tmp_file_path = self._write_yaml_to_file("coredns", cm_data)
+
+            self.kubectl.exec_command(f"kubectl apply -f {tmp_file_path}")
+
+            # Restart CoreDNS
+            self.kubectl.exec_command("kubectl -n kube-system rollout restart deployment coredns")
+            self.kubectl.exec_command("kubectl -n kube-system rollout status deployment coredns --timeout=30s")
+
+            print(f"Injected Service DNS Resolution Failure fault for service: {service}")
+
+    def recover_service_dns_resolution_failure(self, microservices: list[str]):
+        for service in microservices:
+            fqdn = f"{service}.{self.namespace}.svc.cluster.local"
+
+            # Get configmap as structured data
+            cm_yaml = self.kubectl.exec_command("kubectl -n kube-system get cm coredns -o yaml")
+            cm_data = yaml.safe_load(cm_yaml)
+            corefile = cm_data["data"]["Corefile"]
+
+            start_line_id = f"template ANY ANY {fqdn} {{"
+            if start_line_id not in corefile:
+                print("No NXDOMAIN template found; nothing to do")
+                return
+
+            lines = corefile.split("\n")
+            new_lines = []
+            skip_block = False
+
+            for line in lines:
+                # Start of template block
+                if not skip_block and start_line_id in line:
+                    skip_block = True
+                    continue
+
+                # End of template block
+                if skip_block and line.strip() == "}":
+                    skip_block = False
+                    continue
+
+                # Skip lines inside the block
+                if skip_block:
+                    continue
+
+                # Keep all other lines
+                new_lines.append(line)
+
+            if skip_block:
+                print("WARNING: Template block was not properly closed")
+                return
+
+            new_corefile = "\n".join(new_lines)
+
+            # Verify if the removal worked
+            if start_line_id in new_corefile:
+                print("ERROR: Template was not successfully removed!")
+                return
+
+            cm_data["data"]["Corefile"] = new_corefile
+
+            # Apply using temporary file
+            tmp_file_path = self._write_yaml_to_file("coredns", cm_data)
+            self.kubectl.exec_command(f"kubectl apply -f {tmp_file_path}")
+
+            # Restart CoreDNS
+            self.kubectl.exec_command("kubectl -n kube-system rollout restart deployment coredns")
+            self.kubectl.exec_command("kubectl -n kube-system rollout status deployment coredns --timeout=30s")
+
+            print(f"Recovered Service DNS Resolution Failure fault for service: {service}")
+
+    # V.11 - Inject a fault by modifying the DNS policy of a service
+    def inject_wrong_dns_policy(self, microservices: list[str]):
+        for service in microservices:
+            patch = (
+                '[{"op":"replace","path":"/spec/template/spec/dnsPolicy","value":"None"},'
+                '{"op":"add","path":"/spec/template/spec/dnsConfig","value":'
+                '{"nameservers":["8.8.8.8"],"searches":[]}}]'
+            )
+            patch_cmd = f"kubectl patch deployment {service} -n {self.namespace} --type json -p '{patch}'"
+            result = self.kubectl.exec_command(patch_cmd)
+            print(f"Patch result for {service}: {result}")
+
+            self.kubectl.exec_command(f"kubectl rollout restart deployment {service} -n {self.namespace}")
+            self.kubectl.exec_command(f"kubectl rollout status deployment {service} -n {self.namespace}")
+
+            # Check if nameserver 8.8.8.8 present in the pods
+            self._wait_for_dns_policy_propagation(service, external_ns="8.8.8.8", expect_external=True)
+
+            print(f"Injected wrong DNS policy fault for service: {service}")
+
+    def recover_wrong_dns_policy(self, microservices: list[str]):
+        for service in microservices:
+            patch = (
+                '[{"op":"remove","path":"/spec/template/spec/dnsPolicy"},'
+                '{"op":"remove","path":"/spec/template/spec/dnsConfig"}]'
+            )
+            patch_cmd = f"kubectl patch deployment {service} -n {self.namespace} --type json -p '{patch}'"
+            result = self.kubectl.exec_command(patch_cmd)
+            print(f"Patch result for {service}: {result}")
+
+            self.kubectl.exec_command(f"kubectl rollout restart deployment {service} -n {self.namespace}")
+            self.kubectl.exec_command(f"kubectl rollout status deployment {service} -n {self.namespace}")
+
+            # Check if nameserver 8.8.8.8 absent in the pods
+            self._wait_for_dns_policy_propagation(service, external_ns="8.8.8.8", expect_external=False)
+
+            print(f"Recovered wrong DNS policy fault for service: {service}")
+
+    # V.12 - Inject a stale CoreDNS config breaking all .svc.cluster.local DNS resolution
+    def inject_stale_coredns_config(self, microservices: list[str] = None):
+        # Get configmap as structured data
+        cm_yaml = self.kubectl.exec_command("kubectl -n kube-system get cm coredns -o yaml")
+        cm_data = yaml.safe_load(cm_yaml)
+        corefile = cm_data["data"]["Corefile"]
+
+        # Check if our template is already present (look for the exact line we inject)
+        template_id = "template ANY ANY svc.cluster.local"
+        if template_id in corefile:
+            print("Cluster DNS failure template already present; recovering from previous injection")
+            self.recover_stale_coredns_config()
+
+            # Re-fetch after recovery
+            cm_yaml = self.kubectl.exec_command("kubectl -n kube-system get cm coredns -o yaml")
+            cm_data = yaml.safe_load(cm_yaml)
+            corefile = cm_data["data"]["Corefile"]
+
+        # Create the NXDOMAIN template block
+        template_block = (
+            "    template ANY ANY svc.cluster.local {\n"
+            '        match ".*\\.svc\\.cluster\\.local\\.?$"\n'
+            "        rcode NXDOMAIN\n"
+            "    }\n"
+        )
+
+        # Find the position of "kubernetes" word
+        kubernetes_pos = corefile.find("kubernetes")
+        if kubernetes_pos == -1:
+            print("Could not locate 'kubernetes' plugin in Corefile")
+            return
+
+        # Find the start of the line containing "kubernetes"
+        line_start = corefile.rfind("\n", 0, kubernetes_pos)
+        if line_start == -1:
+            line_start = 0
+        else:
+            line_start += 1
+
+        # Insert template block before the kubernetes line
+        new_corefile = corefile[:line_start] + template_block + corefile[line_start:]
+
+        cm_data["data"]["Corefile"] = new_corefile
+
+        # Apply using temporary file
+        tmp_file_path = self._write_yaml_to_file("coredns", cm_data)
+
+        self.kubectl.exec_command(f"kubectl apply -f {tmp_file_path}")
+
+        # Restart CoreDNS
+        self.kubectl.exec_command("kubectl -n kube-system rollout restart deployment coredns")
+        self.kubectl.exec_command("kubectl -n kube-system rollout status deployment coredns --timeout=30s")
+
+        print("Injected stale CoreDNS config for all .svc.cluster.local domains")
+
+    def recover_stale_coredns_config(self, microservices: list[str] = None):
+
+        # Get configmap as structured data
+        cm_yaml = self.kubectl.exec_command("kubectl -n kube-system get cm coredns -o yaml")
+        cm_data = yaml.safe_load(cm_yaml)
+        corefile = cm_data["data"]["Corefile"]
+
+        # Check if our template is present
+        template_id = "template ANY ANY svc.cluster.local"
+        if template_id not in corefile:
+            print("No cluster DNS failure template found; nothing to do")
+            return
+
+        lines = corefile.split("\n")
+        new_lines = []
+        skip_block = False
+
+        for line in lines:
+            # Start of template block
+            if not skip_block and template_id in line:
+                skip_block = True
+                continue
+
+            # End of template block
+            if skip_block and line.strip() == "}":
+                skip_block = False
+                continue
+
+            # Skip lines inside the block
+            if skip_block:
+                continue
+
+            # Keep all other lines
+            new_lines.append(line)
+
+        if skip_block:
+            print("WARNING: Template block was not properly closed")
+            return
+
+        new_corefile = "\n".join(new_lines)
+
+        # Verify if the removal worked
+        if template_id in new_corefile:
+            print("ERROR: Template was not successfully removed!")
+            return
+
+        cm_data["data"]["Corefile"] = new_corefile
+
+        # Apply using temporary file
+        tmp_file_path = self._write_yaml_to_file("coredns", cm_data)
+        self.kubectl.exec_command(f"kubectl apply -f {tmp_file_path}")
+
+        # Restart CoreDNS
+        self.kubectl.exec_command("kubectl -n kube-system rollout restart deployment coredns")
+        self.kubectl.exec_command("kubectl -n kube-system rollout status deployment coredns --timeout=30s")
+
+        print("Recovered from stale CoreDNS config for all .svc.cluster.local domains")
+
+    # V.13 - Inject a sidecar container that binds to the same port as the main container (port conflict)
+    def inject_sidecar_port_conflict(self, microservices: list[str]):
+        for service in microservices:
+
+            original_deployment_yaml = self._get_deployment_yaml(service)
+            deployment_yaml = copy.deepcopy(original_deployment_yaml)
+
+            containers = deployment_yaml["spec"]["template"]["spec"]["containers"]
+
+            main_container = containers[0] if containers else {}
+            default_port = 8080
+            port = default_port
+            ports_list = main_container.get("ports", [])
+            if ports_list:
+                port = ports_list[0].get("containerPort", default_port)
+
+            sidecar_container = {
+                "name": "sidecar",
+                "image": "busybox:latest",
+                "command": [
+                    "sh",
+                    "-c",
+                    f"exec nc -lk -p {port}",
+                ],
+                "ports": [
+                    {
+                        "containerPort": port,
+                    }
+                ],
+            }
+
+            containers.append(sidecar_container)
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_cmd = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_cmd = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_cmd)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_cmd)
+            print(f"Apply result for {service}: {apply_result}")
+
+            # Save the *original* deployment YAML for recovery
+            self._write_yaml_to_file(service, original_deployment_yaml)
+
+            self.kubectl.wait_for_stable(self.namespace)
+
+            print(f"Injected sidecar port conflict fault for service: {service}")
+
+    def recover_sidecar_port_conflict(self, microservices: list[str]):
+        for service in microservices:
+            delete_cmd = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_cmd = f"kubectl apply -f /tmp/{service}_modified.yaml -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_cmd)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_cmd)
+            print(f"Apply result for {service}: {apply_result}")
+
+            self.kubectl.wait_for_ready(self.namespace)
+
+            print(f"Recovered from sidecar port conflict fault for service: {service}")
+
+    # Inject a liveness probe too aggressive fault
+    def inject_liveness_probe_too_aggressive(self, microservices: list[str]):
+        for service in microservices:
+
+            script_path = Path(__file__).parent / "custom" / f"slow_service.py"
+            self.deploy_custom_service(service, script_path)
+
+            deployment_yaml = self._get_deployment_yaml(service)
+            original_deployment_yaml = copy.deepcopy(deployment_yaml)
+
+            containers = deployment_yaml["spec"]["template"]["spec"]["containers"]
+
+            for container in containers:
+                probe = container.get("livenessProbe")
+                if probe:
+                    probe["initialDelaySeconds"] = 0
+                    probe["periodSeconds"] = 1
+                    probe["failureThreshold"] = 1
+
+            deployment_yaml["spec"]["template"]["spec"]["terminationGracePeriodSeconds"] = 0
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            # Save the *original* deployment YAML for recovery
+            self._write_yaml_to_file(service, original_deployment_yaml)
+
+            self.kubectl.wait_for_stable(self.namespace)
+
+            print(f"Injected liveness probe too aggressive fault for service: {service}")
+
+    def recover_liveness_probe_too_aggressive(self, microservices: list[str]):
+        for service in microservices:
+            original_yaml_path = f"/tmp/{service}_modified.yaml"
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {original_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            self.kubectl.wait_for_ready(self.namespace)
+
+            print(f"Recovered from liveness probe too aggressive fault for service: {service}")
+
+    # V.14 - Injects an environment variable leak by deleting a ConfigMap and restarting the associated deployment.
+    def inject_missing_configmap(self, microservices: list[str]):
+        for microservice in microservices:
+            configmap_name = None
+            if self.namespace == "social-network":
+                configmap_name = "media-mongodb"
+            elif self.namespace == "hotel-reservation":
+                configmap_name = "mongo-geo-script"
+            else:
+                raise ValueError(f"Unknown namespace: {self.namespace}")
+
+            get_cmd = f"kubectl get configmap {configmap_name} -n {self.namespace} -o yaml"
+            original_yaml = self.kubectl.exec_command(get_cmd)
+            parsed_yaml = yaml.safe_load(original_yaml)
+
+            self._write_yaml_to_file(microservice, parsed_yaml)
+
+            delete_cmd = f"kubectl delete configmap {configmap_name} -n {self.namespace}"
+            self.kubectl.exec_command(delete_cmd)
+            print(f"Deleted ConfigMap: {configmap_name}")
+
+            restart_cmd = f"kubectl rollout restart deployment {microservice} -n {self.namespace}"
+            self.kubectl.exec_command(restart_cmd)
+            print(f"Restarted pods to apply ConfigMap fault")
+
+    def recover_missing_configmap(self, microservices: list[str]):
+        for microservice in microservices:
+            configmap_name = f"{microservice}"
+            backup_path = f"/tmp/{configmap_name}_modified.yaml"
+
+            apply_cmd = f"kubectl apply -f {backup_path} -n {self.namespace}"
+            self.kubectl.exec_command(apply_cmd)
+            print(f"Restored ConfigMap: {configmap_name}")
+
+            self.kubectl.exec_command(f"kubectl rollout restart deployment {microservice} -n {self.namespace}")
+            self.kubectl.exec_command(f"kubectl rollout status deployment {microservice} -n {self.namespace}")
+            print(f"Deployment {microservice} restarted and should now be healthy")
+
+    # Inject ConfigMap drift by removing critical keys
+    def inject_configmap_drift(self, microservices: list[str]):
+
+        for service in microservices:
+
+            # Read the actual config.json from the running pod
+            read_config_cmd = f"kubectl exec deployment/{service} -n {self.namespace} -- cat /go/src/github.com/harlow/go-micro-services/config.json"
+            config_json_str = self.kubectl.exec_command(read_config_cmd)
+            original_config = json.loads(config_json_str)
+            print(f"Read original config from {service} pod")
+
+            # Save the original config to a file for recovery
+            original_config_path = f"/tmp/{service}-original-config.json"
+            with open(original_config_path, "w") as f:
+                json.dump(original_config, f, indent=2)
+            print(f"Saved original config to {original_config_path}")
+
+            fault_config = copy.deepcopy(original_config)
+            key_to_remove = None
+
+            if service == "geo" and "GeoMongoAddress" in fault_config:
+                del fault_config["GeoMongoAddress"]
+                key_to_remove = "GeoMongoAddress"
+            else:
+                print(f"Service {service} not supported for ConfigMap drift fault")
+                continue
+
+            configmap_name = f"{service}-config"
+            fault_config_json = json.dumps(fault_config, indent=2)
+
+            create_cm_cmd = f"""kubectl create configmap {configmap_name} -n {self.namespace} --from-literal=config.json='{fault_config_json}' --dry-run=client -o yaml | kubectl apply -f -"""
+            self.kubectl.exec_command(create_cm_cmd)
+            print(f"Created ConfigMap {configmap_name} with {key_to_remove} removed")
+
+            json_patch = [
+                {
+                    "op": "add",
+                    "path": "/spec/template/spec/volumes/-",
+                    "value": {"name": "config-volume", "configMap": {"name": configmap_name}},
+                },
+                {
+                    "op": "add",
+                    "path": "/spec/template/spec/containers/0/volumeMounts/-",
+                    "value": {
+                        "name": "config-volume",
+                        "mountPath": "/go/src/github.com/harlow/go-micro-services/config.json",
+                        "subPath": "config.json",
+                    },
+                },
+            ]
+
+            # Check if volumes array exists, if not create it
+            check_volumes_cmd = (
+                f"kubectl get deployment {service} -n {self.namespace} -o jsonpath='{{.spec.template.spec.volumes}}'"
+            )
+            volumes_exist = self.kubectl.exec_command(check_volumes_cmd).strip()
+
+            if not volumes_exist or volumes_exist == "[]":
+                # Need to create the volumes array first
+                json_patch[0]["op"] = "add"
+                json_patch[0]["path"] = "/spec/template/spec/volumes"
+                json_patch[0]["value"] = [json_patch[0]["value"]]
+
+            # Check if volumeMounts array exists
+            check_mounts_cmd = f"kubectl get deployment {service} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[0].volumeMounts}}'"
+            mounts_exist = self.kubectl.exec_command(check_mounts_cmd).strip()
+
+            if not mounts_exist or mounts_exist == "[]":
+                # Need to create the volumeMounts array first
+                json_patch[1]["op"] = "add"
+                json_patch[1]["path"] = "/spec/template/spec/containers/0/volumeMounts"
+                json_patch[1]["value"] = [json_patch[1]["value"]]
+
+            patch_json_str = json.dumps(json_patch)
+            patch_cmd = f"kubectl patch deployment {service} -n {self.namespace} --type='json' -p='{patch_json_str}'"
+            patch_result = self.kubectl.exec_command(patch_cmd)
+            print(f"Patch result for {service}: {patch_result}")
+
+            self.kubectl.exec_command(f"kubectl rollout status deployment/{service} -n {self.namespace} --timeout=30s")
+
+            print(f"Injected ConfigMap drift fault for service: {service} - removed {key_to_remove}")
+
+    def recover_configmap_drift(self, microservices: list[str]):
+
+        for service in microservices:
+            # Use the same ConfigMap name as in injection
+            configmap_name = f"{service}-config"
+
+            # Read the saved original config instead of trying to read from the pod
+            original_config_path = f"/tmp/{service}-original-config.json"
+            with open(original_config_path, "r") as f:
+                original_config = json.load(f)
+            print(f"Read original config from saved file: {original_config_path}")
+
+            original_config_json = json.dumps(original_config, indent=2)
+            update_cm_cmd = f"""kubectl create configmap {configmap_name} -n {self.namespace} --from-literal=config.json='{original_config_json}' --dry-run=client -o yaml | kubectl apply -f -"""
+            self.kubectl.exec_command(update_cm_cmd)
+            print(f"Updated ConfigMap {configmap_name} with complete configuration")
+
+            self.kubectl.exec_command(f"kubectl rollout restart deployment/{service} -n {self.namespace}")
+            self.kubectl.exec_command(f"kubectl rollout status deployment/{service} -n {self.namespace} --timeout=30s")
+
+            print(f"Recovered ConfigMap drift fault for service: {service}")
+
+    # V.14 - Inject a readiness probe misconfiguration fault
+    def inject_readiness_probe_misconfiguration(self, microservices: list[str]):
+        for service in microservices:
+
+            deployment_yaml = self._get_deployment_yaml(service)
+            original_deployment_yaml = copy.deepcopy(deployment_yaml)
+
+            containers = deployment_yaml["spec"]["template"]["spec"]["containers"]
+
+            initial_delay = 10
+
+            for container in containers:
+                container["readinessProbe"] = {
+                    "httpGet": {"path": f"/healthz", "port": 8080},
+                    "initialDelaySeconds": initial_delay,
+                    "periodSeconds": 10,
+                    "failureThreshold": 1,
+                }
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            # Save the *original* deployment YAML for recovery
+            self._write_yaml_to_file(service, original_deployment_yaml)
+
+            print(f"Injected readiness probe misconfiguration fault for service: {service}")
+
+    def recover_readiness_probe_misconfiguration(self, microservices: list[str]):
+        for service in microservices:
+
+            original_yaml_path = f"/tmp/{service}_modified.yaml"
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {original_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            self.kubectl.wait_for_ready(self.namespace)
+
+            print(f"Recovered from readiness probe misconfiguration fault for service: {service}")
+
+    # V.15 - Inject a liveness probe misconfiguration fault
+    def inject_liveness_probe_misconfiguration(self, microservices: list[str]):
+        for service in microservices:
+
+            deployment_yaml = self._get_deployment_yaml(service)
+            original_deployment_yaml = copy.deepcopy(deployment_yaml)
+
+            containers = deployment_yaml["spec"]["template"]["spec"]["containers"]
+            initial_delay = 10
+
+            for container in containers:
+                container["livenessProbe"] = {
+                    "httpGet": {"path": f"/healthz", "port": 8080},
+                    "initialDelaySeconds": initial_delay,
+                    "periodSeconds": 10,
+                    "failureThreshold": 1,
+                }
+
+            # Set terminationGracePeriodSeconds at the pod template spec level (not inside a container spec)
+            deployment_yaml["spec"]["template"]["spec"]["terminationGracePeriodSeconds"] = 0
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            # Save the *original* deployment YAML for recovery
+            self._write_yaml_to_file(service, original_deployment_yaml)
+
+            print(f"Injected liveness probe misconfiguration fault for service: {service}")
+
+    def recover_liveness_probe_misconfiguration(self, microservices: list[str]):
+        for service in microservices:
+            original_yaml_path = f"/tmp/{service}_modified.yaml"
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {original_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            self.kubectl.wait_for_ready(self.namespace)
+
+            print(f"Recovered from liveness probe misconfiguration fault for service: {service}")
+
+    # Duplicate PVC mounts multiple replicas share ReadWriteOnce PVC causing mount conflict
+    def inject_duplicate_pvc_mounts(self, microservices: list[str]):
+        for service in microservices:
+
+            deployment_yaml = self._get_deployment_yaml(service)
+            # original_yaml = copy.deepcopy(deployment_yaml)
+
+            # Create a single PVC that every replica will try to use
+            pvc_name = f"{service}-pvc"
+            pvc_manifest = {
+                "apiVersion": "v1",
+                "kind": "PersistentVolumeClaim",
+                "metadata": {"name": pvc_name, "namespace": self.namespace},
+                "spec": {"accessModes": ["ReadWriteOnce"], "resources": {"requests": {"storage": "1Gi"}}},
+            }
+
+            pvc_json = json.dumps(pvc_manifest)
+            self.kubectl.exec_command(f"kubectl apply -f - <<EOF\n{pvc_json}\nEOF")
+
+            print(f"Created PVC {pvc_name} for fault injection")
+
+            pod_spec = deployment_yaml.get("spec", {}).get("template", {}).get("spec", {})
+
+            if "volumes" not in pod_spec:
+                pod_spec["volumes"] = []
+            pod_spec["volumes"].append(
+                {
+                    "name": f"{service}-volume",
+                    "persistentVolumeClaim": {"claimName": pvc_name},
+                }
+            )
+
+            containers = pod_spec.get("containers", [])
+            if containers:
+                if "volumeMounts" not in containers[0]:
+                    containers[0]["volumeMounts"] = []
+                containers[0]["volumeMounts"].append(
+                    {
+                        "name": f"{service}-volume",
+                        "mountPath": f"/{service}-data",
+                    }
+                )
+
+            if "affinity" not in pod_spec:
+                pod_spec["affinity"] = {}
+
+            label_key = next(iter(deployment_yaml["spec"]["selector"]["matchLabels"]))
+            label_val = deployment_yaml["spec"]["selector"]["matchLabels"][label_key]
+
+            pod_spec["affinity"]["podAntiAffinity"] = {
+                "requiredDuringSchedulingIgnoredDuringExecution": [
+                    {
+                        "labelSelector": {
+                            "matchExpressions": [{"key": label_key, "operator": "In", "values": [label_val]}]
+                        },
+                        "topologyKey": "kubernetes.io/hostname",
+                    }
+                ]
+            }
+
+            # Ensure at least two replicas
+            deployment_yaml["spec"]["replicas"] = max(deployment_yaml["spec"].get("replicas", 1), 2)
+
+            yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_result = self.kubectl.exec_command(f"kubectl delete deployment {service} -n {self.namespace}")
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(f"kubectl apply -f {yaml_path} -n {self.namespace}")
+            print(f"Apply result for {service}: {apply_result}")
+
+            print(
+                f"Injected Duplicate PVC Mounts fault for {service}: replicas={deployment_yaml['spec']['replicas']}, shared PVC={pvc_name}"
+            )
+
+    def recover_duplicate_pvc_mounts(self, microservices: list[str]):
+        for service in microservices:
+
+            deployment_yaml = self._get_deployment_yaml(service)
+
+            delete_result = self.kubectl.exec_command(f"kubectl delete deployment {service} -n {self.namespace}")
+            print(f"Delete result for {service}: {delete_result}")
+
+            template = deployment_yaml["spec"]["template"]
+            replicas = max(deployment_yaml["spec"].get("replicas", 1), 2)
+            selector = deployment_yaml["spec"]["selector"]
+
+            pod_spec = template["spec"]
+
+            existing_volumes = pod_spec.get("volumes", [])
+            config_volumes = [vol for vol in existing_volumes if "configMap" in vol]
+            pod_spec["volumes"] = config_volumes
+
+            if pod_spec.get("containers"):
+                containers = pod_spec["containers"]
+                if containers:
+
+                    existing_mounts = containers[0].get("volumeMounts", [])
+                    config_mounts = [mount for mount in existing_mounts if mount.get("name") != f"{service}-volume"]
+
+                    config_mounts.append({"name": "data-volume", "mountPath": f"/{service}-data"})
+                    containers[0]["volumeMounts"] = config_mounts
+
+            # Convert Deployment to StatefulSet
+            statefulset_yaml = {
+                "apiVersion": "apps/v1",
+                "kind": "StatefulSet",
+                "metadata": {
+                    "name": service,
+                    "namespace": self.namespace,
+                    "labels": deployment_yaml.get("metadata", {}).get("labels", {}),
+                },
+                "spec": {
+                    "serviceName": service,
+                    "replicas": replicas,
+                    "selector": selector,
+                    "template": template,
+                    "volumeClaimTemplates": [
+                        {
+                            "metadata": {"name": "data-volume", "namespace": self.namespace},
+                            "spec": {
+                                "accessModes": ["ReadWriteOnce"],
+                                "resources": {"requests": {"storage": "1Gi"}},
+                            },
+                        }
+                    ],
+                },
+            }
+
+            ss_path = self._write_yaml_to_file(service, statefulset_yaml)
+            apply_result = self.kubectl.exec_command(f"kubectl apply -f {ss_path} -n {self.namespace}")
+            print(f"Apply result for {service}: {apply_result}")
+
+            self.kubectl.exec_command(
+                f"kubectl rollout status statefulset/{service} -n {self.namespace} --timeout=120s"
+            )
+
+            print(f"Converted {service} to StatefulSet with unique PVC per replica and scaled to {replicas}")
+
+    # Inject environment variable shadowing fault
+    def inject_env_variable_shadowing(self, microservices: list[str]):
+        for service in microservices:
+            deployment_yaml = self._get_deployment_yaml(service)
+            original_deployment_yaml = copy.deepcopy(deployment_yaml)
+
+            containers = deployment_yaml["spec"]["template"]["spec"]["containers"]
+
+            shadow_vars = None
+
+            if self.namespace == "astronomy-shop":
+                if service == "frontend-proxy":
+                    shadow_vars = {"FRONTEND_HOST": "localhost"}
+
+            for container in containers:
+                if "env" not in container:
+                    container["env"] = []
+
+                for env_var, value in shadow_vars.items():
+                    env_exists = False
+                    for existing_env in container["env"]:
+                        if existing_env.get("name") == env_var:
+                            existing_env["value"] = value
+                            env_exists = True
+                            break
+
+                    if not env_exists:
+                        container["env"].append({"name": env_var, "value": value})
+
+                print(
+                    f"Added shadowing environment variables to container {container.get('name', 'unnamed')}: {list(shadow_vars.keys())}"
+                )
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            # Save the *original* deployment YAML for recovery
+            self._write_yaml_to_file(service, original_deployment_yaml)
+
+            print(f"Injected environment variable shadowing fault for service: {service}")
+
+    def recover_env_variable_shadowing(self, microservices: list[str]):
+        for service in microservices:
+            original_yaml_path = f"/tmp/{service}_modified.yaml"
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            apply_command = f"kubectl apply -f {original_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            self.kubectl.exec_command(f"kubectl rollout restart deployment/load-generator -n {self.namespace}")
+            self.kubectl.exec_command(
+                f"kubectl rollout status deployment/load-generator -n {self.namespace} --timeout=60s"
+            )
+
+            self.kubectl.wait_for_ready(self.namespace)
+
+            print(f"Recovered from environment variable shadowing fault for service: {service}")
+
+    # Inject Rolling Update Misconfiguration
+    def inject_rolling_update_misconfigured(self, microservices: list[str]):
+        import tempfile
+
+        for service in microservices:
+            base_dep = {
+                "apiVersion": "apps/v1",
+                "kind": "Deployment",
+                "metadata": {
+                    "name": service,
+                    "namespace": self.namespace,
+                    "labels": {"app": service},
+                },
+                "spec": {
+                    "replicas": 3,
+                    "selector": {"matchLabels": {"app": service}},
+                    "template": {
+                        "metadata": {"labels": {"app": service}},
+                        "spec": {
+                            "containers": [
+                                {
+                                    "name": f"{service}-main",
+                                    "image": "python:3.9-slim",
+                                    "command": ["python3", "-m", "http.server", "8080"],
+                                    "ports": [{"containerPort": 8080}],
+                                }
+                            ]
+                        },
+                    },
+                },
+            }
+            print(f"➡️ Deploying {service}")
+            with tempfile.NamedTemporaryFile("w", suffix=".yaml", delete=False) as tmp:
+                yaml.safe_dump(base_dep, tmp)
+                path0 = tmp.name
+            self.kubectl.exec_command(f"kubectl apply -f {path0} -n {self.namespace}")
+
+            orig_path = f"/tmp/{service}-orig.yaml"
+            with open(orig_path, "w") as f:
+                yaml.safe_dump(base_dep, f)
+
+            dep = copy.deepcopy(base_dep)
+            dep["spec"]["strategy"] = {
+                "type": "RollingUpdate",
+                "rollingUpdate": {"maxUnavailable": "100%", "maxSurge": "0%"},
+            }
+            init = {
+                "name": "hang-init",
+                "image": "busybox",
+                "command": ["/bin/sh", "-c", "sleep infinity"],
+            }
+            dep.setdefault("spec", {}).setdefault("template", {}).setdefault("spec", {}).setdefault(
+                "initContainers", []
+            ).append(init)
+
+            with tempfile.NamedTemporaryFile("w", suffix=".yaml", delete=False) as tmp2:
+                yaml.safe_dump(dep, tmp2)
+                path1 = tmp2.name
+
+            self.kubectl.exec_command(f"kubectl patch deployment {service} -n {self.namespace} --patch-file {path1}")
+            self.kubectl.exec_command(f"kubectl rollout restart deployment {service} -n {self.namespace}")
+            print(f"⚠️ Injected Rolling Update Misconfiguration fault into `{service}`")
+
+    def recover_rolling_update_misconfigured(self, microservices: list[str]):
+        for service in microservices:
+            original_yaml_path = f"/tmp/{service}_modified.yaml"
+
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Deleted faulty deployment {service}: {delete_result}")
+
+            apply_command = f"kubectl apply -f {original_yaml_path} -n {self.namespace}"
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Restored original deployment {service}: {apply_result}")
+
+    def inject_namespace_memory_limit(self, deployment_name: str, namespace: str, memory_limit: str):
+        # Delete associated ReplicaSet
+        rs_list = self.kubectl.get_matching_replicasets(namespace, deployment_name)
+        if not rs_list:
+            raise RuntimeError(f"No ReplicaSet found for deployment {deployment_name} in {namespace}")
+        rs_name = rs_list[0].metadata.name
+        self.kubectl.delete_replicaset(name=rs_name, namespace=namespace)
+
+        # Create memory resource quota
+        quota_body = {
+            "apiVersion": "v1",
+            "kind": "ResourceQuota",
+            "metadata": {"name": "memory-limit-quota", "namespace": namespace},
+            "spec": {"hard": {"memory": memory_limit}},
+        }
+        self.kubectl.apply_resource(quota_body)
+
+    def recover_namespace_memory_limit(self, deployment_name: str, namespace: str):
+        # Remove all memory-based quotas
+        quotas = self.kubectl.get_resource_quotas(namespace)
+        for quota in quotas:
+            if "memory" in quota.spec.hard:
+                self.kubectl.delete_resource_quota(name=quota.metadata.name, namespace=namespace)
+
+        # Scale deployment to 1 replica (if needed)
+        self.kubectl.scale_deployment(name=deployment_name, namespace=namespace, replicas=1)
+
+    def deploy_custom_service(self, service_name: str, script_path: str):
+        print(f"Deploying {service_name} Service...................................")
+        import tempfile
+
+        import yaml
+
+        with open(script_path, "r") as sf:
+            script_body = sf.read()
+
+        script_filename = "service.py"
+
+        configmap = {
+            "apiVersion": "v1",
+            "kind": "ConfigMap",
+            "metadata": {
+                "name": f"{service_name}-script",
+                "namespace": self.namespace,
+            },
+            "data": {script_filename: script_body},
+        }
+
+        self.kubectl.exec_command(f"kubectl apply -f - <<'CM'\n{yaml.dump(configmap)}\nCM")
+
+        deployment = {
+            "apiVersion": "apps/v1",
+            "kind": "Deployment",
+            "metadata": {
+                "name": service_name,
+                "namespace": self.namespace,
+                "labels": {"app": service_name},
+            },
+            "spec": {
+                "replicas": 1,
+                "selector": {"matchLabels": {"app": service_name}},
+                "template": {
+                    "metadata": {"labels": {"app": service_name}},
+                    "spec": {
+                        "containers": [
+                            {
+                                "name": f"{service_name}-container",
+                                "image": "python:3.9-slim",
+                                "command": ["python", "/app/service.py"],
+                                "ports": [{"containerPort": 8080, "name": "http"}],
+                                "volumeMounts": [
+                                    {
+                                        "name": "script-vol",
+                                        "mountPath": "/app/service.py",
+                                        "subPath": "service.py",
+                                    }
+                                ],
+                                "livenessProbe": {
+                                    "httpGet": {"path": "/health", "port": 8080},
+                                    "initialDelaySeconds": 60,
+                                    "periodSeconds": 10,
+                                    "failureThreshold": 3,
+                                },
+                                "resources": {"requests": {"cpu": "50m", "memory": "64Mi"}},
+                            }
+                        ],
+                        "volumes": [
+                            {
+                                "name": "script-vol",
+                                "configMap": {"name": f"{service_name}-script"},
+                            }
+                        ],
+                    },
+                },
+            },
+        }
+
+        service = {
+            "apiVersion": "v1",
+            "kind": "Service",
+            "metadata": {
+                "name": service_name,
+                "namespace": self.namespace,
+                "labels": {"app": service_name},
+            },
+            "spec": {
+                "selector": {"app": service_name},
+                "ports": [
+                    {
+                        "port": 8080,
+                        "targetPort": 8080,
+                        "protocol": "TCP",
+                        "name": "http",
+                    }
+                ],
+                "type": "ClusterIP",
+            },
+        }
+
+        with tempfile.NamedTemporaryFile("w", delete=False, suffix=".yaml") as tmp:
+            yaml.dump_all([deployment, service], tmp)
+            tmp_path = tmp.name
+
+        self.kubectl.exec_command(f"kubectl apply -f {tmp_path}")
+        self.kubectl.wait_for_ready(namespace=self.namespace)
+
+        print(f"Deployed {service_name} Service...................................")
+
+    def inject_toleration_without_matching_taint(
+        self,
+        microservices: list[str],
+        node_name: str,
+        taint_key: str = "sre-fault",
+        taint_value: str = "blocked",
+        effect: str = "NoSchedule",
+    ):
+
+        self.kubectl.exec_command(f"kubectl taint node {node_name} {taint_key}={taint_value}:{effect} --overwrite")
+        print(f"Tainted node {node_name} with {taint_key}={taint_value}:{effect}")
+
+        for svc in microservices:
+            self.kubectl.exec_command(f"kubectl delete pod -l app={svc} -n {self.namespace}")
+        print(f"Deleted pods for {microservices}; they should now be unschedulable.")
+
+    def recover_toleration_without_matching_taint(
+        self,
+        microservices: list[str],
+        node_name: str,
+        taint_key: str = "sre-fault",
+        taint_value: str = "blocked",
+        effect: str = "NoSchedule",
+    ):
+
+        self.kubectl.exec_command(f"kubectl taint node {node_name} {taint_key}={taint_value}:{effect}-")
+        print(f"Removed taint from node {node_name}")
+
+        for svc in microservices:
+            self.kubectl.exec_command(f"kubectl rollout restart deployment {svc} -n {self.namespace}")
+        self.kubectl.wait_for_stable(self.namespace)
+        print(f"Pods for {microservices} are back to Running")
+
+    def inject_persistent_volume_affinity_violation(self, microservices: list[str]):
+        nodes = [
+            node.metadata.name
+            for node in self.kubectl.list_nodes().items
+            if "node-role.kubernetes.io/control-plane" not in node.metadata.labels
+        ]
+
+        if len(nodes) < 2:
+            raise RuntimeError("Need 2 worker nodes for this fault to be injected.")
+
+        nodeA, nodeB = nodes[0], nodes[1]
+
+        for service in microservices:
+            deployment_yaml = self._get_deployment_yaml(service)
+            original_deployment_yaml = copy.deepcopy(deployment_yaml)
+
+            # Create a PV that's bound to node A
+            pv_manifest = {
+                "apiVersion": "v1",
+                "kind": "PersistentVolume",
+                "metadata": {"name": "temp-pv"},
+                "spec": {
+                    "capacity": {"storage": "1Gi"},
+                    "accessModes": ["ReadWriteOnce"],
+                    "persistentVolumeReclaimPolicy": "Delete",
+                    "storageClassName": "",
+                    "hostPath": {"path": f"/tmp/data/volumes/temp-pv"},
+                    "nodeAffinity": {
+                        "required": {
+                            "nodeSelectorTerms": [
+                                {
+                                    "matchExpressions": [
+                                        {
+                                            "key": "kubernetes.io/hostname",
+                                            "operator": "In",
+                                            "values": [nodeA],
+                                        }
+                                    ]
+                                }
+                            ]
+                        }
+                    },
+                    "claimRef": {"name": "temp-pvc", "namespace": self.namespace},
+                },
+            }
+
+            pv_json = json.dumps(pv_manifest)
+            self.kubectl.exec_command(f"kubectl apply -f - <<EOF\n{pv_json}\nEOF")
+            print(f"Created PV temp-pv for fault injection")
+
+            # Create a PVC bound to the PV above
+            pvc_manifest = {
+                "apiVersion": "v1",
+                "kind": "PersistentVolumeClaim",
+                "metadata": {"name": "temp-pvc", "namespace": self.namespace},
+                "spec": {
+                    "storageClassName": "",
+                    "volumeName": "temp-pv",
+                    "accessModes": ["ReadWriteOnce"],
+                    "resources": {"requests": {"storage": "1Gi"}},
+                },
+            }
+
+            pvc_json = json.dumps(pvc_manifest)
+            self.kubectl.exec_command(f"kubectl apply -f - <<EOF\n{pvc_json}\nEOF")
+            print(f"Created PVC temp-pvc for fault injection")
+
+            pod_spec = deployment_yaml.get("spec", {}).get("template", {}).get("spec", {})
+
+            self._change_node_selector(deployment_yaml=deployment_yaml, node_name=nodeB)
+
+            if "volumes" not in pod_spec:
+                pod_spec["volumes"] = []
+            pod_spec["volumes"].append(
+                {
+                    "name": f"{service}-volume",
+                    "persistentVolumeClaim": {"claimName": "temp-pvc"},
+                }
+            )
+
+            containers = pod_spec.get("containers", [])
+            if containers:
+                if "volumeMounts" not in containers[0]:
+                    containers[0]["volumeMounts"] = []
+                containers[0]["volumeMounts"].append(
+                    {
+                        "name": f"{service}-volume",
+                        "mountPath": f"/{service}-data",
+                    }
+                )
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            delete_result = self.kubectl.exec_command(f"kubectl delete deployment {service} -n {self.namespace}")
+            print(f"Delete result for {service}: {delete_result}")
+
+            apply_result = self.kubectl.exec_command(f"kubectl apply -f {modified_yaml_path} -n {self.namespace}")
+            print(f"Apply result for {service}: {apply_result}")
+
+            self._write_yaml_to_file(service, original_deployment_yaml)
+
+            print(f"Injected persistent volume affinity conflict fault for {service}")
+
+    def recover_persistent_volume_affinity_violation(self, microservices: list[str]):
+        for service in microservices:
+            original_yaml_path = f"/tmp/{service}_modified.yaml"
+
+            delete_command = f"kubectl delete --ignore-not-found=true deployment {service} -n {self.namespace}"
+            delete_pv_command = f"kubectl delete --ignore-not-found=true pv temp-pv"
+            delete_pvc_command = f"kubectl delete --ignore-not-found=true pvc temp-pvc -n {self.namespace}"
+            apply_command = f"kubectl apply -f {original_yaml_path} -n {self.namespace}"
+
+            delete_result = self.kubectl.exec_command(delete_command)
+            print(f"Delete result for {service}: {delete_result}")
+
+            delete_pvc_result = self.kubectl.exec_command(delete_pvc_command)
+            print(f"Delete PVC result: {delete_pvc_result}")
+
+            delete_pv_result = self.kubectl.exec_command(delete_pv_command)
+            print(f"Delete PV result: {delete_pv_result}")
+
+            apply_result = self.kubectl.exec_command(apply_command)
+            print(f"Apply result for {service}: {apply_result}")
+
+            self.kubectl.wait_for_ready(self.namespace)
+
+            print(f"Recovered from persistent volume affinity violation fault for service: {service}")
+
+    def inject_pod_anti_affinity_deadlock(self, microservices: list[str]):
+        """
+        Inject a fault that creates pod anti-affinity deadlock.
+        Sets requiredDuringScheduling anti-affinity that excludes all nodes.
+        """
+        for service in microservices:
+            deployment_yaml = self._get_deployment_yaml(service)
+
+            # Ensure we have replicas > 1 to create potential deadlock
+            if "replicas" not in deployment_yaml["spec"] or deployment_yaml["spec"]["replicas"] < 2:
+                deployment_yaml["spec"]["replicas"] = 3  # Force multiple replicas
+
+            # Create anti-affinity rules that prevent pods from being scheduled on same nodes
+            anti_affinity_rules = {
+                "podAntiAffinity": {
+                    "requiredDuringSchedulingIgnoredDuringExecution": [
+                        {
+                            "labelSelector": {
+                                "matchExpressions": [{"key": "app", "operator": "In", "values": [service]}]
+                            },
+                            "topologyKey": "kubernetes.io/hostname",
+                        }
+                    ]
+                }
+            }
+
+            # Add affinity to deployment spec
+            if "affinity" not in deployment_yaml["spec"]["template"]["spec"]:
+                deployment_yaml["spec"]["template"]["spec"]["affinity"] = {}
+
+            deployment_yaml["spec"]["template"]["spec"]["affinity"].update(anti_affinity_rules)
+
+            # Write the modified YAML to a temporary file
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            # Delete and redeploy with anti-affinity rules
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            self.kubectl.exec_command(delete_command)
+
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+            self.kubectl.exec_command(apply_command)
+
+            print(f"Injected pod anti-affinity deadlock for service: {service}")
+            print(f"  - Set replicas to {deployment_yaml['spec']['replicas']}")
+            print(f"  - Added strict anti-affinity rules")
+
+    def recover_pod_anti_affinity_deadlock(self, microservices: list[str]):
+        """
+        Recover from pod anti-affinity deadlock by removing anti-affinity rules.
+        """
+        for service in microservices:
+            deployment_yaml = self._get_deployment_yaml(service)
+
+            # Remove affinity rules
+            if "affinity" in deployment_yaml["spec"]["template"]["spec"]:
+                if "podAntiAffinity" in deployment_yaml["spec"]["template"]["spec"]["affinity"]:
+                    del deployment_yaml["spec"]["template"]["spec"]["affinity"]["podAntiAffinity"]
+
+                # If affinity is now empty, remove it entirely
+                if not deployment_yaml["spec"]["template"]["spec"]["affinity"]:
+                    del deployment_yaml["spec"]["template"]["spec"]["affinity"]
+
+            # Reset replicas to 1 for recovery
+            deployment_yaml["spec"]["replicas"] = 1
+
+            # Write the modified YAML to a temporary file
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+
+            # Delete and redeploy without anti-affinity rules
+            delete_command = f"kubectl delete deployment {service} -n {self.namespace}"
+            self.kubectl.exec_command(delete_command)
+
+            apply_command = f"kubectl apply -f {modified_yaml_path} -n {self.namespace}"
+            self.kubectl.exec_command(apply_command)
+
+            print(f"Recovered pod anti-affinity deadlock for service: {service}")
+            print(f"  - Removed anti-affinity rules")
+            print(f"  - Reset replicas to 1")
+
+    def inject_rpc_timeout_retries_misconfiguration(self, configmap: str):
+        GRPC_CLIENT_TIMEOUT = "50ms"
+        GRPC_CLIENT_RETRIES_ON_ERROR = "30"
+        config_patch_command = f'kubectl patch configmap {configmap} -n {self.namespace} -p \'{{"data":{{"GRPC_CLIENT_TIMEOUT":"{GRPC_CLIENT_TIMEOUT}","GRPC_CLIENT_RETRIES_ON_ERROR":"{GRPC_CLIENT_RETRIES_ON_ERROR}"}}}}\''
+        self.kubectl.exec_command(config_patch_command)
+        deployment_rollout_command = f"kubectl rollout restart deployment -l configmap={configmap} -n {self.namespace}"
+        self.kubectl.exec_command(deployment_rollout_command)
+        self.kubectl.wait_for_ready(self.namespace)
+
+    def recover_rpc_timeout_retries_misconfiguration(self, configmap: str):
+        GRPC_CLIENT_TIMEOUT = "1s"
+        GRPC_CLIENT_RETRIES_ON_ERROR = "1"
+        config_patch_command = f'kubectl patch configmap {configmap} -n {self.namespace} -p \'{{"data":{{"GRPC_CLIENT_TIMEOUT":"{GRPC_CLIENT_TIMEOUT}","GRPC_CLIENT_RETRIES_ON_ERROR":"{GRPC_CLIENT_RETRIES_ON_ERROR}"}}}}\''
+        self.kubectl.exec_command(config_patch_command)
+        deployment_rollout_command = f"kubectl rollout restart deployment -l configmap={configmap} -n {self.namespace}"
+        self.kubectl.exec_command(deployment_rollout_command)
+        self.kubectl.wait_for_ready(self.namespace)
+
+    def inject_daemon_set_image_replacement(self, daemon_set_name: str, new_image: str):
+        daemon_set_yaml = self._get_daemon_set_yaml(daemon_set_name)
+
+        # print(f"Daemon set yaml: {daemon_set_yaml}")
+
+        # Replace the image in all containers
+        if "spec" in daemon_set_yaml and "template" in daemon_set_yaml["spec"]:
+            template_spec = daemon_set_yaml["spec"]["template"]["spec"]
+            if "containers" in template_spec:
+                for container in template_spec["containers"]:
+                    if "image" in container:
+                        container["image"] = new_image
+
+        modified_yaml_path = self._write_yaml_to_file(daemon_set_name, daemon_set_yaml)  # backup the yaml
+
+        self.kubectl.exec_command(f"kubectl apply -f {modified_yaml_path}")
+        self.kubectl.exec_command(f"kubectl rollout restart ds {daemon_set_name} -n {self.namespace}")
+        self.kubectl.exec_command(f"kubectl rollout status ds {daemon_set_name} -n {self.namespace} --timeout=60s")
+
+    def recover_daemon_set_image_replacement(self, daemon_set_name: str, original_image: str):
+        daemon_set_yaml = self._get_daemon_set_yaml(daemon_set_name)
+        if "spec" in daemon_set_yaml and "template" in daemon_set_yaml["spec"]:
+            template_spec = daemon_set_yaml["spec"]["template"]["spec"]
+            if "containers" in template_spec:
+                for container in template_spec["containers"]:
+                    if "image" in container and container["image"] != original_image:
+                        container["image"] = original_image
+                        modified_yaml_path = self._write_yaml_to_file(daemon_set_name, daemon_set_yaml)
+                        self.kubectl.exec_command(f"kubectl apply -f {modified_yaml_path}")
+                        self.kubectl.exec_command(f"kubectl rollout restart ds {daemon_set_name} -n {self.namespace}")
+                        self.kubectl.exec_command(
+                            f"kubectl rollout status ds {daemon_set_name} -n {self.namespace} --timeout=60s"
+                        )
+                        return
+
+    def inject_rbac_misconfiguration(self, microservices: list[str]):
+        for service in microservices:
+            configmap_manifest = {
+                "apiVersion": "v1",
+                "kind": "ConfigMap",
+                "metadata": {"name": "app-routing-config", "namespace": self.namespace},
+                "data": {"routes.json": '{"enabled": true, "version": "1.0"}'},
+            }
+
+            cm_json = json.dumps(configmap_manifest)
+            self.kubectl.exec_command(f"kubectl apply -f - <<EOF\n{cm_json}\nEOF")
+
+            sa_manifest = {
+                "apiVersion": "v1",
+                "kind": "ServiceAccount",
+                "metadata": {"name": f"{service}-rbac-sa", "namespace": self.namespace},
+            }
+
+            sa_json = json.dumps(sa_manifest)
+            self.kubectl.exec_command(f"kubectl apply -f - <<EOF\n{sa_json}\nEOF")
+
+            # ClusterRole WITHOUT configmaps permission
+            clusterrole_manifest = {
+                "apiVersion": "rbac.authorization.k8s.io/v1",
+                "kind": "ClusterRole",
+                "metadata": {"name": f"{service}-rbac-role"},
+                "rules": [{"apiGroups": [""], "resources": ["pods", "services"], "verbs": ["get", "list", "watch"]}],
+            }
+
+            cr_json = json.dumps(clusterrole_manifest)
+            self.kubectl.exec_command(f"kubectl apply -f - <<EOF\n{cr_json}\nEOF")
+
+            clusterrolebinding_manifest = {
+                "apiVersion": "rbac.authorization.k8s.io/v1",
+                "kind": "ClusterRoleBinding",
+                "metadata": {"name": f"{service}-rbac-binding"},
+                "roleRef": {
+                    "apiGroup": "rbac.authorization.k8s.io",
+                    "kind": "ClusterRole",
+                    "name": f"{service}-rbac-role",
+                },
+                "subjects": [{"kind": "ServiceAccount", "name": f"{service}-rbac-sa", "namespace": self.namespace}],
+            }
+
+            crb_json = json.dumps(clusterrolebinding_manifest)
+            self.kubectl.exec_command(f"kubectl apply -f - <<EOF\n{crb_json}\nEOF")
+
+            deployment_yaml = self._get_deployment_yaml(service)
+            original_deployment_yaml = copy.deepcopy(deployment_yaml)
+            self._write_yaml_to_file(f"{service}-original", original_deployment_yaml)
+
+            deployment_yaml["spec"]["template"]["spec"]["serviceAccountName"] = f"{service}-rbac-sa"
+
+            init_container = {
+                "name": "config-loader",
+                "image": "alpine/k8s:1.28.3",
+                "command": ["kubectl", "get", "configmap", "app-routing-config", "-n", self.namespace, "-o", "json"],
+            }
+
+            if "initContainers" not in deployment_yaml["spec"]["template"]["spec"]:
+                deployment_yaml["spec"]["template"]["spec"]["initContainers"] = []
+
+            deployment_yaml["spec"]["template"]["spec"]["initContainers"].append(init_container)
+
+            modified_yaml_path = self._write_yaml_to_file(service, deployment_yaml)
+            self.kubectl.exec_command(f"kubectl delete deployment {service} -n {self.namespace}")
+            self.kubectl.exec_command(f"kubectl apply -f {modified_yaml_path} -n {self.namespace}")
+
+            print(f"RBAC fault injected on {service}")
+
+    def recover_rbac_misconfiguration(self, microservices: list[str]):
+        for service in microservices:
+            original_yaml_path = f"/tmp/{service}-original_modified.yaml"
+
+            self.kubectl.exec_command(
+                f"kubectl delete deployment {service} -n {self.namespace} --ignore-not-found=true"
+            )
+            self.kubectl.exec_command(f"kubectl apply -f {original_yaml_path} -n {self.namespace}")
+            self.kubectl.exec_command(
+                f"kubectl delete clusterrolebinding {service}-rbac-binding --ignore-not-found=true"
+            )
+            self.kubectl.exec_command(f"kubectl delete clusterrole {service}-rbac-role --ignore-not-found=true")
+            self.kubectl.exec_command(
+                f"kubectl delete serviceaccount {service}-rbac-sa -n {self.namespace} --ignore-not-found=true"
+            )
+            self.kubectl.exec_command(
+                f"kubectl delete configmap app-routing-config -n {self.namespace} --ignore-not-found=true"
+            )
+
+            print(f"RBAC fault recovered for {service}")
+
+        self.kubectl.wait_for_ready(self.namespace)
+
+    def inject_gogc_env_variable_patch(self, gogc_value: str):
+        """Set GOGC environment variable for all deployments via patch method"""
+        # Get all deployment names
+        deployments_cmd = f"kubectl get deployments -n {self.namespace} -o jsonpath='{{.items[*].metadata.name}}'"
+        deployment_names = self.kubectl.exec_command(deployments_cmd).split()
+
+        for deployment_name in deployment_names:
+            if not deployment_name:
+                continue
+
+            print(f"Patching GOGC={gogc_value} for deployment: {deployment_name}")
+
+            # Construct patch operations
+            patch_ops = []
+
+            # Get container count
+            containers_cmd = f"kubectl get deployment {deployment_name} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[*].name}}'"
+            container_names = self.kubectl.exec_command(containers_cmd).split()
+
+            for i, container_name in enumerate(container_names):
+                # Check if env array exists
+                env_check_cmd = f"kubectl get deployment {deployment_name} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[{i}].env}}'"
+                existing_env = self.kubectl.exec_command(env_check_cmd).strip()
+
+                if not existing_env or existing_env == "[]":
+                    # Create env array
+                    patch_ops.append(
+                        {
+                            "op": "add",
+                            "path": f"/spec/template/spec/containers/{i}/env",
+                            "value": [{"name": "GOGC", "value": gogc_value}],
+                        }
+                    )
+                else:
+                    # Check if GOGC already exists
+                    gogc_check_cmd = f"kubectl get deployment {deployment_name} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[{i}].env[?(@.name==\"GOGC\")].value}}'"
+                    existing_gogc = self.kubectl.exec_command(gogc_check_cmd).strip()
+
+                    if existing_gogc:
+                        # Update existing GOGC value
+                        # Need to find GOGC's index in env array
+                        env_names_cmd = f"kubectl get deployment {deployment_name} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[{i}].env[*].name}}'"
+                        env_names = self.kubectl.exec_command(env_names_cmd).split()
+
+                        for j, env_name in enumerate(env_names):
+                            if env_name == "GOGC":
+                                patch_ops.append(
+                                    {
+                                        "op": "replace",
+                                        "path": f"/spec/template/spec/containers/{i}/env/{j}/value",
+                                        "value": gogc_value,
+                                    }
+                                )
+                                break
+                    else:
+                        # Add new GOGC environment variable
+                        patch_ops.append(
+                            {
+                                "op": "add",
+                                "path": f"/spec/template/spec/containers/{i}/env/-",
+                                "value": {"name": "GOGC", "value": gogc_value},
+                            }
+                        )
+
+            if patch_ops:
+                import json
+
+                patch_json = json.dumps(patch_ops)
+                patch_cmd = (
+                    f"kubectl patch deployment {deployment_name} -n {self.namespace} --type='json' -p='{patch_json}'"
+                )
+
+                try:
+                    result = self.kubectl.exec_command(patch_cmd)
+                    print(f"Patch result for {deployment_name}: {result}")
+
+                    # Restart deployment to apply changes
+                    self.kubectl.exec_command(
+                        f"kubectl rollout restart deployment {deployment_name} -n {self.namespace}"
+                    )
+
+                except Exception as e:
+                    raise RuntimeError(f"Failed to patch {deployment_name}: {e}")
+
+        # Wait for all deployments to be ready
+        print("Waiting for all deployments to be ready...")
+        for deployment_name in deployment_names:
+            if deployment_name:
+                self.kubectl.exec_command(
+                    f"kubectl rollout status deployment {deployment_name} -n {self.namespace} --timeout=120s"
+                )
+
+        print(f"All deployments updated with GOGC={gogc_value}")
+
+    def recover_gogc_env_variable_patch(self):
+        """Recover all deployment GOGC environment variables to default value 100"""
+        # Get all deployment names
+        deployments_cmd = f"kubectl get deployments -n {self.namespace} -o jsonpath='{{.items[*].metadata.name}}'"
+        deployment_names = self.kubectl.exec_command(deployments_cmd).split()
+
+        for deployment_name in deployment_names:
+            if not deployment_name:
+                continue
+
+            print(f"Recovering GOGC to default (100) for deployment: {deployment_name}")
+
+            # Construct patch operations
+            patch_ops = []
+
+            # Get container count
+            containers_cmd = f"kubectl get deployment {deployment_name} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[*].name}}'"
+            container_names = self.kubectl.exec_command(containers_cmd).split()
+
+            for i, container_name in enumerate(container_names):
+                # Check if env array exists
+                env_check_cmd = f"kubectl get deployment {deployment_name} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[{i}].env}}'"
+                existing_env = self.kubectl.exec_command(env_check_cmd).strip()
+
+                if existing_env and existing_env != "[]":
+                    # Check if GOGC exists
+                    gogc_check_cmd = f"kubectl get deployment {deployment_name} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[{i}].env[?(@.name==\"GOGC\")].value}}'"
+                    existing_gogc = self.kubectl.exec_command(gogc_check_cmd).strip()
+
+                    if existing_gogc:
+                        # Find GOGC's index in env array and update to 100
+                        env_names_cmd = f"kubectl get deployment {deployment_name} -n {self.namespace} -o jsonpath='{{.spec.template.spec.containers[{i}].env[*].name}}'"
+                        env_names = self.kubectl.exec_command(env_names_cmd).split()
+
+                        for j, env_name in enumerate(env_names):
+                            if env_name == "GOGC":
+                                patch_ops.append(
+                                    {
+                                        "op": "replace",
+                                        "path": f"/spec/template/spec/containers/{i}/env/{j}/value",
+                                        "value": "100",
+                                    }
+                                )
+                                print(f"Found GOGC={existing_gogc} in container {container_name}, updating to 100")
+                                break
+                    else:
+                        print(f"No GOGC environment variable found in container {container_name}")
+                else:
+                    print(f"No environment variables found in container {container_name}")
+
+            if patch_ops:
+                import json
+
+                patch_json = json.dumps(patch_ops)
+                patch_cmd = (
+                    f"kubectl patch deployment {deployment_name} -n {self.namespace} --type='json' -p='{patch_json}'"
+                )
+
+                try:
+                    result = self.kubectl.exec_command(patch_cmd)
+                    print(f"Patch result for {deployment_name}: {result}")
+
+                    # Restart deployment to apply changes
+                    self.kubectl.exec_command(
+                        f"kubectl rollout restart deployment {deployment_name} -n {self.namespace}"
+                    )
+
+                except Exception as e:
+                    raise RuntimeError(f"Failed to patch {deployment_name}: {e}")
+            else:
+                print(f"No GOGC environment variables to recover in deployment: {deployment_name}")
+
+        # Wait for all deployments to be ready
+        print("Waiting for all deployments to be ready...")
+        for deployment_name in deployment_names:
+            if deployment_name:
+                try:
+                    self.kubectl.exec_command(
+                        f"kubectl rollout status deployment {deployment_name} -n {self.namespace} --timeout=120s"
+                    )
+                except Exception as e:
+                    print(f"Warning: Failed to wait for deployment {deployment_name}: {e}")
+
+        print("All deployments with GOGC environment variables have been recovered to default value (100)")
+
+    ############# HELPER FUNCTIONS ################
+    def _wait_for_pods_ready(self, microservices: list[str], timeout: int = 30):
+        for service in microservices:
+            command = (
+                f"kubectl wait --for=condition=ready pod -l app={service} -n {self.namespace} --timeout={timeout}s"
+            )
+            result = self.kubectl.exec_command(command)
+            print(f"Wait result for {service}: {result}")
+
+    def _modify_target_port_config(self, from_port: int, to_port: int, configs: dict):
+        for port in configs["spec"]["ports"]:
+            if port.get("targetPort") == from_port:
+                port["targetPort"] = to_port
+
+        return configs
+
+    def _get_values_yaml(self, service_name: str):
+        kubectl = KubeCtl()
+        values_yaml = kubectl.exec_command(f"kubectl get configmap {service_name} -n {self.testbed} -o yaml")
+        return yaml.safe_load(values_yaml)
+
+    def _enable_tls(self, values_yaml: dict):
+        values_yaml["net"] = {
+            "tls": {
+                "mode": "requireTLS",
+                "certificateKeyFile": "/etc/tls/tls.pem",
+                "CAFile": "/etc/tls/ca.crt",
+            }
+        }
+        return yaml.dump(values_yaml)
+
+    def _apply_modified_yaml(self, service_name: str, modified_yaml: str):
+        modified_yaml_path = f"/tmp/{service_name}-values.yaml"
+        with open(modified_yaml_path, "w") as f:
+            f.write(modified_yaml)
+
+        kubectl = KubeCtl()
+        kubectl.exec_command(
+            f"kubectl create configmap {service_name} -n {self.testbed} --from-file=values.yaml={modified_yaml_path} --dry-run=client -o yaml | kubectl apply -f -"
+        )
+        kubectl.exec_command(f"kubectl rollout restart deployment {service_name} -n {self.testbed}")
+
+    def _get_deployment_yaml(self, service_name: str):
+        deployment_yaml = self.kubectl.exec_command(
+            f"kubectl get deployment {service_name} -n {self.namespace} -o yaml"
+        )
+        return yaml.safe_load(deployment_yaml)
+
+    def _get_service_yaml(self, service_name: str):
+        deployment_yaml = self.kubectl.exec_command(f"kubectl get service {service_name} -n {self.namespace} -o yaml")
+        return yaml.safe_load(deployment_yaml)
+
+    def _get_daemon_set_yaml(self, daemon_set_name: str):
+        daemon_set_yaml = self.kubectl.exec_command(f"kubectl get ds {daemon_set_name} -n {self.namespace} -o yaml")
+        return yaml.safe_load(daemon_set_yaml)
+
+    def _change_node_selector(self, deployment_yaml: dict, node_name: str):
+        if "spec" in deployment_yaml and "template" in deployment_yaml["spec"]:
+            deployment_yaml["spec"]["template"]["spec"]["nodeSelector"] = {"kubernetes.io/hostname": node_name}
+        return yaml.dump(deployment_yaml)
+
+    def _write_yaml_to_file(self, service_name: str, yaml_content: dict):
+        """Helper function to write YAML content to a temporary file."""
+        import yaml
+
+        file_path = f"/tmp/{service_name}_modified.yaml"
+        with open(file_path, "w") as file:
+            yaml.dump(yaml_content, file)
+        return file_path
+
+    def scale_pods_to(self, replicas: int, microservices: list[str]):
+        """Inject a fault to scale pods to zero for a service."""
+        for service in microservices:
+            self.kubectl.exec_command(f"kubectl scale deployment {service} --replicas={replicas} -n {self.namespace}")
+            print(f"Scaled deployment {service} to {replicas} replicas | namespace: {self.namespace}")
+
+    def _wait_for_dns_policy_propagation(
+        self, service: str, external_ns: str, expect_external: bool, sleep: int = 2, max_wait: int = 120
+    ):
+
+        waited = 0
+        while waited < max_wait:
+
+            try:
+                deploy = self.kubectl.apps_v1_api.read_namespaced_deployment(service, self.namespace)
+                selector_dict = deploy.spec.selector.match_labels or {}
+                label_selector = ",".join([f"{k}={v}" for k, v in selector_dict.items()]) if selector_dict else None
+            except Exception:
+                label_selector = None
+
+            pods = self.kubectl.core_v1_api.list_namespaced_pod(self.namespace, label_selector=label_selector)
+
+            target_pods = [pod.metadata.name for pod in pods.items if (label_selector or service in pod.metadata.name)]
+
+            if not target_pods:
+                time.sleep(sleep)
+                waited += sleep
+                continue
+
+            state_ok = True
+
+            for pod in target_pods:
+                try:
+                    resolv = self.kubectl.exec_command(
+                        f"kubectl exec {pod} -n {self.namespace} -- cat /etc/resolv.conf"
+                    )
+                except Exception:
+                    state_ok = False
+                    break
+                has_external = external_ns in resolv
+
+                if expect_external != has_external:
+                    state_ok = False
+                    break
+
+            if state_ok:
+                return
+
+            time.sleep(sleep)
+            waited += sleep
+
+        print(f"DNS policy propagation check for service '{service}' failed after {max_wait}s.")
+
+
+if __name__ == "__main__":
+    namespace = "social-network"
+    microservices = ["mongodb-geo"]
+    # microservices = ["geo"]
+    fault_type = "auth_miss_mongodb"
+    # fault_type = "misconfig_app"
+    # fault_type = "revoke_auth"
+    print("Start injection ...")
+    injector = VirtualizationFaultInjector(namespace)
+    # injector._inject(fault_type, microservices)
+    injector._recover(fault_type, microservices)
diff --git a/sregym/generators/fault/script/k8s-geo-mongo.sh b/sregym/generators/fault/script/k8s-geo-mongo.sh
new file mode 100644
index 0000000..9347d7e
--- /dev/null
+++ b/sregym/generators/fault/script/k8s-geo-mongo.sh
@@ -0,0 +1,38 @@
+#!/bin/bash
+
+
+ADMIN_USER="admin"
+ADMIN_PWD="admin"
+
+ROOT_USER="root"
+ROOT_PWD="root"
+
+TARGET_DB="geo-db"
+READ_WRITE_ROLE="readWrite"
+
+echo "Waiting for MongoDB to start..."
+until mongo --eval "print('waited for connection')" > /dev/null 2>&1; do
+  sleep 1
+done
+echo "MongoDB started"
+
+# Create the admin user (will fail if the user already exists)
+echo "Creating admin user..."
+mongo admin --eval "db.createUser({user: '$ADMIN_USER', pwd: '$ADMIN_PWD', roles:[{role:'userAdminAnyDatabase',db:'admin'}]});"
+
+# Grant readWrite role on the target database
+echo "Granting readWrite role to $ADMIN_USER on $TARGET_DB database..."
+mongo admin -u $ADMIN_USER -p $ADMIN_PWD --authenticationDatabase admin \
+     --eval "db.grantRolesToUser('$ADMIN_USER', [{role: '$READ_WRITE_ROLE', db: '$TARGET_DB'}]);"
+
+# Create the root user (will fail if the user already exists)
+echo "Creating root user..."
+mongo admin --eval "db.createUser({user: '$ROOT_USER', pwd: '$ROOT_PWD', roles:[{role:'userAdminAnyDatabase',db:'admin'}]});"
+
+# Grant readWrite role on the target database to root
+echo "Granting readWrite role to $ROOT_USER on $TARGET_DB database..."
+mongo admin -u $ROOT_USER -p $ROOT_PWD --authenticationDatabase admin \
+     --eval "db.grantRolesToUser('$ROOT_USER', [{role: '$READ_WRITE_ROLE', db: '$TARGET_DB'}]);"
+
+
+echo "Initialization script completed"
\ No newline at end of file
diff --git a/sregym/generators/fault/script/k8s-rate-mongo.sh b/sregym/generators/fault/script/k8s-rate-mongo.sh
new file mode 100644
index 0000000..8da30e7
--- /dev/null
+++ b/sregym/generators/fault/script/k8s-rate-mongo.sh
@@ -0,0 +1,38 @@
+#!/bin/bash
+
+
+ADMIN_USER="admin"
+ADMIN_PWD="admin"
+
+ROOT_USER="root"
+ROOT_PWD="root"
+
+TARGET_DB="rate-db"
+READ_WRITE_ROLE="readWrite"
+
+echo "Waiting for MongoDB to start..."
+until mongo --eval "print('waited for connection')" > /dev/null 2>&1; do
+  sleep 1
+done
+echo "MongoDB started"
+
+# Create the admin user (will fail if the user already exists)
+echo "Creating admin user..."
+mongo admin --eval "db.createUser({user: '$ADMIN_USER', pwd: '$ADMIN_PWD', roles:[{role:'userAdminAnyDatabase',db:'admin'}]});"
+
+# Grant readWrite role on the target database
+echo "Granting readWrite role to $ADMIN_USER on $TARGET_DB database..."
+mongo admin -u $ADMIN_USER -p $ADMIN_PWD --authenticationDatabase admin \
+     --eval "db.grantRolesToUser('$ADMIN_USER', [{role: '$READ_WRITE_ROLE', db: '$TARGET_DB'}]);"
+
+# Create the root user (will fail if the user already exists)
+echo "Creating root user..."
+mongo admin --eval "db.createUser({user: '$ROOT_USER', pwd: '$ROOT_PWD', roles:[{role:'userAdminAnyDatabase',db:'admin'}]});"
+
+# Grant readWrite role on the target database to root
+echo "Granting readWrite role to $ROOT_USER on $TARGET_DB database..."
+mongo admin -u $ROOT_USER -p $ROOT_PWD --authenticationDatabase admin \
+     --eval "db.grantRolesToUser('$ROOT_USER', [{role: '$READ_WRITE_ROLE', db: '$TARGET_DB'}]);"
+
+
+echo "Initialization script completed"
\ No newline at end of file
diff --git a/sregym/generators/fault/script/remove-admin-mongo.sh b/sregym/generators/fault/script/remove-admin-mongo.sh
new file mode 100644
index 0000000..980a239
--- /dev/null
+++ b/sregym/generators/fault/script/remove-admin-mongo.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+
+
+ROOT_USER="root"
+ROOT_PWD="root" 
+
+echo "Removing admin user..."
+
+mongo admin -u $ROOT_USER -p $ROOT_PWD --authenticationDatabase admin \
+     --eval "db.dropUser('admin');"
+
+echo "Admin user removed successfully"
diff --git a/sregym/generators/fault/script/remove-mitigate-admin-geo-mongo.sh b/sregym/generators/fault/script/remove-mitigate-admin-geo-mongo.sh
new file mode 100644
index 0000000..117404d
--- /dev/null
+++ b/sregym/generators/fault/script/remove-mitigate-admin-geo-mongo.sh
@@ -0,0 +1,25 @@
+#!/bin/bash
+
+
+ROOT_USER="root"
+ROOT_PWD="root"  
+
+ADMIN_USER="admin"
+ADMIN_PWD="admin"  
+READ_WRITE_ROLE="readWrite"
+TARGET_DB="geo-db"
+
+echo "Recreating admin user..."
+
+# Connect to MongoDB and create the admin user
+mongo admin -u $ROOT_USER -p $ROOT_PWD --authenticationDatabase admin \
+     --eval "db.createUser({user: '$ADMIN_USER', pwd: '$ADMIN_PWD', roles:[{role:'userAdminAnyDatabase',db:'admin'}]});"
+
+echo "Admin user recreated"
+
+# Grant readWrite role on the target database
+echo "Granting readWrite role to $ADMIN_USER on $TARGET_DB database..."
+mongo admin -u $ROOT_USER -p $ROOT_PWD --authenticationDatabase admin \
+     --eval "db.grantRolesToUser('$ADMIN_USER', [{role: '$READ_WRITE_ROLE', db: '$TARGET_DB'}]);"
+
+echo "Privileges restored successfully"
diff --git a/sregym/generators/fault/script/remove-mitigate-admin-rate-mongo.sh b/sregym/generators/fault/script/remove-mitigate-admin-rate-mongo.sh
new file mode 100644
index 0000000..dc8d6a2
--- /dev/null
+++ b/sregym/generators/fault/script/remove-mitigate-admin-rate-mongo.sh
@@ -0,0 +1,26 @@
+#!/bin/bash
+
+
+ROOT_USER="root"
+ROOT_PWD="root"  
+
+ADMIN_USER="admin"
+ADMIN_PWD="admin"  
+READ_WRITE_ROLE="readWrite"
+TARGET_DB="rate-db"
+# TARGET_DB="geo-db"
+
+echo "Recreating admin user..."
+
+# Connect to MongoDB and create the admin user
+mongo admin -u $ROOT_USER -p $ROOT_PWD --authenticationDatabase admin \
+     --eval "db.createUser({user: '$ADMIN_USER', pwd: '$ADMIN_PWD', roles:[{role:'userAdminAnyDatabase',db:'admin'}]});"
+
+echo "Admin user recreated"
+
+# Grant readWrite role on the target database
+echo "Granting readWrite role to $ADMIN_USER on $TARGET_DB database..."
+mongo admin -u $ROOT_USER -p $ROOT_PWD --authenticationDatabase admin \
+     --eval "db.grantRolesToUser('$ADMIN_USER', [{role: '$READ_WRITE_ROLE', db: '$TARGET_DB'}]);"
+
+echo "Privileges restored successfully"
diff --git a/sregym/generators/fault/script/revoke-admin-geo-mongo.sh b/sregym/generators/fault/script/revoke-admin-geo-mongo.sh
new file mode 100644
index 0000000..c8cb0b0
--- /dev/null
+++ b/sregym/generators/fault/script/revoke-admin-geo-mongo.sh
@@ -0,0 +1,15 @@
+#!/bin/bash
+
+
+ADMIN_USER="admin"
+ADMIN_PWD="admin"
+# TARGET_DB="rate-db"
+TARGET_DB="geo-db"
+
+echo "Downgrading admin user privileges..."
+
+# Connect to MongoDB and revoke roles
+mongo admin -u $ADMIN_USER -p $ADMIN_PWD --authenticationDatabase admin \
+     --eval "db.revokeRolesFromUser('$ADMIN_USER', [{role: 'readWrite', db: '$TARGET_DB'}]);"
+
+echo "Privileges downgraded"
diff --git a/sregym/generators/fault/script/revoke-admin-rate-mongo.sh b/sregym/generators/fault/script/revoke-admin-rate-mongo.sh
new file mode 100644
index 0000000..3887204
--- /dev/null
+++ b/sregym/generators/fault/script/revoke-admin-rate-mongo.sh
@@ -0,0 +1,15 @@
+#!/bin/bash
+
+
+ADMIN_USER="admin"
+ADMIN_PWD="admin"
+TARGET_DB="rate-db"
+# TARGET_DB="geo-db"
+
+echo "Downgrading admin user privileges..."
+
+# Connect to MongoDB and revoke roles
+mongo admin -u $ADMIN_USER -p $ADMIN_PWD --authenticationDatabase admin \
+     --eval "db.revokeRolesFromUser('$ADMIN_USER', [{role: 'readWrite', db: '$TARGET_DB'}]);"
+
+echo "Privileges downgraded"
diff --git a/sregym/generators/fault/script/revoke-mitigate-admin-geo-mongo.sh b/sregym/generators/fault/script/revoke-mitigate-admin-geo-mongo.sh
new file mode 100644
index 0000000..b5cd6fb
--- /dev/null
+++ b/sregym/generators/fault/script/revoke-mitigate-admin-geo-mongo.sh
@@ -0,0 +1,17 @@
+#!/bin/bash
+
+
+ADMIN_USER="admin"
+ADMIN_PWD="admin"
+
+# TARGET_DB="rate-db"
+TARGET_DB="geo-db"
+READ_WRITE_ROLE="readWrite"
+
+echo "Restoring readWrite privilege to the $ADMIN_USER user for the $TARGET_DB database..."
+
+# Grant readWrite role on the target database
+mongo admin -u $ADMIN_USER -p $ADMIN_PWD --authenticationDatabase admin \
+     --eval "db.grantRolesToUser('$ADMIN_USER', [{role: '$READ_WRITE_ROLE', db: '$TARGET_DB'}]);"
+
+echo "Privilege restored successfully"
\ No newline at end of file
diff --git a/sregym/generators/fault/script/revoke-mitigate-admin-rate-mongo.sh b/sregym/generators/fault/script/revoke-mitigate-admin-rate-mongo.sh
new file mode 100644
index 0000000..f1fa99d
--- /dev/null
+++ b/sregym/generators/fault/script/revoke-mitigate-admin-rate-mongo.sh
@@ -0,0 +1,17 @@
+#!/bin/bash
+
+
+ADMIN_USER="admin"
+ADMIN_PWD="admin"
+
+TARGET_DB="rate-db"
+# TARGET_DB="geo-db"
+READ_WRITE_ROLE="readWrite"
+
+echo "Restoring readWrite privilege to the $ADMIN_USER user for the $TARGET_DB database..."
+
+# Grant readWrite role on the target database
+mongo admin -u $ADMIN_USER -p $ADMIN_PWD --authenticationDatabase admin \
+     --eval "db.grantRolesToUser('$ADMIN_USER', [{role: '$READ_WRITE_ROLE', db: '$TARGET_DB'}]);"
+
+echo "Privilege restored successfully"
\ No newline at end of file
diff --git a/sregym/generators/noise/transient_issues/chaos_injector.py b/sregym/generators/noise/transient_issues/chaos_injector.py
new file mode 100644
index 0000000..1b8db0b
--- /dev/null
+++ b/sregym/generators/noise/transient_issues/chaos_injector.py
@@ -0,0 +1,73 @@
+import os
+from typing import List
+
+import yaml
+from kubernetes import client
+
+from sregym.service.helm import Helm
+from sregym.service.kubectl import KubeCtl
+
+
+class ChaosInjector:
+    def __init__(self, namespace: str):
+        self.namespace = namespace
+        self.kubectl = KubeCtl()
+        self.kubectl.create_namespace_if_not_exist("chaos-mesh")
+        Helm.add_repo("chaos-mesh", "https://charts.chaos-mesh.org")
+        chaos_configs = {
+            "release_name": "chaos-mesh",
+            "chart_path": "chaos-mesh/chaos-mesh",
+            "namespace": "chaos-mesh",
+            "version": "2.6.2",
+        }
+
+        container_runtime = self.kubectl.get_container_runtime()
+
+        if "docker" in container_runtime:
+            pass
+        elif "containerd" in container_runtime:
+            chaos_configs["extra_args"] = [
+                "--set chaosDaemon.runtime=containerd",
+                "--set chaosDaemon.socketPath=/run/containerd/containerd.sock",
+            ]
+        else:
+            raise ValueError(f"Unsupported container runtime: {container_runtime}")
+
+        # Disable security for the dashboard
+        if chaos_configs.get("extra_args"):
+            chaos_configs["extra_args"].append("--set dashboard.securityMode=false")
+        else:
+            chaos_configs["extra_args"] = ["--set dashboard.securityMode=false"]
+
+        # Check if the release already exists
+        release_exists = Helm.exists_release(chaos_configs["release_name"], chaos_configs["namespace"])
+        if not release_exists:
+            Helm.install(**chaos_configs)
+            self.kubectl.wait_for_ready("chaos-mesh")
+        else:
+            print(
+                f"[ChaosInjector] Helm release '{chaos_configs['release_name']}' already exists in namespace '{chaos_configs['namespace']}', skipping install."
+            )
+
+    def create_chaos_experiment(self, experiment_yaml: dict, experiment_name: str):
+        try:
+            chaos_yaml_path = f"/tmp/{experiment_name}.yaml"
+            with open(chaos_yaml_path, "w") as file:
+                yaml.dump(experiment_yaml, file)
+            command = f"kubectl apply -f {chaos_yaml_path}"
+            result = self.kubectl.exec_command(command)
+            print(f"Applied {experiment_name} chaos experiment: {result}")
+        except Exception as e:
+            raise RuntimeError(f"Error applying chaos experiment: {e}") from e
+
+    def delete_chaos_experiment(self, experiment_name: str):
+        try:
+            chaos_yaml_path = f"/tmp/{experiment_name}.yaml"
+            command = f"kubectl delete -f {chaos_yaml_path}"
+            result = self.kubectl.exec_command(command)
+            print(f"Cleaned up chaos experiment: {result}")
+        except Exception as e:
+            chaos_yaml_path = f"/tmp/{experiment_name}.yaml"
+            command = f"kubectl delete -f {chaos_yaml_path} --force --grace-period=0"
+            result = self.kubectl.exec_command(command)
+            raise RuntimeError(f"Error cleaning up chaos experiment: {e}") from e
diff --git a/sregym/generators/noise/transient_issues/configuration.yml b/sregym/generators/noise/transient_issues/configuration.yml
new file mode 100644
index 0000000..b236863
--- /dev/null
+++ b/sregym/generators/noise/transient_issues/configuration.yml
@@ -0,0 +1,10 @@
+switch: False
+min_duration: 40
+max_duration: 60
+fault_types:
+  - FAIL_SLOW
+  - FAIL_STOP
+scopes:
+  - TARGET_NAMESPACE
+interval_min: 20
+interval_max: 30
\ No newline at end of file
diff --git a/sregym/generators/noise/transient_issues/transient_issues.py b/sregym/generators/noise/transient_issues/transient_issues.py
new file mode 100644
index 0000000..e9903eb
--- /dev/null
+++ b/sregym/generators/noise/transient_issues/transient_issues.py
@@ -0,0 +1,1094 @@
+import random
+import time
+import threading
+from typing import List, Dict, Optional, Set
+from dataclasses import dataclass
+from enum import Enum
+from kubernetes import client
+from sregym.generators.noise.transient_issues.chaos_injector import ChaosInjector
+from sregym.service.kubectl import KubeCtl
+
+
+class FaultType(Enum):
+    """Fault type enumeration"""
+    FAIL_STOP = "fail-stop"  # Stop-type faults
+    FAIL_SLOW = "fail-slow"  # Slow-down type faults
+
+
+class PodScope(Enum):
+    """Pod scope level enumeration"""
+    TARGET_SERVICE = "target_service"           # Within target service
+    TARGET_NAMESPACE = "target_namespace"       # Within target namespace
+    NON_TARGET_SERVICE = "non_target_service"   # Outside target service but within target namespace
+    ALL_PODS = "all_pods"                       # All pods
+    NON_TARGET_NAMESPACE = "non_target_namespace"  # All pods outside target namespace
+
+
+@dataclass
+class TransientExperiment:
+    """Represents a transient chaos experiment"""
+    name: str
+    experiment_type: str
+    fault_type: FaultType
+    target_pods: List[str]
+    scope: PodScope
+    duration: int  # Duration in seconds
+    start_time: float
+    cleanup_timer: Optional[threading.Timer] = None
+
+
+class TransientIssuesGenerator:
+    """Generate transient cluster issues as noise"""
+    
+    def __init__(self, namespace: str, target_services: List[str] = None, 
+                 min_duration: int = 30, max_duration: int = 300):
+        """
+        Initialize transient issues generator
+        
+        Args:
+            namespace: Target namespace
+            target_services: List of target services, used to determine scope
+            min_duration: Minimum duration in seconds
+            max_duration: Maximum duration in seconds
+        """
+        self.namespace = namespace
+        self.target_services = target_services or []
+        self.min_duration = min_duration
+        self.max_duration = max_duration
+        self.kubectl = KubeCtl()
+        self.chaos_injector = ChaosInjector(namespace)
+        
+        # Active transient experiments
+        self.active_experiments: Dict[str, TransientExperiment] = {}
+
+        # Continuous injection control
+        self._injection_running = False
+        self._injection_thread = None
+        self._stop_event = threading.Event()
+        
+        # Available chaos experiment types and their configurations
+        self.experiment_types = {
+            # Fail-Stop type faults
+            "pod-kill": {
+                "weight": 3,
+                "fault_type": FaultType.FAIL_STOP,
+                "method": self._inject_pod_kill,
+                "cleanup_method": self._cleanup_pod_kill,
+                "description": "Randomly kill pods",
+                "scopes": [PodScope.TARGET_SERVICE, PodScope.TARGET_NAMESPACE, 
+                          PodScope.NON_TARGET_SERVICE, PodScope.ALL_PODS, PodScope.NON_TARGET_NAMESPACE]
+            },
+            "container-kill": {
+                "weight": 2,
+                "fault_type": FaultType.FAIL_STOP,
+                "method": self._inject_container_kill,
+                "cleanup_method": self._cleanup_container_kill,
+                "description": "Kill containers",
+                "scopes": [PodScope.TARGET_SERVICE, PodScope.TARGET_NAMESPACE, 
+                          PodScope.NON_TARGET_SERVICE, PodScope.ALL_PODS, PodScope.NON_TARGET_NAMESPACE]
+            },
+            "pod-failure": {
+                "weight": 2,
+                "fault_type": FaultType.FAIL_STOP,
+                "method": self._inject_pod_failure,
+                "cleanup_method": self._cleanup_pod_failure,
+                "description": "Inject pod failure",
+                "scopes": [PodScope.TARGET_SERVICE, PodScope.TARGET_NAMESPACE, 
+                          PodScope.NON_TARGET_SERVICE, PodScope.ALL_PODS, PodScope.NON_TARGET_NAMESPACE]
+            },
+            "network-loss": {
+                "weight": 1,
+                "fault_type": FaultType.FAIL_STOP,
+                "method": self._inject_network_loss,
+                "cleanup_method": self._cleanup_network_loss,
+                "description": "Inject network packet loss",
+                "scopes": [PodScope.TARGET_SERVICE, PodScope.TARGET_NAMESPACE, 
+                          PodScope.NON_TARGET_SERVICE, PodScope.ALL_PODS, PodScope.NON_TARGET_NAMESPACE]
+            },
+            "network-partition": {
+                "weight": 1,
+                "fault_type": FaultType.FAIL_STOP,
+                "method": self._inject_network_partition,
+                "cleanup_method": self._cleanup_network_partition,
+                "description": "Inject network partition between services",
+                "scopes": [PodScope.TARGET_SERVICE, PodScope.TARGET_NAMESPACE, 
+                          PodScope.NON_TARGET_SERVICE, PodScope.ALL_PODS, PodScope.NON_TARGET_NAMESPACE]
+            },
+            
+            # Fail-Slow type faults
+            "network-delay": {
+                "weight": 2,
+                "fault_type": FaultType.FAIL_SLOW,
+                "method": self._inject_network_delay,
+                "cleanup_method": self._cleanup_network_delay,
+                "description": "Inject network delay",
+                "scopes": [PodScope.TARGET_SERVICE, PodScope.TARGET_NAMESPACE, 
+                          PodScope.NON_TARGET_SERVICE, PodScope.ALL_PODS, PodScope.NON_TARGET_NAMESPACE]
+            },
+            "cpu-stress": {
+                "weight": 2,
+                "fault_type": FaultType.FAIL_SLOW,
+                "method": self._inject_cpu_stress,
+                "cleanup_method": self._cleanup_cpu_stress,
+                "description": "Inject CPU stress",
+                "scopes": [PodScope.TARGET_SERVICE, PodScope.TARGET_NAMESPACE, 
+                          PodScope.NON_TARGET_SERVICE, PodScope.ALL_PODS, PodScope.NON_TARGET_NAMESPACE]
+            },
+            "memory-stress": {
+                "weight": 1,
+                "fault_type": FaultType.FAIL_SLOW,
+                "method": self._inject_memory_stress,
+                "cleanup_method": self._cleanup_memory_stress,
+                "description": "Inject memory stress",
+                "scopes": [PodScope.TARGET_SERVICE, PodScope.TARGET_NAMESPACE, 
+                          PodScope.NON_TARGET_SERVICE, PodScope.ALL_PODS, PodScope.NON_TARGET_NAMESPACE]
+            }
+        }
+        self.cleanup_all_experiments()
+
+
+    ### Injection and cleanup
+    def inject_transient_issue(self, fault_types: List[FaultType] = None, 
+                             scopes: List[PodScope] = None, experiment: str = None) -> Optional[str]:
+        """Inject a transient issue"""
+        try:
+            # Randomly select experiment type
+            experiment_type = self.select_random_experiment_type(fault_types, scopes)
+            if experiment:
+                experiment_type = experiment
+            if not experiment_type:
+                return None
+            
+            # Randomly select scope
+            if scopes:
+                available_scopes = [s for s in scopes if s in self.experiment_types[experiment_type]["scopes"]]
+            else:
+                available_scopes = self.experiment_types[experiment_type]["scopes"]
+            
+            if not available_scopes:
+                print("No available scopes")
+                return None
+            
+            selected_scope = random.choice(available_scopes)
+            # Get target pods based on scope
+            count = 2 if experiment_type in ["network-partition"] else 1
+            target_pods = self.get_pods_by_scope(selected_scope, count)
+            if not target_pods:
+                print("No available target pods, skipping injection")
+                return None
+            
+            # Randomly generate duration
+            duration = random.randint(self.min_duration, self.max_duration)
+            
+            # Generate experiment name
+            experiment_name = self.generate_experiment_name(experiment_type)
+            
+            fault_type = self.experiment_types[experiment_type]["fault_type"]
+            
+            print(f"🔥 Injecting transient issue: {experiment_type}")
+            print(f"   Experiment name: {experiment_name}")
+            print(f"   Fault type: {fault_type.value}")
+            print(f"   Scope level: {selected_scope.value}")
+            print(f"   Target services: {target_pods}")
+            print(f"   Duration: {duration} seconds")
+            print(f"   Description: {self.experiment_types[experiment_type]['description']}")
+            
+            # Create experiment record
+            experiment = TransientExperiment(
+                name=experiment_name,
+                experiment_type=experiment_type,
+                fault_type=fault_type,
+                target_pods=target_pods,
+                scope=selected_scope,
+                duration=duration,
+                start_time=time.time()
+            )
+            
+            # Execute injection
+            inject_method = self.experiment_types[experiment_type]["method"]
+            success = inject_method(experiment_name, target_pods)
+            
+            if success:
+                # Set auto cleanup timer
+                cleanup_timer = threading.Timer(
+                    duration,
+                    self._auto_cleanup,
+                    args=[experiment_name]
+                )
+                experiment.cleanup_timer = cleanup_timer
+                cleanup_timer.start()
+                
+                # Record active experiment
+                self.active_experiments[experiment_name] = experiment
+                
+                print(f"✅ Transient issue injection successful, will auto recover in {duration} seconds")
+                return experiment_name
+            else:
+                print(f"❌ Transient issue injection failed")
+                return None
+                
+        except Exception as e:
+            raise RuntimeError(f"Error injecting transient issue: {e}") from e
+
+    def _auto_cleanup(self, experiment_name: str):
+        """Automatically cleanup experiment"""
+        try:
+            if experiment_name in self.active_experiments:
+                experiment = self.active_experiments[experiment_name]
+                elapsed = time.time() - experiment.start_time
+                
+                print(f"🔄 Auto recovering transient issue: {experiment.experiment_type}")
+                print(f"   Experiment name: {experiment_name}")
+                print(f"   Fault type: {experiment.fault_type.value}")
+                print(f"   Scope level: {experiment.scope.value}")
+                print(f"   Actual duration: {elapsed:.1f} seconds")
+                
+                # Execute cleanup
+                cleanup_method = self.experiment_types[experiment.experiment_type]["cleanup_method"]
+                cleanup_method(experiment_name)
+                # Remove record
+                del self.active_experiments[experiment_name]
+                
+                print(f"✅ Transient issue auto recovered")
+                
+        except Exception as e:
+            raise RuntimeError(f"Error auto cleaning experiment: {e}") from e
+
+    def cleanup_experiment(self, experiment_name: str) -> bool:
+        """Manually cleanup specified experiment"""
+        try:
+            if experiment_name not in self.active_experiments:
+                print(f"Experiment {experiment_name} does not exist or has been cleaned up")
+                return False
+            
+            experiment = self.active_experiments[experiment_name]
+            
+            # Cancel timer
+            if experiment.cleanup_timer:
+                experiment.cleanup_timer.cancel()
+            
+            # Execute cleanup
+            cleanup_method = self.experiment_types[experiment.experiment_type]["cleanup_method"]
+            cleanup_method(experiment_name)
+            
+            # Remove record
+            del self.active_experiments[experiment_name]
+            
+            print(f"✅ Manual cleanup of experiment {experiment_name} successful")
+            return True
+            
+        except Exception as e:
+            raise RuntimeError(f"Error manually cleaning experiment: {e}") from e
+
+    def cleanup_all_experiments(self):
+        """Cleanup all active experiments"""
+        experiment_names = list(self.active_experiments.keys())
+        for name in experiment_names:
+            self.cleanup_experiment(name)
+        experiment_types=["PodChaos", "NetworkChaos", "StressChaos"]
+        for experiment_type in experiment_types:
+            delete_cmd = f"kubectl delete {experiment_type} --all -n chaos-mesh --ignore-not-found=true"
+            self.kubectl.exec_command(delete_cmd)
+
+
+    def start_continuous_injection(self, fault_types: List[FaultType] = None,
+                                 scopes: List[PodScope] = None,
+                                 interval_min: int = 60, interval_max: int = 300):
+        """Start continuous transient issue injection
+        
+        Args:
+            fault_types: List of allowed fault types, None means all types
+            scopes: List of allowed scope levels, None means all scopes
+            interval_min: Minimum injection interval in seconds
+            interval_max: Maximum injection interval in seconds
+        """
+        if self._injection_running:
+            print("⚠️ Continuous injection already running, please stop current injection first")
+            return False
+        
+        def injection_loop():
+            print(f"🚀 Continuous transient issue injection started")
+            print(f"   Allowed fault types: {[ft.value for ft in fault_types] if fault_types else 'All types'}")
+            print(f"   Allowed scope levels: {[s.value for s in scopes] if scopes else 'All scopes'}")
+            print(f"   Injection interval: {interval_min}-{interval_max} seconds")
+            
+            while not self._stop_event.is_set():
+                try:
+                    # Inject a transient issue
+                    self.inject_transient_issue(fault_types, scopes)
+                    
+                    # Wait randomly for next injection, but check stop signal periodically
+                    next_interval = random.randint(interval_min, interval_max)
+                    print(f"⏰ Next injection will be in {next_interval} seconds")
+                    
+                    # Wait in segments, checking stop signal every second
+                    for _ in range(next_interval):
+                        if self._stop_event.is_set():
+                            break
+                        time.sleep(1)
+                    
+                except Exception as e:
+                    # For continuous injection loops, still use print to log errors but continue running
+                    print(f"Error in continuous injection loop: {e}")
+                    self.cleanup_all_experiments()
+            
+            print("🛑 Continuous transient issue injection stopped")
+            self._injection_running = False
+        
+        # Reset stop event
+        self._stop_event.clear()
+        
+        # Run in background thread
+        self._injection_thread = threading.Thread(target=injection_loop, daemon=True)
+        self._injection_running = True
+        self._injection_thread.start()
+        
+        return True
+
+    def stop_continuous_injection(self, cleanup_active: bool = True) -> bool:
+        """Stop continuous transient issue injection
+        
+        Args:
+            cleanup_active: Whether to cleanup currently active experiments, default True
+            
+        Returns:
+            bool: Whether successfully stopped
+        """
+        if not self._injection_running:
+            print("⚠️ Continuous injection not running")
+            return False
+        
+        print("🛑 Stopping continuous transient issue injection...")
+        
+        # Set stop signal
+        self._stop_event.set()
+        
+        # Wait for injection thread to end
+        if self._injection_thread and self._injection_thread.is_alive():
+            self._injection_thread.join(timeout=10)  # Wait at most 10 seconds
+            
+            if self._injection_thread.is_alive():
+                print("⚠️ Injection thread failed to stop within 10 seconds")
+                return False
+        
+        # Optional: cleanup currently active experiments
+        if cleanup_active and self.active_experiments:
+            print(f"🧹 Cleaning up {len(self.active_experiments)} active experiments...")
+            self.cleanup_all_experiments()
+        
+        self._injection_running = False
+        print("✅ Continuous transient issue injection successfully stopped")
+        return True
+
+    def restart_continuous_injection(self, fault_types: List[FaultType] = None,
+                                   scopes: List[PodScope] = None,
+                                   interval_min: int = 60, interval_max: int = 300,
+                                   cleanup_active: bool = False) -> bool:
+        """Restart continuous injection
+        
+        Args:
+            fault_types: List of allowed fault types
+            scopes: List of allowed scope levels
+            interval_min: Minimum injection interval in seconds
+            interval_max: Maximum injection interval in seconds
+            cleanup_active: Whether to cleanup active experiments before restart
+            
+        Returns:
+            bool: Whether successfully restarted
+        """
+        print("🔄 Restarting continuous transient issue injection...")
+        
+        # First stop current injection
+        if self._injection_running:
+            if not self.stop_continuous_injection(cleanup_active):
+                return False
+        
+        # Start new injection
+        return self.start_continuous_injection(fault_types, scopes, interval_min, interval_max)
+
+
+    ### Status and statistics
+    def get_active_experiments(self) -> List[Dict]:
+        """Get information of currently active experiments"""
+        result = []
+        current_time = time.time()
+        
+        for name, experiment in self.active_experiments.items():
+            elapsed = current_time - experiment.start_time
+            remaining = max(0, experiment.duration - elapsed)
+            
+            result.append({
+                "name": name,
+                "type": experiment.experiment_type,
+                "fault_type": experiment.fault_type.value,
+                "scope": experiment.scope.value,
+                "target_pods": experiment.target_pods,
+                "duration": experiment.duration,
+                "elapsed": round(elapsed, 1),
+                "remaining": round(remaining, 1),
+                "description": self.experiment_types[experiment.experiment_type]["description"]
+            })
+        
+        return result
+
+    def get_statistics(self) -> Dict:
+        """Get injection statistics"""
+        stats = {
+            "total_active": len(self.active_experiments),
+            "by_fault_type": {},
+            "by_scope": {},
+            "by_experiment_type": {}
+        }
+        
+        for experiment in self.active_experiments.values():
+            # Statistics by fault type
+            fault_type = experiment.fault_type.value
+            stats["by_fault_type"][fault_type] = stats["by_fault_type"].get(fault_type, 0) + 1
+            
+            # Statistics by scope
+            scope = experiment.scope.value
+            stats["by_scope"][scope] = stats["by_scope"].get(scope, 0) + 1
+            
+            # Statistics by experiment type
+            exp_type = experiment.experiment_type
+            stats["by_experiment_type"][exp_type] = stats["by_experiment_type"].get(exp_type, 0) + 1
+        
+        return stats
+
+
+    ### Specific injection methods & cleanup implementations
+    def _inject_pod_kill(self, experiment_name: str, target_pods: List[Dict[str,str]]) -> bool:
+        """Inject pod kill fault"""
+        try:
+            # target_namespace = self.namespace if scope != PodScope.NON_TARGET_NAMESPACE else "default"
+            
+            # Get actual labels of target pods
+            target_pod = random.choice(target_pods)
+            target_namespace = target_pod['namespace']
+            target_label = target_pod['service_label']
+            label_selector = self._get_pod_label_selector(target_label, target_namespace)
+            
+            if not label_selector:
+                print(f"Cannot find suitable label selector for pod {target_pod}")
+                return False
+            
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "PodChaos",
+                "metadata": {"name": experiment_name, "namespace": 'chaos-mesh'},
+                "spec": {
+                    "action": "pod-kill",
+                    "mode": "one",
+                    "selector": {
+                        "namespaces": [target_namespace],
+                        "labelSelectors": label_selector
+                    }
+                }
+            }
+            self.chaos_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            return True
+        except Exception as e:
+            raise RuntimeError(f"Failed to inject pod kill: {e}") from e
+
+    def _cleanup_pod_kill(self, experiment_name: str):
+        """Cleanup pod kill fault"""
+        try:
+            self.chaos_injector.delete_chaos_experiment(experiment_name)
+        except Exception as e:
+            raise RuntimeError(f"Failed to cleanup pod kill experiment {experiment_name}: {e}") from e
+
+    def _inject_network_delay(self, experiment_name: str, target_pods: List[str]) -> bool:
+        """Inject network delay fault"""
+        try:
+            latencies = ["100ms", "200ms", "500ms", "1s", "2s"]
+            latency = random.choice(latencies)
+            # target_namespace = self.namespace if scope != PodScope.NON_TARGET_NAMESPACE else "default"
+
+            
+            target_pod = random.choice(target_pods)
+            target_namespace = target_pod['namespace']
+            target_label = target_pod['service_label']
+            label_selector = self._get_pod_label_selector(target_label, target_namespace)
+
+            if not label_selector:
+                print(f"Cannot find suitable label selector for pod {target_pod}")
+                return False
+
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "NetworkChaos",
+                "metadata": {"name": experiment_name, "namespace": 'chaos-mesh'},
+                "spec": {
+                    "action": "delay",
+                    "mode": "one",
+                    "selector": {
+                        "namespaces": [target_namespace],
+                        "labelSelectors": label_selector
+                    },
+                    "delay": {"latency": latency, "correlation": "100", "jitter": "0ms"}
+                }
+            }
+            self.chaos_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            return True
+        except Exception as e:
+            raise RuntimeError(f"Failed to inject network delay: {e}") from e
+
+    def _cleanup_network_delay(self, experiment_name: str):
+        """Cleanup network delay fault"""
+        try:
+            self.chaos_injector.delete_chaos_experiment(experiment_name)
+        except Exception as e:
+            raise RuntimeError(f"Failed to cleanup network delay experiment {experiment_name}: {e}") from e
+
+    def _inject_cpu_stress(self, experiment_name: str, target_pods: List[str]) -> bool:
+        """Inject CPU stress fault"""
+        try:
+            target_pod = random.choice(target_pods)
+            target_namespace = target_pod['namespace']
+            target_label = target_pod['service_label']
+
+            label_selector = self._get_pod_label_selector(target_label, target_namespace)
+            
+            if not label_selector:
+                print(f"Cannot find suitable label selector for pod {target_pod}")
+                return False
+
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "StressChaos",
+                "metadata": {"name": experiment_name, "namespace": 'chaos-mesh'},
+                "spec": {
+                    "mode": "one",
+                    "selector": {
+                        "namespaces": [target_namespace],
+                        "labelSelectors": label_selector
+                    },
+                    "stressors": {
+                        "cpu": {
+                            "workers": random.randint(1, 4),
+                            "load": random.randint(50, 100)
+                        }
+                    }
+                }
+            }
+            self.chaos_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            return True
+        except Exception as e:
+            raise RuntimeError(f"Failed to inject CPU stress: {e}") from e
+
+    def _cleanup_cpu_stress(self, experiment_name: str):
+        """Cleanup CPU stress fault"""
+        try:
+            self.chaos_injector.delete_chaos_experiment(experiment_name)
+        except Exception as e:
+            raise RuntimeError(f"Failed to cleanup CPU stress experiment {experiment_name}: {e}") from e
+
+    def _inject_memory_stress(self, experiment_name: str, target_pods: List[str]) -> bool:
+        """Inject memory stress fault"""
+        try:
+            target_pod = random.choice(target_pods)
+            memory_sizes = ["50%", "70%", "80%"]
+            memory_size = random.choice(memory_sizes)
+            # target_namespace = self.namespace if scope != PodScope.NON_TARGET_NAMESPACE else "default"
+            target_namespace = target_pod['namespace']
+            target_label = target_pod['service_label']
+            
+            label_selector = self._get_pod_label_selector(target_label, target_namespace)
+
+            if not label_selector:
+                print(f"Cannot find suitable label selector for pod {target_pod}")
+                return False
+
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "StressChaos",
+                "metadata": {"name": experiment_name, "namespace": 'chaos-mesh'},
+                "spec": {
+                    "mode": "one",
+                    "selector": {
+                        "namespaces": [target_namespace],
+                        "labelSelectors": label_selector
+                    },
+                    "stressors": {
+                        "memory": {
+                            "workers": random.randint(1, 4),
+                            "size": memory_size
+                        }
+                    }
+                }
+            }
+            self.chaos_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            return True
+        except Exception as e:
+            raise RuntimeError(f"Failed to inject memory stress: {e}") from e
+
+    def _cleanup_memory_stress(self, experiment_name: str):
+        """Cleanup memory stress fault"""
+        try:
+            self.chaos_injector.delete_chaos_experiment(experiment_name)
+        except Exception as e:
+            raise RuntimeError(f"Failed to cleanup memory stress experiment {experiment_name}: {e}") from e
+
+    def _inject_network_loss(self, experiment_name: str, target_pods: List[str]) -> bool:
+        """Inject network packet loss fault"""
+        try:
+            loss_rates = ["10", "20", "30", "50"]
+            loss_rate = random.choice(loss_rates)
+            # target_namespace = self.namespace if scope != PodScope.NON_TARGET_NAMESPACE else "default"
+            
+            target_pod = random.choice(target_pods)
+            target_namespace = target_pod['namespace']
+            target_label = target_pod['service_label']
+            label_selector = self._get_pod_label_selector(target_label, target_namespace)
+
+            if not label_selector:
+                print(f"Cannot find suitable label selector for pod {target_pod}")
+                return False
+
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "NetworkChaos",
+                "metadata": {"name": experiment_name, "namespace": 'chaos-mesh'},
+                "spec": {
+                    "action": "loss",
+                    "mode": "one",
+                    "selector": {
+                        "namespaces": [target_namespace],
+                        "labelSelectors": label_selector
+                    },
+                    "loss": {"loss": loss_rate, "correlation": "100"}
+                }
+            }
+            self.chaos_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            return True
+        except Exception as e:
+            raise RuntimeError(f"Failed to inject network loss: {e}") from e
+
+    def _cleanup_network_loss(self, experiment_name: str):
+        """Cleanup network packet loss fault"""
+        try:
+            self.chaos_injector.delete_chaos_experiment(experiment_name)
+        except Exception as e:
+            raise RuntimeError(f"Failed to cleanup network loss experiment {experiment_name}: {e}") from e
+
+    def _inject_container_kill(self, experiment_name: str, target_pods: List[str]) -> bool:
+        """Inject container kill fault"""
+        try:
+            # target_namespace = self.namespace if scope != PodScope.NON_TARGET_NAMESPACE else "default"
+            
+            target_pod = random.choice(target_pods)
+            target_namespace = target_pod['namespace']
+            target_label = target_pod['service_label']
+            label_selector = self._get_pod_label_selector(target_label, target_namespace)
+
+            if not label_selector:
+                print(f"Cannot find suitable label selector for pod {target_pod}")
+                return False
+
+            # Get container names
+            container_names = self._get_container_names(target_label, target_namespace)
+            if not container_names:
+                print(f"Cannot get container names for service {target_pod}, skipping container kill fault")
+                return False
+            
+            # Randomly select containers to kill
+            if len(container_names) == 1:
+                # Only one container, select it directly
+                selected_containers = container_names
+            else:
+                # Multiple containers, randomly decide how many to kill
+                num_to_kill = random.randint(1, len(container_names))
+                selected_containers = random.sample(container_names, num_to_kill)
+            
+            print(f"Will kill containers: {selected_containers}")
+
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "PodChaos",
+                "metadata": {"name": experiment_name, "namespace": 'chaos-mesh'},
+                "spec": {
+                    "action": "container-kill",
+                    "mode": "one",
+                    "selector": {
+                        "namespaces": [target_namespace],
+                        "labelSelectors": label_selector
+                    },
+                    "containerNames": selected_containers
+                }
+            }
+            self.chaos_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            return True
+        except Exception as e:
+            raise RuntimeError(f"Failed to inject container kill: {e}") from e
+
+    def _cleanup_container_kill(self, experiment_name: str):
+        """Cleanup container kill fault"""
+        try:
+            self.chaos_injector.delete_chaos_experiment(experiment_name)
+        except Exception as e:
+            raise RuntimeError(f"Failed to cleanup container kill experiment {experiment_name}: {e}") from e
+
+    def _inject_pod_failure(self, experiment_name: str, target_pods: List[str]) -> bool:
+        """Inject pod failure fault"""
+        try:
+            target_pod = random.choice(target_pods)
+            target_namespace = target_pod['namespace']
+            target_label = target_pod['service_label']
+            label_selector = self._get_pod_label_selector(target_label, target_namespace)
+
+            if not label_selector:
+                print(f"Cannot find suitable label selector for pod {target_pod}")
+                return False
+
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "PodChaos",
+                "metadata": {"name": experiment_name, "namespace": 'chaos-mesh'},
+                "spec": {
+                    "action": "pod-failure",
+                    "mode": "one",
+                    "selector": {
+                        "namespaces": [target_namespace],
+                        "labelSelectors": label_selector
+                    }
+                }
+            }
+            self.chaos_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            return True
+        except Exception as e:
+            raise RuntimeError(f"Failed to inject pod failure: {e}") from e
+
+    def _cleanup_pod_failure(self, experiment_name: str):
+        """Cleanup pod failure fault"""
+        try:
+            self.chaos_injector.delete_chaos_experiment(experiment_name)
+        except Exception as e:
+            raise RuntimeError(f"Failed to cleanup pod failure experiment {experiment_name}: {e}") from e
+
+    def _inject_network_partition(self, experiment_name: str, target_pods: List[str]) -> bool:
+        """Inject network partition fault"""
+        try:
+            # For network partition, we need at least 2 different services
+            if len(target_pods) < 2:
+                print("Network partition requires target pods, skipping injection")
+                return False
+
+            from_pod = target_pods[0]
+            to_pod = target_pods[1]
+
+            from_namespace = from_pod['namespace']
+            to_namespace = to_pod['namespace']
+            from_service = from_pod['service_label']
+            to_service = to_pod['service_label']
+            
+            # Get label selectors for both services
+            from_label_selector = self._get_pod_label_selector(from_service, from_namespace)
+            to_label_selector = self._get_pod_label_selector(to_service, to_namespace)
+            
+            if not from_label_selector or not to_label_selector:
+                print(f"Cannot find suitable label selectors for partition: {from_service} -> {to_service}")
+                return False
+            
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "NetworkChaos",
+                "metadata": {"name": experiment_name, "namespace": 'chaos-mesh'},
+                "spec": {
+                    "action": "partition",
+                    "mode": "all",
+                    "selector": {
+                        "namespaces": [from_namespace],
+                        "labelSelectors": from_label_selector
+                    },
+                    "direction": "to",
+                    "target": {
+                        "mode": "all",
+                        "selector": {
+                            "namespaces": [to_namespace],
+                            "labelSelectors": to_label_selector
+                        }
+                    }
+                }
+            }
+            
+            print(f"Creating network partition: {from_service}@{from_namespace} -> {to_service}@{to_namespace}")
+            self.chaos_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            return True
+            
+        except Exception as e:
+            raise RuntimeError(f"Failed to inject network partition: {e}") from e
+
+    def _cleanup_network_partition(self, experiment_name: str):
+        """Cleanup network partition fault"""
+        try:
+            self.chaos_injector.delete_chaos_experiment(experiment_name)
+        except Exception as e:
+            raise RuntimeError(f"Failed to cleanup network partition experiment {experiment_name}: {e}") from e
+
+
+    ### help methods
+    def get_pods_by_scope(self, scope: PodScope, count: int) -> List[Dict[str, str]]:
+        """Get pod list based on scope level"""
+        try:
+            v1 = client.CoreV1Api()
+            all_pods = []
+            
+            # Step 1: Determine target namespace list based on PodScope
+            target_namespaces = self._get_target_namespaces(scope)
+            if not target_namespaces:
+                print(f"No suitable namespace found in scope {scope.value}")
+                return []
+            # Step 2: Collect qualifying pods in target namespace
+            for target_namespace in target_namespaces:
+                pods = v1.list_namespaced_pod(namespace=target_namespace)
+                
+                for pod in pods.items:
+                    labels = pod.metadata.labels or {}
+                    service_name = None
+                    
+                    # Extract service name
+                    if "app.kubernetes.io/component" in labels:
+                        service_name = labels["app.kubernetes.io/component"]
+                    elif "app.kubernetes.io/name" in labels:
+                        service_name = labels["app.kubernetes.io/name"]
+                    elif "io.kompose.service" in labels:
+                        service_name = labels["io.kompose.service"]
+                    elif "openebs.io/component-name" in labels:
+                        service_name = labels["openebs.io/component-name"]
+                    elif "service" in labels:
+                        service_name = labels["service"]
+                    elif "app" in labels:
+                        service_name = labels["app"]
+
+                    if service_name:
+                        # Decide whether to include this pod based on scope
+                        if self._should_include_pod(service_name, target_namespace, scope):
+                            all_pods.append({
+                                'service_label': service_name, 
+                                'namespace': target_namespace
+                            })
+
+            # Step 3: Deduplication
+            unique_pods = self._deduplicate_pods(all_pods)
+            
+            if not unique_pods:
+                print(f"No suitable pods found in scope {scope.value}")
+                return []
+            
+            # Step 4: Random selection
+            selected = random.sample(unique_pods, min(count, len(unique_pods)))
+            return selected
+            
+        except Exception as e:
+            raise RuntimeError(f"Error getting pod list for scope {scope.value}: {e}") from e
+
+    def _get_target_namespaces(self, scope: PodScope) -> List[str]:
+        """Get target namespace list based on PodScope"""
+        try:
+            v1 = client.CoreV1Api()
+            target_namespaces = []
+            if scope == PodScope.NON_TARGET_NAMESPACE:
+                # Get all namespaces (excluding target namespace and system namespaces)
+                namespaces = v1.list_namespace()
+                for ns in namespaces.items:
+                    ns_name = ns.metadata.name
+                    if (ns_name != self.namespace and 
+                        not ns_name.startswith('kube-') and 
+                        not ns_name.startswith('chaos-') and
+                        not ns_name.startswith('khaos') and
+                        ns_name != 'default'):
+                        target_namespaces.append(ns_name)
+                # return target_namespaces
+                
+            elif scope == PodScope.ALL_PODS:
+                # Get all namespaces in cluster (excluding system namespaces)
+                namespaces = v1.list_namespace()
+                for ns in namespaces.items:
+                    ns_name = ns.metadata.name
+                    if (not ns_name.startswith('kube-') and 
+                        not ns_name.startswith('chaos-') and
+                        not ns_name.startswith('khaos') and
+                        ns_name != 'default'):
+                        target_namespaces.append(ns_name)
+                # return target_namespaces
+                
+            else:
+                # TARGET_SERVICE, TARGET_NAMESPACE, NON_TARGET_SERVICE
+                # These are all limited to target namespace
+                target_namespaces.append(self.namespace)
+
+            # select one namespace randomly
+            if target_namespaces:
+                return target_namespaces
+            else:
+                return []
+
+        except Exception as e:
+            raise RuntimeError(f"Error getting target namespaces: {e}") from e
+
+    def _should_include_pod(self, service_name: str, namespace: str, scope: PodScope) -> bool:
+        """Determine whether to include specified pod based on scope"""
+        if scope == PodScope.TARGET_SERVICE:
+            # Only include target services, and must be within target namespace
+            return (namespace == self.namespace and 
+                    service_name in self.target_services)
+        
+        elif scope == PodScope.NON_TARGET_SERVICE:
+            # Exclude target services, but must be within target namespace
+            return (namespace == self.namespace and 
+                    service_name not in self.target_services)
+        
+        elif scope == PodScope.TARGET_NAMESPACE:
+            # Include all services within target namespace
+            return namespace == self.namespace
+        
+        elif scope in [PodScope.NON_TARGET_NAMESPACE, PodScope.ALL_PODS]:
+            # For cross-namespace scenarios, include all valid services
+            return True
+        
+        return False
+
+    def _deduplicate_pods(self, all_pods: List[Dict[str, str]]) -> List[Dict[str, str]]:
+        """Deduplicate pods list"""
+        unique_pods = []
+        seen = set()
+        
+        for pod_info in all_pods:
+            identifier = f"{pod_info['service_label']}:{pod_info['namespace']}"
+            if identifier not in seen:
+                seen.add(identifier)
+                unique_pods.append(pod_info)
+        
+        return unique_pods
+
+    def select_random_experiment_type(self, fault_types: List[FaultType] = None, 
+                                    scopes: List[PodScope] = None) -> Optional[str]:
+        """Randomly select experiment type based on weights and filter conditions"""
+        # Filter qualifying experiment types
+        available_types = []
+        weights = []
+        
+        for exp_type, config in self.experiment_types.items():
+            # Check fault type filter
+            if fault_types and config["fault_type"] not in fault_types:
+                continue
+            
+            # Check scope filter
+            if scopes and not any(scope in config["scopes"] for scope in scopes):
+                continue
+            
+            available_types.append(exp_type)
+            weights.append(config["weight"])
+        
+        if not available_types:
+            print("No qualifying experiment types")
+            return None
+        
+        return random.choices(available_types, weights=weights, k=1)[0]
+
+    def generate_experiment_name(self, experiment_type: str) -> str:
+        """Generate unique experiment name"""
+        timestamp = int(time.time())
+        random_suffix = random.randint(1000, 9999)
+        return f"transient-{experiment_type}-{timestamp}-{random_suffix}"
+    
+    def _get_pod_label_selector(self, target_service: str, namespace: str) -> Dict[str, str]:
+        """Get correct label selector based on service name"""
+        try:
+            v1 = client.CoreV1Api()
+            pods = v1.list_namespaced_pod(namespace=namespace)
+            
+            for pod in pods.items:
+                labels = pod.metadata.labels or {}
+                
+                # Check different label formats
+                if "app.kubernetes.io/component" in labels and labels["app.kubernetes.io/component"] == target_service:
+                    return {"app.kubernetes.io/component": target_service}
+                elif "io.kompose.service" in labels and labels["io.kompose.service"] == target_service:
+                    return {"io.kompose.service": target_service}
+                elif "openebs.io/component-name" in labels and labels["openebs.io/component-name"] == target_service:
+                    return {"openebs.io/component-name": target_service}
+                elif "app.kubernetes.io/name" in labels and labels["app.kubernetes.io/name"] == target_service:
+                    return {"app.kubernetes.io/name": target_service}
+                elif "app" in labels and labels["app"] == target_service:
+                    return {"app": target_service}
+                elif "service" in labels and labels["service"] == target_service:
+                    return {"service": target_service}
+            
+            print(f"Label selector not found for service {target_service}")
+            return {}
+            
+        except Exception as e:
+            raise RuntimeError(f"Error getting label selector: {e}") from e
+
+    def _get_container_names(self, target_service: str, namespace: str) -> List[str]:
+        """Get container name list for specified service"""
+        try:
+            v1 = client.CoreV1Api()
+            pods = v1.list_namespaced_pod(namespace=namespace)
+            
+            for pod in pods.items:
+                labels = pod.metadata.labels or {}
+                
+                # Check if it's a pod of target service
+                service_match = False
+                if "app.kubernetes.io/component" in labels and labels["app.kubernetes.io/component"] == target_service:
+                    service_match = True
+                elif "io.kompose.service" in labels and labels["io.kompose.service"] == target_service:
+                    service_match = True
+                elif "app.kubernetes.io/name" in labels and labels["app.kubernetes.io/name"] == target_service:
+                    service_match = True
+                elif "service" in labels and labels["service"] == target_service:
+                    service_match = True
+                elif "openebs.io/component-name" in labels and labels["openebs.io/component-name"] == target_service:
+                    service_match = True
+                elif "app" in labels and labels["app"] == target_service:
+                    service_match = True
+                
+                if service_match and pod.spec.containers:
+                    # Return all container names of first matching pod
+                    container_names = [container.name for container in pod.spec.containers]
+                    print(f"Found containers for service {target_service}: {container_names}")
+                    return container_names
+            
+            print(f"Containers not found for service {target_service}")
+            return []
+            
+        except Exception as e:
+            raise RuntimeError(f"Error getting container names: {e}") from e
+
+# Usage example
+if __name__ == "__main__":
+    # Create generator
+    generator = TransientIssuesGenerator(
+        namespace="hotel-reservation",
+        target_services=["frontend"],  # Specify target services
+        min_duration=30,    # Minimum duration 30 seconds
+        max_duration=50    # Maximum duration 50 seconds
+    )
+    
+    # # Example 1: Only inject fail-stop type faults, scope limited to target service
+    # generator.start_continuous_injection(
+    #     fault_types=[FaultType.FAIL_STOP, FaultType.FAIL_SLOW],
+    #     scopes=[PodScope.ALL_PODS],
+    #     interval_min=5,
+    #     interval_max=30
+    # )
+    # time.sleep(30)  # Run for 30 seconds then stop
+    # Example 2: Manually inject a fail-slow type fault, scope within target namespace
+    experiment_name = generator.inject_transient_issue(
+        fault_types=[FaultType.FAIL_STOP],
+        scopes=[PodScope.ALL_PODS],
+        experiment="network-partition"
+    )
+    
+    # Example 3: View active experiments and statistics
+    active = generator.get_active_experiments()
+    stats = generator.get_statistics()
+    print("Currently active experiments:", active)
+    print("Statistics:", stats)
+    
+    # generator.stop_continuous_injection()
+
+    # Example 4: Cleanup all experiments (when program ends)
+    generator.cleanup_all_experiments()
diff --git a/sregym/generators/workload/__init__.py b/sregym/generators/workload/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/generators/workload/base.py b/sregym/generators/workload/base.py
new file mode 100644
index 0000000..5f6fe54
--- /dev/null
+++ b/sregym/generators/workload/base.py
@@ -0,0 +1,60 @@
+from abc import ABC, abstractmethod
+
+from pydantic.dataclasses import dataclass
+
+# Two types of workload generators:
+# 1. Constantly running workload generator
+# 2. Workload generator that runs for a fixed duration
+# By repeating type 2, we can always assume it's constantly running.
+
+# Two purposes:
+# 1. To generate traces
+# 2. Validation
+
+
+@dataclass
+class WorkloadEntry:
+    time: float  # Start time of the workload run
+    number: int  # Number of requests generated in this workload run
+    log: str  # Log of the workload run
+    ok: bool  # Indicates if the workload was successful
+
+
+class WorkloadManager(ABC):
+    """
+    Constantly running workload generator.
+    """
+
+    def __init__(self):
+        super().__init__()
+
+    @abstractmethod
+    def start(self, *args, **kwargs):
+        """
+        Start the workload generator.
+        """
+        pass
+
+    @abstractmethod
+    def stop(self, *args, **kwargs):
+        """
+        Stop the workload generator.
+        """
+        pass
+
+    @abstractmethod
+    def collect(self, number=100, since_seconds=None) -> list[WorkloadEntry]:
+        """
+        Run the workload generator until collected data is sufficient.
+        - Number of requests should be at least `number` starting from `since_seconds` ago.
+        - If `since_seconds` is not provided, it should start from the current time.
+        - `since_seconds` is a relative time in seconds, not an absolute timestamp.
+        """
+        pass
+
+    @abstractmethod
+    def recent_entries(self, duration=30) -> list[WorkloadEntry]:
+        """
+        Return recently collected data within the given duration (seconds).
+        """
+        pass
diff --git a/sregym/generators/workload/blueprint_hotel_work.py b/sregym/generators/workload/blueprint_hotel_work.py
new file mode 100644
index 0000000..d365ca7
--- /dev/null
+++ b/sregym/generators/workload/blueprint_hotel_work.py
@@ -0,0 +1,303 @@
+import time
+import threading
+from datetime import datetime
+
+import yaml
+from kubernetes import client, config
+from rich.console import Console
+
+import logging
+from sregym.generators.workload.base import WorkloadEntry
+from sregym.generators.workload.stream import StreamWorkloadManager
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.generators.noise.transient_issues.chaos_injector import ChaosInjector
+
+# Mimicked the Wrk2 class
+
+local_logger = logging.getLogger("all.infra.workload")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+
+class BHotelWrk:
+    """
+    Persistent workload generator
+    """
+
+    def __init__(self, tput: int, duration: str, multiplier: int):
+        self.tput = tput
+        self.duration = duration
+        self.multiplier = multiplier
+
+        config.load_kube_config()
+
+    def create_configmap(self, config_name, namespace):
+        api_instance = client.CoreV1Api()
+        bhotelwrk_job_configmap = TARGET_MICROSERVICES / "BlueprintHotelReservation" / "wlgen" / "wlgen_proc-configmap.yaml"
+        with open(bhotelwrk_job_configmap, 'r', encoding='utf-8') as f:
+            configmap_template = yaml.safe_load(f)
+
+        configmap_template['data']['TPUT'] = str(self.tput)
+        configmap_template['data']['DURATION'] = self.duration
+        configmap_template['data']['MULTIPLIER'] = str(self.multiplier)
+
+        try:
+            local_logger.info(f"Checking for existing ConfigMap '{config_name}'...")
+            api_instance.delete_namespaced_config_map(name=config_name, namespace=namespace)
+            local_logger.info(f"ConfigMap '{config_name}' deleted.")
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                local_logger.error(f"Error deleting ConfigMap '{config_name}': {e}")
+                return
+
+        try:
+            local_logger.info(f"Creating ConfigMap '{config_name}'...")
+            api_instance.create_namespaced_config_map(namespace=namespace, body=configmap_template)
+            local_logger.info(f"ConfigMap '{config_name}' created successfully.")
+        except client.exceptions.ApiException as e:
+            local_logger.error(f"Error creating ConfigMap '{config_name}': {e}")
+
+
+    def create_bhotelwrk_job(self, job_name, namespace):
+        bhotelwrk_job_yaml = TARGET_MICROSERVICES / "BlueprintHotelReservation" / "wlgen" / "wlgen_proc-job.yaml"
+        with open(bhotelwrk_job_yaml, "r") as f:
+            job_template = yaml.safe_load(f)
+
+        api_instance = client.BatchV1Api()
+        try:
+            existing_job = api_instance.read_namespaced_job(name=job_name, namespace=namespace)
+            if existing_job:
+                local_logger.info(f"Job '{job_name}' already exists. Deleting it...")
+                api_instance.delete_namespaced_job(
+                    name=job_name,
+                    namespace=namespace,
+                    body=client.V1DeleteOptions(propagation_policy="Foreground"),
+                )
+                self.wait_for_job_deletion(job_name, namespace)
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                local_logger.error(f"Error checking for existing job: {e}")
+                return
+
+        try:
+            response = api_instance.create_namespaced_job(namespace=namespace, body=job_template)
+            local_logger.info(f"Job created: {response.metadata.name}")
+        except client.exceptions.ApiException as e:
+            local_logger.error(f"Error creating job: {e}")
+
+    def start_workload(self,
+                       namespace,
+                       configmap_name = "bhotelwrk-wlgen-env",
+                       job_name = "bhotelwrk-wlgen-job"):
+
+        self.create_configmap(config_name=configmap_name, namespace=namespace)
+
+        self.create_bhotelwrk_job(job_name=job_name, namespace=namespace)
+
+    def stop_workload(self, namespace, job_name="bhotelwrk-wlgen-proc"):
+
+        api_instance = client.BatchV1Api()
+        try:
+            existing_job = api_instance.read_namespaced_job(name=job_name, namespace=namespace)
+            if existing_job:
+                local_logger.info(f"Stopping job '{job_name}'...")
+                api_instance.patch_namespaced_job(name=job_name, namespace=namespace, body={"spec": {"suspend": True}})
+                time.sleep(5)
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                local_logger.error(f"Error checking for existing job: {e}")
+                return
+
+    def wait_for_job_deletion(self, job_name, namespace, sleep=2, max_wait=60):
+        """Wait for a Kubernetes Job to be deleted before proceeding."""
+        api_instance = client.BatchV1Api()
+        console = Console()
+        waited = 0
+
+        while waited < max_wait:
+            try:
+                api_instance.read_namespaced_job(name=job_name, namespace=namespace)
+                time.sleep(sleep)
+                waited += sleep
+            except client.exceptions.ApiException as e:
+                if e.status == 404:
+                    console.log(f"[bold green]Job '{job_name}' successfully deleted.")
+                    return
+                else:
+                    console.log(f"[red]Error checking job deletion: {e}")
+                    raise
+
+        raise TimeoutError(f"[red]Timed out waiting for job '{job_name}' to be deleted.")
+
+
+class BHotelWrkWorkloadManager(StreamWorkloadManager):
+    """
+    Wrk2 workload generator for Kubernetes.
+    """
+
+    def __init__(self, wrk: BHotelWrk, namespace:str = 'default', job_name:str="bhotelwrk-wlgen-job", CPU_containment: bool = False):
+        super().__init__()
+        self.wrk = wrk
+        self.job_name = job_name
+        self.namespace = namespace
+        self.CPU_containment = CPU_containment
+        config.load_kube_config()
+        self.core_v1_api = client.CoreV1Api()
+        self.batch_v1_api = client.BatchV1Api() 
+
+        self.log_pool = []
+
+        # different from self.last_log_time, which is the timestamp of the whole entry
+        self.last_log_line_time = None
+
+    def create_task(self):
+        namespace = self.namespace
+        configmap_name = "bhotelwrk-wlgen-env"
+
+        self.wrk.create_configmap(
+            config_name=configmap_name,
+            namespace=namespace,
+        )
+
+        self.wrk.create_bhotelwrk_job(
+            job_name=self.job_name,
+            namespace=namespace,
+        )
+
+    def _parse_log(self, logs: list[str]) -> WorkloadEntry:
+        # -----------------------------------------------------------------------
+        #   10 requests in 10.00s, 2.62KB read
+        #   Non-2xx or 3xx responses: 10
+
+        number = -1
+        ok = True
+
+        try:
+            start_time = logs[1].split(": ")[1]
+            start_time = datetime.strptime(start_time, "%Y-%m-%dT%H:%M:%S.%fZ").timestamp()
+            number = int(logs[2].split(": ")[1])
+        except Exception as e:
+            local_logger.error(f"Error parsing log: {e}")
+            number = 0
+            start_time = -1
+
+        return WorkloadEntry(
+            time=start_time,
+            number=number,
+            log="\n".join([log for log in logs[7:]]),
+            ok=ok,
+        )
+
+    def retrievelog(self) -> list[WorkloadEntry]:
+        namespace = self.namespace
+        grouped_logs = []
+        pods = self.core_v1_api.list_namespaced_pod(namespace, label_selector=f"job-name={self.job_name}")
+        if len(pods.items) == 0:
+            raise Exception(f"No pods found for job {self.job_name} in namespace {namespace}")
+
+        try:
+            logs = self.core_v1_api.read_namespaced_pod_log(pods.items[0].metadata.name, namespace)
+            logs = logs.split("\n")
+        except Exception as e:
+            local_logger.error(f"Error retrieving logs from {self.job_name} : {e}")
+            return []
+
+        extracted_logs = self._extract_target_logs(logs, startlog="Finished all requests", endlog="End of latency distribution")
+        grouped_logs.append(self._parse_log(extracted_logs))
+        return grouped_logs
+
+    def _extract_target_logs(self, logs: list[str], startlog: str, endlog: str) -> list[str]:
+        start_index = None
+        end_index = None
+        
+        for i, log_line in enumerate(logs):
+            if startlog in log_line:
+                start_index = i
+            elif endlog in log_line and start_index is not None:
+                end_index = i
+                break
+        
+        if start_index is not None and end_index is not None:
+            return logs[start_index:end_index]
+        
+        return []
+
+    def _schedule_cpu_containment(self):
+        """
+        Schedule CPU containment injection and recovery based on workload start time.
+        """
+        if not self.CPU_containment:
+            return
+            
+        # Initialize fault injector
+        self.cpu_containment_injector = ChaosInjector(self.namespace)
+        
+        # Schedule CPU stress injection after 60 seconds
+        self.cpu_stress_timer = threading.Timer(60.0, self._inject_cpu_stress)
+        self.cpu_stress_timer.start()
+        local_logger.info("CPU stress injection scheduled for 60 seconds after workload start")
+        
+        # Schedule CPU stress recovery after 90 seconds
+        self.cpu_recovery_timer = threading.Timer(90.0, self._recover_cpu_stress)
+        self.cpu_recovery_timer.start()
+        local_logger.info("CPU stress recovery scheduled for 90 seconds after workload start")
+
+    def _inject_cpu_stress(self):
+        """
+        Inject CPU stress using the symptom fault injector.
+        """
+        try:
+            local_logger.info("Injecting CPU stress...")
+            # You may need to adjust deployment_name and microservice based on your setup
+            experiment_name = f"cpu-stress-all-pods"
+            chaos_experiment = {
+                "apiVersion": "chaos-mesh.org/v1alpha1",
+                "kind": "StressChaos",
+                "metadata": {
+                    "name": experiment_name,
+                    "namespace": 'chaos-mesh',
+                },
+                "spec": {
+                    "mode": "all",
+                    "selector": {
+                        "namespaces": [self.namespace],
+                    },
+                    "stressors": {
+                        "cpu": {
+                            "workers": 30,
+                            "load": 90,
+                        }
+                    },
+                },
+            }
+            self.cpu_containment_injector.create_chaos_experiment(chaos_experiment, experiment_name)
+            start_time = datetime.now().strftime("%Y/%m/%d %H:%M:%S")
+            local_logger.info(f"[{start_time}] Injecting CPU stress...")
+            self.current_experiment_name = experiment_name  # Save the current experiment name
+            local_logger.info("CPU stress injection completed")
+        except Exception as e:
+            local_logger.error(f"Error injecting CPU stress: {e}")
+
+    def _recover_cpu_stress(self):
+        """
+        Recover from CPU stress by deleting the ChaosMesh experiment.
+        """
+        try:
+            local_logger.info("Recovering from CPU stress...")
+            
+            if hasattr(self, 'current_experiment_name'):
+                self.cpu_containment_injector.delete_chaos_experiment(self.current_experiment_name)
+                local_logger.info("CPU stress recovery completed for all pods")
+            else:
+                local_logger.error("No active CPU stress experiment found")
+                
+        except Exception as e:
+            local_logger.error(f"Error recovering from CPU stress: {e}")
+
+    def start(self):
+        local_logger.info("Start Workload with Blueprint Hotel Worklnload Manager")
+        self.create_task()
+        self._schedule_cpu_containment()
+
+    def stop(self):
+        local_logger.info("Stop Workload with Blueprint Hotel Workload Manager")
+        self.wrk.stop_workload(job_name=self.job_name, namespace=self.namespace)
diff --git a/sregym/generators/workload/locust-fetcher-template.yaml b/sregym/generators/workload/locust-fetcher-template.yaml
new file mode 100644
index 0000000..fd0ca99
--- /dev/null
+++ b/sregym/generators/workload/locust-fetcher-template.yaml
@@ -0,0 +1,28 @@
+apiVersion: v1
+kind: Pod
+metadata:
+  name: locust-fetcher
+  labels:
+    app: locust-fetcher
+    job: workload
+spec:
+  containers:
+  - name: fetcher
+    image: python:3.12-slim
+    command: ["bash", "-c"]
+    args: # Another choice: use requests
+      - |
+        apt-get update -qq && apt-get install -y -qq curl && rm -rf /var/lib/apt/lists/*
+        round=0
+        while true; do
+          echo "Running Locust on round #${round}"
+          round=$((round + 1))
+          curl -s $LOCUST_URL/stats/requests | python -m json.tool --compact
+          curl -s $LOCUST_URL/stats/reset > /dev/null
+          sleep $INTERVAL_SECONDS
+        done
+    env:
+    - name: LOCUST_URL
+      value: "http://load-generator:8089"
+    - name: INTERVAL_SECONDS
+      value: "10"
\ No newline at end of file
diff --git a/sregym/generators/workload/locust.py b/sregym/generators/workload/locust.py
new file mode 100644
index 0000000..109f6ce
--- /dev/null
+++ b/sregym/generators/workload/locust.py
@@ -0,0 +1,204 @@
+import json
+import math
+import time
+from datetime import datetime
+
+import yaml
+from kubernetes import client, config, stream
+
+from sregym.generators.workload.base import WorkloadEntry
+from sregym.generators.workload.stream import STREAM_WORKLOAD_EPS, StreamWorkloadManager
+from sregym.paths import BASE_DIR
+from sregym.service.kubectl import KubeCtl
+
+
+import logging
+local_logger = logging.getLogger("all.infra.workload")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+
+class LocustWorkloadManager(StreamWorkloadManager):
+    def __init__(self, namespace: str, locust_url: str):
+        super().__init__()
+
+        self.namespace = namespace
+        self.locust_url = locust_url
+
+        self.log_pool = []
+        self.last_log_line_time = None
+
+        config.load_kube_config()
+        self.core_v1_api = client.CoreV1Api()
+        
+        self.kubectl = KubeCtl()
+
+    def remove_fetcher(self):
+        try:
+            pods = self.core_v1_api.list_namespaced_pod(namespace=self.namespace, label_selector="app=locust-fetcher")
+            if pods.items:
+                print("Found locust-fetcher pod, removing it...")
+                self.core_v1_api.delete_namespaced_pod(
+                    name=pods.items[0].metadata.name,
+                    namespace=self.namespace,
+                    body=client.V1DeleteOptions(grace_period_seconds=0, propagation_policy="Background"),
+                )
+                while True:
+                    time.sleep(5)
+                    pods = self.core_v1_api.list_namespaced_pod(
+                        namespace=self.namespace, label_selector="app=locust-fetcher"
+                    )
+                    if not pods.items:
+                        break
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                print(f"Error removing pod: {e}")
+                return
+
+    def create_fetcher(self):
+        self.remove_fetcher()
+
+        wrk_job_yaml = BASE_DIR / "generators" / "workload" / "locust-fetcher-template.yaml"
+        with open(wrk_job_yaml, "r") as f:
+            job_template = yaml.safe_load(f)
+        envs = job_template["spec"]["containers"][0]["env"]
+        for i, env in enumerate(envs):
+            if env["name"] == "LOCUST_URL":
+                envs[i]["value"] = f"http://{self.locust_url}"
+                break
+
+        try:
+            response = self.core_v1_api.create_namespaced_pod(
+                namespace=self.namespace,
+                body=job_template,
+            )
+            print("Waiting for locust-fetcher pod to be created...")
+            while True:
+                pod = self.core_v1_api.read_namespaced_pod_status(
+                    name="locust-fetcher",
+                    namespace=self.namespace,
+                )
+                conditions = pod.status.conditions or []
+                ready = any(cond.type == "Ready" and cond.status == "True" for cond in conditions)
+                if ready:
+                    break
+                time.sleep(5)
+            print(f"Pod locust-fetcher created.")
+        except client.exceptions.ApiException as e:
+            print(f"Error creating pod: {e}")
+            return
+
+    def _parse_log(self, log_lines: list[dict]) -> WorkloadEntry:
+        if "Running Locust on round #" not in log_lines[0]["content"]:
+            raise ValueError("Log does not contain expected start pattern.")
+        if len(log_lines) != 2:
+            raise ValueError("Log does not contain exactly two lines for parsing.")
+
+        parsed_log = json.loads(log_lines[1]["content"])
+
+        start_time = log_lines[1]["time"][0:26] + "Z"
+        start_time = datetime.strptime(start_time, "%Y-%m-%dT%H:%M:%S.%fZ").timestamp()
+
+        has_error = False
+
+        for items in parsed_log.get("errors", []):
+            if items.get("occurrences", 0) > 0:
+                has_error = True
+                break
+
+        num_requests = 0
+
+        for items in parsed_log.get("stats", []):
+            if items.get("safe_name", "") == "Aggregated":
+                num_requests = items.get("num_requests", 0)
+                break
+
+        return WorkloadEntry(
+            time=start_time,
+            number=num_requests,
+            log=log_lines[1]["content"],
+            ok=not has_error,
+        )
+
+    def retrievelog(self, start_time: float | None = None) -> list[WorkloadEntry]:
+        pods = self.core_v1_api.list_namespaced_pod(self.namespace, label_selector=f"app=locust-fetcher")
+
+        if len(pods.items) == 0:
+            raise Exception(f"No load-generator found in namespace {self.namespace}")
+
+        kwargs = {
+            "timestamps": True,
+        }
+        if start_time is not None:
+            resp = stream.stream(
+                self.core_v1_api.connect_get_namespaced_pod_exec,
+                name=pods.items[0].metadata.name,
+                namespace=self.namespace,
+                command=["date", "-Ins"],
+                stderr=True,
+                stdin=False,
+                stdout=True,
+                tty=False,
+            )
+
+            shorter = resp.strip()[:26]
+            pod_current_time = datetime.strptime(shorter, "%Y-%m-%dT%H:%M:%S,%f").timestamp()
+            # Use the difference between pod's current time and requested start_time
+            kwargs["since_seconds"] = math.ceil(pod_current_time - start_time) + STREAM_WORKLOAD_EPS
+
+        try:
+            logs = self.core_v1_api.read_namespaced_pod_log(pods.items[0].metadata.name, self.namespace, **kwargs)
+            logs = logs.split("\n")
+        except Exception as e:
+            print(f"Error retrieving logs from {self.job_name} : {e}")
+            return []
+
+        for log in logs:
+            timestamp = log[0:30]
+            content = log[31:]
+
+            # last_log_line_time: in string format, e.g. "2025-01-01T12:34:56.789012345Z"
+            if self.last_log_line_time is not None and timestamp <= self.last_log_line_time:
+                continue
+
+            self.last_log_line_time = timestamp
+            self.log_pool.append(dict(time=timestamp, content=content))
+
+        grouped_logs = []
+
+        last_end = 0
+        for i, log in enumerate(self.log_pool):
+            if "Running Locust on round #" in log["content"]:
+                try:
+                    grouped_logs.append(self._parse_log(self.log_pool[last_end:i]))
+                except Exception as e:
+                    # Skip initialization logs and json parsing errors
+                    pass
+                last_end = i
+
+        self.log_pool = self.log_pool[last_end:]
+
+        return grouped_logs
+
+    def start(self):
+        local_logger.info("Start Workload with Locust")
+        local_logger.info("AstronomyShop has a built-in load generator.")
+        local_logger.info("Creating locust-fetcher pod...")
+        self.create_fetcher()
+        local_logger.debug("Workload started")
+
+    def stop(self):
+        local_logger.info("Stop Workload with Locust")
+        local_logger.info("AstronomyShop's built-in load generator is automatically managed.")
+        local_logger.info("Removing locust-fetcher pod if it exists...")
+        self.remove_fetcher()
+        local_logger.debug("Workload stopped")
+        
+        
+    def change_users(self, number: int, namespace: str):
+        increase_user_cmd = f"kubectl set env deployment/load-generator LOCUST_USERS={number} -n {namespace}"
+        self.kubectl.exec_command(increase_user_cmd)
+        
+    def change_spawn_rate(self, rate: int, namespace: str):
+        increase_spawn_rate_cmd = f"kubectl set env deployment/load-generator LOCUST_SPAWN_RATE={rate} -n {namespace}"
+        self.kubectl.exec_command(increase_spawn_rate_cmd)
+        
\ No newline at end of file
diff --git a/sregym/generators/workload/stream.py b/sregym/generators/workload/stream.py
new file mode 100644
index 0000000..4c7ea57
--- /dev/null
+++ b/sregym/generators/workload/stream.py
@@ -0,0 +1,105 @@
+import time
+from abc import abstractmethod
+from bisect import bisect_left
+
+from sregym.generators.workload.base import WorkloadEntry, WorkloadManager
+
+STREAM_WORKLOAD_TIMEOUT = 60 * 1.5  # 1.5 minutes
+STREAM_WORKLOAD_EPS = 10  # 5 seconds
+
+
+class StreamWorkloadManager(WorkloadManager):
+    """
+    Stream-like workload manager
+    """
+
+    log_history: list[WorkloadEntry] = []
+    last_log_time: float | None = None  # The timestamp inside the pod
+
+    def __init__(self):
+        super().__init__()
+
+        self.last_log_time = None
+
+    @abstractmethod
+    def retrievelog(self, start_time: float | None = None) -> list[WorkloadEntry]:
+        """
+        Retrieve new logs. Like a stream, it should return only new logs since the last retrieval.
+        """
+
+        raise NotImplementedError("Subclasses must implement this method.")
+
+    def _extractlog(self):
+        """
+        Stream-like log extraction.
+        """
+        while True:
+            # In case of byte limits
+            new_logs = self.retrievelog(self.last_log_time)
+
+            if not new_logs:
+                return
+
+            if not sorted(new_logs, key=lambda x: x.time):
+                raise ValueError("Logs are not sorted by time.")
+
+            first_greater = 0
+            if self.last_log_time is not None:
+                while first_greater < len(new_logs) and new_logs[first_greater].time <= self.last_log_time:
+                    first_greater += 1
+
+            if first_greater < len(new_logs):
+                self.log_history.extend(new_logs[first_greater:])
+                self.last_log_time = new_logs[-1].time
+
+    def collect(self, number=100, since_seconds=None) -> list[WorkloadEntry]:
+        """
+        Run the workload generator until collected data is sufficient.
+        """
+        if since_seconds is not None:
+            if not isinstance(since_seconds, (int, float)):
+                raise TypeError("since_seconds must be a int or float")
+            if since_seconds > self.last_log_time:
+                since_seconds = self.last_log_time
+
+        # I put it here becuase the first run of it may be very late
+        self._extractlog()
+
+        collect_start_time = time.time()
+
+        if since_seconds is None or self.last_log_time is None:
+            start_entry = len(self.log_history)
+        else:
+            start_entry = bisect_left(
+                self.log_history,
+                self.last_log_time - since_seconds,
+                key=lambda x: x.time if isinstance(x, WorkloadEntry) else x,
+            )
+
+        end_entry = start_entry
+
+        accumulated_logs = 0
+
+        while time.time() - collect_start_time < STREAM_WORKLOAD_TIMEOUT:
+            while end_entry < len(self.log_history):
+                accumulated_logs += self.log_history[end_entry].number
+                end_entry += 1
+            if accumulated_logs >= number:
+                return self.log_history[start_entry:end_entry]
+            time.sleep(5)
+            self._extractlog()
+
+        raise TimeoutError("Workload generator did not collect enough data within the timeout period.")
+
+    def recent_entries(self, duration=30) -> list[WorkloadEntry]:
+        """
+        Return recently collected data within the given duration (seconds).
+        """
+        self._extractlog()
+        start_time = self.last_log_time - duration
+        start_entry = bisect_left(
+            self.log_history,
+            start_time,
+            key=lambda x: x.time if isinstance(x, WorkloadEntry) else x,
+        )
+        return self.log_history[start_entry:]
diff --git a/sregym/generators/workload/trainticket_locust.py b/sregym/generators/workload/trainticket_locust.py
new file mode 100644
index 0000000..a92f4b5
--- /dev/null
+++ b/sregym/generators/workload/trainticket_locust.py
@@ -0,0 +1,152 @@
+"""TrainTicket Locust Workload Manager
+
+Extends the base LocustWorkloadManager to provide TrainTicket-specific
+workload generation capabilities.
+"""
+
+import logging
+from typing import Optional, Dict, Any
+
+from sregym.generators.workload.locust import LocustWorkloadManager
+from sregym.service.kubectl import KubeCtl
+
+logger = logging.getLogger(__name__)
+
+
+class TrainTicketLocustWorkloadManager(LocustWorkloadManager):
+    """TrainTicket-specific Locust workload manager.
+    
+    Manages Locust load generation for TrainTicket application,
+    including specific scenarios for fault injection testing.
+    """
+    
+    def __init__(self, namespace: str = "train-ticket", kubectl: Optional[KubeCtl] = None):
+        """Initialize TrainTicket Locust workload manager.
+        
+        Args:
+            namespace: Kubernetes namespace
+            kubectl: Optional kubectl instance
+        """
+        super().__init__(namespace=namespace, kubectl=kubectl)
+        self.locust_master_host = "locust-master"
+        self.locust_web_port = 8089
+        
+    def start(self):
+        """Start TrainTicket workload generation."""
+        try:
+            # First check if Locust is deployed
+            if not self._is_locust_ready():
+                logger.error("Locust deployment not ready")
+                return
+                
+            # Start the fetcher pod
+            super().start()
+            
+            print("[TrainTicket Locust] Workload manager started")
+            print(f"[TrainTicket Locust] Access UI at http://<node-ip>:30089 (admin/admin)")
+            
+        except Exception as e:
+            logger.error(f"Error starting TrainTicket workload: {e}")
+            
+    def trigger_f1_scenario(self, user_count: int = 10, spawn_rate: int = 2):
+        """Trigger F1 fault scenario with order creation and cancellation.
+        
+        Args:
+            user_count: Number of simulated users
+            spawn_rate: Users spawned per second
+        """
+        try:
+            print(f"[TrainTicket Locust] Triggering F1 scenario with {user_count} users")
+            
+            # Start the swarm with specific parameters
+            result = self.kubectl.exec_command(
+                f"kubectl exec deployment/locust-master -n {self.namespace} -- "
+                f"curl -X POST http://localhost:{self.locust_web_port}/swarm "
+                f"-d 'user_count={user_count}&spawn_rate={spawn_rate}'"
+            )
+            
+            if result:
+                print("[TrainTicket Locust] F1 scenario started - users will create and cancel orders")
+                print("[TrainTicket Locust] This will trigger the 8-second delay fault if enabled")
+            else:
+                print("[TrainTicket Locust] Failed to start F1 scenario")
+                
+        except Exception as e:
+            logger.error(f"Error triggering F1 scenario: {e}")
+            
+    def stop_workload(self):
+        """Stop the current workload."""
+        try:
+            result = self.kubectl.exec_command(
+                f"kubectl exec deployment/locust-master -n {self.namespace} -- "
+                f"curl -X GET http://localhost:{self.locust_web_port}/stop"
+            )
+            
+            if result:
+                print("[TrainTicket Locust] Workload stopped")
+            else:
+                print("[TrainTicket Locust] Failed to stop workload")
+                
+        except Exception as e:
+            logger.error(f"Error stopping workload: {e}")
+            
+    def get_stats(self) -> Dict[str, Any]:
+        """Get current Locust statistics.
+        
+        Returns:
+            Dict containing current workload statistics
+        """
+        try:
+            result = self.kubectl.exec_command(
+                f"kubectl exec deployment/locust-master -n {self.namespace} -- "
+                f"curl -s http://localhost:{self.locust_web_port}/stats/requests"
+            )
+            
+            if result:
+                import json
+                return json.loads(result)
+            else:
+                return {}
+                
+        except Exception as e:
+            logger.error(f"Error getting stats: {e}")
+            return {}
+            
+    def _is_locust_ready(self) -> bool:
+        """Check if Locust deployment is ready.
+        
+        Returns:
+            bool: True if Locust is deployed and ready
+        """
+        try:
+            # Check if Locust master is running
+            result = self.kubectl.exec_command(
+                f"kubectl get deployment locust-master -n {self.namespace} "
+                f"-o jsonpath='{{.status.readyReplicas}}'"
+            )
+            
+            return result == "1"
+            
+        except Exception as e:
+            logger.error(f"Error checking Locust readiness: {e}")
+            return False
+            
+    def set_target_host(self, host: str):
+        """Update the target host for load generation.
+        
+        Args:
+            host: New target host URL
+        """
+        try:
+            # Update the Locust target
+            result = self.kubectl.exec_command(
+                f"kubectl exec deployment/locust-master -n {self.namespace} -- "
+                f"curl -X POST http://localhost:{self.locust_web_port}/swarm "
+                f"-d 'host={host}'"
+            )
+            
+            if result:
+                print(f"[TrainTicket Locust] Target host updated to: {host}")
+                
+        except Exception as e:
+            logger.error(f"Error updating target host: {e}")
diff --git a/sregym/generators/workload/wrk-job-template.yaml b/sregym/generators/workload/wrk-job-template.yaml
new file mode 100644
index 0000000..3beee3d
--- /dev/null
+++ b/sregym/generators/workload/wrk-job-template.yaml
@@ -0,0 +1,22 @@
+apiVersion: batch/v1
+kind: Job
+metadata:
+  name: wrk2-job
+  labels:
+    job: workload
+spec:
+  template:
+    spec:
+      restartPolicy: Never
+      containers:
+        - name: wrk2
+          image: deathstarbench/wrk2-client:latest
+          args: []
+          volumeMounts:
+            - name: wrk2-scripts
+              mountPath: /scripts
+              readOnly: true
+      volumes:
+        - name: wrk2-scripts
+          configMap:
+            name: wrk2-payload-script
\ No newline at end of file
diff --git a/sregym/generators/workload/wrk2.py b/sregym/generators/workload/wrk2.py
new file mode 100644
index 0000000..49fb9ef
--- /dev/null
+++ b/sregym/generators/workload/wrk2.py
@@ -0,0 +1,323 @@
+import math
+import textwrap
+import time
+from datetime import datetime
+from pathlib import Path
+
+import yaml
+from kubernetes import client, config, stream
+from rich.console import Console
+
+from sregym.generators.workload.base import WorkloadEntry
+from sregym.generators.workload.stream import STREAM_WORKLOAD_EPS, StreamWorkloadManager
+from sregym.paths import BASE_DIR
+
+
+import logging
+local_logger = logging.getLogger("all.infra.workload")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+
+class Wrk2:
+    """
+    Persistent workload generator
+    """
+
+    def __init__(self, rate, dist="norm", connections=2, duration=6, threads=2, latency=True, namespace="default"):
+        self.rate = rate
+        self.dist = dist
+        self.connections = connections
+        self.duration = duration
+        self.threads = threads
+        self.latency = latency
+        self.namespace = namespace
+
+        config.load_kube_config()
+
+    def create_configmap(self, name, namespace, payload_script_path, url):
+        with open(payload_script_path, "r") as script_file:
+            script_content = script_file.read()
+
+        workload_script = f"""
+        #!/bin/bash
+        round=0
+        while true; do
+            echo "Running wrk2 on round #${{round}}"
+            round=$((round + 1))
+
+            wrk -D {self.dist} \\
+            -t {str(self.threads)} \\
+            -c {str(self.connections)} \\
+            -d {self.duration}s \\
+            -s /scripts/{payload_script_path.name} \\
+            {url} \\
+            -R {str(self.rate)} \\
+            -L {"--latency" if self.latency else ""}
+            sleep 1
+        done
+        """
+
+        workload_script = textwrap.dedent(workload_script).strip()
+
+        configmap_body = client.V1ConfigMap(
+            metadata=client.V1ObjectMeta(name=name),
+            data={
+                payload_script_path.name: script_content,
+                "wrk2-workload.sh": workload_script,
+            },
+        )
+
+        api_instance = client.CoreV1Api()
+        try:
+            local_logger.info(f"Checking for existing ConfigMap '{name}'...")
+            api_instance.delete_namespaced_config_map(name=name, namespace=self.namespace)
+            local_logger.info(f"ConfigMap '{name}' deleted.")
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                local_logger.error(f"Error deleting ConfigMap '{name}': {e}")
+                return
+
+        try:
+            local_logger.info(f"Creating ConfigMap '{name}'...")
+            api_instance.create_namespaced_config_map(namespace=self.namespace, body=configmap_body)
+            local_logger.info(f"ConfigMap '{name}' created successfully.")
+        except client.exceptions.ApiException as e:
+            local_logger.error(f"Error creating ConfigMap '{name}': {e}")
+
+    def create_wrk_job(self, job_name, namespace, payload_script):
+        wrk_job_yaml = BASE_DIR / "generators" / "workload" / "wrk-job-template.yaml"
+        with open(wrk_job_yaml, "r") as f:
+            job_template = yaml.safe_load(f)
+
+        job_template["metadata"]["name"] = job_name
+        container = job_template["spec"]["template"]["spec"]["containers"][0]
+        container["args"] = ["/bin/bash", "/scripts/wrk2-workload.sh"]
+
+        job_template["spec"]["template"]["spec"]["volumes"] = [
+            {
+                "name": "wrk2-scripts",
+                "configMap": {"name": "wrk2-payload-script"},
+            }
+        ]
+        container["volumeMounts"] = [
+            {
+                "name": "wrk2-scripts",
+                "mountPath": f"/scripts/{payload_script}",
+                "subPath": payload_script,
+            },
+            {
+                "name": "wrk2-scripts",
+                "mountPath": f"/scripts/wrk2-workload.sh",
+                "subPath": "wrk2-workload.sh",
+            },
+        ]
+
+        api_instance = client.BatchV1Api()
+        try:
+            existing_job = api_instance.read_namespaced_job(name=job_name, namespace=self.namespace)
+            if existing_job:
+                local_logger.info(f"Job '{job_name}' already exists. Deleting it...")
+                api_instance.delete_namespaced_job(
+                    name=job_name,
+                    namespace=self.namespace,
+                    body=client.V1DeleteOptions(propagation_policy="Foreground"),
+                )
+                self.wait_for_job_deletion(job_name, self.namespace)
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                local_logger.error(f"Error checking for existing job: {e}")
+                return
+
+        try:
+            response = api_instance.create_namespaced_job(namespace=self.namespace, body=job_template)
+            local_logger.info(f"Job created: {response.metadata.name}")
+        except client.exceptions.ApiException as e:
+            local_logger.error(f"Error creating job: {e}")
+
+    def start_workload(self, payload_script, url):
+        configmap_name = "wrk2-payload-script"
+
+        self.create_configmap(name=configmap_name, namespace=self.namespace, payload_script_path=payload_script, url=url)
+
+        self.create_wrk_job(job_name="wrk2-job", namespace=self.namespace, payload_script=payload_script.name)
+
+    def stop_workload(self, job_name="wrk2-job"):
+        api_instance = client.BatchV1Api()
+        try:
+            existing_job = api_instance.read_namespaced_job(name=job_name, namespace=self.namespace)
+            if existing_job:
+                local_logger.info(f"Stopping job '{job_name}'...")
+                # @daklqw: I think there might be a better way
+                api_instance.patch_namespaced_job(name=job_name, namespace=self.namespace, body={"spec": {"suspend": True}})
+                time.sleep(5)
+        except client.exceptions.ApiException as e:
+            if e.status != 404:
+                local_logger.error(f"Error checking for existing job: {e}")
+                return
+
+    def wait_for_job_deletion(self, job_name, namespace, sleep=2, max_wait=60):
+        """Wait for a Kubernetes Job to be deleted before proceeding."""
+        api_instance = client.BatchV1Api()
+        console = Console()
+        waited = 0
+
+        while waited < max_wait:
+            try:
+                api_instance.read_namespaced_job(name=job_name, namespace=self.namespace)
+                time.sleep(sleep)
+                waited += sleep
+            except client.exceptions.ApiException as e:
+                if e.status == 404:
+                    console.log(f"[bold green]Job '{job_name}' successfully deleted.")
+                    return
+                else:
+                    console.log(f"[red]Error checking job deletion: {e}")
+                    raise
+
+        raise TimeoutError(f"[red]Timed out waiting for job '{job_name}' to be deleted.")
+
+
+class Wrk2WorkloadManager(StreamWorkloadManager):
+    """
+    Wrk2 workload generator for Kubernetes.
+    """
+
+    def __init__(self, wrk: Wrk2, payload_script: Path, url, job_name="wrk2-job", namespace="default"):
+        super().__init__()
+        self.wrk = wrk
+        self.payload_script = payload_script
+        self.url = url
+        self.job_name = job_name
+        self.namespace = namespace
+
+        config.load_kube_config()
+        self.core_v1_api = client.CoreV1Api()
+        self.batch_v1_api = client.BatchV1Api()
+
+        self.log_pool = []
+
+        # different from self.last_log_time, which is the timestamp of the whole entry
+        self.last_log_line_time = None
+
+    def create_task(self):
+        configmap_name = "wrk2-payload-script"
+
+        self.wrk.create_configmap(
+            name=configmap_name,
+            namespace=self.namespace,
+            payload_script_path=self.payload_script,
+            url=self.url,
+        )
+
+        self.wrk.create_wrk_job(
+            job_name=self.job_name,
+            namespace=self.namespace,
+            payload_script=self.payload_script.name,
+        )
+
+    def _parse_log(self, logs: list[tuple[str, str]]) -> WorkloadEntry:
+        # -----------------------------------------------------------------------
+        #   10 requests in 10.00s, 2.62KB read
+        #   Non-2xx or 3xx responses: 10
+
+        number = -1
+        ok = True
+
+        try:
+            start_time = logs[0]["time"][0:26] + "Z"  # Convert to ISO 8601 format
+            start_time = datetime.strptime(start_time, "%Y-%m-%dT%H:%M:%S.%fZ").timestamp()
+
+            for i, part in enumerate(logs):
+                log = part["content"]
+                if "-" * 35 in log and "requests in" in logs[i + 1]["content"]:
+                    parts = logs[i + 1]["content"].split(" ")
+                    for j, part in enumerate(parts):
+                        if part != "":
+                            number = parts[j]
+                            assert j + 1 < len(parts) and parts[j + 1] == "requests"
+                            break
+                if "Non-2xx or 3xx responses" in log:
+                    ok = False
+
+            number = int(number)
+        except Exception as e:
+            local_logger.error(f"Error parsing log: {e}")
+            number = 0
+            start_time = -1
+
+        return WorkloadEntry(
+            time=start_time,
+            number=number,
+            log="\n".join([part["content"] for part in logs]),
+            ok=ok,
+        )
+
+    def retrievelog(self, start_time: float | None = None) -> list[WorkloadEntry]:
+        pods = self.core_v1_api.list_namespaced_pod(self.namespace, label_selector=f"job-name={self.job_name}")
+        if len(pods.items) == 0:
+            raise Exception(f"No pods found for job {self.job_name} in namespace {self.namespace}")
+
+        kwargs = {
+            "timestamps": True,
+        }
+        if start_time is not None:
+            # Get the current time inside the pod by executing 'date +%s' in the pod
+            resp = stream.stream(
+                self.core_v1_api.connect_get_namespaced_pod_exec,
+                name=pods.items[0].metadata.name,
+                namespace=self.namespace,
+                command=["date", "-Ins"],
+                stderr=True,
+                stdin=False,
+                stdout=True,
+                tty=False,
+            )
+
+            # 2025-01-01T12:34:56,123456
+            shorter = resp.strip()[:26]
+            pod_current_time = datetime.strptime(shorter, "%Y-%m-%dT%H:%M:%S,%f").timestamp()
+            # Use the difference between pod's current time and requested start_time
+            kwargs["since_seconds"] = math.ceil(pod_current_time - start_time) + STREAM_WORKLOAD_EPS
+
+        try:
+            logs = self.core_v1_api.read_namespaced_pod_log(pods.items[0].metadata.name, self.namespace, **kwargs)
+            logs = logs.split("\n")
+        except Exception as e:
+            local_logger.error(f"Error retrieving logs from {self.job_name} : {e}")
+            return []
+
+        for log in logs:
+            timestamp = log[0:30]
+            content = log[31:]
+
+            # last_log_line_time: in string format, e.g. "2025-01-01T12:34:56.789012345Z"
+            if self.last_log_line_time is not None and timestamp <= self.last_log_line_time:
+                continue
+
+            self.last_log_line_time = timestamp
+            self.log_pool.append(dict(time=timestamp, content=content))
+
+        # End pattern is:
+        #   - Requests/sec:
+        #   - Transfer/sec:
+
+        grouped_logs = []
+
+        last_end = 0
+        for i, log in enumerate(self.log_pool):
+            if (i > 0 and "Requests/sec:" in self.log_pool[i - 1]["content"]) and "Transfer/sec:" in log["content"]:
+                result = self._parse_log(self.log_pool[last_end : i + 1])
+                grouped_logs.append(result)
+                last_end = i + 1
+
+        self.log_pool = self.log_pool[last_end:]
+
+        return grouped_logs
+
+    def start(self):
+        local_logger.info("Start Workload with Wrk2")
+        self.create_task()
+
+    def stop(self):
+        local_logger.info("Stop Workload of Wrk2")
+        self.wrk.stop_workload(job_name=self.job_name)
diff --git a/sregym/observer/filebeat/.helmignore b/sregym/observer/filebeat/.helmignore
new file mode 100644
index 0000000..516d3f8
--- /dev/null
+++ b/sregym/observer/filebeat/.helmignore
@@ -0,0 +1,2 @@
+tests/
+.pytest_cache/
diff --git a/sregym/observer/filebeat/Chart.yaml b/sregym/observer/filebeat/Chart.yaml
new file mode 100644
index 0000000..f43e326
--- /dev/null
+++ b/sregym/observer/filebeat/Chart.yaml
@@ -0,0 +1,12 @@
+apiVersion: v1
+description: Official Elastic helm chart for Filebeat
+home: https://github.com/elastic/helm-charts
+maintainers:
+  - email: helm-charts@elastic.co
+    name: Elastic
+name: filebeat
+version: 8.7.1
+appVersion: 8.7.1
+sources:
+  - https://github.com/elastic/beats
+icon: https://helm.elastic.co/icons/beats.png
diff --git a/sregym/observer/filebeat/Makefile b/sregym/observer/filebeat/Makefile
new file mode 100644
index 0000000..143a1d9
--- /dev/null
+++ b/sregym/observer/filebeat/Makefile
@@ -0,0 +1 @@
+include ../helpers/common.mk
diff --git a/sregym/observer/filebeat/README.md b/sregym/observer/filebeat/README.md
new file mode 100644
index 0000000..3cdfbec
--- /dev/null
+++ b/sregym/observer/filebeat/README.md
@@ -0,0 +1,278 @@
+
+```shell
+helm install filebeat ./ -n observe
+```
+
+Change the namespace to capture the log in the `values.yaml`.
+
+## Filebeat Helm Chart
+
+<!-- [![Build Status](https://img.shields.io/jenkins/s/https/devops-ci.elastic.co/job/elastic+helm-charts+main.svg)](https://devops-ci.elastic.co/job/elastic+helm-charts+main/)  -->
+[![Artifact HUB](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/elastic)](https://artifacthub.io/packages/search?repo=elastic)
+
+This Helm chart is a lightweight way to configure and run our official
+[Filebeat Docker image][].
+
+> **Warning**
+> When it comes to running the Elastic on Kubernetes infrastructure, we
+> recommend [Elastic Cloud on Kubernetes][] (ECK) as the best way to run and manage
+> the Elastic Stack.
+>
+> ECK offers many operational benefits for both our basic-tier and our
+> enterprise-tier customers, such as spinning up cluster nodes that were lost on
+> failed infrastructure, seamless upgrades, rolling cluster changes, and much
+> much more.
+>
+> With the release of the Elastic Stack Helm charts for Elastic version 8.5.1,
+> we are handing over the ongoing maintenance of our Elastic Stack Helm charts
+> to the community and contributors. This repository will finally be archived
+> after 6 months time. Elastic Stacks deployed on Kubernetes through Helm charts
+> will still be fully supported under EOL limitations.
+>
+> Since we want to provide an even better experience for our customers by
+> running the Elastic Stack on Kubernetes, we will continue maintaining the
+> Helm charts applicable to ECK Custom Resources. These charts can be found in
+> the [ECK repository][eck-charts].
+>
+> Helm charts will currently be maintained for ECK Enterprise-tier customers,
+> however, we encourage the community to engage with the existing Helm charts
+> for the Elastic Stack and continue supporting their ongoing maintenance.
+>
+> See <https://github.com/elastic/helm-charts/issues/1731> for more details.
+
+<!-- START doctoc generated TOC please keep comment here to allow auto update -->
+<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->
+
+
+- [Requirements](#requirements)
+- [Installing](#installing)
+  - [Install a released version using the Helm repository](#install-a-released-version-using-the-helm-repository)
+  - [Install a development version using the main branch](#install-a-development-version-using-the-main-branch)
+- [Upgrading](#upgrading)
+- [Usage notes](#usage-notes)
+- [Configuration](#configuration)
+- [FAQ](#faq)
+  - [How to use Filebeat with Elasticsearch with security (authentication and TLS) enabled?](#how-to-use-filebeat-with-elasticsearch-with-security-authentication-and-tls-enabled)
+  - [How to install OSS version of Filebeat?](#how-to-install-oss-version-of-filebeat)
+  - [Why is Filebeat host.name field set to Kubernetes pod name?](#why-is-filebeat-hostname-field-set-to-kubernetes-pod-name)
+  - [How do I get multiple beats agents working with hostNetworking enabled?](#how-do-i-get-multiple-beats-agents-working-with-hostnetworking-enabled)
+  - [How to change readinessProbe for outputs which don't support testing](#how-to-change-readinessprobe-for-outputs-which-dont-support-testing)
+- [Contributing](#contributing)
+
+<!-- END doctoc generated TOC please keep comment here to allow auto update -->
+<!-- Use this to update TOC: -->
+<!-- docker run --entrypoint doctoc --rm -it -v $(pwd):/usr/src jorgeandrada/doctoc README.md --github --no-title -->
+
+
+## Requirements
+
+See [supported configurations][] for more details.
+
+
+## Installing
+
+### Install a released version using the Helm repository
+
+* Add the Elastic Helm charts repo:
+`helm repo add elastic https://helm.elastic.co`
+
+* Install it: `helm install filebeat elastic/filebeat`
+
+
+### Install a development version using the main branch
+
+* Clone the git repo: `git clone git@github.com:elastic/helm-charts.git`
+
+* Install it: `helm install filebeat ./helm-charts/filebeat --set imageTag=8.5.1`
+
+
+## Upgrading
+
+Please always check [CHANGELOG.md][] and [BREAKING_CHANGES.md][] before
+upgrading to a new chart version.
+
+
+## Usage notes
+
+* The default Filebeat configuration file for this chart is configured to use an
+Elasticsearch endpoint. Without any additional changes, Filebeat will send
+documents to the service URL that the Elasticsearch Helm chart sets up by
+default. The Elasticsearch credentials are also retrieved from
+`elasticsearch-master-credentials` Secret from Elasticsearch chart by default.
+You may either set the `ELASTICSEARCH_HOSTS`, `ELASTICSEARCH_USER` and
+`ELASTICSEARCH_PASSWORD` environment variables in `extraEnvs` to override this
+or modify the default `filebeatConfig` to change this behavior.
+* The default Filebeat configuration file is also configured to capture
+container logs and enrich them with Kubernetes metadata by default. This will
+capture all container logs in the cluster.
+* This chart disables the [HostNetwork][] setting by default for compatibility
+reasons with the majority of kubernetes providers and scenarios. Some kubernetes
+providers may not allow enabling `hostNetwork` and deploying multiple Filebeat
+pods on the same node isn't possible with `hostNetwork` However Filebeat does
+recommend activating it. If your kubernetes provider is compatible with
+`hostNetwork` and you don't need to run multiple Filebeat DaemonSets, you can
+activate it by setting `hostNetworking: true` in [values.yaml][].
+* This repo includes several [examples][] of configurations that can be used
+as a reference. They are also used in the automated testing of this chart.
+
+
+## Configuration
+
+| Parameter                      | Description                                                                                                                                                                  | Default                            |
+|--------------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|------------------------------------|
+| `clusterRoleRules`             | Configurable [cluster role rules][] that Filebeat uses to access Kubernetes resources                                                                                        | see [values.yaml][]                |
+| `daemonset.annotations`        | Configurable [annotations][] for filebeat daemonset                                                                                                                          | `{}`                               |
+| `daemonset.labels`             | Configurable [labels][] applied to all filebeat DaemonSet pods                                                                                                               | `{}`                               |
+| `daemonset.affinity`           | Configurable [affinity][] for filebeat daemonset                                                                                                                             | `{}`                               |
+| `daemonset.enabled`            | If true, enable daemonset                                                                                                                                                    | `true`                             |
+| `daemonset.envFrom`            | Templatable string of `envFrom` to be passed to the  [environment from variables][] which will be appended to filebeat container for DaemonSet                               | `[]`                               |
+| `daemonset.extraEnvs`          | Extra [environment variables][] which will be appended to filebeat container for DaemonSet                                                                                   | see [values.yaml][]                |
+| `daemonset.extraVolumeMounts`  | Templatable string of additional `volumeMounts` to be passed to the `tpl` function for DaemonSet                                                                             | `[]`                               |
+| `daemonset.extraVolumes`       | Templatable string of additional `volumes` to be passed to the `tpl` function for DaemonSet                                                                                  | `[]`                               |
+| `daemonset.hostAliases`        | Configurable [hostAliases][] for filebeat DaemonSet                                                                                                                          | `[]`                               |
+| `daemonset.hostNetworking`     | Enable filebeat DaemonSet to use `hostNetwork`                                                                                                                               | `false`                            |
+| `daemonset.filebeatConfig`     | Allows you to add any config files in `/usr/share/filebeat` such as `filebeat.yml` for filebeat DaemonSet                                                                    | see [values.yaml][]                |
+| `daemonset.maxUnavailable`     | The [maxUnavailable][] value for the pod disruption budget. By default this will prevent Kubernetes from having more than 1 unhealthy pod in the node group                  | `1`                                |
+| `daemonset.nodeSelector`       | Configurable [nodeSelector][] for filebeat DaemonSet                                                                                                                         | `{}`                               |
+| `daemonset.secretMounts`       | Allows you easily mount a secret as a file inside the DaemonSet. Useful for mounting certificates and other secrets. See [values.yaml][] for an example                      | `[]`                               |
+| `daemonset.podSecurityContext` | Configurable [podSecurityContext][] for filebeat DaemonSet pod execution environment                                                                                         | see [values.yaml][]                |
+| `daemonset.resources`          | Allows you to set the [resources][] for filebeat DaemonSet                                                                                                                   | see [values.yaml][]                |
+| `daemonset.tolerations`        | Configurable [tolerations][] for filebeat DaemonSet                                                                                                                          | `[]`                               |
+| `deployment.annotations`       | Configurable [annotations][] for filebeat Deployment                                                                                                                         | `{}`                               |
+| `deployment.labels`            | Configurable [labels][] applied to all filebeat Deployment pods                                                                                                              | `{}`                               |
+| `deployment.affinity`          | Configurable [affinity][] for filebeat Deployment                                                                                                                            | `{}`                               |
+| `deployment.enabled`           | If true, enable deployment                                                                                                                                                   | `false`                            |
+| `deployment.envFrom`           | Templatable string of `envFrom` to be passed to the  [environment from variables][] which will be appended to filebeat container for Deployment                              | `[]`                               |
+| `deployment.extraEnvs`         | Extra [environment variables][] which will be appended to filebeat container for Deployment                                                                                  | see [values.yaml][]                |
+| `deployment.extraVolumeMounts` | Templatable string of additional `volumeMounts` to be passed to the `tpl` function for DaemonSet                                                                             | `[]`                               |
+| `deployment.extraVolumes`      | Templatable string of additional `volumes` to be passed to the `tpl` function for Deployment                                                                                 | `[]`                               |
+| `daemonset.hostAliases`        | Configurable [hostAliases][] for filebeat Deployment                                                                                                                         | `[]`                               |
+| `deployment.filebeatConfig`    | Allows you to add any config files in `/usr/share/filebeat` such as `filebeat.yml` for filebeat Deployment                                                                   | see [values.yaml][]                |
+| `deployment.nodeSelector`      | Configurable [nodeSelector][] for filebeat Deployment                                                                                                                        | `{}`                               |
+| `deployment.secretMounts`      | Allows you easily mount a secret as a file inside the Deployment Useful for mounting certificates and other secrets. See [values.yaml][] for an example                      | `[]`                               |
+| `deployment.resources`         | Allows you to set the [resources][] for filebeat Deployment                                                                                                                  | see [values.yaml][]                |
+| `deployment.securityContext`   | Configurable [securityContext][] for filebeat Deployment pod execution environment                                                                                           | see [values.yaml][]                |
+| `deployment.tolerations`       | Configurable [tolerations][] for filebeat Deployment                                                                                                                         | `[]`                               |
+| `replicas`                     | The replica count for the Filebeat deployment                                                                                                                                | `1`                                |
+| `extraContainers`              | Templatable string of additional containers to be passed to the `tpl` function                                                                                               | `""`                               |
+| `extraInitContainers`          | Templatable string of additional containers to be passed to the `tpl` function                                                                                               | `""`                               |
+| `fullnameOverride`             | Overrides the full name of the resources. If not set the name will default to " `.Release.Name` - `.Values.nameOverride or .Chart.Name` "                                    | `""`                               |
+| `hostPathRoot`                 | Fully-qualified [hostPath][] that will be used to persist filebeat registry data                                                                                             | `/var/lib`                         |
+| `imagePullPolicy`              | The Kubernetes [imagePullPolicy][] value                                                                                                                                     | `IfNotPresent`                     |
+| `imagePullSecrets`             | Configuration for [imagePullSecrets][] so that you can use a private registry for your image                                                                                 | `[]`                               |
+| `imageTag`                     | The filebeat Docker image tag                                                                                                                                                | `8.5.1`                            |
+| `image`                        | The filebeat Docker image                                                                                                                                                    | `docker.elastic.co/beats/filebeat` |
+| `livenessProbe`                | Parameters to pass to liveness [probe][] checks for values such as timeouts and thresholds                                                                                   | see [values.yaml][]                |
+| `managedServiceAccount`        | Whether the `serviceAccount` should be managed by this helm chart. Set this to `false` in order to manage your own service account and related roles                         | `true`                             |
+| `nameOverride`                 | Overrides the chart name for resources. If not set the name will default to `.Chart.Name`                                                                                    | `""`                               |
+| `podAnnotations`               | Configurable [annotations][] applied to all filebeat pods                                                                                                                    | `{}`                               |
+| `priorityClassName`            | The name of the [PriorityClass][]. No default is supplied as the PriorityClass must be created first                                                                         | `""`                               |
+| `readinessProbe`               | Parameters to pass to readiness [probe][] checks for values such as timeouts and thresholds                                                                                  | see [values.yaml][]                |
+| `serviceAccount`               | Custom [serviceAccount][] that filebeat will use during execution. By default will use the service account created by this chart                                             | `""`                               |
+| `serviceAccountAnnotations`    | Annotations to be added to the ServiceAccount that is created by this chart.                                                                                                 | `{}`                               |
+| `terminationGracePeriod`       | Termination period (in seconds) to wait before killing filebeat pod process on pod shutdown                                                                                  | `30`                               |
+| `updateStrategy`               | The [updateStrategy][] for the DaemonSet By default Kubernetes will kill and recreate pods on updates. Setting this to `OnDelete` will require that pods be deleted manually | `RollingUpdate`                    |
+
+
+## FAQ
+
+### How to use Filebeat with Elasticsearch with security (authentication and TLS) enabled?
+
+This Helm chart can use existing [Kubernetes secrets][] to setup
+credentials or certificates for examples. These secrets should be created
+outside of this chart and accessed using [environment variables][] and volumes.
+
+An example can be found in [examples/security][].
+
+### How to install OSS version of Filebeat?
+
+Deploying OSS version of Filebeat can be done by setting `image` value to
+[Filebeat OSS Docker image][]
+
+An example of Filebeat deployment using OSS version can be found in
+[examples/oss][].
+
+### Why is Filebeat host.name field set to Kubernetes pod name?
+
+The default Filebeat configuration is using Filebeat pod name for
+`agent.hostname` and `host.name` fields. The `hostname` of the Kubernetes nodes
+can be find in `kubernetes.node.name` field. If you would like to have
+`agent.hostname` and `host.name` fields set to the hostname of the nodes, you'll
+need to set `hostNetworking` value to true.
+
+Note that enabling [hostNetwork][] make Filebeat pod use the host network
+namespace which gives it access to the host loopback device, services listening
+on localhost, could be used to snoop on network activity of other pods on the
+same node.
+
+### How do I get multiple beats agents working with hostNetworking enabled?
+
+The default http port for multiple beats agents may be on the same port, for
+example, Filebeats and Metricbeats both default to 5066. When `hostNetworking`
+is enabled this will cause collisions when standing up the http server. The work
+around for this is to set `http.port` in the config file for one of the beats agent
+to use a different port.
+
+### How to change readinessProbe for outputs which don't support testing
+
+Some [Filebeat outputs][] like [Kafka output][] don't support testing using
+`filebeat test output` command which is used by Filebeat chart readiness probe.
+
+This makes Filebeat pods crash before being ready with the following message:
+`Readiness probe failed: kafka output doesn't support testing`.
+
+The workaround when using this kind of output is to override the readiness probe
+command to check Filebeat API instead (same as existing liveness probe).
+
+```
+readinessProbe:
+  exec:
+    command:
+      - sh
+      - -c
+      - |
+        #!/usr/bin/env bash -e
+        curl --fail 127.0.0.1:5066
+```
+
+
+## Contributing
+
+Please check [CONTRIBUTING.md][] before any contribution or for any questions
+about our development and testing process.
+
+[affinity]: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+[annotations]: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
+[BREAKING_CHANGES.md]: https://github.com/elastic/helm-charts/blob/main/BREAKING_CHANGES.md
+[CHANGELOG.md]: https://github.com/elastic/helm-charts/blob/main/CHANGELOG.md
+[cluster role rules]: https://kubernetes.io/docs/reference/access-authn-authz/rbac/#role-and-clusterrole
+[CONTRIBUTING.md]: https://github.com/elastic/helm-charts/blob/main/CONTRIBUTING.md
+[eck-charts]: https://github.com/elastic/cloud-on-k8s/tree/master/deploy
+[elastic cloud on kubernetes]: https://github.com/elastic/cloud-on-k8s
+[environment from variables]: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/#configure-all-key-value-pairs-in-a-configmap-as-container-environment-variables
+[environment variables]: https://kubernetes.io/docs/tasks/inject-data-application/define-environment-variable-container/#using-environment-variables-inside-of-your-config
+[examples]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples
+[examples/oss]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples/oss
+[examples/security]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples/security
+[filebeat docker image]: https://www.elastic.co/guide/en/beats/filebeat/current/running-on-docker.html
+[filebeat oss docker image]: https://www.docker.elastic.co/r/beats/filebeat-oss
+[filebeat outputs]: https://www.elastic.co/guide/en/beats/filebeat/current/configuring-output.html
+[hostAliases]: https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/
+[hostNetwork]: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#host-namespaces
+[hostPath]: https://kubernetes.io/docs/concepts/storage/volumes/#hostpath
+[imagePullPolicy]: https://kubernetes.io/docs/concepts/containers/images/#updating-images
+[imagePullSecrets]: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-pod-that-uses-your-secret
+[kafka output]: https://www.elastic.co/guide/en/beats/filebeat/current/kafka-output.html
+[kubernetes secrets]: https://kubernetes.io/docs/concepts/configuration/secret/
+[labels]: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
+[maxUnavailable]: https://kubernetes.io/docs/tasks/run-application/configure-pdb/#specifying-a-poddisruptionbudget
+[nodeSelector]: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector
+[podSecurityContext]: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
+[priorityClass]: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/#priorityclass
+[probe]: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
+[resources]: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/
+[serviceAccount]: https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/
+[supported configurations]: https://github.com/elastic/helm-charts/tree/main/README.md#supported-configurations
+[tolerations]: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+[updateStrategy]: https://kubernetes.io/docs/tasks/manage-daemon/update-daemon-set/#daemonset-update-strategy
+[values.yaml]: https://github.com/elastic/helm-charts/tree/main/filebeat/values.yaml
diff --git a/sregym/observer/filebeat/examples/default/Makefile b/sregym/observer/filebeat/examples/default/Makefile
new file mode 100644
index 0000000..6e4a174
--- /dev/null
+++ b/sregym/observer/filebeat/examples/default/Makefile
@@ -0,0 +1,13 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+RELEASE := helm-filebeat-default
+
+install:
+	helm upgrade --wait --timeout=$(TIMEOUT) --install $(RELEASE) ../../
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
diff --git a/sregym/observer/filebeat/examples/default/README.md b/sregym/observer/filebeat/examples/default/README.md
new file mode 100644
index 0000000..0b2c0b1
--- /dev/null
+++ b/sregym/observer/filebeat/examples/default/README.md
@@ -0,0 +1,27 @@
+# Default
+
+This example deploy Filebeat 8.5.1 using [default values][].
+
+
+## Usage
+
+* Deploy [Elasticsearch Helm chart][].
+
+* Deploy Filebeat chart with the default values: `make install`
+
+* You can now setup a port forward to query Filebeat indices:
+
+  ```
+  kubectl port-forward svc/elasticsearch-master 9200
+  curl localhost:9200/_cat/indices
+  ```
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`
+
+
+[elasticsearch helm chart]: https://github.com/elastic/helm-charts/tree/main/elasticsearch/examples/default/
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples/default/test/goss.yaml
+[default values]: https://github.com/elastic/helm-charts/tree/main/filebeat/values.yaml
diff --git a/sregym/observer/filebeat/examples/default/test/goss.yaml b/sregym/observer/filebeat/examples/default/test/goss.yaml
new file mode 100644
index 0000000..936f992
--- /dev/null
+++ b/sregym/observer/filebeat/examples/default/test/goss.yaml
@@ -0,0 +1,43 @@
+port:
+  tcp:5066:
+    listening: true
+    ip:
+      - "127.0.0.1"
+
+mount:
+  /usr/share/filebeat/data:
+    exists: true
+  /run/docker.sock:
+    exists: true
+  /var/lib/docker/containers:
+    exists: true
+    opts:
+      - ro
+  /usr/share/filebeat/filebeat.yml:
+    exists: true
+    opts:
+      - ro
+
+user:
+  filebeat:
+    exists: true
+    uid: 1000
+    gid: 1000
+
+http:
+  https://elasticsearch-master:9200/_cat/indices:
+    status: 200
+    timeout: 2000
+    allow-insecure: true
+    username: "{{ .Env.ELASTICSEARCH_USERNAME }}"
+    password: "{{ .Env.ELASTICSEARCH_PASSWORD }}"
+    body:
+      - "filebeat-8.7.1"
+
+file:
+  /usr/share/filebeat/filebeat.yml:
+    exists: true
+    contains:
+      - "add_kubernetes_metadata"
+      - "output.elasticsearch"
+      - "elasticsearch-master:9200"
diff --git a/sregym/observer/filebeat/examples/deployment/Makefile b/sregym/observer/filebeat/examples/deployment/Makefile
new file mode 100644
index 0000000..55a691d
--- /dev/null
+++ b/sregym/observer/filebeat/examples/deployment/Makefile
@@ -0,0 +1,13 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+RELEASE := helm-filebeat-deployment
+
+install:
+	helm upgrade --wait --timeout=$(TIMEOUT) --install --values values.yaml $(RELEASE) ../../
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
diff --git a/sregym/observer/filebeat/examples/deployment/README.md b/sregym/observer/filebeat/examples/deployment/README.md
new file mode 100644
index 0000000..63c780a
--- /dev/null
+++ b/sregym/observer/filebeat/examples/deployment/README.md
@@ -0,0 +1,27 @@
+# Default
+
+This example deploy Filebeat 8.5.1 using [default values][] as a Kubernetes Deployment.
+
+
+## Usage
+
+* Deploy [Elasticsearch Helm chart][].
+
+* Deploy Filebeat chart with the default values: `make install`
+
+* You can now setup a port forward to query Filebeat indices:
+
+  ```
+  kubectl port-forward svc/elasticsearch-master 9200
+  curl localhost:9200/_cat/indices
+  ```
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`
+
+
+[elasticsearch helm chart]: https://github.com/elastic/helm-charts/tree/main/elasticsearch/examples/default/
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples/deployment/test/goss.yaml
+[default values]: https://github.com/elastic/helm-charts/tree/main/filebeat/values.yaml
diff --git a/sregym/observer/filebeat/examples/deployment/test/goss.yaml b/sregym/observer/filebeat/examples/deployment/test/goss.yaml
new file mode 100644
index 0000000..44c6c81
--- /dev/null
+++ b/sregym/observer/filebeat/examples/deployment/test/goss.yaml
@@ -0,0 +1,9 @@
+http:
+  https://elasticsearch-master:9200/_cat/indices:
+    status: 200
+    allow-insecure: true
+    timeout: 2000
+    username: "{{ .Env.ELASTICSEARCH_USERNAME }}"
+    password: "{{ .Env.ELASTICSEARCH_PASSWORD }}"
+    body:
+      - "filebeat-8.7.1"
diff --git a/sregym/observer/filebeat/examples/deployment/values.yaml b/sregym/observer/filebeat/examples/deployment/values.yaml
new file mode 100644
index 0000000..aa0ed7e
--- /dev/null
+++ b/sregym/observer/filebeat/examples/deployment/values.yaml
@@ -0,0 +1,9 @@
+deployment:
+  enabled: true
+  resources:
+    limits:
+      # Should avoid OOM (Error 137) when running goss tests into the pod
+      memory: "300Mi"
+
+daemonset:
+  enabled: false
diff --git a/sregym/observer/filebeat/examples/oss/Makefile b/sregym/observer/filebeat/examples/oss/Makefile
new file mode 100644
index 0000000..bf1a48b
--- /dev/null
+++ b/sregym/observer/filebeat/examples/oss/Makefile
@@ -0,0 +1,13 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+RELEASE := helm-filebeat-oss
+
+install:
+	helm upgrade --wait --timeout=$(TIMEOUT) --install --values values.yaml $(RELEASE) ../../
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
diff --git a/sregym/observer/filebeat/examples/oss/README.md b/sregym/observer/filebeat/examples/oss/README.md
new file mode 100644
index 0000000..a6f4473
--- /dev/null
+++ b/sregym/observer/filebeat/examples/oss/README.md
@@ -0,0 +1,27 @@
+# OSS
+
+This example deploy Filebeat 8.5.1 using [Filebeat OSS][] version.
+
+
+## Usage
+
+* Deploy [Elasticsearch Helm chart][].
+
+* Deploy Filebeat chart with the default values: `make install`
+
+* You can now setup a port forward to query Filebeat indices:
+
+  ```
+  kubectl port-forward svc/oss-master 9200
+  curl localhost:9200/_cat/indices
+  ```
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`
+
+
+[filebeat oss]: https://www.elastic.co/downloads/beats/filebeat-oss
+[elasticsearch helm chart]: https://github.com/elastic/helm-charts/tree/main/elasticsearch/examples/oss/
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples/oss/test/goss.yaml
diff --git a/sregym/observer/filebeat/examples/oss/test/goss.yaml b/sregym/observer/filebeat/examples/oss/test/goss.yaml
new file mode 100644
index 0000000..ee9e095
--- /dev/null
+++ b/sregym/observer/filebeat/examples/oss/test/goss.yaml
@@ -0,0 +1,25 @@
+port:
+  tcp:5066:
+    listening: true
+    ip:
+      - "127.0.0.1"
+
+mount:
+  /usr/share/filebeat/data:
+    exists: true
+
+user:
+  filebeat:
+    exists: true
+    uid: 1000
+    gid: 1000
+
+http:
+  https://elasticsearch-master:9200/_cat/indices:
+    allow-insecure: true
+    status: 200
+    timeout: 2000
+    username: "{{ .Env.ELASTICSEARCH_USERNAME }}"
+    password: "{{ .Env.ELASTICSEARCH_PASSWORD }}"
+    body:
+      - "filebeat-oss-8.7.1"
diff --git a/sregym/observer/filebeat/examples/oss/values.yaml b/sregym/observer/filebeat/examples/oss/values.yaml
new file mode 100644
index 0000000..066f293
--- /dev/null
+++ b/sregym/observer/filebeat/examples/oss/values.yaml
@@ -0,0 +1,34 @@
+image: docker.elastic.co/beats/filebeat-oss
+
+daemonset:
+  filebeatConfig:
+    filebeat.yml: |
+      filebeat.inputs:
+      - type: container
+        paths:
+          - /var/log/containers/*.log
+        processors:
+        - add_kubernetes_metadata:
+            host: ${NODE_NAME}
+            matchers:
+            - logs_path:
+                logs_path: "/var/log/containers/"
+      output.elasticsearch:
+        host: '${NODE_NAME}'
+        hosts: ["https://elasticsearch-master:9200"]
+        username: '${ELASTICSEARCH_USERNAME}'
+        password: '${ELASTICSEARCH_PASSWORD}'
+        index: "filebeat-oss-%{[agent.version]}-%{+yyyy.MM.dd}"
+        ssl.certificate_authorities:
+          - /usr/share/filebeat/certs/ca.crt
+      setup.ilm.enabled: false
+      setup.template.name: "filebeat"
+      setup.template.pattern: "filebeat-oss-*"
+  secretMounts:
+    - name: elasticsearch-master-certs
+      secretName: elasticsearch-master-certs
+      path: /usr/share/filebeat/certs
+  resources:
+    limits:
+      # Should avoid OOM (Error 137) when running goss tests into the pod
+      memory: "300Mi"
diff --git a/sregym/observer/filebeat/examples/security/Makefile b/sregym/observer/filebeat/examples/security/Makefile
new file mode 100644
index 0000000..674b911
--- /dev/null
+++ b/sregym/observer/filebeat/examples/security/Makefile
@@ -0,0 +1,13 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+RELEASE := helm-filebeat-security
+
+install:
+	helm upgrade --wait --timeout=$(TIMEOUT) --install --values values.yaml $(RELEASE) ../../
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
diff --git a/sregym/observer/filebeat/examples/security/README.md b/sregym/observer/filebeat/examples/security/README.md
new file mode 100644
index 0000000..a135afa
--- /dev/null
+++ b/sregym/observer/filebeat/examples/security/README.md
@@ -0,0 +1,28 @@
+# Security
+
+This example deploy Filebeat 8.5.1 using authentication and TLS to connect to
+Elasticsearch (see [values][]).
+
+
+## Usage
+
+* Deploy [Elasticsearch Helm chart][].
+
+* Deploy Filebeat chart with security: `make install`
+
+* You can now setup a port forward to query Filebeat indices:
+
+  ```
+  kubectl port-forward svc/security-master 9200
+  curl -u elastic:changeme https://localhost:9200/_cat/indices
+  ```
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`
+
+
+[elasticsearch helm chart]: https://github.com/elastic/helm-charts/tree/main/elasticsearch/examples/security/
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples/security/test/goss.yaml
+[values]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples/security/values.yaml
diff --git a/sregym/observer/filebeat/examples/security/test/goss.yaml b/sregym/observer/filebeat/examples/security/test/goss.yaml
new file mode 100644
index 0000000..fab5696
--- /dev/null
+++ b/sregym/observer/filebeat/examples/security/test/goss.yaml
@@ -0,0 +1,9 @@
+http:
+  https://security-master:9200/_cat/indices:
+    status: 200
+    timeout: 2000
+    body:
+      - "filebeat-8.7.1"
+    allow-insecure: true
+    username: "{{ .Env.ELASTICSEARCH_USERNAME }}"
+    password: "{{ .Env.ELASTICSEARCH_PASSWORD }}"
diff --git a/sregym/observer/filebeat/examples/security/values.yaml b/sregym/observer/filebeat/examples/security/values.yaml
new file mode 100644
index 0000000..160dd1e
--- /dev/null
+++ b/sregym/observer/filebeat/examples/security/values.yaml
@@ -0,0 +1,43 @@
+daemonset:
+  extraEnvs:
+    - name: "ELASTICSEARCH_HOSTS"
+      value: "security-master:9200"
+    - name: "ELASTICSEARCH_USERNAME"
+      valueFrom:
+        secretKeyRef:
+          name: security-master-credentials
+          key: username
+    - name: "ELASTICSEARCH_PASSWORD"
+      valueFrom:
+        secretKeyRef:
+          name: security-master-credentials
+          key: password
+  filebeatConfig:
+    filebeat.yml: |
+      filebeat.inputs:
+      - type: container
+        paths:
+          - /var/log/containers/*.log
+        processors:
+        - add_kubernetes_metadata:
+            host: ${NODE_NAME}
+            matchers:
+            - logs_path:
+                logs_path: "/var/log/containers/"
+
+      output.elasticsearch:
+        host: '${NODE_NAME}'
+        hosts: '${ELASTICSEARCH_HOSTS:elasticsearch-master:9200}'
+        username: '${ELASTICSEARCH_USERNAME}'
+        password: '${ELASTICSEARCH_PASSWORD}'
+        protocol: https
+        ssl.certificate_authorities:
+        - /usr/share/filebeat/config/certs/elastic-certificate.pem
+  secretMounts:
+    - name: elastic-certificate-pem
+      secretName: elastic-certificate-pem
+      path: /usr/share/filebeat/config/certs
+  resources:
+    limits:
+      # Should avoid OOM (Error 137) when running goss tests into the pod
+      memory: "300Mi"
diff --git a/sregym/observer/filebeat/examples/upgrade/Makefile b/sregym/observer/filebeat/examples/upgrade/Makefile
new file mode 100644
index 0000000..c583cfa
--- /dev/null
+++ b/sregym/observer/filebeat/examples/upgrade/Makefile
@@ -0,0 +1,17 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+CHART := filebeat
+RELEASE := helm-filebeat-upgrade
+# upgrade from versions before 7.17.1 isn't compatible with 8.x
+FROM := 7.17.1
+
+install:
+	../../../helpers/upgrade.sh --chart $(CHART) --release $(RELEASE) --from $(FROM)
+	kubectl rollout status daemonset $(RELEASE)-filebeat
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
diff --git a/sregym/observer/filebeat/examples/upgrade/README.md b/sregym/observer/filebeat/examples/upgrade/README.md
new file mode 100644
index 0000000..a5c06d3
--- /dev/null
+++ b/sregym/observer/filebeat/examples/upgrade/README.md
@@ -0,0 +1,21 @@
+# Upgrade
+
+This example will deploy Filebeat chart using an old chart version,
+then upgrade it.
+
+
+## Usage
+
+* Add the Elastic Helm charts repo: `helm repo add elastic https://helm.elastic.co`
+
+* Deploy [Elasticsearch Helm chart][]: `helm install elasticsearch elastic/elasticsearch`
+
+* Deploy and upgrade Filebeat chart with the default values: `make install`
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`.
+
+
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/filebeat/examples/upgrade/test/goss.yaml
diff --git a/sregym/observer/filebeat/examples/upgrade/test/goss.yaml b/sregym/observer/filebeat/examples/upgrade/test/goss.yaml
new file mode 100644
index 0000000..cd84525
--- /dev/null
+++ b/sregym/observer/filebeat/examples/upgrade/test/goss.yaml
@@ -0,0 +1,48 @@
+port:
+  tcp:5066:
+    listening: true
+    ip:
+      - "127.0.0.1"
+
+mount:
+  /usr/share/filebeat/data:
+    exists: true
+  /run/docker.sock:
+    exists: true
+  /var/lib/docker/containers:
+    exists: true
+    opts:
+      - ro
+  /usr/share/filebeat/filebeat.yml:
+    exists: true
+    opts:
+      - ro
+
+user:
+  filebeat:
+    exists: true
+    uid: 1000
+    gid: 1000
+
+http:
+  https://upgrade-master:9200/_cat/indices:
+    status: 200
+    allow-insecure: true
+    timeout: 2000
+    body:
+      - "filebeat-8.7.1"
+    username: "{{ .Env.ELASTICSEARCH_USERNAME }}"
+    password: "{{ .Env.ELASTICSEARCH_PASSWORD }}"
+
+file:
+  /usr/share/filebeat/filebeat.yml:
+    exists: true
+    contains:
+      - "add_kubernetes_metadata"
+      - "output.elasticsearch"
+
+command:
+  cd /usr/share/filebeat && filebeat test output:
+    exit-status: 0
+    stdout:
+      - "elasticsearch: https://upgrade-master:9200"
diff --git a/sregym/observer/filebeat/examples/upgrade/values.yaml b/sregym/observer/filebeat/examples/upgrade/values.yaml
new file mode 100644
index 0000000..025ddf2
--- /dev/null
+++ b/sregym/observer/filebeat/examples/upgrade/values.yaml
@@ -0,0 +1,43 @@
+extraEnvs:
+  - name: "ELASTICSEARCH_HOSTS"
+    value: "https://upgrade-master:9200"
+  - name: "ELASTICSEARCH_USERNAME"
+    valueFrom:
+      secretKeyRef:
+        name: upgrade-master-credentials
+        key: username
+  - name: "ELASTICSEARCH_PASSWORD"
+    valueFrom:
+      secretKeyRef:
+        name: upgrade-master-credentials
+        key: password
+  - name: ssl.certificate_authorities
+    value: "/usr/share/filebeat/certs/ca.crt"
+filebeatConfig:
+  filebeat.yml: |
+    filebeat.inputs:
+    - type: container
+      paths:
+        - /var/log/containers/*.log
+      processors:
+      - add_kubernetes_metadata:
+          host: ${NODE_NAME}
+          matchers:
+          - logs_path:
+              logs_path: "/var/log/containers/"
+    output.elasticsearch:
+      host: '${NODE_NAME}'
+      hosts: '${ELASTICSEARCH_HOSTS:upgrade-master:9200}'
+      username: '${ELASTICSEARCH_USERNAME}'
+      password: '${ELASTICSEARCH_PASSWORD}'
+      protocol: https
+      ssl.certificate_authorities:
+      - /usr/share/filebeat/certs/ca.crt
+secretMounts:
+  - name: upgrade-master-certs
+    secretName: upgrade-master-certs
+    path: /usr/share/filebeat/certs
+resources:
+  limits:
+    # Should avoid OOM (Error 137) when running goss tests into the pod
+    memory: "300Mi"
diff --git a/sregym/observer/filebeat/templates/NOTES.txt b/sregym/observer/filebeat/templates/NOTES.txt
new file mode 100644
index 0000000..e097e87
--- /dev/null
+++ b/sregym/observer/filebeat/templates/NOTES.txt
@@ -0,0 +1,2 @@
+1. Watch all containers come up.
+  $ kubectl get pods --namespace={{ .Release.Namespace }} -l app={{ template "filebeat.fullname" . }} -w
diff --git a/sregym/observer/filebeat/templates/_helpers.tpl b/sregym/observer/filebeat/templates/_helpers.tpl
new file mode 100644
index 0000000..3e5627f
--- /dev/null
+++ b/sregym/observer/filebeat/templates/_helpers.tpl
@@ -0,0 +1,32 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "filebeat.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "filebeat.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Use the fullname if the serviceAccount value is not set
+*/}}
+{{- define "filebeat.serviceAccount" -}}
+{{- if .Values.serviceAccount }}
+{{- .Values.serviceAccount -}}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/filebeat/templates/clusterrole.yaml b/sregym/observer/filebeat/templates/clusterrole.yaml
new file mode 100644
index 0000000..762afec
--- /dev/null
+++ b/sregym/observer/filebeat/templates/clusterrole.yaml
@@ -0,0 +1,12 @@
+{{- if .Values.managedServiceAccount }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: {{ template "filebeat.serviceAccount" . }}-cluster-role
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+rules: {{ toYaml .Values.clusterRoleRules | nindent 2 -}}
+{{- end -}}
diff --git a/sregym/observer/filebeat/templates/clusterrolebinding.yaml b/sregym/observer/filebeat/templates/clusterrolebinding.yaml
new file mode 100644
index 0000000..ed41773
--- /dev/null
+++ b/sregym/observer/filebeat/templates/clusterrolebinding.yaml
@@ -0,0 +1,19 @@
+{{- if .Values.managedServiceAccount }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: {{ template "filebeat.serviceAccount" . }}-cluster-role-binding
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+roleRef:
+  kind: ClusterRole
+  name: {{ template "filebeat.serviceAccount" . }}-cluster-role
+  apiGroup: rbac.authorization.k8s.io
+subjects:
+- kind: ServiceAccount
+  name: {{ template "filebeat.serviceAccount" . }}
+  namespace: {{ .Release.Namespace }}
+{{- end -}}
diff --git a/sregym/observer/filebeat/templates/configmap.yaml b/sregym/observer/filebeat/templates/configmap.yaml
new file mode 100644
index 0000000..56b5cb3
--- /dev/null
+++ b/sregym/observer/filebeat/templates/configmap.yaml
@@ -0,0 +1,53 @@
+{{- if .Values.filebeatConfig }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "filebeat.fullname" . }}-config
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+data:
+{{- range $path, $config := .Values.filebeatConfig }}
+  {{ $path }}: |
+{{ $config | indent 4 -}}
+{{- end -}}
+{{- end -}}
+
+{{- if and .Values.daemonset.enabled .Values.daemonset.filebeatConfig }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "filebeat.fullname" . }}-daemonset-config
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+data:
+{{- range $path, $config := .Values.daemonset.filebeatConfig }}
+  {{ $path }}: |
+{{ $config | indent 4 -}}
+{{- end -}}
+{{- end -}}
+
+{{- if and .Values.deployment.enabled .Values.deployment.filebeatConfig }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "filebeat.fullname" . }}-deployment-config
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+data:
+{{- range $path, $config := .Values.deployment.filebeatConfig }}
+  {{ $path }}: |
+{{ $config | indent 4 -}}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/filebeat/templates/daemonset.yaml b/sregym/observer/filebeat/templates/daemonset.yaml
new file mode 100644
index 0000000..71ddc1c
--- /dev/null
+++ b/sregym/observer/filebeat/templates/daemonset.yaml
@@ -0,0 +1,201 @@
+{{- if .Values.daemonset.enabled }}
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: {{ template "filebeat.fullname" . }}
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+    {{- if .Values.daemonset.labels }}
+    {{- range $key, $value := .Values.daemonset.labels }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+    {{- else }}
+    {{- range $key, $value := .Values.labels }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+    {{- end }}
+  {{- if .Values.daemonset.annotations }}
+  annotations:
+    {{- range $key, $value := .Values.daemonset.annotations }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+  {{- end }}
+spec:
+  selector:
+    matchLabels:
+      app: "{{ template "filebeat.fullname" . }}"
+      release: {{ .Release.Name | quote }}
+  updateStrategy:
+    {{- if eq .Values.updateStrategy "RollingUpdate" }}
+    rollingUpdate:
+      maxUnavailable: {{ .Values.daemonset.maxUnavailable }}
+    {{- end }}
+    type: {{ .Values.updateStrategy }}
+  template:
+    metadata:
+      annotations:
+        {{- range $key, $value := .Values.podAnnotations }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+        {{/* This forces a restart if the configmap has changed */}}
+        {{- if or  .Values.filebeatConfig .Values.daemonset.filebeatConfig }}
+        configChecksum: {{ include (print .Template.BasePath "/configmap.yaml") . | sha256sum | trunc 63 }}
+        {{- end }}
+      name: "{{ template "filebeat.fullname" . }}"
+      labels:
+        app: "{{ template "filebeat.fullname" . }}"
+        chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+        heritage: {{ .Release.Service | quote }}
+        release: {{ .Release.Name | quote }}
+        {{- if .Values.daemonset.labels }}
+        {{- range $key, $value := .Values.daemonset.labels }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+        {{- else }}
+        {{- range $key, $value := .Values.labels }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+        {{- end }}
+    spec:
+      tolerations: {{ toYaml ( .Values.tolerations | default .Values.daemonset.tolerations ) | nindent 8 }}
+      nodeSelector: {{ toYaml ( .Values.nodeSelector | default .Values.daemonset.nodeSelector ) | nindent 8 }}
+      {{- if .Values.priorityClassName }}
+      priorityClassName: {{ .Values.priorityClassName  }}
+      {{- end }}
+      affinity: {{ toYaml ( .Values.affinity | default .Values.daemonset.affinity ) | nindent 8 }}
+      serviceAccountName: {{ template "filebeat.serviceAccount" . }}
+      terminationGracePeriodSeconds: {{ .Values.terminationGracePeriod }}
+      {{- if .Values.daemonset.hostNetworking }}
+      hostNetwork: true
+      dnsPolicy: ClusterFirstWithHostNet
+      {{- end }}
+      {{- if .Values.dnsConfig }}
+      dnsConfig: {{ toYaml .Values.dnsConfig | nindent 8 }}
+      {{- end }}
+      {{- if .Values.hostAliases | default .Values.daemonset.hostAliases }}
+      hostAliases: {{ toYaml ( .Values.hostAliases | default .Values.daemonset.hostAliases ) | nindent 8 }}
+      {{- end }}
+      volumes:
+      {{- range .Values.secretMounts | default .Values.daemonset.secretMounts }}
+      - name: {{ .name }}
+        secret:
+          secretName: {{ .secretName }}
+      {{- end }}
+      {{- if .Values.filebeatConfig }}
+      - name: filebeat-config
+        configMap:
+          defaultMode: 0600
+          name: {{ template "filebeat.fullname" . }}-config
+      {{- else if .Values.daemonset.filebeatConfig }}
+      - name: filebeat-config
+        configMap:
+          defaultMode: 0600
+          name: {{ template "filebeat.fullname" . }}-daemonset-config
+      {{- end }}
+      - name: data
+        hostPath:
+          path: {{ .Values.hostPathRoot }}/{{ template "filebeat.fullname" . }}-{{ .Release.Namespace }}-data
+          type: DirectoryOrCreate
+      - name: varlibdockercontainers
+        hostPath:
+          path: /var/lib/docker/containers
+      - name: varlog
+        hostPath:
+          path: /var/log
+      - name: varrundockersock
+        hostPath:
+          path: /var/run/docker.sock
+      {{- if .Values.extraVolumes | default .Values.daemonset.extraVolumes }}
+{{ toYaml ( .Values.extraVolumes | default .Values.daemonset.extraVolumes )  | indent 6 }}
+      {{- end }}
+      {{- if .Values.imagePullSecrets }}
+      imagePullSecrets:
+{{ toYaml .Values.imagePullSecrets | indent 8 }}
+      {{- end }}
+      {{- if .Values.extraInitContainers }}
+      initContainers:
+      # All the other beats accept a string here while
+      # filebeat accepts a valid yaml array. We're keeping
+      # this as a backwards compatible change, while adding
+      # also a way to pass a string as other templates to
+      # make these implementations consistent.
+      # https://github.com/elastic/helm-charts/issues/490
+      {{- if eq "string" (printf "%T" .Values.extraInitContainers) }}
+{{ tpl .Values.extraInitContainers . | indent 8 }}
+      {{- else }}
+{{ toYaml .Values.extraInitContainers | indent 8 }}
+      {{- end }}
+      {{- end }}
+      containers:
+      - name: "filebeat"
+        image: "{{ .Values.image }}:{{ .Values.imageTag }}"
+        imagePullPolicy: "{{ .Values.imagePullPolicy }}"
+        args:
+        - "-e"
+        - "-E"
+        - "http.enabled=true"
+        livenessProbe:
+{{ toYaml .Values.livenessProbe | indent 10 }}
+        readinessProbe:
+{{ toYaml .Values.readinessProbe | indent 10 }}
+        resources:
+{{ toYaml ( .Values.resources | default .Values.daemonset.resources )  | indent 10 }}
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: NODE_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: spec.nodeName
+{{- if .Values.extraEnvs | default .Values.daemonset.extraEnvs }}
+{{ toYaml ( .Values.extraEnvs | default .Values.daemonset.extraEnvs ) | indent 8 }}
+{{- end }}
+        envFrom: {{ toYaml ( .Values.envFrom | default .Values.daemonset.envFrom ) | nindent 10 }}
+        securityContext: {{ toYaml ( .Values.podSecurityContext | default .Values.daemonset.securityContext ) | nindent 10 }}
+        volumeMounts:
+        {{- range .Values.secretMounts | default .Values.daemonset.secretMounts }}
+        - name: {{ .name }}
+          mountPath: {{ .path }}
+          {{- if .subPath }}
+          subPath: {{ .subPath }}
+          {{- end }}
+        {{- end }}
+        {{- range $path, $config := .Values.filebeatConfig }}
+        - name: filebeat-config
+          mountPath: /usr/share/filebeat/{{ $path }}
+          readOnly: true
+          subPath: {{ $path }}
+        {{ else }}
+        {{- range $path, $config := .Values.daemonset.filebeatConfig }}
+        - name: filebeat-config
+          mountPath: /usr/share/filebeat/{{ $path }}
+          readOnly: true
+          subPath: {{ $path }}
+        {{- end }}
+        {{- end }}
+        - name: data
+          mountPath: /usr/share/filebeat/data
+        - name: varlibdockercontainers
+          mountPath: /var/lib/docker/containers
+          readOnly: true
+        - name: varlog
+          mountPath: /var/log
+          readOnly: true
+        # Necessary when using autodiscovery; avoid mounting it otherwise
+        # See: https://www.elastic.co/guide/en/beats/filebeat/master/configuration-autodiscover.html
+        - name: varrundockersock
+          mountPath: /var/run/docker.sock
+          readOnly: true
+        {{- if .Values.extraVolumeMounts | default .Values.daemonset.extraVolumeMounts }}
+{{ toYaml (.Values.extraVolumeMounts | default .Values.daemonset.extraVolumeMounts ) | indent 8 }}
+        {{- end }}
+      {{- if .Values.extraContainers }}
+{{ tpl .Values.extraContainers . | indent 6 }}
+      {{- end }}
+{{- end }}
diff --git a/sregym/observer/filebeat/templates/deployment.yaml b/sregym/observer/filebeat/templates/deployment.yaml
new file mode 100644
index 0000000..414aa3f
--- /dev/null
+++ b/sregym/observer/filebeat/templates/deployment.yaml
@@ -0,0 +1,157 @@
+# Deploy singleton instance in the whole cluster for some unique data sources, like aws input
+{{- if .Values.deployment.enabled }}
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ template "filebeat.fullname" . }}
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: '{{ .Release.Service }}'
+    release: {{ .Release.Name }}
+    {{- if .Values.deployment.labels }}
+    {{- range $key, $value := .Values.deployment.labels }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+    {{- else }}
+    {{- range $key, $value := .Values.labels }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+    {{- end }}
+  {{- if .Values.deployment.annotations }}
+  annotations:
+    {{- range $key, $value := .Values.deployment.annotations }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+  {{- end }}
+spec:
+  replicas: {{ .Values.replicas }}
+  selector:
+    matchLabels:
+      app: "{{ template "filebeat.fullname" . }}"
+      release: {{ .Release.Name | quote }}
+  template:
+    metadata:
+      annotations:
+        {{- range $key, $value := .Values.podAnnotations }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+        {{/* This forces a restart if the configmap has changed */}}
+        {{- if or  .Values.filebeatConfig .Values.deployment.filebeatConfig }}
+        configChecksum: {{ include (print .Template.BasePath "/configmap.yaml") . | sha256sum | trunc 63 }}
+        {{- end }}
+      labels:
+        app: '{{ template "filebeat.fullname" . }}'
+        chart: '{{ .Chart.Name }}-{{ .Chart.Version }}'
+        release: '{{ .Release.Name }}'
+        {{- if .Values.deployment.labels }}
+        {{- range $key, $value := .Values.deployment.labels }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+        {{- else }}
+        {{- range $key, $value := .Values.labels }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+        {{- end }}
+    spec:
+      affinity: {{ toYaml .Values.deployment.affinity | nindent 8 }}
+      nodeSelector: {{ toYaml .Values.deployment.nodeSelector | nindent 8 }}
+      tolerations: {{ toYaml ( .Values.tolerations | default .Values.deployment.tolerations ) | nindent 8 }}
+      {{- if .Values.priorityClassName }}
+      priorityClassName: {{ .Values.priorityClassName  }}
+      {{- end }}
+      serviceAccountName: {{ template "filebeat.serviceAccount" . }}
+      terminationGracePeriodSeconds: {{ .Values.terminationGracePeriod }}
+      {{- if .Values.deployment.hostAliases }}
+      hostAliases: {{ toYaml .Values.deployment.hostAliases | nindent 8 }}
+      {{- end }}
+      volumes:
+      {{- range .Values.secretMounts | default .Values.deployment.secretMounts }}
+      - name: {{ .name }}
+        secret:
+          secretName: {{ .secretName }}
+      {{- end }}
+      {{- if .Values.filebeatConfig }}
+      - name: filebeat-config
+        configMap:
+          defaultMode: 0600
+          name: {{ template "filebeat.fullname" . }}-config
+      {{- else if .Values.deployment.filebeatConfig }}
+      - name: filebeat-config
+        configMap:
+          defaultMode: 0600
+          name: {{ template "filebeat.fullname" . }}-deployment-config
+      {{- end }}
+      {{- if .Values.extraVolumes | default .Values.deployment.extraVolumes }}
+{{ toYaml ( .Values.extraVolumes | default .Values.deployment.extraVolumes ) | indent 6 }}
+      {{- end }}
+      {{- if .Values.imagePullSecrets }}
+      imagePullSecrets:
+{{ toYaml .Values.imagePullSecrets | indent 8 }}
+      {{- end }}
+      {{- if .Values.extraInitContainers }}
+      initContainers:
+      # All the other beats accept a string here while
+      # filebeat accepts a valid yaml array. We're keeping
+      # this as a backwards compatible change, while adding
+      # also a way to pass a string as other templates to
+      # make these implementations consistent.
+      # https://github.com/elastic/helm-charts/issues/490
+      {{- if eq "string" (printf "%T" .Values.extraInitContainers) }}
+{{ tpl .Values.extraInitContainers . | indent 6 }}
+      {{- else }}
+{{ toYaml .Values.extraInitContainers | indent 6 }}
+      {{- end }}
+      {{- end }}
+      containers:
+      - name: "filebeat"
+        image: "{{ .Values.image }}:{{ .Values.imageTag }}"
+        imagePullPolicy: "{{ .Values.imagePullPolicy }}"
+        args:
+          - "-e"
+          - "-E"
+          - "http.enabled=true"
+        livenessProbe:
+{{ toYaml .Values.livenessProbe | indent 10 }}
+        readinessProbe:
+{{ toYaml .Values.readinessProbe | indent 10 }}
+        resources: {{ toYaml ( .Values.resources | default .Values.deployment.resources ) | nindent 10 }}
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+{{- if .Values.extraEnvs | default .Values.deployment.extraEnvs }}
+{{ toYaml ( .Values.extraEnvs | default .Values.deployment.extraEnvs ) | indent 8 }}
+{{- end }}
+        envFrom: {{ toYaml ( .Values.envFrom | default .Values.deployment.envFrom ) | nindent 10 }}
+        securityContext: {{ toYaml ( .Values.podSecurityContext | default .Values.deployment.securityContext ) | nindent 10 }}
+        volumeMounts:
+        {{- range .Values.secretMounts | default .Values.deployment.secretMounts }}
+        - name: {{ .name }}
+          mountPath: {{ .path }}
+          {{- if .subPath }}
+          subPath: {{ .subPath }}
+          {{- end }}
+        {{- end }}
+        {{- range $path, $config := .Values.filebeatConfig }}
+        - name: filebeat-config
+          mountPath: /usr/share/filebeat/{{ $path }}
+          readOnly: true
+          subPath: {{ $path }}
+        {{ else }}
+        {{- range $path, $config := .Values.deployment.filebeatConfig }}
+        - name: filebeat-config
+          mountPath: /usr/share/filebeat/{{ $path }}
+          readOnly: true
+          subPath: {{ $path }}
+        {{- end }}
+        {{- end }}
+        {{- if .Values.extraVolumeMounts | default .Values.deployment.extraVolumeMounts }}
+{{ toYaml ( .Values.extraVolumeMounts | default .Values.deployment.extraVolumeMounts ) | indent 8 }}
+        {{- end }}
+      {{- if .Values.extraContainers }}
+{{ tpl .Values.extraContainers . | indent 6 }}
+      {{- end }}
+{{- end }}
diff --git a/sregym/observer/filebeat/templates/role.yaml b/sregym/observer/filebeat/templates/role.yaml
new file mode 100644
index 0000000..2b09ec2
--- /dev/null
+++ b/sregym/observer/filebeat/templates/role.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.managedServiceAccount }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: {{ template "filebeat.serviceAccount" . }}-role
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+rules:
+  - apiGroups:
+      - coordination.k8s.io
+    resources:
+      - leases
+    verbs: ["get", "create", "update"]
+{{- end -}}
diff --git a/sregym/observer/filebeat/templates/rolebinding.yaml b/sregym/observer/filebeat/templates/rolebinding.yaml
new file mode 100644
index 0000000..f6b9cf8
--- /dev/null
+++ b/sregym/observer/filebeat/templates/rolebinding.yaml
@@ -0,0 +1,19 @@
+{{- if .Values.managedServiceAccount }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: {{ template "filebeat.serviceAccount" . }}-role-binding
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+roleRef:
+  kind: Role
+  name: {{ template "filebeat.serviceAccount" . }}-role
+  apiGroup: rbac.authorization.k8s.io
+subjects:
+- kind: ServiceAccount
+  name: {{ template "filebeat.serviceAccount" . }}
+  namespace: {{ .Release.Namespace }}
+{{- end -}}
diff --git a/sregym/observer/filebeat/templates/serviceaccount.yaml b/sregym/observer/filebeat/templates/serviceaccount.yaml
new file mode 100644
index 0000000..8e497b3
--- /dev/null
+++ b/sregym/observer/filebeat/templates/serviceaccount.yaml
@@ -0,0 +1,15 @@
+{{- if .Values.managedServiceAccount }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ template "filebeat.serviceAccount" . }}
+  annotations:
+    {{- with .Values.serviceAccountAnnotations }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  labels:
+    app: "{{ template "filebeat.fullname" . }}"
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+{{- end -}}
diff --git a/sregym/observer/filebeat/values.yaml b/sregym/observer/filebeat/values.yaml
new file mode 100644
index 0000000..461a9a4
--- /dev/null
+++ b/sregym/observer/filebeat/values.yaml
@@ -0,0 +1,279 @@
+---
+daemonset:
+  # Annotations to apply to the daemonset
+  annotations: {}
+  # additionals labels
+  labels: {}
+  affinity: {}
+  # Include the daemonset
+  enabled: true
+  # Extra environment variables for Filebeat container.
+  envFrom: []
+  # - configMapRef:
+  #     name: config-secret
+  extraEnvs:
+    - name: "ELASTICSEARCH_USERNAME"
+      valueFrom:
+        secretKeyRef:
+          name: es-username
+          # name: elasticsearch-master-credentials
+          key: username
+    - name: "ELASTICSEARCH_PASSWORD"
+      valueFrom:
+        secretKeyRef:
+          # name: elasticsearch-master-credentials
+          name: es-password
+          key: password
+  # Allows you to add any config files in /usr/share/filebeat
+  extraVolumes: []
+  # - name: extras
+  #   emptyDir: {}
+  extraVolumeMounts: []
+  # - name: extras
+  #   mountPath: /usr/share/extras
+  #   readOnly: true
+  hostNetworking: false
+  # Allows you to add any config files in /usr/share/filebeat
+  # such as filebeat.yml for daemonset
+  filebeatConfig:
+    filebeat.yml: |
+      filebeat.autodiscover:
+        providers:
+          - type: kubernetes
+            node: ${NODE_NAME}
+            templates:
+              - condition:
+                  contains:
+                    kubernetes.namespace: "hotel-reservation"
+                config:
+                  - type: container
+                    paths:
+                      - /var/log/containers/*-${data.kubernetes.container.id}.log
+                    processors:
+                      - add_kubernetes_metadata:
+                          host: ${NODE_NAME}
+                          matchers:
+                            - logs_path:
+                                logs_path: "/var/log/containers/"
+      output.logstash:
+              hosts: ["logstash-logstash:5044"]
+
+  # filebeat.config.modules:
+  #       path: ${path.config}/modules.d/*.yml
+  #       reload.enabled: false
+  #     filebeat.config.modules:
+  #       path: ${path.config}/modules.d/*.yml
+  #       reload.enabled: false
+  #     filebeat.inputs:
+  #     - type: container
+  #       paths:
+  #         - /var/log/containers/*.log
+  #       processors:
+  #       - add_kubernetes_metadata:
+  #           host: ${NODE_NAME}
+  #           matchers:
+  #           - logs_path:
+  #               logs_path: "/var/log/containers/"
+  # Only used when updateStrategy is set to "RollingUpdate"
+  maxUnavailable: 1
+  nodeSelector: {}
+  # A list of secrets and their paths to mount inside the pod
+  # This is useful for mounting certificates for security other sensitive values
+  # secretMounts:
+  #   - name: elasticsearch-master-certs
+  #     secretName: elasticsearch-master-certs
+  #     path: /usr/share/filebeat/certs/
+
+  #  - name: filebeat-certificates
+  #    secretName: filebeat-certificates
+  #    path: /usr/share/filebeat/certs
+  # Various pod security context settings. Bear in mind that many of these have an impact on Filebeat functioning properly.
+  #
+  # - User that the container will execute as. Typically necessary to run as root (0) in order to properly collect host container logs.
+  # - Whether to execute the Filebeat containers as privileged containers. Typically not necessarily unless running within environments such as OpenShift.
+  securityContext:
+    runAsUser: 0
+    privileged: false
+  resources:
+    requests:
+      cpu: "400m"
+      memory: "500Mi"
+    limits:
+      cpu: "1000m"
+      memory: "2000Mi"
+  tolerations: []
+
+deployment:
+  # Annotations to apply to the deployment
+  annotations: {}
+  # additionals labels
+  labels: {}
+  affinity: {}
+  # Include the deployment
+  enabled: false
+  # Extra environment variables for Filebeat container.
+  envFrom: []
+  # - configMapRef:
+  #     name: config-secret
+  extraEnvs:
+    - name: "ELASTICSEARCH_USERNAME"
+      valueFrom:
+        secretKeyRef:
+          name: elasticsearch-master-credentials
+          key: username
+    - name: "ELASTICSEARCH_PASSWORD"
+      valueFrom:
+        secretKeyRef:
+          name: elasticsearch-master-credentials
+          key: password
+  # Allows you to add any config files in /usr/share/filebeat
+  extraVolumes: []
+  # - name: extras
+  #   emptyDir: {}
+  extraVolumeMounts: []
+  # - name: extras
+  #   mountPath: /usr/share/extras
+  #   readOnly: true
+  # such as filebeat.yml for deployment
+  filebeatConfig:
+    filebeat.yml: |
+      filebeat.inputs:
+        - type: log
+          paths:
+            - /usr/share/filebeat/logs/filebeat
+          fields:
+            sample_rate: 0.1
+
+      output.elasticsearch:
+        host: "${NODE_NAME}"
+        hosts: '["https://${ELASTICSEARCH_HOSTS:elasticsearch-master:9200}"]'
+        username: "${ELASTICSEARCH_USERNAME}"
+        password: "${ELASTICSEARCH_PASSWORD}"
+        protocol: https
+        ssl.verification_mode: none
+        ssl.certificate_authorities: ["/usr/share/filebeat/certs/ca.crt"]
+  nodeSelector: {}
+  # A list of secrets and their paths to mount inside the pod
+  # This is useful for mounting certificates for security other sensitive values
+  secretMounts:
+    - name: elasticsearch-master-certs
+      secretName: elasticsearch-master-certs
+      path: /usr/share/filebeat/certs/
+  #  - name: filebeat-certificates
+  #    secretName: filebeat-certificates
+  #    path: /usr/share/filebeat/certs
+  #
+  # - User that the container will execute as.
+  # Not necessary to run as root (0) as the Filebeat Deployment use cases do not need access to Kubernetes Node internals
+  # - Typically not necessarily unless running within environments such as OpenShift.
+  securityContext:
+    runAsUser: 0
+    privileged: false
+  resources:
+    requests:
+      cpu: "100m"
+      memory: "100Mi"
+    limits:
+      cpu: "1000m"
+      memory: "200Mi"
+  tolerations: []
+
+# Replicas being used for the filebeat deployment
+replicas: 1
+
+extraContainers: ""
+# - name: dummy-init
+#   image: busybox
+#   command: ['echo', 'hey']
+
+extraInitContainers: []
+# - name: dummy-init
+
+# Root directory where Filebeat will write data to in order to persist registry data across pod restarts (file position and other metadata).
+hostPathRoot: /var/lib
+
+dnsConfig: {}
+# options:
+#   - name: ndots
+#     value: "2"
+hostAliases: []
+#- ip: "127.0.0.1"
+#  hostnames:
+#  - "foo.local"
+#  - "bar.local"
+image: "docker.elastic.co/beats/filebeat"
+imageTag: "8.7.1"
+imagePullPolicy: "IfNotPresent"
+imagePullSecrets: []
+
+livenessProbe:
+  exec:
+    command:
+      - sh
+      - -c
+      - |
+        #!/usr/bin/env bash -e
+        curl --fail 127.0.0.1:5066
+  failureThreshold: 3
+  initialDelaySeconds: 10
+  periodSeconds: 10
+  timeoutSeconds: 5
+
+readinessProbe:
+  exec:
+    command:
+      - sh
+      - -c
+      - |
+        #!/usr/bin/env bash -e
+        filebeat test output
+  failureThreshold: 3
+  initialDelaySeconds: 10
+  periodSeconds: 10
+  timeoutSeconds: 5
+
+# Whether this chart should self-manage its service account, role, and associated role binding.
+managedServiceAccount: true
+
+clusterRoleRules:
+  - apiGroups:
+      - ""
+    resources:
+      - namespaces
+      - nodes
+      - pods
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - "apps"
+    resources:
+      - replicasets
+    verbs:
+      - get
+      - list
+      - watch
+
+podAnnotations: {}
+# iam.amazonaws.com/role: es-cluster
+
+# Custom service account override that the pod will use
+serviceAccount: ""
+
+# Annotations to add to the ServiceAccount that is created if the serviceAccount value isn't set.
+serviceAccountAnnotations: {}
+# eks.amazonaws.com/role-arn: arn:aws:iam::111111111111:role/k8s.clustername.namespace.serviceaccount
+
+# How long to wait for Filebeat pods to stop gracefully
+terminationGracePeriod: 30
+# This is the PriorityClass settings as defined in
+# https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/#priorityclass
+priorityClassName: ""
+
+updateStrategy: RollingUpdate
+
+# Override various naming aspects of this chart
+# Only edit these if you know what you're doing
+nameOverride: ""
+fullnameOverride: ""
diff --git a/sregym/observer/logstash/.helmignore b/sregym/observer/logstash/.helmignore
new file mode 100644
index 0000000..516d3f8
--- /dev/null
+++ b/sregym/observer/logstash/.helmignore
@@ -0,0 +1,2 @@
+tests/
+.pytest_cache/
diff --git a/sregym/observer/logstash/Chart.yaml b/sregym/observer/logstash/Chart.yaml
new file mode 100644
index 0000000..063beb1
--- /dev/null
+++ b/sregym/observer/logstash/Chart.yaml
@@ -0,0 +1,12 @@
+apiVersion: v1
+description: Official Elastic helm chart for Logstash
+home: https://github.com/elastic/helm-charts
+maintainers:
+  - email: helm-charts@elastic.co
+    name: Elastic
+name: logstash
+version: 8.7.1
+appVersion: 8.7.1
+sources:
+  - https://github.com/elastic/logstash
+icon: https://helm.elastic.co/icons/logstash.png
diff --git a/sregym/observer/logstash/Makefile b/sregym/observer/logstash/Makefile
new file mode 100644
index 0000000..143a1d9
--- /dev/null
+++ b/sregym/observer/logstash/Makefile
@@ -0,0 +1 @@
+include ../helpers/common.mk
diff --git a/sregym/observer/logstash/README.md b/sregym/observer/logstash/README.md
new file mode 100644
index 0000000..f3b7df5
--- /dev/null
+++ b/sregym/observer/logstash/README.md
@@ -0,0 +1,261 @@
+* Install ElasticSearch 
+* Get the Elastic password:
+```shell
+sudo /usr/share/elasticsearch/bin/elasticsearch-reset-password -u elastic
+```
+* Set the secret of elasticsearch in K8S:
+```shell
+kubectl create secret generic es-username --from-literal=username=elastic -n observe
+kubectl create secret generic es-password --from-literal=password=YOUR_PASSWORD -n observe
+```
+
+* Install:
+```shell
+cd examples/elasticsearch/
+helm install logstash -n observe --values=values.yaml ../../
+```
+
+# Logstash Helm Chart
+
+[![Build Status](https://img.shields.io/jenkins/s/https/devops-ci.elastic.co/job/elastic+helm-charts+main.svg)](https://devops-ci.elastic.co/job/elastic+helm-charts+main/) [![Artifact HUB](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/elastic)](https://artifacthub.io/packages/search?repo=elastic)
+
+This Helm chart is a lightweight way to configure and run our official
+[Logstash Docker image][].
+
+> **Warning**
+> When it comes to running the Elastic on Kubernetes infrastructure, we
+> recommend [Elastic Cloud on Kubernetes][] (ECK) as the best way to run and manage
+> the Elastic Stack.
+>
+> ECK offers many operational benefits for both our basic-tier and our
+> enterprise-tier customers, such as spinning up cluster nodes that were lost on
+> failed infrastructure, seamless upgrades, rolling cluster changes, and much
+> much more.
+>
+> With the release of the Elastic Stack Helm charts for Elastic version 8.5.1,
+> we are handing over the ongoing maintenance of our Elastic Stack Helm charts
+> to the community and contributors. This repository will finally be archived
+> after 6 months time. Elastic Stacks deployed on Kubernetes through Helm charts
+> will still be fully supported under EOL limitations.
+>
+> Since we want to provide an even better experience for our customers by
+> running the Elastic Stack on Kubernetes, we will continue maintaining the
+> Helm charts applicable to ECK Custom Resources. These charts can be found in
+> the [ECK repository][eck-charts].
+>
+> Helm charts will currently be maintained for ECK Enterprise-tier customers,
+> however, we encourage the community to engage with the existing Helm charts
+> for the Elastic Stack and continue supporting their ongoing maintenance.
+>
+> See <https://github.com/elastic/helm-charts/issues/1731> for more details.
+
+<!-- START doctoc generated TOC please keep comment here to allow auto update -->
+<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->
+
+
+- [Requirements](#requirements)
+- [Installing](#installing)
+  - [Install a released version using the Helm repository](#install-a-released-version-using-the-helm-repository)
+  - [Install a development version using the main branch](#install-a-development-version-using-the-main-branch)
+- [Upgrading](#upgrading)
+- [Usage notes](#usage-notes)
+- [Configuration](#configuration)
+- [FAQ](#faq)
+  - [How to install OSS version of Logstash?](#how-to-install-oss-version-of-logstash)
+  - [How to install plugins?](#how-to-install-plugins)
+- [Contributing](#contributing)
+
+<!-- END doctoc generated TOC please keep comment here to allow auto update -->
+<!-- Use this to update TOC: -->
+<!-- docker run --entrypoint doctoc --rm -it -v $(pwd):/usr/src jorgeandrada/doctoc README.md --github --no-title -->
+
+
+## Requirements
+
+See [supported configurations][] for more details.
+
+## Installing
+
+### Install a released version using the Helm repository
+
+* Add the Elastic Helm charts repo:
+`helm repo add elastic https://helm.elastic.co`
+
+* Install it: `helm install logstash elastic/logstash`
+
+### Install a development version using the main branch
+
+* Clone the git repo: `git clone git@github.com:elastic/helm-charts.git`
+
+* Install it: `helm install logstash ./helm-charts/logstash --set imageTag=8.5.1`
+
+
+## Upgrading
+
+Please always check [CHANGELOG.md][] and [BREAKING_CHANGES.md][] before
+upgrading to a new chart version.
+
+
+## Usage notes
+
+* This repo includes several [examples][] of configurations that can be used
+as a reference. They are also used in the automated testing of this chart
+* Automated testing of this chart is currently only run against GKE (Google
+Kubernetes Engine).
+* The chart deploys a StatefulSet and by default will do an automated rolling
+update of your cluster. It does this by waiting for the cluster health to become
+green after each instance is updated. If you prefer to update manually you can
+set `OnDelete` [updateStrategy][].
+* It is important to verify that the JVM heap size in `logstashJavaOpts` and to
+set the CPU/Memory `resources` to something suitable for your cluster.
+* We have designed this chart to be very un-opinionated about how to configure
+Logstash. It exposes ways to set environment variables and mount secrets inside
+of the container. Doing this makes it much easier for this chart to support
+multiple versions with minimal changes.
+* `logstash.yml` configuration files can be set either by a ConfigMap using
+`logstashConfig` in `values.yml` or by environment variables using `extraEnvs`
+in `values.yml` , however Logstash Docker image can't mix both methods as
+defining settings with environment variables causes `logstash.yml` to be
+modified in place while using ConfigMap bind-mount the same file (more details
+in this [note][]).
+* When overriding `logstash.yml`, `http.host: 0.0.0.0` should always be included
+to make default probes work. If restricting HTTP API to 127.0.0.1 is required by
+using `http.host: 127.0.0.1`, default probes should be disabled or overridden
+(see [values.yaml][] for the good syntax).
+* An ingress is provided that can be used to expose the HTTP port. This can be
+useful for the [http input plugin][], for instance.
+
+
+## Configuration
+
+| Parameter                 | Description                                                                                                                                                                                                                          | Default                               |
+|---------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------------------------|
+| `antiAffinityTopologyKey` | The [anti-affinity][] topology key]. By default this will prevent multiple Logstash nodes from running on the same Kubernetes node                                                                                                   | `kubernetes.io/hostname`              |
+| `antiAffinity`            | Setting this to hard enforces the [anti-affinity][] rules. If it is set to soft it will be done "best effort". Other values will be ignored                                                                                          | `hard`                                |
+| `envFrom`                 | Templatable string to be passed to the [environment from variables][] which will be appended to the `envFrom:` definition for the container                                                                                          | `[]`                                  |
+| `extraContainers`         | Templatable string of additional containers to be passed to the `tpl` function                                                                                                                                                       | `[]`                                  |
+| `extraEnvs`               | Extra [environment variables][] which will be appended to the `env:` definition for the container                                                                                                                                    | `[]`                                  |
+| `extraInitContainers`     | Templatable string of additional `initContainers` to be passed to the `tpl` function                                                                                                                                                 | `[]`                                  |
+| `extraPorts`              | An array of extra ports to open on the pod                                                                                                                                                                                           | `[]`                                  |
+| `extraVolumeMounts`       | Templatable string of additional `volumeMounts` to be passed to the `tpl` function                                                                                                                                                   | `[]`                                  |
+| `extraVolumes`            | Templatable string of additional `volumes` to be passed to the `tpl` function                                                                                                                                                        | `[]`                                  |
+| `fullnameOverride`        | Overrides the full name of the resources. If not set the name will default to " `.Release.Name` - `.Values.nameOverride or .Chart.Name` "                                                                                            | `""`                                  |
+| `hostAliases`             | Configurable [hostAliases][]                                                                                                                                                                                                         | `[]`                                  |
+| `httpPort`                | The http port that Kubernetes will use for the healthchecks and the service                                                                                                                                                          | `9600`                                |
+| `imagePullPolicy`         | The Kubernetes [imagePullPolicy][] value                                                                                                                                                                                             | `IfNotPresent`                        |
+| `imagePullSecrets`        | Configuration for [imagePullSecrets][] so that you can use a private registry for your image                                                                                                                                         | `[]`                                  |
+| `imageTag`                | The Logstash Docker image tag                                                                                                                                                                                                        | `8.5.1`                               |
+| `image`                   | The Logstash Docker image                                                                                                                                                                                                            | `docker.elastic.co/logstash/logstash` |
+| `labels`                  | Configurable [labels][] applied to all Logstash pods                                                                                                                                                                                 | `{}`                                  |
+| `ingress`                 | Configurable [ingress][] for external access to Logstash HTTP port.                                                                                                                                                                  | see [values.yaml][]                   |
+| `lifecycle`               | Allows you to add lifecycle configuration. See [values.yaml][] for an example of the formatting                                                                                                                                      | `{}`                                  |
+| `livenessProbe`           | Configuration fields for the liveness [probe][]                                                                                                                                                                                      | see [values.yaml][]                   |
+| `logstashConfig`          | Allows you to add any config files in `/usr/share/logstash/config/` such as `logstash.yml` and `log4j2.properties` See [values.yaml][] for an example of the formatting                                                              | `{}`                                  |
+| `logstashJavaOpts`        | Java options for Logstash. This is where you should configure the JVM heap size                                                                                                                                                      | `-Xmx1g -Xms1g`                       |
+| `logstashPipeline`        | Allows you to add any pipeline files in `/usr/share/logstash/pipeline/`                                                                                                                                                              | `{}`                                  |
+| `logstashPatternDir`      | Allows you to define a custom directory to store pattern files                                                                                                                                                                       | `/usr/share/logstash/patterns/`       |
+| `logstashPattern`         | Allows you to add any pattern files in `logstashPatternDir`                                                                                                                                                                          | `{}`                                  |
+| `maxUnavailable`          | The [maxUnavailable][] value for the pod disruption budget. By default this will prevent Kubernetes from having more than 1 unhealthy pod in the node group                                                                          | `1`                                   |
+| `nameOverride`            | Overrides the chart name for resources. If not set the name will default to `.Chart.Name`                                                                                                                                            | `""`                                  |
+| `nodeAffinity`            | Value for the [node affinity settings][]                                                                                                                                                                                             | `{}`                                  |
+| `podAffinity`             | Value for the [pod affinity settings][]                                                                                                                                                                                              | `{}`                                  |
+| `nodeSelector`            | Configurable [nodeSelector][] so that you can target specific nodes for your Logstash cluster                                                                                                                                        | `{}`                                  |
+| `persistence`             | Enables a persistent volume for Logstash data                                                                                                                                                                                        | see [values.yaml][]                   |
+| `podAnnotations`          | Configurable [annotations][] applied to all Logstash pods                                                                                                                                                                            | `{}`                                  |
+| `podManagementPolicy`     | By default Kubernetes [deploys StatefulSets serially][]. This deploys them in parallel so that they can discover each other                                                                                                          | `Parallel`                            |
+| `podSecurityContext`      | Allows you to set the [securityContext][] for the pod                                                                                                                                                                                | see [values.yaml][]                   |
+| `podSecurityPolicy`       | Configuration for create a pod security policy with minimal permissions to run this Helm chart with `create: true` Also can be used to reference an external pod security policy with `name: "externalPodSecurityPolicy"`            | see [values.yaml][]                   |
+| `priorityClassName`       | The name of the [PriorityClass][]. No default is supplied as the PriorityClass must be created first                                                                                                                                 | `""`                                  |
+| `rbac`                    | Configuration for creating a role, role binding and service account as part of this Helm chart with `create: true` Also can be used to reference an external service account with `serviceAccountName: "externalServiceAccountName"` | see [values.yaml][]                   |
+| `readinessProbe`          | Configuration fields for the readiness [probe][]                                                                                                                                                                                     | see [values.yaml][]                   |
+| `replicas`                | Kubernetes replica count for the StatefulSet (i.e. how many pods)                                                                                                                                                                    | `1`                                   |
+| `resources`               | Allows you to set the [resources][] for the StatefulSet                                                                                                                                                                              | see [values.yaml][]                   |
+| `schedulerName`           | Name of the [alternate scheduler][]                                                                                                                                                                                                  | `""`                                  |
+| `secrets`                 | Allows you easily create a secret from as variables or file. For add secrets from file, add suffix `.filepath` to the key of secret key. The value will be encoded to base64. Useful for store certificates and other secrets.       | See [values.yaml][]                   |
+| `secretMounts`            | Allows you easily mount a secret as a file inside the StatefulSet. Useful for mounting certificates and other secrets. See [values.yaml][] for an example                                                                            | `[]`                                  |
+| `securityContext`         | Allows you to set the [securityContext][] for the container                                                                                                                                                                          | see [values.yaml][]                   |
+| `service`                 | Configurable [service][] to expose the Logstash service.                                                                                                                                                                             | see [values.yaml][]                   |
+| `terminationGracePeriod`  | The [terminationGracePeriod][] in seconds used when trying to stop the pod                                                                                                                                                           | `120`                                 |
+| `tolerations`             | Configurable [tolerations][]                                                                                                                                                                                                         | `[]`                                  |
+| `updateStrategy`          | The [updateStrategy][] for the StatefulSet. By default Kubernetes will wait for the cluster to be green after upgrading each pod. Setting this to `OnDelete` will allow you to manually delete each pod during upgrades              | `RollingUpdate`                       |
+| `volumeClaimTemplate`     | Configuration for the [volumeClaimTemplate for StatefulSets][]. You will want to adjust the storage (default `30Gi` ) and the `storageClassName` if you are using a different storage class                                          | see [values.yaml][]                   |
+
+
+## FAQ
+
+### How to install OSS version of Logstash?
+
+Deploying OSS version of Logstash can be done by setting `image` value to
+[Logstash OSS Docker image][]
+
+An example of Logstash deployment using OSS version can be found in
+[examples/oss][].
+
+### How to install plugins?
+
+The recommended way to install plugins into our Docker images is to create a
+[custom Docker image][].
+
+The Dockerfile would look something like:
+
+```
+ARG logstash_version
+FROM docker.elastic.co/logstash/logstash:${logstash_version}
+RUN bin/logstash-plugin install logstash-output-kafka
+```
+
+And then updating the `image` in values to point to your custom image.
+
+There are a couple reasons we recommend this:
+
+1. Tying the availability of Logstash to the download service to install plugins
+is not a great idea or something that we recommend. Especially in Kubernetes
+where it is normal and expected for a container to be moved to another host at
+random times.
+2. Mutating the state of a running Docker image (by installing plugins) goes
+against best practices of containers and immutable infrastructure.
+
+
+## Contributing
+
+Please check [CONTRIBUTING.md][] before any contribution or for any questions
+about our development and testing process.
+
+[alternate scheduler]: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/#specify-schedulers-for-pods
+[annotations]: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
+[anti-affinity]: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+[BREAKING_CHANGES.md]: https://github.com/elastic/helm-charts/blob/main/BREAKING_CHANGES.md
+[CHANGELOG.md]: https://github.com/elastic/helm-charts/blob/main/CHANGELOG.md
+[CONTRIBUTING.md]: https://github.com/elastic/helm-charts/blob/main/CONTRIBUTING.md
+[custom docker image]: https://www.elastic.co/guide/en/logstash/current/docker-config.html#_custom_images
+[deploys statefulsets serially]: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#pod-management-policies
+[eck-charts]: https://github.com/elastic/cloud-on-k8s/tree/master/deploy
+[elastic cloud on kubernetes]: https://github.com/elastic/cloud-on-k8s
+[environment from variables]: https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/#configure-all-key-value-pairs-in-a-configmap-as-container-environment-variables
+[environment variables]: https://kubernetes.io/docs/tasks/inject-data-application/define-environment-variable-container/#using-environment-variables-inside-of-your-config
+[examples]: https://github.com/elastic/helm-charts/tree/main/logstash/examples
+[examples/oss]: https://github.com/elastic/helm-charts/tree/main/logstash/examples/oss
+[hostAliases]: https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/
+[http input plugin]: https://www.elastic.co/guide/en/logstash/current/plugins-inputs-http.html
+[imagePullPolicy]: https://kubernetes.io/docs/concepts/containers/images/#updating-images
+[imagePullSecrets]: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-pod-that-uses-your-secret
+[ingress]: https://kubernetes.io/docs/concepts/services-networking/ingress/
+[labels]: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
+[logstash docker image]: https://www.elastic.co/guide/en/logstash/current/docker.html
+[logstash oss docker image]: https://www.docker.elastic.co/r/logstash/logstash-oss
+[maxUnavailable]: https://kubernetes.io/docs/tasks/run-application/configure-pdb/#specifying-a-poddisruptionbudget
+[node affinity settings]: https://kubernetes.io/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/
+[nodeSelector]: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#nodeselector
+[note]: https://www.elastic.co/guide/en/logstash/current/docker-config.html#docker-env-config
+[pod affinity settings]: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+[priorityClass]: https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/#priorityclass
+[probe]: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
+[resources]: https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/
+[securityContext]: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod
+[service]: https://kubernetes.io/docs/concepts/services-networking/service/
+[supported configurations]: https://github.com/elastic/helm-charts/tree/main/README.md#supported-configurations
+[terminationGracePeriod]: https://kubernetes.io/docs/concepts/workloads/pods/pod/#termination-of-pods
+[tolerations]: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+[updateStrategy]: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/
+[values.yaml]: https://github.com/elastic/helm-charts/tree/main/logstash/values.yaml
+[volumeClaimTemplate for statefulsets]: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#stable-storage
diff --git a/sregym/observer/logstash/examples/default/Makefile b/sregym/observer/logstash/examples/default/Makefile
new file mode 100644
index 0000000..7721340
--- /dev/null
+++ b/sregym/observer/logstash/examples/default/Makefile
@@ -0,0 +1,14 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+RELEASE := helm-logstash-default
+TIMEOUT := 1200s
+
+install:
+	helm upgrade --wait --timeout=$(TIMEOUT) --install $(RELEASE) ../../
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
diff --git a/sregym/observer/logstash/examples/default/README.md b/sregym/observer/logstash/examples/default/README.md
new file mode 100644
index 0000000..ec1b35c
--- /dev/null
+++ b/sregym/observer/logstash/examples/default/README.md
@@ -0,0 +1,17 @@
+# Default
+
+This example deploy Logstash 8.5.1 using [default values][].
+
+
+## Usage
+
+* Deploy Logstash chart with the default values: `make install`
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`
+
+
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/logstash/examples/default/test/goss.yaml
+[default values]: https://github.com/elastic/helm-charts/tree/main/logstash/values.yaml
diff --git a/sregym/observer/logstash/examples/default/test/goss.yaml b/sregym/observer/logstash/examples/default/test/goss.yaml
new file mode 100644
index 0000000..fe4dab3
--- /dev/null
+++ b/sregym/observer/logstash/examples/default/test/goss.yaml
@@ -0,0 +1,41 @@
+user:
+  logstash:
+    exists: true
+    uid: 1000
+    gid: 1000
+
+http:
+  http://localhost:9600?pretty:
+    status: 200
+    timeout: 2000
+    body:
+      - '"version" : "8.7.1"'
+      - '"http_address" : "0.0.0.0:9600"'
+      - '"status" : "green"'
+      - '"workers" : 1'
+      - '"batch_size" : 125'
+      - '"batch_delay" : 50'
+
+file:
+  /usr/share/logstash/config/logstash.yml:
+    exists: true
+    mode: "0644"
+    owner: logstash
+    group: root
+    filetype: file
+    contains:
+      - 'http.host: "0.0.0.0"'
+      - 'xpack.monitoring.elasticsearch.hosts: [ "http://elasticsearch:9200" ]'
+  /usr/share/logstash/pipeline/logstash.conf:
+    exists: true
+    mode: "0644"
+    owner: logstash
+    group: root
+    filetype: file
+    contains:
+      - "input {"
+      - "beats {"
+      - "port => 5044"
+      - "output {"
+      - "stdout {"
+      - "codec => rubydebug"
diff --git a/sregym/observer/logstash/examples/elasticsearch/Makefile b/sregym/observer/logstash/examples/elasticsearch/Makefile
new file mode 100644
index 0000000..e02406f
--- /dev/null
+++ b/sregym/observer/logstash/examples/elasticsearch/Makefile
@@ -0,0 +1,15 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+RELEASE := logstash
+TIMEOUT := 1200s
+
+install:
+	helm upgrade -n observe --wait --timeout=$(TIMEOUT) --install --values values.yaml $(RELEASE) ../../
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
+	kubectl delete $$(kubectl get pvc -l release=$(RELEASE) -o name)
diff --git a/sregym/observer/logstash/examples/elasticsearch/README.md b/sregym/observer/logstash/examples/elasticsearch/README.md
new file mode 100644
index 0000000..23595a9
--- /dev/null
+++ b/sregym/observer/logstash/examples/elasticsearch/README.md
@@ -0,0 +1,28 @@
+# Elasticsearch
+
+This example deploy Logstash 8.5.1 which connects to Elasticsearch (see
+[values][]).
+
+
+## Usage
+
+* Deploy [Elasticsearch Helm chart][].
+
+* Deploy Logstash chart: `make install`
+
+* You can now setup a port forward to query Logstash indices:
+
+  ```
+  kubectl port-forward svc/elasticsearch-master 9200
+  curl localhost:9200/_cat/indices
+  ```
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`
+
+
+[elasticsearch helm chart]: https://github.com/elastic/helm-charts/tree/main/elasticsearch/examples/default/
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/logstash/examples/elasticsearch/test/goss.yaml
+[values]: https://github.com/elastic/helm-charts/tree/main/logstash/examples/elasticsearch/values.yaml
diff --git a/sregym/observer/logstash/examples/elasticsearch/test/goss.yaml b/sregym/observer/logstash/examples/elasticsearch/test/goss.yaml
new file mode 100644
index 0000000..e5ae079
--- /dev/null
+++ b/sregym/observer/logstash/examples/elasticsearch/test/goss.yaml
@@ -0,0 +1,58 @@
+mount:
+  /usr/share/logstash/data:
+    exists: true
+  /usr/share/logstash/config/logstash.yml:
+    exists: true
+    opts:
+      - ro
+  /usr/share/logstash/pipeline/uptime.conf:
+    exists: true
+    opts:
+      - ro
+
+user:
+  logstash:
+    exists: true
+    uid: 1000
+    gid: 1000
+
+http:
+  http://localhost:9600?pretty:
+    status: 200
+    timeout: 2000
+    body:
+      - '"version" : "8.7.1"'
+      - '"http_address" : "0.0.0.0:9600"'
+      - '"status" : "green"'
+      - '"workers" : 1'
+      - '"batch_size" : 125'
+      - '"batch_delay" : 50'
+  https://elasticsearch-master:9200/_cat/indices:
+    allow-insecure: true
+    status: 200
+    timeout: 2000
+    username: "{{ .Env.ELASTICSEARCH_USERNAME }}"
+    password: "{{ .Env.ELASTICSEARCH_PASSWORD }}"
+    body:
+      - "logstash"
+
+file:
+  /usr/share/logstash/config/logstash.yml:
+    exists: true
+    mode: "0644"
+    owner: root
+    group: logstash
+    filetype: file
+    contains:
+      - "http.host: 0.0.0.0"
+      - "xpack.monitoring.enabled: false"
+  /usr/share/logstash/pipeline/uptime.conf:
+    exists: true
+    mode: "0644"
+    owner: root
+    group: logstash
+    filetype: file
+    contains:
+      - 'input { exec { command => "uptime" interval => 30 } }'
+      - 'hosts => ["https://elasticsearch-master:9200"]'
+      - 'index => "logstash"'
diff --git a/sregym/observer/logstash/examples/elasticsearch/values.yaml b/sregym/observer/logstash/examples/elasticsearch/values.yaml
new file mode 100644
index 0000000..c97a00e
--- /dev/null
+++ b/sregym/observer/logstash/examples/elasticsearch/values.yaml
@@ -0,0 +1,53 @@
+persistence:
+  enabled: false
+
+logstashConfig:
+  logstash.yml: |
+    http.host: 0.0.0.0
+    xpack.monitoring.enabled: false
+    config.reload.automatic: true
+
+logstashPipeline:
+  uptime.conf: |
+    output {
+      stdout {
+        codec => rubydebug   
+      }
+      elasticsearch {
+        hosts => ["http://10.0.0.4:9200"]
+        user => '${ELASTICSEARCH_USERNAME}'
+        password => '${ELASTICSEARCH_PASSWORD}'
+        index => "logstash-%{+YYYY.MM.dd.HH}"
+      }
+    }
+# cacert => '/usr/share/logstash/config/certs/ca.crt'
+extraEnvs:
+  - name: "ELASTICSEARCH_USERNAME"
+    valueFrom:
+      secretKeyRef:
+        name: es-username
+        key: username
+  - name: "ELASTICSEARCH_PASSWORD"
+    valueFrom:
+      secretKeyRef:
+        name: es-password
+        key: password
+
+# secretMounts: 
+#   - name: ca-config
+#     secretName: ca-config
+#     path: /usr/share/logstash/config/certs
+
+  # - name: elasticsearch-master-certs
+  #   secretName: elasticsearch-master-certs
+  #   path: /usr/share/logstash/config/certs
+service:
+  name: logstash
+  type: ClusterIP
+  ports:
+    - name: beats
+      port: 5044
+      targetPort: 5044
+  selector:
+    app: logstash-logstash
+
diff --git a/sregym/observer/logstash/examples/oss/Makefile b/sregym/observer/logstash/examples/oss/Makefile
new file mode 100644
index 0000000..b6a16a8
--- /dev/null
+++ b/sregym/observer/logstash/examples/oss/Makefile
@@ -0,0 +1,14 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+RELEASE := helm-logstash-oss
+TIMEOUT := 1200s
+
+install:
+	helm upgrade --wait --timeout=$(TIMEOUT) --install --values values.yaml $(RELEASE) ../../
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
diff --git a/sregym/observer/logstash/examples/oss/README.md b/sregym/observer/logstash/examples/oss/README.md
new file mode 100644
index 0000000..e3309b7
--- /dev/null
+++ b/sregym/observer/logstash/examples/oss/README.md
@@ -0,0 +1,17 @@
+# OSS
+
+This example deploy Logstash 8.5.1 using [Logstash OSS][] version.
+
+
+## Usage
+
+* Deploy Logstash chart with the default values: `make install`
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`
+
+
+[logstash oss]: https://www.elastic.co/downloads/logstash-oss
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/logstash/examples/oss/test/goss.yaml
diff --git a/sregym/observer/logstash/examples/oss/test/goss.yaml b/sregym/observer/logstash/examples/oss/test/goss.yaml
new file mode 100644
index 0000000..9bc4438
--- /dev/null
+++ b/sregym/observer/logstash/examples/oss/test/goss.yaml
@@ -0,0 +1,40 @@
+user:
+  logstash:
+    exists: true
+    uid: 1000
+    gid: 1000
+
+http:
+  http://localhost:9600?pretty:
+    status: 200
+    timeout: 2000
+    body:
+      - '"version" : "8.7.1"'
+      - '"http_address" : "0.0.0.0:9600"'
+      - '"status" : "green"'
+      - '"workers" : 1'
+      - '"batch_size" : 125'
+      - '"batch_delay" : 50'
+
+file:
+  /usr/share/logstash/config/logstash.yml:
+    exists: true
+    mode: "0644"
+    owner: logstash
+    group: root
+    filetype: file
+    contains:
+      - 'http.host: "0.0.0.0"'
+  /usr/share/logstash/pipeline/logstash.conf:
+    exists: true
+    mode: "0644"
+    owner: logstash
+    group: root
+    filetype: file
+    contains:
+      - "input {"
+      - "beats {"
+      - "port => 5044"
+      - "output {"
+      - "stdout {"
+      - "codec => rubydebug"
diff --git a/sregym/observer/logstash/examples/oss/values.yaml b/sregym/observer/logstash/examples/oss/values.yaml
new file mode 100644
index 0000000..7717c0b
--- /dev/null
+++ b/sregym/observer/logstash/examples/oss/values.yaml
@@ -0,0 +1,2 @@
+---
+image: "docker.elastic.co/logstash/logstash-oss"
diff --git a/sregym/observer/logstash/examples/security/Makefile b/sregym/observer/logstash/examples/security/Makefile
new file mode 100644
index 0000000..b2dbea0
--- /dev/null
+++ b/sregym/observer/logstash/examples/security/Makefile
@@ -0,0 +1,15 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+RELEASE := helm-logstash-security
+TIMEOUT := 1200s
+
+install:
+	helm upgrade --wait --timeout=$(TIMEOUT) --install --values values.yaml $(RELEASE) ../../
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
+	kubectl delete $$(kubectl get pvc -l release=$(RELEASE) -o name)
diff --git a/sregym/observer/logstash/examples/security/README.md b/sregym/observer/logstash/examples/security/README.md
new file mode 100644
index 0000000..07880a5
--- /dev/null
+++ b/sregym/observer/logstash/examples/security/README.md
@@ -0,0 +1,28 @@
+# Security
+
+This example deploy Logstash 8.5.1 which connects to Elasticsearch using TLS
+(see [values][]).
+
+
+## Usage
+
+* Deploy [Elasticsearch Helm chart with security][].
+
+* Deploy Logstash chart: `make install`
+
+* You can now setup a port forward to query Logstash indices:
+
+  ```
+  kubectl port-forward svc/elasticsearch-master 9200
+  curl localhost:9200/_cat/indices
+  ```
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`
+
+
+[elasticsearch helm chart with security]: https://github.com/elastic/helm-charts/tree/main/elasticsearch/examples/security/
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/logstash/examples/security/test/goss.yaml
+[values]: https://github.com/elastic/helm-charts/tree/main/logstash/examples/security/values.yaml
diff --git a/sregym/observer/logstash/examples/security/test/goss.yaml b/sregym/observer/logstash/examples/security/test/goss.yaml
new file mode 100644
index 0000000..8c1a938
--- /dev/null
+++ b/sregym/observer/logstash/examples/security/test/goss.yaml
@@ -0,0 +1,62 @@
+mount:
+  /usr/share/logstash/data:
+    exists: true
+  /usr/share/logstash/config/logstash.yml:
+    exists: true
+    opts:
+      - ro
+  /usr/share/logstash/pipeline/uptime.conf:
+    exists: true
+    opts:
+      - ro
+
+user:
+  logstash:
+    exists: true
+    uid: 1000
+    gid: 1000
+
+http:
+  http://localhost:9600?pretty:
+    status: 200
+    timeout: 2000
+    body:
+      - '"version" : "8.7.1"'
+      - '"http_address" : "0.0.0.0:9600"'
+      - '"status" : "green"'
+      - '"workers" : 1'
+      - '"batch_size" : 125'
+      - '"batch_delay" : 50'
+  https://security-master:9200/_cat/indices:
+    status: 200
+    timeout: 2000
+    body:
+      - "logstash"
+    allow-insecure: true
+    username: "{{ .Env.ELASTICSEARCH_USERNAME }}"
+    password: "{{ .Env.ELASTICSEARCH_PASSWORD }}"
+
+file:
+  /usr/share/logstash/config/logstash.yml:
+    exists: true
+    mode: "0644"
+    owner: root
+    group: logstash
+    filetype: file
+    contains:
+      - "http.host: 0.0.0.0"
+      - "xpack.monitoring.enabled: true"
+      - 'xpack.monitoring.elasticsearch.hosts: ["https://security-master:9200"]'
+      - "xpack.monitoring.elasticsearch.ssl.certificate_authority: /usr/share/logstash/config/certs/elastic-certificate.crt"
+  /usr/share/logstash/pipeline/uptime.conf:
+    exists: true
+    mode: "0644"
+    owner: root
+    group: logstash
+    filetype: file
+    contains:
+      - 'input { exec { command => "uptime" interval => 30 } }'
+      - "output { elasticsearch {"
+      - 'hosts => ["https://security-master:9200"]'
+      - 'cacert => "/usr/share/logstash/config/certs/elastic-certificate.crt"'
+      - 'index => "logstash"'
diff --git a/sregym/observer/logstash/examples/security/values.yaml b/sregym/observer/logstash/examples/security/values.yaml
new file mode 100644
index 0000000..bab3b06
--- /dev/null
+++ b/sregym/observer/logstash/examples/security/values.yaml
@@ -0,0 +1,40 @@
+persistence:
+  enabled: true
+
+logstashConfig:
+  logstash.yml: |
+    http.host: 0.0.0.0
+    xpack.monitoring.enabled: true
+    xpack.monitoring.elasticsearch.username: '${ELASTICSEARCH_USERNAME}'
+    xpack.monitoring.elasticsearch.password: '${ELASTICSEARCH_PASSWORD}'
+    xpack.monitoring.elasticsearch.hosts: ["https://security-master:9200"]
+    xpack.monitoring.elasticsearch.ssl.certificate_authority: /usr/share/logstash/config/certs/elastic-certificate.crt
+
+logstashPipeline:
+  uptime.conf: |
+    input { exec { command => "uptime" interval => 30 } }
+    output { elasticsearch {
+      hosts => ["https://security-master:9200"]
+      cacert => "/usr/share/logstash/config/certs/elastic-certificate.crt"
+      user => '${ELASTICSEARCH_USERNAME}'
+      password => '${ELASTICSEARCH_PASSWORD}'
+      index => "logstash"
+      }
+    }
+
+secretMounts:
+  - name: elastic-certificate-crt
+    secretName: elastic-certificate-crt
+    path: /usr/share/logstash/config/certs
+
+extraEnvs:
+  - name: "ELASTICSEARCH_USERNAME"
+    valueFrom:
+      secretKeyRef:
+        name: security-master-credentials
+        key: username
+  - name: "ELASTICSEARCH_PASSWORD"
+    valueFrom:
+      secretKeyRef:
+        name: security-master-credentials
+        key: password
diff --git a/sregym/observer/logstash/examples/upgrade/Makefile b/sregym/observer/logstash/examples/upgrade/Makefile
new file mode 100644
index 0000000..0842215
--- /dev/null
+++ b/sregym/observer/logstash/examples/upgrade/Makefile
@@ -0,0 +1,16 @@
+default: test
+
+include ../../../helpers/examples.mk
+
+CHART := logstash
+RELEASE := helm-logstash-upgrade
+FROM := 7.9.0	# upgrade from version < 7.9.0 is failing due to headless service breaking change
+
+install:
+	../../../helpers/upgrade.sh --chart $(CHART) --release $(RELEASE) --from $(FROM)
+	kubectl rollout status statefulset $(RELEASE)-logstash
+
+test: install goss
+
+purge:
+	helm del $(RELEASE)
diff --git a/sregym/observer/logstash/examples/upgrade/README.md b/sregym/observer/logstash/examples/upgrade/README.md
new file mode 100644
index 0000000..aafb023
--- /dev/null
+++ b/sregym/observer/logstash/examples/upgrade/README.md
@@ -0,0 +1,19 @@
+# Upgrade
+
+This example will deploy Logstash chart using an old chart version,
+then upgrade it.
+
+
+## Usage
+
+* Add the Elastic Helm charts repo: `helm repo add elastic https://helm.elastic.co`
+
+* Deploy and upgrade Logstash chart with the default values: `make install`
+
+
+## Testing
+
+You can also run [goss integration tests][] using `make test`.
+
+
+[goss integration tests]: https://github.com/elastic/helm-charts/tree/main/logstash/examples/upgrade/test/goss.yaml
diff --git a/sregym/observer/logstash/examples/upgrade/test/goss.yaml b/sregym/observer/logstash/examples/upgrade/test/goss.yaml
new file mode 100644
index 0000000..fe4dab3
--- /dev/null
+++ b/sregym/observer/logstash/examples/upgrade/test/goss.yaml
@@ -0,0 +1,41 @@
+user:
+  logstash:
+    exists: true
+    uid: 1000
+    gid: 1000
+
+http:
+  http://localhost:9600?pretty:
+    status: 200
+    timeout: 2000
+    body:
+      - '"version" : "8.7.1"'
+      - '"http_address" : "0.0.0.0:9600"'
+      - '"status" : "green"'
+      - '"workers" : 1'
+      - '"batch_size" : 125'
+      - '"batch_delay" : 50'
+
+file:
+  /usr/share/logstash/config/logstash.yml:
+    exists: true
+    mode: "0644"
+    owner: logstash
+    group: root
+    filetype: file
+    contains:
+      - 'http.host: "0.0.0.0"'
+      - 'xpack.monitoring.elasticsearch.hosts: [ "http://elasticsearch:9200" ]'
+  /usr/share/logstash/pipeline/logstash.conf:
+    exists: true
+    mode: "0644"
+    owner: logstash
+    group: root
+    filetype: file
+    contains:
+      - "input {"
+      - "beats {"
+      - "port => 5044"
+      - "output {"
+      - "stdout {"
+      - "codec => rubydebug"
diff --git a/sregym/observer/logstash/examples/upgrade/values.yaml b/sregym/observer/logstash/examples/upgrade/values.yaml
new file mode 100644
index 0000000..7313caa
--- /dev/null
+++ b/sregym/observer/logstash/examples/upgrade/values.yaml
@@ -0,0 +1 @@
+---
diff --git a/sregym/observer/logstash/jaeger/jaeger.py b/sregym/observer/logstash/jaeger/jaeger.py
new file mode 100644
index 0000000..6295171
--- /dev/null
+++ b/sregym/observer/logstash/jaeger/jaeger.py
@@ -0,0 +1,104 @@
+import os
+import socket
+import subprocess
+import time
+from pathlib import Path
+
+
+class Jaeger:
+    def __init__(self):
+        self.namespace = "observe"
+        base_dir = Path(__file__).parent
+        self.config_file = base_dir / "jaeger.yaml"
+        self.port = 16686  # local port for Jaeger UI
+        self.port_forward_process = None
+        os.environ["JAEGER_BASE_URL"] = f"http://localhost:{self.port}"
+
+    def run_cmd(self, cmd: str) -> str:
+        result = subprocess.run(cmd, shell=True, capture_output=True, text=True)
+        if result.returncode != 0:
+            raise Exception(f"Command failed: {cmd}\nError: {result.stderr}")
+        return result.stdout.strip()
+
+    def deploy(self):
+        """Deploy Jaeger with TiDB as the storage backend."""
+        self.run_cmd(f"kubectl apply -f {self.config_file} -n {self.namespace}")
+        self.wait_for_service("jaeger-out", timeout=120)
+        self.start_port_forward()
+        print("Jaeger deployed successfully.")
+
+    def is_port_in_use(self, port: int) -> bool:
+        """Check if a local TCP port is already bound."""
+        with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
+            return s.connect_ex(("127.0.0.1", port)) == 0
+
+    def wait_for_service(self, service: str, timeout: int = 60):
+        """Wait until the Jaeger service exists in Kubernetes."""
+        print(f"[debug] waiting for service {service} in ns={self.namespace}")
+        t0 = time.time()
+        while time.time() - t0 < timeout:
+            result = subprocess.run(
+                f"kubectl -n {self.namespace} get svc {service}",
+                shell=True,
+                capture_output=True,
+                text=True,
+            )
+            if result.returncode == 0:
+                print(f"[debug] found service {service}")
+                return
+            time.sleep(3)
+        raise RuntimeError(f"Service {service} not found within {timeout}s")
+
+    def start_port_forward(self):
+        """Starts port-forwarding to access Prometheus."""
+        print("Start port-forwarding for Prometheus.")
+        if self.port_forward_process and self.port_forward_process.poll() is None:
+            print("Port-forwarding already active.")
+            return
+
+        for attempt in range(3):
+            if self.is_port_in_use(self.port):
+                print(f"Port {self.port} is already in use. Attempt {attempt + 1} of 3. Retrying in 3 seconds...")
+                time.sleep(3)
+                continue
+
+            command = f"kubectl port-forward svc/jaeger-out {self.port}:16686 -n observe"
+            self.port_forward_process = subprocess.Popen(
+                command,
+                shell=True,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True,
+            )
+            os.environ["JAEGER_PORT"] = str(self.port)
+            time.sleep(3)  # Wait a bit for the port-forward to establish
+
+            if self.port_forward_process.poll() is None:
+                print(f"Port forwarding established at {self.port}.")
+                os.environ["JAEGER_PORT"] = str(self.port)
+                break
+            else:
+                print("Port forwarding failed. Retrying...")
+        else:
+            print("Failed to establish port forwarding after multiple attempts.")
+
+    def stop_port_forward(self):
+        """Stops the kubectl port-forward command and cleans up resources."""
+        if self.port_forward_process:
+            self.port_forward_process.terminate()
+            try:
+                self.port_forward_process.wait(timeout=5)
+            except subprocess.TimeoutExpired:
+                print("Port-forward process did not terminate in time, killing...")
+                self.port_forward_process.kill()
+
+            if self.port_forward_process.stdout:
+                self.port_forward_process.stdout.close()
+            if self.port_forward_process.stderr:
+                self.port_forward_process.stderr.close()
+
+            print("Port forwarding stopped.")
+
+
+if __name__ == "__main__":
+    jaeger = Jaeger()
diff --git a/sregym/observer/logstash/jaeger/jaeger.yaml b/sregym/observer/logstash/jaeger/jaeger.yaml
new file mode 100644
index 0000000..af86b92
--- /dev/null
+++ b/sregym/observer/logstash/jaeger/jaeger.yaml
@@ -0,0 +1,69 @@
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: jaeger-out
+  labels:
+    app-name: jaeger
+  namespace: observe
+spec:
+  type: NodePort
+  ports:
+  - port: 16686
+  selector:
+    app-name: jaeger
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: jaeger-agent
+  labels:
+    app-name: jaeger
+  namespace: observe
+spec:
+  ports:
+  - port: 5775
+    name: udp1
+    protocol: UDP
+  - port: 5778
+    name: tcp1
+  - port: 6831
+    name: udp2
+    protocol: UDP
+  - port: 6832
+    name: udp3
+    protocol: UDP
+  - port: 14250
+    name: tcp2
+  - port: 14268
+    name: tcp3
+  selector:
+    app-name: jaeger
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: jaeger-agent
+  labels:
+    app-name: jaeger
+  namespace: observe
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app-name: jaeger
+  template:
+    metadata:
+      labels:
+        app-name: jaeger
+      name: jaeger-agent
+    spec:
+      containers:
+      - name: jaeger-agent
+        image: jaegertracing/all-in-one:latest
+        env:
+        - name: COLLECTOR_ZIPKIN_HTTP_PORT
+          value: "9411"
+        - name: JAEGER_AGENT_PORT
+          value: "5775"
+      restartPolicy: Always
diff --git a/sregym/observer/logstash/templates/NOTES.txt b/sregym/observer/logstash/templates/NOTES.txt
new file mode 100644
index 0000000..bf35d65
--- /dev/null
+++ b/sregym/observer/logstash/templates/NOTES.txt
@@ -0,0 +1,2 @@
+1. Watch all cluster members come up.
+  $ kubectl get pods --namespace={{ .Release.Namespace }} -l app={{ template "logstash.fullname" . }} -w
diff --git a/sregym/observer/logstash/templates/_helpers.tpl b/sregym/observer/logstash/templates/_helpers.tpl
new file mode 100644
index 0000000..df5c594
--- /dev/null
+++ b/sregym/observer/logstash/templates/_helpers.tpl
@@ -0,0 +1,27 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "logstash.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "logstash.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Use the fullname if the serviceAccount value is not set
+*/}}
+{{- define "logstash.serviceAccount" -}}
+{{- .Values.rbac.serviceAccountName | default (include "logstash.fullname" .) -}}
+{{- end -}}
diff --git a/sregym/observer/logstash/templates/configmap-config.yaml b/sregym/observer/logstash/templates/configmap-config.yaml
new file mode 100644
index 0000000..795722b
--- /dev/null
+++ b/sregym/observer/logstash/templates/configmap-config.yaml
@@ -0,0 +1,17 @@
+{{- if .Values.logstashConfig }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "logstash.fullname" . }}-config
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+data:
+{{- range $path, $config := .Values.logstashConfig }}
+  {{ $path }}: |
+{{ tpl $config $ | indent 4 -}}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/logstash/templates/configmap-pattern.yaml b/sregym/observer/logstash/templates/configmap-pattern.yaml
new file mode 100644
index 0000000..05f2c71
--- /dev/null
+++ b/sregym/observer/logstash/templates/configmap-pattern.yaml
@@ -0,0 +1,17 @@
+{{- if .Values.logstashPattern }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "logstash.fullname" . }}-pattern
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+data:
+{{- range $path, $config := .Values.logstashPattern }}
+  {{ $path }}: |
+{{ tpl $config $ | indent 4 -}}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/logstash/templates/configmap-pipeline.yaml b/sregym/observer/logstash/templates/configmap-pipeline.yaml
new file mode 100644
index 0000000..72c3ece
--- /dev/null
+++ b/sregym/observer/logstash/templates/configmap-pipeline.yaml
@@ -0,0 +1,17 @@
+{{- if .Values.logstashPipeline }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "logstash.fullname" . }}-pipeline
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+data:
+{{- range $path, $config := .Values.logstashPipeline }}
+  {{ $path }}: |
+{{ tpl $config $ | indent 4 -}}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/logstash/templates/ingress.yaml b/sregym/observer/logstash/templates/ingress.yaml
new file mode 100644
index 0000000..4e0bb32
--- /dev/null
+++ b/sregym/observer/logstash/templates/ingress.yaml
@@ -0,0 +1,68 @@
+{{- if .Values.ingress.enabled -}}
+{{- $fullName := include "logstash.fullname" . -}}
+{{- $httpPort := .Values.httpPort -}}
+{{- $ingressPath := .Values.ingress.path -}}
+{{- $pathtype := .Values.ingress.pathtype -}}
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: {{ $fullName }}
+  labels:
+    app: {{ $fullName | quote}}
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+{{- with .Values.ingress.annotations }}
+  annotations:
+{{ toYaml . | indent 4 }}
+{{- end }}
+spec:
+  {{- if .Values.ingress.className }}
+  ingressClassName: {{ .Values.ingress.className | quote }}
+  {{- end }}
+{{- if .Values.ingress.tls }}
+  tls:
+  {{- if .ingressPath }}
+  {{- range  .Values.ingress.tls }}
+  - hosts:
+    {{- range  .hosts }}
+      - {{ . }}
+    {{- end }}
+    secretName: {{ .secretName }}
+  {{- end }}
+  {{- else }}
+{{ toYaml .Values.ingress.tls | indent 4 }}
+  {{- end }}
+{{- end}}
+  rules:
+  {{- range .Values.ingress.hosts }}
+    {{- /*
+    TODO: deprecate $ingressPath for Logstash 8.x
+    */}}
+    {{- if $ingressPath }}
+  - host: {{ . }}
+    http:
+      paths:
+      - path: {{ $ingressPath }}
+        pathType: {{ $pathtype }}
+        backend:
+          service:
+            name: {{ $fullName }}
+            port:
+              number: {{ $httpPort }}
+    {{- else }}
+  - host: {{ .host }}
+    http:
+      paths:
+      {{- range .paths }}
+      - path: {{ .path }}
+        pathType: {{ $pathtype }}
+        backend:
+          service:
+            name: {{ $fullName }}
+            port:
+              number: {{ .servicePort | default $httpPort }}
+      {{- end }}
+    {{- end }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/logstash/templates/poddisruptionbudget.yaml b/sregym/observer/logstash/templates/poddisruptionbudget.yaml
new file mode 100644
index 0000000..a644215
--- /dev/null
+++ b/sregym/observer/logstash/templates/poddisruptionbudget.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.maxUnavailable }}
+{{- if .Capabilities.APIVersions.Has "policy/v1" -}}
+apiVersion: policy/v1
+{{- else}}
+apiVersion: policy/v1beta1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: "{{ template "logstash.fullname" . }}-pdb"
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+spec:
+  maxUnavailable: {{ .Values.maxUnavailable }}
+  selector:
+    matchLabels:
+      app: "{{ template "logstash.fullname" . }}"
+{{- end }}
diff --git a/sregym/observer/logstash/templates/podsecuritypolicy.yaml b/sregym/observer/logstash/templates/podsecuritypolicy.yaml
new file mode 100644
index 0000000..2927756
--- /dev/null
+++ b/sregym/observer/logstash/templates/podsecuritypolicy.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.podSecurityPolicy.create -}}
+{{- $fullName := include "logstash.fullname" . -}}
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ default $fullName .Values.podSecurityPolicy.name | quote }}
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+spec:
+{{ toYaml .Values.podSecurityPolicy.spec | indent 2 }}
+{{- end -}}
diff --git a/sregym/observer/logstash/templates/role.yaml b/sregym/observer/logstash/templates/role.yaml
new file mode 100644
index 0000000..9f37ffa
--- /dev/null
+++ b/sregym/observer/logstash/templates/role.yaml
@@ -0,0 +1,25 @@
+{{- if .Values.rbac.create -}}
+{{- $fullName := include "logstash.fullname" . -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: {{ $fullName | quote }}
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+rules:
+  - apiGroups:
+      - extensions
+    resources:
+      - podsecuritypolicies
+    resourceNames:
+      {{- if eq .Values.podSecurityPolicy.name "" }}
+      - {{ $fullName | quote }}
+      {{- else }}
+      - {{ .Values.podSecurityPolicy.name | quote }}
+      {{- end }}
+    verbs:
+      - use
+{{- end -}}
diff --git a/sregym/observer/logstash/templates/rolebinding.yaml b/sregym/observer/logstash/templates/rolebinding.yaml
new file mode 100644
index 0000000..a87d00e
--- /dev/null
+++ b/sregym/observer/logstash/templates/rolebinding.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.rbac.create -}}
+{{- $fullName := include "logstash.fullname" . -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: {{ $fullName | quote }}
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+subjects:
+  - kind: ServiceAccount
+    name: "{{ template "logstash.serviceAccount" . }}"
+    namespace: {{ .Release.Namespace | quote }}
+roleRef:
+  kind: Role
+  name: {{ $fullName | quote }}
+  apiGroup: rbac.authorization.k8s.io
+{{- end -}}
diff --git a/sregym/observer/logstash/templates/secret.yaml b/sregym/observer/logstash/templates/secret.yaml
new file mode 100644
index 0000000..0456e4b
--- /dev/null
+++ b/sregym/observer/logstash/templates/secret.yaml
@@ -0,0 +1,27 @@
+{{- if .Values.secrets }}
+{{- $fullName := include "logstash.fullname" . -}}
+{{- range .Values.secrets }}
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ printf "%s-%s" $fullName .name | quote }}
+  labels:
+    app: {{ $fullName | quote }}
+    chart: {{ $.Chart.Name | quote }}
+    heritage: {{ $.Release.Service | quote }}
+    release: {{ $.Release.Name | quote }}
+    {{- range $key, $value := $.Values.labels }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+data:
+{{- range $key, $val := .value }}
+  {{- if hasSuffix "filepath" $key }}
+  {{ $key | replace ".filepath" "" }}: {{ $.Files.Get $val | b64enc | quote }}
+  {{ else }}
+  {{ $key }}: {{ $val | b64enc | quote }}
+  {{- end }}
+{{- end }}
+type: Opaque
+{{- end }}
+{{- end }}
\ No newline at end of file
diff --git a/sregym/observer/logstash/templates/service-headless.yaml b/sregym/observer/logstash/templates/service-headless.yaml
new file mode 100644
index 0000000..1982ef4
--- /dev/null
+++ b/sregym/observer/logstash/templates/service-headless.yaml
@@ -0,0 +1,20 @@
+---
+kind: Service
+apiVersion: v1
+metadata:
+  name: "{{ template "logstash.fullname" . }}-headless"
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+{{- if .Values.labels }}
+{{ toYaml .Values.labels | indent 4 }}
+{{- end }}
+spec:
+  clusterIP: None
+  selector:
+    app: "{{ template "logstash.fullname" . }}"
+  ports:
+    - name: http
+      port: {{ .Values.httpPort }}
diff --git a/sregym/observer/logstash/templates/service.yaml b/sregym/observer/logstash/templates/service.yaml
new file mode 100644
index 0000000..b732a0c
--- /dev/null
+++ b/sregym/observer/logstash/templates/service.yaml
@@ -0,0 +1,32 @@
+{{- if .Values.service }}
+---
+kind: Service
+apiVersion: v1
+metadata:
+  name: "{{ template "logstash.fullname" . }}"
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+  annotations:
+{{ toYaml .Values.service.annotations | indent 4 }}
+spec:
+  type: {{ .Values.service.type }}
+{{- if .Values.service.loadBalancerIP }}
+  loadBalancerIP: {{ .Values.service.loadBalancerIP }}
+{{- end }}
+{{- with .Values.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+{{ toYaml . | indent 4 }}
+{{- end }}
+{{- if .Values.service.externalTrafficPolicy }}
+  externalTrafficPolicy: {{ .Values.service.externalTrafficPolicy }}
+{{- end }}
+  selector:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    release: {{ .Release.Name | quote }}
+  ports:
+{{ toYaml .Values.service.ports | indent 4 }}
+{{- end }}
diff --git a/sregym/observer/logstash/templates/serviceaccount.yaml b/sregym/observer/logstash/templates/serviceaccount.yaml
new file mode 100644
index 0000000..18e56e4
--- /dev/null
+++ b/sregym/observer/logstash/templates/serviceaccount.yaml
@@ -0,0 +1,22 @@
+{{- if .Values.rbac.create -}}
+{{- $fullName := include "logstash.fullname" . -}}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: "{{ template "logstash.serviceAccount" . }}"
+  annotations:
+    {{- with .Values.rbac.serviceAccountAnnotations }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+  {{- if .Values.rbac.annotations }}
+  annotations:
+    {{- range $key, $value := .Values.rbac.annotations }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+  {{- end }}
+{{- end -}}
diff --git a/sregym/observer/logstash/templates/statefulset.yaml b/sregym/observer/logstash/templates/statefulset.yaml
new file mode 100644
index 0000000..c721979
--- /dev/null
+++ b/sregym/observer/logstash/templates/statefulset.yaml
@@ -0,0 +1,237 @@
+---
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: {{ template "logstash.fullname" . }}
+  labels:
+    app: "{{ template "logstash.fullname" . }}"
+    chart: "{{ .Chart.Name }}"
+    heritage: {{ .Release.Service | quote }}
+    release: {{ .Release.Name | quote }}
+    {{- range $key, $value := .Values.labels }}
+    {{ $key }}: {{ $value | quote }}
+    {{- end }}
+spec:
+  serviceName: {{ template "logstash.fullname" . }}-headless
+  selector:
+    matchLabels:
+      app: "{{ template "logstash.fullname" . }}"
+      release: {{ .Release.Name | quote }}
+  replicas: {{ .Values.replicas }}
+  podManagementPolicy: {{ .Values.podManagementPolicy }}
+  updateStrategy:
+    type: {{ .Values.updateStrategy }}
+  {{- if .Values.persistence.enabled }}
+  volumeClaimTemplates:
+  - metadata:
+      name: {{ template "logstash.fullname" . }}
+    {{- with .Values.persistence.annotations  }}
+      annotations:
+{{ toYaml . | indent 8 }}
+    {{- end }}
+    spec:
+{{ toYaml .Values.volumeClaimTemplate | indent 6 }}
+  {{- end }}
+  template:
+    metadata:
+      name: "{{ template "logstash.fullname" . }}"
+      labels:
+        app: "{{ template "logstash.fullname" . }}"
+        chart: "{{ .Chart.Name }}"
+        heritage: {{ .Release.Service | quote }}
+        release: {{ .Release.Name | quote }}
+        {{- range $key, $value := .Values.labels }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+      annotations:
+        {{- range $key, $value := .Values.podAnnotations }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+        {{- /* This forces a restart if the configmap has changed */}}
+        {{- if .Values.logstashConfig }}
+        configchecksum: {{ include (print .Template.BasePath "/configmap-config.yaml") . | sha256sum | trunc 63 }}
+        {{- end }}
+        {{- /* This forces a restart if the configmap has changed */}}
+        {{- if .Values.logstashPipeline }}
+        pipelinechecksum: {{ include (print .Template.BasePath "/configmap-pipeline.yaml") . | sha256sum | trunc 63 }}
+        {{- end }}
+        {{- if .Values.logstashPattern }}
+        patternchecksum: {{ include (print .Template.BasePath "/configmap-pattern.yaml") . | sha256sum | trunc 63 }}
+        {{- end }}
+        {{- if .Values.secrets }}
+        secretschecksum: {{ include (print .Template.BasePath "/secret.yaml") . | sha256sum | trunc 63 }}
+        {{- end }}
+    spec:
+      {{- if .Values.schedulerName }}
+      schedulerName: "{{ .Values.schedulerName }}"
+      {{- end }}
+      securityContext:
+{{ toYaml .Values.podSecurityContext | indent 8 }}
+      {{- if or .Values.rbac.create .Values.rbac.serviceAccountName }}
+      serviceAccountName: "{{ template "logstash.serviceAccount" . }}"
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+{{ toYaml . | indent 6 }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+{{ toYaml . | indent 8 }}
+      {{- end }}
+      {{- if or (eq .Values.antiAffinity "hard") (eq .Values.antiAffinity "soft") .Values.nodeAffinity .Values.podAffinity }}
+      {{- if .Values.priorityClassName }}
+      priorityClassName: {{ .Values.priorityClassName }}
+      {{- end }}
+      affinity:
+      {{- end }}
+      {{- if eq .Values.antiAffinity "hard" }}
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+          - labelSelector:
+              matchExpressions:
+              - key: app
+                operator: In
+                values:
+                - "{{ template "logstash.fullname" .}}"
+            topologyKey: {{ .Values.antiAffinityTopologyKey }}
+      {{- else if eq .Values.antiAffinity "soft" }}
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+          - weight: 1
+            podAffinityTerm:
+              topologyKey: {{ .Values.antiAffinityTopologyKey }}
+              labelSelector:
+                matchExpressions:
+                - key: app
+                  operator: In
+                  values:
+                  - "{{ template "logstash.fullname" . }}"
+      {{- end }}
+      {{- with .Values.nodeAffinity }}
+        nodeAffinity:
+{{ toYaml . | indent 10 }}
+      {{- end }}
+      {{- with .Values.podAffinity }}
+        podAffinity:
+{{ toYaml . | indent 10 }}
+      {{- end }}
+      terminationGracePeriodSeconds: {{ .Values.terminationGracePeriod }}
+      volumes:
+        {{- range .Values.secretMounts }}
+        - name: {{ .name }}
+          secret:
+            secretName: {{ .secretName }}
+        {{- end }}
+        {{- if .Values.logstashConfig }}
+        - name: logstashconfig
+          configMap:
+            name: {{ template "logstash.fullname" . }}-config
+        {{- end }}
+        {{- if .Values.logstashPipeline }}
+        - name: logstashpipeline
+          configMap:
+            name: {{ template "logstash.fullname" . }}-pipeline
+        {{- end }}
+        {{- if .Values.logstashPattern }}
+        - name: logstashpattern
+          configMap:
+            name: {{ template "logstash.fullname" . }}-pattern
+        {{- end }}
+      {{- if .Values.extraVolumes }}
+      {{- if eq "string" (printf "%T" .Values.extraVolumes) }}
+{{ tpl .Values.extraVolumes . | indent 8 }}
+      {{- else }}
+{{ toYaml .Values.extraVolumes | indent 8 }}
+      {{- end }}
+      {{- end }}
+      {{- if .Values.imagePullSecrets }}
+      imagePullSecrets:
+{{ toYaml .Values.imagePullSecrets | indent 8 }}
+      {{- end}}
+      {{- if .Values.hostAliases }}
+      hostAliases: {{ toYaml .Values.hostAliases | nindent 6 }}
+      {{- end }}
+      {{- if .Values.extraInitContainers }}
+      initContainers:
+      {{- if eq "string" (printf "%T" .Values.extraInitContainers) }}
+{{ tpl .Values.extraInitContainers . | indent 6 }}
+      {{- else }}
+{{ toYaml .Values.extraInitContainers | indent 6 }}      
+      {{- end }}
+      {{- end }}
+      containers:
+      - name: "{{ template "logstash.name" . }}"
+        securityContext:
+{{ toYaml .Values.securityContext | indent 10 }}
+        image: "{{ .Values.image }}:{{ .Values.imageTag }}"
+        imagePullPolicy: "{{ .Values.imagePullPolicy }}"
+        livenessProbe:
+{{ toYaml .Values.livenessProbe | indent 10 }}
+        readinessProbe:
+{{ toYaml .Values.readinessProbe | indent 10 }}
+        ports:
+        - name: http
+          containerPort: {{ .Values.httpPort }}
+      {{- if .Values.extraPorts }}
+        {{- toYaml .Values.extraPorts | nindent 8 }}
+      {{- end }}
+        resources:
+{{ toYaml .Values.resources | indent 10 }}
+        env:
+          - name: LS_JAVA_OPTS
+            value: "{{ .Values.logstashJavaOpts }}"
+{{- if .Values.extraEnvs }}
+{{ toYaml .Values.extraEnvs | indent 10 }}
+{{- end }}
+{{- if .Values.envFrom }}
+        envFrom:
+{{ toYaml .Values.envFrom | indent 10 }}
+{{- end }}
+        volumeMounts:
+          {{- if .Values.persistence.enabled }}
+          - name: "{{ template "logstash.fullname" . }}"
+            mountPath: /usr/share/logstash/data
+          {{- end }}
+          {{- range .Values.secretMounts }}
+          - name: {{ .name }}
+            mountPath: {{ .path }}
+            {{- if .subPath }}
+            subPath: {{ .subPath }}
+            {{- end }}
+          {{- end }}
+          {{- range $path, $config := .Values.logstashConfig }}
+          - name: logstashconfig
+            mountPath: /usr/share/logstash/config/{{ $path }}
+            subPath: {{ $path }}
+          {{- end -}}
+          {{- range $path, $config := .Values.logstashPipeline }}
+          - name: logstashpipeline
+            mountPath: /usr/share/logstash/pipeline/{{ $path }}
+            subPath: {{ $path }}
+          {{- end -}}
+          {{- if .Values.logstashPattern }}
+          {{- $logstashPatternDir := .Values.logstashPatternDir -}}
+          {{- range $path, $config := .Values.logstashPattern }}
+          - name: logstashpattern
+            mountPath: {{ $logstashPatternDir }}{{ $path }}
+            subPath: {{ $path }}
+          {{- end -}}
+          {{- end -}}
+        {{- if .Values.extraVolumeMounts }}
+        {{- if eq "string" (printf "%T" .Values.extraVolumeMounts) }}
+{{ tpl .Values.extraVolumeMounts . | indent 10 }}
+        {{- else }}
+{{ toYaml .Values.extraVolumeMounts | indent 10 }}
+        {{- end }}
+        {{- end }}
+{{- if .Values.lifecycle }}
+        lifecycle:
+{{ toYaml .Values.lifecycle | indent 10 }}
+{{- end }}
+      {{- if .Values.extraContainers }}
+      {{- if eq "string" (printf "%T" .Values.extraContainers) }}
+{{ tpl .Values.extraContainers . | indent 6 }}
+      {{- else }}
+{{ toYaml .Values.extraContainers | indent 6 }}
+      {{- end }}      
+      {{- end }}
diff --git a/sregym/observer/logstash/values.yaml b/sregym/observer/logstash/values.yaml
new file mode 100644
index 0000000..d42a01b
--- /dev/null
+++ b/sregym/observer/logstash/values.yaml
@@ -0,0 +1,311 @@
+---
+replicas: 1
+
+# Allows you to add any config files in /usr/share/logstash/config/
+# such as logstash.yml and log4j2.properties
+#
+# Note that when overriding logstash.yml, `http.host: 0.0.0.0` should always be included
+# to make default probes work.
+logstashConfig: {}
+#  logstash.yml: |
+#    key:
+#      nestedkey: value
+#  log4j2.properties: |
+#    key = value
+
+# Allows you to add any pipeline files in /usr/share/logstash/pipeline/
+### ***warn*** there is a hardcoded logstash.conf in the image, override it first
+logstashPipeline: {}
+#  logstash.conf: |
+#    input {
+#      exec {
+#        command => "uptime"
+#        interval => 30
+#      }
+#    }
+#    output { stdout { } }
+
+# Allows you to add any pattern files in your custom pattern dir
+logstashPatternDir: "/usr/share/logstash/patterns/"
+logstashPattern: {}
+#    pattern.conf: |
+#      DPKG_VERSION [-+~<>\.0-9a-zA-Z]+
+
+# Extra environment variables to append to this nodeGroup
+# This will be appended to the current 'env:' key. You can use any of the kubernetes env
+# syntax here
+extraEnvs: []
+#  - name: MY_ENVIRONMENT_VAR
+#    value: the_value_goes_here
+
+# Allows you to load environment variables from kubernetes secret or config map
+envFrom: []
+# - secretRef:
+#     name: env-secret
+# - configMapRef:
+#     name: config-map
+
+# Add sensitive data to k8s secrets
+secrets: []
+#  - name: "env"
+#    value:
+#      ELASTICSEARCH_PASSWORD: "LS1CRUdJTiBgUFJJVkFURSB"
+#      api_key: ui2CsdUadTiBasRJRkl9tvNnw
+#  - name: "tls"
+#    value:
+#      ca.crt: |
+#        LS0tLS1CRUdJT0K
+#        LS0tLS1CRUdJT0K
+#        LS0tLS1CRUdJT0K
+#        LS0tLS1CRUdJT0K
+#      cert.crt: "LS0tLS1CRUdJTiBlRJRklDQVRFLS0tLS0K"
+#      cert.key.filepath: "secrets.crt" # The path to file should be relative to the `values.yaml` file.
+
+# A list of secrets and their paths to mount inside the pod
+secretMounts: []
+
+hostAliases: []
+#- ip: "127.0.0.1"
+#  hostnames:
+#  - "foo.local"
+#  - "bar.local"
+
+image: "docker.elastic.co/logstash/logstash"
+imageTag: "8.7.1"
+imagePullPolicy: "IfNotPresent"
+imagePullSecrets: []
+
+podAnnotations: {}
+
+# additionals labels
+labels: {}
+
+logstashJavaOpts: "-Xmx1g -Xms1g"
+
+resources:
+  requests:
+    cpu: "100m"
+    memory: "1536Mi"
+  limits:
+    cpu: "1000m"
+    memory: "1536Mi"
+
+volumeClaimTemplate:
+  accessModes: ["ReadWriteOnce"]
+  resources:
+    requests:
+      storage: 1Gi
+
+rbac:
+  create: false
+  serviceAccountAnnotations: {}
+  serviceAccountName: ""
+  annotations:
+    {}
+    #annotation1: "value1"
+    #annotation2: "value2"
+    #annotation3: "value3"
+
+podSecurityPolicy:
+  create: false
+  name: ""
+  spec:
+    privileged: false
+    fsGroup:
+      rule: RunAsAny
+    runAsUser:
+      rule: RunAsAny
+    seLinux:
+      rule: RunAsAny
+    supplementalGroups:
+      rule: RunAsAny
+    volumes:
+      - secret
+      - configMap
+      - persistentVolumeClaim
+
+persistence:
+  enabled: false
+  annotations: {}
+
+extraVolumes:
+  []
+  # - name: extras
+  #   emptyDir: {}
+
+extraVolumeMounts:
+  []
+  # - name: extras
+  #   mountPath: /usr/share/extras
+  #   readOnly: true
+
+extraContainers:
+  []
+  # - name: do-something
+  #   image: busybox
+  #   command: ['do', 'something']
+
+extraInitContainers:
+  []
+  # - name: do-something
+  #   image: busybox
+  #   command: ['do', 'something']
+
+# This is the PriorityClass settings as defined in
+# https://kubernetes.io/docs/concepts/configuration/pod-priority-preemption/#priorityclass
+priorityClassName: ""
+
+# By default this will make sure two pods don't end up on the same node
+# Changing this to a region would allow you to spread pods across regions
+antiAffinityTopologyKey: "kubernetes.io/hostname"
+
+# Hard means that by default pods will only be scheduled if there are enough nodes for them
+# and that they will never end up on the same node. Setting this to soft will do this "best effort"
+antiAffinity: "hard"
+
+# This is the node affinity settings as defined in
+# https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#node-affinity
+nodeAffinity: {}
+
+# This is inter-pod affinity settings as defined in
+# https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#inter-pod-affinity-and-anti-affinity
+podAffinity: {}
+
+# The default is to deploy all pods serially. By setting this to parallel all pods are started at
+# the same time when bootstrapping the cluster
+podManagementPolicy: "Parallel"
+
+httpPort: 9600
+
+# Custom ports to add to logstash
+extraPorts:
+  []
+  # - name: beats
+  #   containerPort: 5001
+
+updateStrategy: RollingUpdate
+
+# This is the max unavailable setting for the pod disruption budget
+# The default value of 1 will make sure that kubernetes won't allow more than 1
+# of your pods to be unavailable during maintenance
+maxUnavailable: 1
+
+podSecurityContext:
+  fsGroup: 1000
+  runAsUser: 1000
+
+securityContext:
+  capabilities:
+    drop:
+      - ALL
+  # readOnlyRootFilesystem: true
+  runAsNonRoot: true
+  runAsUser: 1000
+
+# How long to wait for logstash to stop gracefully
+terminationGracePeriod: 120
+
+# Probes
+# Default probes are using `httpGet` which requires that `http.host: 0.0.0.0` is part of
+# `logstash.yml`. If needed probes can be disabled or overridden using the following syntaxes:
+#
+# disable livenessProbe
+# livenessProbe: null
+#
+# replace httpGet default readinessProbe by some exec probe
+# readinessProbe:
+#   httpGet: null
+#   exec:
+#     command:
+#       - curl
+#      - localhost:9600
+
+livenessProbe:
+  httpGet:
+    path: /
+    port: http
+  initialDelaySeconds: 300
+  periodSeconds: 10
+  timeoutSeconds: 5
+  failureThreshold: 3
+  successThreshold: 1
+
+readinessProbe:
+  httpGet:
+    path: /
+    port: http
+  initialDelaySeconds: 60
+  periodSeconds: 10
+  timeoutSeconds: 5
+  failureThreshold: 3
+  successThreshold: 3
+
+## Use an alternate scheduler.
+## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
+##
+schedulerName: ""
+
+nodeSelector: {}
+tolerations: []
+
+nameOverride: ""
+fullnameOverride: ""
+
+lifecycle:
+  {}
+  # preStop:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler > /usr/share/message"]
+  # postStart:
+  #   exec:
+  #     command: ["/bin/sh", "-c", "echo Hello from the postStart handler > /usr/share/message"]
+
+service:
+  {}
+  # annotations: {}
+  # type: ClusterIP
+  # loadBalancerIP: ""
+  # ports:
+  #   - name: beats
+  #     port: 5044
+  #     protocol: TCP
+  #     targetPort: 5044
+  #   - name: http
+  #     port: 8080
+  #     protocol: TCP
+  #     targetPort: 8080
+
+ingress:
+  enabled: false
+  annotations:
+    {}
+    # kubernetes.io/tls-acme: "true"
+  className: "nginx"
+  pathtype: ImplementationSpecific
+  hosts:
+    - host: logstash-example.local
+      paths:
+        - path: /beats
+          servicePort: 5044
+        - path: /http
+          servicePort: 8080
+  tls: []
+  #  - secretName: logstash-example-tls
+  #    hosts:
+  #      - logstash-example.local
+
+  # template:
+  #   settings:
+  #     index:
+  #       lifecycle:
+  #         name: "log_test1"
+  #         rollover_alias: "logstash_suited"
+  #       number_of_shards: 3
+  #       number_of_replicas: 1
+
+  output:
+    elasticsearch:
+      hosts: ["https://10.10.1.202:9200"]
+      index: "logstash-%{+YYYY.MM.dd}"
+      template_name: "logstash-template"
+      template_overwride: false
\ No newline at end of file
diff --git a/sregym/observer/prometheus/prometheus-pvc.yml b/sregym/observer/prometheus/prometheus-pvc.yml
new file mode 100644
index 0000000..aa8afd3
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus-pvc.yml
@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: prometheus-pvc
+spec:
+  accessModes:
+  - ReadWriteOnce
+  resources:
+    requests:
+      storage: 10Gi
+  storageClassName: openebs-hostpath
\ No newline at end of file
diff --git a/sregym/observer/prometheus/prometheus/.helmignore b/sregym/observer/prometheus/prometheus/.helmignore
new file mode 100644
index 0000000..0c4eb83
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/.helmignore
@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+
+OWNERS
diff --git a/sregym/observer/prometheus/prometheus/Chart.yaml b/sregym/observer/prometheus/prometheus/Chart.yaml
new file mode 100644
index 0000000..1094661
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/Chart.yaml
@@ -0,0 +1,53 @@
+apiVersion: v2
+name: prometheus
+appVersion: v2.47.2
+version: 25.6.0
+kubeVersion: ">=1.19.0-0"
+description: Prometheus is a monitoring system and time series database.
+home: https://prometheus.io/
+icon: https://raw.githubusercontent.com/prometheus/prometheus.github.io/master/assets/prometheus_logo-cb55bb5c346.png
+sources:
+  - https://github.com/prometheus/alertmanager
+  - https://github.com/prometheus/prometheus
+  - https://github.com/prometheus/pushgateway
+  - https://github.com/prometheus/node_exporter
+  - https://github.com/kubernetes/kube-state-metrics
+maintainers:
+  - name: gianrubio
+    email: gianrubio@gmail.com
+  - name: zanhsieh
+    email: zanhsieh@gmail.com
+  - name: Xtigyro
+    email: miroslav.hadzhiev@gmail.com
+  - name: naseemkullah
+    email: naseem@transit.app
+  - name: zeritti
+    email: rootsandtrees@posteo.de
+type: application
+dependencies:
+  - name: alertmanager
+    version: "1.7.*"
+    repository: https://prometheus-community.github.io/helm-charts
+    condition: alertmanager.enabled
+  - name: kube-state-metrics
+    version: "5.15.*"
+    repository: https://prometheus-community.github.io/helm-charts
+    condition: kube-state-metrics.enabled
+  - name: prometheus-node-exporter
+    version: "4.23.*"
+    repository: https://prometheus-community.github.io/helm-charts
+    condition: prometheus-node-exporter.enabled
+  - name: prometheus-pushgateway
+    version: "2.4.*"
+    repository: https://prometheus-community.github.io/helm-charts
+    condition: prometheus-pushgateway.enabled
+keywords:
+  - monitoring
+  - prometheus
+annotations:
+  "artifacthub.io/license": Apache-2.0
+  "artifacthub.io/links": |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
+    - name: Upstream Project
+      url: https://github.com/prometheus/prometheus
diff --git a/sregym/observer/prometheus/prometheus/README.md b/sregym/observer/prometheus/prometheus/README.md
new file mode 100644
index 0000000..6bfe35b
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/README.md
@@ -0,0 +1,382 @@
+# Prometheus
+
+[Prometheus](https://prometheus.io/), a [Cloud Native Computing Foundation](https://cncf.io/) project, is a systems and service monitoring system. It collects metrics from configured targets at given intervals, evaluates rule expressions, displays the results, and can trigger alerts if some condition is observed to be true.
+
+This chart bootstraps a [Prometheus](https://prometheus.io/) deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+## Prerequisites
+
+- Kubernetes 1.19+
+- Helm 3.7+
+
+## Get Repository Info
+
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [helm repository](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+
+## Install Chart
+
+Starting with version 16.0, the Prometheus chart requires Helm 3.7+ in order to install successfully. Please check your `helm` release before installation.
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Dependencies
+
+By default this chart installs additional, dependent charts:
+
+- [alertmanager](https://github.com/prometheus-community/helm-charts/tree/main/charts/alertmanager)
+- [kube-state-metrics](https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-state-metrics)
+- [prometheus-node-exporter](https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-node-exporter)
+- [prometheus-pushgateway](https://github.com/walker-tom/helm-charts/tree/main/charts/prometheus-pushgateway)
+
+To disable the dependency during installation, set `alertmanager.enabled`, `kube-state-metrics.enabled`, `prometheus-node-exporter.enabled` and `prometheus-pushgateway.enabled` to `false`.
+
+_See [helm dependency](https://helm.sh/docs/helm/helm_dependency/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Updating values.schema.json
+
+A [`values.schema.json`](https://helm.sh/docs/topics/charts/#schema-files) file has been added to validate chart values. When `values.yaml` file has a structure change (i.e. add a new field, change value type, etc.), modify `values.schema.json` file manually or run `helm schema-gen values.yaml > values.schema.json` to ensure the schema is aligned with the latest values. Refer to [helm plugin `helm-schema-gen`](https://github.com/karuppiah7890/helm-schema-gen) for plugin installation instructions.
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### To 25.0
+
+The `server.remoteRead[].url` and `server.remoteWrite[].url` fields now support templating. Allowing for `url` values such as `https://{{ .Release.Name }}.example.com`.
+
+Any entries in these which previously included `{{` or `}}` must be escaped with `{{ "{{" }}` and `{{ "}}" }}` respectively. Entries which did not previously include the template-like syntax will not be affected.
+
+### To 24.0
+
+Require Kubernetes 1.19+
+
+Release 1.0.0 of the _alertmanager_ replaced [configmap-reload](https://github.com/jimmidyson/configmap-reload) with [prometheus-config-reloader](https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader).
+Extra command-line arguments specified via `configmapReload.prometheus.extraArgs` are not compatible and will break with the new prometheus-config-reloader. Please, refer to the [sources](https://github.com/prometheus-operator/prometheus-operator/blob/main/cmd/prometheus-config-reloader/main.go) in order to make the appropriate adjustment to the extra command-line arguments.
+
+### To 23.0
+
+Release 5.0.0 of the _kube-state-metrics_ chart introduced a separation of the `image.repository` value in two distinct values:
+
+```console
+ image:
+   registry: registry.k8s.io
+   repository: kube-state-metrics/kube-state-metrics
+```
+
+If a custom values file or CLI flags set `kube-state.metrics.image.repository`, please, set the new values accordingly.
+
+If you are upgrading _prometheus-pushgateway_ with the chart and _prometheus-pushgateway_ has been deployed as a statefulset with a persistent volume, the statefulset must be deleted before upgrading the chart, e.g.:
+
+```bash
+kubectl delete sts -l app.kubernetes.io/name=prometheus-pushgateway -n monitoring --cascade=orphan
+```
+
+Users are advised to review changes in the corresponding chart releases before upgrading.
+
+### To 22.0
+
+The `app.kubernetes.io/version` label has been removed from the pod selector.
+
+Therefore, you must delete the previous StatefulSet or Deployment before upgrading. Performing this operation will cause **Prometheus to stop functioning** until the upgrade is complete.
+
+```console
+kubectl delete deploy,sts -l app.kubernetes.io/name=prometheus
+```
+
+### To 21.0
+
+The Kubernetes labels have been updated to follow [Helm 3 label and annotation best practices](https://helm.sh/docs/chart_best_practices/labels/).
+Specifically, labels mapping is listed below:
+
+| OLD                | NEW                          |
+|--------------------|------------------------------|
+|heritage            | app.kubernetes.io/managed-by |
+|chart               | helm.sh/chart                |
+|[container version] | app.kubernetes.io/version    |
+|app                 | app.kubernetes.io/name       |
+|release             | app.kubernetes.io/instance   |
+
+Therefore, depending on the way you've configured the chart, the previous StatefulSet or Deployment need to be deleted before upgrade.
+
+If `runAsStatefulSet: false` (this is the default):
+
+```console
+kubectl delete deploy -l app=prometheus
+```
+
+If `runAsStatefulSet: true`:
+
+```console
+kubectl delete sts -l app=prometheus
+```
+
+After that do the actual upgrade:
+
+```console
+helm upgrade -i prometheus prometheus-community/prometheus
+```
+
+### To 20.0
+
+The [configmap-reload](https://github.com/jimmidyson/configmap-reload) container was replaced by the [prometheus-config-reloader](https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader).
+Extra command-line arguments specified via configmapReload.prometheus.extraArgs are not compatible and will break with the new prometheus-config-reloader, refer to the [sources](https://github.com/prometheus-operator/prometheus-operator/blob/main/cmd/prometheus-config-reloader/main.go) in order to make the appropriate adjustment to the extra command-line arguments.
+
+### To 19.0
+
+Prometheus has been updated to version v2.40.5.
+
+Prometheus-pushgateway was updated to version 2.0.0 which adapted [Helm label and annotation best practices](https://helm.sh/docs/chart_best_practices/labels/).
+See the [upgrade docs of the prometheus-pushgateway chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-pushgateway#to-200) to see whats to do, before you upgrade Prometheus!
+
+The condition in Chart.yaml to disable kube-state-metrics has been changed from `kubeStateMetrics.enabled` to `kube-state-metrics.enabled`
+
+The Docker image tag is used from appVersion field in Chart.yaml by default.
+
+Unused subchart configs has been removed and subchart config is now on the bottom of the config file.
+
+If Prometheus is used as deployment the updatestrategy has been changed to "Recreate" by default, so Helm updates work out of the box.
+
+`.Values.server.extraTemplates` & `.Values.server.extraObjects` has been removed in favour of `.Values.extraManifests`, which can do the same.
+
+`.Values.server.enabled` has been removed as it's useless now that all components are created by subcharts.
+
+All files in `templates/server` directory has been moved to `templates` directory.
+
+```bash
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --version 19.0.0
+```
+
+### To 18.0
+
+Version 18.0.0 uses alertmanager service from the [alertmanager chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/alertmanager). If you've made some config changes, please check the old `alertmanager` and the new `alertmanager` configuration section in values.yaml for differences.
+
+Note that the `configmapReload` section for `alertmanager` was moved out of dedicated section (`configmapReload.alertmanager`) to alertmanager embedded (`alertmanager.configmapReload`).
+
+Before you update, please scale down the `prometheus-server` deployment to `0` then perform upgrade:
+
+```bash
+# In 17.x
+kubectl scale deploy prometheus-server --replicas=0
+# Upgrade
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --version 18.0.0
+```
+
+### To 17.0
+
+Version 17.0.0 uses pushgateway service from the [prometheus-pushgateway chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-pushgateway). If you've made some config changes, please check the old `pushgateway` and the new `prometheus-pushgateway` configuration section in values.yaml for differences.
+
+Before you update, please scale down the `prometheus-server` deployment to `0` then perform upgrade:
+
+```bash
+# In 16.x
+kubectl scale deploy prometheus-server --replicas=0
+# Upgrade
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --version 17.0.0
+```
+
+### To 16.0
+
+Starting from version 16.0 embedded services (like alertmanager, node-exporter etc.) are moved out of Prometheus chart and the respecting charts from this repository are used as dependencies. Version 16.0.0 moves node-exporter service to [prometheus-node-exporter chart](https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-node-exporter). If you've made some config changes, please check the old `nodeExporter` and the new `prometheus-node-exporter` configuration section in values.yaml for differences.
+
+Before you update, please scale down the `prometheus-server` deployment to `0` then perform upgrade:
+
+```bash
+# In 15.x
+kubectl scale deploy prometheus-server --replicas=0
+# Upgrade
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus --version 16.0.0
+```
+
+### To 15.0
+
+Version 15.0.0 changes the relabeling config, aligning it with the [Prometheus community conventions](https://github.com/prometheus/prometheus/pull/9832). If you've made manual changes to the relabeling config, you have to adapt your changes.
+
+Before you update please execute the following command, to be able to update kube-state-metrics:
+
+```bash
+kubectl delete deployments.apps -l app.kubernetes.io/instance=prometheus,app.kubernetes.io/name=kube-state-metrics --cascade=orphan
+```
+
+### To 9.0
+
+Version 9.0 adds a new option to enable or disable the Prometheus Server. This supports the use case of running a Prometheus server in one k8s cluster and scraping exporters in another cluster while using the same chart for each deployment. To install the server `server.enabled` must be set to `true`.
+
+### To 5.0
+
+As of version 5.0, this chart uses Prometheus 2.x. This version of prometheus introduces a new data format and is not compatible with prometheus 1.x. It is recommended to install this as a new release, as updating existing releases will not work. See the [prometheus docs](https://prometheus.io/docs/prometheus/latest/migration/#storage) for instructions on retaining your old data.
+
+Prometheus version 2.x has made changes to alertmanager, storage and recording rules. Check out the migration guide [here](https://prometheus.io/docs/prometheus/2.0/migration/).
+
+Users of this chart will need to update their alerting rules to the new format before they can upgrade.
+
+### Example Migration
+
+Assuming you have an existing release of the prometheus chart, named `prometheus-old`. In order to update to prometheus 2.x while keeping your old data do the following:
+
+1. Update the `prometheus-old` release. Disable scraping on every component besides the prometheus server, similar to the configuration below:
+
+  ```yaml
+  alertmanager:
+    enabled: false
+  alertmanagerFiles:
+    alertmanager.yml: ""
+  kubeStateMetrics:
+    enabled: false
+  nodeExporter:
+    enabled: false
+  pushgateway:
+    enabled: false
+  server:
+    extraArgs:
+      storage.local.retention: 720h
+  serverFiles:
+    alerts: ""
+    prometheus.yml: ""
+    rules: ""
+  ```
+
+1. Deploy a new release of the chart with version 5.0+ using prometheus 2.x. In the values.yaml set the scrape config as usual, and also add the `prometheus-old` instance as a remote-read target.
+
+   ```yaml
+    prometheus.yml:
+      ...
+      remote_read:
+      - url: http://prometheus-old/api/v1/read
+      ...
+   ```
+
+   Old data will be available when you query the new prometheus instance.
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/prometheus
+```
+
+You may similarly use the above configuration commands on each chart [dependency](#dependencies) to see its configurations.
+
+### Scraping Pod Metrics via Annotations
+
+This chart uses a default configuration that causes prometheus to scrape a variety of kubernetes resource types, provided they have the correct annotations. In this section we describe how to configure pods to be scraped; for information on how other resource types can be scraped you can do a `helm template` to get the kubernetes resource definitions, and then reference the prometheus configuration in the ConfigMap against the prometheus documentation for [relabel_config](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config) and [kubernetes_sd_config](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#kubernetes_sd_config).
+
+In order to get prometheus to scrape pods, you must add annotations to the pods as below:
+
+```yaml
+metadata:
+  annotations:
+    prometheus.io/scrape: "true"
+    prometheus.io/path: /metrics
+    prometheus.io/port: "8080"
+```
+
+You should adjust `prometheus.io/path` based on the URL that your pod serves metrics from. `prometheus.io/port` should be set to the port that your pod serves metrics from. Note that the values for `prometheus.io/scrape` and `prometheus.io/port` must be enclosed in double quotes.
+
+### Sharing Alerts Between Services
+
+Note that when [installing](#install-chart) or [upgrading](#upgrading-chart) you may use multiple values override files. This is particularly useful when you have alerts belonging to multiple services in the cluster. For example,
+
+```yaml
+# values.yaml
+# ...
+
+# service1-alert.yaml
+serverFiles:
+  alerts:
+    service1:
+      - alert: anAlert
+      # ...
+
+# service2-alert.yaml
+serverFiles:
+  alerts:
+    service2:
+      - alert: anAlert
+      # ...
+```
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus -f values.yaml -f service1-alert.yaml -f service2-alert.yaml
+```
+
+### RBAC Configuration
+
+Roles and RoleBindings resources will be created automatically for `server` service.
+
+To manually setup RBAC you need to set the parameter `rbac.create=false` and specify the service account to be used for each service by setting the parameters: `serviceAccounts.{{ component }}.create` to `false` and `serviceAccounts.{{ component }}.name` to the name of a pre-existing service account.
+
+> **Tip**: You can refer to the default `*-clusterrole.yaml` and `*-clusterrolebinding.yaml` files in [templates](templates/) to customize your own.
+
+### ConfigMap Files
+
+AlertManager is configured through [alertmanager.yml](https://prometheus.io/docs/alerting/configuration/). This file (and any others listed in `alertmanagerFiles`) will be mounted into the `alertmanager` pod.
+
+Prometheus is configured through [prometheus.yml](https://prometheus.io/docs/operating/configuration/). This file (and any others listed in `serverFiles`) will be mounted into the `server` pod.
+
+### Ingress TLS
+
+If your cluster allows automatic creation/retrieval of TLS certificates (e.g. [cert-manager](https://github.com/jetstack/cert-manager)), please refer to the documentation for that mechanism.
+
+To manually configure TLS, first create/retrieve a key & certificate pair for the address(es) you wish to protect. Then create a TLS secret in the namespace:
+
+```console
+kubectl create secret tls prometheus-server-tls --cert=path/to/tls.cert --key=path/to/tls.key
+```
+
+Include the secret's name, along with the desired hostnames, in the alertmanager/server Ingress TLS section of your custom `values.yaml` file:
+
+```yaml
+server:
+  ingress:
+    ## If true, Prometheus server Ingress will be created
+    ##
+    enabled: true
+
+    ## Prometheus server Ingress hostnames
+    ## Must be provided if Ingress is enabled
+    ##
+    hosts:
+      - prometheus.domain.com
+
+    ## Prometheus server Ingress TLS configuration
+    ## Secrets must be manually created in the namespace
+    ##
+    tls:
+      - secretName: prometheus-server-tls
+        hosts:
+          - prometheus.domain.com
+```
+
+### NetworkPolicy
+
+Enabling Network Policy for Prometheus will secure connections to Alert Manager and Kube State Metrics by only accepting connections from Prometheus Server. All inbound connections to Prometheus Server are still allowed.
+
+To enable network policy for Prometheus, install a networking plugin that implements the Kubernetes NetworkPolicy spec, and set `networkPolicy.enabled` to true.
+
+If NetworkPolicy is enabled for Prometheus' scrape targets, you may also need to manually create a networkpolicy which allows it.
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/.helmignore b/sregym/observer/prometheus/prometheus/charts/alertmanager/.helmignore
new file mode 100644
index 0000000..4685b40
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/.helmignore
@@ -0,0 +1,25 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
+
+unittests/
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/Chart.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/Chart.yaml
new file mode 100644
index 0000000..02f6bb7
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/Chart.yaml
@@ -0,0 +1,23 @@
+apiVersion: v2
+name: alertmanager
+description: The Alertmanager handles alerts sent by client applications such as the Prometheus server.
+home: https://prometheus.io/
+icon: https://raw.githubusercontent.com/prometheus/prometheus.github.io/master/assets/prometheus_logo-cb55bb5c346.png
+sources:
+  - https://github.com/prometheus/alertmanager
+type: application
+version: 1.7.0
+appVersion: v0.26.0
+kubeVersion: ">=1.19.0-0"
+keywords:
+  - monitoring
+maintainers:
+  - name: monotek
+    email: monotek23@gmail.com
+  - name: naseemkullah
+    email: naseem@transit.app
+annotations:
+  "artifacthub.io/license": Apache-2.0
+  "artifacthub.io/links": |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/README.md b/sregym/observer/prometheus/prometheus/charts/alertmanager/README.md
new file mode 100644
index 0000000..9513f3a
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/README.md
@@ -0,0 +1,62 @@
+# Alertmanager
+
+As per [prometheus.io documentation](https://prometheus.io/docs/alerting/latest/alertmanager/):
+> The Alertmanager handles alerts sent by client applications such as the
+> Prometheus server. It takes care of deduplicating, grouping, and routing them
+> to the correct receiver integration such as email, PagerDuty, or OpsGenie. It
+> also takes care of silencing and inhibition of alerts.
+
+## Prerequisites
+
+Kubernetes 1.14+
+
+## Get Repository Info
+
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [`helm repo`](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/alertmanager
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] [CHART] --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### To 1.0
+
+The [configmap-reload](https://github.com/jimmidyson/configmap-reload) container was replaced by the [prometheus-config-reloader](https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader).
+Extra command-line arguments specified via configmapReload.prometheus.extraArgs are not compatible and will break with the new prometheus-config-reloader, refer to the [sources](https://github.com/prometheus-operator/prometheus-operator/blob/main/cmd/prometheus-config-reloader/main.go) in order to make the appropriate adjustment to the extea command-line arguments.
+The `networking.k8s.io/v1beta1` is no longer supported. use [`networking.k8s.io/v1`](https://kubernetes.io/docs/reference/using-api/deprecation-guide/#ingressclass-v122).
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/alertmanager
+```
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/ci/config-reload-values.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/ci/config-reload-values.yaml
new file mode 100644
index 0000000..bb310b2
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/ci/config-reload-values.yaml
@@ -0,0 +1,2 @@
+configmapReload:
+  enabled: true
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/NOTES.txt b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/NOTES.txt
new file mode 100644
index 0000000..bf34e7a
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/NOTES.txt
@@ -0,0 +1,21 @@
+1. Get the application URL by running these commands:
+{{- if .Values.ingress.enabled }}
+{{- range $host := .Values.ingress.hosts }}
+  {{- range .paths }}
+  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ $host.host }}{{ .path }}
+  {{- end }}
+{{- end }}
+{{- else if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ include "alertmanager.namespace" . }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "alertmanager.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ include "alertmanager.namespace" . }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get --namespace {{ include "alertmanager.namespace" . }} svc -w {{ include "alertmanager.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ include "alertmanager.namespace" . }} {{ include "alertmanager.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}")
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ include "alertmanager.namespace" . }} -l "app.kubernetes.io/name={{ include "alertmanager.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  echo "Visit http://127.0.0.1:{{ .Values.service.port }} to use your application"
+  kubectl --namespace {{ include "alertmanager.namespace" . }} port-forward $POD_NAME {{ .Values.service.port }}:80
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/_helpers.tpl b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/_helpers.tpl
new file mode 100644
index 0000000..397f442
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/_helpers.tpl
@@ -0,0 +1,92 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "alertmanager.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "alertmanager.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "alertmanager.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "alertmanager.labels" -}}
+helm.sh/chart: {{ include "alertmanager.chart" . }}
+{{ include "alertmanager.selectorLabels" . }}
+{{- with .Chart.AppVersion }}
+app.kubernetes.io/version: {{ . | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "alertmanager.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "alertmanager.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "alertmanager.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "alertmanager.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Define Ingress apiVersion
+*/}}
+{{- define "alertmanager.ingress.apiVersion" -}}
+{{- printf "networking.k8s.io/v1" }}
+{{- end }}
+
+{{/*
+Define Pdb apiVersion
+*/}}
+{{- define "alertmanager.pdb.apiVersion" -}}
+{{- if $.Capabilities.APIVersions.Has "policy/v1/PodDisruptionBudget" }}
+{{- printf "policy/v1" }}
+{{- else }}
+{{- printf "policy/v1beta1" }}
+{{- end }}
+{{- end }}
+
+{{/*
+Allow overriding alertmanager namespace
+*/}}
+{{- define "alertmanager.namespace" -}}
+{{- if .Values.namespaceOverride -}}
+{{- .Values.namespaceOverride -}}
+{{- else -}}
+{{- .Release.Namespace -}}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/configmap.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/configmap.yaml
new file mode 100644
index 0000000..71c955e
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/configmap.yaml
@@ -0,0 +1,21 @@
+{{- if .Values.config.enabled }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.configAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+data:
+  alertmanager.yml: |
+  {{- $config := omit .Values.config "enabled" }}
+  {{- toYaml $config | default "{}" | nindent 4  }}
+  {{- range $key, $value := .Values.templates }}
+  {{ $key }}: |-
+    {{- $value | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/ingress.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/ingress.yaml
new file mode 100644
index 0000000..8394ef5
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/ingress.yaml
@@ -0,0 +1,44 @@
+{{- if .Values.ingress.enabled }}
+{{- $fullName := include "alertmanager.fullname" . }}
+{{- $svcPort := .Values.service.port }}
+apiVersion: {{ include "alertmanager.ingress.apiVersion" . }}
+kind: Ingress
+metadata:
+  name: {{ $fullName }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  {{- if .Values.ingress.className }}
+  ingressClassName: {{ .Values.ingress.className }}
+  {{- end }}
+  {{- if .Values.ingress.tls }}
+  tls:
+    {{- range .Values.ingress.tls }}
+    - hosts:
+        {{- range .hosts }}
+        - {{ . | quote }}
+        {{- end }}
+      secretName: {{ .secretName }}
+    {{- end }}
+  {{- end }}
+  rules:
+    {{- range .Values.ingress.hosts }}
+    - host: {{ .host | quote }}
+      http:
+        paths:
+          {{- range .paths }}
+          - path: {{ .path }}
+            pathType: {{ .pathType }}
+            backend:
+              service:
+                name: {{ $fullName }}
+                port:
+                  number: {{ $svcPort }}
+          {{- end }}
+    {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/ingressperreplica.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/ingressperreplica.yaml
new file mode 100644
index 0000000..3e8077d
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/ingressperreplica.yaml
@@ -0,0 +1,56 @@
+{{- if and .Values.servicePerReplica.enabled .Values.ingressPerReplica.enabled }}
+{{- $pathType := .Values.ingressPerReplica.pathType  }}
+{{- $count := .Values.replicaCount | int -}}
+{{- $servicePort := .Values.service.port -}}
+{{- $ingressValues := .Values.ingressPerReplica -}}
+{{- $fullName := include "alertmanager.fullname" . }}
+apiVersion: v1
+kind: List
+metadata:
+  name: {{ $fullName }}-ingressperreplica
+  namespace: {{ include "alertmanager.namespace" . }}
+items:
+{{- range $i, $e := until $count }}
+  - kind: Ingress
+    apiVersion: {{ include "alertmanager.ingress.apiVersion" $ }}
+    metadata:
+      name: {{ $fullName }}-{{ $i }}
+      namespace: {{ include "alertmanager.namespace" $ }}
+      labels:
+      {{- include "alertmanager.labels" $ | nindent 8 }}
+      {{- if $ingressValues.labels }}
+{{ toYaml $ingressValues.labels | indent 8 }}
+      {{- end }}
+      {{- if $ingressValues.annotations }}
+      annotations:
+{{ toYaml $ingressValues.annotations | indent 8 }}
+      {{- end }}
+    spec:
+      {{- if $ingressValues.className }}
+      ingressClassName: {{ $ingressValues.className }}
+      {{- end }}
+      rules:
+        - host: {{ $ingressValues.hostPrefix }}-{{ $i }}.{{ $ingressValues.hostDomain }}
+          http:
+            paths:
+      {{- range $p := $ingressValues.paths }}
+              - path: {{ tpl $p $ }}
+                pathType: {{ $pathType }}
+                backend:
+                  service:
+                    name: {{ $fullName }}-{{ $i }}
+                    port:
+                      name: http
+      {{- end -}}
+      {{- if or $ingressValues.tlsSecretName $ingressValues.tlsSecretPerReplica.enabled }}
+      tls:
+        - hosts:
+            - {{ $ingressValues.hostPrefix }}-{{ $i }}.{{ $ingressValues.hostDomain }}
+          {{- if $ingressValues.tlsSecretPerReplica.enabled }}
+          secretName: {{ $ingressValues.tlsSecretPerReplica.prefix }}-{{ $i }}
+          {{- else }}
+          secretName: {{ $ingressValues.tlsSecretName }}
+          {{- end }}
+      {{- end }}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/pdb.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/pdb.yaml
new file mode 100644
index 0000000..83a4eb8
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/pdb.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.podDisruptionBudget }}
+apiVersion: {{ include "alertmanager.pdb.apiVersion" . }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "alertmanager.selectorLabels" . | nindent 6 }}
+  {{- toYaml .Values.podDisruptionBudget | nindent 2 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/serviceaccount.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/serviceaccount.yaml
new file mode 100644
index 0000000..9e26e31
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/serviceaccount.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "alertmanager.serviceAccountName" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+automountServiceAccountToken: {{ .Values.automountServiceAccountToken }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/serviceperreplica.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/serviceperreplica.yaml
new file mode 100644
index 0000000..81f15c0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/serviceperreplica.yaml
@@ -0,0 +1,44 @@
+{{- if and .Values.servicePerReplica.enabled }}
+{{- $count := .Values.replicaCount | int -}}
+{{- $serviceValues := .Values.servicePerReplica -}}
+apiVersion: v1
+kind: List
+metadata:
+  name: {{ include "alertmanager.fullname" . }}-serviceperreplica
+  namespace: {{ include "alertmanager.namespace" . }}
+items:
+{{- range $i, $e := until $count }}
+  - apiVersion: v1
+    kind: Service
+    metadata:
+      name: {{ include "alertmanager.fullname" $ }}-{{ $i }}
+      namespace: {{ include "alertmanager.namespace" $ }}
+      labels:
+        {{- include "alertmanager.labels" $ | nindent 8 }}
+      {{- if $serviceValues.annotations }}
+      annotations:
+{{ toYaml $serviceValues.annotations | indent 8 }}
+      {{- end }}
+    spec:
+      {{- if $serviceValues.clusterIP }}
+      clusterIP: {{ $serviceValues.clusterIP }}
+      {{- end }}
+      {{- if $serviceValues.loadBalancerSourceRanges }}
+      loadBalancerSourceRanges:
+      {{- range $cidr := $serviceValues.loadBalancerSourceRanges }}
+        - {{ $cidr }}
+      {{- end }}
+      {{- end }}
+      {{- if ne $serviceValues.type "ClusterIP" }}
+      externalTrafficPolicy: {{ $serviceValues.externalTrafficPolicy }}
+      {{- end }}
+      ports:
+        - name: http
+          port: {{ $.Values.service.port }}
+          targetPort: http
+      selector:
+        {{- include "alertmanager.selectorLabels" $ | nindent 8 }}
+        statefulset.kubernetes.io/pod-name: {{ include "alertmanager.fullname" $ }}-{{ $i }}
+      type: "{{ $serviceValues.type }}"
+{{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/services.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/services.yaml
new file mode 100644
index 0000000..fa1575f
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/services.yaml
@@ -0,0 +1,71 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+    {{- with .Values.service.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  {{- with .Values.service.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  type: {{ .Values.service.type }}
+  {{- with .Values.service.loadBalancerIP }}
+  loadBalancerIP: {{ . }}
+  {{- end }}
+  {{- with .Values.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- range $cidr := . }}
+    - {{ $cidr }}
+  {{- end }}
+  {{- end }}
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: http
+      protocol: TCP
+      name: http
+      {{- if (and (eq .Values.service.type "NodePort") .Values.service.nodePort) }}
+      nodePort: {{ .Values.service.nodePort }}
+      {{- end }}
+    {{- with .Values.service.extraPorts }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  selector:
+    {{- include "alertmanager.selectorLabels" . | nindent 4 }}
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "alertmanager.fullname" . }}-headless
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+    {{- with .Values.service.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  clusterIP: None
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: http
+      protocol: TCP
+      name: http
+    {{- if or (gt (int .Values.replicaCount) 1) (.Values.additionalPeers) }}
+    - port: {{ .Values.service.clusterPort }}
+      targetPort: clusterpeer-tcp
+      protocol: TCP
+      name: cluster-tcp
+    - port: {{ .Values.service.clusterPort }}
+      targetPort: clusterpeer-udp
+      protocol: UDP
+      name: cluster-udp
+    {{- end }}
+    {{- with .Values.service.extraPorts }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  selector:
+    {{- include "alertmanager.selectorLabels" . | nindent 4 }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/statefulset.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/statefulset.yaml
new file mode 100644
index 0000000..047ade5
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/statefulset.yaml
@@ -0,0 +1,247 @@
+{{- $svcClusterPort := .Values.service.clusterPort }}
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  name: {{ include "alertmanager.fullname" . }}
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.statefulSet.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  replicas: {{ .Values.replicaCount }}
+  revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
+  selector:
+    matchLabels:
+      {{- include "alertmanager.selectorLabels" . | nindent 6 }}
+  serviceName: {{ include "alertmanager.fullname" . }}-headless
+  template:
+    metadata:
+      labels:
+        {{- include "alertmanager.selectorLabels" . | nindent 8 }}
+        {{- with .Values.podLabels }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+      annotations:
+        {{- if not .Values.configmapReload.enabled }}
+        checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
+        {{- end }}
+        {{- with .Values.podAnnotations }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+    spec:
+      automountServiceAccountToken: {{ .Values.automountServiceAccountToken }}
+      {{- with .Values.imagePullSecrets }}
+      imagePullSecrets:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      serviceAccountName: {{ include "alertmanager.serviceAccountName" . }}
+      {{- with .Values.dnsConfig }}
+      dnsConfig:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.hostAliases }}
+      hostAliases:
+      {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.schedulerName }}
+      schedulerName: {{ . }}
+      {{- end }}
+      {{- if or .Values.podAntiAffinity .Values.affinity }}
+      affinity:
+      {{- end }}
+        {{- with .Values.affinity }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+        {{- if eq .Values.podAntiAffinity "hard" }}
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - topologyKey: {{ .Values.podAntiAffinityTopologyKey }}
+              labelSelector:
+                matchExpressions:
+                  - {key: app.kubernetes.io/name, operator: In, values: [{{ include "alertmanager.name" . }}]}
+        {{- else if eq .Values.podAntiAffinity "soft" }}
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+            - weight: 100
+              podAffinityTerm:
+                topologyKey: {{ .Values.podAntiAffinityTopologyKey }}
+                labelSelector:
+                  matchExpressions:
+                    - {key: app.kubernetes.io/name, operator: In, values: [{{ include "alertmanager.name" . }}]}
+        {{- end }}
+      {{- with .Values.priorityClassName }}
+      priorityClassName: {{ . }}
+      {{- end }}
+      {{- with .Values.topologySpreadConstraints }}
+      topologySpreadConstraints:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      securityContext:
+        {{- toYaml .Values.podSecurityContext | nindent 8 }}
+      {{- with .Values.extraInitContainers }}
+      initContainers:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      containers:
+        {{- if .Values.configmapReload.enabled }}
+        - name: {{ .Chart.Name }}-{{ .Values.configmapReload.name }}
+          image: "{{ .Values.configmapReload.image.repository }}:{{ .Values.configmapReload.image.tag }}"
+          imagePullPolicy: "{{ .Values.configmapReload.image.pullPolicy }}"
+          {{- with .Values.configmapReload.extraEnv }}
+          env:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          args:
+            {{- if and (hasKey .Values.configmapReload.extraArgs "config-file" | not) (hasKey .Values.configmapReload.extraArgs "watched-dir" | not)  }}
+            - --watched-dir=/etc/alertmanager
+            {{- end }}
+            {{- if not (hasKey .Values.configmapReload.extraArgs "reload-url") }}
+            - --reload-url=http://127.0.0.1:9093/-/reload
+            {{- end }}
+            {{- range $key, $value := .Values.configmapReload.extraArgs }}
+            - --{{ $key }}={{ $value }}
+            {{- end }}
+          resources:
+            {{- toYaml .Values.configmapReload.resources | nindent 12 }}
+          {{- with .Values.configmapReload.containerPort }}
+          ports:
+            - containerPort: {{ . }}
+          {{- end }}
+          {{- with .Values.configmapReload.securityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config
+              mountPath: /etc/alertmanager
+            {{- if .Values.configmapReload.extraVolumeMounts }}
+            {{- toYaml .Values.configmapReload.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+        {{- end }}
+        - name: {{ .Chart.Name }}
+          securityContext:
+            {{- toYaml .Values.securityContext | nindent 12 }}
+          image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
+          imagePullPolicy: {{ .Values.image.pullPolicy }}
+          env:
+            - name: POD_IP
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: status.podIP
+            {{- if .Values.extraEnv }}
+            {{- toYaml .Values.extraEnv | nindent 12 }}
+            {{- end }}
+          {{- with .Values.command }}
+          command:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          args:
+            - --storage.path=/alertmanager
+            {{- if not (hasKey .Values.extraArgs "config.file") }}
+            - --config.file=/etc/alertmanager/alertmanager.yml
+            {{- end }}
+            {{- if or (gt (int .Values.replicaCount) 1) (.Values.additionalPeers) }}
+            - --cluster.advertise-address=[$(POD_IP)]:{{ $svcClusterPort }}
+            - --cluster.listen-address=0.0.0.0:{{ $svcClusterPort }}
+            {{- end }}
+            {{- if gt (int .Values.replicaCount) 1}}
+            {{- $fullName := include "alertmanager.fullname" . }}
+            {{- range $i := until (int .Values.replicaCount) }}
+            - --cluster.peer={{ $fullName }}-{{ $i }}.{{ $fullName }}-headless:{{ $svcClusterPort }}
+            {{- end }}
+            {{- end }}
+            {{- if .Values.additionalPeers }}
+            {{- range $item := .Values.additionalPeers }}
+            - --cluster.peer={{ $item }}
+            {{- end }}
+            {{- end }}
+            {{- range $key, $value := .Values.extraArgs }}
+            - --{{ $key }}={{ $value }}
+            {{- end }}
+          ports:
+            - name: http
+              containerPort: 9093
+              protocol: TCP
+            {{- if or (gt (int .Values.replicaCount) 1) (.Values.additionalPeers) }}
+            - name: clusterpeer-tcp
+              containerPort: {{ $svcClusterPort }}
+              protocol: TCP
+            - name: clusterpeer-udp
+              containerPort: {{ $svcClusterPort }}
+              protocol: UDP
+            {{- end }}
+          livenessProbe:
+            {{- toYaml .Values.livenessProbe | nindent 12 }}
+          readinessProbe:
+            {{- toYaml .Values.readinessProbe | nindent 12 }}
+          resources:
+            {{- toYaml .Values.resources | nindent 12 }}
+          volumeMounts:
+            {{- if .Values.config.enabled }}
+            - name: config
+              mountPath: /etc/alertmanager
+            {{- end }}
+            {{- range .Values.extraSecretMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+            {{- end }}
+            - name: storage
+              mountPath: /alertmanager
+            {{- if .Values.extraVolumeMounts }}
+            {{- toYaml .Values.extraVolumeMounts | nindent 12 }}
+            {{- end }}
+        {{- with .Values.extraContainers }}
+        {{- toYaml . | nindent 8 }}
+        {{- end }}
+      volumes:
+        {{- if .Values.config.enabled }}
+        - name: config
+          configMap:
+            name: {{ include "alertmanager.fullname" . }}
+        {{- end }}
+        {{- range .Values.extraSecretMounts }}
+        - name: {{ .name }}
+          secret:
+            secretName: {{ .secretName }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+        {{- end }}
+        {{- if .Values.extraVolumes }}
+        {{- toYaml .Values.extraVolumes | nindent 8 }}
+        {{- end }}
+  {{- if .Values.persistence.enabled }}
+  volumeClaimTemplates:
+    - metadata:
+        name: storage
+      spec:
+        accessModes:
+          {{- toYaml .Values.persistence.accessModes | nindent 10 }}
+        resources:
+          requests:
+            storage: {{ .Values.persistence.size }}
+      {{- if .Values.persistence.storageClass }}
+      {{- if (eq "-" .Values.persistence.storageClass) }}
+        storageClassName: ""
+      {{- else }}
+        storageClassName: {{ .Values.persistence.storageClass }}
+      {{- end }}
+      {{- end }}
+  {{- else }}
+        - name: storage
+          emptyDir: {}
+  {{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/tests/test-connection.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/tests/test-connection.yaml
new file mode 100644
index 0000000..ace5f7d
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/templates/tests/test-connection.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.testFramework.enabled }}
+apiVersion: v1
+kind: Pod
+metadata:
+  name: "{{ include "alertmanager.fullname" . }}-test-connection"
+  labels:
+    {{- include "alertmanager.labels" . | nindent 4 }}
+  {{- with .Values.testFramework.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  namespace: {{ include "alertmanager.namespace" . }}
+spec:
+  containers:
+    - name: wget
+      image: busybox
+      command: ['wget']
+      args: ['{{ include "alertmanager.fullname" . }}:{{ .Values.service.port }}']
+  restartPolicy: Never
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/unittests/__snapshot__/ingress_test.yaml.snap b/sregym/observer/prometheus/prometheus/charts/alertmanager/unittests/__snapshot__/ingress_test.yaml.snap
new file mode 100644
index 0000000..2acdf20
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/unittests/__snapshot__/ingress_test.yaml.snap
@@ -0,0 +1,25 @@
+should match snapshot of default values:
+  1: |
+    apiVersion: networking.k8s.io/v1
+    kind: Ingress
+    metadata:
+      labels:
+        app.kubernetes.io/instance: RELEASE-NAME
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: alertmanager
+        app.kubernetes.io/version: 1.0.0
+        helm.sh/chart: alertmanager-1.0.0
+      name: RELEASE-NAME-alertmanager
+    spec:
+      ingressClassName: nginx-test
+      rules:
+      - host: alertmanager.domain.com
+        http:
+          paths:
+          - backend:
+              service:
+                name: RELEASE-NAME-alertmanager
+                port:
+                  number: 9093
+            path: /
+            pathType: ImplementationSpecific
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/unittests/ingress_test.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/unittests/ingress_test.yaml
new file mode 100644
index 0000000..82f03b0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/unittests/ingress_test.yaml
@@ -0,0 +1,43 @@
+suite: test ingress
+templates:
+  - ingress.yaml
+tests:
+  - it: should be empty if ingress is not enabled
+    asserts:
+      - hasDocuments:
+          count: 0
+  - it: should have apiVersion networking.k8s.io/v1 for k8s >= 1.19
+    set:
+      ingress.enabled: true
+    capabilities:
+      majorVersion: 1
+      minorVersion: 19
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: Ingress
+      - isAPIVersion:
+          of: networking.k8s.io/v1
+  - it: should have an ingressClassName for k8s >= 1.19
+    set:
+      ingress.enabled: true
+      ingress.className: nginx-test
+    capabilities:
+      majorVersion: 1
+      minorVersion: 19
+    asserts:
+      - hasDocuments:
+          count: 1
+      - equal:
+          path: spec.ingressClassName
+          value: nginx-test
+  - it: should match snapshot of default values
+    set:
+      ingress.enabled: true
+      ingress.className: nginx-test
+    chart:
+      version: 1.0.0
+      appVersion: 1.0.0
+    asserts:
+      - matchSnapshot: { }
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/values.schema.json b/sregym/observer/prometheus/prometheus/charts/alertmanager/values.schema.json
new file mode 100644
index 0000000..612ce21
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/values.schema.json
@@ -0,0 +1,915 @@
+{
+    "$schema": "http://json-schema.org/draft-07/schema",
+    "title": "alertmanager",
+    "description": "The Alertmanager handles alerts sent by client applications such as the Prometheus server.",
+    "type": "object",
+    "required": [
+        "replicaCount",
+        "image",
+        "serviceAccount",
+        "service",
+        "persistence",
+        "config"
+    ],
+    "definitions": {
+        "image": {
+            "description": "Container image parameters.",
+            "type": "object",
+            "required": ["repository"],
+            "additionalProperties": false,
+            "properties": {
+                "repository": {
+                    "description": "Image repository. Path to the image with registry(quay.io) or without(prometheus/alertmanager) for docker.io.",
+                    "type": "string"
+                },
+                "pullPolicy": {
+                    "description": "Image pull policy. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated.",
+                    "type": "string",
+                    "enum": [
+                        "Never",
+                        "IfNotPresent",
+                        "Always"
+                    ],
+                    "default": "IfNotPresent"
+                },
+                "tag": {
+                    "description": "Use chart appVersion by default.",
+                    "type": "string",
+                    "default": ""
+                }
+            }
+        },
+        "resources": {
+            "description": "Resource limits and requests for the Container.",
+            "type": "object",
+            "properties": {
+                "limits": {
+                    "description": "Resource limits for the Container.",
+                    "type": "object",
+                    "properties": {
+                        "cpu": {
+                            "description": "CPU request for the Container.",
+                            "type": "string"
+                        },
+                        "memory": {
+                            "description": "Memory request for the Container.",
+                            "type": "string"
+                        }
+                    }
+                },
+                "requests": {
+                    "description": "Resource requests for the Container.",
+                    "type": "object",
+                    "properties": {
+                        "cpu": {
+                            "description": "CPU request for the Container.",
+                            "type": "string"
+                        },
+                        "memory": {
+                            "description": "Memory request for the Container.",
+                            "type": "string"
+                        }
+                    }
+                }
+            }
+        },
+        "securityContext": {
+            "description": "Security context for the container.",
+            "type": "object",
+            "properties": {
+                "capabilities": {
+                    "description": "Specifies the capabilities to be dropped by the container.",
+                    "type": "object",
+                    "properties": {
+                        "drop": {
+                            "description": "List of capabilities to be dropped.",
+                            "type": "array",
+                            "items": {
+                                "type": "string"
+                            }
+                        }
+                    }
+                },
+                "readOnlyRootFilesystem": {
+                    "description": "Specifies whether the root file system should be mounted as read-only.",
+                    "type": "boolean"
+                },
+                "runAsUser": {
+                    "description": "Specifies the UID (User ID) to run the container as.",
+                    "type": "integer"
+                },
+                "runAsNonRoot": {
+                    "description": "Specifies whether to run the container as a non-root user.",
+                    "type": "boolean"
+                },
+                "runAsGroup": {
+                    "description": "Specifies the GID (Group ID) to run the container as.",
+                    "type": "integer"
+                }
+            }
+        },
+        "volumeMounts": {
+            "description": "List of volume mounts for the Container.",
+            "type": "array",
+            "items": {
+                "description": "Volume mounts for the Container.",
+                "type": "object",
+                "required": ["name", "mountPath"],
+                "properties": {
+                    "name": {
+                        "description": "The name of the volume to mount.",
+                        "type": "string"
+                    },
+                    "mountPath": {
+                        "description": "The mount path for the volume.",
+                        "type": "string"
+                    },
+                    "readOnly": {
+                        "description": "Specifies if the volume should be mounted in read-only mode.",
+                        "type": "boolean"
+                    }
+                }
+            }
+        },
+        "env": {
+            "description": "List of environment variables for the Container.",
+            "type": "array",
+            "items": {
+                "description": "Environment variables for the Container.",
+                "type": "object",
+                "required": ["name"],
+                "properties": {
+                    "name": {
+                        "description": "The name of the environment variable.",
+                        "type": "string"
+                    },
+                    "value": {
+                        "description": "The value of the environment variable.",
+                        "type": "string"
+                    }
+                }
+            }
+        },
+        "config": {
+            "description": "https://prometheus.io/docs/alerting/latest/configuration/",
+            "duration": {
+                "type": "string",
+                "pattern": "^((([0-9]+)y)?(([0-9]+)w)?(([0-9]+)d)?(([0-9]+)h)?(([0-9]+)m)?(([0-9]+)s)?(([0-9]+)ms)?|0)$"
+            },
+            "labelname": {
+                "type": "string",
+                "pattern": "^[a-zA-Z_][a-zA-Z0-9_]*$|^...$"
+            },
+            "route": {
+                "description": "Alert routing configuration.",
+                "type": "object",
+                "properties": {
+                    "receiver": {
+                        "description": "The default receiver to send alerts to.",
+                        "type": "string"
+                    },
+                    "group_by": {
+                        "description": "The labels by which incoming alerts are grouped together.",
+                        "type": "array",
+                        "items": {
+                            "type": "string",
+                            "$ref": "#/definitions/config/labelname"
+                        }
+                    },
+                    "continue": {
+                        "description": "Whether an alert should continue matching subsequent sibling nodes.",
+                        "type": "boolean",
+                        "default": false
+                    },
+                    "matchers": {
+                        "description": "A list of matchers that an alert has to fulfill to match the node.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "group_wait": {
+                        "description": "How long to initially wait to send a notification for a group of alerts.",
+                        "$ref": "#/definitions/config/duration"
+                    },
+                    "group_interval": {
+                        "description": "How long to wait before sending a notification about new alerts that are added to a group of alerts for which an initial notification has already been sent.",
+                        "$ref": "#/definitions/config/duration"
+                    },
+                    "repeat_interval": {
+                        "description": "How long to wait before sending a notification again if it has already been sent successfully for an alert.",
+                        "$ref": "#/definitions/config/duration"
+                    },
+                    "mute_time_intervals": {
+                        "description": "Times when the route should be muted.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "active_time_intervals": {
+                        "description": "Times when the route should be active.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "routes": {
+                        "description": "Zero or more child routes.",
+                        "type": "array",
+                        "items": {
+                            "type": "object",
+                            "$ref": "#/definitions/config/route"
+                        }
+                    }
+                }
+            }
+        }
+    },
+    "properties": {
+        "replicaCount": {
+            "description": "Number of desired pods.",
+            "type": "integer",
+            "default": 1,
+            "minimum": 0
+        },
+        "image": {
+            "description": "Container image parameters.",
+            "$ref": "#/definitions/image"
+        },
+        "extraArgs": {
+            "description": "Additional alertmanager container arguments. Use args without '--', only 'key: value' syntax.",
+            "type": "object",
+            "default": {}
+        },
+        "extraSecretMounts": {
+            "description": "Additional Alertmanager Secret mounts.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "type": "object",
+                "required": ["name", "mountPath", "secretName"],
+                "properties": {
+                    "name": {
+                        "type": "string"
+                    },
+                    "mountPath": {
+                        "type": "string"
+                    },
+                    "subPath": {
+                        "type": "string",
+                        "default": ""
+                    },
+                    "secretName": {
+                        "type": "string"
+                    },
+                    "readOnly": {
+                        "type": "boolean",
+                        "default": false
+                    }
+                }
+            }
+        },
+        "imagePullSecrets": {
+            "description": "The property allows you to configure multiple image pull secrets.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "type": "object",
+                "required": ["name"],
+                "properties": {
+                    "name": {
+                        "description": "Specifies the Secret name of the image pull secret.",
+                        "type": "string"
+                    }
+                }
+            }
+        },
+        "nameOverride": {
+            "description": "Override value for the name of the Helm chart.",
+            "type": "string",
+            "default": ""
+        },
+        "fullnameOverride": {
+            "description": "Override value for the fully qualified app name.",
+            "type": "string",
+            "default": ""
+        },
+        "namespaceOverride": {
+            "description": "Override deployment namespace.",
+            "type": "string",
+            "default": ""
+        },
+        "automountServiceAccountToken": {
+            "description": "Specifies whether to automatically mount the ServiceAccount token into the Pod's filesystem.",
+            "type": "boolean",
+            "default": true
+        },
+        "serviceAccount": {
+            "description": "Contains properties related to the service account configuration.",
+            "type": "object",
+            "required": ["create"],
+            "properties": {
+                "create": {
+                    "description": "Specifies whether a service account should be created.",
+                    "type": "boolean",
+                    "default": true
+                },
+                "annotations": {
+                    "description": "Annotations to add to the service account.",
+                    "type": "object",
+                    "default": {}
+                },
+                "name": {
+                    "description": "The name of the service account to use. If not set and create is true, a name is generated using the fullname template.",
+                    "type": "string",
+                    "default": ""
+                }
+            }
+        },
+        "schedulerName": {
+            "description": "Sets the schedulerName in the alertmanager pod.",
+            "type": "string",
+            "default": ""
+        },
+        "priorityClassName": {
+            "description": "Sets the priorityClassName in the alertmanager pod.",
+            "type": "string",
+            "default": ""
+        },
+        "podSecurityContext": {
+            "description": "Pod security context configuration.",
+            "type": "object",
+            "properties": {
+                "fsGroup": {
+                    "description": "The fsGroup value for the pod's security context.",
+                    "type": "integer",
+                    "default": 65534
+                },
+                "runAsUser": {
+                    "description": "The UID to run the pod's containers as.",
+                    "type": "integer"
+                },
+                "runAsGroup": {
+                    "description": "The GID to run the pod's containers as.",
+                    "type": "integer"
+                }
+            }
+        },
+        "dnsConfig": {
+            "description": "DNS configuration for the pod.",
+            "type": "object",
+            "properties": {
+                "nameservers": {
+                    "description": "List of DNS server IP addresses.",
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "searches": {
+                    "description": "List of DNS search domains.",
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "options": {
+                    "description": "List of DNS options.",
+                    "type": "array",
+                    "items": {
+                        "description": "DNS options.",
+                        "type": "object",
+                        "required": ["name"],
+                        "properties": {
+                            "name": {
+                                "description": "The name of the DNS option.",
+                                "type": "string"
+                            },
+                            "value": {
+                                "description": "The value of the DNS option.",
+                                "type": "string"
+                            }
+                        }
+                    }
+                }
+            }
+        },
+        "hostAliases": {
+            "description": "List of host aliases.",
+            "type": "array",
+            "items": {
+                "description": "Host aliases configuration.",
+                "type": "object",
+                "required": ["ip", "hostnames"],
+                "properties": {
+                    "ip": {
+                        "description": "IP address associated with the host alias.",
+                        "type": "string"
+                    },
+                    "hostnames": {
+                        "description": "List of hostnames associated with the IP address.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    }
+                }
+            }
+        },
+        "securityContext": {
+            "description": "Security context for the container.",
+            "$ref": "#/definitions/securityContext"
+        },
+        "additionalPeers": {
+            "description": "Additional peers for a alertmanager.",
+            "type": "array",
+            "items": {
+                "type": "string"
+            }
+        },
+        "extraInitContainers": {
+            "description": "Additional InitContainers to initialize the pod.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "required": ["name", "image"],
+                "properties": {
+                    "name": {
+                        "description": "The name of the InitContainer.",
+                        "type": "string"
+                    },
+                    "image": {
+                        "description": "The container image to use for the InitContainer.",
+                        "type": "string"
+                    },
+                    "pullPolicy": {
+                        "description": "Image pull policy. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated.",
+                        "type": "string",
+                        "enum": [
+                            "Never",
+                            "IfNotPresent",
+                            "Always"
+                        ],
+                        "default": "IfNotPresent"
+                    },
+                    "command": {
+                        "description": "The command to run in the InitContainer.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "args": {
+                        "description": "Additional command arguments for the InitContainer.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "ports": {
+                        "description": "List of ports to expose from the container.",
+                        "type": "array",
+                        "items": {
+                            "type": "object"
+                        }
+                    },
+                    "env": {
+                        "description": "List of environment variables for the InitContainer.",
+                        "$ref": "#/definitions/env"
+                    },
+                    "envFrom": {
+                        "description": "List of sources to populate environment variables in the container.",
+                        "type": "array",
+                        "items": {
+                            "type": "object"
+                        }
+                    },
+                    "volumeMounts": {
+                        "description": "List of volume mounts for the InitContainer.",
+                        "$ref": "#/definitions/volumeMounts"
+                    },
+                    "resources": {
+                        "description": "Resource requirements for the InitContainer.",
+                        "$ref": "#/definitions/resources"
+                    },
+                    "securityContext": {
+                        "$ref": "#/definitions/securityContext",
+                        "description": "The security context for the InitContainer."
+                    }
+                }
+            }
+        },
+        "extraContainers": {
+            "description": "Additional containers to add to the stateful set.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "required": ["name", "image"],
+                "properties": {
+                    "name": {
+                        "description": "The name of the InitContainer.",
+                        "type": "string"
+                    },
+                    "image": {
+                        "description": "The container image to use for the InitContainer.",
+                        "type": "string"
+                    },
+                    "pullPolicy": {
+                        "description": "Image pull policy. Defaults to Always if :latest tag is specified, or IfNotPresent otherwise. Cannot be updated.",
+                        "type": "string",
+                        "enum": [
+                            "Never",
+                            "IfNotPresent",
+                            "Always"
+                        ],
+                        "default": "IfNotPresent"
+                    },
+                    "command": {
+                        "description": "The command to run in the InitContainer.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "args": {
+                        "description": "Additional command arguments for the InitContainer.",
+                        "type": "array",
+                        "items": {
+                            "type": "string"
+                        }
+                    },
+                    "ports": {
+                        "description": "List of ports to expose from the container.",
+                        "type": "array",
+                        "items": {
+                            "type": "object"
+                        }
+                    },
+                    "env": {
+                        "description": "List of environment variables for the InitContainer.",
+                        "$ref": "#/definitions/env"
+                    },
+                    "envFrom": {
+                        "description": "List of sources to populate environment variables in the container.",
+                        "type": "array",
+                        "items": {
+                            "type": "object"
+                        }
+                    },
+                    "volumeMounts": {
+                        "description": "List of volume mounts for the InitContainer.",
+                        "$ref": "#/definitions/volumeMounts"
+                    },
+                    "resources": {
+                        "description": "Resource requirements for the InitContainer.",
+                        "$ref": "#/definitions/resources"
+                    },
+                    "securityContext": {
+                        "$ref": "#/definitions/securityContext",
+                        "description": "The security context for the InitContainer."
+                    }
+                }
+            }
+        },
+        "resources": {
+            "description": "Resource limits and requests for the pod.",
+            "$ref": "#/definitions/resources"
+        },
+        "livenessProbe": {
+            "description": "Liveness probe configuration.",
+            "type": "object"
+        },
+        "readinessProbe": {
+            "description": "Readiness probe configuration.",
+            "type": "object"
+        },
+        "service": {
+            "description": "Service configuration.",
+            "type": "object",
+            "required": ["type", "port"],
+            "properties": {
+                "annotations": {
+                    "description": "Annotations to add to the service.",
+                    "type": "object"
+                },
+                "type": {
+                    "description": "Service type.",
+                    "type": "string"
+                },
+                "port": {
+                    "description": "Port number for the service.",
+                    "type": "integer"
+                },
+                "clusterPort": {
+                    "description": "Port number for the cluster.",
+                    "type": "integer"
+                },
+                "loadBalancerIP": {
+                    "description": "External IP to assign when the service type is LoadBalancer.",
+                    "type": "string"
+                },
+                "loadBalancerSourceRanges": {
+                    "description": "IP ranges to allow access to the loadBalancerIP.",
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "nodePort": {
+                    "description": "Specific nodePort to force when service type is NodePort.",
+                    "type": "integer"
+                }        
+            }
+        },
+        "ingress": {
+            "description": "Ingress configuration.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "description": "Indicates if Ingress is enabled.",
+                    "type": "boolean"
+                },
+                "className": {
+                    "description": "Ingress class name.",
+                    "type": "string"
+                },
+                "annotations": {
+                    "description": "Annotations to add to the Ingress.",
+                    "type": "object"
+                },
+                "hosts": {
+                    "description": "Host and path configuration for the Ingress.",
+                    "type": "array",
+                    "items": {
+                        "type": "object",
+                        "properties": {
+                            "host": {
+                                "description": "Host name for the Ingress.",
+                                "type": "string"
+                            },
+                            "paths": {
+                                "description": "Path configuration for the Ingress.",
+                                "type": "array",
+                                "items": {
+                                    "type": "object",
+                                    "properties": {
+                                        "path": {
+                                            "description": "Path for the Ingress.",
+                                            "type": "string"
+                                        },
+                                        "pathType": {
+                                            "description": "Path type for the Ingress.",
+                                            "type": "string"
+                                        }
+                                    }
+                                }
+                            }
+                        }
+                    }
+                },
+                "tls": {
+                    "description": "TLS configuration for the Ingress.",
+                    "type": "array",
+                    "items": {
+                        "type": "object",
+                        "properties": {
+                            "secretName": {
+                                "description": "Name of the secret for TLS.",
+                                "type": "string"
+                            },
+                            "hosts": {
+                                "description": "Host names for the TLS configuration.",
+                                "type": "array",
+                                "items": {
+                                    "type": "string"
+                                }
+                            }
+                        }
+                    }
+                }
+            }
+        },
+        "nodeSelector": {
+            "description": "Node selector for pod assignment.",
+            "type": "object"
+        },
+        "tolerations": {
+            "description": "Tolerations for pod assignment.",
+            "type": "array"
+        },
+        "affinity": {
+            "description": "Affinity rules for pod assignment.",
+            "type": "object"
+        },
+        "podAntiAffinity": {
+            "description": "Pod anti-affinity configuration.",
+            "type": "string",
+            "enum": ["", "soft", "hard"],
+            "default": ""
+        },
+        "podAntiAffinityTopologyKey": {
+            "description": "Topology key to use for pod anti-affinity.",
+            "type": "string"
+        },
+        "topologySpreadConstraints": {
+            "description": "Topology spread constraints for pod assignment.",
+            "type": "array",
+            "items": {
+                "type": "object",
+                "required": ["maxSkew", "topologyKey", "whenUnsatisfiable", "labelSelector"],
+                "properties": {
+                    "maxSkew": {
+                        "type": "integer"
+                    },
+                    "topologyKey": {
+                        "type": "string"
+                    },
+                    "whenUnsatisfiable": {
+                        "type": "string",
+                        "enum": ["DoNotSchedule", "ScheduleAnyway"]
+                    },
+                    "labelSelector": {
+                        "type": "object",
+                        "required": ["matchLabels"],
+                        "properties": {
+                            "matchLabels": {
+                                "type": "object"
+                            }
+                        }
+                    }
+                }
+            }
+        },
+        "statefulSet": {
+            "description": "StatefulSet configuration for managing pods.",
+            "type": "object",
+            "properties": {
+                "annotations": {
+                    "type": "object"
+                }
+            }
+        },
+        "podAnnotations": {
+            "description": "Annotations to add to the pods.",
+            "type": "object"
+        },
+        "podLabels": {
+            "description": "Labels to add to the pods.",
+            "type": "object"
+        },
+        "podDisruptionBudget": {
+            "description": "Pod disruption budget configuration.",
+            "type": "object",
+            "properties": {
+                "maxUnavailable": {
+                    "type": "integer"
+                },
+                "minAvailable": {
+                    "type": "integer"
+                }
+            }
+        },
+        "command": {
+            "description": "The command to be executed in the container.",
+            "type": "array",
+            "items": {
+                "type": "string"
+            }
+        },
+        "persistence": {
+            "description": "Persistence configuration for storing data.",
+            "type": "object",
+            "required": ["enabled", "size"],
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                },
+                "storageClass": {
+                    "type": "string"
+                },
+                "accessModes": {
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "size": {
+                    "type": "string"
+                }
+            }
+        },
+        "configAnnotations": {
+            "description": "Annotations to be added to the Alertmanager configuration.",
+            "type": "object"
+        },
+        "config": {
+            "description": "Alertmanager configuration.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "description": "Whether to create alermanager configmap or not.",
+                    "type": "boolean"
+                },
+                "global": {
+                    "description": "Global configuration options.",
+                    "type": "object"
+                },
+                "templates": {
+                    "description": "Alertmanager template files.",
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "receivers": {
+                    "description": "Alert receivers configuration.",
+                    "type": "array",
+                    "items": {
+                        "type": "object",
+                        "required": ["name"],
+                        "properties": {
+                            "name": {
+                                "description": "The unique name of the receiver.",
+                                "type": "string"
+                            }
+                        }
+                    }
+                },
+                "route": {
+                    "description": "Alert routing configuration.",
+                    "type": "object",
+                    "$ref": "#/definitions/config/route"
+                }
+            }
+        },
+        "configmapReload": {
+            "description": "Monitors ConfigMap changes and POSTs to a URL.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "description": "Specifies whether the configmap-reload container should be deployed.",
+                    "type": "boolean",
+                    "default": false
+                },
+                "name": {
+                    "description": "The name of the configmap-reload container.",
+                    "type": "string"
+                },
+                "image": {
+                    "description": "The container image for the configmap-reload container.",
+                    "$ref": "#/definitions/image"
+                },
+                "containerPort": {
+                    "description": "Port number for the configmap-reload container.",
+                    "type": "integer"
+                },
+                "resources": {
+                    "description": "Resource requests and limits for the configmap-reload container.",
+                    "$ref": "#/definitions/resources"
+                }
+            }
+        },
+        "templates": {
+            "description": "Custom templates used by Alertmanager.",
+            "type": "object"
+        },
+        "extraVolumeMounts": {
+            "description": "List of volume mounts for the Container.",
+            "$ref": "#/definitions/volumeMounts"
+        },
+        "extraVolumes": {
+            "description": "Additional volumes to be mounted in the Alertmanager pod.",
+            "type": "array",
+            "default": [],
+            "items": {
+                "type": "object",
+                "required": ["name"],
+                "properties": {
+                    "name": {
+                        "type": "string"
+                    }
+                }
+            }
+        },
+        "extraEnv": {
+            "description": "List of environment variables for the Container.",
+            "$ref": "#/definitions/env"
+        },
+        "testFramework": {
+            "description": "Configuration for the test Pod.",
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "description": "Specifies whether the test Pod is enabled.",
+                    "type": "boolean",
+                    "default": false
+                },
+                "annotations": {
+                    "description": "Annotations to be added to the test Pod.",
+                    "type": "object"
+                }
+            }
+        }
+    }
+}
diff --git a/sregym/observer/prometheus/prometheus/charts/alertmanager/values.yaml b/sregym/observer/prometheus/prometheus/charts/alertmanager/values.yaml
new file mode 100644
index 0000000..de1415e
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/alertmanager/values.yaml
@@ -0,0 +1,363 @@
+# yaml-language-server: $schema=values.schema.json
+# Default values for alertmanager.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+replicaCount: 1
+
+# Number of old history to retain to allow rollback
+# Default Kubernetes value is set to 10
+revisionHistoryLimit: 10
+
+image:
+  repository: quay.io/prometheus/alertmanager
+  pullPolicy: IfNotPresent
+  # Overrides the image tag whose default is the chart appVersion.
+  tag: ""
+
+extraArgs: {}
+
+## Additional Alertmanager Secret mounts
+# Defines additional mounts with secrets. Secrets must be manually created in the namespace.
+extraSecretMounts: []
+  # - name: secret-files
+  #   mountPath: /etc/secrets
+  #   subPath: ""
+  #   secretName: alertmanager-secret-files
+  #   readOnly: true
+
+imagePullSecrets: []
+nameOverride: ""
+fullnameOverride: ""
+## namespaceOverride overrides the namespace which the resources will be deployed in
+namespaceOverride: ""
+
+automountServiceAccountToken: true
+
+serviceAccount:
+  # Specifies whether a service account should be created
+  create: true
+  # Annotations to add to the service account
+  annotations: {}
+  # The name of the service account to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name: ""
+
+# Sets priorityClassName in alertmanager pod
+priorityClassName: ""
+
+# Sets schedulerName in alertmanager pod
+schedulerName: ""
+
+podSecurityContext:
+  fsGroup: 65534
+dnsConfig: {}
+  # nameservers:
+  #   - 1.2.3.4
+  # searches:
+  #   - ns1.svc.cluster-domain.example
+  #   - my.dns.search.suffix
+  # options:
+  #   - name: ndots
+  #     value: "2"
+  #   - name: edns0
+hostAliases: []
+  # - ip: "127.0.0.1"
+  #   hostnames:
+  #   - "foo.local"
+  #   - "bar.local"
+  # - ip: "10.1.2.3"
+  #   hostnames:
+  #   - "foo.remote"
+  #   - "bar.remote"
+securityContext:
+  # capabilities:
+  #   drop:
+  #   - ALL
+  # readOnlyRootFilesystem: true
+  runAsUser: 65534
+  runAsNonRoot: true
+  runAsGroup: 65534
+
+additionalPeers: []
+
+## Additional InitContainers to initialize the pod
+##
+extraInitContainers: []
+
+## Additional containers to add to the stateful set. This will allow to setup sidecarContainers like a proxy to integrate
+## alertmanager with an external tool like teams that has not direct integration.
+##
+extraContainers: []
+
+livenessProbe:
+  httpGet:
+    path: /
+    port: http
+
+readinessProbe:
+  httpGet:
+    path: /
+    port: http
+
+service:
+  annotations: {}
+  labels: {}
+  type: ClusterIP
+  port: 9093
+  clusterPort: 9094
+  loadBalancerIP: ""  # Assign ext IP when Service type is LoadBalancer
+  loadBalancerSourceRanges: []  # Only allow access to loadBalancerIP from these IPs
+  # if you want to force a specific nodePort. Must be use with service.type=NodePort
+  # nodePort:
+
+  # Optionally specify extra list of additional ports exposed on both services
+  extraPorts: []
+
+# Configuration for creating a separate Service for each statefulset Alertmanager replica
+#
+servicePerReplica:
+  enabled: false
+  annotations: {}
+
+  # Loadbalancer source IP ranges
+  # Only used if servicePerReplica.type is "LoadBalancer"
+  loadBalancerSourceRanges: []
+
+  # Denotes if this Service desires to route external traffic to node-local or cluster-wide endpoints
+  #
+  externalTrafficPolicy: Cluster
+
+  # Service type
+  #
+  type: ClusterIP
+
+ingress:
+  enabled: false
+  className: ""
+  annotations: {}
+    # kubernetes.io/ingress.class: nginx
+    # kubernetes.io/tls-acme: "true"
+  hosts:
+    - host: alertmanager.domain.com
+      paths:
+        - path: /
+          pathType: ImplementationSpecific
+  tls: []
+  #  - secretName: chart-example-tls
+  #    hosts:
+  #      - alertmanager.domain.com
+
+# Configuration for creating an Ingress that will map to each Alertmanager replica service
+# alertmanager.servicePerReplica must be enabled
+#
+ingressPerReplica:
+  enabled: false
+
+  # className for the ingresses
+  #
+  className: ""
+
+  annotations: {}
+  labels: {}
+
+  # Final form of the hostname for each per replica ingress is
+  # {{ ingressPerReplica.hostPrefix }}-{{ $replicaNumber }}.{{ ingressPerReplica.hostDomain }}
+  #
+  # Prefix for the per replica ingress that will have `-$replicaNumber`
+  # appended to the end
+  hostPrefix: "alertmanager"
+  # Domain that will be used for the per replica ingress
+  hostDomain: "domain.com"
+
+  # Paths to use for ingress rules
+  #
+  paths:
+    - /
+
+  # PathType for ingress rules
+  #
+  pathType: ImplementationSpecific
+
+  # Secret name containing the TLS certificate for alertmanager per replica ingress
+  # Secret must be manually created in the namespace
+  tlsSecretName: ""
+
+  # Separated secret for each per replica Ingress. Can be used together with cert-manager
+  #
+  tlsSecretPerReplica:
+    enabled: false
+    # Final form of the secret for each per replica ingress is
+    # {{ tlsSecretPerReplica.prefix }}-{{ $replicaNumber }}
+    #
+    prefix: "alertmanager"
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 100m
+  #   memory: 128Mi
+  # requests:
+  #   cpu: 10m
+  #   memory: 32Mi
+
+nodeSelector: {}
+
+tolerations: []
+
+affinity: {}
+
+## Pod anti-affinity can prevent the scheduler from placing Alertmanager replicas on the same node.
+## The default value "soft" means that the scheduler should *prefer* to not schedule two replica pods onto the same node but no guarantee is provided.
+## The value "hard" means that the scheduler is *required* to not schedule two replica pods onto the same node.
+## The value "" will disable pod anti-affinity so that no anti-affinity rules will be configured.
+##
+podAntiAffinity: ""
+
+## If anti-affinity is enabled sets the topologyKey to use for anti-affinity.
+## This can be changed to, for example, failure-domain.beta.kubernetes.io/zone
+##
+podAntiAffinityTopologyKey: kubernetes.io/hostname
+
+## Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: failure-domain.beta.kubernetes.io/zone
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+  #       app.kubernetes.io/instance: alertmanager
+
+statefulSet:
+  annotations: {}
+
+podAnnotations: {}
+podLabels: {}
+
+# Ref: https://kubernetes.io/docs/tasks/run-application/configure-pdb/
+podDisruptionBudget: {}
+  # maxUnavailable: 1
+  # minAvailable: 1
+
+command: []
+
+persistence:
+  enabled: true
+  ## Persistent Volume Storage Class
+  ## If defined, storageClassName: <storageClass>
+  ## If set to "-", storageClassName: "", which disables dynamic provisioning
+  ## If undefined (the default) or set to null, no storageClassName spec is
+  ## set, choosing the default provisioner.
+  ##
+  # storageClass: "-"
+  accessModes:
+    - ReadWriteOnce
+  size: 50Mi
+
+configAnnotations: {}
+  ## For example if you want to provide private data from a secret vault
+  ## https://github.com/banzaicloud/bank-vaults/tree/main/charts/vault-secrets-webhook
+  ## P.s.: Add option `configMapMutation: true` for vault-secrets-webhook
+  # vault.security.banzaicloud.io/vault-role: "admin"
+  # vault.security.banzaicloud.io/vault-addr: "https://vault.vault.svc.cluster.local:8200"
+  # vault.security.banzaicloud.io/vault-skip-verify: "true"
+  # vault.security.banzaicloud.io/vault-path: "kubernetes"
+  ## Example for inject secret
+  # slack_api_url: '${vault:secret/data/slack-hook-alerts#URL}'
+
+config:
+  enabled: true
+  global: {}
+    # slack_api_url: ''
+
+  templates:
+    - '/etc/alertmanager/*.tmpl'
+
+  receivers:
+    - name: default-receiver
+      # slack_configs:
+      #  - channel: '@you'
+      #    send_resolved: true
+
+  route:
+    group_wait: 10s
+    group_interval: 5m
+    receiver: default-receiver
+    repeat_interval: 3h
+
+## Monitors ConfigMap changes and POSTs to a URL
+## Ref: https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader
+##
+configmapReload:
+  ## If false, the configmap-reload container will not be deployed
+  ##
+  enabled: false
+
+  ## configmap-reload container name
+  ##
+  name: configmap-reload
+
+  ## configmap-reload container image
+  ##
+  image:
+    repository: quay.io/prometheus-operator/prometheus-config-reloader
+    tag: v0.66.0
+    pullPolicy: IfNotPresent
+
+  # containerPort: 9533
+
+  ## configmap-reload resource requests and limits
+  ## Ref: http://kubernetes.io/docs/user-guide/compute-resources/
+  ##
+  resources: {}
+
+  extraArgs: {}
+
+  ## Optionally specify extra list of additional volumeMounts
+  extraVolumeMounts: []
+    # - name: extras
+    #   mountPath: /usr/share/extras
+    #   readOnly: true
+
+  ## Optionally specify extra environment variables to add to alertmanager container
+  extraEnv: []
+    # - name: FOO
+    #   value: BAR
+
+  securityContext: {}
+    # capabilities:
+    #   drop:
+    #   - ALL
+    # readOnlyRootFilesystem: true
+    # runAsUser: 65534
+    # runAsNonRoot: true
+    # runAsGroup: 65534
+
+templates: {}
+#   alertmanager.tmpl: |-
+
+## Optionally specify extra list of additional volumeMounts
+extraVolumeMounts: []
+  # - name: extras
+  #   mountPath: /usr/share/extras
+  #   readOnly: true
+
+## Optionally specify extra list of additional volumes
+extraVolumes: []
+  # - name: extras
+  #   emptyDir: {}
+
+## Optionally specify extra environment variables to add to alertmanager container
+extraEnv: []
+  # - name: FOO
+  #   value: BAR
+
+testFramework:
+  enabled: false
+  annotations:
+    "helm.sh/hook": test-success
+    # "helm.sh/hook-delete-policy": "before-hook-creation,hook-succeeded"
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/.helmignore b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/.helmignore
new file mode 100644
index 0000000..daebc7d
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/.helmignore
@@ -0,0 +1,21 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/Chart.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/Chart.yaml
new file mode 100644
index 0000000..b339545
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/Chart.yaml
@@ -0,0 +1,26 @@
+apiVersion: v2
+name: kube-state-metrics
+description: Install kube-state-metrics to generate and expose cluster-level metrics
+keywords:
+- metric
+- monitoring
+- prometheus
+- kubernetes
+type: application
+version: 5.15.2
+appVersion: 2.3.0
+home: https://github.com/kubernetes/kube-state-metrics/
+sources:
+- https://github.com/kubernetes/kube-state-metrics/
+maintainers:
+- name: tariq1890
+  email: tariq.ibrahim@mulesoft.com
+- name: mrueg
+  email: manuel@rueg.eu
+- name: dotdc
+  email: david@0xdc.me
+annotations:
+  "artifacthub.io/license": Apache-2.0
+  "artifacthub.io/links": |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/README.md b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/README.md
new file mode 100644
index 0000000..6697236
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/README.md
@@ -0,0 +1,85 @@
+# kube-state-metrics Helm Chart
+
+Installs the [kube-state-metrics agent](https://github.com/kubernetes/kube-state-metrics).
+
+## Get Repository Info
+<!-- textlint-disable -->
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [helm repo](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+<!-- textlint-enable -->
+
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/kube-state-metrics [flags]
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] prometheus-community/kube-state-metrics [flags]
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### Migrating from stable/kube-state-metrics and kubernetes/kube-state-metrics
+
+You can upgrade in-place:
+
+1. [get repository info](#get-repository-info)
+1. [upgrade](#upgrading-chart) your existing release name using the new chart repository
+
+## Upgrading to v3.0.0
+
+v3.0.0 includes kube-state-metrics v2.0, see the [changelog](https://github.com/kubernetes/kube-state-metrics/blob/release-2.0/CHANGELOG.md) for major changes on the application-side.
+
+The upgraded chart now the following changes:
+
+* Dropped support for helm v2 (helm v3 or later is required)
+* collectors key was renamed to resources
+* namespace key was renamed to namespaces
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments:
+
+```console
+helm show values prometheus-community/kube-state-metrics
+```
+
+### kube-rbac-proxy
+
+You can enable `kube-state-metrics` endpoint protection using `kube-rbac-proxy`. By setting `kubeRBACProxy.enabled: true`, this chart will deploy one RBAC proxy container per endpoint (metrics & telemetry).
+To authorize access, authenticate your requests (via a `ServiceAccount` for example) with a `ClusterRole` attached such as:
+
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: kube-state-metrics-read
+rules:
+  - apiGroups: [ "" ]
+    resources: ["services/kube-state-metrics"]
+    verbs:
+      - get
+```
+
+See [kube-rbac-proxy examples](https://github.com/brancz/kube-rbac-proxy/tree/master/examples/resource-attributes) for more details.
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/NOTES.txt b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/NOTES.txt
new file mode 100644
index 0000000..2fd121e
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/NOTES.txt
@@ -0,0 +1,23 @@
+kube-state-metrics is a simple service that listens to the Kubernetes API server and generates metrics about the state of the objects.
+The exposed metrics can be found here:
+https://github.com/kubernetes/kube-state-metrics/blob/master/docs/README.md#exposed-metrics
+
+The metrics are exported on the HTTP endpoint /metrics on the listening port.
+In your case, {{ template "kube-state-metrics.fullname" . }}.{{ template "kube-state-metrics.namespace" . }}.svc.cluster.local:{{ .Values.service.port }}/metrics
+
+They are served either as plaintext or protobuf depending on the Accept header.
+They are designed to be consumed either by Prometheus itself or by a scraper that is compatible with scraping a Prometheus client endpoint.
+
+{{- if .Values.kubeRBACProxy.enabled}}
+
+kube-rbac-proxy endpoint protections is enabled:
+- Metrics endpoints are now HTTPS
+- Ensure that the client authenticates the requests (e.g. via service account) with the following role permissions:
+```
+rules:
+  - apiGroups: [ "" ]
+    resources: ["services/{{ template "kube-state-metrics.fullname" . }}"]
+    verbs:
+      - get
+```
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/_helpers.tpl b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/_helpers.tpl
new file mode 100644
index 0000000..4cb47db
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/_helpers.tpl
@@ -0,0 +1,156 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "kube-state-metrics.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "kube-state-metrics.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "kube-state-metrics.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create -}}
+    {{ default (include "kube-state-metrics.fullname" .) .Values.serviceAccount.name }}
+{{- else -}}
+    {{ default "default" .Values.serviceAccount.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Allow the release namespace to be overridden for multi-namespace deployments in combined charts
+*/}}
+{{- define "kube-state-metrics.namespace" -}}
+  {{- if .Values.namespaceOverride -}}
+    {{- .Values.namespaceOverride -}}
+  {{- else -}}
+    {{- .Release.Namespace -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "kube-state-metrics.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Generate basic labels
+*/}}
+{{- define "kube-state-metrics.labels" }}
+helm.sh/chart: {{ template "kube-state-metrics.chart" . }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+app.kubernetes.io/component: metrics
+app.kubernetes.io/part-of: {{ template "kube-state-metrics.name" . }}
+{{- include "kube-state-metrics.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+{{- if .Values.customLabels }}
+{{ toYaml .Values.customLabels }}
+{{- end }}
+{{- if .Values.releaseLabel }}
+release: {{ .Release.Name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "kube-state-metrics.selectorLabels" }}
+{{- if .Values.selectorOverride }}
+{{ toYaml .Values.selectorOverride }}
+{{- else }}
+app.kubernetes.io/name: {{ include "kube-state-metrics.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+{{- end }}
+
+{{/* Sets default scrape limits for servicemonitor */}}
+{{- define "servicemonitor.scrapeLimits" -}}
+{{- with .sampleLimit }}
+sampleLimit: {{ . }}
+{{- end }}
+{{- with .targetLimit }}
+targetLimit: {{ . }}
+{{- end }}
+{{- with .labelLimit }}
+labelLimit: {{ . }}
+{{- end }}
+{{- with .labelNameLengthLimit }}
+labelNameLengthLimit: {{ . }}
+{{- end }}
+{{- with .labelValueLengthLimit }}
+labelValueLengthLimit: {{ . }}
+{{- end }}
+{{- end -}}
+
+{{/*
+Formats imagePullSecrets. Input is (dict "Values" .Values "imagePullSecrets" .{specific imagePullSecrets})
+*/}}
+{{- define "kube-state-metrics.imagePullSecrets" -}}
+{{- range (concat .Values.global.imagePullSecrets .imagePullSecrets) }}
+  {{- if eq (typeOf .) "map[string]interface {}" }}
+- {{ toYaml . | trim }}
+  {{- else }}
+- name: {{ . }}
+  {{- end }}
+{{- end }}
+{{- end -}}
+
+{{/*
+The image to use for kube-state-metrics
+*/}}
+{{- define "kube-state-metrics.image" -}}
+{{- if .Values.image.sha }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s@%s" .Values.global.imageRegistry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) .Values.image.sha }}
+{{- else }}
+{{- printf "%s/%s:%s@%s" .Values.image.registry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) .Values.image.sha }}
+{{- end }}
+{{- else }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s" .Values.global.imageRegistry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) }}
+{{- else }}
+{{- printf "%s/%s:%s" .Values.image.registry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+The image to use for kubeRBACProxy
+*/}}
+{{- define "kubeRBACProxy.image" -}}
+{{- if .Values.kubeRBACProxy.image.sha }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s@%s" .Values.global.imageRegistry .Values.kubeRBACProxy.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.kubeRBACProxy.image.tag) .Values.kubeRBACProxy.image.sha }}
+{{- else }}
+{{- printf "%s/%s:%s@%s" .Values.kubeRBACProxy.image.registry .Values.kubeRBACProxy.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.kubeRBACProxy.image.tag) .Values.kubeRBACProxy.image.sha }}
+{{- end }}
+{{- else }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s" .Values.global.imageRegistry .Values.kubeRBACProxy.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.kubeRBACProxy.image.tag) }}
+{{- else }}
+{{- printf "%s/%s:%s" .Values.kubeRBACProxy.image.registry .Values.kubeRBACProxy.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.kubeRBACProxy.image.tag) }}
+{{- end }}
+{{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/ciliumnetworkpolicy.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/ciliumnetworkpolicy.yaml
new file mode 100644
index 0000000..35adcf4
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/ciliumnetworkpolicy.yaml
@@ -0,0 +1,33 @@
+{{- if and .Values.networkPolicy.enabled (eq .Values.networkPolicy.flavor "cilium") }}
+apiVersion: cilium.io/v2
+kind: CiliumNetworkPolicy
+metadata:
+  {{- if .Values.annotations }}
+  annotations:
+    {{ toYaml .Values.annotations | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+spec:
+  endpointSelector:
+    matchLabels:
+      {{- include "kube-state-metrics.selectorLabels" . | indent 6 }}
+  egress:
+    {{- if and .Values.networkPolicy.cilium .Values.networkPolicy.cilium.kubeApiServerSelector }}
+      {{ toYaml .Values.networkPolicy.cilium.kubeApiServerSelector | nindent 6 }}
+    {{- else }}
+    - toEntities:
+      - kube-apiserver
+    {{- end }}
+  ingress:
+  - toPorts:
+    - ports:
+      - port: {{ .Values.service.port | quote }}
+        protocol: TCP
+      {{- if .Values.selfMonitor.enabled }}
+      - port: {{ .Values.selfMonitor.telemetryPort | default 8081 | quote }}
+        protocol: TCP
+      {{ end }}
+{{ end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml
new file mode 100644
index 0000000..fa89bed
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/clusterrolebinding.yaml
@@ -0,0 +1,20 @@
+{{- if and .Values.rbac.create .Values.rbac.useClusterRole -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+{{- if .Values.rbac.useExistingRole }}
+  name: {{ .Values.rbac.useExistingRole }}
+{{- else }}
+  name: {{ template "kube-state-metrics.fullname" . }}
+{{- end }}
+subjects:
+- kind: ServiceAccount
+  name: {{ template "kube-state-metrics.serviceAccountName" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/crs-configmap.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/crs-configmap.yaml
new file mode 100644
index 0000000..da1757d
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/crs-configmap.yaml
@@ -0,0 +1,16 @@
+{{- if .Values.customResourceState.enabled}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}-customresourcestate-config
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  {{- if .Values.annotations }}
+  annotations:
+    {{ toYaml .Values.annotations | nindent 4 }}
+  {{- end }}
+data:
+  config.yaml: |
+    {{- toYaml .Values.customResourceState.config | nindent 4 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/deployment.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/deployment.yaml
new file mode 100644
index 0000000..5dde3b7
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/deployment.yaml
@@ -0,0 +1,290 @@
+apiVersion: apps/v1
+{{- if .Values.autosharding.enabled }}
+kind: StatefulSet
+{{- else }}
+kind: Deployment
+{{- end }}
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  {{- if .Values.annotations }}
+  annotations:
+{{ toYaml .Values.annotations | indent 4 }}
+  {{- end }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "kube-state-metrics.selectorLabels" . | indent 6 }}
+  replicas: {{ .Values.replicas }}
+  {{- if not .Values.autosharding.enabled }}
+  strategy:
+    type: {{ .Values.updateStrategy | default "RollingUpdate" }}
+  {{- end }}
+  revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
+  {{- if .Values.autosharding.enabled }}
+  serviceName: {{ template "kube-state-metrics.fullname" . }}
+  volumeClaimTemplates: []
+  {{- end }}
+  template:
+    metadata:
+      labels:
+        {{- include "kube-state-metrics.labels" . | indent 8 }}
+      {{- if .Values.podAnnotations }}
+      annotations:
+{{ toYaml .Values.podAnnotations | indent 8 }}
+      {{- end }}
+    spec:
+      hostNetwork: {{ .Values.hostNetwork }}
+      serviceAccountName: {{ template "kube-state-metrics.serviceAccountName" . }}
+      {{- if .Values.securityContext.enabled }}
+      securityContext: {{- omit .Values.securityContext "enabled" | toYaml | nindent 8 }}
+      {{- end }}
+    {{- if .Values.priorityClassName }}
+      priorityClassName: {{ .Values.priorityClassName }}
+    {{- end }}
+      {{- with .Values.initContainers }}
+      initContainers:
+      {{- toYaml . | nindent 6 }}
+      {{- end }}
+      containers:
+      {{- $httpPort := ternary 9090 (.Values.service.port | default 8080) .Values.kubeRBACProxy.enabled}}
+      {{- $telemetryPort := ternary 9091 (.Values.selfMonitor.telemetryPort | default 8081) .Values.kubeRBACProxy.enabled}}
+      - name: {{ template "kube-state-metrics.name" . }}
+        {{- if .Values.autosharding.enabled }}
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        {{- end }}
+        args:
+        {{-  if .Values.extraArgs  }}
+        {{- .Values.extraArgs | toYaml | nindent 8 }}
+        {{-  end  }}
+        - --port={{ $httpPort }}
+        {{-  if .Values.collectors  }}
+        - --resources={{ .Values.collectors | join "," }}
+        {{-  end  }}
+        {{- if .Values.metricLabelsAllowlist }}
+        - --metric-labels-allowlist={{ .Values.metricLabelsAllowlist | join "," }}
+        {{- end }}
+        {{- if .Values.metricAnnotationsAllowList }}
+        - --metric-annotations-allowlist={{ .Values.metricAnnotationsAllowList | join "," }}
+        {{- end }}
+        {{- if .Values.metricAllowlist }}
+        - --metric-allowlist={{ .Values.metricAllowlist | join "," }}
+        {{- end }}
+        {{- if .Values.metricDenylist }}
+        - --metric-denylist={{ .Values.metricDenylist | join "," }}
+        {{- end }}
+        {{- $namespaces := list }}
+        {{- if .Values.namespaces }}
+        {{- range $ns := join "," .Values.namespaces | split "," }}
+        {{- $namespaces = append $namespaces (tpl $ns $) }}
+        {{- end }}
+        {{- end }}
+        {{- if .Values.releaseNamespace }}
+        {{- $namespaces = append $namespaces ( include "kube-state-metrics.namespace" . ) }}
+        {{- end }}
+        {{- if $namespaces }}
+        - --namespaces={{ $namespaces | mustUniq | join "," }}
+        {{- end }}
+        {{- if .Values.namespacesDenylist }}
+        - --namespaces-denylist={{ tpl (.Values.namespacesDenylist | join ",") $ }}
+        {{- end }}
+        {{- if .Values.autosharding.enabled }}
+        - --pod=$(POD_NAME)
+        - --pod-namespace=$(POD_NAMESPACE)
+        {{- end }}
+        {{- if .Values.kubeconfig.enabled }}
+        - --kubeconfig=/opt/k8s/.kube/config
+        {{- end }}
+        {{- if .Values.kubeRBACProxy.enabled }}
+        - --telemetry-host=127.0.0.1
+        - --telemetry-port={{ $telemetryPort }}
+        {{- else }}
+        {{- if .Values.selfMonitor.telemetryHost }}
+        - --telemetry-host={{ .Values.selfMonitor.telemetryHost }}
+        {{- end }}
+        {{- if .Values.selfMonitor.telemetryPort }}
+        - --telemetry-port={{ $telemetryPort }}
+        {{- end }}
+        {{- if .Values.customResourceState.enabled }}
+        - --custom-resource-state-config-file=/etc/customresourcestate/config.yaml
+        {{- end }}
+        {{- end }}
+        {{- if or (.Values.kubeconfig.enabled) (.Values.customResourceState.enabled) (.Values.volumeMounts) }}
+        volumeMounts:
+        {{- if .Values.kubeconfig.enabled }}
+        - name: kubeconfig
+          mountPath: /opt/k8s/.kube/
+          readOnly: true
+        {{- end }}
+        {{- if .Values.customResourceState.enabled }}
+        - name: customresourcestate-config
+          mountPath: /etc/customresourcestate
+          readOnly: true
+        {{- end }}
+        {{- if .Values.volumeMounts }}
+{{ toYaml .Values.volumeMounts | indent 8 }}
+        {{- end }}
+        {{- end }}
+        imagePullPolicy: {{ .Values.image.pullPolicy }}
+        image: {{ include "kube-state-metrics.image" . }}
+        {{- if eq .Values.kubeRBACProxy.enabled false }}
+        ports:
+        - containerPort: {{ .Values.service.port | default 8080}}
+          name: "http"
+        {{- if .Values.selfMonitor.enabled }}
+        - containerPort: {{ $telemetryPort }}
+          name: "metrics"
+        {{- end }}
+        {{- end }}
+        livenessProbe:
+          httpGet:
+            path: /healthz
+            port: {{ $httpPort }}
+          initialDelaySeconds: 5
+          timeoutSeconds: 5
+        readinessProbe:
+          httpGet:
+            path: /
+            port: {{ $httpPort }}
+          initialDelaySeconds: 5
+          timeoutSeconds: 5
+        {{- if .Values.resources }}
+        resources:
+{{ toYaml .Values.resources | indent 10 }}
+{{- end }}
+{{- if .Values.containerSecurityContext }}
+        securityContext:
+{{ toYaml .Values.containerSecurityContext | indent 10 }}
+{{- end }}
+        {{-  if .Values.kubeRBACProxy.enabled  }}
+      - name: kube-rbac-proxy-http
+        args:
+        {{-  if .Values.kubeRBACProxy.extraArgs  }}
+        {{- .Values.kubeRBACProxy.extraArgs | toYaml | nindent 8 }}
+        {{-  end  }}
+        - --secure-listen-address=:{{ .Values.service.port | default 8080}}
+        - --upstream=http://127.0.0.1:{{ $httpPort }}/
+        - --proxy-endpoints-port=8888
+        - --config-file=/etc/kube-rbac-proxy-config/config-file.yaml
+        volumeMounts:
+          - name: kube-rbac-proxy-config
+            mountPath: /etc/kube-rbac-proxy-config
+          {{- with .Values.kubeRBACProxy.volumeMounts }}
+          {{- toYaml . | nindent 10 }}
+          {{- end }}
+        imagePullPolicy: {{ .Values.kubeRBACProxy.image.pullPolicy }}
+        image: {{ include "kubeRBACProxy.image" . }}
+        ports:
+          - containerPort: {{ .Values.service.port | default 8080}}
+            name: "http"
+          - containerPort: 8888
+            name: "http-healthz"
+        readinessProbe:
+          httpGet:
+            scheme: HTTPS
+            port: 8888
+            path: healthz
+          initialDelaySeconds: 5
+          timeoutSeconds: 5
+        {{- if .Values.kubeRBACProxy.resources }}
+        resources:
+{{ toYaml .Values.kubeRBACProxy.resources | indent 10 }}
+{{- end }}
+{{- if .Values.kubeRBACProxy.containerSecurityContext }}
+        securityContext:
+{{ toYaml .Values.kubeRBACProxy.containerSecurityContext | indent 10 }}
+{{- end }}
+      {{-  if .Values.selfMonitor.enabled  }}
+      - name: kube-rbac-proxy-telemetry
+        args:
+        {{-  if .Values.kubeRBACProxy.extraArgs  }}
+        {{- .Values.kubeRBACProxy.extraArgs | toYaml | nindent 8 }}
+        {{-  end  }}
+        - --secure-listen-address=:{{ .Values.selfMonitor.telemetryPort | default 8081 }}
+        - --upstream=http://127.0.0.1:{{ $telemetryPort }}/
+        - --proxy-endpoints-port=8889
+        - --config-file=/etc/kube-rbac-proxy-config/config-file.yaml
+        volumeMounts:
+          - name: kube-rbac-proxy-config
+            mountPath: /etc/kube-rbac-proxy-config
+          {{- with .Values.kubeRBACProxy.volumeMounts }}
+          {{- toYaml . | nindent 10 }}
+          {{- end }}
+        imagePullPolicy: {{ .Values.kubeRBACProxy.image.pullPolicy }}
+        image: {{ include "kubeRBACProxy.image" . }}
+        ports:
+          - containerPort: {{ .Values.selfMonitor.telemetryPort | default 8081 }}
+            name: "metrics"
+          - containerPort: 8889
+            name: "metrics-healthz"
+        readinessProbe:
+          httpGet:
+            scheme: HTTPS
+            port: 8889
+            path: healthz
+          initialDelaySeconds: 5
+          timeoutSeconds: 5
+        {{- if .Values.kubeRBACProxy.resources }}
+        resources:
+{{ toYaml .Values.kubeRBACProxy.resources | indent 10 }}
+{{- end }}
+{{- if .Values.kubeRBACProxy.containerSecurityContext }}
+        securityContext:
+{{ toYaml .Values.kubeRBACProxy.containerSecurityContext | indent 10 }}
+{{- end }}
+      {{- end }}
+      {{- end }}
+      {{- with .Values.containers }}
+      {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+      imagePullSecrets:
+        {{- include "kube-state-metrics.imagePullSecrets" (dict "Values" .Values "imagePullSecrets" .Values.imagePullSecrets) | indent 8 }}
+      {{- end }}
+      {{- if .Values.affinity }}
+      affinity:
+{{ toYaml .Values.affinity | indent 8 }}
+      {{- end }}
+      {{- if .Values.nodeSelector }}
+      nodeSelector:
+{{ toYaml .Values.nodeSelector | indent 8 }}
+      {{- end }}
+      {{- if .Values.tolerations }}
+      tolerations:
+{{ toYaml .Values.tolerations | indent 8 }}
+      {{- end }}
+      {{- if .Values.topologySpreadConstraints }}
+      topologySpreadConstraints:
+{{ toYaml .Values.topologySpreadConstraints | indent 8 }}
+      {{- end }}
+      {{- if or (.Values.kubeconfig.enabled) (.Values.customResourceState.enabled) (.Values.volumes) (.Values.kubeRBACProxy.enabled) }}
+      volumes:
+      {{- if .Values.kubeconfig.enabled}}
+        - name: kubeconfig
+          secret:
+            secretName: {{ template "kube-state-metrics.fullname" . }}-kubeconfig
+      {{- end }}
+      {{- if .Values.kubeRBACProxy.enabled}}
+        - name: kube-rbac-proxy-config
+          configMap:
+            name: {{ template "kube-state-metrics.fullname" . }}-rbac-config
+      {{- end }}
+      {{- if .Values.customResourceState.enabled}}
+        - name: customresourcestate-config
+          configMap:
+            name: {{ template "kube-state-metrics.fullname" . }}-customresourcestate-config
+      {{- end }}
+      {{- if .Values.volumes }}
+{{ toYaml .Values.volumes | indent 8 }}
+      {{- end }}
+      {{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/extra-manifests.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/extra-manifests.yaml
new file mode 100644
index 0000000..f0c859e
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/extra-manifests.yaml
@@ -0,0 +1,4 @@
+{{ range .Values.extraManifests }}
+---
+{{ tpl (toYaml .) $ }}
+{{ end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/kubeconfig-secret.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/kubeconfig-secret.yaml
new file mode 100644
index 0000000..c0a3e45
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/kubeconfig-secret.yaml
@@ -0,0 +1,12 @@
+{{- if .Values.kubeconfig.enabled -}}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}-kubeconfig
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+type: Opaque
+data:
+  config: '{{ .Values.kubeconfig.secret }}'
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/networkpolicy.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/networkpolicy.yaml
new file mode 100644
index 0000000..ea937c2
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/networkpolicy.yaml
@@ -0,0 +1,43 @@
+{{- if and .Values.networkPolicy.enabled (eq .Values.networkPolicy.flavor "kubernetes") }}
+kind: NetworkPolicy
+apiVersion: networking.k8s.io/v1
+metadata:
+  {{- if .Values.annotations }}
+  annotations:
+    {{ toYaml .Values.annotations | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+spec:
+  {{- if .Values.networkPolicy.egress }}
+  ## Deny all egress by default
+  egress:
+    {{- toYaml .Values.networkPolicy.egress | nindent 4 }}
+  {{- end }}
+  ingress:
+  {{- if .Values.networkPolicy.ingress }}
+    {{- toYaml .Values.networkPolicy.ingress | nindent 4 }}
+  {{- else }}
+    ## Allow ingress on default ports by default
+  - ports:
+    - port: {{ .Values.service.port | default 8080 }}
+      protocol: TCP
+    {{- if .Values.selfMonitor.enabled }}
+    {{- $telemetryPort := ternary 9091 (.Values.selfMonitor.telemetryPort | default 8081) .Values.kubeRBACProxy.enabled}}
+    - port: {{ $telemetryPort }}
+      protocol: TCP
+    {{- end }}
+  {{- end }}
+  podSelector:
+    {{- if .Values.networkPolicy.podSelector }}
+    {{- toYaml .Values.networkPolicy.podSelector | nindent 4 }}
+    {{- else }}
+    matchLabels:
+      {{- include "kube-state-metrics.selectorLabels" . | indent 6 }}
+    {{- end }}
+  policyTypes:
+    - Ingress
+    - Egress
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/pdb.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/pdb.yaml
new file mode 100644
index 0000000..13d5422
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/pdb.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.podDisruptionBudget -}}
+{{ if $.Capabilities.APIVersions.Has "policy/v1/PodDisruptionBudget" -}}
+apiVersion: policy/v1
+{{- else -}}
+apiVersion: policy/v1beta1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+spec:
+  selector:
+    matchLabels:
+      app.kubernetes.io/name: {{ template "kube-state-metrics.name" . }}
+{{ toYaml .Values.podDisruptionBudget | indent 2 }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/podsecuritypolicy.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/podsecuritypolicy.yaml
new file mode 100644
index 0000000..20a9cbe
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/podsecuritypolicy.yaml
@@ -0,0 +1,39 @@
+{{- if and .Values.podSecurityPolicy.enabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+{{- if .Values.podSecurityPolicy.annotations }}
+  annotations:
+{{ toYaml .Values.podSecurityPolicy.annotations | indent 4 }}
+{{- end }}
+spec:
+  privileged: false
+  volumes:
+    - 'secret'
+{{- if .Values.podSecurityPolicy.additionalVolumes }}
+{{ toYaml .Values.podSecurityPolicy.additionalVolumes | indent 4 }}
+{{- end }}
+  hostNetwork: false
+  hostIPC: false
+  hostPID: false
+  runAsUser:
+    rule: 'MustRunAsNonRoot'
+  seLinux:
+    rule: 'RunAsAny'
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: false
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/psp-clusterrole.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/psp-clusterrole.yaml
new file mode 100644
index 0000000..e003c1f
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/psp-clusterrole.yaml
@@ -0,0 +1,19 @@
+{{- if and .Values.podSecurityPolicy.enabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: psp-{{ template "kube-state-metrics.fullname" . }}
+rules:
+{{- $kubeTargetVersion := default .Capabilities.KubeVersion.GitVersion .Values.kubeTargetVersionOverride }}
+{{- if semverCompare "> 1.15.0-0" $kubeTargetVersion }}
+- apiGroups: ['policy']
+{{- else }}
+- apiGroups: ['extensions']
+{{- end }}
+  resources: ['podsecuritypolicies']
+  verbs:     ['use']
+  resourceNames:
+  - {{ template "kube-state-metrics.fullname" . }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/psp-clusterrolebinding.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/psp-clusterrolebinding.yaml
new file mode 100644
index 0000000..8783748
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/psp-clusterrolebinding.yaml
@@ -0,0 +1,16 @@
+{{- if and .Values.podSecurityPolicy.enabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: psp-{{ template "kube-state-metrics.fullname" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: psp-{{ template "kube-state-metrics.fullname" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "kube-state-metrics.serviceAccountName" . }}
+    namespace: {{ template "kube-state-metrics.namespace" . }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/rbac-configmap.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/rbac-configmap.yaml
new file mode 100644
index 0000000..1489768
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/rbac-configmap.yaml
@@ -0,0 +1,22 @@
+{{- if .Values.kubeRBACProxy.enabled}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}-rbac-config
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  {{- if .Values.annotations }}
+  annotations:
+    {{ toYaml .Values.annotations | nindent 4 }}
+  {{- end }}
+data:
+  config-file.yaml: |+
+    authorization:
+      resourceAttributes:
+        namespace: {{ template "kube-state-metrics.namespace" . }}
+        apiVersion: v1
+        resource: services
+        subresource: {{ template "kube-state-metrics.fullname" . }}
+        name: {{ template "kube-state-metrics.fullname" . }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/role.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/role.yaml
new file mode 100644
index 0000000..5b3aaf1
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/role.yaml
@@ -0,0 +1,212 @@
+{{- if and (eq .Values.rbac.create true) (not .Values.rbac.useExistingRole) -}}
+{{- range (ternary (join "," .Values.namespaces | split "," ) (list "") (eq $.Values.rbac.useClusterRole false)) }}
+---
+apiVersion: rbac.authorization.k8s.io/v1
+{{- if eq $.Values.rbac.useClusterRole false }}
+kind: Role
+{{- else }}
+kind: ClusterRole
+{{- end }}
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" $ | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" $ }}
+{{- if eq $.Values.rbac.useClusterRole false }}
+  namespace: {{ . }}
+{{- end }}
+rules:
+{{ if has "certificatesigningrequests" $.Values.collectors }}
+- apiGroups: ["certificates.k8s.io"]
+  resources:
+  - certificatesigningrequests
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "configmaps" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - configmaps
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "cronjobs" $.Values.collectors }}
+- apiGroups: ["batch"]
+  resources:
+  - cronjobs
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "daemonsets" $.Values.collectors }}
+- apiGroups: ["extensions", "apps"]
+  resources:
+  - daemonsets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "deployments" $.Values.collectors }}
+- apiGroups: ["extensions", "apps"]
+  resources:
+  - deployments
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "endpoints" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - endpoints
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "endpointslices" $.Values.collectors }}
+- apiGroups: ["discovery.k8s.io"]
+  resources:
+  - endpointslices
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "horizontalpodautoscalers" $.Values.collectors }}
+- apiGroups: ["autoscaling"]
+  resources:
+  - horizontalpodautoscalers
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "ingresses" $.Values.collectors }}
+- apiGroups: ["extensions", "networking.k8s.io"]
+  resources:
+  - ingresses
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "jobs" $.Values.collectors }}
+- apiGroups: ["batch"]
+  resources:
+  - jobs
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "leases" $.Values.collectors }}
+- apiGroups: ["coordination.k8s.io"]
+  resources:
+  - leases
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "limitranges" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - limitranges
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "mutatingwebhookconfigurations" $.Values.collectors }}
+- apiGroups: ["admissionregistration.k8s.io"]
+  resources:
+    - mutatingwebhookconfigurations
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "namespaces" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - namespaces
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "networkpolicies" $.Values.collectors }}
+- apiGroups: ["networking.k8s.io"]
+  resources:
+  - networkpolicies
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "nodes" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - nodes
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "persistentvolumeclaims" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - persistentvolumeclaims
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "persistentvolumes" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - persistentvolumes
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "poddisruptionbudgets" $.Values.collectors }}
+- apiGroups: ["policy"]
+  resources:
+    - poddisruptionbudgets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "pods" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - pods
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "replicasets" $.Values.collectors }}
+- apiGroups: ["extensions", "apps"]
+  resources:
+  - replicasets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "replicationcontrollers" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - replicationcontrollers
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "resourcequotas" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - resourcequotas
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "secrets" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - secrets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "services" $.Values.collectors }}
+- apiGroups: [""]
+  resources:
+  - services
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "statefulsets" $.Values.collectors }}
+- apiGroups: ["apps"]
+  resources:
+  - statefulsets
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "storageclasses" $.Values.collectors }}
+- apiGroups: ["storage.k8s.io"]
+  resources:
+    - storageclasses
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "validatingwebhookconfigurations" $.Values.collectors }}
+- apiGroups: ["admissionregistration.k8s.io"]
+  resources:
+    - validatingwebhookconfigurations
+  verbs: ["list", "watch"]
+{{ end -}}
+{{ if has "volumeattachments" $.Values.collectors }}
+- apiGroups: ["storage.k8s.io"]
+  resources:
+    - volumeattachments
+  verbs: ["list", "watch"]
+{{ end -}}
+{{-  if $.Values.kubeRBACProxy.enabled  }}
+- apiGroups: ["authentication.k8s.io"]
+  resources:
+    - tokenreviews
+  verbs: ["create"]
+- apiGroups: ["authorization.k8s.io"]
+  resources:
+    - subjectaccessreviews
+  verbs: ["create"]
+{{- end }}
+{{- if $.Values.customResourceState.enabled }}
+- apiGroups: ["apiextensions.k8s.io"]
+  resources:
+    - customresourcedefinitions
+  verbs: ["list", "watch"]
+{{- end }}
+{{ if $.Values.rbac.extraRules }}
+{{ toYaml $.Values.rbac.extraRules }}
+{{ end }}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/rolebinding.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/rolebinding.yaml
new file mode 100644
index 0000000..c3d1d22
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/rolebinding.yaml
@@ -0,0 +1,24 @@
+{{- if and (eq  .Values.rbac.create true) (eq .Values.rbac.useClusterRole false) -}}
+{{- range (join "," $.Values.namespaces) | split "," }}
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" $ | indent 4 }}
+  name: {{ template "kube-state-metrics.fullname" $ }}
+  namespace: {{ . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+{{- if (not $.Values.rbac.useExistingRole) }}
+  name: {{ template "kube-state-metrics.fullname" $ }}
+{{- else }}
+  name: {{ $.Values.rbac.useExistingRole }}
+{{- end }}
+subjects:
+- kind: ServiceAccount
+  name: {{ template "kube-state-metrics.serviceAccountName" $ }}
+  namespace: {{ template "kube-state-metrics.namespace" $ }}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/service.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/service.yaml
new file mode 100644
index 0000000..c0645d9
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/service.yaml
@@ -0,0 +1,49 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  annotations:
+    {{- if .Values.prometheusScrape }}
+    prometheus.io/scrape: '{{ .Values.prometheusScrape }}'
+    {{- end }}
+    {{- if .Values.service.annotations }}
+    {{- toYaml .Values.service.annotations | nindent 4 }}
+    {{- end }}
+spec:
+  type: "{{ .Values.service.type }}"
+  ports:
+  - name: "http"
+    protocol: TCP
+    port: {{ .Values.service.port | default 8080}}
+  {{- if .Values.service.nodePort }}
+    nodePort: {{ .Values.service.nodePort }}
+  {{- end }}
+    targetPort: {{ .Values.service.port | default 8080}}
+  {{ if .Values.selfMonitor.enabled }}
+  - name: "metrics"
+    protocol: TCP
+    port: {{ .Values.selfMonitor.telemetryPort | default 8081 }}
+    targetPort: {{ .Values.selfMonitor.telemetryPort | default 8081 }}
+  {{- if .Values.selfMonitor.telemetryNodePort }}
+    nodePort: {{ .Values.selfMonitor.telemetryNodePort }}
+  {{- end }}
+  {{ end }}
+{{- if .Values.service.loadBalancerIP }}
+  loadBalancerIP: "{{ .Values.service.loadBalancerIP }}"
+{{- end }}
+{{- if .Values.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- range $cidr := .Values.service.loadBalancerSourceRanges }}
+    - {{ $cidr }}
+  {{- end }}
+{{- end }}
+{{- if .Values.autosharding.enabled }}
+  clusterIP: None
+{{- else if .Values.service.clusterIP }}
+  clusterIP: "{{ .Values.service.clusterIP }}"
+{{- end }}
+  selector:
+    {{- include "kube-state-metrics.selectorLabels" . | indent 4 }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml
new file mode 100644
index 0000000..4775530
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/serviceaccount.yaml
@@ -0,0 +1,15 @@
+{{- if .Values.serviceAccount.create -}}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  name: {{ template "kube-state-metrics.serviceAccountName" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+{{- if .Values.serviceAccount.annotations }}
+  annotations:
+{{ toYaml .Values.serviceAccount.annotations | indent 4 }}
+{{- end }}
+imagePullSecrets:
+  {{- include "kube-state-metrics.imagePullSecrets" (dict "Values" .Values "imagePullSecrets" .Values.serviceAccount.imagePullSecrets) | indent 2 }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/servicemonitor.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/servicemonitor.yaml
new file mode 100644
index 0000000..35975f5
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/servicemonitor.yaml
@@ -0,0 +1,120 @@
+{{- if .Values.prometheus.monitor.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+  {{- with .Values.prometheus.monitor.additionalLabels }}
+    {{- tpl (toYaml . | nindent 4) $ }}
+  {{- end }}
+  {{- with .Values.prometheus.monitor.annotations }}
+  annotations:
+    {{- tpl (toYaml . | nindent 4) $ }}
+  {{- end }}
+spec:
+  jobLabel: {{ default "app.kubernetes.io/name" .Values.prometheus.monitor.jobLabel }}
+  {{- with .Values.prometheus.monitor.targetLabels }}
+  targetLabels:
+    {{- toYaml . | trim | nindent 4 }}
+  {{- end }}
+  {{- with .Values.prometheus.monitor.podTargetLabels }}
+  podTargetLabels:
+    {{- toYaml . | trim | nindent 4 }}
+  {{- end }}
+  {{- include "servicemonitor.scrapeLimits" .Values.prometheus.monitor | indent 2 }}
+  {{- if .Values.prometheus.monitor.namespaceSelector }}
+  namespaceSelector:
+    matchNames:
+    {{- with .Values.prometheus.monitor.namespaceSelector }}
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+  {{- end }}
+  selector:
+    matchLabels:
+    {{- with .Values.prometheus.monitor.selectorOverride }}
+      {{- toYaml . | nindent 6 }}
+    {{- else }}
+      {{- include "kube-state-metrics.selectorLabels" . | indent 6 }}
+    {{- end }}
+  endpoints:
+    - port: http
+    {{- if .Values.prometheus.monitor.interval }}
+      interval: {{ .Values.prometheus.monitor.interval }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.scrapeTimeout }}
+      scrapeTimeout: {{ .Values.prometheus.monitor.scrapeTimeout }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.proxyUrl }}
+      proxyUrl: {{ .Values.prometheus.monitor.proxyUrl}}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.enableHttp2 }}
+      enableHttp2: {{ .Values.prometheus.monitor.enableHttp2}}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.honorLabels }}
+      honorLabels: true
+    {{- end }}
+    {{- if .Values.prometheus.monitor.metricRelabelings }}
+      metricRelabelings:
+        {{- toYaml .Values.prometheus.monitor.metricRelabelings | nindent 8 }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.relabelings }}
+      relabelings:
+        {{- toYaml .Values.prometheus.monitor.relabelings | nindent 8 }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.scheme }}
+      scheme: {{ .Values.prometheus.monitor.scheme }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.tlsConfig }}
+      tlsConfig:
+        {{- toYaml .Values.prometheus.monitor.tlsConfig | nindent 8 }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.bearerTokenFile }}
+      bearerTokenFile: {{ .Values.prometheus.monitor.bearerTokenFile }}
+    {{- end }}
+    {{- with .Values.prometheus.monitor.bearerTokenSecret }}
+      bearerTokenSecret:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+  {{- if .Values.selfMonitor.enabled }}
+    - port: metrics
+    {{- if .Values.prometheus.monitor.interval }}
+      interval: {{ .Values.prometheus.monitor.interval }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.scrapeTimeout }}
+      scrapeTimeout: {{ .Values.prometheus.monitor.scrapeTimeout }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.proxyUrl }}
+      proxyUrl: {{ .Values.prometheus.monitor.proxyUrl}}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.enableHttp2 }}
+      enableHttp2: {{ .Values.prometheus.monitor.enableHttp2}}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.honorLabels }}
+      honorLabels: true
+    {{- end }}
+    {{- if .Values.prometheus.monitor.metricRelabelings }}
+      metricRelabelings:
+        {{- toYaml .Values.prometheus.monitor.metricRelabelings | nindent 8 }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.relabelings }}
+      relabelings:
+        {{- toYaml .Values.prometheus.monitor.relabelings | nindent 8 }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.scheme }}
+      scheme: {{ .Values.prometheus.monitor.scheme }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.tlsConfig }}
+      tlsConfig:
+        {{- toYaml .Values.prometheus.monitor.tlsConfig | nindent 8 }}
+    {{- end }}
+    {{- if .Values.prometheus.monitor.bearerTokenFile }}
+      bearerTokenFile: {{ .Values.prometheus.monitor.bearerTokenFile }}
+    {{- end }}
+    {{- with .Values.prometheus.monitor.bearerTokenSecret }}
+      bearerTokenSecret:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/stsdiscovery-role.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/stsdiscovery-role.yaml
new file mode 100644
index 0000000..5f452ab
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/stsdiscovery-role.yaml
@@ -0,0 +1,26 @@
+{{- if and .Values.autosharding.enabled .Values.rbac.create -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: stsdiscovery-{{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+- apiGroups:
+  - apps
+  resourceNames:
+  - {{ template "kube-state-metrics.fullname" . }}
+  resources:
+  - statefulsets
+  verbs:
+  - get
+  - list
+  - watch
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/stsdiscovery-rolebinding.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/stsdiscovery-rolebinding.yaml
new file mode 100644
index 0000000..cf29928
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/stsdiscovery-rolebinding.yaml
@@ -0,0 +1,17 @@
+{{- if and .Values.autosharding.enabled .Values.rbac.create -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  name: stsdiscovery-{{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: stsdiscovery-{{ template "kube-state-metrics.fullname" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "kube-state-metrics.serviceAccountName" . }}
+    namespace: {{ template "kube-state-metrics.namespace" . }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/verticalpodautoscaler.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/verticalpodautoscaler.yaml
new file mode 100644
index 0000000..854185e
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/templates/verticalpodautoscaler.yaml
@@ -0,0 +1,44 @@
+{{- if and (.Capabilities.APIVersions.Has "autoscaling.k8s.io/v1") (.Values.verticalPodAutoscaler.enabled) }}
+apiVersion: autoscaling.k8s.io/v1
+kind: VerticalPodAutoscaler
+metadata:
+  name: {{ template "kube-state-metrics.fullname" . }}
+  namespace: {{ template "kube-state-metrics.namespace" . }}
+  labels:
+    {{- include "kube-state-metrics.labels" . | indent 4 }}
+spec:
+  {{- with .Values.verticalPodAutoscaler.recommenders }}
+  recommenders:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  resourcePolicy:
+    containerPolicies:
+    - containerName: {{ template "kube-state-metrics.name" . }}
+      {{- with .Values.verticalPodAutoscaler.controlledResources }}
+      controlledResources:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.controlledValues }}
+      controlledValues: {{ .Values.verticalPodAutoscaler.controlledValues }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.maxAllowed }}
+      maxAllowed:
+        {{ toYaml .Values.verticalPodAutoscaler.maxAllowed | nindent 8 }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.minAllowed }}
+      minAllowed:
+        {{ toYaml .Values.verticalPodAutoscaler.minAllowed | nindent 8 }}
+      {{- end }}
+  targetRef:
+    apiVersion: apps/v1
+    {{- if .Values.autosharding.enabled }}
+    kind: StatefulSet
+    {{- else }}
+    kind: Deployment
+    {{- end }}
+    name:  {{ template "kube-state-metrics.fullname" . }}
+  {{- with .Values.verticalPodAutoscaler.updatePolicy }}
+  updatePolicy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/values.yaml b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/values.yaml
new file mode 100644
index 0000000..8638049
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/kube-state-metrics/values.yaml
@@ -0,0 +1,456 @@
+# Default values for kube-state-metrics.
+prometheusScrape: true
+image:
+  registry: registry.k8s.io
+  repository: kube-state-metrics/kube-state-metrics
+  # If unset use v + .Charts.appVersion
+  tag: "v2.9.2"
+  sha: ""
+  pullPolicy: IfNotPresent
+
+imagePullSecrets: []
+# - name: "image-pull-secret"
+
+global:
+  # To help compatibility with other charts which use global.imagePullSecrets.
+  # Allow either an array of {name: pullSecret} maps (k8s-style), or an array of strings (more common helm-style).
+  # global:
+  #   imagePullSecrets:
+  #   - name: pullSecret1
+  #   - name: pullSecret2
+  # or
+  # global:
+  #   imagePullSecrets:
+  #   - pullSecret1
+  #   - pullSecret2
+  imagePullSecrets: []
+  #
+  # Allow parent charts to override registry hostname
+  imageRegistry: ""
+
+# If set to true, this will deploy kube-state-metrics as a StatefulSet and the data
+# will be automatically sharded across <.Values.replicas> pods using the built-in
+# autodiscovery feature: https://github.com/kubernetes/kube-state-metrics#automated-sharding
+# This is an experimental feature and there are no stability guarantees.
+autosharding:
+  enabled: false
+
+replicas: 1
+
+# Change the deployment strategy when autosharding is disabled
+# updateStrategy: Recreate
+
+# Number of old history to retain to allow rollback
+# Default Kubernetes value is set to 10
+revisionHistoryLimit: 10
+
+# List of additional cli arguments to configure kube-state-metrics
+# for example: --enable-gzip-encoding, --log-file, etc.
+# all the possible args can be found here: https://github.com/kubernetes/kube-state-metrics/blob/master/docs/cli-arguments.md
+extraArgs: []
+
+service:
+  port: 8080
+  # Default to clusterIP for backward compatibility
+  type: ClusterIP
+  nodePort: 0
+  loadBalancerIP: ""
+  # Only allow access to the loadBalancerIP from these IPs
+  loadBalancerSourceRanges: []
+  clusterIP: ""
+  annotations: {}
+
+## Additional labels to add to all resources
+customLabels: {}
+  # app: kube-state-metrics
+
+## Override selector labels
+selectorOverride: {}
+
+## set to true to add the release label so scraping of the servicemonitor with kube-prometheus-stack works out of the box
+releaseLabel: false
+
+hostNetwork: false
+
+rbac:
+  # If true, create & use RBAC resources
+  create: true
+
+  # Set to a rolename to use existing role - skipping role creating - but still doing serviceaccount and rolebinding to it, rolename set here.
+  # useExistingRole: your-existing-role
+
+  # If set to false - Run without Cluteradmin privs needed - ONLY works if namespace is also set (if useExistingRole is set this name is used as ClusterRole or Role to bind to)
+  useClusterRole: true
+
+  # Add permissions for CustomResources' apiGroups in Role/ClusterRole. Should be used in conjunction with Custom Resource State Metrics configuration
+  # Example:
+  # - apiGroups: ["monitoring.coreos.com"]
+  #   resources: ["prometheuses"]
+  #   verbs: ["list", "watch"]
+  extraRules: []
+
+# Configure kube-rbac-proxy. When enabled, creates one kube-rbac-proxy container per exposed HTTP endpoint (metrics and telemetry if enabled).
+# The requests are served through the same service but requests are then HTTPS.
+kubeRBACProxy:
+  enabled: false
+  image:
+    registry: quay.io
+    repository: brancz/kube-rbac-proxy
+    tag: v0.14.0
+    sha: ""
+    pullPolicy: IfNotPresent
+
+  # List of additional cli arguments to configure kube-rbac-prxy
+  # for example: --tls-cipher-suites, --log-file, etc.
+  # all the possible args can be found here: https://github.com/brancz/kube-rbac-proxy#usage
+  extraArgs: []
+
+  ## Specify security settings for a Container
+  ## Allows overrides and additional options compared to (Pod) securityContext
+  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+  containerSecurityContext: {}
+
+  resources: {}
+    # We usually recommend not to specify default resources and to leave this as a conscious
+    # choice for the user. This also increases chances charts run on environments with little
+    # resources, such as Minikube. If you do want to specify resources, uncomment the following
+    # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+    # limits:
+    #  cpu: 100m
+    #  memory: 64Mi
+    # requests:
+    #  cpu: 10m
+    #  memory: 32Mi
+
+  ## volumeMounts enables mounting custom volumes in rbac-proxy containers
+  ## Useful for TLS certificates and keys
+  volumeMounts: []
+    # - mountPath: /etc/tls
+    #   name: kube-rbac-proxy-tls
+    #   readOnly: true
+
+serviceAccount:
+  # Specifies whether a ServiceAccount should be created, require rbac true
+  create: true
+  # The name of the ServiceAccount to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name:
+  # Reference to one or more secrets to be used when pulling images
+  # ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+  imagePullSecrets: []
+  # ServiceAccount annotations.
+  # Use case: AWS EKS IAM roles for service accounts
+  # ref: https://docs.aws.amazon.com/eks/latest/userguide/specify-service-account-role.html
+  annotations: {}
+
+prometheus:
+  monitor:
+    enabled: false
+    annotations: {}
+    additionalLabels: {}
+    namespace: ""
+    namespaceSelector: []
+    jobLabel: ""
+    targetLabels: []
+    podTargetLabels: []
+    interval: ""
+    ## SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.
+    ##
+    sampleLimit: 0
+
+    ## TargetLimit defines a limit on the number of scraped targets that will be accepted.
+    ##
+    targetLimit: 0
+
+    ## Per-scrape limit on number of labels that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelLimit: 0
+
+    ## Per-scrape limit on length of labels name that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelNameLengthLimit: 0
+
+    ## Per-scrape limit on length of labels value that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelValueLengthLimit: 0
+    scrapeTimeout: ""
+    proxyUrl: ""
+    ## Whether to enable HTTP2 for servicemonitor
+    # enableHttp2: false
+    selectorOverride: {}
+    honorLabels: false
+    metricRelabelings: []
+    relabelings: []
+    scheme: ""
+    ## File to read bearer token for scraping targets
+    bearerTokenFile: ""
+    ## Secret to mount to read bearer token for scraping targets. The secret needs
+    ## to be in the same namespace as the service monitor and accessible by the
+    ## Prometheus Operator
+    bearerTokenSecret: {}
+      # name: secret-name
+      # key:  key-name
+    tlsConfig: {}
+
+## Specify if a Pod Security Policy for kube-state-metrics must be created
+## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+##
+podSecurityPolicy:
+  enabled: false
+  annotations: {}
+    ## Specify pod annotations
+    ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#apparmor
+    ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#seccomp
+    ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#sysctl
+    ##
+    # seccomp.security.alpha.kubernetes.io/allowedProfileNames: '*'
+    # seccomp.security.alpha.kubernetes.io/defaultProfileName: 'docker/default'
+    # apparmor.security.beta.kubernetes.io/defaultProfileName: 'runtime/default'
+
+  additionalVolumes: []
+
+## Configure network policy for kube-state-metrics
+networkPolicy:
+  enabled: false
+  # networkPolicy.flavor -- Flavor of the network policy to use.
+  # Can be:
+  # * kubernetes for networking.k8s.io/v1/NetworkPolicy
+  # * cilium     for cilium.io/v2/CiliumNetworkPolicy
+  flavor: kubernetes
+
+  ## Configure the cilium network policy kube-apiserver selector
+  # cilium:
+    # kubeApiServerSelector:
+      # - toEntities:
+      #   - kube-apiserver
+
+  # egress:
+  # - {}
+  # ingress:
+  # - {}
+  # podSelector:
+  #   matchLabels:
+  #     app.kubernetes.io/name: kube-state-metrics
+
+securityContext:
+  enabled: true
+  runAsGroup: 65534
+  runAsUser: 65534
+  fsGroup: 65534
+  runAsNonRoot: true
+  seccompProfile:
+    type: RuntimeDefault
+
+## Specify security settings for a Container
+## Allows overrides and additional options compared to (Pod) securityContext
+## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+containerSecurityContext:
+  allowPrivilegeEscalation: false
+  capabilities:
+    drop:
+    - ALL
+
+## Node labels for pod assignment
+## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+nodeSelector: {}
+
+## Affinity settings for pod assignment
+## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+affinity: {}
+
+## Tolerations for pod assignment
+## Ref: https://kubernetes.io/docs/concepts/configuration/taint-and-toleration/
+tolerations: []
+
+## Topology spread constraints for pod assignment
+## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+topologySpreadConstraints: []
+
+# Annotations to be added to the deployment/statefulset
+annotations: {}
+
+# Annotations to be added to the pod
+podAnnotations: {}
+
+## Assign a PriorityClassName to pods if set
+# priorityClassName: ""
+
+# Ref: https://kubernetes.io/docs/tasks/run-application/configure-pdb/
+podDisruptionBudget: {}
+
+# Comma-separated list of metrics to be exposed.
+# This list comprises of exact metric names and/or regex patterns.
+# The allowlist and denylist are mutually exclusive.
+metricAllowlist: []
+
+# Comma-separated list of metrics not to be enabled.
+# This list comprises of exact metric names and/or regex patterns.
+# The allowlist and denylist are mutually exclusive.
+metricDenylist: []
+
+# Comma-separated list of additional Kubernetes label keys that will be used in the resource's
+# labels metric. By default the metric contains only name and namespace labels.
+# To include additional labels, provide a list of resource names in their plural form and Kubernetes
+# label keys you would like to allow for them (Example: '=namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...)'.
+# A single '*' can be provided per resource instead to allow any labels, but that has
+# severe performance implications (Example: '=pods=[*]').
+metricLabelsAllowlist: []
+  # - namespaces=[k8s-label-1,k8s-label-n]
+
+# Comma-separated list of Kubernetes annotations keys that will be used in the resource'
+# labels metric. By default the metric contains only name and namespace labels.
+# To include additional annotations provide a list of resource names in their plural form and Kubernetes
+# annotation keys you would like to allow for them (Example: '=namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...)'.
+# A single '*' can be provided per resource instead to allow any annotations, but that has
+# severe performance implications (Example: '=pods=[*]').
+metricAnnotationsAllowList: []
+  # - pods=[k8s-annotation-1,k8s-annotation-n]
+
+# Available collectors for kube-state-metrics.
+# By default, all available resources are enabled, comment out to disable.
+collectors:
+  - certificatesigningrequests
+  - configmaps
+  - cronjobs
+  - daemonsets
+  - deployments
+  - endpoints
+  - horizontalpodautoscalers
+  - ingresses
+  - jobs
+  - leases
+  - limitranges
+  - mutatingwebhookconfigurations
+  - namespaces
+  - networkpolicies
+  - nodes
+  - persistentvolumeclaims
+  - persistentvolumes
+  - poddisruptionbudgets
+  - pods
+  - replicasets
+  - replicationcontrollers
+  - resourcequotas
+  - secrets
+  - services
+  - statefulsets
+  - storageclasses
+  - validatingwebhookconfigurations
+  - volumeattachments
+
+# Enabling kubeconfig will pass the --kubeconfig argument to the container
+kubeconfig:
+  enabled: false
+  # base64 encoded kube-config file
+  secret:
+
+# Enabling support for customResourceState, will create a configMap including your config that will be read from kube-state-metrics
+customResourceState:
+  enabled: false
+  # Add (Cluster)Role permissions to list/watch the customResources defined in the config to rbac.extraRules
+  config: {}
+
+# Enable only the release namespace for collecting resources. By default all namespaces are collected.
+# If releaseNamespace and namespaces are both set a merged list will be collected.
+releaseNamespace: false
+
+# Comma-separated list(string) or yaml list of namespaces to be enabled for collecting resources. By default all namespaces are collected.
+namespaces: ""
+
+# Comma-separated list of namespaces not to be enabled. If namespaces and namespaces-denylist are both set,
+# only namespaces that are excluded in namespaces-denylist will be used.
+namespacesDenylist: ""
+
+## Override the deployment namespace
+##
+namespaceOverride: ""
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #  cpu: 100m
+  #  memory: 64Mi
+  # requests:
+  #  cpu: 10m
+  #  memory: 32Mi
+
+## Provide a k8s version to define apiGroups for podSecurityPolicy Cluster Role.
+## For example: kubeTargetVersionOverride: 1.14.9
+##
+kubeTargetVersionOverride: ""
+
+# Enable self metrics configuration for service and Service Monitor
+# Default values for telemetry configuration can be overridden
+# If you set telemetryNodePort, you must also set service.type to NodePort
+selfMonitor:
+  enabled: false
+  # telemetryHost: 0.0.0.0
+  # telemetryPort: 8081
+  # telemetryNodePort: 0
+
+# Enable vertical pod autoscaler support for kube-state-metrics
+verticalPodAutoscaler:
+  enabled: false
+
+  # Recommender responsible for generating recommendation for the object.
+  # List should be empty (then the default recommender will generate the recommendation)
+  # or contain exactly one recommender.
+  # recommenders: []
+  # - name: custom-recommender-performance
+
+  # List of resources that the vertical pod autoscaler can control. Defaults to cpu and memory
+  controlledResources: []
+  # Specifies which resource values should be controlled: RequestsOnly or RequestsAndLimits.
+  # controlledValues: RequestsAndLimits
+
+  # Define the max allowed resources for the pod
+  maxAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+  # Define the min allowed resources for the pod
+  minAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+
+  # updatePolicy:
+    # Specifies minimal number of replicas which need to be alive for VPA Updater to attempt pod eviction
+    # minReplicas: 1
+    # Specifies whether recommended updates are applied when a Pod is started and whether recommended updates
+    # are applied during the life of a Pod. Possible values are "Off", "Initial", "Recreate", and "Auto".
+    # updateMode: Auto
+
+# volumeMounts are used to add custom volume mounts to deployment.
+# See example below
+volumeMounts: []
+#  - mountPath: /etc/config
+#    name: config-volume
+
+# volumes are used to add custom volumes to deployment
+# See example below
+volumes: []
+#  - configMap:
+#      name: cm-for-volume
+#    name: config-volume
+
+# Extra manifests to deploy as an array
+extraManifests: []
+  # - apiVersion: v1
+  #   kind: ConfigMap
+  #   metadata:
+  #   labels:
+  #     name: prometheus-extra
+  #   data:
+  #     extra-data: "value"
+
+## Containers allows injecting additional containers.
+containers: []
+  # - name: crd-init
+  #   image: kiwigrid/k8s-sidecar:latest
+
+## InitContainers allows injecting additional initContainers.
+initContainers: []
+  # - name: crd-sidecar
+  #   image: kiwigrid/k8s-sidecar:latest
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/Chart.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/Chart.yaml
new file mode 100644
index 0000000..4db7d02
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/Chart.yaml
@@ -0,0 +1,23 @@
+apiVersion: v2
+description: Prometheus Blackbox Exporter
+name: prometheus-blackbox-exporter
+version: 8.6.1
+appVersion: v0.24.0
+home: https://github.com/prometheus/blackbox_exporter
+sources:
+  - https://github.com/prometheus/blackbox_exporter
+  - https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-blackbox-exporter
+keywords:
+  - prometheus
+  - blackbox
+  - monitoring
+maintainers:
+  - name: desaintmartin
+    email: cedric@desaintmartin.fr
+  - name: gianrubio
+    email: gianrubio@gmail.com
+  - name: rsotnychenko
+    email: me@sota.sh
+  - name: monotek
+    email: monotek23@gmail.com
+type: application
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/README.md b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/README.md
new file mode 100644
index 0000000..88043fc
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/README.md
@@ -0,0 +1,113 @@
+# Prometheus Blackbox Exporter
+
+Prometheus exporter for blackbox testing
+
+Learn more: [https://github.com/prometheus/blackbox_exporter](https://github.com/prometheus/blackbox_exporter)
+
+This chart creates a Blackbox-Exporter deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+## Prerequisites
+
+- Kubernetes 1.8+ with Beta APIs enabled
+- Helm >= 3.0
+
+## Get Repository Info
+
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [`helm repo`](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus-blackbox-exporter
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] [CHART] --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### To 8.0.0
+
+- The default image is set to `quay.io/prometheus/blackbox-exporter` instead `prom/blackbox-exporter`
+- `image.repository` is now split into `image.registry` and `image.repository`.
+  For the old behavior, set `image.registry` to an empty string and only use `image.repository`.
+
+### To 7.0.0
+
+This version introduces the `securityContext` and `podSecurityContext` and removes `allowICMP`option.
+
+All previous values are setup as default. In case that you want to enable previous functionality for `allowICMP` you need to explicit enabled with the following configuration:
+
+```yaml
+securityContext:
+  readOnlyRootFilesystem: true
+  allowPrivilegeEscalation: false
+  capabilities:
+    add: ["NET_RAW"]
+```
+
+### To 6.0.0
+
+This version introduces the relabeling field for the ServiceMonitor.
+All values in the list `additionalRelabeling` will now appear under `relabelings` instead of `metricRelabelings`.
+
+### To 5.0.0
+
+This version removes Helm 2 support. Also the ingress config has changed, so you have to adapt to the example in the values.yaml.
+
+### To 4.0.0
+
+This version create the service account by default and introduce pod security policy, it can be enabled by setting `pspEnabled: true`.
+
+### To 2.0.0
+
+This version removes the `podDisruptionBudget.enabled` parameter and changes the default value of `podDisruptionBudget` to `{}`, in order to fix Helm 3 compatibility.
+
+In order to upgrade, please remove `podDisruptionBudget.enabled` from your custom values.yaml file and set the content of `podDisruptionBudget`, for example:
+
+```yaml
+podDisruptionBudget:
+  maxUnavailable: 0
+```
+
+### To 1.0.0
+
+This version introduce the new recommended labels.
+
+In order to upgrade, delete the Deployment before upgrading:
+
+```bash
+kubectl delete deployment [RELEASE_NAME]-prometheus-blackbox-exporter
+```
+
+Note that this will cause downtime of the blackbox.
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/prometheus-blackbox-exporter
+```
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/daemonset-values.yml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/daemonset-values.yml
new file mode 100644
index 0000000..6ba1552
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/daemonset-values.yml
@@ -0,0 +1 @@
+kind: DaemonSet
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/default-values.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/default-values.yaml
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/extraenv-values.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/extraenv-values.yaml
new file mode 100644
index 0000000..3aa629f
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/extraenv-values.yaml
@@ -0,0 +1,3 @@
+extraEnv:
+  HTTP_PROXY: "http://superproxy.com:3128"
+  NO_PROXY: "localhost,127.0.0.1"
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/hostAliases.yml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/hostAliases.yml
new file mode 100644
index 0000000..59eb8d1
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/hostAliases.yml
@@ -0,0 +1,9 @@
+hostAliases:
+  - ip: 192.168.1.1
+    hostNames:
+      - test.example.com
+      - another.example.net
+  - ip: 192.168.1.2
+    hostNames:
+      - test2.example.com
+      - another2.example.net
\ No newline at end of file
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/ingress-values.yml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/ingress-values.yml
new file mode 100644
index 0000000..f1873fe
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/ingress-values.yml
@@ -0,0 +1,2 @@
+ingress:
+  enabled: true
\ No newline at end of file
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/networkpolicy-values.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/networkpolicy-values.yaml
new file mode 100644
index 0000000..db909ab
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/networkpolicy-values.yaml
@@ -0,0 +1,2 @@
+networkPolicy:
+  enabled: true
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/secret-values.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/secret-values.yaml
new file mode 100644
index 0000000..504a152
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/ci/secret-values.yaml
@@ -0,0 +1 @@
+secretConfig: true
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/NOTES.txt b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/NOTES.txt
new file mode 100644
index 0000000..ccaccf0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/NOTES.txt
@@ -0,0 +1,31 @@
+See https://github.com/prometheus/blackbox_exporter/ for how to configure Prometheus and the Blackbox Exporter.
+
+1. Get the application URL by running these commands:
+{{- if .Values.ingress.enabled }}
+{{- range $host := .Values.ingress.hosts }}
+  {{- range .paths }}
+  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ $host.host }}{{ .path }}
+  {{- end }}
+{{- end }}
+
+{{- $kubeVersion := include "prometheus-blackbox-exporter.kubeVersion" . -}}
+{{ if and .Values.ingress.className (semverCompare "<=1.18-0" $kubeVersion) }}
+You've set ".Values.ingressClassName" but it's not supported by your Kubernetes version!
+Therefore the option was not added and the old ingress annotation was set.
+{{ end }}
+
+{{- else if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ template "prometheus-blackbox-exporter.namespace" . }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "prometheus-blackbox-exporter.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ template "prometheus-blackbox-exporter.namespace" . }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get --namespace {{ template "prometheus-blackbox-exporter.namespace" . }} svc -w {{ include "prometheus-blackbox-exporter.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ template "prometheus-blackbox-exporter.namespace" . }} {{ include "prometheus-blackbox-exporter.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}")
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ template "prometheus-blackbox-exporter.namespace" . }} -l "app.kubernetes.io/name={{ include "prometheus-blackbox-exporter.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  export CONTAINER_PORT=$(kubectl get pod --namespace {{ template "prometheus-blackbox-exporter.namespace" . }} $POD_NAME -o jsonpath="{.spec.containers[0].ports[0].containerPort}")
+  echo "Visit http://127.0.0.1:8080 to use your application"
+  kubectl --namespace {{ template "prometheus-blackbox-exporter.namespace" . }} port-forward $POD_NAME 8080:$CONTAINER_PORT
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/_helpers.tpl b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/_helpers.tpl
new file mode 100644
index 0000000..763f5a8
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/_helpers.tpl
@@ -0,0 +1,248 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "prometheus-blackbox-exporter.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "prometheus-blackbox-exporter.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "prometheus-blackbox-exporter.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "prometheus-blackbox-exporter.labels" -}}
+helm.sh/chart: {{ include "prometheus-blackbox-exporter.chart" . }}
+{{ include "prometheus-blackbox-exporter.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- if .Values.releaseLabel }}
+release: {{ .Release.Name }}
+{{- end }}
+{{- if .Values.commonLabels }}
+{{ toYaml .Values.commonLabels }}
+{{- end }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "prometheus-blackbox-exporter.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "prometheus-blackbox-exporter.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "prometheus-blackbox-exporter.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "prometheus-blackbox-exporter.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Return the appropriate apiVersion for rbac.
+*/}}
+{{- define "rbac.apiVersion" -}}
+{{- if .Capabilities.APIVersions.Has "rbac.authorization.k8s.io/v1" }}
+{{- print "rbac.authorization.k8s.io/v1" -}}
+{{- else -}}
+{{- print "rbac.authorization.k8s.io/v1beta1" -}}
+{{- end -}}
+{{- end -}}
+
+
+{{- define "prometheus-blackbox-exporter.namespace" -}}
+  {{- if .Values.namespaceOverride -}}
+    {{- .Values.namespaceOverride -}}
+  {{- else -}}
+    {{- .Release.Namespace -}}
+  {{- end -}}
+{{- end -}}
+
+{{/* Enable overriding Kubernetes version for some use cases */}}
+{{- define "prometheus-blackbox-exporter.kubeVersion" -}}
+  {{- default .Capabilities.KubeVersion.Version .Values.kubeVersionOverride -}}
+{{- end -}}
+
+
+{{/*
+The image to use
+*/}}
+{{- define "prometheus-blackbox-exporter.image" -}}
+{{- with (.Values.global.imageRegistry | default .Values.image.registry) -}}{{ . }}/{{- end }}
+{{- .Values.image.repository -}}:{{- .Values.image.tag | default .Chart.AppVersion -}}
+{{- with .Values.image.digest -}}@{{ .}}{{- end -}}
+{{- end -}}
+
+{{/*
+Define pod spec to be reused by highlevel resources (deployment, daemonset)
+*/}}
+{{- define "prometheus-blackbox-exporter.podSpec" -}}
+automountServiceAccountToken: {{ .Values.automountServiceAccountToken }}
+serviceAccountName: {{ template "prometheus-blackbox-exporter.serviceAccountName" . }}
+{{- with .Values.topologySpreadConstraints }}
+topologySpreadConstraints:
+{{ toYaml . }}
+{{- end }}
+{{- with .Values.nodeSelector }}
+nodeSelector:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.affinity }}
+affinity:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.tolerations }}
+tolerations:
+{{ toYaml . }}
+{{- end }}
+{{- if .Values.image.pullSecrets }}
+imagePullSecrets:
+{{- range .Values.image.pullSecrets }}
+- name: {{ . }}
+{{- end }}
+{{- end }}
+{{- if .Values.hostAliases }}
+hostAliases:
+{{- range .Values.hostAliases }}
+- ip: {{ .ip }}
+  hostnames:
+  {{- range .hostNames }}
+  - {{ . }}
+  {{- end }}
+{{- end }}
+{{- end }}
+restartPolicy: {{ .Values.restartPolicy }}
+{{- with .Values.priorityClassName }}
+priorityClassName: "{{ . }}"
+{{- end }}
+{{- with .Values.podSecurityContext }}
+securityContext:
+{{ toYaml . | indent 2 }}
+{{- end }}
+{{- with .Values.extraInitContainers }}
+initContainers:
+{{ toYaml . }}
+{{- end }}
+containers:
+{{ with .Values.extraContainers }}
+  {{- toYaml . }}
+{{- end }}
+- name: blackbox-exporter
+  image: {{ include "prometheus-blackbox-exporter.image" . }}
+  imagePullPolicy: {{ .Values.image.pullPolicy }}
+  {{- with .Values.securityContext }}
+  securityContext:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  env:
+  {{- range $key, $value := .Values.extraEnv }}
+  - name: {{ $key }}
+    value: {{ $value | quote }}
+  {{- end }}
+  args:
+  {{- if .Values.config }}
+  {{- if .Values.configPath }}
+  - "--config.file={{ .Values.configPath }}"
+  {{- else }}
+  - "--config.file=/config/blackbox.yaml"
+  {{- end }}
+  {{- else }}
+  - "--config.file=/etc/blackbox_exporter/config.yml"
+  {{- end }}
+  {{- with .Values.extraArgs }}
+{{ tpl (toYaml .) $ | indent 2 }}
+  {{- end }}
+  {{- with .Values.resources }}
+  resources:
+{{ toYaml . | indent 4 }}
+  {{- end }}
+  ports:
+  - containerPort: {{ .Values.containerPort }}
+    name: http
+  livenessProbe:
+  {{- toYaml .Values.livenessProbe | trim | nindent 4 }}
+  readinessProbe:
+  {{- toYaml .Values.readinessProbe | trim | nindent 4 }}
+  volumeMounts:
+  - mountPath: /config
+    name: config
+  {{- range .Values.extraConfigmapMounts }}
+  - name: {{ .name }}
+    mountPath: {{ .mountPath }}
+    subPath: {{ .subPath | default "" }}
+    readOnly: {{ .readOnly }}
+  {{- end }}
+  {{- range .Values.extraSecretMounts }}
+  - name: {{ .name }}
+    mountPath: {{ .mountPath }}
+    subPath: {{ .subPath }}
+    readOnly: {{ .readOnly }}
+  {{- end }}
+  {{- if .Values.extraVolumeMounts }}
+{{ toYaml .Values.extraVolumeMounts | indent 2 }}
+  {{- end }}
+  {{- if .Values.dnsPolicy }}
+dnsPolicy: {{ .Values.dnsPolicy | toString }}
+{{- end }}
+hostNetwork: {{ .Values.hostNetwork }}
+{{- with .Values.dnsConfig }}
+dnsConfig:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+volumes:
+{{- if .Values.extraVolumes }}
+{{ toYaml .Values.extraVolumes }}
+{{- end }}
+- name: config
+{{- if .Values.secretConfig }}
+  secret:
+    secretName: {{ template "prometheus-blackbox-exporter.fullname" . }}
+{{- else if .Values.configExistingSecretName }}
+  secret:
+    secretName: {{ .Values.configExistingSecretName }}
+{{- else }}
+  configMap:
+    name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+{{- end }}
+{{- range .Values.extraConfigmapMounts }}
+- name: {{ .name }}
+  configMap:
+    name: {{ .configMap }}
+    defaultMode: {{ .defaultMode }}
+{{- end }}
+{{- range .Values.extraSecretMounts }}
+- name: {{ .name }}
+  secret:
+    secretName: {{ .secretName }}
+    defaultMode: {{ .defaultMode }}
+{{- end }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/configmap.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/configmap.yaml
new file mode 100644
index 0000000..5490b14
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/configmap.yaml
@@ -0,0 +1,12 @@
+{{- if and .Values.config (eq .Values.configExistingSecretName "") }}
+apiVersion: v1
+kind: {{ if .Values.secretConfig -}} Secret {{- else -}} ConfigMap {{- end }}
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+{{ if .Values.secretConfig -}} stringData: {{- else -}} data: {{- end }}
+  blackbox.yaml: |
+{{ toYaml .Values.config | indent 4 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/daemonset.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/daemonset.yaml
new file mode 100644
index 0000000..cb36f9f
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/daemonset.yaml
@@ -0,0 +1,27 @@
+{{- if (eq .Values.kind "DaemonSet") }}
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus-blackbox-exporter.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      labels:
+        {{- include "prometheus-blackbox-exporter.labels" . | nindent 8 }}
+        {{- if .Values.pod.labels }}
+{{ toYaml .Values.pod.labels | indent 8 }}
+        {{- end }}
+      annotations:
+        checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
+        {{- if .Values.podAnnotations }}
+{{ toYaml .Values.podAnnotations | indent 8 }}
+        {{- end }}
+    spec:
+    {{- include "prometheus-blackbox-exporter.podSpec" . | nindent 6 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/deployment.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/deployment.yaml
new file mode 100644
index 0000000..607de44
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/deployment.yaml
@@ -0,0 +1,30 @@
+{{- if (eq .Values.kind "Deployment") }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.replicas }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-blackbox-exporter.selectorLabels" . | nindent 6 }}
+  strategy:
+{{ toYaml .Values.strategy | indent 4 }}
+  template:
+    metadata:
+      labels:
+        {{- include "prometheus-blackbox-exporter.labels" . | nindent 8 }}
+        {{- if .Values.pod.labels }}
+{{ toYaml .Values.pod.labels | indent 8 }}
+        {{- end }}
+      annotations:
+        checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
+        {{- if .Values.podAnnotations }}
+{{ toYaml .Values.podAnnotations | indent 8 }}
+        {{- end }}
+    spec:
+    {{- include "prometheus-blackbox-exporter.podSpec" . | nindent 6 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/extra-manifests.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/extra-manifests.yaml
new file mode 100644
index 0000000..f0c859e
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/extra-manifests.yaml
@@ -0,0 +1,4 @@
+{{ range .Values.extraManifests }}
+---
+{{ tpl (toYaml .) $ }}
+{{ end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/ingress.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/ingress.yaml
new file mode 100644
index 0000000..394baa1
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/ingress.yaml
@@ -0,0 +1,66 @@
+{{- if .Values.ingress.enabled -}}
+{{- $fullName := include "prometheus-blackbox-exporter.fullname" . -}}
+{{- $svcPort := .Values.service.port -}}
+{{- $kubeVersion := include "prometheus-blackbox-exporter.kubeVersion" . -}}
+{{- if and .Values.ingress.className (not (semverCompare ">=1.18-0" $kubeVersion)) }}
+  {{- if not (hasKey .Values.ingress.annotations "kubernetes.io/ingress.class") }}
+  {{- $_ := set .Values.ingress.annotations "kubernetes.io/ingress.class" .Values.ingress.className}}
+  {{- end }}
+{{- end }}
+{{- if semverCompare ">=1.19-0" $kubeVersion -}}
+apiVersion: networking.k8s.io/v1
+{{- else if semverCompare ">=1.14-0" $kubeVersion -}}
+apiVersion: networking.k8s.io/v1beta1
+{{- else -}}
+apiVersion: extensions/v1beta1
+{{- end }}
+kind: Ingress
+metadata:
+  name: {{ $fullName }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+    {{- if .Values.ingress.labels }}
+{{ toYaml .Values.ingress.labels | indent 4 }}
+    {{- end}}
+  {{- with .Values.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  {{- if and .Values.ingress.className (semverCompare ">=1.18-0" $kubeVersion) }}
+  ingressClassName: {{ .Values.ingress.className }}
+  {{- end }}
+  {{- if .Values.ingress.tls }}
+  tls:
+    {{- range .Values.ingress.tls }}
+    - hosts:
+        {{- range .hosts }}
+        - {{ tpl . $ | quote }}
+        {{- end }}
+      secretName: {{ .secretName }}
+    {{- end }}
+  {{- end }}
+  rules:
+    {{- range .Values.ingress.hosts }}
+    - host: {{ tpl .host $ | quote }}
+      http:
+        paths:
+          {{- range .paths }}
+          - path: {{ .path }}
+            {{- if and .pathType (semverCompare ">=1.18-0" $kubeVersion) }}
+            pathType: {{ .pathType }}
+            {{- end }}
+            backend:
+              {{- if semverCompare ">=1.19-0" $kubeVersion }}
+              service:
+                name: {{ $fullName }}
+                port:
+                  number: {{ $svcPort }}
+              {{- else }}
+              serviceName: {{ $fullName }}
+              servicePort: {{ $svcPort }}
+              {{- end }}
+          {{- end }}
+    {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/networkpolicy.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/networkpolicy.yaml
new file mode 100644
index 0000000..0ada670
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/networkpolicy.yaml
@@ -0,0 +1,28 @@
+{{- if .Values.networkPolicy.enabled }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}  
+spec:
+  podSelector:
+    matchLabels:
+      {{- include "prometheus-blackbox-exporter.selectorLabels" . | nindent 6 }}
+  ingress:
+{{- if .Values.networkPolicy.allowMonitoringNamespace }}
+  - from:
+    - namespaceSelector:
+        matchLabels:
+          name: monitoring
+    ports:
+    - port: {{ .Values.service.port }}
+      protocol: TCP
+{{- else }}
+  - {}
+{{- end }}
+  policyTypes:
+  - Ingress
+{{- end }}
+
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/poddisruptionbudget.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/poddisruptionbudget.yaml
new file mode 100644
index 0000000..7783dd7
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/poddisruptionbudget.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.podDisruptionBudget -}}
+{{ if $.Capabilities.APIVersions.Has "policy/v1/PodDisruptionBudget" -}}
+apiVersion: policy/v1
+{{- else -}}
+apiVersion: policy/v1beta1
+{{- end }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus-blackbox-exporter.selectorLabels" . | nindent 6 }}
+{{ toYaml .Values.podDisruptionBudget | indent 2 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/podmonitoring.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/podmonitoring.yaml
new file mode 100644
index 0000000..445b973
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/podmonitoring.yaml
@@ -0,0 +1,49 @@
+{{- if .Values.podMonitoring.enabled }}
+{{- range .Values.podMonitoring.targets }}
+---
+apiVersion: monitoring.googleapis.com/v1
+kind: PodMonitoring
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" $ }}-{{ .name }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" $ }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" $ | nindent 4 }}
+    {{- if or $.Values.podMonitoring.defaults.labels .labels }}
+    {{- toYaml (.labels | default $.Values.podMonitoring.defaults.labels) | nindent 4 }}
+    {{- end }}
+spec:
+  endpoints:
+  - port: http
+    scheme: {{ $.Values.podMonitoring.scheme }}
+    {{- if $.Values.podMonitoring.tlsConfig }}
+    tls: {{ toYaml $.Values.podMonitoring.tlsConfig | nindent 6 }}
+    {{- end }}
+    path: {{ $.Values.podMonitoring.path }}
+    interval: {{ .interval | default $.Values.podMonitoring.defaults.interval }}
+    timeout: {{ .scrapeTimeout | default $.Values.podMonitoring.defaults.scrapeTimeout }}
+    params:
+      module:
+      - {{ .module | default $.Values.podMonitoring.defaults.module }}
+      target:
+      - {{ .url }}
+      {{- if .hostname }}
+      hostname:
+      - {{ .hostname }}
+      {{- end }}
+    metricRelabeling:
+      - action: replace
+        targetLabel: target
+        replacement: {{ .url }}
+      - action: replace
+        targetLabel: name
+        replacement: {{ .name }}
+        {{- range $targetLabel, $replacement := .additionalMetricsRelabels | default $.Values.podMonitoring.defaults.additionalMetricsRelabels }}
+      - action: replace
+        targetLabel: {{ $targetLabel | quote }}
+        replacement: {{ $replacement | quote }}
+        {{- end }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-blackbox-exporter.selectorLabels" $ | nindent 6 }}
+{{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/podsecuritypolicy.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/podsecuritypolicy.yaml
new file mode 100644
index 0000000..05c67ef
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/podsecuritypolicy.yaml
@@ -0,0 +1,41 @@
+{{- if and .Values.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}-psp
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+spec:
+  # Prevents running in privileged mode
+  privileged: false
+  # Required to prevent escalations to root.
+  allowPrivilegeEscalation: false
+  volumes:
+    - configMap
+    - secret
+  hostNetwork: false
+  hostIPC: false
+  hostPID: false
+  runAsUser:
+    rule: RunAsAny
+  seLinux:
+    rule: RunAsAny
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: {{ .Values.readOnlyRootFilesystem }}
+  {{- if has "NET_RAW" .Values.securityContext.capabilities.add }}
+  allowedCapabilities: 
+  - NET_RAW
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/prometheusrule.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/prometheusrule.yaml
new file mode 100644
index 0000000..fd9336f
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/prometheusrule.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.prometheusRule.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: PrometheusRule
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+  {{- with .Values.prometheusRule.namespace }}
+  namespace: {{ . }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+    {{- with .Values.prometheusRule.additionalLabels -}}
+{{- toYaml . | nindent 4 -}}
+    {{- end }}
+spec:
+  {{- with .Values.prometheusRule.rules }}
+  groups:
+    - name: {{ template "prometheus-blackbox-exporter.name" $ }}
+      rules: {{ toYaml . | nindent 8 }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/role.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/role.yaml
new file mode 100644
index 0000000..3291de4
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/role.yaml
@@ -0,0 +1,18 @@
+{{- if and .Values.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: {{ template "rbac.apiVersion" . }}
+kind: Role
+metadata:
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+rules:
+  - apiGroups:
+    - policy
+    resources:
+    - podsecuritypolicies
+    resourceNames:
+    - {{ template "prometheus-blackbox-exporter.fullname" . }}-psp
+    verbs:
+    - use
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/rolebinding.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/rolebinding.yaml
new file mode 100644
index 0000000..51dabb0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/rolebinding.yaml
@@ -0,0 +1,16 @@
+{{- if and .Values.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: {{ template "rbac.apiVersion" . }}
+kind: RoleBinding
+metadata:
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: {{ template "prometheus-blackbox-exporter.fullname" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "prometheus-blackbox-exporter.serviceAccountName" . }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/selfpodmonitoring.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/selfpodmonitoring.yaml
new file mode 100644
index 0000000..796090a
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/selfpodmonitoring.yaml
@@ -0,0 +1,32 @@
+{{- if .Values.podMonitoring.selfMonitor.enabled }}
+---
+apiVersion: monitoring.googleapis.com/v1
+kind: PodMonitoring
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" $ }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" $ }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" $ | nindent 4 }}
+    {{- if .Values.podMonitoring.selfMonitor.labels  }}
+    {{- toYaml (.Values.podMonitoring.selfMonitor.labels) | nindent 4 }}
+    {{- end }}
+spec:
+  endpoints:
+  - port: http
+    scheme: {{ $.Values.podMonitoring.scheme }}
+    path: {{ .Values.podMonitoring.selfMonitor.path }}
+    interval: {{ .Values.podMonitoring.selfMonitor.interval }}
+    timeout: {{ .Values.podMonitoring.selfMonitor.scrapeTimeout }}
+
+{{- if .Values.podMonitoring.selfMonitor.additionalMetricsRelabels }}
+    metricRelabeling:
+      {{- range $targetLabel, $replacement := .Values.podMonitoring.selfMonitor.additionalMetricsRelabels | default $.Values.podMonitoring.defaults.additionalMetricsRelabels }}
+      - action: replace
+        targetLabel: {{ $targetLabel | quote }}
+        replacement: {{ $replacement | quote }}
+      {{- end }}
+{{- end }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-blackbox-exporter.selectorLabels" $ | nindent 6 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/selfservicemonitor.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/selfservicemonitor.yaml
new file mode 100644
index 0000000..bc28697
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/selfservicemonitor.yaml
@@ -0,0 +1,31 @@
+{{- if .Values.serviceMonitor.selfMonitor.enabled }}
+---
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" $ }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" $ }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" $ | nindent 4 }}
+    {{- if .Values.serviceMonitor.selfMonitor.labels  }}
+    {{- toYaml (.Values.serviceMonitor.selfMonitor.labels) | nindent 4 }}
+    {{- end }}
+spec:
+  endpoints:
+  - path: {{ .Values.serviceMonitor.selfMonitor.path }}
+    interval: {{ .Values.serviceMonitor.selfMonitor.interval }}
+    scrapeTimeout: {{ .Values.serviceMonitor.selfMonitor.scrapeTimeout }}
+    scheme: http
+
+{{- if .Values.serviceMonitor.selfMonitor.additionalRelabeling }}
+    relabelings:
+{{ toYaml .Values.serviceMonitor.selfMonitor.additionalRelabeling | indent 6 }}
+{{- end }}
+  jobLabel: "{{ .Release.Name }}"
+  selector:
+    matchLabels:
+      {{- include "prometheus-blackbox-exporter.selectorLabels" $ | nindent 6 }}
+  namespaceSelector:
+    matchNames:
+      - {{ template "prometheus-blackbox-exporter.namespace" $ }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/service.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/service.yaml
new file mode 100644
index 0000000..e45cbd0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/service.yaml
@@ -0,0 +1,31 @@
+apiVersion: v1
+kind: Service
+metadata:
+{{- if .Values.service.annotations }}
+  annotations:
+    {{- toYaml .Values.service.annotations | nindent 4 }}
+{{- end }}
+  name: {{ include "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+{{- if .Values.service.labels }}
+{{ toYaml .Values.service.labels | indent 4 }}
+{{- end }}
+spec:
+{{- if .Values.service.ipDualStack.enabled }}
+  ipFamilies: {{ toYaml .Values.service.ipDualStack.ipFamilies | nindent 4 }}
+  ipFamilyPolicy: {{ .Values.service.ipDualStack.ipFamilyPolicy }}
+{{- end }}
+  type: {{ .Values.service.type }}
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: http
+      protocol: TCP
+      name: http
+{{- if .Values.service.externalIPs }}
+  externalIPs:
+{{ toYaml .Values.service.externalIPs | indent 4 }}
+{{- end }}
+  selector:
+    {{- include "prometheus-blackbox-exporter.selectorLabels" . | nindent 4 }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/serviceaccount.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/serviceaccount.yaml
new file mode 100644
index 0000000..717671d
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/serviceaccount.yaml
@@ -0,0 +1,13 @@
+{{- if .Values.serviceAccount.create -}}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "prometheus-blackbox-exporter.serviceAccountName" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/servicemonitor.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/servicemonitor.yaml
new file mode 100644
index 0000000..4372b5e
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/servicemonitor.yaml
@@ -0,0 +1,62 @@
+{{- if .Values.serviceMonitor.enabled }}
+{{- range .Values.serviceMonitor.targets }}
+---
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  name: {{ template "prometheus-blackbox-exporter.fullname" $ }}-{{ .name }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" $ }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" $ | nindent 4 }}
+    {{- if or $.Values.serviceMonitor.defaults.labels .labels }}
+    {{- toYaml (.labels | default $.Values.serviceMonitor.defaults.labels) | nindent 4 }}
+    {{- end }}
+spec:
+  endpoints:
+  - port: http
+    scheme: {{ $.Values.serviceMonitor.scheme }}
+    {{- if $.Values.serviceMonitor.bearerTokenFile }}
+    bearerTokenFile: {{ $.Values.serviceMonitor.bearerTokenFile }}
+    {{- end }}
+    {{- if $.Values.serviceMonitor.tlsConfig }}
+    tlsConfig: {{ toYaml $.Values.serviceMonitor.tlsConfig | nindent 6 }}
+    {{- end }}
+    path: {{ $.Values.serviceMonitor.path }}
+    interval: {{ .interval | default $.Values.serviceMonitor.defaults.interval }}
+    scrapeTimeout: {{ .scrapeTimeout | default $.Values.serviceMonitor.defaults.scrapeTimeout }}
+    params:
+      module:
+      - {{ .module | default $.Values.serviceMonitor.defaults.module }}
+      target:
+      - {{ .url }}
+      {{- if .hostname }}
+      hostname:
+      - {{ .hostname }}
+      {{- end }}
+    metricRelabelings:
+      - sourceLabels: [instance]
+        targetLabel: instance
+        replacement: {{ .url }}
+        action: replace
+      - sourceLabels: [target]
+        targetLabel: target
+        replacement: {{ .name }}
+        action: replace
+        {{- range $targetLabel, $replacement := .additionalMetricsRelabels | default $.Values.serviceMonitor.defaults.additionalMetricsRelabels }}
+      - targetLabel: {{ $targetLabel | quote }}
+        replacement: {{ $replacement | quote }}
+        action: replace
+        {{- end }}
+{{- if concat (.additionalRelabeling | default list) $.Values.serviceMonitor.defaults.additionalRelabeling }}
+    relabelings:
+{{ toYaml (concat (.additionalRelabeling | default list) $.Values.serviceMonitor.defaults.additionalRelabeling) | indent 6 }}
+{{- end }}
+  jobLabel: "{{ $.Release.Name }}"
+  selector:
+    matchLabels:
+      {{- include "prometheus-blackbox-exporter.selectorLabels" $ | nindent 6 }}
+  namespaceSelector:
+    matchNames:
+      - {{ template "prometheus-blackbox-exporter.namespace" $ }}
+{{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/verticalpodautoscaler.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/verticalpodautoscaler.yaml
new file mode 100644
index 0000000..a62d067
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/templates/verticalpodautoscaler.yaml
@@ -0,0 +1,44 @@
+{{- if and (.Capabilities.APIVersions.Has "autoscaling.k8s.io/v1") (.Values.verticalPodAutoscaler.enabled) }}
+apiVersion: autoscaling.k8s.io/v1
+kind: VerticalPodAutoscaler
+metadata:
+  name: {{ include "prometheus-blackbox-exporter.fullname" . }}
+  namespace: {{ template "prometheus-blackbox-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-blackbox-exporter.labels" . | nindent 4 }}
+spec:
+  {{- with .Values.verticalPodAutoscaler.recommenders }}
+  recommenders:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  resourcePolicy:
+    containerPolicies:
+    - containerName: blackbox-exporter
+      {{- with .Values.verticalPodAutoscaler.controlledResources }}
+      controlledResources:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.controlledValues }}
+      controlledValues: {{ .Values.verticalPodAutoscaler.controlledValues }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.maxAllowed }}
+      maxAllowed:
+        {{ toYaml .Values.verticalPodAutoscaler.maxAllowed | nindent 8 }}
+      {{- end }}
+      {{- if .Values.verticalPodAutoscaler.minAllowed }}
+      minAllowed:
+        {{ toYaml .Values.verticalPodAutoscaler.minAllowed | nindent 8 }}
+      {{- end }}
+  targetRef:
+    apiVersion: apps/v1
+    {{- if (eq .Values.kind "DaemonSet") }}
+    kind: DaemonSet
+    {{- else }}
+    kind: Deployment
+    {{- end }}
+    name:  {{ template "prometheus-blackbox-exporter.fullname" . }}
+  {{- with .Values.verticalPodAutoscaler.updatePolicy }}
+  updatePolicy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/values.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/values.yaml
new file mode 100644
index 0000000..ff119a5
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-blackbox-exporter/values.yaml
@@ -0,0 +1,399 @@
+global:
+  ## Global image registry to use if it needs to be overriden for some specific use cases (e.g local registries, custom images, ...)
+  ##
+  imageRegistry: ""
+
+restartPolicy: Always
+
+kind: Deployment
+
+## Override the namespace
+##
+namespaceOverride: ""
+
+# Override Kubernetes version if your distribution does not follow semver v2
+kubeVersionOverride: ""
+
+## set to true to add the release label so scraping of the servicemonitor with kube-prometheus-stack works out of the box
+releaseLabel: false
+
+podDisruptionBudget: {}
+  # maxUnavailable: 0
+
+## Allow automount the serviceaccount token for sidecar container (eg: oauthproxy)
+automountServiceAccountToken: false
+
+## Additional blackbox-exporter container environment variables
+## For instance to add a http_proxy
+##
+## extraEnv:
+##   HTTP_PROXY: "http://superproxy.com:3128"
+##   NO_PROXY: "localhost,127.0.0.1"
+extraEnv: {}
+
+extraVolumes: []
+  # - name: secret-blackbox-oauth-htpasswd
+  #   secret:
+  #     defaultMode: 420
+  #     secretName: blackbox-oauth-htpasswd
+  # - name: storage-volume
+  #   persistentVolumeClaim:
+  #     claimName: example
+
+## Additional volumes that will be attached to the blackbox-exporter container
+extraVolumeMounts:
+  # - name: ca-certs
+  #   mountPath: /etc/ssl/certs/ca-certificates.crt
+
+## Additional InitContainers to initialize the pod
+##
+extraInitContainers: []
+
+extraContainers: []
+  # - name: oAuth2-proxy
+  #   args:
+  #     - -https-address=:9116
+  #     - -upstream=http://localhost:9115
+  #     - -skip-auth-regex=^/metrics
+  #     - -openshift-delegate-urls={"/":{"group":"monitoring.coreos.com","resource":"prometheuses","verb":"get"}}
+  #   image: openshift/oauth-proxy:v1.1.0
+  #   ports:
+  #       - containerPort: 9116
+  #         name: proxy
+  #   resources:
+  #       limits:
+  #         memory: 16Mi
+  #       requests:
+  #         memory: 4Mi
+  #         cpu: 20m
+  #   volumeMounts:
+  #     - mountPath: /etc/prometheus/secrets/blackbox-tls
+  #       name: secret-blackbox-tls
+
+## Enable pod security policy
+pspEnabled: true
+
+hostNetwork: false
+
+strategy:
+  rollingUpdate:
+    maxSurge: 1
+    maxUnavailable: 0
+  type: RollingUpdate
+
+image:
+  registry: quay.io
+  repository: prometheus/blackbox-exporter
+  # Overrides the image tag whose default is {{ printf "v%s" .Chart.AppVersion }}
+  tag: ""
+  pullPolicy: IfNotPresent
+  digest: ""
+
+  ## Optionally specify an array of imagePullSecrets.
+  ## Secrets must be manually created in the namespace.
+  ## ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
+  ##
+  # pullSecrets:
+  #   - myRegistrKeySecretName
+
+podSecurityContext: {}
+# fsGroup: 1000
+
+## User and Group to run blackbox-exporter container as
+securityContext:
+  runAsUser: 1000
+  runAsGroup: 1000
+  readOnlyRootFilesystem: true
+  runAsNonRoot: true
+  allowPrivilegeEscalation: false
+  capabilities:
+    drop: ["ALL"]
+# Add NET_RAW to enable ICMP
+#    add: ["NET_RAW"]
+
+livenessProbe:
+  httpGet:
+    path: /-/healthy
+    port: http
+  failureThreshold: 3
+
+readinessProbe:
+  httpGet:
+    path: /-/healthy
+    port: http
+
+nodeSelector: {}
+tolerations: []
+affinity: {}
+
+## Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: failure-domain.beta.kubernetes.io/zone
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+#       app.kubernetes.io/instance: jiralert
+
+# if the configuration is managed as secret outside the chart, using SealedSecret for example,
+# provide the name of the secret here. If secretConfig is set to true, configExistingSecretName will be ignored
+# in favor of the config value.
+configExistingSecretName: ""
+# Store the configuration as a `Secret` instead of a `ConfigMap`, useful in case it contains sensitive data
+secretConfig: false
+config:
+  modules:
+    http_2xx:
+      prober: http
+      timeout: 5s
+      http:
+        valid_http_versions: ["HTTP/1.1", "HTTP/2.0"]
+        follow_redirects: true
+        preferred_ip_protocol: "ip4"
+
+# Set custom config path, other than default /config/blackbox.yaml. If let empty, path will be "/config/blackbox.yaml"
+# configPath: "/foo/bar"
+
+extraConfigmapMounts: []
+  # - name: certs-configmap
+  #   mountPath: /etc/secrets/ssl/
+  #   subPath: certificates.crt # (optional)
+  #   configMap: certs-configmap
+  #   readOnly: true
+  #   defaultMode: 420
+
+## Additional secret mounts
+# Defines additional mounts with secrets. Secrets must be manually created in the namespace.
+extraSecretMounts: []
+  # - name: secret-files
+  #   mountPath: /etc/secrets
+  #   secretName: blackbox-secret-files
+  #   readOnly: true
+  #   defaultMode: 420
+
+resources: {}
+  # limits:
+  #   memory: 300Mi
+  # requests:
+  #   memory: 50Mi
+
+priorityClassName: ""
+
+service:
+  annotations: {}
+  labels: {}
+  type: ClusterIP
+  port: 9115
+  ipDualStack:
+    enabled: false
+    ipFamilies: ["IPv6", "IPv4"]
+    ipFamilyPolicy: "PreferDualStack"
+
+# Only changes container port. Application port can be changed with extraArgs (--web.listen-address=:9115)
+# https://github.com/prometheus/blackbox_exporter/blob/998037b5b40c1de5fee348ffdea8820509d85171/main.go#L55
+containerPort: 9115
+
+serviceAccount:
+  # Specifies whether a ServiceAccount should be created
+  create: true
+  # The name of the ServiceAccount to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name:
+  annotations: {}
+
+## An Ingress resource can provide name-based virtual hosting and TLS
+## termination among other things for CouchDB deployments which are accessed
+## from outside the Kubernetes cluster.
+## ref: https://kubernetes.io/docs/concepts/services-networking/ingress/
+ingress:
+  enabled: false
+  className: ""
+  labels: {}
+  annotations: {}
+    # kubernetes.io/ingress.class: nginx
+    # kubernetes.io/tls-acme: "true"
+  hosts:
+    ## The host property on hosts and tls is passed through helm tpl function.
+    ## ref: https://helm.sh/docs/developing_charts/#using-the-tpl-function
+    - host: chart-example.local
+      paths:
+        - path: /
+          pathType: ImplementationSpecific
+  tls: []
+  #  - secretName: chart-example-tls
+  #    hosts:
+  #      - chart-example.local
+
+podAnnotations: {}
+
+# Hostaliases allow to add additional DNS entries to be injected directly into pods.
+# This will take precedence over your implemented DNS solution
+hostAliases: []
+#  - ip: 192.168.1.1
+#    hostNames:
+#      - test.example.com
+#      - another.example.net
+
+pod:
+  labels: {}
+
+extraArgs: []
+  # - --history.limit=1000
+
+replicas: 1
+
+serviceMonitor:
+  ## If true, a ServiceMonitor CRD is created for a prometheus operator
+  ## https://github.com/coreos/prometheus-operator for blackbox-exporter itself
+  ##
+  selfMonitor:
+    enabled: false
+    additionalMetricsRelabels: {}
+    additionalRelabeling: []
+    labels: {}
+    path: /metrics
+    interval: 30s
+    scrapeTimeout: 30s
+
+  ## If true, a ServiceMonitor CRD is created for a prometheus operator
+  ## https://github.com/coreos/prometheus-operator for each target
+  ##
+  enabled: false
+
+  # Default values that will be used for all ServiceMonitors created by `targets`
+  defaults:
+    additionalMetricsRelabels: {}
+    additionalRelabeling: []
+    labels: {}
+    interval: 30s
+    scrapeTimeout: 30s
+    module: http_2xx
+  ## scheme: HTTP scheme to use for scraping. Can be used with `tlsConfig` for example if using istio mTLS.
+  scheme: http
+  ## path: HTTP path. Needs to be adjusted, if web.route-prefix is set
+  path: "/probe"
+  ## tlsConfig: TLS configuration to use when scraping the endpoint. For example if using istio mTLS.
+  ## Of type: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#tlsconfig
+  tlsConfig: {}
+  bearerTokenFile:
+
+  targets:
+#    - name: example                    # Human readable URL that will appear in Prometheus / AlertManager
+#      url: http://example.com/healthz  # The URL that blackbox will scrape
+#      hostname: example.com            # HTTP probes can accept an additional `hostname` parameter that will set `Host` header and TLS SNI
+#      labels: {}                       # Map of labels for ServiceMonitor. Overrides value set in `defaults`
+#      interval: 60s                    # Scraping interval. Overrides value set in `defaults`
+#      scrapeTimeout: 60s               # Scrape timeout. Overrides value set in `defaults`
+#      module: http_2xx                 # Module used for scraping. Overrides value set in `defaults`
+#      additionalMetricsRelabels: {}    # Map of metric labels and values to add
+#      additionalRelabeling: []         # List of metric relabeling actions to run
+
+## Custom PrometheusRules to be defined
+## ref: https://github.com/coreos/prometheus-operator#customresourcedefinitions
+prometheusRule:
+  enabled: false
+  additionalLabels: {}
+  namespace: ""
+  rules: []
+
+podMonitoring:
+  ## If true, a PodMonitoring CR is created for google managed prometheus
+  ## https://cloud.google.com/stackdriver/docs/managed-prometheus/setup-managed#gmp-pod-monitoring for blackbox-exporter itself
+  ##
+  selfMonitor:
+    enabled: false
+    additionalMetricsRelabels: {}
+    labels: {}
+    path: /metrics
+    interval: 30s
+    scrapeTimeout: 30s
+
+  ## If true, a PodMonitoring CR is created for a google managed prometheus
+  ## https://cloud.google.com/stackdriver/docs/managed-prometheus/setup-managed#gmp-pod-monitoring for each target
+  ##
+  enabled: false
+
+  ## Default values that will be used for all PodMonitoring created by `targets`
+  ## Following PodMonitoring API specs https://github.com/GoogleCloudPlatform/prometheus-engine/blob/main/doc/api.md#scrapeendpoint
+  defaults:
+    additionalMetricsRelabels: {}
+    labels: {}
+    interval: 30s
+    scrapeTimeout: 30s
+    module: http_2xx
+  ## scheme: Protocol scheme to use to scrape.
+  scheme: http
+  ## path: HTTP path. Needs to be adjusted, if web.route-prefix is set
+  path: "/probe"
+  ## tlsConfig: TLS configuration to use when scraping the endpoint. For example if using istio mTLS.
+  ## Of type: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#tlsconfig
+  tlsConfig: {}
+
+  targets:
+#    - name: example                    # Human readable URL that will appear in Google Managed Prometheus / AlertManager
+#      url: http://example.com/healthz  # The URL that blackbox will scrape
+#      hostname: example.com            # HTTP probes can accept an additional `hostname` parameter that will set `Host` header and TLS SNI
+#      labels: {}                       # Map of labels for PodMonitoring. Overrides value set in `defaults`
+#      interval: 60s                    # Scraping interval. Overrides value set in `defaults`
+#      scrapeTimeout: 60s               # Scrape timeout. Overrides value set in `defaults`
+#      module: http_2xx                 # Module used for scraping. Overrides value set in `defaults`
+#      additionalMetricsRelabels: {}    # Map of metric labels and values to add
+
+## Network policy for chart
+networkPolicy:
+  # Enable network policy and allow access from anywhere
+  enabled: false
+  # Limit access only from monitoring namespace
+  # Before setting this value to true, you must add the name=monitoring label to the monitoring namespace
+  # Network Policy uses label filtering
+  allowMonitoringNamespace: false
+
+## dnsPolicy and dnsConfig for Deployments and Daemonsets if you want non-default settings.
+## These will be passed directly to the PodSpec of same.
+dnsPolicy:
+dnsConfig:
+
+# Extra manifests to deploy as an array
+extraManifests: []
+  # - apiVersion: v1
+  #   kind: ConfigMap
+  #   metadata:
+  #   labels:
+  #     name: prometheus-extra
+  #   data:
+  #     extra-data: "value"
+
+# global common labels, applied to all ressources
+commonLabels: {}
+
+# Enable vertical pod autoscaler support for prometheus-blackbox-exporter
+verticalPodAutoscaler:
+  enabled: false
+
+  # Recommender responsible for generating recommendation for the object.
+  # List should be empty (then the default recommender will generate the recommendation)
+  # or contain exactly one recommender.
+  # recommenders:
+  # - name: custom-recommender-performance
+
+  # List of resources that the vertical pod autoscaler can control. Defaults to cpu and memory
+  controlledResources: []
+  # Specifies which resource values should be controlled: RequestsOnly or RequestsAndLimits.
+  # controlledValues: RequestsAndLimits
+
+  # Define the max allowed resources for the pod
+  maxAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+  # Define the min allowed resources for the pod
+  minAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+
+  updatePolicy:
+    # Specifies minimal number of replicas which need to be alive for VPA Updater to attempt pod eviction
+    # minReplicas: 1
+    # Specifies whether recommended updates are applied when a Pod is started and whether recommended updates
+    # are applied during the life of a Pod. Possible values are "Off", "Initial", "Recreate", and "Auto".
+    updateMode: Auto
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/.helmignore b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/.helmignore
new file mode 100644
index 0000000..daebc7d
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/.helmignore
@@ -0,0 +1,21 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/Chart.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/Chart.yaml
new file mode 100644
index 0000000..d7cb3b9
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/Chart.yaml
@@ -0,0 +1,25 @@
+apiVersion: v2
+name: prometheus-node-exporter
+description: A Helm chart for prometheus node-exporter
+keywords:
+  - node-exporter
+  - prometheus
+  - exporter
+type: application
+version: 4.24.0
+appVersion: 1.7.0
+home: https://github.com/prometheus/node_exporter/
+sources:
+  - https://github.com/prometheus/node_exporter/
+maintainers:
+  - email: gianrubio@gmail.com
+    name: gianrubio
+  - email: zanhsieh@gmail.com
+    name: zanhsieh
+  - email: rootsandtrees@posteo.de
+    name: zeritti
+annotations:
+  "artifacthub.io/license": Apache-2.0
+  "artifacthub.io/links": |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/README.md b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/README.md
new file mode 100644
index 0000000..8124a2c
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/README.md
@@ -0,0 +1,96 @@
+# Prometheus Node Exporter
+
+Prometheus exporter for hardware and OS metrics exposed by *NIX kernels, written in Go with pluggable metric collectors.
+
+This chart bootstraps a Prometheus [Node Exporter](http://github.com/prometheus/node_exporter) daemonset on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+## Get Repository Info
+<!-- textlint-disable terminology -->
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [helm repo](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+<!-- textlint-enable -->
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus-node-exporter
+```
+
+_See [configuration](#configuring) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] prometheus-community/prometheus-node-exporter --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### 3.x to 4.x
+
+Starting from version 4.0.0, the `node exporter` chart is using the [Kubernetes recommended labels](https://kubernetes.io/docs/concepts/overview/working-with-objects/common-labels/). Therefore you have to delete the daemonset before you upgrade.
+
+```console
+kubectl delete daemonset -l app=prometheus-node-exporter
+helm upgrade -i prometheus-node-exporter prometheus-community/prometheus-node-exporter
+```
+
+If you use your own custom [ServiceMonitor](https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#servicemonitor) or [PodMonitor](https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#podmonitor), please ensure to upgrade their `selector` fields accordingly to the new labels.
+
+### From 2.x to 3.x
+
+Change the following:
+
+```yaml
+hostRootFsMount: true
+```
+
+to:
+
+```yaml
+hostRootFsMount:
+  enabled: true
+  mountPropagation: HostToContainer
+```
+
+## Configuring
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/prometheus-node-exporter
+```
+
+### kube-rbac-proxy
+
+You can enable `prometheus-node-exporter` endpoint protection using `kube-rbac-proxy`. By setting `kubeRBACProxy.enabled: true`, this chart will deploy a RBAC proxy container protecting the node-exporter endpoint.
+To authorize access, authenticate your requests (via a `ServiceAccount` for example) with a `ClusterRole` attached such as:
+
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: prometheus-node-exporter-read
+rules:
+  - apiGroups: [ "" ]
+    resources: ["services/node-exporter-prometheus-node-exporter"]
+    verbs:
+      - get
+```
+
+See [kube-rbac-proxy examples](https://github.com/brancz/kube-rbac-proxy/tree/master/examples/resource-attributes) for more details.
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/ci/port-values.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/ci/port-values.yaml
new file mode 100644
index 0000000..d24fde5
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/ci/port-values.yaml
@@ -0,0 +1,3 @@
+service:
+  targetPort: 9102
+  port: 9102
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/NOTES.txt b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/NOTES.txt
new file mode 100644
index 0000000..31b596d
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/NOTES.txt
@@ -0,0 +1,29 @@
+1. Get the application URL by running these commands:
+{{- if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ template "prometheus-node-exporter.namespace" . }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "prometheus-node-exporter.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ template "prometheus-node-exporter.namespace" . }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get svc -w {{ template "prometheus-node-exporter.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ template "prometheus-node-exporter.namespace" . }} {{ template "prometheus-node-exporter.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ template "prometheus-node-exporter.namespace" . }} -l "app.kubernetes.io/name={{ template "prometheus-node-exporter.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  echo "Visit http://127.0.0.1:9100 to use your application"
+  kubectl port-forward --namespace {{ template "prometheus-node-exporter.namespace" . }} $POD_NAME 9100
+{{- end }}
+
+{{- if .Values.kubeRBACProxy.enabled}}
+
+kube-rbac-proxy endpoint protections is enabled:
+- Metrics endpoints is now HTTPS
+- Ensure that the client authenticates the requests (e.g. via service account) with the following role permissions:
+```
+rules:
+  - apiGroups: [ "" ]
+    resources: ["services/{{ template "prometheus-node-exporter.fullname" . }}"]
+    verbs:
+      - get
+```
+{{- end }}
\ No newline at end of file
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/_helpers.tpl b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/_helpers.tpl
new file mode 100644
index 0000000..12e7834
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/_helpers.tpl
@@ -0,0 +1,185 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "prometheus-node-exporter.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "prometheus-node-exporter.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "prometheus-node-exporter.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "prometheus-node-exporter.labels" -}}
+helm.sh/chart: {{ include "prometheus-node-exporter.chart" . }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+app.kubernetes.io/component: metrics
+app.kubernetes.io/part-of: {{ include "prometheus-node-exporter.name" . }}
+{{ include "prometheus-node-exporter.selectorLabels" . }}
+{{- with .Chart.AppVersion }}
+app.kubernetes.io/version: {{ . | quote }}
+{{- end }}
+{{- with .Values.podLabels }}
+{{ toYaml . }}
+{{- end }}
+{{- if .Values.releaseLabel }}
+release: {{ .Release.Name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "prometheus-node-exporter.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "prometheus-node-exporter.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "prometheus-node-exporter.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "prometheus-node-exporter.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{/*
+The image to use
+*/}}
+{{- define "prometheus-node-exporter.image" -}}
+{{- if .Values.image.sha }}
+{{- fail "image.sha forbidden. Use image.digest instead" }}
+{{- else if .Values.image.digest }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s@%s" .Values.global.imageRegistry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) .Values.image.digest }}
+{{- else }}
+{{- printf "%s/%s:%s@%s" .Values.image.registry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) .Values.image.digest }}
+{{- end }}
+{{- else }}
+{{- if .Values.global.imageRegistry }}
+{{- printf "%s/%s:%s" .Values.global.imageRegistry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) }}
+{{- else }}
+{{- printf "%s/%s:%s" .Values.image.registry .Values.image.repository (default (printf "v%s" .Chart.AppVersion) .Values.image.tag) }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Allow the release namespace to be overridden for multi-namespace deployments in combined charts
+*/}}
+{{- define "prometheus-node-exporter.namespace" -}}
+{{- if .Values.namespaceOverride }}
+{{- .Values.namespaceOverride }}
+{{- else }}
+{{- .Release.Namespace }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create the namespace name of the service monitor
+*/}}
+{{- define "prometheus-node-exporter.monitor-namespace" -}}
+{{- if .Values.namespaceOverride }}
+{{- .Values.namespaceOverride }}
+{{- else }}
+{{- if .Values.prometheus.monitor.namespace }}
+{{- .Values.prometheus.monitor.namespace }}
+{{- else }}
+{{- .Release.Namespace }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/* Sets default scrape limits for servicemonitor */}}
+{{- define "servicemonitor.scrapeLimits" -}}
+{{- with .sampleLimit }}
+sampleLimit: {{ . }}
+{{- end }}
+{{- with .targetLimit }}
+targetLimit: {{ . }}
+{{- end }}
+{{- with .labelLimit }}
+labelLimit: {{ . }}
+{{- end }}
+{{- with .labelNameLengthLimit }}
+labelNameLengthLimit: {{ . }}
+{{- end }}
+{{- with .labelValueLengthLimit }}
+labelValueLengthLimit: {{ . }}
+{{- end }}
+{{- end }}
+
+{{/*
+Formats imagePullSecrets. Input is (dict "Values" .Values "imagePullSecrets" .{specific imagePullSecrets})
+*/}}
+{{- define "prometheus-node-exporter.imagePullSecrets" -}}
+{{- range (concat .Values.global.imagePullSecrets .imagePullSecrets) }}
+  {{- if eq (typeOf .) "map[string]interface {}" }}
+- {{ toYaml . | trim }}
+  {{- else }}
+- name: {{ . }}
+  {{- end }}
+{{- end }}
+{{- end -}}
+
+{{/*
+Create the namespace name of the pod monitor
+*/}}
+{{- define "prometheus-node-exporter.podmonitor-namespace" -}}
+{{- if .Values.namespaceOverride }}
+{{- .Values.namespaceOverride }}
+{{- else }}
+{{- if .Values.prometheus.podMonitor.namespace }}
+{{- .Values.prometheus.podMonitor.namespace }}
+{{- else }}
+{{- .Release.Namespace }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/* Sets default scrape limits for podmonitor */}}
+{{- define "podmonitor.scrapeLimits" -}}
+{{- with .sampleLimit }}
+sampleLimit: {{ . }}
+{{- end }}
+{{- with .targetLimit }}
+targetLimit: {{ . }}
+{{- end }}
+{{- with .labelLimit }}
+labelLimit: {{ . }}
+{{- end }}
+{{- with .labelNameLengthLimit }}
+labelNameLengthLimit: {{ . }}
+{{- end }}
+{{- with .labelValueLengthLimit }}
+labelValueLengthLimit: {{ . }}
+{{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/clusterrole.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/clusterrole.yaml
new file mode 100644
index 0000000..4c2b770
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/clusterrole.yaml
@@ -0,0 +1,19 @@
+{{- if and (eq .Values.rbac.create true) (eq .Values.kubeRBACProxy.enabled true) -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+rules:
+  {{-  if $.Values.kubeRBACProxy.enabled  }}
+  - apiGroups: [ "authentication.k8s.io" ]
+    resources:
+      - tokenreviews
+    verbs: [ "create" ]
+  - apiGroups: [ "authorization.k8s.io" ]
+    resources:
+      - subjectaccessreviews
+    verbs: [ "create" ]
+  {{- end }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/clusterrolebinding.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/clusterrolebinding.yaml
new file mode 100644
index 0000000..a6e24a0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/clusterrolebinding.yaml
@@ -0,0 +1,20 @@
+{{- if and (eq .Values.rbac.create true) (eq .Values.kubeRBACProxy.enabled true) -}}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+  name: {{ template "prometheus-node-exporter.fullname" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+{{- if .Values.rbac.useExistingRole }}
+  name: {{ .Values.rbac.useExistingRole }}
+{{- else }}
+  name: {{ template "prometheus-node-exporter.fullname" . }}
+{{- end }}
+subjects:
+- kind: ServiceAccount
+  name: {{ template "prometheus-node-exporter.serviceAccountName" . }}
+  namespace: {{ template "prometheus-node-exporter.namespace" . }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml
new file mode 100644
index 0000000..bf7ae0a
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/daemonset.yaml
@@ -0,0 +1,285 @@
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+  {{- with .Values.daemonsetAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus-node-exporter.selectorLabels" . | nindent 6 }}
+  revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
+  {{- with .Values.updateStrategy }}
+  updateStrategy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  template:
+    metadata:
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      labels:
+        {{- include "prometheus-node-exporter.labels" . | nindent 8 }}
+    spec:
+      automountServiceAccountToken: {{ ternary true false (or .Values.serviceAccount.automountServiceAccountToken .Values.kubeRBACProxy.enabled) }}
+      {{- with .Values.securityContext }}
+      securityContext:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.priorityClassName }}
+      priorityClassName: {{ . }}
+      {{- end }}
+      {{- with .Values.extraInitContainers }}
+      initContainers:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      serviceAccountName: {{ include "prometheus-node-exporter.serviceAccountName" . }}
+      containers:
+        {{- $servicePort := ternary 8100 .Values.service.port .Values.kubeRBACProxy.enabled }}
+        - name: node-exporter
+          image: {{ include "prometheus-node-exporter.image" . }}
+          imagePullPolicy: {{ .Values.image.pullPolicy }}
+          args:
+            - --path.procfs=/host/proc
+            - --path.sysfs=/host/sys
+            {{- if .Values.hostRootFsMount.enabled }}
+            - --path.rootfs=/host/root
+            {{- if semverCompare ">=1.4.0" (default .Chart.AppVersion .Values.image.tag) }}
+            - --path.udev.data=/host/root/run/udev/data
+            {{- end }}
+            {{- end }}
+            - --web.listen-address=[$(HOST_IP)]:{{ $servicePort }}
+            {{- with .Values.extraArgs }}
+            {{- toYaml . | nindent 12 }}
+            {{- end }}
+          {{- with .Values.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          env:
+            - name: HOST_IP
+              {{- if .Values.kubeRBACProxy.enabled }}
+              value: 127.0.0.1
+              {{- else if .Values.service.listenOnAllInterfaces }}
+              value: 0.0.0.0
+              {{- else }}
+              valueFrom:
+                fieldRef:
+                  apiVersion: v1
+                  fieldPath: status.hostIP
+              {{- end }}
+            {{- range $key, $value := .Values.env }}
+            - name: {{ $key }}
+              value: {{ $value | quote }}
+            {{- end }}
+          {{- if eq .Values.kubeRBACProxy.enabled false }}
+          ports:
+            - name: {{ .Values.service.portName }}
+              containerPort: {{ .Values.service.port }}
+              protocol: TCP
+          {{- end }}
+          livenessProbe:
+            failureThreshold: {{ .Values.livenessProbe.failureThreshold }}
+            httpGet:
+              {{- if .Values.kubeRBACProxy.enabled }}
+              host: 127.0.0.1
+              {{- end }}
+              httpHeaders:
+              {{- range $_, $header := .Values.livenessProbe.httpGet.httpHeaders }}
+              - name: {{ $header.name }}
+                value: {{ $header.value }}
+              {{- end }}
+              path: /
+              port: {{ $servicePort }}
+              scheme: {{ upper .Values.livenessProbe.httpGet.scheme }}
+            initialDelaySeconds: {{ .Values.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.livenessProbe.periodSeconds }}
+            successThreshold: {{ .Values.livenessProbe.successThreshold }}
+            timeoutSeconds: {{ .Values.livenessProbe.timeoutSeconds }}
+          readinessProbe:
+            failureThreshold: {{ .Values.readinessProbe.failureThreshold }}
+            httpGet:
+              {{- if .Values.kubeRBACProxy.enabled }}
+              host: 127.0.0.1
+              {{- end }}
+              httpHeaders:
+              {{- range $_, $header := .Values.readinessProbe.httpGet.httpHeaders }}
+              - name: {{ $header.name }}
+                value: {{ $header.value }}
+              {{- end }}
+              path: /
+              port: {{ $servicePort }}
+              scheme: {{ upper .Values.readinessProbe.httpGet.scheme }}
+            initialDelaySeconds: {{ .Values.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.readinessProbe.periodSeconds }}
+            successThreshold: {{ .Values.readinessProbe.successThreshold }}
+            timeoutSeconds: {{ .Values.readinessProbe.timeoutSeconds }}
+          {{- with .Values.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: proc
+              mountPath: /host/proc
+              readOnly:  true
+            - name: sys
+              mountPath: /host/sys
+              readOnly: true
+            {{- if .Values.hostRootFsMount.enabled }}
+            - name: root
+              mountPath: /host/root
+              {{- with .Values.hostRootFsMount.mountPropagation }}
+              mountPropagation: {{ . }}
+              {{- end }}
+              readOnly: true
+            {{- end }}
+            {{- range $_, $mount := .Values.extraHostVolumeMounts }}
+            - name: {{ $mount.name }}
+              mountPath: {{ $mount.mountPath }}
+              readOnly: {{ $mount.readOnly }}
+              {{- with $mount.mountPropagation }}
+              mountPropagation: {{ . }}
+              {{- end }}
+            {{- end }}
+            {{- range $_, $mount := .Values.sidecarVolumeMount }}
+            - name: {{ $mount.name }}
+              mountPath: {{ $mount.mountPath }}
+              readOnly: true
+            {{- end }}
+            {{- range $_, $mount := .Values.configmaps }}
+            - name: {{ $mount.name }}
+              mountPath: {{ $mount.mountPath }}
+            {{- end }}
+            {{- range $_, $mount := .Values.secrets }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+            {{- end }}
+        {{- with .Values.sidecars }}
+        {{- toYaml . | nindent 8 }}
+          {{- if or $.Values.sidecarVolumeMount $.Values.sidecarHostVolumeMounts }}
+          volumeMounts:
+            {{- range $_, $mount := $.Values.sidecarVolumeMount }}
+            - name: {{ $mount.name }}
+              mountPath: {{ $mount.mountPath }}
+              readOnly: {{ $mount.readOnly }}
+            {{- end }}
+            {{- range $_, $mount := $.Values.sidecarHostVolumeMounts }}
+            - name: {{ $mount.name }}
+              mountPath: {{ $mount.mountPath }}
+              readOnly: {{ $mount.readOnly }}
+            {{- if $mount.mountPropagation }}
+              mountPropagation: {{ $mount.mountPropagation }}
+            {{- end }}
+            {{- end }}
+          {{- end }}
+        {{- end }}
+        {{-  if .Values.kubeRBACProxy.enabled  }}
+        - name: kube-rbac-proxy
+          args:
+            {{-  if .Values.kubeRBACProxy.extraArgs  }}
+            {{- .Values.kubeRBACProxy.extraArgs | toYaml | nindent 12 }}
+            {{-  end  }}
+            - --secure-listen-address=:{{ .Values.service.port}}
+            - --upstream=http://127.0.0.1:{{ $servicePort }}/
+            - --proxy-endpoints-port=8888
+            - --config-file=/etc/kube-rbac-proxy-config/config-file.yaml
+          volumeMounts:
+            - name: kube-rbac-proxy-config
+              mountPath: /etc/kube-rbac-proxy-config
+          imagePullPolicy: {{ .Values.kubeRBACProxy.image.pullPolicy }}
+          {{- if .Values.kubeRBACProxy.image.sha }}
+          image: "{{ .Values.global.imageRegistry | default .Values.kubeRBACProxy.image.registry}}/{{ .Values.kubeRBACProxy.image.repository }}:{{ .Values.kubeRBACProxy.image.tag }}@sha256:{{ .Values.kubeRBACProxy.image.sha }}"
+          {{- else }}
+          image: "{{ .Values.global.imageRegistry | default .Values.kubeRBACProxy.image.registry}}/{{ .Values.kubeRBACProxy.image.repository }}:{{ .Values.kubeRBACProxy.image.tag }}"
+          {{- end }}
+          ports:
+            - containerPort: {{ .Values.service.port}}
+              name: "http"
+            - containerPort: 8888
+              name: "http-healthz"
+          readinessProbe:
+            httpGet:
+              scheme: HTTPS
+              port: 8888
+              path: healthz
+            initialDelaySeconds: 5
+            timeoutSeconds: 5
+          {{- if .Values.kubeRBACProxy.resources }}
+          resources:
+          {{ toYaml .Values.kubeRBACProxy.resources | nindent 12 }}
+          {{- end }}
+          {{- if .Values.kubeRBACProxy.containerSecurityContext }}
+          securityContext:
+          {{ toYaml .Values.kubeRBACProxy.containerSecurityContext | nindent 12 }}
+        {{- end }}
+        {{- end }}
+      {{- if or .Values.imagePullSecrets .Values.global.imagePullSecrets }}
+      imagePullSecrets:
+        {{- include "prometheus-node-exporter.imagePullSecrets" (dict "Values" .Values "imagePullSecrets" .Values.imagePullSecrets) | indent 8 }}
+      {{- end }}
+      hostNetwork: {{ .Values.hostNetwork }}
+      hostPID: {{ .Values.hostPID }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.dnsConfig }}
+      dnsConfig:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      volumes:
+        - name: proc
+          hostPath:
+            path: /proc
+        - name: sys
+          hostPath:
+            path: /sys
+        {{- if .Values.hostRootFsMount.enabled }}
+        - name: root
+          hostPath:
+            path: /
+        {{- end }}
+        {{- range $_, $mount := .Values.extraHostVolumeMounts }}
+        - name: {{ $mount.name }}
+          hostPath:
+            path: {{ $mount.hostPath }}
+        {{- end }}
+        {{- range $_, $mount := .Values.sidecarVolumeMount }}
+        - name: {{ $mount.name }}
+          emptyDir:
+            medium: Memory
+        {{- end }}
+        {{- range $_, $mount := .Values.sidecarHostVolumeMounts }}
+        - name: {{ $mount.name }}
+          hostPath:
+            path: {{ $mount.hostPath }}
+        {{- end }}
+        {{- range $_, $mount := .Values.configmaps }}
+        - name: {{ $mount.name }}
+          configMap:
+            name: {{ $mount.name }}
+        {{- end }}
+        {{- range $_, $mount := .Values.secrets }}
+        - name: {{ $mount.name }}
+          secret:
+            secretName: {{ $mount.name }}
+        {{- end }}
+        {{- if .Values.kubeRBACProxy.enabled }}
+        - name: kube-rbac-proxy-config
+          configMap:
+            name: {{ template "prometheus-node-exporter.fullname" . }}-rbac-config
+        {{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/endpoints.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/endpoints.yaml
new file mode 100644
index 0000000..805a25a
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/endpoints.yaml
@@ -0,0 +1,18 @@
+{{- if .Values.endpoints }}
+apiVersion: v1
+kind: Endpoints
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+subsets:
+  - addresses:
+      {{- range .Values.endpoints }}
+      - ip: {{ . }}
+      {{- end }}
+    ports:
+      - name: {{ .Values.service.portName }}
+        port: 9100
+        protocol: TCP
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/extra-manifests.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/extra-manifests.yaml
new file mode 100644
index 0000000..1fa3a3c
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/extra-manifests.yaml
@@ -0,0 +1,4 @@
+{{ range .Values.extraManifests }}
+---
+{{ tpl . $ }}
+{{ end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/networkpolicy.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/networkpolicy.yaml
new file mode 100644
index 0000000..5cd87b0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/networkpolicy.yaml
@@ -0,0 +1,23 @@
+{{- if .Values.networkPolicy.enabled }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" $ | nindent 4 }}
+  {{- with .Values.service.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  ingress:
+    - ports:
+      - port: {{ .Values.service.port }}
+  policyTypes:
+    - Egress
+    - Ingress
+  podSelector:
+    matchLabels:
+      {{- include "prometheus-node-exporter.selectorLabels" . | nindent 6 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/podmonitor.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/podmonitor.yaml
new file mode 100644
index 0000000..cb56292
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/podmonitor.yaml
@@ -0,0 +1,91 @@
+{{- if .Values.prometheus.podMonitor.enabled }}
+apiVersion: {{ .Values.prometheus.podMonitor.apiVersion | default "monitoring.coreos.com/v1" }}
+kind: PodMonitor
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.podmonitor-namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+    {{- with .Values.prometheus.podMonitor.additionalLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  jobLabel: {{ default "app.kubernetes.io/name" .Values.prometheus.podMonitor.jobLabel }}
+  {{- include "podmonitor.scrapeLimits" .Values.prometheus.podMonitor | nindent 2 }}
+  selector:
+    matchLabels:
+    {{- with .Values.prometheus.podMonitor.selectorOverride }}
+      {{- toYaml . | nindent 6 }}
+    {{- else }}
+      {{- include "prometheus-node-exporter.selectorLabels" . | nindent 6 }}
+    {{- end }}
+  namespaceSelector:
+    matchNames:
+      - {{ include "prometheus-node-exporter.namespace" . }}
+  {{- with .Values.prometheus.podMonitor.attachMetadata }}
+  attachMetadata:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  {{- with .Values.prometheus.podMonitor.podTargetLabels }}
+  podTargetLabels:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  podMetricsEndpoints:
+    - port: {{ .Values.service.portName }}
+      {{- with .Values.prometheus.podMonitor.scheme }}
+      scheme: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.path }}
+      path: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.basicAuth }}
+      basicAuth:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.bearerTokenSecret }}
+      bearerTokenSecret:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.tlsConfig }}
+      tlsConfig:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.authorization }}
+      authorization:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.oauth2 }}
+      oauth2:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.proxyUrl }}
+      proxyUrl: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.interval }}
+      interval: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.honorTimestamps }}
+      honorTimestamps: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.honorLabels }}
+      honorLabels: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.scrapeTimeout }}
+      scrapeTimeout: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.relabelings }}
+      relabelings:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.podMonitor.metricRelabelings }}
+      metricRelabelings:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      enableHttp2: {{ default false .Values.prometheus.podMonitor.enableHttp2 }}
+      filterRunning: {{ default true .Values.prometheus.podMonitor.filterRunning }}
+      followRedirects: {{ default false .Values.prometheus.podMonitor.followRedirects }}
+      {{- with .Values.prometheus.podMonitor.params }}
+      params:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrole.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrole.yaml
new file mode 100644
index 0000000..9124f08
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrole.yaml
@@ -0,0 +1,14 @@
+{{- if and .Values.rbac.create .Values.rbac.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: psp-{{ include "prometheus-node-exporter.fullname" . }}
+  labels: 
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+rules:
+- apiGroups: ['extensions']
+  resources: ['podsecuritypolicies']
+  verbs:     ['use']
+  resourceNames:
+    - {{ include "prometheus-node-exporter.fullname" . }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrolebinding.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrolebinding.yaml
new file mode 100644
index 0000000..7a0b078
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp-clusterrolebinding.yaml
@@ -0,0 +1,16 @@
+{{- if and .Values.rbac.create .Values.rbac.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: psp-{{ include "prometheus-node-exporter.fullname" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: psp-{{ include "prometheus-node-exporter.fullname" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ include "prometheus-node-exporter.fullname" . }}
+    namespace: {{ include "prometheus-node-exporter.namespace" . }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp.yaml
new file mode 100644
index 0000000..be180fe
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/psp.yaml
@@ -0,0 +1,49 @@
+{{- if and .Values.rbac.create .Values.rbac.pspEnabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+  {{- with .Values.rbac.pspAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  privileged: false
+  # Allow core volume types.
+  volumes:
+    - 'configMap'
+    - 'emptyDir'
+    - 'projected'
+    - 'secret'
+    - 'downwardAPI'
+    - 'persistentVolumeClaim'
+    - 'hostPath'
+  hostNetwork: true
+  hostIPC: false
+  hostPID: true
+  hostPorts:
+    - min: 0
+      max: 65535
+  runAsUser:
+    # Permits the container to run with root privileges as well.
+    rule: 'RunAsAny'
+  seLinux:
+    # This policy assumes the nodes are using AppArmor rather than SELinux.
+    rule: 'RunAsAny'
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      # Allow adding the root group.
+      - min: 0
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      # Allow adding the root group.
+      - min: 0
+        max: 65535
+  readOnlyRootFilesystem: false
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/rbac-configmap.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/rbac-configmap.yaml
new file mode 100644
index 0000000..14419e3
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/rbac-configmap.yaml
@@ -0,0 +1,16 @@
+{{- if .Values.kubeRBACProxy.enabled}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ template "prometheus-node-exporter.fullname" . }}-rbac-config
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+data:
+  config-file.yaml: |+
+    authorization:
+      resourceAttributes:
+        namespace: {{ template "prometheus-node-exporter.namespace" . }}
+        apiVersion: v1
+        resource: services
+        subresource: {{ template "prometheus-node-exporter.fullname" . }}
+        name: {{ template "prometheus-node-exporter.fullname" . }}
+{{- end }}
\ No newline at end of file
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/service.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/service.yaml
new file mode 100644
index 0000000..da2b6da
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/service.yaml
@@ -0,0 +1,29 @@
+{{- if .Values.service.enabled }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" $ | nindent 4 }}
+  {{- with .Values.service.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+{{- if .Values.service.ipDualStack.enabled }}
+  ipFamilies: {{ toYaml .Values.service.ipDualStack.ipFamilies | nindent 4 }}
+  ipFamilyPolicy: {{ .Values.service.ipDualStack.ipFamilyPolicy }}
+{{- end }}
+  type: {{ .Values.service.type }}
+  ports:
+    - port: {{ .Values.service.port }}
+      {{- if ( and (eq .Values.service.type "NodePort" ) (not (empty .Values.service.nodePort)) ) }}
+      nodePort: {{ .Values.service.nodePort }}
+      {{- end }}
+      targetPort: {{ .Values.service.targetPort }}
+      protocol: TCP
+      name: {{ .Values.service.portName }}
+  selector:
+    {{- include "prometheus-node-exporter.selectorLabels" . | nindent 4 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml
new file mode 100644
index 0000000..e0a35bf
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/serviceaccount.yaml
@@ -0,0 +1,17 @@
+{{- if and .Values.rbac.create .Values.serviceAccount.create -}}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "prometheus-node-exporter.serviceAccountName" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels: 
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- if or .Values.serviceAccount.imagePullSecrets .Values.global.imagePullSecrets }}
+imagePullSecrets:
+  {{- include "prometheus-node-exporter.imagePullSecrets" (dict "Values" .Values "imagePullSecrets" .Values.serviceAccount.imagePullSecrets) | indent 2 }}
+{{- end }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/servicemonitor.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/servicemonitor.yaml
new file mode 100644
index 0000000..6f53a58
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/servicemonitor.yaml
@@ -0,0 +1,61 @@
+{{- if .Values.prometheus.monitor.enabled }}
+apiVersion: {{ .Values.prometheus.monitor.apiVersion | default "monitoring.coreos.com/v1" }}
+kind: ServiceMonitor
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.monitor-namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+    {{- with .Values.prometheus.monitor.additionalLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  jobLabel: {{ default "app.kubernetes.io/name" .Values.prometheus.monitor.jobLabel }}
+  {{- include "servicemonitor.scrapeLimits" .Values.prometheus.monitor | nindent 2 }}
+  {{- with .Values.prometheus.monitor.podTargetLabels }}
+  podTargetLabels:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  selector:
+    matchLabels:
+    {{- with .Values.prometheus.monitor.selectorOverride }}
+      {{- toYaml . | nindent 6 }}
+    {{- else }}
+      {{- include "prometheus-node-exporter.selectorLabels" . | nindent 6 }}
+    {{- end }}
+  {{- with .Values.prometheus.monitor.attachMetadata }}
+  attachMetadata:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  endpoints:
+    - port: {{ .Values.service.portName }}
+      scheme: {{ .Values.prometheus.monitor.scheme }}
+      {{- with .Values.prometheus.monitor.basicAuth }}
+      basicAuth:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.bearerTokenFile }}
+      bearerTokenFile: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.tlsConfig }}
+      tlsConfig:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.proxyUrl }}
+      proxyUrl: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.interval }}
+      interval: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.scrapeTimeout }}
+      scrapeTimeout: {{ . }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.relabelings }}
+      relabelings:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.prometheus.monitor.metricRelabelings }}
+      metricRelabelings:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/verticalpodautoscaler.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/verticalpodautoscaler.yaml
new file mode 100644
index 0000000..786ded5
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/templates/verticalpodautoscaler.yaml
@@ -0,0 +1,40 @@
+{{- if and (.Capabilities.APIVersions.Has "autoscaling.k8s.io/v1") (.Values.verticalPodAutoscaler.enabled) }}
+apiVersion: autoscaling.k8s.io/v1
+kind: VerticalPodAutoscaler
+metadata:
+  name: {{ include "prometheus-node-exporter.fullname" . }}
+  namespace: {{ include "prometheus-node-exporter.namespace" . }}
+  labels:
+    {{- include "prometheus-node-exporter.labels" . | nindent 4 }}
+spec:
+  {{- with .Values.verticalPodAutoscaler.recommenders }}
+  recommenders:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  resourcePolicy:
+    containerPolicies:
+    - containerName: node-exporter
+      {{- with .Values.verticalPodAutoscaler.controlledResources }}
+      controlledResources:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.verticalPodAutoscaler.controlledValues }}
+      controlledValues: {{ . }}
+      {{- end }}
+      {{- with .Values.verticalPodAutoscaler.maxAllowed }}
+      maxAllowed:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.verticalPodAutoscaler.minAllowed }}
+      minAllowed:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+  targetRef:
+    apiVersion: apps/v1
+    kind: DaemonSet
+    name: {{ include "prometheus-node-exporter.fullname" . }}
+  {{- with .Values.verticalPodAutoscaler.updatePolicy }}
+  updatePolicy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/values.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/values.yaml
new file mode 100644
index 0000000..ac865fc
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-node-exporter/values.yaml
@@ -0,0 +1,481 @@
+# Default values for prometheus-node-exporter.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+image:
+  registry: quay.io
+  repository: prometheus/node-exporter
+  # Overrides the image tag whose default is {{ printf "v%s" .Chart.AppVersion }}
+  tag: ""
+  pullPolicy: IfNotPresent
+  digest: ""
+
+imagePullSecrets: []
+# - name: "image-pull-secret"
+nameOverride: ""
+fullnameOverride: ""
+
+# Number of old history to retain to allow rollback
+# Default Kubernetes value is set to 10
+revisionHistoryLimit: 10
+
+global:
+  # To help compatibility with other charts which use global.imagePullSecrets.
+  # Allow either an array of {name: pullSecret} maps (k8s-style), or an array of strings (more common helm-style).
+  # global:
+  #   imagePullSecrets:
+  #   - name: pullSecret1
+  #   - name: pullSecret2
+  # or
+  # global:
+  #   imagePullSecrets:
+  #   - pullSecret1
+  #   - pullSecret2
+  imagePullSecrets: []
+  #
+  # Allow parent charts to override registry hostname
+  imageRegistry: ""
+
+# Configure kube-rbac-proxy. When enabled, creates a kube-rbac-proxy to protect the node-exporter http endpoint.
+# The requests are served through the same service but requests are HTTPS.
+kubeRBACProxy:
+  enabled: false
+  image:
+    registry: quay.io
+    repository: brancz/kube-rbac-proxy
+    tag: v0.15.0
+    sha: ""
+    pullPolicy: IfNotPresent
+
+  # List of additional cli arguments to configure kube-rbac-prxy
+  # for example: --tls-cipher-suites, --log-file, etc.
+  # all the possible args can be found here: https://github.com/brancz/kube-rbac-proxy#usage
+  extraArgs: []
+
+  ## Specify security settings for a Container
+  ## Allows overrides and additional options compared to (Pod) securityContext
+  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container
+  containerSecurityContext: {}
+
+  resources: {}
+    # We usually recommend not to specify default resources and to leave this as a conscious
+    # choice for the user. This also increases chances charts run on environments with little
+    # resources, such as Minikube. If you do want to specify resources, uncomment the following
+    # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+    # limits:
+    #  cpu: 100m
+    #  memory: 64Mi
+  # requests:
+  #  cpu: 10m
+  #  memory: 32Mi
+
+service:
+  enabled: true
+  type: ClusterIP
+  port: 9100
+  targetPort: 9100
+  nodePort:
+  portName: metrics
+  listenOnAllInterfaces: true
+  annotations:
+    prometheus.io/scrape: "true"
+    prometheus.io/port: "9100"
+  ipDualStack:
+    enabled: false
+    ipFamilies: ["IPv6", "IPv4"]
+    ipFamilyPolicy: "PreferDualStack"
+
+# Set a NetworkPolicy with:
+# ingress only on service.port
+# no egress permitted
+networkPolicy:
+  enabled: false
+
+# Additional environment variables that will be passed to the daemonset
+env: {}
+##  env:
+##    VARIABLE: value
+
+prometheus:
+  monitor:
+    enabled: false
+    additionalLabels: {}
+    namespace: ""
+
+    jobLabel: ""
+
+    # List of pod labels to add to node exporter metrics
+    # https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#servicemonitor
+    podTargetLabels: []
+
+    scheme: http
+    basicAuth: {}
+    bearerTokenFile:
+    tlsConfig: {}
+
+    ## proxyUrl: URL of a proxy that should be used for scraping.
+    ##
+    proxyUrl: ""
+
+    ## Override serviceMonitor selector
+    ##
+    selectorOverride: {}
+
+    ## Attach node metadata to discovered targets. Requires Prometheus v2.35.0 and above.
+    ##
+    attachMetadata:
+      node: false
+
+    relabelings: []
+    metricRelabelings: []
+    interval: ""
+    scrapeTimeout: 10s
+    ## prometheus.monitor.apiVersion ApiVersion for the serviceMonitor Resource(defaults to "monitoring.coreos.com/v1")
+    apiVersion: ""
+
+    ## SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.
+    ##
+    sampleLimit: 0
+
+    ## TargetLimit defines a limit on the number of scraped targets that will be accepted.
+    ##
+    targetLimit: 0
+
+    ## Per-scrape limit on number of labels that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelLimit: 0
+
+    ## Per-scrape limit on length of labels name that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelNameLengthLimit: 0
+
+    ## Per-scrape limit on length of labels value that will be accepted for a sample. Only valid in Prometheus versions 2.27.0 and newer.
+    ##
+    labelValueLengthLimit: 0
+
+  # PodMonitor defines monitoring for a set of pods.
+  # ref. https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#monitoring.coreos.com/v1.PodMonitor
+  # Using a PodMonitor may be preferred in some environments where there is very large number
+  # of Node Exporter endpoints (1000+) behind a single service.
+  # The PodMonitor is disabled by default. When switching from ServiceMonitor to PodMonitor,
+  # the time series resulting from the configuration through PodMonitor may have different labels.
+  # For instance, there will not be the service label any longer which might
+  # affect PromQL queries selecting that label.
+  podMonitor:
+    enabled: false
+    # Namespace in which to deploy the pod monitor. Defaults to the release namespace.
+    namespace: ""
+    # Additional labels, e.g. setting a label for pod monitor selector as set in prometheus
+    additionalLabels: {}
+    #  release: kube-prometheus-stack
+    # PodTargetLabels transfers labels of the Kubernetes Pod onto the target.
+    podTargetLabels: []
+    # apiVersion defaults to monitoring.coreos.com/v1.
+    apiVersion: ""
+    # Override pod selector to select pod objects.
+    selectorOverride: {}
+    # Attach node metadata to discovered targets. Requires Prometheus v2.35.0 and above.
+    attachMetadata:
+      node: false
+    # The label to use to retrieve the job name from. Defaults to label app.kubernetes.io/name.
+    jobLabel: ""
+
+    # Scheme/protocol to use for scraping.
+    scheme: "http"
+    # Path to scrape metrics at.
+    path: "/metrics"
+
+    # BasicAuth allow an endpoint to authenticate over basic authentication.
+    # More info: https://prometheus.io/docs/operating/configuration/#endpoint
+    basicAuth: {}
+    # Secret to mount to read bearer token for scraping targets.
+    # The secret needs to be in the same namespace as the pod monitor and accessible by the Prometheus Operator.
+    # https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.24/#secretkeyselector-v1-core
+    bearerTokenSecret: {}
+    # TLS configuration to use when scraping the endpoint.
+    tlsConfig: {}
+    # Authorization section for this endpoint.
+    # https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#monitoring.coreos.com/v1.SafeAuthorization
+    authorization: {}
+    # OAuth2 for the URL. Only valid in Prometheus versions 2.27.0 and newer.
+    # https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#monitoring.coreos.com/v1.OAuth2
+    oauth2: {}
+
+    # ProxyURL eg http://proxyserver:2195. Directs scrapes through proxy to this endpoint.
+    proxyUrl: ""
+    # Interval at which endpoints should be scraped. If not specified Prometheus’ global scrape interval is used.
+    interval: ""
+    # Timeout after which the scrape is ended. If not specified, the Prometheus global scrape interval is used.
+    scrapeTimeout: ""
+    # HonorTimestamps controls whether Prometheus respects the timestamps present in scraped data.
+    honorTimestamps: true
+    # HonorLabels chooses the metric’s labels on collisions with target labels.
+    honorLabels: true
+    # Whether to enable HTTP2. Default false.
+    enableHttp2: ""
+    # Drop pods that are not running. (Failed, Succeeded).
+    # Enabled by default. More info: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#pod-phase
+    filterRunning: ""
+    # FollowRedirects configures whether scrape requests follow HTTP 3xx redirects. Default false.
+    followRedirects: ""
+    # Optional HTTP URL parameters
+    params: {}
+
+    # RelabelConfigs to apply to samples before scraping. Prometheus Operator automatically adds
+    # relabelings for a few standard Kubernetes fields. The original scrape job’s name
+    # is available via the __tmp_prometheus_job_name label.
+    # More info: https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config
+    relabelings: []
+    # MetricRelabelConfigs to apply to samples before ingestion.
+    metricRelabelings: []
+
+    # SampleLimit defines per-scrape limit on number of scraped samples that will be accepted.
+    sampleLimit: 0
+    # TargetLimit defines a limit on the number of scraped targets that will be accepted.
+    targetLimit: 0
+    # Per-scrape limit on number of labels that will be accepted for a sample.
+    # Only valid in Prometheus versions 2.27.0 and newer.
+    labelLimit: 0
+    # Per-scrape limit on length of labels name that will be accepted for a sample.
+    # Only valid in Prometheus versions 2.27.0 and newer.
+    labelNameLengthLimit: 0
+    # Per-scrape limit on length of labels value that will be accepted for a sample.
+    # Only valid in Prometheus versions 2.27.0 and newer.
+    labelValueLengthLimit: 0
+
+## Customize the updateStrategy if set
+updateStrategy:
+  type: RollingUpdate
+  rollingUpdate:
+    maxUnavailable: 1
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 200m
+  #   memory: 50Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 30Mi
+
+serviceAccount:
+  # Specifies whether a ServiceAccount should be created
+  create: true
+  # The name of the ServiceAccount to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name:
+  annotations: {}
+  imagePullSecrets: []
+  automountServiceAccountToken: false
+
+securityContext:
+  fsGroup: 65534
+  runAsGroup: 65534
+  runAsNonRoot: true
+  runAsUser: 65534
+
+containerSecurityContext:
+  readOnlyRootFilesystem: true
+  # capabilities:
+  #   add:
+  #   - SYS_TIME
+
+rbac:
+  ## If true, create & use RBAC resources
+  ##
+  create: true
+  ## If true, create & use Pod Security Policy resources
+  ## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+  pspEnabled: true
+  pspAnnotations: {}
+
+# for deployments that have node_exporter deployed outside of the cluster, list
+# their addresses here
+endpoints: []
+
+# Expose the service to the host network
+hostNetwork: true
+
+# Share the host process ID namespace
+hostPID: true
+
+# Mount the node's root file system (/) at /host/root in the container
+hostRootFsMount:
+  enabled: true
+  # Defines how new mounts in existing mounts on the node or in the container
+  # are propagated to the container or node, respectively. Possible values are
+  # None, HostToContainer, and Bidirectional. If this field is omitted, then
+  # None is used. More information on:
+  # https://kubernetes.io/docs/concepts/storage/volumes/#mount-propagation
+  mountPropagation: HostToContainer
+
+## Assign a group of affinity scheduling rules
+##
+affinity: {}
+#   nodeAffinity:
+#     requiredDuringSchedulingIgnoredDuringExecution:
+#       nodeSelectorTerms:
+#         - matchFields:
+#             - key: metadata.name
+#               operator: In
+#               values:
+#                 - target-host-name
+
+# Annotations to be added to node exporter pods
+podAnnotations:
+  # Fix for very slow GKE cluster upgrades
+  cluster-autoscaler.kubernetes.io/safe-to-evict: "true"
+
+# Extra labels to be added to node exporter pods
+podLabels: {}
+
+# Annotations to be added to node exporter daemonset
+daemonsetAnnotations: {}
+
+## set to true to add the release label so scraping of the servicemonitor with kube-prometheus-stack works out of the box
+releaseLabel: false
+
+# Custom DNS configuration to be added to prometheus-node-exporter pods
+dnsConfig: {}
+# nameservers:
+#   - 1.2.3.4
+# searches:
+#   - ns1.svc.cluster-domain.example
+#   - my.dns.search.suffix
+# options:
+#   - name: ndots
+#     value: "2"
+#   - name: edns0
+
+## Assign a nodeSelector if operating a hybrid cluster
+##
+nodeSelector:
+  kubernetes.io/os: linux
+  #  kubernetes.io/arch: amd64
+
+tolerations:
+  - effect: NoSchedule
+    operator: Exists
+
+## Assign a PriorityClassName to pods if set
+# priorityClassName: ""
+
+## Additional container arguments
+##
+extraArgs: []
+#   - --collector.diskstats.ignored-devices=^(ram|loop|fd|(h|s|v)d[a-z]|nvme\\d+n\\d+p)\\d+$
+#   - --collector.textfile.directory=/run/prometheus
+
+## Additional mounts from the host to node-exporter container
+##
+extraHostVolumeMounts: []
+#  - name: <mountName>
+#    hostPath: <hostPath>
+#    mountPath: <mountPath>
+#    readOnly: true|false
+#    mountPropagation: None|HostToContainer|Bidirectional
+
+## Additional configmaps to be mounted.
+##
+configmaps: []
+# - name: <configMapName>
+#   mountPath: <mountPath>
+secrets: []
+# - name: <secretName>
+#   mountPath: <mountPatch>
+## Override the deployment namespace
+##
+namespaceOverride: ""
+
+## Additional containers for export metrics to text file
+##
+sidecars: []
+##  - name: nvidia-dcgm-exporter
+##    image: nvidia/dcgm-exporter:1.4.3
+
+## Volume for sidecar containers
+##
+sidecarVolumeMount: []
+##  - name: collector-textfiles
+##    mountPath: /run/prometheus
+##    readOnly: false
+
+## Additional mounts from the host to sidecar containers
+##
+sidecarHostVolumeMounts: []
+#  - name: <mountName>
+#    hostPath: <hostPath>
+#    mountPath: <mountPath>
+#    readOnly: true|false
+#    mountPropagation: None|HostToContainer|Bidirectional
+
+## Additional InitContainers to initialize the pod
+##
+extraInitContainers: []
+
+## Liveness probe
+##
+livenessProbe:
+  failureThreshold: 3
+  httpGet:
+    httpHeaders: []
+    scheme: http
+  initialDelaySeconds: 0
+  periodSeconds: 10
+  successThreshold: 1
+  timeoutSeconds: 1
+
+## Readiness probe
+##
+readinessProbe:
+  failureThreshold: 3
+  httpGet:
+    httpHeaders: []
+    scheme: http
+  initialDelaySeconds: 0
+  periodSeconds: 10
+  successThreshold: 1
+  timeoutSeconds: 1
+
+# Enable vertical pod autoscaler support for prometheus-node-exporter
+verticalPodAutoscaler:
+  enabled: false
+
+  # Recommender responsible for generating recommendation for the object.
+  # List should be empty (then the default recommender will generate the recommendation)
+  # or contain exactly one recommender.
+  # recommenders:
+  # - name: custom-recommender-performance
+
+  # List of resources that the vertical pod autoscaler can control. Defaults to cpu and memory
+  controlledResources: []
+  # Specifies which resource values should be controlled: RequestsOnly or RequestsAndLimits.
+  # controlledValues: RequestsAndLimits
+
+  # Define the max allowed resources for the pod
+  maxAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+  # Define the min allowed resources for the pod
+  minAllowed: {}
+  # cpu: 200m
+  # memory: 100Mi
+
+  # updatePolicy:
+    # Specifies minimal number of replicas which need to be alive for VPA Updater to attempt pod eviction
+    # minReplicas: 1
+    # Specifies whether recommended updates are applied when a Pod is started and whether recommended updates
+    # are applied during the life of a Pod. Possible values are "Off", "Initial", "Recreate", and "Auto".
+    # updateMode: Auto
+
+# Extra manifests to deploy as an array
+extraManifests: []
+  # - |
+  #   apiVersion: v1
+  #   kind: ConfigMap
+  #   metadata:
+  #     name: prometheus-extra
+  #   data:
+  #     extra-data: "value"
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/.helmignore b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/.helmignore
new file mode 100644
index 0000000..62ec87a
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/.helmignore
@@ -0,0 +1,24 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+
+# OWNERS file for Kubernetes
+OWNERS
\ No newline at end of file
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/Chart.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/Chart.yaml
new file mode 100644
index 0000000..5b32a60
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/Chart.yaml
@@ -0,0 +1,24 @@
+apiVersion: v2
+appVersion: "v1.6.2"
+description: A Helm chart for prometheus pushgateway
+name: prometheus-pushgateway
+version: 2.4.2
+home: https://github.com/prometheus/pushgateway
+sources:
+  - https://github.com/prometheus/pushgateway
+type: application
+keywords:
+  - pushgateway
+  - prometheus
+maintainers:
+  - email: gianrubio@gmail.com
+    name: gianrubio
+  - email: christian.staude@staffbase.com
+    name: cstaud
+  - email: rootsandtrees@posteo.de
+    name: zeritti
+annotations:
+  "artifacthub.io/license": Apache-2.0
+  "artifacthub.io/links": |
+    - name: Chart Source
+      url: https://github.com/prometheus-community/helm-charts
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/README.md b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/README.md
new file mode 100644
index 0000000..f06d286
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/README.md
@@ -0,0 +1,88 @@
+# Prometheus Pushgateway
+
+This chart bootstraps a prometheus [pushgateway](http://github.com/prometheus/pushgateway) deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+An optional prometheus `ServiceMonitor` can be enabled, should you wish to use this gateway with a [Prometheus Operator](https://github.com/coreos/prometheus-operator).
+
+## Get Repository Info
+
+```console
+helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
+helm repo update
+```
+
+_See [`helm repo`](https://helm.sh/docs/helm/helm_repo/) for command documentation._
+
+## Install Chart
+
+```console
+helm install [RELEASE_NAME] prometheus-community/prometheus-pushgateway
+```
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] [CHART] --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### To 2.0.0
+
+Chart API version has been upgraded to v2 so Helm 3 is needed from now on.
+
+Docker image tag is used from Chart.yaml appVersion field by default now.
+
+Version 2.0.0 also adapted [Helm label and annotation best practices](https://helm.sh/docs/chart_best_practices/labels/). Specifically, labels mapping is listed below:
+
+```console
+OLD                 => NEW
+----------------------------------------
+heritage            => app.kubernetes.io/managed-by
+chart               => helm.sh/chart
+[container version] => app.kubernetes.io/version
+app                 => app.kubernetes.io/name
+release             => app.kubernetes.io/instance
+```
+
+Therefore, depending on the way you've configured the chart, the previous StatefulSet or Deployment need to be deleted before upgrade.
+
+If `runAsStatefulSet: false` (this is the default):
+
+```console
+kubectl delete deploy -l app=prometheus-pushgateway
+```
+
+If `runAsStatefulSet: true`:
+
+```console
+kubectl delete sts -l app=prometheus-pushgateway
+```
+
+After that do the actual upgrade:
+
+```console
+helm upgrade -i prometheus-pushgateway prometheus-community/prometheus-pushgateway
+```
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values prometheus-community/prometheus-pushgateway
+```
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/NOTES.txt b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/NOTES.txt
new file mode 100644
index 0000000..643be97
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/NOTES.txt
@@ -0,0 +1,19 @@
+1. Get the application URL by running these commands:
+{{- if .Values.ingress.enabled }}
+{{- range .Values.ingress.hosts }}
+  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ . }}{{ $.Values.ingress.path }}
+{{- end }}
+{{- else if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "prometheus-pushgateway.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get svc -w {{ template "prometheus-pushgateway.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "prometheus-pushgateway.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app={{ template "prometheus-pushgateway.name" . }},release={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  echo "Visit http://127.0.0.1:9091 to use your application"
+  kubectl port-forward $POD_NAME 9091
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/_helpers.tpl b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/_helpers.tpl
new file mode 100644
index 0000000..41c8831
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/_helpers.tpl
@@ -0,0 +1,208 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "prometheus-pushgateway.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Namespace to set on the resources
+*/}}
+{{- define "prometheus-pushgateway.namespace" -}}
+  {{- if .Values.namespaceOverride -}}
+    {{- .Values.namespaceOverride -}}
+  {{- else -}}
+    {{- .Release.Namespace -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "prometheus-pushgateway.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "prometheus-pushgateway.chart" -}}
+{{ printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "prometheus-pushgateway.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "prometheus-pushgateway.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create default labels
+*/}}
+{{- define "prometheus-pushgateway.defaultLabels" -}}
+helm.sh/chart: {{ include "prometheus-pushgateway.chart" . }}
+{{ include "prometheus-pushgateway.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- with .Values.podLabels }}
+{{ toYaml . }}
+{{- end }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "prometheus-pushgateway.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "prometheus-pushgateway.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Return the appropriate apiVersion for networkpolicy.
+*/}}
+{{- define "prometheus-pushgateway.networkPolicy.apiVersion" -}}
+{{- if semverCompare ">=1.4-0, <1.7-0" .Capabilities.KubeVersion.GitVersion }}
+{{- print "extensions/v1beta1" }}
+{{- else if semverCompare "^1.7-0" .Capabilities.KubeVersion.GitVersion }}
+{{- print "networking.k8s.io/v1" }}
+{{- end }}
+{{- end }}
+
+{{/*
+Define PDB apiVersion
+*/}}
+{{- define "prometheus-pushgateway.pdb.apiVersion" -}}
+{{- if $.Capabilities.APIVersions.Has "policy/v1/PodDisruptionBudget" }}
+{{- print "policy/v1" }}
+{{- else }}
+{{- print "policy/v1beta1" }}
+{{- end }}
+{{- end }}
+
+{{/*
+Define Ingress apiVersion
+*/}}
+{{- define "prometheus-pushgateway.ingress.apiVersion" -}}
+{{- if semverCompare ">=1.19-0" .Capabilities.KubeVersion.GitVersion }}
+{{- print "networking.k8s.io/v1" }}
+{{- else if semverCompare ">=1.14-0" .Capabilities.KubeVersion.GitVersion }}
+{{- print "networking.k8s.io/v1beta1" }}
+{{- else }}
+{{- print "extensions/v1beta1" }}
+{{- end }}
+{{- end }}
+
+{{/*
+Returns pod spec
+*/}}
+{{- define "prometheus-pushgateway.podSpec" -}}
+serviceAccountName: {{ include "prometheus-pushgateway.serviceAccountName" . }}
+{{- with .Values.priorityClassName }}
+priorityClassName: {{ . | quote }}
+{{- end }}
+{{- with .Values.imagePullSecrets }}
+imagePullSecrets:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.extraInitContainers }}
+initContainers:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+containers:
+  {{- with .Values.extraContainers }}
+  {{- toYaml . | nindent 2 }}
+  {{- end }}
+  - name: pushgateway
+    image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
+    imagePullPolicy: {{ .Values.image.pullPolicy }}
+    {{- with .Values.extraVars }}
+    env:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+    {{- with .Values.extraArgs }}
+    args:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+    ports:
+      - name: metrics
+        containerPort: 9091
+        protocol: TCP
+    {{- if .Values.liveness.enabled }}
+    livenessProbe:
+      {{- toYaml .Values.liveness.probe | nindent 6 }}
+    {{- end }}
+    {{- if .Values.readiness.enabled }}
+    readinessProbe:
+      {{- toYaml .Values.readiness.probe | nindent 6 }}
+    {{- end }}
+    {{- with .Values.resources }}
+    resources:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+    {{- with .Values.containerSecurityContext }}
+    securityContext:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+    volumeMounts:
+      - name: storage-volume
+        mountPath: "{{ .Values.persistentVolume.mountPath }}"
+        subPath: "{{ .Values.persistentVolume.subPath }}"
+      {{- with .Values.extraVolumeMounts }}
+      {{- toYaml . | nindent 6 }}
+      {{- end }}
+{{- with .Values.nodeSelector }}
+nodeSelector:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.tolerations }}
+tolerations:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.affinity }}
+affinity:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.topologySpreadConstraints }}
+topologySpreadConstraints:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+{{- with .Values.securityContext }}
+securityContext:
+  {{- toYaml . | nindent 2 }}
+{{- end }}
+volumes:
+  {{- $storageVolumeAsPVCTemplate := and .Values.runAsStatefulSet .Values.persistentVolume.enabled -}}
+  {{- if not $storageVolumeAsPVCTemplate }}
+  - name: storage-volume
+  {{- if .Values.persistentVolume.enabled }}
+    persistentVolumeClaim:
+      claimName: {{ if .Values.persistentVolume.existingClaim }}{{ .Values.persistentVolume.existingClaim }}{{- else }}{{ include "prometheus-pushgateway.fullname" . }}{{- end }}
+  {{- else }}
+    emptyDir: {}
+  {{- end }}
+  {{- end }}
+  {{- if .Values.extraVolumes }}
+  {{- toYaml .Values.extraVolumes  | nindent 2 }}
+  {{- else if $storageVolumeAsPVCTemplate }}
+  []
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/deployment.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/deployment.yaml
new file mode 100644
index 0000000..5da2e45
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/deployment.yaml
@@ -0,0 +1,28 @@
+{{- if not .Values.runAsStatefulSet }}
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  replicas: {{ .Values.replicaCount }}
+  {{- with .Values.strategy }}
+  strategy:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      labels:
+        {{- include "prometheus-pushgateway.defaultLabels" . | nindent 8 }}
+    spec:
+      {{- include "prometheus-pushgateway.podSpec" . | nindent 6 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/ingress.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/ingress.yaml
new file mode 100644
index 0000000..54ed256
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/ingress.yaml
@@ -0,0 +1,50 @@
+{{- if .Values.ingress.enabled }}
+{{- $serviceName := include "prometheus-pushgateway.fullname" . }}
+{{- $servicePort := .Values.service.port }}
+{{- $ingressPath := .Values.ingress.path }}
+{{- $ingressClassName := .Values.ingress.className }}
+{{- $ingressPathType := .Values.ingress.pathType }}
+{{- $extraPaths := .Values.ingress.extraPaths }}
+apiVersion: {{ include "prometheus-pushgateway.ingress.apiVersion" . }}
+kind: Ingress
+metadata:
+  {{- with .Values.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  {{- if semverCompare ">=1.19-0" .Capabilities.KubeVersion.GitVersion }}
+  ingressClassName: {{ $ingressClassName }}
+  {{- end }}
+  rules:
+    {{- range $host := .Values.ingress.hosts }}
+    - host: {{ $host }}
+      http:
+        paths:
+          {{- with $extraPaths }}
+          {{- toYaml . | nindent 10 }}
+          {{- end }}
+          - path: {{ $ingressPath }}
+            {{- if semverCompare ">=1.19-0" $.Capabilities.KubeVersion.GitVersion }}
+            pathType: {{ $ingressPathType }}
+            {{- end }}
+            backend:
+              {{- if semverCompare ">=1.19-0" $.Capabilities.KubeVersion.GitVersion }}
+              service:
+                name: {{ $serviceName }}
+                port:
+                  number: {{ $servicePort }}
+              {{- else }}
+              serviceName: {{ $serviceName }}
+              servicePort: {{ $servicePort }}
+              {{- end }}
+    {{- end -}}
+  {{- with .Values.ingress.tls }}
+  tls:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/networkpolicy.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/networkpolicy.yaml
new file mode 100644
index 0000000..693bbf0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/networkpolicy.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.networkPolicy }}
+apiVersion: {{ include "prometheus-pushgateway.networkPolicy.apiVersion" . }}
+kind: NetworkPolicy
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  {{- if .Values.networkPolicy.customSelectors }}
+  name: ingress-allow-customselector-{{ template "prometheus-pushgateway.name" . }}
+  {{- else if .Values.networkPolicy.allowAll }}
+  name: ingress-allow-all-{{ template "prometheus-pushgateway.name" . }}
+  {{- else -}}
+  {{- fail "One of `allowAll` or `customSelectors` must be specified." }}
+  {{- end }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  podSelector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+  ingress:
+    - ports:
+      - port: {{ .Values.service.targetPort }}
+      {{- with .Values.networkPolicy.customSelectors }}
+      from:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/pdb.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/pdb.yaml
new file mode 100644
index 0000000..948f474
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/pdb.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.podDisruptionBudget }}
+apiVersion: {{ include "prometheus-pushgateway.pdb.apiVersion" . }}
+kind: PodDisruptionBudget
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+  {{- toYaml .Values.podDisruptionBudget | nindent 2 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/pushgateway-pvc.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/pushgateway-pvc.yaml
new file mode 100644
index 0000000..8f9f418
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/pushgateway-pvc.yaml
@@ -0,0 +1,29 @@
+{{- if and (not .Values.runAsStatefulSet) .Values.persistentVolume.enabled (not .Values.persistentVolume.existingClaim) }}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  {{- with .Values.persistentVolume.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+    {{- with .Values.persistentVolumeLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  accessModes:
+    {{- toYaml .Values.persistentVolume.accessModes | nindent 4 }}
+  {{- if .Values.persistentVolume.storageClass }}
+  {{- if (eq "-" .Values.persistentVolume.storageClass) }}
+  storageClassName: ""
+  {{- else }}
+  storageClassName: "{{ .Values.persistentVolume.storageClass }}"
+  {{- end }}
+  {{- end }}
+  resources:
+    requests:
+      storage: "{{ .Values.persistentVolume.size }}"
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/service.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/service.yaml
new file mode 100644
index 0000000..afff2a7
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/service.yaml
@@ -0,0 +1,41 @@
+{{- $stsNoHeadlessSvcTypes := list "LoadBalancer" "NodePort" -}}
+apiVersion: v1
+kind: Service
+metadata:
+  {{- with .Values.serviceAnnotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+    {{- with .Values.serviceLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  {{- if .Values.service.clusterIP }}
+  clusterIP: {{ .Values.service.clusterIP }}
+  {{ else if and .Values.runAsStatefulSet (not (has .Values.service.type $stsNoHeadlessSvcTypes)) }}
+  clusterIP: None # Headless service
+  {{- end }}
+  type: {{ .Values.service.type }}
+  {{- with .Values.service.loadBalancerIP }}
+  loadBalancerIP: {{ . }}
+  {{- end }}
+  {{- if .Values.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- range $cidr := .Values.service.loadBalancerSourceRanges }}
+    - {{ $cidr }}
+  {{- end }}
+  {{- end }}
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: {{ .Values.service.targetPort }}
+      {{- if and (eq .Values.service.type "NodePort") .Values.service.nodePort }}
+      nodePort: {{ .Values.service.nodePort }}
+      {{- end }}
+      protocol: TCP
+      name: http
+  selector:
+    {{- include "prometheus-pushgateway.selectorLabels" . | nindent 4 }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml
new file mode 100644
index 0000000..3725646
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/serviceaccount.yaml
@@ -0,0 +1,16 @@
+{{- if .Values.serviceAccount.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+    {{- with .Values.serviceAccountLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "prometheus-pushgateway.serviceAccountName" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/servicemonitor.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/servicemonitor.yaml
new file mode 100644
index 0000000..80b1d38
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/servicemonitor.yaml
@@ -0,0 +1,51 @@
+{{- if .Values.serviceMonitor.enabled }}
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+    {{- if .Values.serviceMonitor.additionalLabels }}
+    {{- toYaml .Values.serviceMonitor.additionalLabels | nindent 4 }}
+    {{- end }}
+  name: {{ include "prometheus-pushgateway.fullname" .  }}
+  {{- if .Values.serviceMonitor.namespace }}
+  namespace: {{ .Values.serviceMonitor.namespace }}
+  {{- else }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+  {{- end }}
+spec:
+  endpoints:
+  - port: http
+    {{- with .Values.serviceMonitor.interval }}
+    interval: {{ . }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.scheme }}
+    scheme: {{ . }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.bearerTokenFile }}
+    bearerTokenFile: {{ . }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.tlsConfig }}
+    tlsConfig:
+      {{- toYaml .| nindent 6 }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.scrapeTimeout }}
+    scrapeTimeout: {{ . }}
+    {{- end }}
+    path: {{ .Values.serviceMonitor.telemetryPath }}
+    honorLabels: {{ .Values.serviceMonitor.honorLabels }}
+    {{- with .Values.serviceMonitor.metricRelabelings }}
+    metricRelabelings:
+      {{- tpl (toYaml . | nindent 6) $ }}
+    {{- end }}
+    {{- with .Values.serviceMonitor.relabelings }}
+    relabelings:
+      {{- toYaml . | nindent 6 }}
+    {{- end }}
+  namespaceSelector:
+    matchNames:
+      - {{ template "prometheus-pushgateway.namespace" . }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/statefulset.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/statefulset.yaml
new file mode 100644
index 0000000..82cf57e
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/templates/statefulset.yaml
@@ -0,0 +1,49 @@
+{{- if .Values.runAsStatefulSet }}
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+  labels:
+    {{- include "prometheus-pushgateway.defaultLabels" . | nindent 4 }}
+  name: {{ include "prometheus-pushgateway.fullname" . }}
+  namespace: {{ template "prometheus-pushgateway.namespace" . }}
+spec:
+  replicas: {{ .Values.replicaCount }}
+  serviceName: {{ include "prometheus-pushgateway.fullname" . }}
+  selector:
+    matchLabels:
+      {{- include "prometheus-pushgateway.selectorLabels" . | nindent 6 }}
+  template:
+    metadata:
+      {{- with .Values.podAnnotations }}
+      annotations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      labels:
+        {{- include "prometheus-pushgateway.defaultLabels" . | nindent 8 }}
+    spec:
+      {{- include "prometheus-pushgateway.podSpec" . | nindent 6 }}
+  {{- if .Values.persistentVolume.enabled }}
+  volumeClaimTemplates:
+    - metadata:
+        {{- with .Values.persistentVolume.annotations }}
+        annotations:
+          {{- toYaml . | nindent 10 }}
+        {{- end }}
+        labels:
+          {{- include "prometheus-pushgateway.defaultLabels" . | nindent 10 }}
+        name: storage-volume
+      spec:
+        accessModes:
+          {{ toYaml .Values.persistentVolume.accessModes }}
+      {{- if .Values.persistentVolume.storageClass }}
+      {{- if (eq "-" .Values.persistentVolume.storageClass) }}
+        storageClassName: ""
+      {{- else }}
+        storageClassName: "{{ .Values.persistentVolume.storageClass }}"
+      {{- end }}
+      {{- end }}
+        resources:
+          requests:
+            storage: "{{ .Values.persistentVolume.size }}"
+  {{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/values.yaml b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/values.yaml
new file mode 100644
index 0000000..2e4a4b6
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/charts/prometheus-pushgateway/values.yaml
@@ -0,0 +1,330 @@
+# Default values for prometheus-pushgateway.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+# Provide a name in place of prometheus-pushgateway for `app:` labels
+nameOverride: ""
+
+# Provide a name to substitute for the full names of resources
+fullnameOverride: ""
+
+# Provide a namespace to substitude for the namespace on resources
+namespaceOverride: ""
+
+image:
+  repository: quay.io/prometheus/pushgateway
+  # if not set appVersion field from Chart.yaml is used
+  tag: ""
+  pullPolicy: IfNotPresent
+
+# Optional pod imagePullSecrets
+imagePullSecrets: []
+
+service:
+  type: ClusterIP
+  port: 9091
+  targetPort: 9091
+  # nodePort: 32100
+
+  # Optional - Can be used for headless if value is "None"
+  clusterIP: ""
+
+  loadBalancerIP: ""
+  loadBalancerSourceRanges: []
+
+# Optional pod annotations
+podAnnotations: {}
+
+# Optional pod labels
+podLabels: {}
+
+# Optional service annotations
+serviceAnnotations: {}
+
+# Optional service labels
+serviceLabels: {}
+
+# Optional serviceAccount labels
+serviceAccountLabels: {}
+
+# Optional persistentVolume labels
+persistentVolumeLabels: {}
+
+# Optional additional environment variables
+extraVars: []
+
+## Additional pushgateway container arguments
+##
+## example:
+## extraArgs:
+##  - --persistence.file=/data/pushgateway.data
+##  - --persistence.interval=5m
+extraArgs: []
+
+## Additional InitContainers to initialize the pod
+##
+extraInitContainers: []
+
+# Optional additional containers (sidecar)
+extraContainers: []
+  # - name: oAuth2-proxy
+  #   args:
+  #     - -https-address=:9092
+  #     - -upstream=http://localhost:9091
+  #     - -skip-auth-regex=^/metrics
+  #     - -openshift-delegate-urls={"/":{"group":"monitoring.coreos.com","resource":"prometheuses","verb":"get"}}
+  #   image: openshift/oauth-proxy:v1.1.0
+  #   ports:
+  #       - containerPort: 9092
+  #         name: proxy
+  #   resources:
+  #       limits:
+  #         memory: 16Mi
+  #       requests:
+  #         memory: 4Mi
+  #         cpu: 20m
+  #   volumeMounts:
+  #     - mountPath: /etc/prometheus/secrets/pushgateway-tls
+  #       name: secret-pushgateway-tls
+
+resources: {}
+  # We usually recommend not to specify default resources and to leave this as a conscious
+  # choice for the user. This also increases chances charts run on environments with little
+  # resources, such as Minikube. If you do want to specify resources, uncomment the following
+  # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
+  # limits:
+  #   cpu: 200m
+  #   memory: 50Mi
+  # requests:
+  #   cpu: 100m
+  #   memory: 30Mi
+
+liveness:
+  enabled: true
+  probe:
+    httpGet:
+      path: /-/healthy
+      port: 9091
+    initialDelaySeconds: 10
+    timeoutSeconds: 10
+
+readiness:
+  enabled: true
+  probe:
+    httpGet:
+      path: /-/ready
+      port: 9091
+    initialDelaySeconds: 10
+    timeoutSeconds: 10
+
+serviceAccount:
+  # Specifies whether a ServiceAccount should be created
+  create: true
+  # The name of the ServiceAccount to use.
+  # If not set and create is true, a name is generated using the fullname template
+  name:
+
+## Configure ingress resource that allow you to access the
+## pushgateway installation. Set up the URL
+## ref: http://kubernetes.io/docs/user-guide/ingress/
+##
+ingress:
+  ## Enable Ingress.
+  ##
+  enabled: false
+  # AWS ALB requires path of /*
+  className: ""
+  path: /
+  pathType: ImplementationSpecific
+
+  ## Extra paths to prepend to every host configuration. This is useful when working with annotation based services.
+  extraPaths: []
+  # - path: /*
+  #   backend:
+  #     serviceName: ssl-redirect
+  #     servicePort: use-annotation
+
+  ## Annotations.
+  ##
+  # annotations:
+  #   kubernetes.io/ingress.class: nginx
+  #   kubernetes.io/tls-acme: 'true'
+
+  ## Hostnames.
+  ## Must be provided if Ingress is enabled.
+  ##
+  # hosts:
+  #   - pushgateway.domain.com
+
+  ## TLS configuration.
+  ## Secrets must be manually created in the namespace.
+  ##
+  # tls:
+  #   - secretName: pushgateway-tls
+  #     hosts:
+  #       - pushgateway.domain.com
+
+tolerations: []
+  # - effect: NoSchedule
+  #   operator: Exists
+
+## Node labels for pushgateway pod assignment
+## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+##
+nodeSelector: {}
+
+replicaCount: 1
+
+## When running more than one replica alongside with persistence, different volumes are needed
+## per replica, since sharing a `persistence.file` across replicas does not keep metrics synced.
+## For this purpose, you can enable the `runAsStatefulSet` to deploy the pushgateway as a
+## StatefulSet instead of as a Deployment.
+runAsStatefulSet: false
+
+## Security context to be added to push-gateway pods
+##
+securityContext:
+  fsGroup: 65534
+  runAsUser: 65534
+  runAsNonRoot: true
+
+## Security context to be added to push-gateway containers
+## Having a separate variable as securityContext differs for pods and containers.
+containerSecurityContext: {}
+#  allowPrivilegeEscalation: false
+#  readOnlyRootFilesystem: true
+#  runAsUser: 65534
+#  runAsNonRoot: true
+
+## Affinity for pod assignment
+## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+affinity: {}
+
+## Topology spread constraints for pods
+## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+topologySpreadConstraints: []
+
+# Enable this if you're using https://github.com/coreos/prometheus-operator
+serviceMonitor:
+  enabled: false
+  namespace: monitoring
+
+  # telemetryPath: HTTP resource path from which to fetch metrics.
+  # Telemetry path, default /metrics, has to be prefixed accordingly if pushgateway sets a route prefix at start-up.
+  #
+  telemetryPath: "/metrics"
+
+  # Fallback to the prometheus default unless specified
+  # interval: 10s
+
+  ## scheme: HTTP scheme to use for scraping. Can be used with `tlsConfig` for example if using istio mTLS.
+  # scheme: ""
+
+  ## tlsConfig: TLS configuration to use when scraping the endpoint. For example if using istio mTLS.
+  ## Of type: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#tlsconfig
+  # tlsConfig: {}
+
+  # bearerTokenFile:
+  # Fallback to the prometheus default unless specified
+  # scrapeTimeout: 30s
+
+  ## Used to pass Labels that are used by the Prometheus installed in your cluster to select Service Monitors to work with
+  ## ref: https://github.com/coreos/prometheus-operator/blob/master/Documentation/api.md#prometheusspec
+  additionalLabels: {}
+
+  # Retain the job and instance labels of the metrics pushed to the Pushgateway
+  # [Scraping Pushgateway](https://github.com/prometheus/pushgateway#configure-the-pushgateway-as-a-target-to-scrape)
+  honorLabels: true
+
+  ## Metric relabel configs to apply to samples before ingestion.
+  ## [Metric Relabeling](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#metric_relabel_configs)
+  metricRelabelings: []
+  # - action: keep
+  #   regex: 'kube_(daemonset|deployment|pod|namespace|node|statefulset).+'
+  #   sourceLabels: [__name__]
+
+  ## Relabel configs to apply to samples before ingestion.
+  ## [Relabeling](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#relabel_config)
+  relabelings: []
+  # - sourceLabels: [__meta_kubernetes_pod_node_name]
+  #   separator: ;
+  #   regex: ^(.*)$
+  #   targetLabel: nodename
+  #   replacement: $1
+  #   action: replace
+
+# The values to set in the PodDisruptionBudget spec (minAvailable/maxUnavailable)
+# If not set then a PodDisruptionBudget will not be created
+podDisruptionBudget: {}
+
+priorityClassName:
+
+# Deployment Strategy type
+strategy:
+  type: Recreate
+
+persistentVolume:
+  ## If true, pushgateway will create/use a Persistent Volume Claim
+  ## If false, use emptyDir
+  ##
+  enabled: false
+
+  ## pushgateway data Persistent Volume access modes
+  ## Must match those of existing PV or dynamic provisioner
+  ## Ref: http://kubernetes.io/docs/user-guide/persistent-volumes/
+  ##
+  accessModes:
+    - ReadWriteOnce
+
+  ## pushgateway data Persistent Volume Claim annotations
+  ##
+  annotations: {}
+
+  ## pushgateway data Persistent Volume existing claim name
+  ## Requires pushgateway.persistentVolume.enabled: true
+  ## If defined, PVC must be created manually before volume will be bound
+  existingClaim: ""
+
+  ## pushgateway data Persistent Volume mount root path
+  ##
+  mountPath: /data
+
+  ## pushgateway data Persistent Volume size
+  ##
+  size: 2Gi
+
+  ## pushgateway data Persistent Volume Storage Class
+  ## If defined, storageClassName: <storageClass>
+  ## If set to "-", storageClassName: "", which disables dynamic provisioning
+  ## If undefined (the default) or set to null, no storageClassName spec is
+  ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+  ##   GKE, AWS & OpenStack)
+  ##
+  # storageClass: "-"
+
+  ## Subdirectory of pushgateway data Persistent Volume to mount
+  ## Useful if the volume's root directory is not empty
+  ##
+  subPath: ""
+
+extraVolumes: []
+  # - name: extra
+  #   emptyDir: {}
+extraVolumeMounts: []
+  # - name: extra
+  #   mountPath: /usr/share/extras
+  #   readOnly: true
+
+# Configuration for clusters with restrictive network policies in place:
+# - allowAll allows access to the PushGateway from any namespace
+# - customSelector is a list of pod/namespaceSelectors to allow access from
+# These options are mutually exclusive and the latter will take precedence.
+networkPolicy: {}
+  # allowAll: true
+  # customSelectors:
+  #   - namespaceSelector:
+  #       matchLabels:
+  #         type: admin
+  #   - podSelector:
+  #       matchLabels:
+  #         app: myapp
diff --git a/sregym/observer/prometheus/prometheus/templates/NOTES.txt b/sregym/observer/prometheus/prometheus/templates/NOTES.txt
new file mode 100644
index 0000000..7b931ae
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/NOTES.txt
@@ -0,0 +1,113 @@
+The Prometheus server can be accessed via port {{ .Values.server.service.servicePort }} on the following DNS name from within your cluster:
+{{ template "prometheus.server.fullname" . }}.{{ .Release.Namespace }}.svc.cluster.local
+
+{{ if .Values.server.ingress.enabled -}}
+From outside the cluster, the server URL(s) are:
+{{- range .Values.server.ingress.hosts }}
+http://{{ . }}
+{{- end }}
+{{- else }}
+Get the Prometheus server URL by running these commands in the same shell:
+{{- if contains "NodePort" .Values.server.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "prometheus.server.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.server.service.type }}
+  NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+        You can watch the status of by running 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ template "prometheus.server.fullname" . }}'
+
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "prometheus.server.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ .Values.server.service.servicePort }}
+{{- else if contains "ClusterIP"  .Values.server.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "prometheus.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 9090
+{{- end }}
+
+
+{{- if .Values.server.persistentVolume.enabled }}
+{{- else }}
+#################################################################################
+######   WARNING: Persistence is disabled!!! You will lose your data when   #####
+######            the Server pod is terminated.                             #####
+#################################################################################
+{{- end }}
+{{- end }}
+
+{{ if .Values.alertmanager.enabled }}
+The Prometheus alertmanager can be accessed via port {{ .Values.alertmanager.service.port }} on the following DNS name from within your cluster:
+{{ template "prometheus.alertmanager.fullname" . }}.{{ .Release.Namespace }}.svc.cluster.local
+
+{{ if .Values.alertmanager.ingress.enabled -}}
+From outside the cluster, the alertmanager URL(s) are:
+{{- range .Values.alertmanager.ingress.hosts }}
+http://{{ . }}
+{{- end }}
+{{- else }}
+Get the Alertmanager URL by running these commands in the same shell:
+{{- if contains "NodePort" .Values.alertmanager.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ template "prometheus.alertmanager.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.alertmanager.service.type }}
+  NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+        You can watch the status of by running 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ template "prometheus.alertmanager.fullname" . }}'
+
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ template "prometheus.alertmanager.fullname" . }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ .Values.alertmanager.service.servicePort }}
+{{- else if contains "ClusterIP"  .Values.alertmanager.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "alertmanager.name" .Subcharts.alertmanager }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 9093
+{{- end }}
+{{- end }}
+
+{{- if .Values.alertmanager.persistence.enabled }}
+{{- else }}
+#################################################################################
+######   WARNING: Persistence is disabled!!! You will lose your data when   #####
+######            the AlertManager pod is terminated.                       #####
+#################################################################################
+{{- end }}
+{{- end }}
+
+{{- if (index .Values "prometheus-node-exporter" "enabled") }}
+#################################################################################
+######   WARNING: Pod Security Policy has been disabled by default since    #####
+######            it deprecated after k8s 1.25+. use                        #####
+######            (index .Values "prometheus-node-exporter" "rbac"          #####
+###### .          "pspEnabled") with (index .Values                         #####
+######            "prometheus-node-exporter" "rbac" "pspAnnotations")       #####
+######            in case you still need it.                                #####
+#################################################################################
+{{- end }}
+
+{{ if (index .Values "prometheus-pushgateway" "enabled") }}
+The Prometheus PushGateway can be accessed via port {{ index .Values "prometheus-pushgateway" "service" "port" }} on the following DNS name from within your cluster:
+{{ include "prometheus-pushgateway.fullname" (index .Subcharts "prometheus-pushgateway") }}.{{ .Release.Namespace }}.svc.cluster.local
+
+{{ if (index .Values "prometheus-pushgateway" "ingress" "enabled") -}}
+From outside the cluster, the pushgateway URL(s) are:
+{{- range (index .Values "prometheus-pushgateway" "ingress" "hosts") }}
+http://{{ . }}
+{{- end }}
+{{- else }}
+Get the PushGateway URL by running these commands in the same shell:
+{{- $pushgateway_svc_type := index .Values "prometheus-pushgateway" "service" "type" -}}
+{{- if contains "NodePort" $pushgateway_svc_type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "prometheus-pushgateway.fullname" (index .Subcharts "prometheus-pushgateway") }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" $pushgateway_svc_type }}
+  NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+        You can watch the status of by running 'kubectl get svc --namespace {{ .Release.Namespace }} -w {{ include "prometheus-pushgateway.fullname" (index .Subcharts "prometheus-pushgateway") }}'
+
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "prometheus-pushgateway.fullname" (index .Subcharts "prometheus-pushgateway") }} -o jsonpath='{.status.loadBalancer.ingress[0].ip}')
+  echo http://$SERVICE_IP:{{ index .Values "prometheus-pushgateway" "service" "port" }}
+{{- else if contains "ClusterIP" $pushgateway_svc_type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app={{ include "prometheus.name" (index .Subcharts "prometheus-pushgateway") }},component=pushgateway" -o jsonpath="{.items[0].metadata.name}")
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 9091
+{{- end }}
+{{- end }}
+{{- end }}
+
+For more information on running Prometheus, visit:
+https://prometheus.io/
diff --git a/sregym/observer/prometheus/prometheus/templates/_helpers.tpl b/sregym/observer/prometheus/prometheus/templates/_helpers.tpl
new file mode 100644
index 0000000..b7b76ab
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/_helpers.tpl
@@ -0,0 +1,234 @@
+{{/* vim: set filetype=mustache: */}}
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "prometheus.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "prometheus.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create labels for prometheus
+*/}}
+{{- define "prometheus.common.matchLabels" -}}
+app.kubernetes.io/name: {{ include "prometheus.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end -}}
+
+{{/*
+Create unified labels for prometheus components
+*/}}
+{{- define "prometheus.common.metaLabels" -}}
+app.kubernetes.io/version: {{ .Chart.AppVersion }}
+helm.sh/chart: {{ include "prometheus.chart" . }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+app.kubernetes.io/part-of: {{ include "prometheus.name" . }}
+{{- with .Values.commonMetaLabels}}
+{{ toYaml . }}
+{{- end }}
+{{- end -}}
+
+{{- define "prometheus.server.labels" -}}
+{{ include "prometheus.server.matchLabels" . }}
+{{ include "prometheus.common.metaLabels" . }}
+{{- end -}}
+
+{{- define "prometheus.server.matchLabels" -}}
+app.kubernetes.io/component: {{ .Values.server.name }}
+{{ include "prometheus.common.matchLabels" . }}
+{{- end -}}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "prometheus.fullname" -}}
+{{- if .Values.fullnameOverride -}}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- .Release.Name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a fully qualified ClusterRole name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "prometheus.clusterRoleName" -}}
+{{- if .Values.server.clusterRoleNameOverride -}}
+{{ .Values.server.clusterRoleNameOverride | trunc 63 | trimSuffix "-" }}
+{{- else -}}
+{{ include "prometheus.server.fullname" . }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Create a fully qualified alertmanager name for communicating with the user via NOTES.txt
+*/}}
+{{- define "prometheus.alertmanager.fullname" -}}
+{{- template "alertmanager.fullname" .Subcharts.alertmanager -}}
+{{- end -}}
+
+{{/*
+Create a fully qualified Prometheus server name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "prometheus.server.fullname" -}}
+{{- if .Values.server.fullnameOverride -}}
+{{- .Values.server.fullnameOverride | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- $name := default .Chart.Name .Values.nameOverride -}}
+{{- if contains $name .Release.Name -}}
+{{- printf "%s-%s" .Release.Name .Values.server.name | trunc 63 | trimSuffix "-" -}}
+{{- else -}}
+{{- printf "%s-%s-%s" .Release.Name $name .Values.server.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Get KubeVersion removing pre-release information.
+*/}}
+{{- define "prometheus.kubeVersion" -}}
+  {{- default .Capabilities.KubeVersion.Version (regexFind "v[0-9]+\\.[0-9]+\\.[0-9]+" .Capabilities.KubeVersion.Version) -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for deployment.
+*/}}
+{{- define "prometheus.deployment.apiVersion" -}}
+{{- print "apps/v1" -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for networkpolicy.
+*/}}
+{{- define "prometheus.networkPolicy.apiVersion" -}}
+{{- print "networking.k8s.io/v1" -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for poddisruptionbudget.
+*/}}
+{{- define "prometheus.podDisruptionBudget.apiVersion" -}}
+{{- if .Capabilities.APIVersions.Has "policy/v1" }}
+{{- print "policy/v1" -}}
+{{- else -}}
+{{- print "policy/v1beta1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for rbac.
+*/}}
+{{- define "rbac.apiVersion" -}}
+{{- if .Capabilities.APIVersions.Has "rbac.authorization.k8s.io/v1" }}
+{{- print "rbac.authorization.k8s.io/v1" -}}
+{{- else -}}
+{{- print "rbac.authorization.k8s.io/v1beta1" -}}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Return the appropriate apiVersion for ingress.
+*/}}
+{{- define "ingress.apiVersion" -}}
+  {{- if and (.Capabilities.APIVersions.Has "networking.k8s.io/v1") (semverCompare ">= 1.19.x" (include "prometheus.kubeVersion" .)) -}}
+      {{- print "networking.k8s.io/v1" -}}
+  {{- else if .Capabilities.APIVersions.Has "networking.k8s.io/v1beta1" -}}
+    {{- print "networking.k8s.io/v1beta1" -}}
+  {{- else -}}
+    {{- print "extensions/v1beta1" -}}
+  {{- end -}}
+{{- end -}}
+
+{{/*
+Return if ingress is stable.
+*/}}
+{{- define "ingress.isStable" -}}
+  {{- eq (include "ingress.apiVersion" .) "networking.k8s.io/v1" -}}
+{{- end -}}
+
+{{/*
+Return if ingress supports ingressClassName.
+*/}}
+{{- define "ingress.supportsIngressClassName" -}}
+  {{- or (eq (include "ingress.isStable" .) "true") (and (eq (include "ingress.apiVersion" .) "networking.k8s.io/v1beta1") (semverCompare ">= 1.18.x" (include "prometheus.kubeVersion" .))) -}}
+{{- end -}}
+
+{{/*
+Return if ingress supports pathType.
+*/}}
+{{- define "ingress.supportsPathType" -}}
+  {{- or (eq (include "ingress.isStable" .) "true") (and (eq (include "ingress.apiVersion" .) "networking.k8s.io/v1beta1") (semverCompare ">= 1.18.x" (include "prometheus.kubeVersion" .))) -}}
+{{- end -}}
+
+{{/*
+Create the name of the service account to use for the server component
+*/}}
+{{- define "prometheus.serviceAccountName.server" -}}
+{{- if .Values.serviceAccounts.server.create -}}
+    {{ default (include "prometheus.server.fullname" .) .Values.serviceAccounts.server.name }}
+{{- else -}}
+    {{ default "default" .Values.serviceAccounts.server.name }}
+{{- end -}}
+{{- end -}}
+
+{{/*
+Define the prometheus.namespace template if set with forceNamespace or .Release.Namespace is set
+*/}}
+{{- define "prometheus.namespace" -}}
+  {{- default .Release.Namespace .Values.forceNamespace -}}
+{{- end }}
+
+{{/*
+Define template prometheus.namespaces producing a list of namespaces to monitor
+*/}}
+{{- define "prometheus.namespaces" -}}
+{{- $namespaces := list }}
+{{- if and .Values.rbac.create .Values.server.useExistingClusterRoleName }}
+  {{- if .Values.server.namespaces -}}
+    {{- range $ns := join "," .Values.server.namespaces | split "," }}
+      {{- $namespaces = append $namespaces (tpl $ns $) }}
+    {{- end -}}
+  {{- end -}}
+  {{- if .Values.server.releaseNamespace -}}
+    {{- $namespaces = append $namespaces (include "prometheus.namespace" .) }}
+  {{- end -}}
+{{- end -}}
+{{ mustToJson $namespaces }}
+{{- end -}}
+
+{{/*
+Define prometheus.server.remoteWrite producing a list of remoteWrite configurations with URL templating
+*/}}
+{{- define "prometheus.server.remoteWrite" -}}
+{{- $remoteWrites := list }}
+{{- range $remoteWrite := .Values.server.remoteWrite }}
+  {{- $remoteWrites = tpl $remoteWrite.url $ | set $remoteWrite "url" | append $remoteWrites }}
+{{- end -}}
+{{ toYaml $remoteWrites }}
+{{- end -}}
+
+{{/*
+Define prometheus.server.remoteRead producing a list of remoteRead configurations with URL templating
+*/}}
+{{- define "prometheus.server.remoteRead" -}}
+{{- $remoteReads := list }}
+{{- range $remoteRead := .Values.server.remoteRead }}
+  {{- $remoteReads = tpl $remoteRead.url $ | set $remoteRead "url" | append $remoteReads }}
+{{- end -}}
+{{ toYaml $remoteReads }}
+{{- end -}}
+
diff --git a/sregym/observer/prometheus/prometheus/templates/clusterrole.yaml b/sregym/observer/prometheus/prometheus/templates/clusterrole.yaml
new file mode 100644
index 0000000..0d7bafc
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/clusterrole.yaml
@@ -0,0 +1,56 @@
+{{- if and .Values.rbac.create (empty .Values.server.useExistingClusterRoleName) -}}
+apiVersion: {{ template "rbac.apiVersion" . }}
+kind: ClusterRole
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  name: {{ include "prometheus.clusterRoleName" . }}
+rules:
+{{- if and .Values.podSecurityPolicy.enabled (.Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy") }}
+  - apiGroups:
+    - extensions
+    resources:
+    - podsecuritypolicies
+    verbs:
+    - use
+    resourceNames:
+    - {{ template "prometheus.server.fullname" . }}
+{{- end }}
+  - apiGroups:
+      - ""
+    resources:
+      - nodes
+      - nodes/proxy
+      - nodes/metrics
+      - services
+      - endpoints
+      - pods
+      - ingresses
+      - configmaps
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - "extensions"
+      - "networking.k8s.io"
+    resources:
+      - ingresses/status
+      - ingresses
+    verbs:
+      - get
+      - list
+      - watch
+  - apiGroups:
+      - "discovery.k8s.io"
+    resources:
+      - endpointslices
+    verbs:
+      - get
+      - list
+      - watch
+  - nonResourceURLs:
+      - "/metrics"
+    verbs:
+      - get
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/templates/clusterrolebinding.yaml b/sregym/observer/prometheus/prometheus/templates/clusterrolebinding.yaml
new file mode 100644
index 0000000..c563bc5
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/clusterrolebinding.yaml
@@ -0,0 +1,16 @@
+{{- if and .Values.rbac.create (empty .Values.server.namespaces) (empty .Values.server.useExistingClusterRoleName) -}}
+apiVersion: {{ template "rbac.apiVersion" . }}
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  name: {{ include "prometheus.clusterRoleName" . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "prometheus.serviceAccountName.server" . }}
+    namespace: {{ include "prometheus.namespace" . }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: {{ include "prometheus.clusterRoleName" . }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/templates/cm.yaml b/sregym/observer/prometheus/prometheus/templates/cm.yaml
new file mode 100644
index 0000000..34bd00d
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/cm.yaml
@@ -0,0 +1,99 @@
+{{- if (empty .Values.server.configMapOverrideName) -}}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+    {{- with .Values.server.extraConfigmapLabels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+data:
+  allow-snippet-annotations: "false"
+{{- $root := . -}}
+{{- range $key, $value := .Values.ruleFiles }}
+  {{ $key }}: {{- toYaml $value | indent 2 }}
+{{- end }}
+{{- range $key, $value := .Values.serverFiles }}
+  {{ $key }}: |
+{{- if eq $key "prometheus.yml" }}
+    global:
+{{ $root.Values.server.global | toYaml | trimSuffix "\n" | indent 6 }}
+{{- if $root.Values.server.remoteWrite }}
+    remote_write:
+{{- include "prometheus.server.remoteWrite" $root | nindent 4 }}
+{{- end }}
+{{- if $root.Values.server.remoteRead }}
+    remote_read:
+{{- include "prometheus.server.remoteRead" $root | nindent 4 }}
+{{- end }}
+{{- if or $root.Values.server.tsdb $root.Values.server.exemplars }}
+    storage:
+{{- if $root.Values.server.tsdb }}
+      tsdb:
+{{ $root.Values.server.tsdb | toYaml | indent 8 }}
+{{- end }}
+{{- if $root.Values.server.exemplars }}
+      exemplars:
+{{ $root.Values.server.exemplars | toYaml | indent 8 }}
+{{- end }}
+{{- end }}
+{{- if $root.Values.scrapeConfigFiles }}
+    scrape_config_files:
+{{ toYaml $root.Values.scrapeConfigFiles | indent 4 }}
+{{- end }}
+{{- end }}
+{{- if eq $key "alerts" }}
+{{- if and (not (empty $value)) (empty $value.groups) }}
+    groups:
+{{- range $ruleKey, $ruleValue := $value }}
+    - name: {{ $ruleKey -}}.rules
+      rules:
+{{ $ruleValue | toYaml | trimSuffix "\n" | indent 6 }}
+{{- end }}
+{{- else }}
+{{ toYaml $value | indent 4 }}
+{{- end }}
+{{- else }}
+{{ toYaml $value | default "{}" | indent 4 }}
+{{- end }}
+{{- if eq $key "prometheus.yml" -}}
+{{- if $root.Values.extraScrapeConfigs }}
+{{ tpl $root.Values.extraScrapeConfigs $root | indent 4 }}
+{{- end -}}
+{{- if or ($root.Values.alertmanager.enabled) ($root.Values.server.alertmanagers) }}
+    alerting:
+{{- if $root.Values.alertRelabelConfigs }}
+{{ $root.Values.alertRelabelConfigs | toYaml  | trimSuffix "\n" | indent 6 }}
+{{- end }}
+      alertmanagers:
+{{- if $root.Values.server.alertmanagers }}
+{{ toYaml $root.Values.server.alertmanagers | indent 8 }}
+{{- else }}
+      - kubernetes_sd_configs:
+          - role: pod
+        tls_config:
+          ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+        bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+        {{- if $root.Values.alertmanager.prefixURL }}
+        path_prefix: {{ $root.Values.alertmanager.prefixURL }}
+        {{- end }}
+        relabel_configs:
+        - source_labels: [__meta_kubernetes_namespace]
+          regex: {{ $root.Release.Namespace }}
+          action: keep
+        - source_labels: [__meta_kubernetes_pod_label_app_kubernetes_io_instance]
+          regex: {{ $root.Release.Name }}
+          action: keep
+        - source_labels: [__meta_kubernetes_pod_label_app_kubernetes_io_name]
+          regex: {{ default "alertmanager" $root.Values.alertmanager.nameOverride | trunc 63 | trimSuffix "-" }}
+          action: keep
+        - source_labels: [__meta_kubernetes_pod_container_port_number]
+          regex: "9093"
+          action: keep
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/templates/deploy.yaml b/sregym/observer/prometheus/prometheus/templates/deploy.yaml
new file mode 100644
index 0000000..777f539
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/deploy.yaml
@@ -0,0 +1,360 @@
+{{- if not .Values.server.statefulSet.enabled -}}
+apiVersion: {{ template "prometheus.deployment.apiVersion" . }}
+kind: Deployment
+metadata:
+{{- if .Values.server.deploymentAnnotations }}
+  annotations:
+    {{ toYaml .Values.server.deploymentAnnotations | nindent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus.server.matchLabels" . | nindent 6 }}
+  replicas: {{ .Values.server.replicaCount }}
+  revisionHistoryLimit: {{ .Values.server.revisionHistoryLimit }}
+  {{- if .Values.server.strategy }}
+  strategy:
+{{ toYaml .Values.server.strategy | trim | indent 4 }}
+    {{ if eq .Values.server.strategy.type "Recreate" }}rollingUpdate: null{{ end }}
+{{- end }}
+  template:
+    metadata:
+    {{- if .Values.server.podAnnotations }}
+      annotations:
+        {{ toYaml .Values.server.podAnnotations | nindent 8 }}
+    {{- end }}
+      labels:
+        {{- include "prometheus.server.labels" . | nindent 8 }}
+        {{- if .Values.server.podLabels}}
+        {{ toYaml .Values.server.podLabels | nindent 8 }}
+        {{- end}}
+    spec:
+{{- if .Values.server.priorityClassName }}
+      priorityClassName: "{{ .Values.server.priorityClassName }}"
+{{- end }}
+{{- if .Values.server.schedulerName }}
+      schedulerName: "{{ .Values.server.schedulerName }}"
+{{- end }}
+{{- if semverCompare ">=1.13-0" .Capabilities.KubeVersion.GitVersion }}
+      {{- if or (.Values.server.enableServiceLinks) (eq (.Values.server.enableServiceLinks | toString) "<nil>") }}
+      enableServiceLinks: true
+      {{- else }}
+      enableServiceLinks: false
+      {{- end }}
+{{- end }}
+      serviceAccountName: {{ template "prometheus.serviceAccountName.server" . }}
+      {{- if .Values.server.extraInitContainers }}
+      initContainers:
+{{ toYaml .Values.server.extraInitContainers | indent 8 }}
+      {{- end }}
+      containers:
+        {{- if .Values.configmapReload.prometheus.enabled }}
+        - name: {{ template "prometheus.name" . }}-{{ .Values.server.name }}-{{ .Values.configmapReload.prometheus.name }}
+          {{- if .Values.configmapReload.prometheus.image.digest }}
+          image: "{{ .Values.configmapReload.prometheus.image.repository }}@{{ .Values.configmapReload.prometheus.image.digest }}"
+          {{- else }}
+          image: "{{ .Values.configmapReload.prometheus.image.repository }}:{{ .Values.configmapReload.prometheus.image.tag }}"
+          {{- end }}
+          imagePullPolicy: "{{ .Values.configmapReload.prometheus.image.pullPolicy }}"
+          {{- with .Values.configmapReload.prometheus.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          args:
+            - --watched-dir=/etc/config
+          {{- $default_url := "http://127.0.0.1:9090/-/reload" }}
+          {{- with .Values.server.prefixURL }}
+          {{- $default_url = printf "http://127.0.0.1:9090%s/-/reload" . }}
+          {{- end }}
+            - --reload-url={{ default $default_url .Values.configmapReload.reloadUrl }}
+          {{- range $key, $value := .Values.configmapReload.prometheus.extraArgs }}
+            - --{{ $key }}={{ $value }}
+          {{- end }}
+          {{- range .Values.configmapReload.prometheus.extraVolumeDirs }}
+            - --watched-dir={{ . }}
+          {{- end }}
+          {{- with .Values.configmapReload.env }}
+          env:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.configmapReload.prometheus.containerPort }}
+          ports:
+            - containerPort: {{ .Values.configmapReload.prometheus.containerPort }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config-volume
+              mountPath: /etc/config
+              readOnly: true
+          {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+            - name: {{ $.Values.configmapReload.prometheus.name }}-{{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.extraVolumeMounts }}
+            {{ toYaml . | nindent 12 }}
+          {{- end }}
+        {{- end }}
+
+        - name: {{ template "prometheus.name" . }}-{{ .Values.server.name }}
+          {{- if .Values.server.image.digest }}
+          image: "{{ .Values.server.image.repository }}@{{ .Values.server.image.digest }}"
+          {{- else }}
+          image: "{{ .Values.server.image.repository }}:{{ .Values.server.image.tag | default .Chart.AppVersion}}"
+          {{- end }}
+          imagePullPolicy: "{{ .Values.server.image.pullPolicy }}"
+          {{- with .Values.server.command }}
+          command:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.server.env }}
+          env:
+{{ toYaml .Values.server.env | indent 12}}
+          {{- end }}
+          args:
+        {{- if .Values.server.defaultFlagsOverride }}
+        {{ toYaml .Values.server.defaultFlagsOverride | nindent 12}}
+        {{- else }}
+          {{- if .Values.server.retention }}
+            - --storage.tsdb.retention.time={{ .Values.server.retention }}
+          {{- end }}
+          {{- if .Values.server.retentionSize }}
+            - --storage.tsdb.retention.size={{ .Values.server.retentionSize }}
+          {{- end }}
+            - --config.file={{ .Values.server.configPath }}
+            {{- if .Values.server.storagePath }}
+            - --storage.tsdb.path={{ .Values.server.storagePath }}
+            {{- else }}
+            - --storage.tsdb.path={{ .Values.server.persistentVolume.mountPath }}
+            {{- end }}
+            - --web.console.libraries=/etc/prometheus/console_libraries
+            - --web.console.templates=/etc/prometheus/consoles
+          {{- range .Values.server.extraFlags }}
+            - --{{ . }}
+          {{- end }}
+          {{- range $key, $value := .Values.server.extraArgs }}
+            - --{{ $key }}={{ $value }}
+          {{- end }}
+          {{- if .Values.server.prefixURL }}
+            - --web.route-prefix={{ .Values.server.prefixURL }}
+          {{- end }}
+          {{- if .Values.server.baseURL }}
+            - --web.external-url={{ .Values.server.baseURL }}
+          {{- end }}
+        {{- end }}
+          ports:
+            - containerPort: 9090
+          {{- if .Values.server.portName }}
+              name: {{ .Values.server.portName }}
+          {{- end }}
+          {{- if .Values.server.hostPort }}
+              hostPort: {{ .Values.server.hostPort }}
+          {{- end }}
+          readinessProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/ready
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- with .Values.server.probeHeaders }}
+              httpHeaders:
+{{- toYaml . | nindent 14 }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            initialDelaySeconds: {{ .Values.server.readinessProbeInitialDelay }}
+            periodSeconds: {{ .Values.server.readinessProbePeriodSeconds }}
+            timeoutSeconds: {{ .Values.server.readinessProbeTimeout }}
+            failureThreshold: {{ .Values.server.readinessProbeFailureThreshold }}
+            successThreshold: {{ .Values.server.readinessProbeSuccessThreshold }}
+          livenessProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/healthy
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- with .Values.server.probeHeaders }}
+              httpHeaders:
+{{- toYaml . | nindent 14 }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            initialDelaySeconds: {{ .Values.server.livenessProbeInitialDelay }}
+            periodSeconds: {{ .Values.server.livenessProbePeriodSeconds }}
+            timeoutSeconds: {{ .Values.server.livenessProbeTimeout }}
+            failureThreshold: {{ .Values.server.livenessProbeFailureThreshold }}
+            successThreshold: {{ .Values.server.livenessProbeSuccessThreshold }}
+          {{- if .Values.server.startupProbe.enabled }}
+          startupProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/healthy
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- if .Values.server.probeHeaders }}
+              httpHeaders:
+              {{- range .Values.server.probeHeaders}}
+              - name: {{ .name }}
+                value: {{ .value }}
+              {{- end }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            failureThreshold: {{ .Values.server.startupProbe.failureThreshold }}
+            periodSeconds: {{ .Values.server.startupProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.server.startupProbe.timeoutSeconds }}
+          {{- end }}
+          {{- with .Values.server.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config-volume
+              mountPath: /etc/config
+            - name: storage-volume
+              mountPath: {{ .Values.server.persistentVolume.mountPath }}
+              subPath: "{{ .Values.server.persistentVolume.subPath }}"
+          {{- range .Values.server.extraHostPathMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- range .Values.server.extraConfigmapMounts }}
+            - name: {{ $.Values.server.name }}-{{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- range .Values.server.extraSecretMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- if .Values.server.extraVolumeMounts }}
+            {{ toYaml .Values.server.extraVolumeMounts | nindent 12 }}
+          {{- end }}
+          {{- with .Values.server.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+      {{- if .Values.server.sidecarContainers }}
+        {{- range $name, $spec :=  .Values.server.sidecarContainers }}
+        - name: {{ $name }}
+          {{- if kindIs "string" $spec }}
+            {{- tpl $spec $ | nindent 10 }}
+          {{- else }}
+            {{- toYaml $spec | nindent 10 }}
+          {{- end }}
+        {{- end }}
+      {{- end }}
+    {{- if .Values.server.hostNetwork }}
+      hostNetwork: true
+      dnsPolicy: ClusterFirstWithHostNet
+    {{- else }}
+      dnsPolicy: {{ .Values.server.dnsPolicy }}
+    {{- end }}
+    {{- if .Values.imagePullSecrets }}
+      imagePullSecrets:
+{{ toYaml .Values.imagePullSecrets | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.nodeSelector }}
+      nodeSelector:
+{{ toYaml .Values.server.nodeSelector | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.hostAliases }}
+      hostAliases:
+{{ toYaml .Values.server.hostAliases | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.dnsConfig }}
+      dnsConfig:
+{{ toYaml .Values.server.dnsConfig | indent 8 }}
+    {{- end }}
+    {{- with .Values.server.securityContext }}
+      securityContext:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+    {{- if .Values.server.tolerations }}
+      tolerations:
+{{ toYaml .Values.server.tolerations | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.affinity }}
+      affinity:
+{{ toYaml .Values.server.affinity | indent 8 }}
+    {{- end }}
+    {{- with .Values.server.topologySpreadConstraints }}
+      topologySpreadConstraints:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+      terminationGracePeriodSeconds: {{ .Values.server.terminationGracePeriodSeconds }}
+      volumes:
+        - name: config-volume
+        {{- if empty .Values.server.configFromSecret }}
+          configMap:
+            name: {{ if .Values.server.configMapOverrideName }}{{ .Release.Name }}-{{ .Values.server.configMapOverrideName }}{{- else }}{{ template "prometheus.server.fullname" . }}{{- end }}
+        {{- else }}
+          secret:
+            secretName: {{ .Values.server.configFromSecret }}
+        {{- end }}
+      {{- range .Values.server.extraHostPathMounts }}
+        - name: {{ .name }}
+          hostPath:
+            path: {{ .hostPath }}
+      {{- end }}
+      {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+        - name: {{ $.Values.configmapReload.prometheus.name }}-{{ .name }}
+          configMap:
+            name: {{ .configMap }}
+      {{- end }}
+      {{- range .Values.server.extraConfigmapMounts }}
+        - name: {{ $.Values.server.name }}-{{ .name }}
+          configMap:
+            name: {{ .configMap }}
+      {{- end }}
+      {{- range .Values.server.extraSecretMounts }}
+        - name: {{ .name }}
+          secret:
+            secretName: {{ .secretName }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+      {{- end }}
+      {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+        - name: {{ .name }}
+          configMap:
+            name: {{ .configMap }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+      {{- end }}
+{{- if .Values.server.extraVolumes }}
+{{ toYaml .Values.server.extraVolumes | indent 8}}
+{{- end }}
+        - name: storage-volume
+        {{- if .Values.server.persistentVolume.enabled }}
+          persistentVolumeClaim:
+            claimName: {{ if .Values.server.persistentVolume.existingClaim }}{{ .Values.server.persistentVolume.existingClaim }}{{- else }}{{ template "prometheus.server.fullname" . }}{{- end }}
+        {{- else }}
+          emptyDir:
+          {{- if .Values.server.emptyDir.sizeLimit }}
+            sizeLimit: {{ .Values.server.emptyDir.sizeLimit }}
+          {{- else }}
+            {}
+          {{- end -}}
+        {{- end -}}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/templates/extra-manifests.yaml b/sregym/observer/prometheus/prometheus/templates/extra-manifests.yaml
new file mode 100644
index 0000000..1fa3a3c
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/extra-manifests.yaml
@@ -0,0 +1,4 @@
+{{ range .Values.extraManifests }}
+---
+{{ tpl . $ }}
+{{ end }}
diff --git a/sregym/observer/prometheus/prometheus/templates/headless-svc.yaml b/sregym/observer/prometheus/prometheus/templates/headless-svc.yaml
new file mode 100644
index 0000000..653c745
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/headless-svc.yaml
@@ -0,0 +1,35 @@
+{{- if .Values.server.statefulSet.enabled -}}
+apiVersion: v1
+kind: Service
+metadata:
+{{- if .Values.server.statefulSet.headless.annotations }}
+  annotations:
+{{ toYaml .Values.server.statefulSet.headless.annotations | indent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+{{- if .Values.server.statefulSet.headless.labels }}
+{{ toYaml .Values.server.statefulSet.headless.labels | indent 4 }}
+{{- end }}
+  name: {{ template "prometheus.server.fullname" . }}-headless
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  clusterIP: None
+  ports:
+    - name: http
+      port: {{ .Values.server.statefulSet.headless.servicePort }}
+      protocol: TCP
+      targetPort: 9090
+    {{- if .Values.server.statefulSet.headless.gRPC.enabled }}
+    - name: grpc
+      port: {{ .Values.server.statefulSet.headless.gRPC.servicePort }}
+      protocol: TCP
+      targetPort: 10901
+    {{- if .Values.server.statefulSet.headless.gRPC.nodePort }}
+      nodePort: {{ .Values.server.statefulSet.headless.gRPC.nodePort }}
+    {{- end }}
+    {{- end }}
+
+  selector:
+    {{- include "prometheus.server.matchLabels" . | nindent 4 }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/templates/ingress.yaml b/sregym/observer/prometheus/prometheus/templates/ingress.yaml
new file mode 100644
index 0000000..0e022e5
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/ingress.yaml
@@ -0,0 +1,57 @@
+{{- if .Values.server.ingress.enabled -}}
+{{- $ingressApiIsStable := eq (include "ingress.isStable" .) "true" -}}
+{{- $ingressSupportsIngressClassName := eq (include "ingress.supportsIngressClassName" .) "true" -}}
+{{- $ingressSupportsPathType := eq (include "ingress.supportsPathType" .) "true" -}}
+{{- $releaseName := .Release.Name -}}
+{{- $serviceName := include "prometheus.server.fullname" . }}
+{{- $servicePort := .Values.server.ingress.servicePort | default .Values.server.service.servicePort -}}
+{{- $ingressPath := .Values.server.ingress.path -}}
+{{- $ingressPathType := .Values.server.ingress.pathType -}}
+{{- $extraPaths := .Values.server.ingress.extraPaths -}}
+apiVersion: {{ template "ingress.apiVersion" . }}
+kind: Ingress
+metadata:
+{{- if .Values.server.ingress.annotations }}
+  annotations:
+{{ toYaml .Values.server.ingress.annotations | indent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+{{- range $key, $value := .Values.server.ingress.extraLabels }}
+    {{ $key }}: {{ $value }}
+{{- end }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  {{- if and $ingressSupportsIngressClassName .Values.server.ingress.ingressClassName }}
+  ingressClassName: {{ .Values.server.ingress.ingressClassName }}
+  {{- end }}
+  rules:
+  {{- range .Values.server.ingress.hosts }}
+    {{- $url := splitList "/" . }}
+    - host: {{ first $url }}
+      http:
+        paths:
+{{ if $extraPaths }}
+{{ toYaml $extraPaths | indent 10 }}
+{{- end }}
+          - path: {{ $ingressPath }}
+            {{- if $ingressSupportsPathType }}
+            pathType: {{ $ingressPathType }}
+            {{- end }}
+            backend:
+              {{- if $ingressApiIsStable }}
+              service:
+                name: {{ $serviceName }}
+                port:
+                  number: {{ $servicePort }}
+              {{- else }}
+              serviceName: {{ $serviceName }}
+              servicePort: {{ $servicePort }}
+              {{- end }}
+  {{- end -}}
+{{- if .Values.server.ingress.tls }}
+  tls:
+{{ toYaml .Values.server.ingress.tls | indent 4 }}
+  {{- end -}}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/templates/network-policy.yaml b/sregym/observer/prometheus/prometheus/templates/network-policy.yaml
new file mode 100644
index 0000000..a99b3df
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/network-policy.yaml
@@ -0,0 +1,16 @@
+{{- if .Values.networkPolicy.enabled }}
+apiVersion: {{ template "prometheus.networkPolicy.apiVersion" . }}
+kind: NetworkPolicy
+metadata:
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+spec:
+  podSelector:
+    matchLabels:
+      {{- include "prometheus.server.matchLabels" . | nindent 6 }}
+  ingress:
+    - ports:
+      - port: 9090
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/templates/pdb.yaml b/sregym/observer/prometheus/prometheus/templates/pdb.yaml
new file mode 100644
index 0000000..72f61fe
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/pdb.yaml
@@ -0,0 +1,15 @@
+{{- if .Values.server.podDisruptionBudget.enabled }}
+{{- $pdbSpec := omit .Values.server.podDisruptionBudget "enabled" }}
+apiVersion: {{ template "prometheus.podDisruptionBudget.apiVersion" . }}
+kind: PodDisruptionBudget
+metadata:
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+spec:
+  selector:
+    matchLabels:
+      {{- include "prometheus.server.matchLabels" . | nindent 6 }}
+  {{- toYaml $pdbSpec | nindent 2 }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/templates/psp.yaml b/sregym/observer/prometheus/prometheus/templates/psp.yaml
new file mode 100644
index 0000000..88cc1f0
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/psp.yaml
@@ -0,0 +1,53 @@
+{{- if and .Values.rbac.create .Values.podSecurityPolicy.enabled }}
+{{- if .Capabilities.APIVersions.Has "policy/v1beta1/PodSecurityPolicy" }}
+apiVersion: policy/v1beta1
+kind: PodSecurityPolicy
+metadata:
+  name: {{ template "prometheus.server.fullname" . }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  {{- with .Values.server.podSecurityPolicy.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  privileged: false
+  allowPrivilegeEscalation: false
+  allowedCapabilities:
+    - 'CHOWN'
+  volumes:
+    - 'configMap'
+    - 'persistentVolumeClaim'
+    - 'emptyDir'
+    - 'secret'
+    - 'hostPath'
+  allowedHostPaths:
+    - pathPrefix: /etc
+      readOnly: true
+    - pathPrefix: {{ .Values.server.persistentVolume.mountPath }}
+  {{- range .Values.server.extraHostPathMounts }}
+    - pathPrefix: {{ .hostPath }}
+      readOnly: {{ .readOnly }}
+  {{- end }}
+  hostNetwork: false
+  hostPID: false
+  hostIPC: false
+  runAsUser:
+    rule: 'RunAsAny'
+  seLinux:
+    rule: 'RunAsAny'
+  supplementalGroups:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  fsGroup:
+    rule: 'MustRunAs'
+    ranges:
+      # Forbid adding the root group.
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: false
+{{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/templates/pvc.yaml b/sregym/observer/prometheus/prometheus/templates/pvc.yaml
new file mode 100644
index 0000000..a0f3345
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/pvc.yaml
@@ -0,0 +1,43 @@
+{{- if not .Values.server.statefulSet.enabled -}}
+{{- if .Values.server.persistentVolume.enabled -}}
+{{- if not .Values.server.persistentVolume.existingClaim -}}
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  {{- if .Values.server.persistentVolume.annotations }}
+  annotations:
+{{ toYaml .Values.server.persistentVolume.annotations | indent 4 }}
+  {{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+    {{- with .Values.server.persistentVolume.labels }}
+       {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  accessModes:
+{{ toYaml .Values.server.persistentVolume.accessModes | indent 4 }}
+{{- if .Values.server.persistentVolume.storageClass }}
+{{- if (eq "-" .Values.server.persistentVolume.storageClass) }}
+  storageClassName: ""
+{{- else }}
+  storageClassName: "{{ .Values.server.persistentVolume.storageClass }}"
+{{- end }}
+{{- end }}
+{{- if .Values.server.persistentVolume.volumeBindingMode }}
+  volumeBindingMode: "{{ .Values.server.persistentVolume.volumeBindingMode }}"
+{{- end }}
+  resources:
+    requests:
+      storage: "{{ .Values.server.persistentVolume.size }}"
+{{- if .Values.server.persistentVolume.selector }}
+  selector:
+  {{- toYaml .Values.server.persistentVolume.selector | nindent 4 }}
+{{- end -}}
+{{- if .Values.server.persistentVolume.volumeName }}
+  volumeName: "{{ .Values.server.persistentVolume.volumeName }}"
+{{- end -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/templates/rolebinding.yaml b/sregym/observer/prometheus/prometheus/templates/rolebinding.yaml
new file mode 100644
index 0000000..c80ae11
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/rolebinding.yaml
@@ -0,0 +1,18 @@
+{{- range include "prometheus.namespaces" . | fromJsonArray }}
+---
+apiVersion: {{ template "rbac.apiVersion" $ }}
+kind: RoleBinding
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" $ | nindent 4 }}
+  name: {{ template "prometheus.server.fullname" $ }}
+  namespace: {{ . }}
+subjects:
+  - kind: ServiceAccount
+    name: {{ template "prometheus.serviceAccountName.server" $ }}
+    namespace: {{ include "prometheus.namespace" $ }}
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: {{ $.Values.server.useExistingClusterRoleName }}
+{{ end -}}
diff --git a/sregym/observer/prometheus/prometheus/templates/service.yaml b/sregym/observer/prometheus/prometheus/templates/service.yaml
new file mode 100644
index 0000000..57d4357
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/service.yaml
@@ -0,0 +1,63 @@
+{{- if .Values.server.service.enabled -}}
+apiVersion: v1
+kind: Service
+metadata:
+{{- if .Values.server.service.annotations }}
+  annotations:
+{{ toYaml .Values.server.service.annotations | indent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+{{- if .Values.server.service.labels }}
+{{ toYaml .Values.server.service.labels | indent 4 }}
+{{- end }}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+{{- if .Values.server.service.clusterIP }}
+  clusterIP: {{ .Values.server.service.clusterIP }}
+{{- end }}
+{{- if .Values.server.service.externalIPs }}
+  externalIPs:
+{{ toYaml .Values.server.service.externalIPs | indent 4 }}
+{{- end }}
+{{- if .Values.server.service.loadBalancerIP }}
+  loadBalancerIP: {{ .Values.server.service.loadBalancerIP }}
+{{- end }}
+{{- if .Values.server.service.loadBalancerSourceRanges }}
+  loadBalancerSourceRanges:
+  {{- range $cidr := .Values.server.service.loadBalancerSourceRanges }}
+    - {{ $cidr }}
+  {{- end }}
+{{- end }}
+  ports:
+    - name: http
+      port: {{ .Values.server.service.servicePort }}
+      protocol: TCP
+      targetPort: 9090
+    {{- if .Values.server.service.nodePort }}
+      nodePort: {{ .Values.server.service.nodePort }}
+    {{- end }}
+    {{- if .Values.server.service.gRPC.enabled }}
+    - name: grpc
+      port: {{ .Values.server.service.gRPC.servicePort }}
+      protocol: TCP
+      targetPort: 10901
+    {{- if .Values.server.service.gRPC.nodePort }}
+      nodePort: {{ .Values.server.service.gRPC.nodePort }}
+    {{- end }}
+    {{- end }}
+{{- if .Values.server.service.additionalPorts }}
+{{ toYaml .Values.server.service.additionalPorts | indent 4 }}
+{{- end }}
+  selector:
+  {{- if and .Values.server.statefulSet.enabled .Values.server.service.statefulsetReplica.enabled }}
+    statefulset.kubernetes.io/pod-name: {{ template "prometheus.server.fullname" . }}-{{ .Values.server.service.statefulsetReplica.replica }}
+  {{- else -}}
+    {{- include "prometheus.server.matchLabels" . | nindent 4 }}
+{{- if .Values.server.service.sessionAffinity }}
+  sessionAffinity: {{ .Values.server.service.sessionAffinity }}
+{{- end }}
+  {{- end }}
+  type: "{{ .Values.server.service.type }}"
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/templates/serviceaccount.yaml b/sregym/observer/prometheus/prometheus/templates/serviceaccount.yaml
new file mode 100644
index 0000000..63070c6
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/serviceaccount.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.serviceAccounts.server.create }}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+  name: {{ template "prometheus.serviceAccountName.server" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+  annotations:
+{{ toYaml .Values.serviceAccounts.server.annotations | indent 4 }}
+{{- if .Values.serviceAccounts.server.automountServiceAccountToken }}
+automountServiceAccountToken: {{ .Values.serviceAccounts.server.automountServiceAccountToken }}
+{{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/templates/sts.yaml b/sregym/observer/prometheus/prometheus/templates/sts.yaml
new file mode 100644
index 0000000..a7d6d58
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/sts.yaml
@@ -0,0 +1,382 @@
+{{- if .Values.server.statefulSet.enabled -}}
+apiVersion: apps/v1
+kind: StatefulSet
+metadata:
+{{- if .Values.server.statefulSet.annotations }}
+  annotations:
+    {{ toYaml .Values.server.statefulSet.annotations | nindent 4 }}
+{{- end }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+    {{- if .Values.server.statefulSet.labels}}
+    {{ toYaml .Values.server.statefulSet.labels | nindent 4 }}
+    {{- end}}
+  name: {{ template "prometheus.server.fullname" . }}
+  namespace: {{ include "prometheus.namespace" . }}
+spec:
+  {{- if semverCompare ">= 1.27.x" (include "prometheus.kubeVersion" .) }}
+  persistentVolumeClaimRetentionPolicy:
+    whenDeleted: {{ ternary "Delete" "Retain" .Values.server.statefulSet.pvcDeleteOnStsDelete }}
+    whenScaled: {{ ternary "Delete" "Retain" .Values.server.statefulSet.pvcDeleteOnStsScale }}
+  {{- end }}
+  serviceName: {{ template "prometheus.server.fullname" . }}-headless
+  selector:
+    matchLabels:
+      {{- include "prometheus.server.matchLabels" . | nindent 6 }}
+  replicas: {{ .Values.server.replicaCount }}
+  revisionHistoryLimit: {{ .Values.server.revisionHistoryLimit }}
+  podManagementPolicy: {{ .Values.server.statefulSet.podManagementPolicy }}
+  template:
+    metadata:
+    {{- if .Values.server.podAnnotations }}
+      annotations:
+        {{ toYaml .Values.server.podAnnotations | nindent 8 }}
+    {{- end }}
+      labels:
+        {{- include "prometheus.server.labels" . | nindent 8 }}
+        {{- if .Values.server.podLabels}}
+        {{ toYaml .Values.server.podLabels | nindent 8 }}
+        {{- end}}
+    spec:
+{{- if .Values.server.priorityClassName }}
+      priorityClassName: "{{ .Values.server.priorityClassName }}"
+{{- end }}
+{{- if .Values.server.schedulerName }}
+      schedulerName: "{{ .Values.server.schedulerName }}"
+{{- end }}
+{{- if semverCompare ">=1.13-0" .Capabilities.KubeVersion.GitVersion }}
+      {{- if or (.Values.server.enableServiceLinks) (eq (.Values.server.enableServiceLinks | toString) "<nil>") }}
+      enableServiceLinks: true
+      {{- else }}
+      enableServiceLinks: false
+      {{- end }}
+{{- end }}
+      serviceAccountName: {{ template "prometheus.serviceAccountName.server" . }}
+      {{- if .Values.server.extraInitContainers }}
+      initContainers:
+{{ toYaml .Values.server.extraInitContainers | indent 8 }}
+      {{- end }}
+      containers:
+        {{- if .Values.configmapReload.prometheus.enabled }}
+        - name: {{ template "prometheus.name" . }}-{{ .Values.server.name }}-{{ .Values.configmapReload.prometheus.name }}
+          {{- if .Values.configmapReload.prometheus.image.digest }}
+          image: "{{ .Values.configmapReload.prometheus.image.repository }}@{{ .Values.configmapReload.prometheus.image.digest }}"
+          {{- else }}
+          image: "{{ .Values.configmapReload.prometheus.image.repository }}:{{ .Values.configmapReload.prometheus.image.tag }}"
+          {{- end }}
+          imagePullPolicy: "{{ .Values.configmapReload.prometheus.image.pullPolicy }}"
+          {{- with .Values.configmapReload.prometheus.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          args:
+            - --watched-dir=/etc/config
+          {{- $default_url := "http://127.0.0.1:9090/-/reload" }}
+          {{- with .Values.server.prefixURL }}
+          {{- $default_url = printf "http://127.0.0.1:9090%s/-/reload" . }}
+          {{- end }}
+            - --reload-url={{ default $default_url .Values.configmapReload.reloadUrl }}
+          {{- range $key, $value := .Values.configmapReload.prometheus.extraArgs }}
+            - --{{ $key }}={{ $value }}
+          {{- end }}
+          {{- range .Values.configmapReload.prometheus.extraVolumeDirs }}
+            - --watched-dir={{ . }}
+          {{- end }}
+          {{- with .Values.configmapReload.env }}
+          env:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.configmapReload.prometheus.containerPort }}
+          ports:
+            - containerPort: {{ .Values.configmapReload.prometheus.containerPort }}
+          {{- end }}
+          {{- with .Values.configmapReload.prometheus.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config-volume
+              mountPath: /etc/config
+              readOnly: true
+          {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+            - name: {{ $.Values.configmapReload.prometheus.name }}-{{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+        {{- end }}
+
+        - name: {{ template "prometheus.name" . }}-{{ .Values.server.name }}
+          {{- if .Values.server.image.digest }}
+          image: "{{ .Values.server.image.repository }}@{{ .Values.server.image.digest }}"
+          {{- else }}
+          image: "{{ .Values.server.image.repository }}:{{ .Values.server.image.tag | default .Chart.AppVersion }}"
+          {{- end }}
+          imagePullPolicy: "{{ .Values.server.image.pullPolicy }}"
+          {{- with .Values.server.command }}
+          command:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          {{- if .Values.server.env }}
+          env:
+{{ toYaml .Values.server.env | indent 12}}
+          {{- end }}
+          args:
+        {{- if .Values.server.defaultFlagsOverride }}
+        {{ toYaml .Values.server.defaultFlagsOverride | nindent 12}}
+        {{- else }}
+          {{- if .Values.server.prefixURL }}
+            - --web.route-prefix={{ .Values.server.prefixURL }}
+          {{- end }}
+          {{- if .Values.server.retention }}
+            - --storage.tsdb.retention.time={{ .Values.server.retention }}
+          {{- end }}
+          {{- if .Values.server.retentionSize }}
+            - --storage.tsdb.retention.size={{ .Values.server.retentionSize }}
+          {{- end }}
+            - --config.file={{ .Values.server.configPath }}
+          {{- if .Values.server.storagePath }}
+            - --storage.tsdb.path={{ .Values.server.storagePath }}
+          {{- else }}
+            - --storage.tsdb.path={{ .Values.server.persistentVolume.mountPath }}
+          {{- end }}
+            - --web.console.libraries=/etc/prometheus/console_libraries
+            - --web.console.templates=/etc/prometheus/consoles
+          {{- range .Values.server.extraFlags }}
+            - --{{ . }}
+          {{- end }}
+          {{- range $key, $value := .Values.server.extraArgs }}
+            - --{{ $key }}={{ $value }}
+          {{- end }}
+          {{- if .Values.server.baseURL }}
+            - --web.external-url={{ .Values.server.baseURL }}
+          {{- end }}
+        {{- end }}
+          ports:
+            - containerPort: 9090
+          {{- if .Values.server.portName }}
+              name: {{ .Values.server.portName }}
+          {{- end }}
+          {{- if .Values.server.hostPort }}
+              hostPort: {{ .Values.server.hostPort }}
+          {{- end }}
+          readinessProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/ready
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- with .Values.server.probeHeaders }}
+              httpHeaders:
+{{- toYaml . | nindent 14 }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            initialDelaySeconds: {{ .Values.server.readinessProbeInitialDelay }}
+            periodSeconds: {{ .Values.server.readinessProbePeriodSeconds }}
+            timeoutSeconds: {{ .Values.server.readinessProbeTimeout }}
+            failureThreshold: {{ .Values.server.readinessProbeFailureThreshold }}
+            successThreshold: {{ .Values.server.readinessProbeSuccessThreshold }}
+          livenessProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/healthy
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- with .Values.server.probeHeaders }}
+              httpHeaders:
+{{- toYaml . | nindent 14 }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            initialDelaySeconds: {{ .Values.server.livenessProbeInitialDelay }}
+            periodSeconds: {{ .Values.server.livenessProbePeriodSeconds }}
+            timeoutSeconds: {{ .Values.server.livenessProbeTimeout }}
+            failureThreshold: {{ .Values.server.livenessProbeFailureThreshold }}
+            successThreshold: {{ .Values.server.livenessProbeSuccessThreshold }}
+          {{- if .Values.server.startupProbe.enabled }}
+          startupProbe:
+            {{- if not .Values.server.tcpSocketProbeEnabled }}
+            httpGet:
+              path: {{ .Values.server.prefixURL }}/-/healthy
+              port: 9090
+              scheme: {{ .Values.server.probeScheme }}
+              {{- if .Values.server.probeHeaders }}
+              httpHeaders:
+              {{- range .Values.server.probeHeaders}}
+              - name: {{ .name }}
+                value: {{ .value }}
+              {{- end }}
+              {{- end }}
+            {{- else }}
+            tcpSocket:
+              port: 9090
+            {{- end }}
+            failureThreshold: {{ .Values.server.startupProbe.failureThreshold }}
+            periodSeconds: {{ .Values.server.startupProbe.periodSeconds }}
+            timeoutSeconds: {{ .Values.server.startupProbe.timeoutSeconds }}
+          {{- end }}
+          {{- with .Values.server.resources }}
+          resources:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config-volume
+              mountPath: /etc/config
+            - name: {{ ternary .Values.server.persistentVolume.statefulSetNameOverride "storage-volume" (and .Values.server.persistentVolume.enabled (not (empty .Values.server.persistentVolume.statefulSetNameOverride))) }}
+              mountPath: {{ .Values.server.persistentVolume.mountPath }}
+              subPath: "{{ .Values.server.persistentVolume.subPath }}"
+          {{- range .Values.server.extraHostPathMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- range .Values.server.extraConfigmapMounts }}
+            - name: {{ $.Values.server.name }}-{{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- range .Values.server.extraSecretMounts }}
+            - name: {{ .name }}
+              mountPath: {{ .mountPath }}
+              subPath: {{ .subPath }}
+              readOnly: {{ .readOnly }}
+          {{- end }}
+          {{- if .Values.server.extraVolumeMounts }}
+          {{ toYaml .Values.server.extraVolumeMounts | nindent 12 }}
+          {{- end }}
+          {{- with .Values.server.containerSecurityContext }}
+          securityContext:
+            {{- toYaml . | nindent 12 }}
+          {{- end }}
+    {{- if .Values.server.sidecarContainers }}
+      {{- range $name, $spec :=  .Values.server.sidecarContainers }}
+        - name: {{ $name }}
+          {{- if kindIs "string" $spec }}
+            {{- tpl $spec $ | nindent 10 }}
+          {{- else }}
+            {{- toYaml $spec | nindent 10 }}
+          {{- end }}
+      {{- end }}
+    {{- end }}
+      hostNetwork: {{ .Values.server.hostNetwork }}
+    {{- if .Values.server.dnsPolicy }}
+      dnsPolicy: {{ .Values.server.dnsPolicy }}
+    {{- end }}
+    {{- if .Values.imagePullSecrets }}
+      imagePullSecrets:
+{{ toYaml .Values.imagePullSecrets | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.nodeSelector }}
+      nodeSelector:
+{{ toYaml .Values.server.nodeSelector | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.hostAliases }}
+      hostAliases:
+{{ toYaml .Values.server.hostAliases | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.dnsConfig }}
+      dnsConfig:
+{{ toYaml .Values.server.dnsConfig | indent 8 }}
+    {{- end }}
+    {{- with .Values.server.securityContext }}
+      securityContext:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+    {{- if .Values.server.tolerations }}
+      tolerations:
+{{ toYaml .Values.server.tolerations | indent 8 }}
+    {{- end }}
+    {{- if .Values.server.affinity }}
+      affinity:
+{{ toYaml .Values.server.affinity | indent 8 }}
+    {{- end }}
+    {{- with .Values.server.topologySpreadConstraints }}
+      topologySpreadConstraints:
+        {{- toYaml . | nindent 8 }}
+    {{- end }}
+      terminationGracePeriodSeconds: {{ .Values.server.terminationGracePeriodSeconds }}
+      volumes:
+        - name: config-volume
+        {{- if empty .Values.server.configFromSecret }}
+          configMap:
+            name: {{ if .Values.server.configMapOverrideName }}{{ .Release.Name }}-{{ .Values.server.configMapOverrideName }}{{- else }}{{ template "prometheus.server.fullname" . }}{{- end }}
+        {{- else }}
+          secret:
+            secretName: {{ .Values.server.configFromSecret }}
+        {{- end }}
+      {{- range .Values.server.extraHostPathMounts }}
+        - name: {{ .name }}
+          hostPath:
+            path: {{ .hostPath }}
+      {{- end }}
+      {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+        - name: {{ $.Values.configmapReload.prometheus.name }}-{{ .name }}
+          configMap:
+            name: {{ .configMap }}
+      {{- end }}
+      {{- range .Values.server.extraConfigmapMounts }}
+        - name: {{ $.Values.server.name }}-{{ .name }}
+          configMap:
+            name: {{ .configMap }}
+      {{- end }}
+      {{- range .Values.server.extraSecretMounts }}
+        - name: {{ .name }}
+          secret:
+            secretName: {{ .secretName }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+      {{- end }}
+      {{- range .Values.configmapReload.prometheus.extraConfigmapMounts }}
+        - name: {{ .name }}
+          configMap:
+            name: {{ .configMap }}
+            {{- with .optional }}
+            optional: {{ . }}
+            {{- end }}
+      {{- end }}
+{{- if .Values.server.extraVolumes }}
+{{ toYaml .Values.server.extraVolumes | indent 8}}
+{{- end }}
+{{- if .Values.server.persistentVolume.enabled }}
+  volumeClaimTemplates:
+    - metadata:
+        name: {{ .Values.server.persistentVolume.statefulSetNameOverride | default "storage-volume" }}
+        {{- if .Values.server.persistentVolume.annotations }}
+        annotations:
+{{ toYaml .Values.server.persistentVolume.annotations | indent 10 }}
+        {{- end }}
+        {{- if .Values.server.persistentVolume.labels }}
+        labels:
+{{ toYaml .Values.server.persistentVolume.labels | indent 10 }}
+        {{- end }}
+      spec:
+        accessModes:
+{{ toYaml .Values.server.persistentVolume.accessModes | indent 10 }}
+        resources:
+          requests:
+            storage: "{{ .Values.server.persistentVolume.size }}"
+      {{- if .Values.server.persistentVolume.storageClass }}
+      {{- if (eq "-" .Values.server.persistentVolume.storageClass) }}
+        storageClassName: ""
+      {{- else }}
+        storageClassName: "{{ .Values.server.persistentVolume.storageClass }}"
+      {{- end }}
+      {{- end }}
+{{- else }}
+        - name: storage-volume
+          emptyDir:
+          {{- if .Values.server.emptyDir.sizeLimit }}
+            sizeLimit: {{ .Values.server.emptyDir.sizeLimit }}
+          {{- else }}
+            {}
+          {{- end -}}
+{{- end }}
+{{- end }}
diff --git a/sregym/observer/prometheus/prometheus/templates/vpa.yaml b/sregym/observer/prometheus/prometheus/templates/vpa.yaml
new file mode 100644
index 0000000..85dd4a4
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/templates/vpa.yaml
@@ -0,0 +1,26 @@
+{{- if .Values.server.verticalAutoscaler.enabled -}}
+{{- if .Capabilities.APIVersions.Has "autoscaling.k8s.io/v1/VerticalPodAutoscaler" }}
+apiVersion: autoscaling.k8s.io/v1
+{{- else }}
+apiVersion: autoscaling.k8s.io/v1beta2
+{{- end }}
+kind: VerticalPodAutoscaler
+metadata:
+  name: {{ template "prometheus.server.fullname" . }}-vpa
+  namespace: {{ include "prometheus.namespace" . }}
+  labels:
+    {{- include "prometheus.server.labels" . | nindent 4 }}
+spec:
+  targetRef:
+    apiVersion: "apps/v1"
+{{- if .Values.server.statefulSet.enabled }}
+    kind: StatefulSet
+{{- else }}
+    kind: Deployment
+{{- end }}
+    name: {{ template "prometheus.server.fullname" . }}
+  updatePolicy:
+    updateMode: {{ .Values.server.verticalAutoscaler.updateMode | default "Off" | quote }}
+  resourcePolicy:
+    containerPolicies: {{ .Values.server.verticalAutoscaler.containerPolicies | default list | toYaml | trim | nindent 4 }}
+{{- end -}}
diff --git a/sregym/observer/prometheus/prometheus/tmpcharts-91028/alertmanager-1.7.0.tgz b/sregym/observer/prometheus/prometheus/tmpcharts-91028/alertmanager-1.7.0.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..6e225fe3b52bffd48c0550381acfbdac2d40e3fc
GIT binary patch
literal 13358
zcmV+}G||f+iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0PMYcbKAI*I68mpQ{c+}RpMEblI=J-qq;e}K1pWAb@Fh<&Yap!
zWit>7Nf?s=2LNqr9N*7=3ojCUQ?l$N=V$(r$Rr-!jYfB)(P+R3F%d%o=ZKA7EFcs9
z62{RFn|#LO@%ZVJC+h$4cwGK}?_h8LhrK6<<HPa({^7I3AI5tJPY(`%0OO59(eR{P
zK=#A<)_s+c`%WH62o+FZO88^|0AvEsU?3Lh)W>ub;Q$eiCg3Q6!2)^v{<y9XIp-7b
zWdHyG9w0DA6QEcLoYIs9NPPexWzhsIgh=>gG@4^oJ)rR@VKhc!fl}@TG>%h(#d5Sj
zQS1e>5k7zk{tYpXDVcza{Q*pp{Lit!|I{B3Lc{}x6QN$7Ef6?z_!=xA2_wXTVs;KV
zA_7d8Ac(O11(PJgfu;fAX|Mp01F?``pJbo`j@Sia{$N2RdKQfwc1ei=4rKrKBZHT|
z#xv!J1(XOxL<wcL1w#`|M=|6Au@U4P3Af1Sh|Z}OOb-vI)5GB4$x}Ze^T9b<UQ!nF
z$-o0KC0I~~<?D2cGD1E2`|~}2?<arkjUNqSh>3uhAg1b|7~*Imt5Si^_YeMSE?-DM
z2fz%c`IZ+ZkRufTmtc@^EPR+GSy}z*JdGl_80c57lo@cv6sqS|ZWtA6iDe=i%ExMO
zVR75@pZVj#*Pcn==TngX7cfc@-?##3m;d_*d(RF_^8d-+`00cEzmI1N$kFy9NaiV=
zBTtLD3E1Yr0>$vTVF~@0{|BdJumxVC8B8Mq^hYqGtT4m<!4^1MU=A<`5d8Pio7diq
zvKR`1LNLP-@>Lr_1Q`MskYPBL(pgY2MIezvF9etf3YIiwK%h8@pg`Oo3>Z?={{>Bn
zn1H>(U<<rW<0)c*&H#-<u)thUwv=r#Bt@M31*3>w0!E`~3WIY8{(q)Z#0V0IYg8n_
z90^%xZ#-b=0!sn&t8Vi(j<M`?JQ&~@&XH7?3?-CHdApo|KU27rvb#xu0g$9obV4H>
zEGOW2_LhnhhNLbU0I&t#T_DDAh?MF9ss|w899%9aM<6s1WBpkvMvyB)e*k3R2^bCs
z19T-AJYsV`0oON!!PXWy3PUVKCX9-D@e~CN2@p$ia!nUZq@K*n>u=x^iv{4SIQLCG
z4&syxIc6~=DU6~e2pEDwjh+Hi3V)u!0QnjyUGI%*asobnQixlNLAUNn{^05Z(4C(^
zv6z4n62Zs-V7~Hns=p0~_Ko`fwxV*pnzk8&;X4v7CqS?inK3;{qsSnq;FFNqfl>X;
z(kQCD+}g@9wI2X2jA!;8TrP01Q12Krnh;##D3WvxQ4-OmqTis>q8?nB3aZF*ir57X
z&`}V`zs~46A{G^1_%u-npC%~4Gb}q>NbY0+0#gn^T@dgEO`}i(V#aX*%rDcjZ0IOA
z7}eYgL;0V?r_`J@6dmJI@}jJNW~d=&Y)viMSjv&F${x=Ep+ZebNJ0aPngc9Fy8!Bj
zFb8u)5L29&a!lr`VLMcr0Lcs#Nyja4Dmge|m@+JuFCxhKTh$sVuntIQIH;5=v>|0<
zm_~>-)-ROMbrTw%q99eRO2hC<jnj<(!f2XIz|+ISgC~QK@E4TK@I0fQ;tD0A`NS}?
z2lo7Z|G<Bu{^kg>V1b;kgzx$MBJhJKl}4o(QfdDA=nBS3gtB7s(hmvub$y?wvl+fp
zA8C@U4z?TvpM*4<i9n0b2^j7VOT|z~_;|3OTpUFha^%i?oJ_!QZ~vJ;_Q(F7ttrbY
zH1i&ZGfMr41~AH-A5I~2-`VEIz9L6gYYfFypi*=8C9jUm76@Phr#Qj_=Z%GoCV9h0
zuV1U*R<yjQRQxPO&XNlhXLE?9<cNRZQp@ULHm}}NB5M@O75HJ03+59fSwPaVB;bz;
z77}i4-plEP2^JVe_%Ed9g=EOBEiI6Xh3lFN3Qf7QT|j|mX(VT-uhqR0V_Mk?D&MCG
z;5bA9WDZ0TK1Tq8gwd;|22Y^5oV>E<!qibp2NHm;1Y!~xL20Dx3j|{+S)l+6$d!}`
zF++jKnp0ZQ;#tNq!WW1j&QBPfDn%|ABEKLt(f}k{<LKX%3B96|)&~sn>eY;do74)#
z2u@LC|Illk7kZ)|pA2j}KaGDnkg`~RII-^}=R_2S|9}xBfvh2AixSeD<GCUnI6jdQ
zp8%sTR3B1gzIG~>+R>}__mIr>bXDdFiI!$;VGtm$*rC`tm@yhl-rxuvpJ>^DXVQoR
zmrzUg8D&z`1Fp4E00<3{#K#A3j4hFJWUUPaurC3A{??S!LeTs%8EDHX(YzWhO}k5=
z1|3A03#n!tb4JpW19X*8X=G9YrZn$Lf~;!F#_enXS^}q<rIf9!^pI3DQiUc^@@__6
z`5nPvk<AaOyb4B_v0(>WmN8Bcd#~R~7C}T>!{G$XV8l@k&nTSb=uHjffi@%LNHaBN
zgKWT3WlGOLr6=FA!O-P{VFx4VzF#6jrOAw?0>?Z<JwzNcZO1d33gpaN24`}#1yy6`
zDX|SCC5=wHlok^rVL~y{T15|qs(z+xTg%x@4-JdU)uvi`5)Ck!GsJl<af5<JubZH<
zm-B3$APs!ep0Dao0GVTQRa;O*+=GE?TZ(kqzEnqiVmxK?kD{UK8|AEBFIK3S3c8Xj
zW%43t3h861(PKn32FBzIBu%1R?*gx2C#$7|XRHBFM43*{K;5!kH$mDlNeDRB6w~rr
zX^9vnk{i@ashb^^V+Tc*;8z$qTZ5RP9c<b0Zk<+Iqi05+1XwM*bX8<ou*e==0$erv
zGnO1L*SprjwI)a|8xjXm(<Q)~@YmO%0>3X?IALgpufWZXcYO`EO>MLIy}9ul>%COt
z1a58&N?X9RWO1$oCLgE;yg=Z0uh`-5svVdlh=eG!2oMPkhwC0DVCasWwzUj6c?VkL
zhi%}PR&~`080M@u)HIjNKyFqJsv(O9OQUQootfl;QC?9_oz_aNbIV8}wT@PUYz!v5
z3ORdy3IfE0EG+dz*;mqlZ`Nk-CAOaBr_RhC4lQ(AM}=nI*Yly7qds^6Nj4~g&h=tZ
zX=I6qm%B5z+%Ai=twz$;&y6;S3NypZjhg=aq;+QKy4onKXUjph5YLub|C0D?dNUNz
zI7TE?My9lDjg4VlGWjxIu2H2`gyfu2su6MkB}ec8(^QXZu%OmXkOW9MV#a)i5tr7m
z9AJ*P6wD;h|4W;Nr9|2*h+JSsiDX3Mm5HzrW*wJ-vYYK=yuk!Zt>nwav^2#+nptBO
z6Q^2AG`2!7p{X?ZFqx~?BWe5Y0vP@wc~UG;EIS}bT7!@+cNP9}33Z_t8bQjUC73d(
zXfqRtfk!#1ANi)y80TsxNYV+|8;@h_079|yt?ljq?F}|4{+S|PsZp+Qu>S@R2GZC#
zMG*=FWm-ZD8X;!ow=`&^X+f}9X1=l$8UjcJ_UsoBKq6V^!crw$&1-`<iC`dSdz~8N
za>!I2DH<d=a!sOqAff9+1w&3}VhCaciIKj=o{VeeN6Es7{irP|kre>ql4kQJp`q;8
zuG4JKV44a*D43^^K_ZYc{}M(oaEQVTECbF0vakgl%)yUxBrrqaTELY18){_`VlKso
ztW_EWPBk2amOdzHovD(**dZFDK|;eLBJfc*$jWV_981MkFt-v*u3NRwPSAu#biVv2
zTDrQWP|@Ilx#E(k^30OClAOC*s%gV&7tA1zQiiPiWr_s!i{|2Al%N`*&vGy(B?Hr1
z778a@4)8=SRF&8f3`&C<Fcd8%D=I$F7K>VXhlmI%0bF!}hVU`p(G*v5S+2h%k+51+
zgZF5bZ*vx53TePc0VM%S1Rq^eb}m;Gd?Xn`{^QwxJPoJkz&RS&kEiO}i~N)0Hj3fZ
z={dTbfITzmg-fBHbk;TH%J>7}P+&e&yATublD?(l)UdKCrYM#PlFTHIp$HbQwf&dd
z$<i+J%PR&hq%bdSgbwT)@l?AIDl0w33B`8_4PQGJXZKJD$j|wRrNndgPDj~1@se;l
zlC8ePoTX|d{f{)9Ba!LC7+!rK@B-pU6G&4%#^lI-H;{S*l2A+41Tl`eKt#JeGGoAc
zk+;B!Eg`^fG)iLxP6cIfj(~Eq>O#jeDJC&N;V$6%v*UvOf8AGq&uW+roS`?Yt27+$
z8W+5gH5`OX0%II#S;#RZM&YT}Qeq$gk3}xEcjV&LbVSl9+Ldyt+?mp^#;)IzrFW(B
zr<sG=YJjX?#FS3dR=V5TL}DWuM0sA`&=6&Y?0W>me=#i3JECkrj{iava5$FgPY-gL
zgA_DB=c1|XqcJK0Bn)3ji#3D-YE1{NxppDp)(zF{;7=j>3*sQ6X()f6d#X4e35L)}
zPRfxsX-4Y3*_+|sC7LcMJvZ#(bAJMk!qB*%!S5QGH!yjVYHTz&{jQ{JV@vvrZymb6
z1Dl*7x*nsFhlenXF&Xx*1;da{z|ayvS1}cHce{2`PyV()9`|pWpX0>4Kn%~8j_;sf
zUF{zj=8|BjDf-HcwqEJ{fdXMhQ*&DcgY(ZY!Jk!>&ZF&X)!IZC8A%=(sWP6VtfvEM
zwm!Unee=ljS=~gRM|27!$CFa-=aF2ZWIMc;sUNA`zCviikG_bLNEK%&K-lhp<U0*!
zI(hc9@sQX)HISJrMfpLbvL;Bv@n1`tKFU7<z!3>QOKUZ{$ncSU(^Mec#+=bK`FsiW
zrZ9KjVImN_ka!<zH;x6V0Z4`t1cg)WV4*bn8y(BTjd$e@OpJM<ml`MUPS3Pg9(;KJ
zx}uirBdlm5?O)1j-#Ifh4vTSF5&(}Osml?QR*HTV!{ohsImslZTJY`a6@V>cYUaBM
z+F+AbqqFU4g<p-YW~;3&WdfPHnitB2yW3FPzqXNVf4^&ozm}Y3V##LI=KRIjfBIBK
z(6z(@=tZK1%lP^a4-T48uq&!;Wu$mRFROHwj4SF51i1qB<|z)*D4=nY3gl(0w2`Gq
zafxjG<av;R>Sz^5{Do5bIuyV*_nY(1*n4h(fGT5s0ma~el(P|EK!!%8Lgiilb~v5I
zbuli*?0Xd)H`y3j@L!RO8mNDM_b!9R?2`WD=)HubyvvwN$?{fXakH_w-PmKpQ5C6f
zI%coS8;{wC;^t#6rX{2jhJtHW%I69A;wjO!HY+qSLJb@AV1hapSPQxWU>z`_I1$U2
zm}M@7P4ioc+seFF<}`u0_?f{N$;DXb7LywP;Q~dm&le-9?S~T}oA7w5%umB0g(6;v
zA|#NPD2X<lfZ-I)C_~y>&|3kN?5e+1Gblvi@F8UL>pykzpH8sfM*3)t|J)lt9gm-u
z;y(`$o;-Vq|GbaqTF-YA?m09In#pJ+N8dA?K-qj0GB^|7_}R#m+|?BY77-ejed^|;
z6O}KEY$z_jCMrLJW|=5p=u|Fn>|5)p98SQ;Y~OU~#*&(n>b)}l+!w`gx|%QUE64NU
zzSd^jP`&t+QAauWBznUMxGqEBzN(|<i=yoc5-4T7K#coN&&_0U2$7R#nA^L<Po;8B
z@DY=Cue45vMv0V)CT@Wu8kY99m%8tD=pHL1^NPOOyt8|cngnV;grPa+f-N5#b6xpr
z<QJNX#|^=`J8D@R(%>91AJZ}cD}>~NVPb~UeQv7thPkD`BCfI`&>GdZA<N1-IEpUe
zQpI0PlszU?pfKh(tOkX<5@&Z=0jO9Yc8NJs8+>Nrl_nt+DC~=FLn%bkxG=RUCElWo
zOeoYAa6xS=r!lY69puxhQpYU06<ytKdJUd{^WLNOfmZ{wr8qMH+>*);8a1E~>i=?3
z8fHtlPRa7#E-CdY((LP*)ur9I%*4-%(xyu^=stTBy$ow7c>Tca3vN~}NYd5<b+ErU
z`C#eVAMOhLO|r;7HEf-=p|?v{2K<exb|0|UeyP5#o4S@`S7)XEyk0@*ftmgdn5l;_
zE%|ObMXHVUSF3n*m7^Klkr;JdNWEu3en>=t<}_grXN8O=2@0iFYX!a^5`B@$!DTdA
znZI5epH4G6y*Ugr2A5rhu|RP<9+h^xI2SZ>Z}XSFLbA?txCX=6Q$^}v6Qx3(^8>m$
z=U|cY*P&3Z<kaRrCDF2zd8U*`2$FslTjuColj}bmzXXqEeQ^A8N5wLyq{!?5R#sRQ
zkku&!9rM@|WaEUr4e9G)1rQKQJT)jP+HCXWR(|3&>HUkOw`$;y2;M`QyB_FHQEugl
zu4E5L_BV^`gh-3fD0lzcYTbffQn=^?ATUP5T`<g?>t$B}=qa>yOYI`P>LPMa2O1&^
zsu6CJ)V-u>gZ<*5x+=7)riv5J215gVXRunCy%MPTq{9WuRz))=xo8G44f`R|C^W#@
zHWnfmy(eS+PRhMa%2(@k57wQWUu{0t(fQ68U2R9K46cqSy;FGCVrSz5?&9eB%ra`H
zUU@7rnUA#BFAL(+A$?`;4b6vo2JUn^4HGB?VhX1Jef;?G$FcX*r~lYl?)+!=`_lOx
zI=>gr@7Vdx-S>RwKfjE3wu=-lal%jqUN$oAib#Bf-d{)F|9t*revG}JK7aag`^*3O
zzTW|d3j66L3Do|E3KPO)4hkc*=Irk?uWdNd%9ABO#Go6{2X{$mw`4@4FC5%<cI#NF
z>1t|B!ffJ~r%MyaiAg|Xb<#}33>ngaSk3{KURZQ3?|Lrn`Z;v7(%THpWa+Juvms>W
z_9&kKt1kZ<s4k6aOjZ=D|FS6~Ol|{fHQ2^<B(xj?o=!RXGnL|&<7p&c5gMXK`yJHT
z5G_S>FL-{gs4waYNW{8)45j&;#e~@EIx0RR#R4jC!YqwuIEs{|DhukvS$(aiJL0?z
z@k}1+xDx4prI#S0WbWi3h?YP$lS>&us5u&E&y7MocU2UQn$N8SY@Ixr23!MM8;rR&
z#tKgz1*34)=fw-?!YNG!Am}oawu-YD0x&e^Dl61bG}3Yp5=+)%vyvlWByIR5m?A{f
zzWRMru@uvKr(~Q%Oysf#i+bFFiCmhck^%J@9!<{srb?U&^jY8-WrSHx8lB--JA8<7
zw56i3giBj?bHVo`a9|+t#a$9gckpjODTUZ-r1>AjD4-0)a!LgY9EF-Z{dDxE$<ewo
zkd<zoirP3|m7x9CaO#&CfF^6a7){i*#>;co>6{s%IwslZoUp#l@&Yfjh4xBcVoY$X
zf-=UnOVN!77}bxD?xx<iW5dTgp>T2$)rZ3Z$mXd!5AA~w9LYbqjrReMJnzviP_C>;
z=V&?6-hoGeFNuIxEAF}F1ix<ZSe299t%6;1X1>+DRymX(%Mn~H4y{|eh<DYds7XF>
zhYqTH@bccK3zL*^r4D+ncWR=3TH(mY;?8jG=ZN0)>TWIPTRFR9=fpf)AYd5Q<h|nR
zl%$~f8FLV)k-+K*Wgf6+lVpCQbN1dm$HiSfH$#eX%~ojkmHe`9I?qnF$kKaiFSGUV
zyLkPIqFBcPHu6C2ysw|@E~Mq;qw7Me*Fk@#FjB#y049mTVAJqcQkeD!SRV;gZu>lm
z?1sT>OQqT!&{Mblu3Cfw2g=i-cLp{0yBz=_d(at<RX95hA8{2gp~EE_@vN7i4x-ul
ztum^m5cZyy9|yT)01QPchfsa8*LF|$Dgo#^zfmRlyffZOS6e@NqDMO1-jNdx#To{x
zX27y4&dIFaxb@D^d&{V;T64G!nN}Urwe#4JCwRj-g1>f<b|F)6kElYEs-}{HSiUT$
zA>Oq7tYk&*4{vSS<$Hm-l6JWh=o1=dM|HFC&D)5(E>SjHF`i1!6jP_9=o6(`%E0%I
zrRrqz{3NmaY$hu2%*5h30bv>)CnNEl1mdku{9o=8%pO7`OB3G7%P-%a7FpM2l?}78
zld8NoHElSLgj3fA$0t&Q>8zZcWNh<J_V7%uyUM6xC7XwRP1I#&lZfkk!rJ7DUkhnd
z_s+4cnGzjcgOwcC{TAI>>7KFgpw}Y23CXfCl_T91`wsdth<#d4h^V%@gSy&~C<J%i
zB^HfeH+hQ0xfY>!q@%0@pssXR;f%jJeQYF#sW2sQGTha;D;2S}OA5E21*sgW%@hfM
zoYMfSwSYP@Y_l|LobN2+DMxt~xZQzQwQIr8vHPBOHP>4s-Tm3C`u(hO$Ms&N;uRgM
z>;NUQf(e2tq}JKgG;bTNmL09)Eg`F5)aNpi`|y<4?p^8a$*&elU7*dK$(;JF-Yz&x
zdC}bTxAzBnkHiUe@P8x86Y9`!DcPAsL6z!Cq@W7*Os1g9wk1>m%}EsiSS7InXpKiz
zX=B&mP*u;ayN&y3b;kTg6k$^!R9%Ebp+vLnwG_(2BW^K$zile1OMTX|sq}R~f|?tF
zvKx%LPd0<QB#$wqH$<Mgb5w-_Yn`d;&qVdcl!R(kG=65Z`D}6<D)xp3K|w;3R0{qE
z^f39i8~@hRt%Z^+opik|0~Eko38CgpHf`7x(tBWr)|H9%*yJ#+gi6<1rbo}^CR#Oi
zMUPf?HW~=B!S!3|M!r?n6a8)@d{|ICEGX*gJ}f9Ir5+X(4-1N7iH8Nn!-B%TeOORD
zEGTMPeOORDEGTLz@|6}88_sN6w<pnij9j=1w~Y7L;MJu;B8#sUVb(wv_qy^Pv@yju
z27pbE-MvAlLpwJXL#&GKYCXPkB=Mbu-1ZH%t@3~KetXYIXXl3O&E~b1#O({k31tEh
zeeBWBv%aKRDTL3tBmY*w+3UMD3S9BN{NC`rviGPTpD6Cqm-}ajn|aI4{u>?frmNw5
zBa+=vuP--==%u;R&d!!1fxe@_H$p?S63^KSq=Buel88{Lo7BLT2lcHfb_<5IKYD0X
zbM<nk<hB>P-(@(oxvi!@laWwewXIw-$Jrgy_ST!troRjtW8XVTCTrFnyQ)C6${gLS
z_Oh3PZ&G_L=qgFMbtoDMb%w?I*yX-ZZc1Eqhk&jU)G6t)Ry?F4jdB3@Bt$JTn~3RD
zSL?5Z!^zsCT8m7d1kIrT`nl46uWS`rtrfVSSg-2<d2Ova%C14nLYu2FiTiXgOrZ~n
z?OB^e+gP&>W2G;@8rr=|c9&`|aW|R3MN5XA$~ymb(=n3oTNL+9nvj(*r*$bDS5yby
zC0)*5pWeGfZdbBxNMu?icZgJm`<s%<eJAOiPpTevwKVqaJ@VaIf@moDNS9WFk<ier
z{^FXHZoPamf<}ln*oT#Ao|j#vdp+Q_y~CMuo>li>D<-Ka2v}<O2sVJcx=&x=qrOm_
z$S#S%o`t*TLZ|+4s@;(ts$4mACe$$q$ij+?s?RZ27m+iX(1^~L|3uw5*|OjqE!}PS
zq>O79b`9*MTR%-0g5e8FxL^?X$%K@_#Z^^FX<K)7=IbBGvEtd47+#&8qf0q*!Xf%D
z7|K=q2g0Gie5SU3<V%&lHJkA3Muyl<duhbR^*?CYH4rTfRNKos;TKg3Z74}nHnCpP
zw^W>(v+$Ds_V*E4Uc%+@(@O9b2X8~>NQs+7uz0P~8E@>2pxb6I{oi+w5Zs%Vw831b
zsK?=+yljn0st(X#GH=hXx1L|Bm#3xELDGX9O4v8|)!&=bhX_p&G;ma96HDjj-dw*g
zF=wf2{vT;L@4*mKXNOrOFjckg)Ik};s}BTTKpeFSwe_|PVoZ)U(R2?!Yl@ueh?bfn
zfUZ!Gn!7{#U21msC)eDIcsqF}FIyu-xS+CA5JCZOvny#G+0y#Mf32S4sM8U?mIqs6
z2j@s-V(D&rC0DfC+Id66HrwXg+saX6vpykuO*F}3w~*;mCquX>U#flkefyp_m8{?E
z9q$1BE6>Pg(m}xpu_B}~OaNto(C!_zm8R1?qSKai=VefTQN>F_r*9^Vm0|`=f~ysF
zh1}t_)peS>?`UJzUTm@=-r0pHJ@Oyi3FhBznvs;?KhxsD1WU_rF-u1s%QRm01De^T
z?}b00_aLv8^t`|NiDB{{MHF`1dv7Sgf-(+tlBqW^0l`9taYz&J<lX6+w)nw^_piUQ
z=&!$!G{e|q3T5XwN}l9VrySj6mdE-e#v9L!*o@sqBMaIO{`5KY<K*2~72sY8=G&mp
zy10F0*!tvNEg4;BP;zTPvI=RH^Rsj@{>F&k5}@2i3N;%fm29*r7c|aH5DrqVub@8a
zlOv_g&{Zc9f4h&%Uss7(Z-8*6gOa*syI63p_N*)y?kNMyihlMx&Q-pqec6Mp)quUa
zhnq`#9D*rMH!gl=Fh-Y@op(>U+Rc4+xbbA;i6S?n<1KLOg!*kzlW!pYuDrT$B6|g$
zm7UB3{qN1-hll6?(#Op+Hp*1&=<U0+SEs(X5}W8_JRXmqK6#@4ACJf7{|^rK_kP%W
zayUL5@9!TzJN#k1cX;q*?*}m6MCV;k$^~RUjBnjn8M*J|+4I3KNZ(Qb6Lp1^68RtA
zzm^sjO9?T#(s}0e=aa$pwFmGF_`ks@Mcg;x;=Yl);O0h^P_h1CTV+<9Jg<~iF-o#5
z0C{O&#ggi`3n7y0YuV9uxvq$08Gd~Y5Rv^&Mx*O%-IZz=+}vDW>&EgPbkRZiXT*{0
zBe0hq3~j9aFay~hRZ-D}sy%d-$hE=ScQ0RkK6&^4?D_WN^K^;=5rH`p!1J<eD}Y3S
z1W_6yFf63?%Zdzv4{mONN5LPQ5()J4;kC~b6!_{u@yGEe-<}h=8QQY}yt!qY*IqZg
zQ-b&Sqy(+HqIDxMD+^G9%LNoE_p{W^@}2qPW~cxP7F3P!WHj0~U`@6&dNvG=d$y%*
zcmM!WgiXM)05Mzw0nZVDV1_P1j7cgS6U%MVoUoA^*lxP{uJZhEnt}ilaG724s_~SD
zoHJb>-I^8nMF70Zz61OyAK=qh?|(afQ8UJ>#dSdG2?OxF%t<`Fz8+p*n;HEWlMr12
z%MtDoA3L4Fct=fGU(H%QH-|She3D}~k<+_0{E7gLv-*WT(RF;%V_KiQd-?h8(VJH#
z8YVPccbY_C2$RH@tucZGQn$LxQqNo4(A9UVRWad0(ok0S-=hdYj(in>dUG>uoRu*W
zP;Fz%wjKHof5RLLOXj`(Xa3k9`+F@!wxMH7nle{&NbA#*Y%NO3_PrTpmym^E+YSV1
zhGg=$u`ANQwnF{Ro(B8x^8!T)V%!%=bn8Ak?7t^Z5B5v;-_!jk;|KfiKA!9A(U0H)
z#}jpf&J0IL3d85IBulVB6Y%3mNz~DggI8CH3i&9zpVd`o15?fe${kTJ%e=gZTv!AD
zg{rH>mYv=11!v$35G*ADczU3I;`lV3&F~c%dc%?>r$KySwtKT48m~GV{0r%}Re2$M
zkce<FMFEt8jnf!`e`Ye*9JInH3c0$XTe(&3A{}$^c)HAz(i0e~%kUEv?D&J@8DLsK
z>qat_q$p?ZClcTiN0CYc#U-3vS}SQ38ED(7n`>fAVaGTx-x_BL*Z92;(WQ1Zzqb_v
zljr?MHHR@Hg>Iy*$TXaVmn#C7FigY@4F3=J{tq9P+R~l&=dt>q1<rGZRL+$P#JIYm
zJa<}WQwFH`(ypOZMe}hj<KvQA|NhN%`2{ePL{jw*|6>S-pNFeYCK|_-XfSyPn7WXL
zbAh7R=Zld7ebTJ?4QjsbyrGai|6t+|ZD~(uzBf1@C5c7*=4Mbemdr3HSbXpW{FzdL
zN;p?*X%Iqhy3`dd@7RnAbu_c#!u_aLM$W5+Lvm9K8FMqSrmi&;ix{}mtB#AyBEJ6a
zwNB*RI|tu3iKk*Q-vsQG6vgAt706CggT%$vkqox!%*)%Wfri=tQWL<Q?S=_9{MbPw
z>(0n4RHr&Y;*zp+Oy>Ui-!wb#)lXOh#Ys5r4?z-6YkOBtmlrUBQygJ|5%-Tyj!h}<
z{|Y%6>STzci@niFO`L970%xUL<#bkRiUh2nS;6>7<&dCSu}GC$xIZpiTJ$hZ%o3!A
zK`XbIW`(*-C=|UqMW$Cpo`Y2R_x;#^4fcPwOYARUeA^X3hyA~|xA&}U{~tcs|M&Bh
zm|c&%>&VT8!vtLH4bCwMCwU~$z<LxW0{}V{RncEG07genl!HydQCls_H2)VsFbNS6
z;7RV()pkGue0M)hm2)=b^4<jfZx}~S%^EQSav{>8f*l{mz!IcTXc<Qn@WnL0ts#|W
zGmWt*A&~Eh<^UORZN)FS0=vE$7H}xL)VI&kau;mttFs(Gd>&9?DyWj+=4JxEco~^Y
zy*45}cwfHXr$PQ(!(;=}zf=D2??0)?|NX-!5Ay#$o_;%d+fsJFHS7Fd(p}Z!7lDeP
zbA(RWSMREqM)_K2CaYewHZo>+y)Mc@zayQK0r$1F4o^@pF%8uWX_l%=_h4RUH!x3J
z7kfjU0*DRW=$+XC0Kz4++1za^3xKEYw=*?LwVaJ&{dkpyyjv@SP(FD|4~<~{w=Gja
zD*Hp_9_YfM0G!4`_oTL=D<G;ZmJD3A**$S~80$B}bG+qC-F&{aoj*2}PF~{7-4Qj<
z6b9#rgp*R7keQj~*UeL@_{a%etqV-_tgdh6L7{qS$R6y9dwtsVe}Wi8YH#m0mO$73
z&v>u2|Fb_n*gJU8|M&42DGo_kR?#Pjy*FcTt$~v4t0`eMe<pjXaX(J2tW;J{`xl)`
zhW%cs_g?@eB6E~%TR_`PjI6NfU6*MEE3dP%)l<7zevP^4woSaslv~pbP@DY|HvkLo
zf^CIEN(7E9k(IplK+%Mf5_oNsY}?9k7uiM);>o{pt_xPgbvv)=+H`%ax^2h!`di+N
zb$b>##Z)qT6m}6_TSRhaU7H1aq`s4i?Wo4VwI3ThcdPb*z#56ou#{{*`PABq-PJ0{
zI|dafT1%zI<ogqbX86iw6u-XUOLa|t(WoezS)gocIg=xi6Qk5>jp+r7=9fq!S#`VC
z5^}Au?ItS>G+Sbz%^CxJ=Tix&2J<X$PLixNa9){hDJzpoMEo>2shd95YYN@8h$<|>
zi;#ME!6Eg`-wR?;U03vICaFMMHiFH5$jY5mP4Zf?Q?jbR&VIwg^KCs1_J0yiH{<*J
zq1*l+Kie<Ie;pn?d9eTQ<tce_YBDbM_R^KNk{u6S%?9z;-8s6Af6Yd1=<c0-Yuy%T
zHJT-d>}h4Mr)^O3di%F>l{CzMV}6)`k6Vg@&iTJLF3taEPxl`7fA8h#8;w)DvOO)7
zUS&qt1qa>Pu5bydukNUasi5jec9DK(^c<0b8@{dJh8(2r^Z#D_fBVm#jjR5@{fGH~
zAJ0nuzuS1}s*blxKPLWhB^O#BgTbqC^ZmHiN~lQ5QjnYNzOpXNw(rn~wgE3%Vc1u5
za5Yz5)4^42Ft7)~@;0(pW}m97e4|^hShMNEEQjn3C2Aa10S=k+Rjt~Gb)cvQ+EJ*(
ziJ)?q>bRVHo-V6`%uQuy49;da(3fr3(X_T;3oPmwtm`JK_^fOx-CI+*L0(osHb>$_
z)o_|A8uzPN^9?fsWVh3EBueqw2@Snl&3K_4jl(L1&6&nwL;S3j|LyvJGXX#y`v2hB
z(}QyS&y$0P^Z)nqwAuAvcZuF?$UA#7-PU?dfJbecUwu_z6_>~YI2unWHxs6Cf1(+P
z!aH*Yraqjfv(2i4X;WY|%FE9qWr`}PISR)S{a!BN+XZ}sa8DQ&G@#K0oV_?H*juH|
z4?F{prAho4{aHT@d5(z6!ILag!;WK@nOC)-XE#7LslUddQOTxG)Rpt=%!Q(^ThD8y
zTJ}7z)j@Cz(|v(p80nqqZ&ae(X0AJS=UYn9y>olMt@n7YPFacCCEX6#+X0U=uSAw+
z?gSymck(IS2(NQ1Z#~$iK!OnSM9__aDW8?yRNrY>?fb*a`o3-1?`^gg^?!r?=UA+_
zHUZo1zy1CF!;1fR?;-!w{X8~K`-L-0YGSEMlgJhJFiH3*m-zX8EZ^AKAm>(@Z^zg(
zQkEAaSHYX6BazVsmel?gb3xhiHIA_;RjC%J6C0b}tup-ac3qurCC;SQ7uMe?)dp%|
zDPCcV>~5QKshZKRv{dj>RCvhIu!NS+cxCyw>*7m-1q#l28k=*N1=2oNXJx^*e`aXs
z{{wQQE<YWX&TUHL6np`E0rwA|@-%J*zn(Ugvvg|{$aTzZYzL$PaFrPPB#j~+Ame~u
z{xVqsrJBP9<z1}xw!CU_2npB6Eb}tit6M=`>1jc^IEpajuGi3c=}L;*_T}DySzI5T
z)_UG<+aEVKz_DVGRN=L|CT?t1o5_Wlkzc@=^Q(Q4O9k_0($shj(A8Gf6iFHA&N{XX
zy1s(aty3!D2IJWz%`a1i$=qD8hspeSPH6V}mAVc}8V62IX`?&W3>Id2^L3V>63$q-
zm9HAns1)3*tAruWi;~y{<oaAfP@igJ7tjPTC|d`|WEZIOuY3YN_Q=5TsWcWQ30)iY
z)kUB^sh==3Lu_sGUm`qThzZymk4sdMeOlrp7FUV3iIM9ZyMCj0pX1jmS`vmS!(#cO
z8u?uL)Jwz^T5r5b)mg+g71^u^b*>C{`_5k8QiTSoq7)?pU5Wa(a%MX%7H{sPfPq?h
z9}_IHbn31}P<VeUWP*lfDhU=^jXy76EV=oe^xjWXJERf=tSlY9HPlo|6_Lvg%CTHF
zfSa31XK?}NYG0|;leDSqeqVQ=NmjblR%Pre1TzWti^w8!QIr)8qqnyY+5@HK1KFHc
zTQgA-j~9?j@zx685u0;+(T+F65mFf%sMuMhx=J#OLNCNDt6r9>9`HP;-189<!N?VE
z6*MZ?7S<>$fTyny@lqz288u+#-=A0VivBeI>0soIbdkOwwr8_whO`E@JlDl@`BOJm
z(`5yc?9!8FZfk%itJ%Sgt;}Dz#im%dv_q~jEtD_ophhG+!6*ssV(mtWUMAG4)6%^y
zrHrWY%qlobHiKF|o~VO6-Ls=jQkO4_sbiQ9CaAX2OoK*qzVxb5U92-EncJ^P&6c68
z(J~!cCD$Tf$|)lYdHh;6Or^boLTOVBmRu+AUVc74De;OD1V1xcV*#twpYPGE&Lph~
z^s1?>dC;W6PH0%_y~KX?daib~vZ5<8Q|(OG_xct}nU{B|V5LwtH_@uoch5VgX`QyJ
z=w4sx-dgqK6sT&=Q8{zd3TkvSn`s45we#JF;RRv>bL5#!`p-XZKh}J_^J!udEWD`O
z?y9yGsr!zzhQ>-Uk9#!Ij(i8=HI-IBWL<8-hGOPnm@Oc*kR(BfJ#RWx>6brPC-&_~
z)=bF;25BRJK(T8Pb=0gyUA1v*@Y^l5yRpn_?Vs8xLEx^`v|%Le(XvaVX79N$K%1WD
zh0W#CMtB3*-K^J!M_rfs{`W?@%(u>4MlQk^h#<~S7@eX{)1*+kMe#5ML)^dFV)52?
z`>p``Sp3a4ZLKw0e-?R@25{?)F3e!Pfl_Y@yEbXnGf@Ic7RvstmgMO)FK7O!mXhQ5
zjzq>Zw14%KSr%Mlfwa)C@8V&d#ll7w2UWjUozH8{?F4hHWQTLB&8Jmi(7<LAEpq>=
z;R3BRS%G=m8CRdjFGAX#V5~Yk`hs^Dl}p(7bu0D0%fV(wY#jf(qJ3DR)KwyvK+>uV
zP>}^R+q{S%j_sax7UEXk@&~n3(cL=+00sf#{0$9JC3jlcW9)$B)N&`**hQ~axZB%w
zOXIEqEbfLl-EsUEs_Y=v7Ss)?t%6F0$LLR$pTDbO!JcqGXvQ24oo35<CaT4oP-=v<
z`5;MMht1*^#fezH#B2htZ;D|yUpr3f-}PyT{}Yno)xUC~Oi-ZivtKh3u;cv4-uP)L
z|LgwV`0&|7{NH^%CBam<Cb%;V_z4Ybg8YVk<G@PnHN2CszamE8OyFO6tI*2C%Q+H8
zAR5=|H08@Fy)rMYFAjWsB#S=!WZo;68u<9AC+%Bqc2i9<B&UV2?$)>H0<njDod1ST
zLH_#-6vbG@l5Db%uKXW|hvoZ!pNyY8eUSh6@oa$;C<J2q>Tx~x;BtWon5H;Vcd8^X
zIEQn@{lOMETVM`&nka7@;0qK*U>?z_j@-dyz6%(NpuiVM<-v2_LlO?Q06}wo!|-FB
z4-JJ{T>n2iK2R%mN>oh=5=amO5hlnV_%BaCp9;#*U<;UgseXHL3PQ~Iz@K9=QvYi3
z2mbUgHd6oE7mN8w{$u~-7i5$-G=;%=ny9<)_~1vMUnYYe{V6;j{OF5V{-zAi2S5IQ
zgDvnIWSFKL9KU?U2Y$lnA1Dw5ABPBzba6)i82A@FpdlI!1}VWpn^NDZ#4ODJ_pgp#
zzIo-x;b!~jnEy|nJ}J-tgS}@D_TRlcTj0obX$_9Jnspx&Mq?xvDCIt;Af!PWBcctZ
zPmdQuBz!U&6$*_)8gT6(!(={E>j+WYRoj^i{tnI-sL&@^KoUlX>)TQ|;L_ZhE<q4s
z`OCRmR!W{=0U!rrfd+pECt3F@5*sle91C^TGY0`=>iV(}g{f&k3ZXfpX=23@U^Erx
zdh>YjcYT#30s&<V1p+V>Abf!sz(k<A4tC2RKrzJ8E;x}GyiCP%7f=S?CHxmeFp_W#
z{tjToX$c&TBSZpqQxypTCJQ`O+XC{N#@`<dwzj|tLn_pkV}bZ!;M_yG=kGoF4^`$D
zB*6Q8m;IQ`=wR^s@4p9>a2g?X4<BGCp#X*<$j8c)He{-zPpbo&f0P1skxu2v%9cEJ
zT_1N^O_LA`BzqhTKA$24KK`D4{5@w9dmW%+5BZ1s=d&y|+EKS~+fC;Jm-(L+lE;J#
z7)3w@2vpI-=JUt*uU@}8I(?-s3;tA#Y|(e?K&@SnDKpHyRrq@cOi@HHB{aIU+ifS3
zrd$s^KM>rGX-evG)tD%~%uq}()I^FDBRgCZ&^Vz45y1iEoCX*Qt9kPaDHUueQWfM|
zb8D$zKs|$_6Zx!UAM}$sgUZ@yLSGd?<$?bA;@6}1XP<!QnZDeCbt`s5tIKu6x&_WC
z*z?Dd=o$CKFfjpdc}Hgc1T-G~f#Vp5OHRqCTz)5C3W7_>?X8{JU7;TfysQEWbw$K#
zyK;)#IOy7Uf*~}DAts|B4oA(M?D&IMSAs!H5>Fara=EGK!j)@Q->rLrAt(ntIT|A0
z_LZ`bP@$L-3OtSUWvTiCT!!Fz&X@#Uf@avHu{lG`3hs}_d3!6mOd~q&Ll;%XpVJ+H
z37{<0V8rlTU!Mt+gwcdyb-i%-N6LjHmxUBv3DiVUU-8xNb=N+sOA&tum;*vVM2Xa%
z#u!JTukK_2SX<E%$HjnoH3<|E5ed*J<(SMpnBY-}5{9(e_2wxK(P+zLA6ALJy^Fp5
z{T;2VUbymdFi=zPMal(@@n1%}>RAo`fo5`fVPrZc^M+Z8iC|O%^I6T%tsrmD6APr3
zkvCQC*{P4oe8-oQlOv>LU?#{Vhv~f)u30NY0^$gTY6v9Jcfp0a0Y4Llk2v_KPYx)r
z=cmX1$oX?ese6_ZS%D)^P#Jby`J^hw_<~-V6A3+))E(P@1^X<(qXL(E4$8Oaqig*?
zuGs(2_MScD|Gk%|B(Ns~0F2jn0t8FZx4Le9cpjdI=izyHZuk8E0RRC1|AZk@<N#0s
E03CU*g8%>k

literal 0
HcmV?d00001

diff --git a/sregym/observer/prometheus/prometheus/values.schema.json b/sregym/observer/prometheus/prometheus/values.schema.json
new file mode 100644
index 0000000..98c7de8
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/values.schema.json
@@ -0,0 +1,738 @@
+{
+    "$schema": "http://json-schema.org/schema#",
+    "type": "object",
+    "properties": {
+        "alertRelabelConfigs": {
+            "type": "object"
+        },
+        "alertmanager": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                },
+                "persistence": {
+                    "type": "object",
+                    "properties": {
+                        "size": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "podSecurityContext": {
+                    "type": "object",
+                    "properties": {
+                        "fsGroup": {
+                            "type": "integer"
+                        },
+                        "runAsGroup": {
+                            "type": "integer"
+                        },
+                        "runAsNonRoot": {
+                            "type": "boolean"
+                        },
+                        "runAsUser": {
+                            "type": "integer"
+                        }
+                    }
+                }
+            }
+        },
+        "configmapReload": {
+            "type": "object",
+            "properties": {
+                "env": {
+                    "type": "array"
+                },
+                "prometheus": {
+                    "type": "object",
+                    "properties": {
+                        "containerSecurityContext": {
+                            "type": "object"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "extraArgs": {
+                            "type": "object"
+                        },
+                        "extraConfigmapMounts": {
+                            "type": "array"
+                        },
+                        "extraVolumeDirs": {
+                            "type": "array"
+                        },
+                        "extraVolumeMounts": {
+                            "type": "array"
+                        },
+                        "image": {
+                            "type": "object",
+                            "properties": {
+                                "digest": {
+                                    "type": "string"
+                                },
+                                "pullPolicy": {
+                                    "type": "string"
+                                },
+                                "repository": {
+                                    "type": "string"
+                                },
+                                "tag": {
+                                    "type": "string"
+                                }
+                            }
+                        },
+                        "name": {
+                            "type": "string"
+                        },
+                        "resources": {
+                            "type": "object"
+                        }
+                    }
+                },
+                "reloadUrl": {
+                    "type": "string"
+                }
+            }
+        },
+        "extraManifests": {
+            "type": "array"
+        },
+        "extraScrapeConfigs": {
+            "type": "string"
+        },
+        "forceNamespace": {
+            "type": "string"
+        },
+        "imagePullSecrets": {
+            "type": "array"
+        },
+        "kube-state-metrics": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                }
+            }
+        },
+        "networkPolicy": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                }
+            }
+        },
+        "podSecurityPolicy": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                }
+            }
+        },
+        "prometheus-node-exporter": {
+            "type": "object",
+            "properties": {
+                "containerSecurityContext": {
+                    "type": "object",
+                    "properties": {
+                        "allowPrivilegeEscalation": {
+                            "type": "boolean"
+                        }
+                    }
+                },
+                "enabled": {
+                    "type": "boolean"
+                },
+                "rbac": {
+                    "type": "object",
+                    "properties": {
+                        "pspEnabled": {
+                            "type": "boolean"
+                        }
+                    }
+                }
+            }
+        },
+        "prometheus-pushgateway": {
+            "type": "object",
+            "properties": {
+                "enabled": {
+                    "type": "boolean"
+                },
+                "serviceAnnotations": {
+                    "type": "object",
+                    "properties": {
+                        "prometheus.io/probe": {
+                            "type": "string"
+                        }
+                    }
+                }
+            }
+        },
+        "rbac": {
+            "type": "object",
+            "properties": {
+                "create": {
+                    "type": "boolean"
+                }
+            }
+        },
+        "ruleFiles": {
+            "type": "object"
+        },
+        "server": {
+            "type": "object",
+            "properties": {
+                "affinity": {
+                    "type": "object"
+                },
+                "alertmanagers": {
+                    "type": "array"
+                },
+                "baseURL": {
+                    "type": "string"
+                },
+                "clusterRoleNameOverride": {
+                    "type": "string"
+                },
+                "command": {
+                    "type": "array"
+                },
+                "configMapOverrideName": {
+                    "type": "string"
+                },
+                "configPath": {
+                    "type": "string"
+                },
+                "containerSecurityContext": {
+                    "type": "object"
+                },
+                "defaultFlagsOverride": {
+                    "type": "array"
+                },
+                "deploymentAnnotations": {
+                    "type": "object"
+                },
+                "dnsConfig": {
+                    "type": "object"
+                },
+                "dnsPolicy": {
+                    "type": "string"
+                },
+                "emptyDir": {
+                    "type": "object",
+                    "properties": {
+                        "sizeLimit": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "enableServiceLinks": {
+                    "type": "boolean"
+                },
+                "env": {
+                    "type": "array"
+                },
+                "exemplars": {
+                    "type": "object"
+                },
+                "extraArgs": {
+                    "type": "object"
+                },
+                "extraConfigmapLabels": {
+                    "type": "object"
+                },
+                "extraConfigmapMounts": {
+                    "type": "array"
+                },
+                "extraFlags": {
+                    "type": "array",
+                    "items": {
+                        "type": "string"
+                    }
+                },
+                "extraHostPathMounts": {
+                    "type": "array"
+                },
+                "extraInitContainers": {
+                    "type": "array"
+                },
+                "extraSecretMounts": {
+                    "type": "array"
+                },
+                "extraVolumeMounts": {
+                    "type": "array"
+                },
+                "extraVolumes": {
+                    "type": "array"
+                },
+                "global": {
+                    "type": "object",
+                    "properties": {
+                        "evaluation_interval": {
+                            "type": "string"
+                        },
+                        "scrape_interval": {
+                            "type": "string"
+                        },
+                        "scrape_timeout": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "hostAliases": {
+                    "type": "array"
+                },
+                "hostNetwork": {
+                    "type": "boolean"
+                },
+                "image": {
+                    "type": "object",
+                    "properties": {
+                        "digest": {
+                            "type": "string"
+                        },
+                        "pullPolicy": {
+                            "type": "string"
+                        },
+                        "repository": {
+                            "type": "string"
+                        },
+                        "tag": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "ingress": {
+                    "type": "object",
+                    "properties": {
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "extraLabels": {
+                            "type": "object"
+                        },
+                        "extraPaths": {
+                            "type": "array"
+                        },
+                        "hosts": {
+                            "type": "array"
+                        },
+                        "path": {
+                            "type": "string"
+                        },
+                        "pathType": {
+                            "type": "string"
+                        },
+                        "tls": {
+                            "type": "array"
+                        }
+                    }
+                },
+                "livenessProbeFailureThreshold": {
+                    "type": "integer"
+                },
+                "livenessProbeInitialDelay": {
+                    "type": "integer"
+                },
+                "livenessProbePeriodSeconds": {
+                    "type": "integer"
+                },
+                "livenessProbeSuccessThreshold": {
+                    "type": "integer"
+                },
+                "livenessProbeTimeout": {
+                    "type": "integer"
+                },
+                "name": {
+                    "type": "string"
+                },
+                "nodeSelector": {
+                    "type": "object"
+                },
+                "persistentVolume": {
+                    "type": "object",
+                    "properties": {
+                        "accessModes": {
+                            "type": "array",
+                            "items": {
+                                "type": "string"
+                            }
+                        },
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "existingClaim": {
+                            "type": "string"
+                        },
+                        "labels": {
+                            "type": "object"
+                        },
+                        "mountPath": {
+                            "type": "string"
+                        },
+                        "size": {
+                            "type": "string"
+                        },
+                        "statefulSetNameOverride": {
+                            "type": "string"
+                        },
+                        "subPath": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "podAnnotations": {
+                    "type": "object"
+                },
+                "podDisruptionBudget": {
+                    "type": "object",
+                    "properties": {
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "maxUnavailable": {
+                            "type": [
+                                "string",
+                                "integer"
+                            ]
+                        }
+                    }
+                },
+                "podLabels": {
+                    "type": "object"
+                },
+                "podSecurityPolicy": {
+                    "type": "object",
+                    "properties": {
+                        "annotations": {
+                            "type": "object"
+                        }
+                    }
+                },
+                "portName": {
+                    "type": "string"
+                },
+                "prefixURL": {
+                    "type": "string"
+                },
+                "priorityClassName": {
+                    "type": "string"
+                },
+                "probeHeaders": {
+                    "type": "array"
+                },
+                "probeScheme": {
+                    "type": "string"
+                },
+                "readinessProbeFailureThreshold": {
+                    "type": "integer"
+                },
+                "readinessProbeInitialDelay": {
+                    "type": "integer"
+                },
+                "readinessProbePeriodSeconds": {
+                    "type": "integer"
+                },
+                "readinessProbeSuccessThreshold": {
+                    "type": "integer"
+                },
+                "readinessProbeTimeout": {
+                    "type": "integer"
+                },
+                "releaseNamespace": {
+                    "type": "boolean"
+                },
+                "remoteRead": {
+                    "type": "array"
+                },
+                "remoteWrite": {
+                    "type": "array"
+                },
+                "replicaCount": {
+                    "type": "integer"
+                },
+                "resources": {
+                    "type": "object"
+                },
+                "retention": {
+                    "type": "string"
+                },
+                "retentionSize": {
+                    "type": "string"
+                },
+                "revisionHistoryLimit": {
+                    "type": "integer"
+                },
+                "securityContext": {
+                    "type": "object",
+                    "properties": {
+                        "fsGroup": {
+                            "type": "integer"
+                        },
+                        "runAsGroup": {
+                            "type": "integer"
+                        },
+                        "runAsNonRoot": {
+                            "type": "boolean"
+                        },
+                        "runAsUser": {
+                            "type": "integer"
+                        }
+                    }
+                },
+                "service": {
+                    "type": "object",
+                    "properties": {
+                        "additionalPorts": {
+                            "type": "array"
+                        },
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "clusterIP": {
+                            "type": "string"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "externalIPs": {
+                            "type": "array"
+                        },
+                        "gRPC": {
+                            "type": "object",
+                            "properties": {
+                                "enabled": {
+                                    "type": "boolean"
+                                },
+                                "servicePort": {
+                                    "type": "integer"
+                                }
+                            }
+                        },
+                        "labels": {
+                            "type": "object"
+                        },
+                        "loadBalancerIP": {
+                            "type": "string"
+                        },
+                        "loadBalancerSourceRanges": {
+                            "type": "array"
+                        },
+                        "servicePort": {
+                            "type": "integer"
+                        },
+                        "sessionAffinity": {
+                            "type": "string"
+                        },
+                        "statefulsetReplica": {
+                            "type": "object",
+                            "properties": {
+                                "enabled": {
+                                    "type": "boolean"
+                                },
+                                "replica": {
+                                    "type": "integer"
+                                }
+                            }
+                        },
+                        "type": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "sidecarContainers": {
+                    "type": "object"
+                },
+                "sidecarTemplateValues": {
+                    "type": "object"
+                },
+                "startupProbe": {
+                    "type": "object",
+                    "properties": {
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "failureThreshold": {
+                            "type": "integer"
+                        },
+                        "periodSeconds": {
+                            "type": "integer"
+                        },
+                        "timeoutSeconds": {
+                            "type": "integer"
+                        }
+                    }
+                },
+                "statefulSet": {
+                    "type": "object",
+                    "properties": {
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "enabled": {
+                            "type": "boolean"
+                        },
+                        "headless": {
+                            "type": "object",
+                            "properties": {
+                                "annotations": {
+                                    "type": "object"
+                                },
+                                "gRPC": {
+                                    "type": "object",
+                                    "properties": {
+                                        "enabled": {
+                                            "type": "boolean"
+                                        },
+                                        "servicePort": {
+                                            "type": "integer"
+                                        }
+                                    }
+                                },
+                                "labels": {
+                                    "type": "object"
+                                },
+                                "servicePort": {
+                                    "type": "integer"
+                                }
+                            }
+                        },
+                        "labels": {
+                            "type": "object"
+                        },
+                        "podManagementPolicy": {
+                            "type": "string"
+                        },
+                        "pvcDeleteOnStsDelete": {
+                            "type": "boolean"
+                        },
+                        "pvcDeleteOnStsScale": {
+                            "type": "boolean"
+                        }
+                    }
+                },
+                "storagePath": {
+                    "type": "string"
+                },
+                "strategy": {
+                    "type": "object",
+                    "properties": {
+                        "type": {
+                            "type": "string"
+                        }
+                    }
+                },
+                "tcpSocketProbeEnabled": {
+                    "type": "boolean"
+                },
+                "terminationGracePeriodSeconds": {
+                    "type": "integer"
+                },
+                "tolerations": {
+                    "type": "array"
+                },
+                "topologySpreadConstraints": {
+                    "type": "array"
+                },
+                "tsdb": {
+                    "type": "object"
+                },
+                "verticalAutoscaler": {
+                    "type": "object",
+                    "properties": {
+                        "enabled": {
+                            "type": "boolean"
+                        }
+                    }
+                }
+            }
+        },
+        "scrapeConfigFiles": {
+            "type": "array"
+        },
+        "serverFiles": {
+            "type": "object",
+            "properties": {
+                "alerting_rules.yml": {
+                    "type": "object"
+                },
+                "alerts": {
+                    "type": "object"
+                },
+                "prometheus.yml": {
+                    "type": "object",
+                    "properties": {
+                        "rule_files": {
+                            "type": "array",
+                            "items": {
+                                "type": "string"
+                            }
+                        },
+                        "scrape_configs": {
+                            "type": "array",
+                            "items": {
+                                "type": "object",
+                                "properties": {
+                                    "job_name": {
+                                        "type": "string"
+                                    },
+                                    "static_configs": {
+                                        "type": "array",
+                                        "items": {
+                                            "type": "object",
+                                            "properties": {
+                                                "targets": {
+                                                    "type": "array",
+                                                    "items": {
+                                                        "type": "string"
+                                                    }
+                                                }
+                                            }
+                                        }
+                                    }
+                                }
+                            }
+                        }
+                    }
+                },
+                "recording_rules.yml": {
+                    "type": "object"
+                },
+                "rules": {
+                    "type": "object"
+                }
+            }
+        },
+        "serviceAccounts": {
+            "type": "object",
+            "properties": {
+                "server": {
+                    "type": "object",
+                    "properties": {
+                        "annotations": {
+                            "type": "object"
+                        },
+                        "create": {
+                            "type": "boolean"
+                        },
+                        "name": {
+                            "type": "string"
+                        },
+                        "automountServiceAccountToken": {
+                            "type": "boolean"
+                        }
+                    }
+                }
+            }
+        }
+    }
+}
diff --git a/sregym/observer/prometheus/prometheus/values.yaml b/sregym/observer/prometheus/prometheus/values.yaml
new file mode 100644
index 0000000..1bde292
--- /dev/null
+++ b/sregym/observer/prometheus/prometheus/values.yaml
@@ -0,0 +1,896 @@
+# yaml-language-server: $schema=values.schema.json
+# Default values for prometheus.
+# This is a YAML-formatted file.
+# Declare variables to be passed into your templates.
+
+rbac:
+  create: true
+
+podSecurityPolicy:
+  enabled: false
+
+imagePullSecrets: []
+# - name: "image-pull-secret"
+
+## Define serviceAccount names for components. Defaults to component's fully qualified name.
+##
+serviceAccounts:
+  server:
+    create: true
+    name: ""
+    annotations: {}
+    # automountServiceAccountToken:
+
+## Additional labels to attach to all resources
+commonMetaLabels: {}
+
+## Monitors ConfigMap changes and POSTs to a URL
+## Ref: https://github.com/prometheus-operator/prometheus-operator/tree/main/cmd/prometheus-config-reloader
+##
+configmapReload:
+  ## URL for configmap-reload to use for reloads
+  ##
+  reloadUrl: ""
+
+  ## env sets environment variables to pass to the container. Can be set as name/value pairs,
+  ## read from secrets or configmaps.
+  env: []
+    # - name: SOMEVAR
+    #   value: somevalue
+    # - name: PASSWORD
+    #   valueFrom:
+    #     secretKeyRef:
+    #       name: mysecret
+    #       key: password
+    #       optional: false
+
+  prometheus:
+    ## If false, the configmap-reload container will not be deployed
+    ##
+    enabled: true
+
+    ## configmap-reload container name
+    ##
+    name: configmap-reload
+
+    ## configmap-reload container image
+    ##
+    image:
+      repository: quay.io/prometheus-operator/prometheus-config-reloader
+      tag: v0.67.0
+      # When digest is set to a non-empty value, images will be pulled by digest (regardless of tag value).
+      digest: ""
+      pullPolicy: IfNotPresent
+
+    # containerPort: 9533
+
+    ## Additional configmap-reload container arguments
+    ##
+    extraArgs: {}
+
+    ## Additional configmap-reload volume directories
+    ##
+    extraVolumeDirs: []
+
+    ## Additional configmap-reload volume mounts
+    ##
+    extraVolumeMounts: []
+
+    ## Additional configmap-reload mounts
+    ##
+    extraConfigmapMounts: []
+      # - name: prometheus-alerts
+      #   mountPath: /etc/alerts.d
+      #   subPath: ""
+      #   configMap: prometheus-alerts
+      #   readOnly: true
+
+    ## Security context to be added to configmap-reload container
+    containerSecurityContext: {}
+
+    ## configmap-reload resource requests and limits
+    ## Ref: http://kubernetes.io/docs/user-guide/compute-resources/
+    ##
+    resources: {}
+
+server:
+  ## Prometheus server container name
+  ##
+  name: server
+
+  ## Use a ClusterRole (and ClusterRoleBinding)
+  ## - If set to false - we define a RoleBinding in the defined namespaces ONLY
+  ##
+  ## NB: because we need a Role with nonResourceURL's ("/metrics") - you must get someone with Cluster-admin privileges to define this role for you, before running with this setting enabled.
+  ##     This makes prometheus work - for users who do not have ClusterAdmin privs, but wants prometheus to operate on their own namespaces, instead of clusterwide.
+  ##
+  ## You MUST also set namespaces to the ones you have access to and want monitored by Prometheus.
+  ##
+  # useExistingClusterRoleName: nameofclusterrole
+
+  ## If set it will override prometheus.server.fullname value for ClusterRole and ClusterRoleBinding
+  ##
+  clusterRoleNameOverride: ""
+
+  # Enable only the release namespace for monitoring. By default all namespaces are monitored.
+  # If releaseNamespace and namespaces are both set a merged list will be monitored.
+  releaseNamespace: false
+
+  ## namespaces to monitor (instead of monitoring all - clusterwide). Needed if you want to run without Cluster-admin privileges.
+  # namespaces:
+  #   - yournamespace
+
+  # sidecarContainers - add more containers to prometheus server
+  # Key/Value where Key is the sidecar `- name: <Key>`
+  # Example:
+  #   sidecarContainers:
+  #      webserver:
+  #        image: nginx
+  # OR for adding OAuth authentication to Prometheus
+  #   sidecarContainers:
+  #     oauth-proxy:
+  #       image: quay.io/oauth2-proxy/oauth2-proxy:v7.1.2
+  #       args:
+  #       - --upstream=http://127.0.0.1:9090
+  #       - --http-address=0.0.0.0:8081
+  #       - ...
+  #       ports:
+  #       - containerPort: 8081
+  #         name: oauth-proxy
+  #         protocol: TCP
+  #       resources: {}
+  sidecarContainers: {}
+
+  # sidecarTemplateValues - context to be used in template for sidecarContainers
+  # Example:
+  #   sidecarTemplateValues: *your-custom-globals
+  #   sidecarContainers:
+  #     webserver: |-
+  #       {{ include "webserver-container-template" . }}
+  # Template for `webserver-container-template` might looks like this:
+  #   image: "{{ .Values.server.sidecarTemplateValues.repository }}:{{ .Values.server.sidecarTemplateValues.tag }}"
+  #   ...
+  #
+  sidecarTemplateValues: {}
+
+  ## Prometheus server container image
+  ##
+  image:
+    repository: quay.io/prometheus/prometheus
+    # if not set appVersion field from Chart.yaml is used
+    tag: ""
+    # When digest is set to a non-empty value, images will be pulled by digest (regardless of tag value).
+    digest: ""
+    pullPolicy: IfNotPresent
+
+  ## Prometheus server command
+  ##
+  command: []
+
+  ## prometheus server priorityClassName
+  ##
+  priorityClassName: ""
+
+  ## EnableServiceLinks indicates whether information about services should be injected
+  ## into pod's environment variables, matching the syntax of Docker links.
+  ## WARNING: the field is unsupported and will be skipped in K8s prior to v1.13.0.
+  ##
+  enableServiceLinks: true
+
+  ## The URL prefix at which the container can be accessed. Useful in the case the '-web.external-url' includes a slug
+  ## so that the various internal URLs are still able to access as they are in the default case.
+  ## (Optional)
+  prefixURL: ""
+
+  ## External URL which can access prometheus
+  ## Maybe same with Ingress host name
+  baseURL: ""
+
+  ## Additional server container environment variables
+  ##
+  ## You specify this manually like you would a raw deployment manifest.
+  ## This means you can bind in environment variables from secrets.
+  ##
+  ## e.g. static environment variable:
+  ##  - name: DEMO_GREETING
+  ##    value: "Hello from the environment"
+  ##
+  ## e.g. secret environment variable:
+  ## - name: USERNAME
+  ##   valueFrom:
+  ##     secretKeyRef:
+  ##       name: mysecret
+  ##       key: username
+  env: []
+
+  # List of flags to override default parameters, e.g:
+  # - --enable-feature=agent
+  # - --storage.agent.retention.max-time=30m
+  # - --config.file=/etc/config/prometheus.yml
+  defaultFlagsOverride: []
+
+  extraFlags:
+    - web.enable-lifecycle
+    ## web.enable-admin-api flag controls access to the administrative HTTP API which includes functionality such as
+    ## deleting time series. This is disabled by default.
+    # - web.enable-admin-api
+    ##
+    ## storage.tsdb.no-lockfile flag controls BD locking
+    # - storage.tsdb.no-lockfile
+    ##
+    ## storage.tsdb.wal-compression flag enables compression of the write-ahead log (WAL)
+    # - storage.tsdb.wal-compression
+
+  ## Path to a configuration file on prometheus server container FS
+  configPath: /etc/config/prometheus.yml
+
+  ### The data directory used by prometheus to set --storage.tsdb.path
+  ### When empty server.persistentVolume.mountPath is used instead
+  storagePath: ""
+
+  global:
+    ## How frequently to scrape targets by default
+    ##
+    scrape_interval: 1m
+    ## How long until a scrape request times out
+    ##
+    scrape_timeout: 10s
+    ## How frequently to evaluate rules
+    ##
+    evaluation_interval: 1m
+  ## https://prometheus.io/docs/prometheus/latest/configuration/configuration/#remote_write
+  ##
+  remoteWrite: []
+  ## https://prometheus.io/docs/prometheus/latest/configuration/configuration/#remote_read
+  ##
+  remoteRead: []
+
+  ## https://prometheus.io/docs/prometheus/latest/configuration/configuration/#tsdb
+  ##
+  tsdb: {}
+    # out_of_order_time_window: 0s
+
+  ## https://prometheus.io/docs/prometheus/latest/configuration/configuration/#exemplars
+  ## Must be enabled via --enable-feature=exemplar-storage
+  ##
+  exemplars: {}
+    # max_exemplars: 100000
+
+  ## Custom HTTP headers for Liveness/Readiness/Startup Probe
+  ##
+  ## Useful for providing HTTP Basic Auth to healthchecks
+  probeHeaders: []
+    # - name: "Authorization"
+    #   value: "Bearer ABCDEabcde12345"
+
+  ## Additional Prometheus server container arguments
+  ##
+  extraArgs: {}
+
+  ## Additional InitContainers to initialize the pod
+  ##
+  extraInitContainers: []
+
+  ## Additional Prometheus server Volume mounts
+  ##
+  extraVolumeMounts: []
+
+  ## Additional Prometheus server Volumes
+  ##
+  extraVolumes: []
+
+  ## Additional Prometheus server hostPath mounts
+  ##
+  extraHostPathMounts: []
+    # - name: certs-dir
+    #   mountPath: /etc/kubernetes/certs
+    #   subPath: ""
+    #   hostPath: /etc/kubernetes/certs
+    #   readOnly: true
+
+  extraConfigmapMounts: []
+    # - name: certs-configmap
+    #   mountPath: /prometheus
+    #   subPath: ""
+    #   configMap: certs-configmap
+    #   readOnly: true
+
+  ## Additional Prometheus server Secret mounts
+  # Defines additional mounts with secrets. Secrets must be manually created in the namespace.
+  extraSecretMounts: []
+    # - name: secret-files
+    #   mountPath: /etc/secrets
+    #   subPath: ""
+    #   secretName: prom-secret-files
+    #   readOnly: true
+
+  ## ConfigMap override where fullname is {{.Release.Name}}-{{.Values.server.configMapOverrideName}}
+  ## Defining configMapOverrideName will cause templates/server-configmap.yaml
+  ## to NOT generate a ConfigMap resource
+  ##
+  configMapOverrideName: ""
+
+  ## Extra labels for Prometheus server ConfigMap (ConfigMap that holds serverFiles)
+  extraConfigmapLabels: {}
+
+  ingress:
+    ## If true, Prometheus server Ingress will be created
+    ##
+    enabled: false
+
+    # For Kubernetes >= 1.18 you should specify the ingress-controller via the field ingressClassName
+    # See https://kubernetes.io/blog/2020/04/02/improvements-to-the-ingress-api-in-kubernetes-1.18/#specifying-the-class-of-an-ingress
+    # ingressClassName: nginx
+
+    ## Prometheus server Ingress annotations
+    ##
+    annotations: {}
+    #   kubernetes.io/ingress.class: nginx
+    #   kubernetes.io/tls-acme: 'true'
+
+    ## Prometheus server Ingress additional labels
+    ##
+    extraLabels: {}
+
+    ## Redirect ingress to an additional defined port on the service
+    # servicePort: 8081
+
+    ## Prometheus server Ingress hostnames with optional path
+    ## Must be provided if Ingress is enabled
+    ##
+    hosts: []
+    #   - prometheus.domain.com
+    #   - domain.com/prometheus
+
+    path: /
+
+    # pathType is only for k8s >= 1.18
+    pathType: Prefix
+
+    ## Extra paths to prepend to every host configuration. This is useful when working with annotation based services.
+    extraPaths: []
+    # - path: /*
+    #   backend:
+    #     serviceName: ssl-redirect
+    #     servicePort: use-annotation
+
+    ## Prometheus server Ingress TLS configuration
+    ## Secrets must be manually created in the namespace
+    ##
+    tls: []
+    #   - secretName: prometheus-server-tls
+    #     hosts:
+    #       - prometheus.domain.com
+
+  ## Server Deployment Strategy type
+  strategy:
+    type: Recreate
+
+  ## hostAliases allows adding entries to /etc/hosts inside the containers
+  hostAliases: []
+  #   - ip: "127.0.0.1"
+  #     hostnames:
+  #       - "example.com"
+
+  ## Node tolerations for server scheduling to nodes with taints
+  ## Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/
+  ##
+  tolerations: []
+    # - key: "key"
+    #   operator: "Equal|Exists"
+    #   value: "value"
+    #   effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
+
+  ## Node labels for Prometheus server pod assignment
+  ## Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/
+  ##
+  nodeSelector: {}
+
+  ## Pod affinity
+  ##
+  affinity: {}
+
+  ## Pod topology spread constraints
+  ## ref. https://kubernetes.io/docs/concepts/scheduling-eviction/topology-spread-constraints/
+  topologySpreadConstraints: []
+
+  ## PodDisruptionBudget settings
+  ## ref: https://kubernetes.io/docs/concepts/workloads/pods/disruptions/
+  ##
+  podDisruptionBudget:
+    enabled: false
+    maxUnavailable: 1
+    # minAvailable: 1
+    ## unhealthyPodEvictionPolicy is available since 1.27.0 (beta)
+    ## https://kubernetes.io/docs/tasks/run-application/configure-pdb/#unhealthy-pod-eviction-policy
+    # unhealthyPodEvictionPolicy: IfHealthyBudget
+
+  ## Use an alternate scheduler, e.g. "stork".
+  ## ref: https://kubernetes.io/docs/tasks/administer-cluster/configure-multiple-schedulers/
+  ##
+  # schedulerName:
+
+  persistentVolume:
+    ## If true, Prometheus server will create/use a Persistent Volume Claim
+    ## If false, use emptyDir
+    ##
+    enabled: true
+
+    ## If set it will override the name of the created persistent volume claim
+    ## generated by the stateful set.
+    ##
+    statefulSetNameOverride: ""
+
+    ## Prometheus server data Persistent Volume access modes
+    ## Must match those of existing PV or dynamic provisioner
+    ## Ref: http://kubernetes.io/docs/user-guide/persistent-volumes/
+    ##
+    accessModes:
+      - ReadWriteOnce
+
+    ## Prometheus server data Persistent Volume labels
+    ##
+    labels: {}
+
+    ## Prometheus server data Persistent Volume annotations
+    ##
+    annotations: {}
+
+    ## Prometheus server data Persistent Volume existing claim name
+    ## Requires server.persistentVolume.enabled: true
+    ## If defined, PVC must be created manually before volume will be bound
+    existingClaim: ""
+
+    ## Prometheus server data Persistent Volume mount root path
+    ##
+    mountPath: /data
+
+    ## Prometheus server data Persistent Volume size
+    ##
+    size: 8Gi
+
+    ## Prometheus server data Persistent Volume Storage Class
+    ## If defined, storageClassName: <storageClass>
+    ## If set to "-", storageClassName: "", which disables dynamic provisioning
+    ## If undefined (the default) or set to null, no storageClassName spec is
+    ##   set, choosing the default provisioner.  (gp2 on AWS, standard on
+    ##   GKE, AWS & OpenStack)
+    ## yinfang
+    storageClass: "openebs-hostpath"
+
+    ## Prometheus server data Persistent Volume Binding Mode
+    ## If defined, volumeBindingMode: <volumeBindingMode>
+    ## If undefined (the default) or set to null, no volumeBindingMode spec is
+    ##   set, choosing the default mode.
+    ##
+    # volumeBindingMode: ""
+
+    ## Subdirectory of Prometheus server data Persistent Volume to mount
+    ## Useful if the volume's root directory is not empty
+    ##
+    subPath: ""
+
+    ## Persistent Volume Claim Selector
+    ## Useful if Persistent Volumes have been provisioned in advance
+    ## Ref: https://kubernetes.io/docs/concepts/storage/persistent-volumes/#selector
+    ##
+    # selector:
+    #  matchLabels:
+    #    release: "stable"
+    #  matchExpressions:
+    #    - { key: environment, operator: In, values: [ dev ] }
+
+    ## Persistent Volume Name
+    ## Useful if Persistent Volumes have been provisioned in advance and you want to use a specific one
+    ## yinfang
+    #volumeName: "prometheus-pv" # Changed in order to use PVC
+
+  emptyDir:
+    ## Prometheus server emptyDir volume size limit
+    ##
+    sizeLimit: ""
+
+  ## Annotations to be added to Prometheus server pods
+  ##
+  podAnnotations: {}
+    # iam.amazonaws.com/role: prometheus
+
+  ## Labels to be added to Prometheus server pods
+  ##
+  podLabels: {}
+
+  ## Prometheus AlertManager configuration
+  ##
+  alertmanagers: []
+
+  ## Specify if a Pod Security Policy for node-exporter must be created
+  ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+  ##
+  podSecurityPolicy:
+    annotations: {}
+      ## Specify pod annotations
+      ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#apparmor
+      ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#seccomp
+      ## Ref: https://kubernetes.io/docs/concepts/policy/pod-security-policy/#sysctl
+      ##
+      # seccomp.security.alpha.kubernetes.io/allowedProfileNames: '*'
+      # seccomp.security.alpha.kubernetes.io/defaultProfileName: 'docker/default'
+      # apparmor.security.beta.kubernetes.io/defaultProfileName: 'runtime/default'
+
+  ## Use a StatefulSet if replicaCount needs to be greater than 1 (see below)
+  ##
+  replicaCount: 1
+
+  ## Number of old history to retain to allow rollback
+  ## Default Kubernetes value is set to 10
+  ##
+  revisionHistoryLimit: 10
+
+  ## Annotations to be added to deployment
+  ##
+  deploymentAnnotations: {}
+
+  statefulSet:
+    ## If true, use a statefulset instead of a deployment for pod management.
+    ## This allows to scale replicas to more than 1 pod
+    ##
+    enabled: false
+
+    annotations: {}
+    labels: {}
+    podManagementPolicy: OrderedReady
+
+    ## Alertmanager headless service to use for the statefulset
+    ##
+    headless:
+      annotations: {}
+      labels: {}
+      servicePort: 80
+      ## Enable gRPC port on service to allow auto discovery with thanos-querier
+      gRPC:
+        enabled: false
+        servicePort: 10901
+        # nodePort: 10901
+
+    ## Statefulset's persistent volume claim retention policy
+    ## pvcDeleteOnStsDelete and pvcDeleteOnStsScale determine whether
+    ## statefulset's PVCs are deleted (true) or retained (false) on scaling down
+    ## and deleting statefulset, respectively. Requires 1.27.0+.
+    ## Ref: https://kubernetes.io/docs/concepts/workloads/controllers/statefulset/#persistentvolumeclaim-retention
+    ##
+    pvcDeleteOnStsDelete: false
+    pvcDeleteOnStsScale: false
+
+  ## Prometheus server readiness and liveness probe initial delay and timeout
+  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/
+  ##
+  tcpSocketProbeEnabled: false
+  probeScheme: HTTP
+  readinessProbeInitialDelay: 30
+  readinessProbePeriodSeconds: 5
+  readinessProbeTimeout: 4
+  readinessProbeFailureThreshold: 3
+  readinessProbeSuccessThreshold: 1
+  livenessProbeInitialDelay: 30
+  livenessProbePeriodSeconds: 15
+  livenessProbeTimeout: 10
+  livenessProbeFailureThreshold: 3
+  livenessProbeSuccessThreshold: 1
+  startupProbe:
+    enabled: false
+    periodSeconds: 5
+    failureThreshold: 30
+    timeoutSeconds: 10
+
+  ## Prometheus server resource requests and limits
+  ## Ref: http://kubernetes.io/docs/user-guide/compute-resources/
+  ##
+  resources: {}
+    # limits:
+    #   cpu: 500m
+    #   memory: 512Mi
+    # requests:
+    #   cpu: 500m
+    #   memory: 512Mi
+
+  # Required for use in managed kubernetes clusters (such as AWS EKS) with custom CNI (such as calico),
+  # because control-plane managed by AWS cannot communicate with pods' IP CIDR and admission webhooks are not working
+  ##
+  hostNetwork: false
+
+  # When hostNetwork is enabled, this will set to ClusterFirstWithHostNet automatically
+  dnsPolicy: ClusterFirst
+
+  # Use hostPort
+  # hostPort: 9090
+
+  # Use portName
+  portName: ""
+
+  ## Vertical Pod Autoscaler config
+  ## Ref: https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler
+  verticalAutoscaler:
+    ## If true a VPA object will be created for the controller (either StatefulSet or Deployemnt, based on above configs)
+    enabled: false
+    # updateMode: "Auto"
+    # containerPolicies:
+    # - containerName: 'prometheus-server'
+
+  # Custom DNS configuration to be added to prometheus server pods
+  dnsConfig: {}
+    # nameservers:
+    #   - 1.2.3.4
+    # searches:
+    #   - ns1.svc.cluster-domain.example
+    #   - my.dns.search.suffix
+    # options:
+    #   - name: ndots
+    #     value: "2"
+  #   - name: edns0
+
+  ## Security context to be added to server pods
+  ##
+  securityContext:
+    runAsUser: 65534
+    runAsNonRoot: true
+    runAsGroup: 65534
+    fsGroup: 65534
+
+  ## Security context to be added to server container
+  ##
+  containerSecurityContext: {}
+
+  service:
+    ## If false, no Service will be created for the Prometheus server
+    ##
+    enabled: true
+
+    annotations: {}
+    labels: {}
+    clusterIP: ""
+
+    ## List of IP addresses at which the Prometheus server service is available
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
+    ##
+    externalIPs: []
+
+    loadBalancerIP: ""
+    loadBalancerSourceRanges: []
+    servicePort: 80
+    sessionAffinity: None
+    # type: ClusterIP
+    # yinfang
+    type: NodePort
+    nodePort: 32000
+
+
+    ## Enable gRPC port on service to allow auto discovery with thanos-querier
+    gRPC:
+      enabled: false
+      servicePort: 10901
+      # nodePort: 10901
+
+    ## If using a statefulSet (statefulSet.enabled=true), configure the
+    ## service to connect to a specific replica to have a consistent view
+    ## of the data.
+    statefulsetReplica:
+      enabled: false
+      replica: 0
+
+    ## Additional port to define in the Service
+    additionalPorts: []
+    # additionalPorts:
+    # - name: authenticated
+    #   port: 8081
+    #   targetPort: 8081
+
+  ## Prometheus server pod termination grace period
+  ##
+  terminationGracePeriodSeconds: 300
+
+  ## Prometheus data retention period (default if not specified is 15 days)
+  ##
+  retention: "15d"
+
+  ## Prometheus' data retention size. Supported units: B, KB, MB, GB, TB, PB, EB.
+  ##
+  retentionSize: ""
+
+## Prometheus server ConfigMap entries for rule files (allow prometheus labels interpolation)
+ruleFiles: {}
+
+## Prometheus server ConfigMap entries for scrape_config_files
+## (allows scrape configs defined in additional files)
+##
+scrapeConfigFiles: []
+
+## Prometheus server ConfigMap entries
+##
+serverFiles:
+  ## Alerts configuration
+  ## Ref: https://prometheus.io/docs/prometheus/latest/configuration/alerting_rules/
+  alerting_rules.yml: {}
+  # groups:
+  #   - name: Instances
+  #     rules:
+  #       - alert: InstanceDown
+  #         expr: up == 0
+  #         for: 5m
+  #         labels:
+  #           severity: page
+  #         annotations:
+  #           description: '{{ $labels.instance }} of job {{ $labels.job }} has been down for more than 5 minutes.'
+  #           summary: 'Instance {{ $labels.instance }} down'
+  ## DEPRECATED DEFAULT VALUE, unless explicitly naming your files, please use alerting_rules.yml
+  alerts: {}
+
+  ## Records configuration
+  ## Ref: https://prometheus.io/docs/prometheus/latest/configuration/recording_rules/
+  recording_rules.yml: {}
+  ## DEPRECATED DEFAULT VALUE, unless explicitly naming your files, please use recording_rules.yml
+  rules: {}
+
+  prometheus.yml:
+    rule_files:
+      - /etc/config/recording_rules.yml
+      - /etc/config/alerting_rules.yml
+    ## Below two files are DEPRECATED will be removed from this default values file
+      - /etc/config/rules
+      - /etc/config/alerts
+
+    scrape_configs:
+      - job_name: prometheus
+        static_configs:
+          - targets:
+            - localhost:9090
+      
+      - job_name: 'kubernetes-cadvisor'
+
+        # Default to scraping over https. If required, just disable this or change to
+        # `http`.
+        scheme: https
+
+        # This TLS & bearer token file config is used to connect to the actual scrape
+        # endpoints for cluster components. This is separate to discovery auth
+        # configuration because discovery & scraping are two separate concerns in
+        # Prometheus. The discovery auth config is automatic if Prometheus runs inside
+        # the cluster. Otherwise, more config options have to be provided within the
+        # <kubernetes_sd_config>.
+        tls_config:
+          ca_file: /var/run/secrets/kubernetes.io/serviceaccount/ca.crt
+          # If your node certificates are self-signed or use a different CA to the
+          # master CA, then disable certificate verification below. Note that
+          # certificate verification is an integral part of a secure infrastructure
+          # so this should only be disabled in a controlled environment. You can
+          # disable certificate verification by uncommenting the line below.
+          #
+          insecure_skip_verify: true
+        bearer_token_file: /var/run/secrets/kubernetes.io/serviceaccount/token
+
+        kubernetes_sd_configs:
+          - role: node
+
+        # This configuration will work only on kubelet 1.7.3+
+        # As the scrape endpoints for cAdvisor have changed
+        # if you are using older version you need to change the replacement to
+        # replacement: /api/v1/nodes/$1:4194/proxy/metrics
+        # more info here https://github.com/coreos/prometheus-operator/issues/633
+        relabel_configs:
+          - target_label: __address__
+            replacement: kubernetes.default.svc:443
+          - source_labels: [__meta_kubernetes_node_name]
+            regex: (.+)
+            target_label: __metrics_path__
+            replacement: /api/v1/nodes/${1}/proxy/metrics/cadvisor
+          - action: labelmap
+            regex: __meta_kubernetes_node_label_(.+)
+
+      - job_name: 'kubernetes-nodes'
+        kubernetes_sd_configs:
+          - role: endpoints
+        relabel_configs:
+        - source_labels: [__meta_kubernetes_endpoints_name]
+          regex: 'prometheus-prometheus-node-exporter'
+          action: keep
+
+# adds additional scrape configs to prometheus.yml
+# must be a string so you have to add a | after extraScrapeConfigs:
+# example adds prometheus-blackbox-exporter scrape config
+extraScrapeConfigs: ""
+  # - job_name: 'prometheus-blackbox-exporter'
+  #   metrics_path: /probe
+  #   params:
+  #     module: [http_2xx]
+  #   static_configs:
+  #     - targets:
+  #       - https://example.com
+  #   relabel_configs:
+  #     - source_labels: [__address__]
+  #       target_label: __param_target
+  #     - source_labels: [__param_target]
+  #       target_label: instance
+  #     - target_label: __address__
+  #       replacement: prometheus-blackbox-exporter:9115
+
+# Adds option to add alert_relabel_configs to avoid duplicate alerts in alertmanager
+# useful in H/A prometheus with different external labels but the same alerts
+alertRelabelConfigs: {}
+  # alert_relabel_configs:
+  # - source_labels: [dc]
+  #   regex: (.+)\d+
+  #   target_label: dc
+
+networkPolicy:
+  ## Enable creation of NetworkPolicy resources.
+  ##
+  enabled: false
+
+# Force namespace of namespaced resources
+forceNamespace: ""
+
+# Extra manifests to deploy as an array
+extraManifests: []
+  # - |
+  #   apiVersion: v1
+  #   kind: ConfigMap
+  #   metadata:
+  #   labels:
+  #     name: prometheus-extra
+  #   data:
+  #     extra-data: "value"
+
+# Configuration of subcharts defined in Chart.yaml
+
+## alertmanager sub-chart configurable values
+## Please see https://github.com/prometheus-community/helm-charts/tree/main/charts/alertmanager
+##
+alertmanager:
+  ## If false, alertmanager will not be installed
+  ##
+  enabled: false
+
+  persistence:
+    size: 2Gi
+
+  podSecurityContext:
+    runAsUser: 65534
+    runAsNonRoot: true
+    runAsGroup: 65534
+    fsGroup: 65534
+
+## kube-state-metrics sub-chart configurable values
+## Please see https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-state-metrics
+##
+kube-state-metrics:
+  ## If false, kube-state-metrics sub-chart will not be installed
+  ##
+  enabled: true
+
+## prometheus-node-exporter sub-chart configurable values
+## Please see https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-node-exporter
+##
+prometheus-node-exporter:
+  ## If false, node-exporter will not be installed
+  ##
+  enabled: true
+
+  rbac:
+    pspEnabled: false
+
+  containerSecurityContext:
+    allowPrivilegeEscalation: false
+
+## prometheus-pushgateway sub-chart configurable values
+## Please see https://github.com/prometheus-community/helm-charts/tree/main/charts/prometheus-pushgateway
+##
+prometheus-pushgateway:
+  ## If false, pushgateway will not be installed
+  ##
+  enabled: true
+
+  # Optional service annotations
+  serviceAnnotations:
+    prometheus.io/probe: pushgateway
+
+prometheus-blackbox-exporter:
+  enabled: false
\ No newline at end of file
diff --git a/sregym/observer/tidb_cluster_deploy_helper.py b/sregym/observer/tidb_cluster_deploy_helper.py
new file mode 100644
index 0000000..2797d28
--- /dev/null
+++ b/sregym/observer/tidb_cluster_deploy_helper.py
@@ -0,0 +1,21 @@
+import os
+from pathlib import Path
+
+from sregym.service.apps.tidb_cluster_operator import TiDBClusterDeployer
+
+
+class TiDBClusterDeployHelper:
+    _ready = False
+
+    @classmethod
+    def running_cluster(self):
+        if not self._ready:
+            base_dir = Path(__file__).parent.parent
+            meta_path = base_dir / "service" / "metadata" / "tidb_metadata.json"
+            print("Starting TiDB Cluster...")
+            deployer = TiDBClusterDeployer(str(meta_path))
+            deployer.deploy_all()
+            self._ready = True
+            print("TiDB Cluster is running.")
+        else:
+            print("TiDB Cluster is already running.")
diff --git a/sregym/observer/tidb_prometheus.py b/sregym/observer/tidb_prometheus.py
new file mode 100644
index 0000000..9e829e2
--- /dev/null
+++ b/sregym/observer/tidb_prometheus.py
@@ -0,0 +1,81 @@
+import json
+import os
+import shlex
+import subprocess
+
+from sregym.service.telemetry.prometheus import Prometheus
+
+FLEETCAST_NS = "fleetcast"
+FLEETCAST_DEP = "fleetcast-satellite-app-backend"
+FLEETCAST_METRICS_PORT = "5000"
+
+
+def run_cmd(cmd, capture=False):
+    if isinstance(cmd, (list, tuple)):
+        cmd = [str(c) for c in cmd]
+        printable = " ".join(shlex.quote(c) for c in cmd)
+    else:
+        printable = cmd
+    print("Running:", printable)
+
+    if capture:
+        return subprocess.check_output(cmd, text=True, stderr=subprocess.STDOUT).strip()
+    else:
+        subprocess.run(cmd, check=True)
+
+
+# def check_prometheus_targets(prom: Prometheus):
+#     # Prefer env override, fallback to 9090 (your manual port-forward), then prom.port
+#     port = os.environ.get("PROMETHEUS_PORT") or "9090" or str(prom.port)
+#     base_url = f"http://localhost:{port}"
+#     print(f"[debug] Checking Prometheus at {base_url}")
+
+#     out = run_cmd(["curl", "-s", f"{base_url}/api/v1/targets"], capture=True)
+#     try:
+#         j = json.loads(out)
+#         targets = j.get("data", {}).get("activeTargets", [])
+#         for t in targets:
+#             print("Target:", t["labels"].get("job"), t["health"])
+#         print(f"[done] listed {len(targets)} targets")
+#     except Exception:
+#         print(out)
+
+
+def ensure_fleetcast_scrape_annotations():
+    """Ensure FleetCast backend is annotated for Prometheus scraping."""
+    expected = {
+        "prometheus.io/scrape": "true",
+        "prometheus.io/path": "/metrics",
+        "prometheus.io/port": FLEETCAST_METRICS_PORT,
+    }
+
+    patch = {"spec": {"template": {"metadata": {"annotations": expected}}}}
+    run_cmd(
+        ["kubectl", "-n", FLEETCAST_NS, "patch", "deploy", FLEETCAST_DEP, "--type=merge", "-p", json.dumps(patch)],
+        capture=False,
+    )
+
+    print(f"[rollout] restarting {FLEETCAST_DEP}…")
+    run_cmd(["kubectl", "-n", FLEETCAST_NS, "rollout", "restart", f"deploy/{FLEETCAST_DEP}"], capture=False)
+    run_cmd(["kubectl", "-n", FLEETCAST_NS, "rollout", "status", f"deploy/{FLEETCAST_DEP}"], capture=False)
+
+    print(f"[done] scrape annotations applied and rollout complete for {FLEETCAST_DEP}")
+
+
+def main():
+    prom = Prometheus()
+
+    if not prom._is_prometheus_running():
+        prom.deploy()
+    else:
+        print("Prometheus already running, skipping deploy.")
+
+    # check_prometheus_targets(prom)
+
+    ensure_fleetcast_scrape_annotations()
+
+    # prom.stop_port_forward()
+
+
+if __name__ == "__main__":
+    main()
diff --git a/sregym/observer/trace_api.py b/sregym/observer/trace_api.py
new file mode 100644
index 0000000..f78b28d
--- /dev/null
+++ b/sregym/observer/trace_api.py
@@ -0,0 +1,365 @@
+import os
+import select
+import socket
+import subprocess
+import threading
+import time
+from datetime import datetime
+from typing import List, Optional
+
+import pandas as pd
+import requests
+import logging
+class TraceAPI:
+    """
+    Jaeger HTTP API helper.
+
+    - For most apps:
+        * Prefer NodePort on svc/jaeger
+        * Otherwise port-forward svc/jaeger :16686
+        * Base URL: http://127.0.0.1:<port>
+
+    - For Astronomy Shop:
+        * Jaeger is exposed THROUGH the frontend proxy on 8080, under /jaeger
+        * Prefer NodePort on svc/frontend-proxy
+        * Otherwise port-forward svc/frontend-proxy :8080
+        * Base URL: http://127.0.0.1:<port>/jaeger
+    """
+
+    _instance_lock: threading.Lock
+
+    def __init__(self, namespace: str, prefer_nodeport: bool = True, pf_ready_sleep: float = 2.0):
+        self.namespace = namespace
+        self.prefer_nodeport = prefer_nodeport
+        self.pf_ready_sleep = pf_ready_sleep
+
+        self.port_forward_process: Optional[subprocess.Popen] = None
+        self.local_port: Optional[int] = None
+        self.stop_event = threading.Event()
+        self.output_threads: List[threading.Thread] = []
+        self._instance_lock = threading.Lock()
+
+        # Decide service/port/prefix based on namespace
+        self._is_astronomy = self.namespace == "astronomy-shop"
+        self._svc_name = "frontend-proxy" if self._is_astronomy else "jaeger"
+        self._remote_port = "8080" if self._is_astronomy else "16686"
+        self._url_prefix = "/jaeger/ui" if self._is_astronomy else ""
+
+        self.local_logger = logging.getLogger("all.infra.trace_api")
+        self.local_logger.propagate = True
+        self.local_logger.setLevel(logging.DEBUG)
+
+        # Choose access path: NodePort (if available) else port-forward
+        node_port = None
+        if self.prefer_nodeport:
+            node_port = self.get_nodeport(self._svc_name, self.namespace)
+
+        if node_port:
+            # Use NodePort directly
+            self.base_url = f"http://localhost:{node_port}{self._url_prefix}"
+            self.using_port_forward = False
+            self._export_env(port=node_port)  # <<< ensure env set for NodePort (incl. astronomy-shop)
+        else:
+            # Fall back to port-forward on a free local port
+            self.using_port_forward = True
+            self.start_port_forward()  # sets base_url and env
+
+    # ------------------------
+    # Cluster discovery helpers
+    # ------------------------
+
+    def get_nodeport(self, service_name: str, namespace: str) -> Optional[str]:
+        """Return NodePort string if present; otherwise None."""
+        try:
+            result = subprocess.check_output(
+                [
+                    "kubectl",
+                    "get",
+                    "service",
+                    service_name,
+                    "-n",
+                    namespace,
+                    "-o",
+                    "jsonpath={.spec.ports[0].nodePort}",
+                ],
+                text=True,
+            ).strip()
+            if result:
+                self.local_logger.info(f"NodePort for service {service_name}: {result}")
+                return result
+            return None
+        except subprocess.CalledProcessError as e:
+            msg = (e.output or "").strip()
+            if msg:
+                self.local_logger.error(f"Error getting NodePort: {msg}")
+            return None
+
+    def get_jaeger_pod_name(self) -> str:
+        """Resolve the Jaeger pod name (if you ever need pod forwarding)."""
+        try:
+            result = subprocess.check_output(
+                [
+                    "kubectl",
+                    "get",
+                    "pods",
+                    "-n",
+                    self.namespace,
+                    "-l",
+                    "app.kubernetes.io/name=jaeger",
+                    "-o",
+                    "jsonpath={.items[0].metadata.name}",
+                ],
+                text=True,
+            )
+            name = result.strip()
+            if not name:
+                raise RuntimeError("No Jaeger pods found")
+            return name
+        except subprocess.CalledProcessError as e:
+            raise RuntimeError(f"Error getting Jaeger pod name: {e.output}") from e
+
+    # ------------------------
+    # Port-forward management
+    # ------------------------
+
+    @staticmethod
+    def _pick_free_port() -> int:
+        """Pick a free local TCP port."""
+        with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
+            s.bind(("", 0))
+            return s.getsockname()[1]
+
+    def _build_pf_cmd(self, local_port: int) -> list:
+        """
+        Build a kubectl port-forward command that binds only to 127.0.0.1.
+        """
+        target = f"svc/{self._svc_name}"
+        return [
+            "kubectl",
+            "-n",
+            self.namespace,
+            "port-forward",
+            target,
+            f"{local_port}:{self._remote_port}",
+            "--address",
+            "127.0.0.1",
+        ]
+
+    def _print_output(self, stream):
+        """Non-blocking reader for subprocess stdout/stderr."""
+        while not self.stop_event.is_set():
+            if self.port_forward_process and self.port_forward_process.poll() is not None:
+                break
+            try:
+                ready, _, _ = select.select([stream], [], [], 0.1)
+            except (ValueError, OSError):
+                break
+            if ready:
+                line = stream.readline()
+                if line:
+                    self.local_logger.info(line.rstrip())
+                else:
+                    break
+
+    def start_port_forward(self):
+        """Start kubectl port-forward exactly once; idempotent."""
+        with self._instance_lock:
+            if self.port_forward_process and self.port_forward_process.poll() is None:
+                return
+
+            self.local_port = self._pick_free_port()
+            cmd = self._build_pf_cmd(self.local_port)
+
+            msg = "Starting port-forward with command:" + " ".join(cmd)
+            self.local_logger.info(msg)
+            self.port_forward_process = subprocess.Popen(
+                cmd,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True,
+            )
+
+            if self.port_forward_process.stdout:
+                t_out = threading.Thread(
+                    target=self._print_output, args=(self.port_forward_process.stdout,), daemon=True
+                )
+                t_out.start()
+                self.output_threads.append(t_out)
+            if self.port_forward_process.stderr:
+                t_err = threading.Thread(
+                    target=self._print_output, args=(self.port_forward_process.stderr,), daemon=True
+                )
+                t_err.start()
+                self.output_threads.append(t_err)
+
+        # Let kubectl set up the tunnel
+        time.sleep(self.pf_ready_sleep)
+
+        if self.port_forward_process and self.port_forward_process.poll() is None:
+            self.local_logger.info(f"Port forwarding established successfully on")
+            self.base_url = f"http://127.0.0.1:{self.local_port}{self._url_prefix}"
+            self._export_env(port=self.local_port)  # <<< ensure env set for PF case (incl. astronomy-shop)
+        else:
+            raise RuntimeError("Port forwarding failed to start")
+
+    def stop_port_forward(self):
+        """Terminate kubectl and close streams."""
+        with self._instance_lock:
+            if not self.port_forward_process:
+                return
+
+            self.stop_event.set()
+            try:
+                self.port_forward_process.terminate()
+                self.port_forward_process.wait(timeout=5)
+            except Exception as e:
+                self.local_logger.error(f"Error terminating port-forward process:", e)
+                try:
+                    self.port_forward_process.kill()
+                except Exception:
+                    pass
+
+            try:
+                if self.port_forward_process.stdout:
+                    self.port_forward_process.stdout.close()
+                if self.port_forward_process.stderr:
+                    self.port_forward_process.stderr.close()
+            except Exception as e:
+                self.local_logger.error(f"Error closing process streams:", e)
+
+            self.port_forward_process = None
+            self.local_port = None
+
+        for t in self.output_threads:
+            t.join(timeout=2)
+        self.output_threads.clear()
+        self.local_logger.info("Port-forward stopped.")
+
+    def cleanup(self):
+        """Public cleanup (safe to call multiple times)."""
+        if self.using_port_forward:
+            self.stop_port_forward()
+        self.local_logger.info("Cleanup completed.")
+
+    # ------------------------
+    # Environment export
+    # ------------------------
+
+    def _export_env(self, port: int):
+        """
+        Standardize env for downstream tools:
+          - JAEGER_PORT: the local port to reach Jaeger (NodePort or PF)
+          - JAEGER_BASE_URL: full base URL (includes prefix for astronomy-shop)
+        """
+        os.environ["JAEGER_PORT"] = str(port)
+        os.environ["JAEGER_BASE_URL"] = self.base_url
+
+    # ------------------------
+    # Jaeger API wrappers
+    # ------------------------
+
+    @staticmethod
+    def _api_headers():
+        # Some proxies are picky; be explicit about JSON.
+        return {"Accept": "application/json"}
+
+    def get_services(self) -> List[str]:
+        """Fetch list of service names known to Jaeger."""
+        url = f"{self.base_url}/api/services"
+        try:
+            resp = requests.get(url, headers=self._api_headers(), timeout=10)
+            resp.raise_for_status()
+            data = resp.json()
+            return data.get("data", []) or []
+        except Exception as e:
+            self.local_logger.error(f"Failed to get services: {e}")
+            return []
+
+    def get_traces(
+        self, service_name: str, start_time: datetime, end_time: datetime, limit: Optional[int] = None
+    ) -> list:
+        """
+        Fetch traces for a service between start_time and end_time.
+        Jaeger HTTP API supports lookback + optional limit.
+        """
+        lookback_sec = int((datetime.now() - start_time).total_seconds())
+        url = f"{self.base_url}/api/traces?service={service_name}&lookback={lookback_sec}s"
+        if limit is not None:
+            url += f"&limit={limit}"
+
+        try:
+            resp = requests.get(url, headers=self._api_headers(), timeout=15)
+            resp.raise_for_status()
+            return resp.json().get("data", []) or []
+        except Exception as e:
+            self.local_logger.error(f"Failed to get traces for {service_name}: {e}")
+            return []
+
+    def extract_traces(self, start_time: datetime, end_time: datetime, limit: Optional[int] = None) -> list:
+        """
+        Extract traces across all services (except utility ones) in the time range.
+        Automatically calls cleanup() when done.
+        """
+        try:
+            services = self.get_services()
+            self.local_logger.info(f"services: {services}")
+            all_traces = []
+            if not services:
+                self.local_logger.error("No services found.")
+                return all_traces
+
+            for svc in services:
+                if svc == "jaeger-all-in-one":
+                    continue
+                traces = self.get_traces(svc, start_time, end_time, limit=limit)
+                for trace in traces:
+                    # Normalize serviceName into spans for easier downstream processing
+                    proc_map = trace.get("processes", {})
+                    for span in trace.get("spans", []):
+                        span["serviceName"] = proc_map.get(span.get("processID"), {}).get("serviceName", "unknown")
+                    all_traces.append(trace)
+            return all_traces
+        finally:
+            self.cleanup()
+
+    def process_traces(self, traces: list) -> pd.DataFrame:
+        """Flatten raw Jaeger traces into a DataFrame."""
+        rows = []
+        for trace in traces:
+            tid = trace.get("traceID")
+            for span in trace.get("spans", []):
+                parent_span = "ROOT"
+                for ref in span.get("references", []):
+                    if ref.get("refType") == "CHILD_OF":
+                        parent_span = ref.get("spanID")
+                        break
+
+                has_error = False
+                response = "Unknown"
+                for tag in span.get("tags", []):
+                    if tag.get("key") == "error" and bool(tag.get("value")):
+                        has_error = True
+                    if tag.get("key") in ("http.status_code", "response_class"):
+                        response = tag.get("value")
+
+                rows.append(
+                    {
+                        "trace_id": tid,
+                        "span_id": span.get("spanID"),
+                        "parent_span": parent_span,
+                        "service_name": span.get("serviceName"),
+                        "operation_name": span.get("operationName"),
+                        "start_time": span.get("startTime"),
+                        "duration": span.get("duration"),
+                        "has_error": has_error,
+                        "response": response,
+                    }
+                )
+
+        return pd.DataFrame(rows)
+
+    def save_traces(self, df: pd.DataFrame, path: str) -> str:
+        os.makedirs(path, exist_ok=True)
+        file_path = os.path.join(path, f"traces_{int(time.time())}.csv")
+        df.to_csv(file_path, index=False)
+        return f"Traces data exported to: {file_path}"
diff --git a/sregym/paths.py b/sregym/paths.py
new file mode 100644
index 0000000..b6d7f65
--- /dev/null
+++ b/sregym/paths.py
@@ -0,0 +1,30 @@
+import os
+from pathlib import Path
+
+HOME_DIR = Path(os.path.expanduser("~"))
+BASE_DIR = Path(__file__).resolve().parent
+BASE_PARENT_DIR = Path(__file__).resolve().parent.parent
+
+# Targe microservice and its utilities directories
+TARGET_MICROSERVICES = BASE_PARENT_DIR / "SREGym-applications"
+
+# Cache directories
+CACHE_DIR = HOME_DIR / "cache_dir"
+LLM_CACHE_FILE = CACHE_DIR / "llm_cache.json"
+
+# Fault scripts
+FAULT_SCRIPTS = BASE_DIR / "generators" / "fault" / "script"
+
+# Metadata files
+SOCIAL_NETWORK_METADATA = BASE_DIR / "service" / "metadata" / "social-network.json"
+HOTEL_RES_METADATA = BASE_DIR / "service" / "metadata" / "hotel-reservation.json"
+PROMETHEUS_METADATA = BASE_DIR / "service" / "metadata" / "prometheus.json"
+TRAIN_TICKET_METADATA = BASE_DIR / "service" / "metadata" / "train-ticket.json"
+ASTRONOMY_SHOP_METADATA = BASE_DIR / "service" / "metadata" / "astronomy-shop.json"
+TIDB_METADATA = BASE_DIR / "service" / "metadata" / "tidb-with-operator.json"
+FLIGHT_TICKET_METADATA = BASE_DIR / "service" / "metadata" / "flight-ticket.json"
+FLEET_CAST_METADATA = BASE_DIR / "service" / "metadata" / "fleet-cast.json"
+BLUEPRINT_HOTEL_RES_METADATA = BASE_DIR / "service" / "metadata" / "blueprint-hotel-reservation.json"
+
+# Khaos DaemonSet
+KHAOS_DS = BASE_DIR / "service" / "khaos.yaml"
diff --git a/sregym/resources/trainticket/locust-deployment.yaml b/sregym/resources/trainticket/locust-deployment.yaml
new file mode 100644
index 0000000..b1326ac
--- /dev/null
+++ b/sregym/resources/trainticket/locust-deployment.yaml
@@ -0,0 +1,72 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: load-generator
+  namespace: train-ticket
+  labels:
+    app: load-generator
+spec:
+  selector:
+    app: load-generator
+  ports:
+  - name: web
+    port: 8089
+    targetPort: 8089
+    nodePort: 30089
+  type: NodePort
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: load-generator
+  namespace: train-ticket
+  labels:
+    app: load-generator
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: load-generator
+  template:
+    metadata:
+      labels:
+        app: load-generator
+    spec:
+      containers:
+      - name: load-generator
+        image: locustio/locust:2.14.2
+        ports:
+        - containerPort: 8089
+          name: web
+        env:
+        - name: LOCUST_AUTOSTART
+          value: "true"
+        - name: LOCUST_USERS
+          value: "5"
+        - name: LOCUST_SPAWN_RATE
+          value: "1"
+        - name: LOCUST_HEADLESS
+          value: "false"
+        - name: LOCUST_WEB_HOST
+          value: "0.0.0.0"
+        - name: LOCUST_WEB_PORT
+          value: "8089"
+        - name: LOCUST_HOST
+          value: "http://ts-ui-dashboard:8080"
+        args:
+        - "--locustfile=/usr/src/app/locustfile.py"
+        volumeMounts:
+        - name: locustfile
+          mountPath: /usr/src/app/locustfile.py
+          subPath: locustfile.py
+        resources:
+          requests:
+            memory: "256Mi"
+            cpu: "100m"
+          limits:
+            memory: "512Mi"
+            cpu: "500m"
+      volumes:
+      - name: locustfile
+        configMap:
+          name: locustfile-config
diff --git a/sregym/resources/trainticket/locustfile.py b/sregym/resources/trainticket/locustfile.py
new file mode 100644
index 0000000..910a3b3
--- /dev/null
+++ b/sregym/resources/trainticket/locustfile.py
@@ -0,0 +1,250 @@
+import time
+from locust import HttpUser, task, between
+import requests
+
+
+class TrainTicketUser(HttpUser):
+    wait_time = between(1, 2)
+
+    def on_start(self):
+        self.client.verify = False
+        self.last_login_time = 0
+        self.login_interval = 1800  # 30 minutes in seconds
+        self._login()
+
+    def _login(self):
+
+        current_time = time.time()
+        self.last_login_time = current_time
+        
+        response = self.client.post(
+            "/api/v1/users/login",
+            json={"username": "fdse_microservice", "password": "111111"},
+            headers={"Content-Type": "application/json"},
+            name="/users/login",
+        )
+        if response.status_code == 200:
+            data = response.json()
+            self.token = data.get("data", {}).get("token", "")
+            self.user_id = data.get("data", {}).get("userId", "")
+            self.headers = {"Authorization": f"Bearer {self.token}", "Content-Type": "application/json"}
+            print(f"[Login] Successfully logged in at {current_time}, token: {self.token[:20]}...")
+        else:
+            print(f"[Login] Failed: {response.status_code}")
+            self.token = ""
+            self.user_id = ""
+            self.headers = {"Content-Type": "application/json"}
+
+    # The JWT token is valid for 1 hours, so we need to refresh it if it's expired.
+    def _check_and_refresh_token(self):
+        current_time = time.time()
+        if current_time - self.last_login_time > self.login_interval:
+            print(f"[Token] Refreshing token after {current_time - self.last_login_time:.0f} seconds")
+            self._login()
+
+    def _get_existing_order_id(self):
+        if not getattr(self, "user_id", None):
+            return None
+
+        payload = {"loginId": self.user_id}
+
+        # Primary: ts-order-service refresh (POST)
+        try:
+            resp = self.client.post(
+                "/api/v1/orderservice/order/refresh",
+                json=payload,
+                headers=self.headers,
+                name="/orders/refresh",
+            )
+            if resp.status_code == 200:
+                data = resp.json()
+                orders = data.get("data", [])
+                if orders:
+                    first = orders[0] if isinstance(orders, list) else orders
+                    oid = first.get("id") or first.get("orderId")
+                    if oid:
+                        return oid
+            else:
+                print(f"Orderservice refresh failed: {resp.status_code} {resp.text[:200]}")
+        except Exception as e:
+            print(f"Error calling orderservice refresh: {e}")
+            return None
+
+    @task(1)
+    def test_fault_17_voucher_slow(self):
+        """Test F-17: slow DB due to nested SELECTs via direct voucher service call.
+        Expected:
+          - F-17 ON: /getVoucher takes >5s and times out -> failure
+          - F-17 OFF: /getVoucher returns quickly (<5s) -> success
+        """
+        if not getattr(self, "headers", None):
+            return
+
+        order_id = self._get_existing_order_id()
+        if not order_id:
+            return
+
+        payload = {"orderId": order_id, "type": 1}
+        start = time.time()
+
+        try:
+            with self.client.post(
+                "http://ts-voucher-service:16101/getVoucher",
+                json=payload,
+                headers={"Content-Type": "application/json"},
+                name="/getVoucher (F17)",
+                timeout=5,
+                catch_response=True,
+            ) as response:
+                elapsed = time.time() - start
+                print(f"[F17] /getVoucher status={response.status_code} elapsed={elapsed:.2f}s")
+
+                if response.status_code == 200:
+                    print(f"[F17] SUCCESS: Voucher retrieved in {elapsed:.2f}s | response: {response.text}")
+                    response.success()
+                else:
+                    print(f"[F17] FAILURE: Status {response.status_code} in {elapsed:.2f}s")
+                    response.failure(f"[F17] Voucher service failed to retrieve voucher. Error: {response.text}. Elapsed: {elapsed:.2f}s")
+
+        except requests.exceptions.ReadTimeout as e:
+            # F-17 ON: Voucher service sleeps for 10s, causing >5s timeout
+            elapsed = time.time() - start
+            print(f"[F17] /getVoucher timed out after {elapsed:.2f}s (F17 ON - expected behavior!): {e}")
+
+        except Exception as e:
+            # Other errors
+            elapsed = time.time() - start
+            print(f"[F17] /getVoucher error after {elapsed:.2f}s: {e}")
+
+    @task(1)
+    def test_fault_22_sql_column_missing(self):
+        """Test F-22: SQL column missing error in contacts service.
+        Expected:
+          - F-22 ON: Contact creation fails with SQL column missing error -> status 0
+          - F-22 OFF: Contact creation succeeds -> status 1
+        """
+        if not getattr(self, "headers", None):
+            return
+
+        self._check_and_refresh_token()
+
+        import uuid
+        unique_name = f"TestContact_{uuid.uuid4().hex[:8]}"
+        
+        # Create contact payload
+        contact_payload = {
+            "name": unique_name,
+            "accountId": self.user_id,
+            "documentType": 1,
+            "documentNumber": unique_name,
+            "phoneNumber": f"555-{unique_name[-4:]}"
+        }
+
+        print(f"[F22] Testing contact creation: {unique_name}")
+
+        try:
+            # Create contact
+            with self.client.post(
+                "/api/v1/contactservice/contacts",
+                json=contact_payload,
+                headers=self.headers,
+                name="/contacts/create (F22)",
+                catch_response=True,
+            ) as response:
+
+                if response.status_code == 201:
+                    data = response.json()
+                    status = data.get("status", -1)
+                    msg = data.get("msg", "")
+                    
+                    if status == 1:
+                        print(f"[F22] SUCCESS: Contact created successfully | status: {status} | msg: {msg}")
+                        print(f"[F22] Contact data: {data.get('data', {})}")
+                        
+                        # Clean up: Delete the contact to avoid crowding the list
+                        contact_id = data.get("data", {}).get("id")
+                        if contact_id:
+                            try:
+                                delete_response = self.client.delete(
+                                    f"/api/v1/contactservice/contacts/{contact_id}",
+                                    headers=self.headers,
+                                    name="/contacts/delete",
+                                )
+                                if delete_response.status_code == 200:
+                                    print(f"[F22] Cleanup: Contact {contact_id} deleted successfully")
+                                else:
+                                    print(f"[F22] Cleanup: Failed to delete contact {contact_id}, status: {delete_response.status_code}")
+                            except Exception as e:
+                                print(f"[F22] Cleanup: Error deleting contact {contact_id}: {e}")
+                        
+                        response.success()
+                        
+                    elif status == 0:
+                        print(f"[F22] FAILURE: Contact creation failed | status: {status} | msg: {msg}")
+                        response.failure(f"[F22] Contact creation failed: {msg}")
+                    else:
+                        print(f"[F22] UNKNOWN: Unexpected status {status} | msg: {msg}")
+                        response.failure(f"[F22] Contact creation returned unexpected status: {status}")
+                        
+                else:
+                    print(f"[F22] HTTP ERROR: Status {response.status_code} | Response: {response.text}")
+                    response.failure(f"[F22] Contact creation HTTP error: {response.status_code}")
+
+        except Exception as e:
+            print(f"[F22] EXCEPTION: Error during contact creation: {e}")
+            # Can't call response.failure() here since response is not in scope
+            print(f"[F22] Exception details: {e}")
+
+    @task(2)
+    def get_routes(self):
+        """
+        Get all available train routes.
+        """
+        if not getattr(self, "headers", None):
+            return
+
+        self._check_and_refresh_token()
+
+        try:
+            response = self.client.get(
+                "/api/v1/routeservice/routes",
+                headers=self.headers,
+                name="/routes/get",
+            )
+            
+            if response.status_code == 200:
+                data = response.json()
+                routes_count = len(data.get("data", [])) if isinstance(data.get("data"), list) else 0
+                # print(f"[Routes] Successfully retrieved {routes_count} routes")
+            else:
+                print(f"[Routes] Failed to get routes: {response.status_code}")
+
+        except Exception as e:
+            print(f"[Routes] Error getting routes: {e}")
+
+    @task(2)
+    def get_stations(self):
+        """
+        Get all available train stations.
+        """
+        if not getattr(self, "headers", None):
+            return
+
+        self._check_and_refresh_token()
+
+        try:
+            response = self.client.get(
+                "/api/v1/stationservice/stations",
+                headers=self.headers,
+                name="/stations/get",
+            )
+            
+            if response.status_code == 200:
+                data = response.json()
+                stations_count = len(data.get("data", [])) if isinstance(data.get("data"), list) else 0
+                # print(f"[Stations] Successfully retrieved {stations_count} stations")
+            else:
+                print(f"[Stations] Failed to get stations: {response.status_code}")
+
+        except Exception as e:
+            print(f"[Stations] Error getting stations: {e}")
diff --git a/sregym/service/__init__.py b/sregym/service/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/service/apps/app_registry.py b/sregym/service/apps/app_registry.py
new file mode 100644
index 0000000..e16d06b
--- /dev/null
+++ b/sregym/service/apps/app_registry.py
@@ -0,0 +1,57 @@
+import json
+
+from sregym.paths import *
+from sregym.service.apps.astronomy_shop import AstronomyShop
+from sregym.service.apps.fleet_cast import FleetCast
+from sregym.service.apps.flight_ticket import FlightTicket
+from sregym.service.apps.hotel_reservation import HotelReservation
+from sregym.service.apps.social_network import SocialNetwork
+from sregym.service.apps.blueprint_hotel_reservation import BlueprintHotelReservation
+from sregym.service.helm import Helm
+
+# from sregym.service.apps.train_ticket import TrainTicket
+
+
+class AppRegistry:
+    def __init__(self):
+        self.APP_REGISTRY = {
+            "Astronomy Shop": AstronomyShop,
+            # "Flight Ticket": FlightTicket,
+            "Hotel Reservation": HotelReservation,
+            "Social Network": SocialNetwork,
+            # "Train Ticket": TrainTicket
+            "Fleet Cast": FleetCast,
+            "Blueprint Hotel Reservation": BlueprintHotelReservation
+        }
+
+        self.APP_PATH = {
+            "Astronomy Shop": ASTRONOMY_SHOP_METADATA,
+            # "Flight Ticket": FLIGHT_TICKET_METADATA,
+            "Hotel Reservation": HOTEL_RES_METADATA,
+            "Social Network": SOCIAL_NETWORK_METADATA,
+            # "Train Ticket": TRAIN_TICKET_METADATA
+            "Fleet Cast": FLEET_CAST_METADATA,
+            "Blueprint Hotel Reservation": BLUEPRINT_HOTEL_RES_METADATA
+        }
+
+    def get_app_instance(self, app_name: str):
+        if app_name not in self.APP_REGISTRY:
+            raise ValueError(f"App name {app_name} not found in registry.")
+
+        return self.APP_REGISTRY.get(app_name)()
+
+    def get_app_names(self):
+        return list(self.APP_REGISTRY.keys())
+
+    def get_app_config_file(self, app_name: str):
+        if app_name not in self.APP_PATH:
+            raise ValueError(f"App name {app_name} not found in registry.")
+
+        return self.APP_PATH.get(app_name)
+
+    def get_app_metadata(self, app_name: str):
+        config_file = self.get_app_config_file(app_name)
+        with open(config_file, "r") as file:
+            metadata = json.load(file)
+
+        return metadata
diff --git a/sregym/service/apps/astronomy_shop.py b/sregym/service/apps/astronomy_shop.py
new file mode 100644
index 0000000..ce7b19e
--- /dev/null
+++ b/sregym/service/apps/astronomy_shop.py
@@ -0,0 +1,77 @@
+"""Interface to the OpenTelemetry Astronomy Shop application"""
+
+import time
+
+from sregym.generators.workload.locust import LocustWorkloadManager
+from sregym.observer.trace_api import TraceAPI
+from sregym.paths import ASTRONOMY_SHOP_METADATA
+from sregym.service.apps.base import Application
+from sregym.service.helm import Helm
+from sregym.service.kubectl import KubeCtl
+
+
+class AstronomyShop(Application):
+    def __init__(self):
+        super().__init__(ASTRONOMY_SHOP_METADATA)
+        self.load_app_json()
+        self.kubectl = KubeCtl()
+        self.trace_api = None
+        self.create_namespace()
+
+    def load_app_json(self):
+        super().load_app_json()
+        metadata = self.get_app_json()
+        self.app_name = metadata["Name"]
+        self.description = metadata["Desc"]
+        self.frontend_service = "frontend-proxy"
+        self.frontend_port = 8080
+
+    def deploy(self):
+        """Deploy the Helm configurations."""
+        self.kubectl.create_namespace_if_not_exist(self.namespace)
+
+        self.helm_configs["extra_args"] = [
+            "--set-string",
+            "components.load-generator.envOverrides[0].name=LOCUST_BROWSER_TRAFFIC_ENABLED",
+            "--set-string",
+            "components.load-generator.envOverrides[0].value=false",
+        ]
+
+        Helm.install(**self.helm_configs)
+        Helm.assert_if_deployed(self.helm_configs["namespace"])
+        self.trace_api = TraceAPI(self.namespace)
+        self.trace_api.start_port_forward()
+
+    def delete(self):
+        """Delete the Helm configurations."""
+        Helm.uninstall(**self.helm_configs)
+        self.kubectl.delete_namespace(self.helm_configs["namespace"])
+        self.kubectl.wait_for_namespace_deletion(self.namespace)
+
+    def cleanup(self):
+        if self.trace_api:
+            self.trace_api.stop_port_forward()
+        Helm.uninstall(**self.helm_configs)
+        self.kubectl.delete_namespace(self.helm_configs["namespace"])
+
+        if hasattr(self, "wrk"):
+            # self.wrk.stop()
+            self.kubectl.delete_job(label="job=workload", namespace=self.namespace)
+
+    def create_workload(self):
+        self.wrk = LocustWorkloadManager(
+            namespace=self.namespace,
+            locust_url="load-generator:8089",
+        )
+
+    def start_workload(self):
+        if not hasattr(self, "wrk"):
+            self.create_workload()
+        self.wrk.start()
+
+
+# Run this code to test installation/deletion
+# if __name__ == "__main__":
+#     shop = AstronomyShop()
+#     shop.deploy()
+#     shop.delete()
diff --git a/sregym/service/apps/base.py b/sregym/service/apps/base.py
new file mode 100644
index 0000000..6a78309
--- /dev/null
+++ b/sregym/service/apps/base.py
@@ -0,0 +1,81 @@
+import json
+
+from sregym.paths import TARGET_MICROSERVICES
+import logging
+
+class Application:
+    """Base class for all microservice applications."""
+
+    def __init__(self, config_file: str):
+        self.config_file = config_file
+        self.name = None
+        self.namespace = None
+        self.helm_deploy = True
+        self.helm_configs = {}
+        self.k8s_deploy_path = None
+        self.local_logger = logging.getLogger("all.application")
+        self.local_logger.propagate = True
+        self.local_logger.setLevel(logging.DEBUG)
+
+    def load_app_json(self):
+        """Load (basic) application metadata into attributes.
+
+        # NOTE: override this method to load additional attributes!
+        """
+        with open(self.config_file, "r") as file:
+            metadata = json.load(file)
+
+        self.name = metadata["Name"]
+        self.namespace = metadata["Namespace"]
+        if "Helm Config" in metadata:
+            self.helm_configs = metadata["Helm Config"]
+            chart_path = self.helm_configs.get("chart_path")
+
+            if chart_path and not self.helm_configs.get("remote_chart", False):
+                self.helm_configs["chart_path"] = str(TARGET_MICROSERVICES / chart_path)
+
+        if "K8S Deploy Path" in metadata:
+            self.k8s_deploy_path = TARGET_MICROSERVICES / metadata["K8S Deploy Path"]
+
+    def get_app_json(self) -> dict:
+        """Get application metadata in JSON format.
+
+        Returns:
+            dict: application metadata
+        """
+        with open(self.config_file, "r") as file:
+            app_json = json.load(file)
+        return app_json
+
+    def get_app_summary(self) -> str:
+        """Get a summary of the application metadata in string format.
+        NOTE: for human and LLM-readable summaries!
+
+        Returns:
+            str: application metadata
+        """
+        app_json = self.get_app_json()
+        app_name = app_json.get("Name", "")
+        namespace = app_json.get("Namespace", "")
+        desc = app_json.get("Desc", "")
+        supported_operations = app_json.get("Supported Operations", [])
+        operations_str = "\n".join([f"  - {op}" for op in supported_operations])
+
+        description = f"App Name: {app_name}\nNamespace: {namespace}\nDescription: {desc}\nSupported Operations:\n{operations_str}"
+
+        return description
+
+    def create_namespace(self):
+        """Create the namespace for the application if it doesn't exist."""
+        result = self.kubectl.exec_command(f"kubectl get namespace {self.namespace}")
+        if "notfound" in result.lower():
+            self.local_logger.info(f"Namespace {self.namespace} not found. Creating namespace.")
+            create_namespace_command = f"kubectl create namespace {self.namespace}"
+            create_result = self.kubectl.exec_command(create_namespace_command)
+            self.local_logger.info(f"Namespace {self.namespace} created successfully: {create_result}")
+        else:
+            self.local_logger.info(f"Namespace {self.namespace} already exists.")
+
+    def cleanup(self):
+        """Delete the entire namespace for the application."""
+        self.kubectl.delete_namespace(self.namespace)
diff --git a/sregym/service/apps/blueprint_hotel_reservation.py b/sregym/service/apps/blueprint_hotel_reservation.py
new file mode 100644
index 0000000..1aea8ec
--- /dev/null
+++ b/sregym/service/apps/blueprint_hotel_reservation.py
@@ -0,0 +1,66 @@
+import time
+import logging
+from sregym.generators.workload.blueprint_hotel_work import BHotelWrk, BHotelWrkWorkloadManager
+from sregym.observer.trace_api import TraceAPI
+from sregym.paths import BLUEPRINT_HOTEL_RES_METADATA, FAULT_SCRIPTS, TARGET_MICROSERVICES
+from sregym.service.apps.base import Application
+from sregym.service.kubectl import KubeCtl
+
+
+local_logger = logging.getLogger("all.application")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+    
+class BlueprintHotelReservation(Application):
+    def __init__(self):
+        super().__init__(BLUEPRINT_HOTEL_RES_METADATA)
+        self.kubectl = KubeCtl()
+        self.trace_api = None
+        self.trace_api = None
+        self.script_dir = FAULT_SCRIPTS
+        self.helm_deploy = False
+
+        self.load_app_json()
+
+    def load_app_json(self):
+        super().load_app_json()
+        metadata = self.get_app_json()
+        self.app_name = metadata["Name"]
+        self.description = metadata["Desc"]
+        self.k8s_workload_job_path = TARGET_MICROSERVICES / metadata["K8S Workload Job Path"]
+
+    def deploy(self):
+        """Deploy the Kubernetes configurations."""
+        local_logger.info(f"Deploying Kubernetes configurations in namespace: {self.namespace}")
+        self.create_namespace()
+        self.kubectl.apply_configs(self.namespace, self.k8s_deploy_path)
+        self.kubectl.wait_for_ready(self.namespace)
+        self.trace_api = TraceAPI(self.namespace)
+        self.trace_api.start_port_forward()
+
+    def delete(self):
+        """Delete the configmap."""
+        self.kubectl.delete_configs(self.namespace, self.k8s_deploy_path)
+        """Delete the workload job if exists"""
+        self.kubectl.delete_configs(self.namespace, self.k8s_workload_job_path)
+
+    def cleanup(self):
+        """Delete the entire namespace for the hotel reservation application."""
+        if self.trace_api:
+            self.trace_api.stop_port_forward()
+        self.kubectl.delete_namespace(self.namespace)
+        self.kubectl.wait_for_namespace_deletion(self.namespace)
+        self.kubectl.delete_job(label="job=workload", namespace=self.namespace)
+
+    # helper methods
+    def _read_script(self, file_path: str) -> str:
+        with open(file_path, "r") as file:
+            return file.read()
+
+    def create_workload(self, tput: int = None, duration: str = None, multiplier: int = None):
+        # The observation workload interface is in the problem class, keeping this interface empty to keep consistency in conductor
+        pass
+
+    def start_workload(self):
+        # The observation workload interface is in the problem class, keeping this interface empty to keep consistency in conductor
+        pass
diff --git a/sregym/service/apps/composite_app.py b/sregym/service/apps/composite_app.py
new file mode 100644
index 0000000..4ee2b9d
--- /dev/null
+++ b/sregym/service/apps/composite_app.py
@@ -0,0 +1,39 @@
+"""A class representing a composite of mulitple applications"""
+
+import json
+
+from sregym.paths import TARGET_MICROSERVICES
+from sregym.service.apps.base import Application
+
+
+class CompositeApp:
+    def __init__(self, apps: list[Application]):
+        self.namespace = "Multiple namespaces"
+        self.apps = {}
+        for app in apps:
+            if app.name in self.apps.keys():
+                print(f"[CompositeApp] same app name: {app.name}, continue.")
+                continue
+            self.apps[app.name] = app
+        print(f"[CompositeApp] Apps: {self.apps}")
+        self.name = "CompositeApp"
+        self.app_name = "CompositeApp"
+        self.description = f"Composite application containing {len(self.apps)} apps: {', '.join(self.apps.keys())}"
+
+    def deploy(self):
+        # FIXME: this can be optimized to parallel deploy later
+        for app in self.apps.values():
+            print(f"[CompositeApp] Deploying {app.name}...")
+            app.deploy()
+
+    def start_workload(self):
+        # FIXME: this can be optimized to parallel start later
+        for app in self.apps.values():
+            print(f"[CompositeApp] Starting workload for {app.name}...")
+            app.start_workload()
+
+    def cleanup(self):
+        # FIXME: this can be optimized to parallel cleanup later
+        for app in self.apps.values():
+            print(f"[CompositeApp] Cleaning up {app.name}...")
+            app.cleanup()
diff --git a/sregym/service/apps/fleet_cast.py b/sregym/service/apps/fleet_cast.py
new file mode 100644
index 0000000..984ffbc
--- /dev/null
+++ b/sregym/service/apps/fleet_cast.py
@@ -0,0 +1,271 @@
+"""Interface to the FleetCast application (Ingress-enabled on first install; robust readiness checks)."""
+
+import json
+import os
+import subprocess
+import time
+from pathlib import Path
+
+from sregym.generators.workload.locust import LocustWorkloadManager
+from sregym.observer import tidb_prometheus
+from sregym.observer.tidb_cluster_deploy_helper import TiDBClusterDeployHelper
+from sregym.observer.logstash.jaeger.jaeger import Jaeger
+from sregym.paths import FLEET_CAST_METADATA
+from sregym.service.apps.base import Application
+from sregym.service.apps.tidb_cluster_operator import TiDBClusterDeployer
+from sregym.service.helm import Helm
+from sregym.service.kubectl import KubeCtl
+
+
+class FleetCast(Application):
+    def __init__(self):
+        super().__init__(FLEET_CAST_METADATA)
+        self.load_app_json()
+        self.kubectl = KubeCtl()
+        self.create_namespace()
+
+    def _sh(self, cmd: str, check: bool = True, capture: bool = False) -> str:
+        """Run a shell command; supports capture."""
+        print(f"$ {cmd}")
+        env = os.environ.copy()
+        env.setdefault("HELM_MAX_CHART_FILE_SIZE", "104857600")  # 100 MiB
+        if capture:
+            return subprocess.check_output(cmd, shell=True, env=env).decode()
+        subprocess.run(cmd, shell=True, check=check, env=env)
+        return ""
+
+    def load_app_json(self):
+        super().load_app_json()
+        metadata = self.get_app_json()
+        self.app_name = metadata["Name"]
+        self.description = metadata["Desc"]
+
+        self.frontend_service = "satellite-app-frontend"
+        self.frontend_port = 80
+
+    def ensure_ingress_controller(self):
+        """Install nginx-ingress via Helm if missing, then wait until it's Running."""
+        try:
+            out = self._sh("kubectl get pods -n ingress-nginx -o json", capture=True)
+            if len(json.loads(out).get("items", [])) == 0:
+                raise RuntimeError("ingress-nginx empty")
+            print("[ingress] ingress-nginx already present.")
+        except Exception:
+            self._sh("helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx || true")
+            self._sh("helm repo update")
+            self._sh(
+                "helm upgrade --install ingress-nginx ingress-nginx/ingress-nginx "
+                "-n ingress-nginx --create-namespace "
+                "--set controller.publishService.enabled=true"
+            )
+
+        print("[ingress] waiting for controller to be Running…")
+        for _ in range(60):
+            try:
+                phase = (
+                    self._sh(
+                        "kubectl -n ingress-nginx get pods "
+                        "-l app.kubernetes.io/name=ingress-nginx,app.kubernetes.io/component=controller "
+                        "-o jsonpath='{.items[0].status.phase}'",
+                        capture=True,
+                    )
+                    .strip()
+                    .strip("'")
+                )
+                if phase == "Running":
+                    print("[ingress] controller Running.")
+                    return
+            except Exception:
+                pass
+            time.sleep(2)
+        raise RuntimeError("ingress-nginx controller did not become Ready in time.")
+
+    def deploy(self):
+        """Deploy TiDB, then install FleetCast chart from repo with Ingress enabled on the first install."""
+        self.kubectl.create_namespace_if_not_exist(self.namespace)
+
+        self.ensure_ingress_controller()
+
+        print("Deploying TiDB Cluster with Operator...")
+        base_dir = Path(__file__).parent.parent
+        meta_path = base_dir / "metadata" / "tidb_metadata.json"
+        TiDBClusterDeployHelper.running_cluster()
+        print("---DEPLOYED TiDB CLUSTER---")
+
+        Helm.add_repo("fleetcast", "https://lilygn.github.io/FleetCast")
+
+        release = self.helm_configs.get("release_name", "fleetcast")
+        fullname = f"{release}-satellite-app"
+        fe_svc = f"{fullname}-frontend"
+        be_svc = f"{fullname}-backend"
+
+        ingress_args = [
+            "--set-string",
+            "ingress.enabled=true",
+            "--set-string",
+            "ingress.className=nginx",
+            "--set-string",
+            "ingress.hosts[0].host=orbital.local",
+            "--set-string",
+            "ingress.hosts[0].paths[0].path=/",
+            "--set-string",
+            "ingress.hosts[0].paths[0].pathType=Prefix",
+            "--set-string",
+            f"ingress.hosts[0].paths[0].backend.serviceName={fe_svc}",
+            "--set",
+            "ingress.hosts[0].paths[0].backend.servicePort=80",
+            "--set-string",
+            "ingress.hosts[0].paths[1].path=/api",
+            "--set-string",
+            "ingress.hosts[0].paths[1].pathType=Prefix",
+            "--set-string",
+            f"ingress.hosts[0].paths[1].backend.serviceName={be_svc}",
+            "--set",
+            "ingress.hosts[0].paths[1].backend.servicePort=5000",
+        ]
+
+        extra = self.helm_configs.get("extra_args", [])
+        if isinstance(extra, str):
+            extra = [extra]
+        self.helm_configs["extra_args"] = extra + ingress_args
+
+        Helm.install(**self.helm_configs)
+        Helm.assert_if_deployed(self.helm_configs["namespace"])
+        print("---DEPLOYED FLEETCAST---")
+
+        self.wait_for_ingress_ready(ingress_name=f"{fullname}")
+        self._print_access_hints()
+        print("\n FleetCast deployment is complete and ready.")
+        tidb_prometheus.main()
+        print("PROMETHEUS: deployed TiDB monitoring stack.")
+        Jaeger().deploy()
+
+    def _get_ingress_svc_info(self) -> dict:
+        """Return info about ingress-nginx-controller Service (type, external ip/hostname, nodePort for http/https)."""
+        svc_json = self._sh(
+            "kubectl -n ingress-nginx get svc ingress-nginx-controller -o json",
+            capture=True,
+        )
+        data = json.loads(svc_json)
+        info = {
+            "type": data["spec"].get("type"),
+            "external_ip": None,
+            "external_hostname": None,
+            "http_nodeport": None,
+            "https_nodeport": None,
+        }
+
+        lb = data.get("status", {}).get("loadBalancer", {})
+        ing = lb.get("ingress") or []
+        if ing:
+            info["external_ip"] = ing[0].get("ip")
+            info["external_hostname"] = ing[0].get("hostname")
+
+        for p in data["spec"].get("ports", []):
+            name = p.get("name", "")
+            if name == "http" or p.get("port") == 80:
+                info["http_nodeport"] = p.get("nodePort")
+            if name == "https" or p.get("port") == 443:
+                info["https_nodeport"] = p.get("nodePort")
+
+        return info
+
+    def _print_access_hints(self):
+        """Print friendly URLs based on current ingress Service shape."""
+        info = self._get_ingress_svc_info()
+
+        if info["type"] == "LoadBalancer" and (info["external_ip"] or info["external_hostname"]):
+            host = info["external_ip"] or info["external_hostname"]
+            print(f"\n FleetCast should be reachable at:  http://orbital.local/")
+            print(f"   (map {host} to orbital.local in /etc/hosts)")
+            print(f"   Backend health:                      http://orbital.local/api/health")
+            print(f"   e.g., echo '{host} orbital.local' | sudo tee -a /etc/hosts")
+            return
+
+        np = info["http_nodeport"]
+        if np:
+            print(f"\n FleetCast should be reachable at:  http://orbital.local:{np}/")
+            print(f"   Backend health:                      http://orbital.local:{np}/api/health")
+            print("If developing locally, add a hosts entry:")
+            print("  echo '<NODE-IP> orbital.local' | sudo tee -a /etc/hosts")
+            print("Then open the URLs above (replace <NODE-IP> if you curl without the Host header).")
+        else:
+            print("\nℹ️ Could not detect NodePort for HTTP. Try a local forward:")
+            print("  sudo kubectl -n ingress-nginx port-forward svc/ingress-nginx-controller 80:80")
+            print("  # then use http://orbital.local/ after adding '127.0.0.1 orbital.local' to /etc/hosts")
+
+    def wait_for_ingress_ready(self, ingress_name: str, timeout: int = 180):
+        """Wait for Ingress to exist with rules and for ALL backend Services referenced to have endpoints."""
+        ns = self.helm_configs.get("namespace", self.namespace)
+
+        t0 = time.time()
+        data = None
+        while time.time() - t0 < timeout:
+            try:
+                raw = self._sh(f"kubectl get ingress {ingress_name} -n {ns} -o json", capture=True)
+                data = json.loads(raw)
+                rules = data.get("spec", {}).get("rules", [])
+                if rules:
+                    print("[ingress] Ingress has rules.")
+                    break
+            except Exception:
+                pass
+            time.sleep(2)
+        else:
+            raise RuntimeError(f"Ingress {ingress_name} not created with rules in time.")
+
+        backend_svcs = set()
+        for rule in data.get("spec", {}).get("rules", []):
+            http = rule.get("http", {})
+            for p in http.get("paths", []):
+                svc = p.get("backend", {}).get("service", {})
+                name = svc.get("name")
+                if name:
+                    backend_svcs.add(name)
+
+        if not backend_svcs:
+            raise RuntimeError("No backend services found in Ingress spec.")
+
+        missing = []
+        for svc in sorted(backend_svcs):
+            ok = False
+            t1 = time.time()
+            while time.time() - t1 < timeout:
+                try:
+                    ed = json.loads(self._sh(f"kubectl get endpoints {svc} -n {ns} -o json", capture=True))
+                    if any(s.get("addresses") for s in ed.get("subsets", [])):
+                        ok = True
+                        break
+                except Exception:
+                    pass
+                time.sleep(2)
+            if not ok:
+                missing.append(svc)
+
+        if missing:
+            raise RuntimeError(f"Service endpoints missing for: {', '.join(missing)}")
+
+        print("[ingress] All backend service endpoints are ready:", ", ".join(sorted(backend_svcs)))
+
+    def delete(self):
+        """Delete the Helm configurations."""
+        Helm.uninstall(**self.helm_configs)
+        self.kubectl.delete_namespace(self.helm_configs["namespace"])
+        self.kubectl.wait_for_namespace_deletion(self.namespace)
+
+    def cleanup(self):
+        Helm.uninstall(**self.helm_configs)
+        self.kubectl.delete_namespace(self.helm_configs["namespace"])
+        if hasattr(self, "wrk"):
+            self.wrk.stop()
+
+    def create_workload(self):
+        self.wrk = LocustWorkloadManager(
+            namespace=self.namespace,
+            locust_url="load-generator:8089",
+        )
+
+    def start_workload(self):
+        if not hasattr(self, "wrk"):
+            self.create_workload()
+        self.wrk.start()
diff --git a/sregym/service/apps/flight_ticket.py b/sregym/service/apps/flight_ticket.py
new file mode 100644
index 0000000..5296bed
--- /dev/null
+++ b/sregym/service/apps/flight_ticket.py
@@ -0,0 +1,50 @@
+"""Interface to the Flight Ticket application"""
+
+import time
+
+from sregym.paths import FLIGHT_TICKET_METADATA, TARGET_MICROSERVICES
+from sregym.service.apps.base import Application
+from sregym.service.helm import Helm
+from sregym.service.kubectl import KubeCtl
+
+
+class FlightTicket(Application):
+    def __init__(self):
+        super().__init__(FLIGHT_TICKET_METADATA)
+        self.load_app_json()
+        self.kubectl = KubeCtl()
+        self.create_namespace()
+
+    def load_app_json(self):
+        super().load_app_json()
+        metadata = self.get_app_json()
+        self.app_name = metadata["Name"]
+        self.description = metadata["Desc"]
+        self.frontend_service = None
+        self.frontend_port = None
+
+    def deploy(self):
+        """Deploy the Helm configurations."""
+        self.kubectl.create_namespace_if_not_exist(self.namespace)
+        Helm.add_repo(
+            "flight-ticket",
+            "https://xlab-uiuc.github.io/flight-ticket",
+        )
+        Helm.install(**self.helm_configs)
+        Helm.assert_if_deployed(self.helm_configs["namespace"])
+
+    def delete(self):
+        """Delete the Helm configurations."""
+        # NOTE: We should probably clear redis?
+        Helm.uninstall(**self.helm_configs)
+        time.sleep(30)
+
+    def cleanup(self):
+        Helm.uninstall(**self.helm_configs)
+        self.kubectl.delete_namespace(self.helm_configs["namespace"])
+
+
+# if __name__ == "__main__":
+#     app = FlightTicket()
+#     app.deploy()
+# app.delete()
diff --git a/sregym/service/apps/helpers.py b/sregym/service/apps/helpers.py
new file mode 100644
index 0000000..b893bc7
--- /dev/null
+++ b/sregym/service/apps/helpers.py
@@ -0,0 +1,8 @@
+from sregym.service.apps.base import Application
+from sregym.service.kubectl import KubeCtl
+
+
+def get_frontend_url(app: Application):
+    kubectl = KubeCtl()
+    endpoint = kubectl.get_cluster_ip(app.frontend_service, app.namespace)
+    return f"http://{endpoint}:{app.frontend_port}"
diff --git a/sregym/service/apps/hotel_reservation.py b/sregym/service/apps/hotel_reservation.py
new file mode 100644
index 0000000..bdd1b90
--- /dev/null
+++ b/sregym/service/apps/hotel_reservation.py
@@ -0,0 +1,152 @@
+import time
+import logging
+from sregym.generators.workload.wrk2 import Wrk2, Wrk2WorkloadManager
+from sregym.observer.trace_api import TraceAPI
+from sregym.paths import FAULT_SCRIPTS, HOTEL_RES_METADATA, TARGET_MICROSERVICES
+from sregym.service.apps.base import Application
+from sregym.service.apps.helpers import get_frontend_url
+from sregym.service.kubectl import KubeCtl
+
+
+local_logger = logging.getLogger("all.application")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+
+class HotelReservation(Application):
+    def __init__(self):
+        super().__init__(HOTEL_RES_METADATA)
+        self.kubectl = KubeCtl()
+        self.trace_api = None
+        self.trace_api = None
+        self.script_dir = FAULT_SCRIPTS
+        self.helm_deploy = False
+
+        self.load_app_json()
+
+        self.payload_script = (
+            TARGET_MICROSERVICES / "hotelReservation/wrk2/scripts/hotel-reservation/mixed-workload_type_1.lua"
+        )
+
+    def load_app_json(self):
+        super().load_app_json()
+        metadata = self.get_app_json()
+        self.app_name = metadata["Name"]
+        self.description = metadata["Desc"]
+        self.frontend_service = metadata.get("frontend_service", "frontend")
+        self.frontend_port = metadata.get("frontend_port", 5000)
+
+    def create_configmaps(self):
+        """Create configmaps for the hotel reservation application."""
+        self.kubectl.create_or_update_configmap(
+            name="mongo-rate-script",
+            namespace=self.namespace,
+            data=self._prepare_configmap_data(["k8s-rate-mongo.sh"]),
+        )
+
+        self.kubectl.create_or_update_configmap(
+            name="mongo-geo-script",
+            namespace=self.namespace,
+            data=self._prepare_configmap_data(["k8s-geo-mongo.sh"]),
+        )
+
+        script_files = [
+            "revoke-admin-rate-mongo.sh",
+            "revoke-mitigate-admin-rate-mongo.sh",
+            "remove-admin-mongo.sh",
+            "remove-mitigate-admin-rate-mongo.sh",
+        ]
+
+        self.kubectl.create_or_update_configmap(
+            name="failure-admin-rate",
+            namespace=self.namespace,
+            data=self._prepare_configmap_data(script_files),
+        )
+
+        script_files = [
+            "revoke-admin-geo-mongo.sh",
+            "revoke-mitigate-admin-geo-mongo.sh",
+            "remove-admin-mongo.sh",
+            "remove-mitigate-admin-geo-mongo.sh",
+        ]
+
+        self.kubectl.create_or_update_configmap(
+            name="failure-admin-geo",
+            namespace=self.namespace,
+            data=self._prepare_configmap_data(script_files),
+        )
+
+    def deploy(self):
+        """Deploy the Kubernetes configurations."""
+        self.local_logger.info(f"Deploying Kubernetes configurations in namespace: {self.namespace}")
+        self.create_namespace()
+        self.create_configmaps()
+        self.kubectl.apply_configs(self.namespace, self.k8s_deploy_path)
+        self.kubectl.wait_for_ready(self.namespace)
+        self.trace_api = TraceAPI(self.namespace)
+        self.trace_api.start_port_forward()
+
+    def delete(self):
+        """Delete the configmap."""
+        self.kubectl.delete_configs(self.namespace, self.k8s_deploy_path)
+
+    def cleanup(self):
+        """Delete the entire namespace for the hotel reservation application."""
+        if self.trace_api:
+            self.trace_api.stop_port_forward()
+        self.kubectl.delete_namespace(self.namespace)
+        self.kubectl.wait_for_namespace_deletion(self.namespace)
+        pvs = self.kubectl.exec_command(
+            "kubectl get pv --no-headers | grep 'hotel-reservation' | awk '{print $1}'"
+        ).splitlines()
+
+        for pv in pvs:
+            # Check if the PV is in a 'Terminating' state and remove the finalizers if necessary
+            self._remove_pv_finalizers(pv)
+            delete_command = f"kubectl delete pv {pv}"
+            delete_result = self.kubectl.exec_command(delete_command)
+            local_logger.info(f"Deleted PersistentVolume {pv}: {delete_result.strip()}")
+        time.sleep(5)
+
+        if hasattr(self, "wrk"):
+            # self.wrk.stop()
+            self.kubectl.delete_job(label="job=workload", namespace=self.namespace)
+
+    def _remove_pv_finalizers(self, pv_name: str):
+        """Remove finalizers from the PersistentVolume to prevent it from being stuck in a 'Terminating' state."""
+        # Patch the PersistentVolume to remove finalizers if it is stuck
+        patch_command = f'kubectl patch pv {pv_name} -p \'{{"metadata":{{"finalizers":null}}}}\''
+        _ = self.kubectl.exec_command(patch_command)
+
+    # helper methods
+    def _prepare_configmap_data(self, script_files: list) -> dict:
+        data = {}
+        for file in script_files:
+            data[file] = self._read_script(f"{self.script_dir}/{file}")
+        return data
+
+    def _read_script(self, file_path: str) -> str:
+        with open(file_path, "r") as file:
+            return file.read()
+
+    def create_workload(
+        self, rate: int = 100, dist: str = "exp", connections: int = 100, duration: int = 30, threads: int = 3
+    ):
+        self.wrk = Wrk2WorkloadManager(
+            wrk=Wrk2(
+                rate=rate,
+                dist=dist,
+                connections=connections,
+                duration=duration,
+                threads=threads,
+                namespace=self.namespace,
+            ),
+            payload_script=self.payload_script,
+            url=f"{{placeholder}}",
+            namespace=self.namespace,
+        )
+
+    def start_workload(self):
+        if not hasattr(self, "wrk"):
+            self.create_workload()
+        self.wrk.url = get_frontend_url(self)
+        self.wrk.start()
diff --git a/sregym/service/apps/social_network.py b/sregym/service/apps/social_network.py
new file mode 100644
index 0000000..2335fd3
--- /dev/null
+++ b/sregym/service/apps/social_network.py
@@ -0,0 +1,109 @@
+"""Interface to the social network application from DeathStarBench"""
+
+import time
+
+from sregym.generators.workload.wrk2 import Wrk2, Wrk2WorkloadManager
+from sregym.observer.trace_api import TraceAPI
+from sregym.paths import SOCIAL_NETWORK_METADATA, TARGET_MICROSERVICES
+from sregym.service.apps.base import Application
+from sregym.service.apps.helpers import get_frontend_url
+from sregym.service.helm import Helm
+from sregym.service.kubectl import KubeCtl
+import logging
+
+local_logger = logging.getLogger("all.sregym.social_network")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+
+class SocialNetwork(Application):
+    def __init__(self):
+        super().__init__(SOCIAL_NETWORK_METADATA)
+        self.load_app_json()
+        self.kubectl = KubeCtl()
+        self.trace_api = None
+        self.local_tls_path = TARGET_MICROSERVICES / "socialNetwork/helm-chart/socialnetwork"
+
+        self.payload_script = TARGET_MICROSERVICES / "socialNetwork/wrk2/scripts/social-network/mixed-workload.lua"
+
+    def load_app_json(self):
+        super().load_app_json()
+        metadata = self.get_app_json()
+        self.app_name = metadata["Name"]
+        self.description = metadata["Desc"]
+        self.frontend_service = metadata.get("frontend_service", "nginx-thrift")
+        self.frontend_port = metadata.get("frontend_port", 8080)
+
+    def create_tls_secret(self):
+        check_sec = f"kubectl get secret mongodb-tls -n {self.namespace}"
+        result = self.kubectl.exec_command(check_sec)
+        if "notfound" in result.lower():
+            create_sec_command = (
+                f"kubectl create secret generic mongodb-tls "
+                f"--from-file=tls.pem={self.local_tls_path}/tls.pem "
+                f"--from-file=ca.crt={self.local_tls_path}/ca.crt "
+                f"-n {self.namespace}"
+            )
+            create_result = self.kubectl.exec_command(create_sec_command)
+            local_logger.debug(f"TLS secret created: {create_result.strip()}")
+        else:
+            local_logger.debug("TLS secret already exists. Skipping creation.")
+
+    def deploy(self):
+        """Deploy the Helm configurations with architecture-aware image selection."""
+        self.create_namespace()
+        self.create_tls_secret()
+        node_architectures = self.kubectl.get_node_architectures()
+        is_arm = any(arch in ["arm64", "aarch64"] for arch in node_architectures)
+
+        if is_arm:
+            # Use the ARM-compatible image for media-frontend
+            if "extra_args" not in self.helm_configs:
+                self.helm_configs["extra_args"] = []
+
+            self.helm_configs["extra_args"].append(
+                "--set media-frontend.container.image=jacksonarthurclark/media-frontend"
+            )
+            self.helm_configs["extra_args"].append("--set media-frontend.container.imageVersion=latest")
+
+        Helm.install(**self.helm_configs)
+        Helm.assert_if_deployed(self.helm_configs["namespace"])
+        self.trace_api = TraceAPI(self.namespace)
+        self.trace_api.start_port_forward()
+
+    def delete(self):
+        """Delete the Helm configurations."""
+        Helm.uninstall(**self.helm_configs)
+
+    def cleanup(self):
+        """Delete the entire namespace for the social network application."""
+        if self.trace_api:
+            self.trace_api.stop_port_forward()
+        Helm.uninstall(**self.helm_configs)
+
+        if hasattr(self, "wrk"):
+            # self.wrk.stop()
+            self.kubectl.delete_job(label="job=workload", namespace=self.namespace)
+        self.kubectl.delete_namespace(self.namespace)
+
+    def create_workload(
+        self, rate: int = 100, dist: str = "exp", connections: int = 3, duration: int = 10, threads: int = 3
+    ):
+        self.wrk = Wrk2WorkloadManager(
+            wrk=Wrk2(
+                rate=rate,
+                dist=dist,
+                connections=connections,
+                duration=duration,
+                threads=threads,
+                namespace=self.namespace,
+            ),
+            payload_script=self.payload_script,
+            url=f"{{placeholder}}/wrk2-api/post/compose",
+            namespace=self.namespace,
+        )
+
+    def start_workload(self):
+        if not hasattr(self, "wrk"):
+            self.create_workload()
+        self.wrk.url = get_frontend_url(self) + "/wrk2-api/post/compose"
+        self.wrk.start()
diff --git a/sregym/service/apps/tidb_cluster_operator.py b/sregym/service/apps/tidb_cluster_operator.py
new file mode 100644
index 0000000..9d0ad73
--- /dev/null
+++ b/sregym/service/apps/tidb_cluster_operator.py
@@ -0,0 +1,296 @@
+import json
+import os
+import subprocess
+import time
+from pathlib import Path
+from textwrap import dedent
+
+from sregym.observer import tidb_prometheus
+from sregym.paths import BASE_DIR
+
+
+class TiDBClusterDeployer:
+    def __init__(self, metadata_path):
+        with open(metadata_path, "r") as f:
+            self.metadata = json.load(f)
+
+        self.name = self.metadata["Name"]
+        self.namespace_tidb_cluster = self.metadata["K8S Config"]["namespace"]
+        self.cluster_config_url = self.metadata["K8S Config"]["config_url"]
+
+        self.operator_namespace = self.metadata["Helm Operator Config"]["namespace"]
+        self.operator_release_name = self.metadata["Helm Operator Config"]["release_name"]
+        self.operator_chart = self.metadata["Helm Operator Config"]["chart_path"]
+        self.operator_version = self.metadata["Helm Operator Config"]["version"]
+        self.operator_crd_url = self.metadata["Helm Operator Config"]["CRD"]
+
+        env_path = os.environ.get("TIDB_OPERATOR_VALUES")
+        self.operator_values_path = ""
+        if env_path and Path(env_path).expanduser().exists():
+            self.operator_values_path = str(Path(env_path).expanduser().resolve())
+        else:
+            repo_root = Path(__file__).resolve().parents[3]
+            candidates = [
+                repo_root / "SREGym-applications/FleetCast/satellite-app/values.yaml",
+                repo_root / "SREGym-applications/FleetCast/tidb-operator/values.yaml",
+            ]
+            for p in candidates:
+                if p.exists():
+                    self.operator_values_path = str(p.resolve())
+                    break
+
+        self.tidb_service = self.metadata.get("TiDB Service", "basic-tidb")
+        self.tidb_port = int(self.metadata.get("TiDB Port", 4000))
+        self.tidb_user = self.metadata.get("TiDB User", "root")
+
+    def run_cmd(self, cmd):
+        print(f"Running: {cmd}")
+        subprocess.run(cmd, shell=True, check=True)
+
+    def create_namespace(self, ns):
+        self.run_cmd(f"kubectl create ns {ns} --dry-run=client -o yaml | kubectl apply -f -")
+
+    def install_crds(self):
+        print(f"Installing CRDs from {self.operator_crd_url} ...")
+        self.run_cmd(f"kubectl create -f {self.operator_crd_url} || kubectl replace -f {self.operator_crd_url}")
+
+    def install_local_path_provisioner(self):
+        print("Installing local-path provisioner for dynamic volume provisioning...")
+        self.run_cmd(
+            "kubectl apply -f https://raw.githubusercontent.com/rancher/local-path-provisioner/master/deploy/local-path-storage.yaml"
+        )
+        self.run_cmd(
+            'kubectl patch storageclass local-path -p \'{"metadata": {"annotations":{"storageclass.kubernetes.io/is-default-class":"true"}}}\''
+        )
+
+    def apply_prometheus(self):
+        ns = "observe"
+        prom_yml_path = BASE_DIR / "SREGym-applications/FleetCast/prometheus/prometheus.yaml"
+
+        prom_yml_path = str(prom_yml_path.resolve())
+        if not os.path.isfile(prom_yml_path):
+            raise FileNotFoundError(f"prometheus.yaml not found at {prom_yml_path}")
+
+        self.run_cmd(
+            f"kubectl -n {ns} create configmap prometheus-config "
+            f"--from-file=prometheus.yml={prom_yml_path} "
+            f"-o yaml --dry-run=client | kubectl apply -f -"
+        )
+
+        self.run_cmd(
+            "kubectl -n observe port-forward svc/prometheus-server 9090:80 >/dev/null 2>&1 & "
+            "PF=$!; sleep 1; curl -s -X POST http://127.0.0.1:9090/-/reload >/dev/null; kill $PF || true"
+        )
+
+        print(f"[ok] Prometheus config applied from {prom_yml_path}")
+
+    def install_operator_with_values(self):
+        print(f"Installing/upgrading TiDB Operator via Helm in namespace '{self.operator_namespace}'...")
+        self.create_namespace(self.operator_namespace)
+        self.run_cmd("helm repo add pingcap https://charts.pingcap.org || true")
+        self.run_cmd("helm repo update")
+
+        values_arg = ""
+        if self.operator_values_path:
+            print(f"[info] Using values file: {self.operator_values_path}")
+            values_arg = f"-f {self.operator_values_path}"
+        else:
+            print("[warn] No values.yaml found; installing with chart defaults")
+
+        self.run_cmd(
+            f"helm upgrade --install {self.operator_release_name} {self.operator_chart} "
+            f"--version {self.operator_version} -n {self.operator_namespace} "
+            f"--create-namespace {values_arg} "
+        )
+
+    def wait_for_operator_ready(self):
+        print("Waiting for tidb-controller-manager pod to be running...")
+        label = "app.kubernetes.io/component=controller-manager"
+        for _ in range(24):
+            try:
+                status = (
+                    subprocess.check_output(
+                        f"kubectl get pods -n {self.operator_namespace} -l {label} -o jsonpath='{{.items[0].status.phase}}'",
+                        shell=True,
+                    )
+                    .decode()
+                    .strip()
+                )
+                if status == "Running":
+                    print(" tidb-controller-manager pod is running.")
+                    return
+            except subprocess.CalledProcessError:
+                pass
+            print("-- Pod not ready yet, retrying in 5 seconds...")
+            time.sleep(5)
+        raise RuntimeError("--------Timeout waiting for tidb-controller-manager pod")
+
+    def deploy_tidb_cluster(self):
+        print(f"Creating TiDB cluster namespace '{self.namespace_tidb_cluster}'...")
+        self.create_namespace(self.namespace_tidb_cluster)
+        print(f"Deploying TiDB cluster manifest from {self.cluster_config_url}...")
+        self.run_cmd(f"kubectl apply -f {self.cluster_config_url} -n {self.namespace_tidb_cluster}")
+
+    def run_sql(self, sql_text: str):
+        ns = self.namespace_tidb_cluster
+        svc = f"{self.tidb_service}.{ns}.svc"
+        port = self.tidb_port
+        user = self.tidb_user
+
+        self.run_cmd(f"kubectl -n {ns} delete pod/mysql-client --ignore-not-found")
+        self.run_cmd(
+            f"kubectl -n {ns} run mysql-client --image=mysql:8 --restart=Never --command -- sleep 3600 || true"
+        )
+        self.run_cmd(f"kubectl -n {ns} wait --for=condition=Ready pod/mysql-client --timeout=180s")
+
+        sql = dedent(sql_text).strip()
+        heredoc = f"""kubectl -n {ns} exec -i mysql-client -- bash -lc "cat <<'SQL' | mysql -h {svc} -P {port} -u{user}
+{sql}
+SQL"
+"""
+        self.run_cmd(heredoc)
+
+        self.run_cmd(f"kubectl -n {ns} delete pod/mysql-client --wait=false || true")
+
+    def init_schema_and_seed(self):
+
+        print("Initializing schema and seeding data in satellite_sim ...")
+        sql = """
+        CREATE DATABASE IF NOT EXISTS satellite_sim;
+        USE satellite_sim;
+
+        DROP TABLE IF EXISTS telemetry;
+        DROP TABLE IF EXISTS contact_windows;
+
+        CREATE TABLE contact_windows (
+          id BIGINT PRIMARY KEY AUTO_INCREMENT,
+          satellite_id VARCHAR(20),
+          ground_station_id VARCHAR(20),
+          start_time DATETIME,
+          end_time DATETIME,
+          timestamp DATETIME,
+          distance FLOAT,
+          datavolume INT,
+          priority INT,
+          assigned BOOLEAN DEFAULT FALSE,
+          KEY idx_active (assigned, end_time),
+          KEY idx_gs_sat (ground_station_id, satellite_id)
+        );
+
+        CREATE TABLE telemetry (
+          id BIGINT PRIMARY KEY AUTO_INCREMENT,
+          satellite_id VARCHAR(20),
+          ground_station_id VARCHAR(20),
+          timestamp DATETIME,
+          battery_level FLOAT,
+          temperature FLOAT,
+          position_lat FLOAT,
+          position_lon FLOAT,
+          status VARCHAR(20),
+          KEY idx_sat_time (satellite_id, timestamp),
+          KEY idx_gs_time  (ground_station_id, timestamp)
+        );
+        """
+        self.run_sql(sql)
+
+    def wait_for_pods_ready(self, selector: str, poll: float = 1.0):
+        """
+        Poll every `poll` seconds until ALL pods matching `selector` are Ready.
+        Runs indefinitely until condition is met.
+        """
+        ns = self.namespace_tidb_cluster
+        while True:
+            try:
+                out = subprocess.check_output(
+                    f"kubectl -n {ns} get pods -l '{selector}' "
+                    "-o jsonpath='{range .items[*]}{.metadata.name} "
+                    '{range .status.containerStatuses[*]}{.ready} {end}{"\\n"}{end}\'',
+                    shell=True,
+                ).decode()
+
+                lines = [ln.strip() for ln in out.splitlines() if ln.strip()]
+                if lines:
+                    all_ready = True
+                    for ln in lines:
+                        parts = ln.split()
+                        if not parts or not all(p.lower() == "true" for p in parts[1:]):
+                            all_ready = False
+                            break
+                    if all_ready:
+                        print(f"[ok] All pods with selector '{selector}' are Ready.")
+                        return
+            except subprocess.CalledProcessError:
+                pass
+            time.sleep(poll)
+
+    def wait_for_basic_workloads(self):
+        """
+        Wait (no timeout) for PD, TiKV, and TiDB pods to be Ready,
+        then wait for the TiDB Service to exist and have endpoints.
+        """
+        ns = self.namespace_tidb_cluster
+        cluster = "basic"
+
+        # 1) PD
+        self.wait_for_pods_ready(selector="app.kubernetes.io/instance=basic,app.kubernetes.io/component=pd")
+
+        # 2) TiKV
+        self.wait_for_pods_ready(selector="app.kubernetes.io/instance=basic,app.kubernetes.io/component=tikv")
+
+        # 3) TiDB
+        self.wait_for_pods_ready(selector="app.kubernetes.io/instance=basic,app.kubernetes.io/component=tidb")
+
+        try:
+            svc_name = (
+                subprocess.check_output(
+                    f"kubectl -n {ns} get svc -l app.kubernetes.io/instance={cluster},"
+                    "app.kubernetes.io/component=tidb "
+                    "-o jsonpath='{.items[0].metadata.name}'",
+                    shell=True,
+                )
+                .decode()
+                .strip()
+                .strip("'")
+            )
+            if not svc_name:
+                svc_name = self.tidb_service
+        except subprocess.CalledProcessError:
+            svc_name = self.tidb_service
+
+        print(f"[info] Using TiDB Service: {svc_name}")
+        self.tidb_service = svc_name
+        while True:
+            try:
+                eps = (
+                    subprocess.check_output(
+                        f"kubectl -n {ns} get endpoints {svc_name} "
+                        "-o jsonpath='{range .subsets[*].addresses[*]}{.ip}{\"\\n\"}{end}'",
+                        shell=True,
+                    )
+                    .decode()
+                    .strip()
+                    .strip("'")
+                )
+                if eps:
+                    print(f"[ok] Service {svc_name} has endpoints:\n{eps}")
+                    return
+            except subprocess.CalledProcessError:
+                pass
+            time.sleep(1.0)
+
+    def deploy_all(self):
+        print(f"----------Starting deployment: {self.name}")
+        self.create_namespace(self.namespace_tidb_cluster)
+        self.install_local_path_provisioner()
+        self.install_crds()
+        self.install_operator_with_values()
+        self.wait_for_operator_ready()
+        self.deploy_tidb_cluster()
+        self.wait_for_basic_workloads()
+        self.init_schema_and_seed()
+        print("-------------TiDB cluster deployment complete.")
+
+
+if __name__ == "__main__":
+    deployer = TiDBClusterDeployer("../metadata/tidb_metadata.json")
+    deployer.deploy_all()
diff --git a/sregym/service/apps/train_ticket.py b/sregym/service/apps/train_ticket.py
new file mode 100644
index 0000000..280651b
--- /dev/null
+++ b/sregym/service/apps/train_ticket.py
@@ -0,0 +1,163 @@
+"""Interface to the Train Ticket application"""
+
+import os
+import tempfile
+import time
+from pathlib import Path
+
+from sregym.generators.workload.locust import LocustWorkloadManager
+from sregym.paths import TARGET_MICROSERVICES, TRAIN_TICKET_METADATA
+from sregym.service.apps.base import Application
+from sregym.service.helm import Helm
+from sregym.service.kubectl import KubeCtl
+
+
+class TrainTicket(Application):
+    def __init__(self):
+        super().__init__(str(TRAIN_TICKET_METADATA))
+        self.load_app_json()
+        self.kubectl = KubeCtl()
+        self.workload_manager = None
+        self.create_namespace()
+
+    def load_app_json(self):
+        super().load_app_json()
+        metadata = self.get_app_json()
+        self.app_name = metadata["Name"]
+        self.description = metadata["Desc"]
+        self.frontend_service = None
+        self.frontend_port = None
+
+    def deploy(self):
+        if self._is_train_ticket_deployed():
+            print(
+                f"[TrainTicket] Skipping deployment: train-ticket app is already deployed in namespace {self.namespace}"
+            )
+            return
+
+        if self.namespace:
+            self.kubectl.create_namespace_if_not_exist(self.namespace)
+
+        Helm.install(**self.helm_configs)
+        self.kubectl.wait_for_job_completion(job_name="train-ticket-deploy", namespace="train-ticket", timeout=1200)
+
+        self._deploy_flagd_infrastructure()
+        self._deploy_load_generator()
+
+    def delete(self):
+        """Delete the Helm configurations."""
+        # Helm.uninstall(**self.helm_configs) # Don't helm uninstall until cleanup job is fixed on train-ticket
+        if self._is_train_ticket_deployed():
+            print(
+                f"[TrainTicket] Skipping deletion: train-ticket app is currently deployed in namespace {self.namespace}"
+            )
+            return
+
+        if self.namespace:
+            self.kubectl.delete_namespace(self.namespace)
+        self.kubectl.wait_for_namespace_deletion(self.namespace)
+
+    def _is_train_ticket_deployed(self):
+        """Check if the train-ticket app is currently deployed."""
+        try:
+
+            # Check if the namespace exists
+            namespace_exists = self.kubectl.exec_command(f"kubectl get namespace {self.namespace}")
+            if "not found" in namespace_exists or "No resources found" in namespace_exists:
+                return False
+
+            # Check if train-ticket deployment exists
+            deployment_exists = self.kubectl.exec_command(f"kubectl get deployment -n {self.namespace}")
+            if "No resources found" in deployment_exists or not deployment_exists.strip():
+                return False
+
+            return True
+        except Exception as e:
+            print(f"[TrainTicket] Warning: Failed to check deployment status: {e}")
+            return False
+
+    def cleanup(self):
+        """Cleanup the train-ticket application if it's not currently deployed."""
+        if self._is_train_ticket_deployed():
+            print(
+                f"[TrainTicket] Skipping cleanup: train-ticket app is currently deployed in namespace {self.namespace}"
+            )
+            return
+
+        # Helm.uninstall(**self.helm_configs)
+        if self.namespace:
+            self.kubectl.delete_namespace(self.namespace)
+
+    def create_workload(self):
+        """Create workload manager for log collection (like astronomy shop)."""
+        self.wrk = LocustWorkloadManager(
+            namespace=self.namespace,
+            locust_url="load-generator:8089",
+        )
+
+    def start_workload(self):
+        """Start workload log collection (like astronomy shop)."""
+        if not hasattr(self, "wrk"):
+            self.create_workload()
+        self.wrk.start()
+        print("[TrainTicket] Workload log collection started")
+
+    def stop_workload(self):
+        if hasattr(self, "wrk"):
+            self.wrk.stop()
+            print("[TrainTicket] Workload log collection stopped")
+
+    def _deploy_flagd_infrastructure(self):
+        try:
+            flagd_templates_path = TARGET_MICROSERVICES / "train-ticket" / "templates"
+
+            if (flagd_templates_path / "flagd-deployment.yaml").exists():
+                result = self.kubectl.exec_command(f"kubectl apply -f {flagd_templates_path / 'flagd-deployment.yaml'}")
+                print(f"[TrainTicket] Deployed flagd service: {result}")
+
+            if (flagd_templates_path / "flagd-config.yaml").exists():
+                result = self.kubectl.exec_command(f"kubectl apply -f {flagd_templates_path / 'flagd-config.yaml'}")
+                print(f"[TrainTicket] Deployed flagd ConfigMap: {result}")
+
+            print(f"[TrainTicket] flagd infrastructure deployed successfully")
+
+        except Exception as e:
+            print(f"[TrainTicket] Warning: Failed to deploy flagd infrastructure: {e}")
+
+    def _deploy_load_generator(self):
+        try:
+
+            locustfile_path = Path(__file__).parent.parent.parent / "resources" / "trainticket" / "locustfile.py"
+
+            if locustfile_path.exists():
+                result = self.kubectl.exec_command(
+                    f"kubectl create configmap locustfile-config --from-file=locustfile.py={locustfile_path} -n {self.namespace} --dry-run=client -o yaml | kubectl apply -f -"
+                )
+                print(f"[TrainTicket] Created ConfigMap from file: {result}")
+
+            deployment_path = (
+                Path(__file__).parent.parent.parent / "resources" / "trainticket" / "locust-deployment.yaml"
+            )
+
+            if deployment_path.exists():
+                with open(deployment_path, "r") as f:
+                    content = f.read()
+
+                with tempfile.NamedTemporaryFile(mode="w", suffix=".yaml", delete=False) as tmp:
+                    tmp.write(content)
+                    temp_path = tmp.name
+
+                result = self.kubectl.exec_command(f"kubectl apply -f {temp_path}")
+                os.unlink(temp_path)
+                print(f"[TrainTicket] Deployed load generator: {result}")
+
+            print("[TrainTicket] Load generator deployed with auto-start")
+
+        except Exception as e:
+            print(f"[TrainTicket] Warning: Failed to deploy load generator: {e}")
+
+
+# if __name__ == "__main__":
+#     app = TrainTicket()
+#     app.deploy()
+#     app.delete()
diff --git a/sregym/service/dm_dust_manager.py b/sregym/service/dm_dust_manager.py
new file mode 100644
index 0000000..2bf83d7
--- /dev/null
+++ b/sregym/service/dm_dust_manager.py
@@ -0,0 +1,242 @@
+import json
+import shlex
+import subprocess
+import time
+from typing import Dict, List, Optional
+
+from sregym.service.kubectl import KubeCtl
+
+# Constants
+DEFAULT_KHAOS_NS = "khaos"
+DEFAULT_KHAOS_LABEL = "app=khaos"
+DM_DUST_DEVICE_NAME = "openebs_dust"
+DM_DUST_BACKING_FILE = "/var/tmp/openebs_dm_dust.img"
+DM_DUST_BACKING_FILE_SIZE_GB = 5
+OPENEBS_LOCAL_PATH = "/var/openebs/local"
+DEFAULT_BLOCK_SIZE = 512
+SETUP_TIMEOUT_SECONDS = 120
+
+
+class DmDustManager:
+    """
+    Manages dm-dust infrastructure setup for fault injection.
+
+    This class sets up dm-dust devices to intercept all OpenEBS local storage,
+    allowing any application using OpenEBS to have fault injection capabilities
+    without needing to know specific service names or PVC details.
+
+    The setup process:
+    1. Creates a large dm-dust device
+    2. Mounts it at /var/openebs/local
+    3. All PVs created by OpenEBS will automatically use this dm-dust device
+    """
+
+    def __init__(
+        self,
+        kubectl: KubeCtl,
+        khaos_ns: str = DEFAULT_KHAOS_NS,
+        khaos_label: str = DEFAULT_KHAOS_LABEL,
+    ):
+        self.kubectl = kubectl
+        self.khaos_ns = khaos_ns
+        self.khaos_label = khaos_label
+        self._pod_cache: Dict[str, str] = {}  # Cache pod names by node
+
+    def setup_openebs_dm_dust_infrastructure(self, nodes: Optional[List[str]] = None) -> None:
+        """
+        Set up dm-dust to intercept all OpenEBS local storage on the specified nodes.
+        Creates a dm-dust device that will be used for all PVs created in /var/openebs/local/.
+
+        Args:
+            nodes: List of node names to set up. If None, sets up on all nodes in the cluster.
+        """
+        if nodes is None:
+            nodes_response = self.kubectl.list_nodes()
+            nodes = [node.metadata.name for node in nodes_response.items]
+
+        if not nodes:
+            raise RuntimeError("No nodes available for dm-dust setup")
+
+        for node in nodes:
+            try:
+                self._setup_dm_dust_on_node(node)
+                print(f"[dm-dust] ✅ Set up dm-dust infrastructure on {node}")
+            except Exception as e:
+                print(f"[dm-dust] ❌ Failed to set up dm-dust on {node}: {e}")
+                raise
+
+    def _setup_dm_dust_on_node(self, node: str) -> None:
+        """Set up dm-dust device to intercept OpenEBS storage on a single node."""
+        print(f"[dm-dust] Setting up dm-dust on {node}...")
+
+        # Build the complete setup script from logical sections
+        script_parts = [
+            self._build_module_check_script(),
+            self._build_cleanup_script(),
+            self._build_backing_file_script(),
+            self._build_dm_dust_create_script(),
+            self._build_mount_script(),
+        ]
+
+        full_script = "set -e\n" + "\n".join(script_parts)
+
+        # Execute using nsenter to access host namespace
+        pod = self._get_khaos_pod_on_node(node)
+        cmd = [
+            "kubectl",
+            "-n",
+            self.khaos_ns,
+            "exec",
+            pod,
+            "--",
+            "nsenter",
+            "-t",
+            "1",
+            "-m",
+            "-u",
+            "-i",
+            "-n",
+            "-p",
+            "sh",
+            "-c",
+            full_script,
+        ]
+
+        try:
+            rc = subprocess.run(cmd, timeout=SETUP_TIMEOUT_SECONDS, capture_output=True, text=True)
+            if rc.returncode != 0:
+                error_msg = f"Failed to setup dm-dust on {node}: return code {rc.returncode}"
+                if rc.stderr:
+                    error_msg += f"\nStderr: {rc.stderr}"
+                if rc.stdout:
+                    error_msg += f"\nStdout: {rc.stdout}"
+                raise RuntimeError(error_msg)
+        except subprocess.TimeoutExpired:
+            raise RuntimeError(f"Timeout setting up dm-dust on {node} after {SETUP_TIMEOUT_SECONDS} seconds")
+
+    def _build_module_check_script(self) -> str:
+        """Build script to check and load dm_dust module."""
+        return f"""
+echo 'Setting up dm-dust for OpenEBS local storage...'
+echo 'Checking dm_dust module...'
+modprobe dm_dust || {{ echo 'Failed to load dm_dust module'; exit 1; }}
+lsmod | grep dm_dust || {{ echo 'dm_dust module not found in lsmod'; exit 1; }}
+echo 'Checking device-mapper targets...'
+dmsetup targets | grep dust || {{ echo 'dust target not available in dmsetup'; exit 1; }}
+"""
+
+    def _build_cleanup_script(self) -> str:
+        """Build script to clean up existing dm-dust infrastructure."""
+        openebs_path = OPENEBS_LOCAL_PATH
+        return f"""
+DM_NAME={DM_DUST_DEVICE_NAME}
+BACKING_FILE={shlex.quote(DM_DUST_BACKING_FILE)}
+
+echo 'Cleaning up any existing dm-dust infrastructure...'
+
+# Unmount if mounted
+if mountpoint -q {shlex.quote(openebs_path)} 2>/dev/null; then
+    echo 'Unmounting {openebs_path}...'
+    umount {shlex.quote(openebs_path)} 2>/dev/null || umount -f {shlex.quote(openebs_path)} 2>/dev/null || true
+    sleep 1
+fi
+
+# Remove existing dm device
+if dmsetup info $DM_NAME >/dev/null 2>&1; then
+    echo 'Found existing device $DM_NAME, attempting removal...'
+    mount | grep "/dev/mapper/$DM_NAME" | awk '{{print $3}}' | xargs -r -I {{}} umount -l {{}} 2>/dev/null || true
+    sleep 1
+    if dmsetup remove $DM_NAME 2>/dev/null; then
+        echo 'Device removed successfully'
+    elif dmsetup remove --force $DM_NAME 2>/dev/null; then
+        echo 'Device removed with --force'
+    else
+        echo 'Device is busy, renaming and marking for deferred removal...'
+        timestamp=$(date +%s)
+        dmsetup rename $DM_NAME ${{DM_NAME}}_old_${{timestamp}} 2>/dev/null || true
+        dmsetup remove --deferred ${{DM_NAME}}_old_${{timestamp}} 2>/dev/null || true
+        echo 'Old device will be cleaned up automatically when kernel releases it'
+    fi
+fi
+
+# Clean up backing file and loop devices
+if [ -f $BACKING_FILE ]; then
+    echo 'Cleaning up old backing file and loop devices...'
+    losetup -j $BACKING_FILE 2>/dev/null | awk -F: '{{print $1}}' | xargs -r losetup -d 2>/dev/null || true
+    rm -f $BACKING_FILE
+fi
+"""
+
+    def _build_backing_file_script(self) -> str:
+        """Build script to create backing file and loop device."""
+        openebs_path = OPENEBS_LOCAL_PATH
+        return f"""
+BACKING_FILE={shlex.quote(DM_DUST_BACKING_FILE)}
+
+echo 'Preparing OpenEBS directory at {openebs_path}...'
+rm -rf {shlex.quote(openebs_path)}/* 2>/dev/null || true
+mkdir -p {shlex.quote(openebs_path)}
+
+echo 'Creating {DM_DUST_BACKING_FILE_SIZE_GB}GB backing file for OpenEBS dm-dust...'
+dd if=/dev/zero of=$BACKING_FILE bs=1M count={DM_DUST_BACKING_FILE_SIZE_GB * 1024}
+
+echo 'Setting up loop device...'
+LOOP_DEV=$(losetup -f --show $BACKING_FILE)
+echo "Loop device: $LOOP_DEV"
+"""
+
+    def _build_dm_dust_create_script(self) -> str:
+        """Build script to create and format dm-dust device."""
+        return f"""
+DM_NAME={DM_DUST_DEVICE_NAME}
+SECTORS=$(blockdev --getsz $LOOP_DEV)
+echo "Sectors: $SECTORS"
+
+echo 'Creating healthy dm-dust device for OpenEBS...'
+echo 'Running dmsetup create command...'
+dmsetup create $DM_NAME --table "0 $SECTORS dust $LOOP_DEV 0 {DEFAULT_BLOCK_SIZE}" || {{
+    echo 'dmsetup create failed'
+    dmsetup targets
+    exit 1
+}}
+
+echo 'dmsetup create completed successfully'
+echo 'Verifying dm device was created...'
+ls -la /dev/mapper/$DM_NAME || {{ echo 'dm device not found'; exit 1; }}
+
+echo 'Formatting dm-dust device with ext4...'
+mkfs.ext4 -F /dev/mapper/$DM_NAME || {{ echo 'mkfs.ext4 failed'; exit 1; }}
+"""
+
+    def _build_mount_script(self) -> str:
+        """Build script to mount dm-dust device and set permissions."""
+        openebs_path = OPENEBS_LOCAL_PATH
+        return f"""
+DM_NAME={DM_DUST_DEVICE_NAME}
+echo 'Mounting dm-dust device at {openebs_path}...'
+mount /dev/mapper/$DM_NAME {shlex.quote(openebs_path)}
+
+echo 'Setting proper permissions...'
+chmod 755 {shlex.quote(openebs_path)}
+
+echo 'OpenEBS dm-dust infrastructure ready - all PVs will use dm-dust'
+"""
+
+    def _get_khaos_pod_on_node(self, node: str) -> str:
+        """Find a running Khaos pod on the specified node, with caching."""
+        if node in self._pod_cache:
+            return self._pod_cache[node]
+
+        cmd = f"kubectl -n {shlex.quote(self.khaos_ns)} get pods -l {shlex.quote(self.khaos_label)} -o json"
+        out = self.kubectl.exec_command(cmd)
+        if not out:
+            raise RuntimeError(f"Failed to get pods: empty response")
+
+        data = json.loads(out)
+        for item in data.get("items", []):
+            if item.get("spec", {}).get("nodeName") == node and item.get("status", {}).get("phase") == "Running":
+                pod_name = item["metadata"]["name"]
+                self._pod_cache[node] = pod_name
+                return pod_name
+
+        raise RuntimeError(f"No running Khaos pod found on node {node}")
diff --git a/sregym/service/dm_flakey_manager.py b/sregym/service/dm_flakey_manager.py
new file mode 100644
index 0000000..511ef56
--- /dev/null
+++ b/sregym/service/dm_flakey_manager.py
@@ -0,0 +1,243 @@
+import json
+import shlex
+import subprocess
+import time
+from typing import Dict, List, Optional
+
+from sregym.service.kubectl import KubeCtl
+
+# Constants
+DEFAULT_KHAOS_NS = "khaos"
+DEFAULT_KHAOS_LABEL = "app=khaos"
+DM_FLAKEY_DEVICE_NAME = "openebs_flakey"
+DM_FLAKEY_BACKING_FILE = "/var/tmp/openebs_dm_flakey.img"
+DM_FLAKEY_BACKING_FILE_SIZE_GB = 5
+OPENEBS_LOCAL_PATH = "/var/openebs/local"
+DEFAULT_BLOCK_SIZE = 512
+SETUP_TIMEOUT_SECONDS = 120
+
+
+class DmFlakeyManager:
+    """
+    Manages dm-flakey infrastructure setup for fault injection.
+
+    This class sets up dm-flakey devices to intercept all OpenEBS local storage,
+    allowing any application using OpenEBS to have fault injection capabilities
+    without needing to know specific service names or PVC details.
+
+    The setup process:
+    1. Creates a large dm-flakey device
+    2. Mounts it at /var/openebs/local
+    3. All PVs created by OpenEBS will automatically use this dm-flakey device
+    """
+
+    def __init__(
+        self,
+        kubectl: KubeCtl,
+        khaos_ns: str = DEFAULT_KHAOS_NS,
+        khaos_label: str = DEFAULT_KHAOS_LABEL,
+    ):
+        self.kubectl = kubectl
+        self.khaos_ns = khaos_ns
+        self.khaos_label = khaos_label
+        self._pod_cache: Dict[str, str] = {}  # Cache pod names by node
+
+    def setup_openebs_dm_flakey_infrastructure(self, nodes: Optional[List[str]] = None) -> None:
+        """
+        Set up dm-flakey to intercept all OpenEBS local storage on the specified nodes.
+        Creates a dm-flakey device that will be used for all PVs created in /var/openebs/local/.
+
+        Args:
+            nodes: List of node names to set up. If None, sets up on all nodes in the cluster.
+        """
+        if nodes is None:
+            nodes_response = self.kubectl.list_nodes()
+            nodes = [node.metadata.name for node in nodes_response.items]
+
+        if not nodes:
+            raise RuntimeError("No nodes available for dm-flakey setup")
+
+        for node in nodes:
+            try:
+                self._setup_dm_flakey_on_node(node)
+                print(f"[dm-flakey] ✅ Set up dm-flakey infrastructure on {node}")
+            except Exception as e:
+                print(f"[dm-flakey] ❌ Failed to set up dm-flakey on {node}: {e}")
+                raise
+
+    def _setup_dm_flakey_on_node(self, node: str) -> None:
+        """Set up dm-flakey device to intercept OpenEBS storage on a single node."""
+        print(f"[dm-flakey] Setting up dm-flakey on {node}...")
+
+        # Build the complete setup script from logical sections
+        script_parts = [
+            self._build_module_check_script(),
+            self._build_cleanup_script(),
+            self._build_backing_file_script(),
+            self._build_dm_flakey_create_script(),
+            self._build_mount_script(),
+        ]
+
+        full_script = "set -e\n" + "\n".join(script_parts)
+
+        # Execute using nsenter to access host namespace
+        pod = self._get_khaos_pod_on_node(node)
+        cmd = [
+            "kubectl",
+            "-n",
+            self.khaos_ns,
+            "exec",
+            pod,
+            "--",
+            "nsenter",
+            "-t",
+            "1",
+            "-m",
+            "-u",
+            "-i",
+            "-n",
+            "-p",
+            "sh",
+            "-c",
+            full_script,
+        ]
+
+        try:
+            rc = subprocess.run(cmd, timeout=SETUP_TIMEOUT_SECONDS, capture_output=True, text=True)
+            if rc.returncode != 0:
+                error_msg = f"Failed to setup dm-flakey on {node}: return code {rc.returncode}"
+                if rc.stderr:
+                    error_msg += f"\nStderr: {rc.stderr}"
+                if rc.stdout:
+                    error_msg += f"\nStdout: {rc.stdout}"
+                raise RuntimeError(error_msg)
+        except subprocess.TimeoutExpired:
+            raise RuntimeError(f"Timeout setting up dm-flakey on {node} after {SETUP_TIMEOUT_SECONDS} seconds")
+
+    def _build_module_check_script(self) -> str:
+        """Build script to check and load dm_flakey module."""
+        return f"""
+echo 'Setting up dm-flakey for OpenEBS local storage...'
+echo 'Checking dm_flakey module...'
+modprobe dm_flakey || {{ echo 'Failed to load dm_flakey module'; exit 1; }}
+lsmod | grep dm_flakey || {{ echo 'dm_flakey module not found in lsmod'; exit 1; }}
+echo 'Checking device-mapper targets...'
+dmsetup targets | grep flakey || {{ echo 'flakey target not available in dmsetup'; exit 1; }}
+"""
+
+    def _build_cleanup_script(self) -> str:
+        """Build script to clean up existing dm-flakey infrastructure."""
+        openebs_path = OPENEBS_LOCAL_PATH
+        return f"""
+DM_NAME={DM_FLAKEY_DEVICE_NAME}
+BACKING_FILE={shlex.quote(DM_FLAKEY_BACKING_FILE)}
+
+echo 'Cleaning up any existing dm-flakey infrastructure...'
+
+# Unmount if mounted
+if mountpoint -q {shlex.quote(openebs_path)} 2>/dev/null; then
+    echo 'Unmounting {openebs_path}...'
+    umount {shlex.quote(openebs_path)} 2>/dev/null || umount -f {shlex.quote(openebs_path)} 2>/dev/null || true
+    sleep 1
+fi
+
+# Remove existing dm device
+if dmsetup info $DM_NAME >/dev/null 2>&1; then
+    echo 'Found existing device $DM_NAME, attempting removal...'
+    mount | grep "/dev/mapper/$DM_NAME" | awk '{{print $3}}' | xargs -r -I {{}} umount -l {{}} 2>/dev/null || true
+    sleep 1
+    if dmsetup remove $DM_NAME 2>/dev/null; then
+        echo 'Device removed successfully'
+    elif dmsetup remove --force $DM_NAME 2>/dev/null; then
+        echo 'Device removed with --force'
+    else
+        echo 'Device is busy, renaming and marking for deferred removal...'
+        timestamp=$(date +%s)
+        dmsetup rename $DM_NAME ${{DM_NAME}}_old_${{timestamp}} 2>/dev/null || true
+        dmsetup remove --deferred ${{DM_NAME}}_old_${{timestamp}} 2>/dev/null || true
+        echo 'Old device will be cleaned up automatically when kernel releases it'
+    fi
+fi
+
+# Clean up backing file and loop devices
+if [ -f $BACKING_FILE ]; then
+    echo 'Cleaning up old backing file and loop devices...'
+    losetup -j $BACKING_FILE 2>/dev/null | awk -F: '{{print $1}}' | xargs -r losetup -d 2>/dev/null || true
+    rm -f $BACKING_FILE
+fi
+"""
+
+    def _build_backing_file_script(self) -> str:
+        """Build script to create backing file and loop device."""
+        openebs_path = OPENEBS_LOCAL_PATH
+        return f"""
+BACKING_FILE={shlex.quote(DM_FLAKEY_BACKING_FILE)}
+
+echo 'Preparing OpenEBS directory at {openebs_path}...'
+rm -rf {shlex.quote(openebs_path)}/* 2>/dev/null || true
+mkdir -p {shlex.quote(openebs_path)}
+
+echo 'Creating {DM_FLAKEY_BACKING_FILE_SIZE_GB}GB backing file for OpenEBS dm-flakey...'
+dd if=/dev/zero of=$BACKING_FILE bs=1M count={DM_FLAKEY_BACKING_FILE_SIZE_GB * 1024}
+
+echo 'Setting up loop device...'
+LOOP_DEV=$(losetup -f --show $BACKING_FILE)
+echo "Loop device: $LOOP_DEV"
+"""
+
+    def _build_dm_flakey_create_script(self) -> str:
+        """Build script to create and format dm-flakey device."""
+        return f"""
+DM_NAME={DM_FLAKEY_DEVICE_NAME}
+SECTORS=$(blockdev --getsz $LOOP_DEV)
+echo "Sectors: $SECTORS"
+
+echo 'Creating healthy dm-flakey device for OpenEBS...'
+echo 'Running dmsetup create command...'
+# up=1, down=0 means always up (pass-through)
+dmsetup create $DM_NAME --table "0 $SECTORS flakey $LOOP_DEV 0 1 0" || {{
+    echo 'dmsetup create failed'
+    dmsetup targets
+    exit 1
+}}
+
+echo 'dmsetup create completed successfully'
+echo 'Verifying dm device was created...'
+ls -la /dev/mapper/$DM_NAME || {{ echo 'dm device not found'; exit 1; }}
+
+echo 'Formatting dm-flakey device with ext4...'
+mkfs.ext4 -F /dev/mapper/$DM_NAME || {{ echo 'mkfs.ext4 failed'; exit 1; }}
+"""
+
+    def _build_mount_script(self) -> str:
+        """Build script to mount dm-flakey device and set permissions."""
+        openebs_path = OPENEBS_LOCAL_PATH
+        return f"""
+DM_NAME={DM_FLAKEY_DEVICE_NAME}
+echo 'Mounting dm-flakey device at {openebs_path}...'
+mount /dev/mapper/$DM_NAME {shlex.quote(openebs_path)}
+
+echo 'Setting proper permissions...'
+chmod 755 {shlex.quote(openebs_path)}
+
+echo 'OpenEBS dm-flakey infrastructure ready - all PVs will use dm-flakey'
+"""
+
+    def _get_khaos_pod_on_node(self, node: str) -> str:
+        """Find a running Khaos pod on the specified node, with caching."""
+        if node in self._pod_cache:
+            return self._pod_cache[node]
+
+        cmd = f"kubectl -n {shlex.quote(self.khaos_ns)} get pods -l {shlex.quote(self.khaos_label)} -o json"
+        out = self.kubectl.exec_command(cmd)
+        if not out:
+            raise RuntimeError(f"Failed to get pods: empty response")
+
+        data = json.loads(out)
+        for item in data.get("items", []):
+            if item.get("spec", {}).get("nodeName") == node and item.get("status", {}).get("phase") == "Running":
+                pod_name = item["metadata"]["name"]
+                self._pod_cache[node] = pod_name
+                return pod_name
+
+        raise RuntimeError(f"No running Khaos pod found on node {node}")
diff --git a/sregym/service/helm.py b/sregym/service/helm.py
new file mode 100644
index 0000000..4ad862d
--- /dev/null
+++ b/sregym/service/helm.py
@@ -0,0 +1,227 @@
+"""Interface for helm operations"""
+
+import subprocess
+import time
+import logging
+from sregym.service.kubectl import KubeCtl
+
+local_logger = logging.getLogger("all.infra.helm")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+class Helm:
+    @staticmethod
+    def install(**args):
+        """Install a helm chart
+
+        Args:
+            release_name (str): Name of the release
+            chart_path (str): Path to the helm chart
+            namespace (str): Namespace to install the chart
+            version (str): Version of the chart
+            extra_args (List[str)]: Extra arguments for the helm install command
+            remote_chart (bool): Whether the chart is remote (from a Helm repo)
+        """
+        
+        release_name = args.get("release_name")
+        chart_path = args.get("chart_path")
+        namespace = args.get("namespace")
+        version = args.get("version")
+        extra_args = args.get("extra_args")
+        remote_chart = args.get("remote_chart", False)
+        
+        local_logger.info(f"Helm Install: {release_name} in namespace {namespace}")
+
+        if not remote_chart:
+            # Install dependencies for chart before installation
+            dependency_command = f"helm dependency update {chart_path}"
+            dependency_process = subprocess.Popen(
+                dependency_command,
+                shell=True,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+            )
+            dependency_output, dependency_error = dependency_process.communicate()
+
+        command = f"helm install {release_name} {chart_path} -n {namespace} --create-namespace"
+
+        if version:
+            command += f" --version {version}"
+
+        if extra_args:
+            command += " " + " ".join(extra_args)
+
+        process = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE)
+        output, error = process.communicate()
+
+        if error:
+            stderr = error.decode("utf-8").strip()
+            stdout = output.decode("utf-8").strip()
+            raise RuntimeError(
+                f"Helm install failed for release '{release_name}' in namespace '{namespace}'. "
+                f"Chart: {chart_path}. Error output:\n{stderr}\n"
+                f"Stdout (for context):\n{stdout}"
+            )
+        else:
+            local_logger.debug(output.decode("utf-8"))
+
+    @staticmethod
+    def uninstall(**args):
+        """Uninstall a helm chart
+
+        Args:
+            release_name (str): Name of the release
+            namespace (str): Namespace to uninstall the chart
+        """
+        release_name = args.get("release_name")
+        namespace = args.get("namespace")
+        
+        local_logger.info(f"Helm Uninstall: {release_name} in namespace {namespace}")
+
+        if not Helm.exists_release(release_name, namespace):
+            local_logger.warning(f"Release {release_name} does not exist. Skipping uninstall.")
+            return
+
+        command = f"helm uninstall {release_name} -n {namespace}"
+        process = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE)
+        output, error = process.communicate()
+
+        if error:
+            stderr = error.decode("utf-8").strip()
+            stdout = output.decode("utf-8").strip()
+            raise RuntimeError(
+                f"Helm uninstall failed for release '{release_name}' in namespace '{namespace}'. "
+                f"Release: {release_name}. Error output:\n{stderr}\n"
+                f"Stdout (for context):\n{stdout}"
+            )
+        else:
+            local_logger.debug(output.decode("utf-8"))
+
+    @staticmethod
+    def exists_release(release_name: str, namespace: str) -> bool:
+        """Check if a Helm release exists
+
+        Args:
+            release_name (str): Name of the release
+            namespace (str): Namespace to check
+
+        Returns:
+            bool: True if release exists
+        """
+        command = f"helm list -n {namespace}"
+        process = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE)
+        output, error = process.communicate()
+
+        if error:
+            local_logger.error(error.decode("utf-8"))
+            return False
+        else:
+            return release_name in output.decode("utf-8")
+
+    @staticmethod
+    def assert_if_deployed(namespace: str):
+        """Assert if all services in the application are deployed
+
+        Args:
+            namespace (str): Namespace to check
+
+        Returns:
+            bool: True if deployed
+
+        Raises:
+            Exception: If not deployed
+        """
+        kubectl = KubeCtl()
+        try:
+            kubectl.wait_for_ready(namespace)
+        except Exception as e:
+            raise e
+
+        return True
+
+    @staticmethod
+    def upgrade(**args):
+        """Upgrade a helm chart
+
+        Args:
+            release_name (str): Name of the release
+            chart_path (str): Path to the helm chart
+            namespace (str): Namespace to upgrade the chart
+            values_file (str): Path to the values.yaml file
+            set_values (dict): Key-value pairs for --set options
+        """
+        
+        release_name = args.get("release_name")
+        chart_path = args.get("chart_path")
+        namespace = args.get("namespace")
+        values_file = args.get("values_file")
+        set_values = args.get("set_values", {})
+
+        local_logger.info(f"Helm Upgrade: {release_name} in namespace {namespace}")
+
+        command = [
+            "helm",
+            "upgrade",
+            release_name,
+            chart_path,
+            "-n",
+            namespace,
+            "-f",
+            values_file,
+        ]
+
+        # Add --set options if provided
+        for key, value in set_values.items():
+            command.append("--set")
+            command.append(f"{key}={value}")
+
+        process = subprocess.Popen(command, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+        output, error = process.communicate()
+
+        if error:
+            local_logger.error("Error during helm upgrade:")
+            stderr = error.decode("utf-8").strip()
+            stdout = output.decode("utf-8").strip()
+            raise RuntimeError(
+                f"Helm install failed for release '{release_name}' in namespace '{namespace}'. "
+                f"Chart: {chart_path}. Error output:\n{stderr}\n"
+                f"Stdout (for context):\n{stdout}"
+            )
+        else:
+            local_logger.info("Helm upgrade successful!")
+            local_logger.debug(output.decode("utf-8"))
+
+    @staticmethod
+    def add_repo(name: str, url: str):
+        """Add a Helm repository
+
+        Args:
+            name (str): Name of the repository
+            url (str): URL of the repository
+        """
+        local_logger.info(f"Helm Repo Add: {name} with url {url}")
+        command = f"helm repo add {name} {url}"
+        process = subprocess.Popen(command, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
+        output, error = process.communicate()
+
+        if error:
+            local_logger.error(f"Error adding helm repo {name}: {error.decode('utf-8')}")
+            stderr = error.decode("utf-8").strip()
+            stdout = output.decode("utf-8").strip()
+            raise RuntimeError(
+                f"Helm upgrade failed for release '{name}' and url {url}. "
+                f"Error output:\n{stderr}\n"
+                f"Stdout (for context):\n{stdout}"
+            )
+        else:
+            local_logger.info(f"Helm repo {name} added successfully: {output.decode('utf-8')}")
+
+
+# Example usage
+if __name__ == "__main__":
+    sn_configs = {
+        "release_name": "social-network",
+        "chart_path": "/home/oppertune/DeathStarBench/socialNetwork/helm-chart/socialnetwork",
+        "namespace": "social-network",
+    }
+    Helm.install(**sn_configs)
+    Helm.uninstall(**sn_configs)
diff --git a/sregym/service/khaos.py b/sregym/service/khaos.py
new file mode 100644
index 0000000..7ffab8d
--- /dev/null
+++ b/sregym/service/khaos.py
@@ -0,0 +1,73 @@
+import json
+import time
+
+from sregym.paths import KHAOS_DS
+from sregym.service.kubectl import KubeCtl
+
+KHAOS_NS = "khaos"
+KHAOS_DS_NAME = "khaos"
+
+
+class KhaosController:
+    def __init__(self, kubectl: KubeCtl):
+        self.kubectl = kubectl
+
+    def ensure_deployed(self):
+        if self.kubectl.is_emulated_cluster():
+            raise RuntimeError("Khaos cannot be deployed on emulated clusters (kind, minikube, k3d, etc.).")
+
+        rc = self.kubectl.exec_command(f"kubectl get ns {KHAOS_NS} >/dev/null 2>&1 || kubectl create ns {KHAOS_NS}")
+
+        cmd = f"kubectl apply -f {KHAOS_DS}"
+        out = self.kubectl.exec_command(cmd)
+        if isinstance(out, tuple):
+            stdout, stderr, rc = (out + ("",))[:3]
+            if rc not in (0, None):
+                raise RuntimeError(f"kubectl apply failed (rc={rc}).\nSTDOUT:\n{stdout}\nSTDERR:\n{stderr}")
+
+        # Wait for both DaemonSets to be ready (control-plane and worker)
+        # The YAML file contains two DaemonSets: khaos-control-plane and khaos-worker
+        self.kubectl.exec_command(f"kubectl -n {KHAOS_NS} rollout status ds/khaos-control-plane --timeout=3m")
+        self.kubectl.exec_command(f"kubectl -n {KHAOS_NS} rollout status ds/khaos-worker --timeout=3m")
+
+    def teardown(self):
+        self.kubectl.exec_command(f"kubectl delete ns {KHAOS_NS} --ignore-not-found")
+
+    def _khaos_pod_on_node(self, node_name: str) -> str:
+        deadline = time.time() + 90
+        while time.time() < deadline:
+            out = self.kubectl.exec_command(f"kubectl -n {KHAOS_NS} get pods -o json")
+            if isinstance(out, tuple):
+                out = out[0]
+            data = json.loads(out or "{}")
+            for item in data.get("items", []):
+                if (
+                    item.get("spec", {}).get("nodeName") == node_name
+                    and item.get("status", {}).get("phase") == "Running"
+                ):
+                    return item["metadata"]["name"]
+            time.sleep(3)
+        # diagnostics
+        ds = self.kubectl.exec_command(f"kubectl -n {KHAOS_NS} get ds -o wide")
+        pods = self.kubectl.exec_command(f"kubectl -n {KHAOS_NS} get pods -o wide")
+        raise RuntimeError(
+            f"No running Khaos pod on node {node_name} after 90s.\n"
+            f"DaemonSets:\n{ds[0] if isinstance(ds, tuple) else ds}\n"
+            f"Pods:\n{pods[0] if isinstance(pods, tuple) else pods}"
+        )
+
+    def inject(self, node_name: str, fault_name: str, host_pid: int):
+        """
+        Run:  /khaos/khaos <fault_name> <pid>
+        inside the Khaos pod on the specified node.
+        """
+        pod = self._khaos_pod_on_node(node_name)
+        cmd = f"kubectl -n {KHAOS_NS} exec {pod} -- /khaos/khaos {fault_name} {host_pid}"
+        out = self.kubectl.exec_command(cmd)
+        return out
+
+    def recover(self, node_name: str, fault_name: str):
+        pod = self._khaos_pod_on_node(node_name)
+        cmd = f"kubectl -n {KHAOS_NS} exec {pod} -- /khaos/khaos --recover {fault_name}"
+        out = self.kubectl.exec_command(cmd)
+        return out
diff --git a/sregym/service/khaos.yaml b/sregym/service/khaos.yaml
new file mode 100644
index 0000000..e8af697
--- /dev/null
+++ b/sregym/service/khaos.yaml
@@ -0,0 +1,128 @@
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: khaos-control-plane
+  namespace: khaos
+spec:
+  selector:
+    matchLabels:
+      app: khaos
+      profile: control-plane
+  template:
+    metadata:
+      labels:
+        app: khaos
+        profile: control-plane
+    spec:
+      hostPID: true
+      hostNetwork: true
+      automountServiceAccountToken: false
+      affinity:
+        nodeAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            nodeSelectorTerms:
+              - matchExpressions:
+                  - key: kubernetes.io/arch
+                    operator: In
+                    values: ["amd64"]
+                  - key: node-role.kubernetes.io/control-plane
+                    operator: Exists
+              - matchExpressions:
+                  - key: kubernetes.io/arch
+                    operator: In
+                    values: ["amd64"]
+                  - key: node-role.kubernetes.io/master
+                    operator: Exists
+      tolerations:
+        - key: "node-role.kubernetes.io/control-plane"
+          operator: "Exists"
+          effect: "NoSchedule"
+        - key: "node-role.kubernetes.io/master"
+          operator: "Exists"
+          effect: "NoSchedule"
+      containers:
+        - name: khaos
+          image: saad1038/khaos-x86:latest
+          imagePullPolicy: IfNotPresent
+          command: ["sleep", "infinity"]
+          securityContext:
+            privileged: true
+          volumeMounts:
+            - { name: sys-bpf,      mountPath: /sys/fs/bpf }
+            - { name: sys-debug,    mountPath: /sys/kernel/debug }
+            - { name: host-proc,    mountPath: /host/proc, readOnly: true }
+            - { name: lib-modules,  mountPath: /lib/modules, readOnly: true }
+            - { name: btf,          mountPath: /sys/kernel/btf, readOnly: true }
+            - { name: run-dir,      mountPath: /run, readOnly: true }
+            - { name: var-run,      mountPath: /var/run, readOnly: true }
+            - { name: host-dev,     mountPath: /dev }
+      volumes:
+        - { name: sys-bpf,     hostPath: { path: /sys/fs/bpf, type: Directory } }
+        - { name: sys-debug,   hostPath: { path: /sys/kernel/debug, type: Directory } }
+        - { name: host-proc,   hostPath: { path: /proc, type: Directory } }
+        - { name: lib-modules, hostPath: { path: /lib/modules, type: Directory } }
+        - { name: btf,         hostPath: { path: /sys/kernel/btf, type: DirectoryOrCreate } }
+        - { name: run-dir,     hostPath: { path: /run, type: Directory } }
+        - { name: var-run,     hostPath: { path: /var/run, type: Directory } }
+        - { name: host-dev,    hostPath: { path: /dev, type: Directory } }
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: khaos-worker
+  namespace: khaos
+spec:
+  selector:
+    matchLabels:
+      app: khaos
+      profile: worker
+  template:
+    metadata:
+      labels:
+        app: khaos
+        profile: worker
+    spec:
+      hostPID: true
+      hostNetwork: true
+      automountServiceAccountToken: false
+      affinity:
+        nodeAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            nodeSelectorTerms:
+              - matchExpressions:
+                  - key: kubernetes.io/arch
+                    operator: In
+                    values: ["amd64"]
+                  - key: node-role.kubernetes.io/worker
+                    operator: Exists
+      nodeSelector:
+        kubernetes.io/arch: amd64
+        node-role.kubernetes.io/worker: ""   # explicit worker targeting
+      containers:
+        - name: khaos
+          image: saad1038/khaos-x86:latest
+          imagePullPolicy: IfNotPresent
+          command: ["sleep", "infinity"]
+          securityContext:
+            privileged: true
+          volumeMounts:
+            - { name: sys-bpf,      mountPath: /sys/fs/bpf }
+            - { name: sys-debug,    mountPath: /sys/kernel/debug }
+            - { name: host-proc,    mountPath: /host/proc, readOnly: true }
+            - { name: lib-modules,  mountPath: /lib/modules, readOnly: true }
+            - { name: btf,          mountPath: /sys/kernel/btf, readOnly: true }
+            - { name: run-dir,      mountPath: /run, readOnly: true }
+            - { name: var-run,      mountPath: /var/run, readOnly: true }
+            - { name: openebs,      mountPath: /var/openebs }
+            - { name: host-dev,     mountPath: /dev }
+      volumes:
+        - { name: sys-bpf,     hostPath: { path: /sys/fs/bpf, type: Directory } }
+        - { name: sys-debug,   hostPath: { path: /sys/kernel/debug, type: Directory } }
+        - { name: host-proc,   hostPath: { path: /proc, type: Directory } }
+        - { name: lib-modules, hostPath: { path: /lib/modules, type: Directory } }
+        - { name: btf,         hostPath: { path: /sys/kernel/btf, type: DirectoryOrCreate } }
+        - { name: run-dir,     hostPath: { path: /run, type: Directory } }
+        - { name: var-run,     hostPath: { path: /var/run, type: Directory } }
+        - { name: openebs,     hostPath: { path: /var/openebs, type: Directory } }
+        - { name: host-dev,    hostPath: { path: /dev, type: Directory } }
\ No newline at end of file
diff --git a/sregym/service/kubectl.py b/sregym/service/kubectl.py
new file mode 100644
index 0000000..601bdd5
--- /dev/null
+++ b/sregym/service/kubectl.py
@@ -0,0 +1,651 @@
+"""Interface to K8S controller service."""
+
+import json
+import logging
+import subprocess
+import time
+
+local_logger = logging.getLogger("all.infra.kubectl")
+local_logger.propagate = True
+local_logger.setLevel(logging.DEBUG)
+
+try:
+    from kubernetes import client, config
+except ModuleNotFoundError as e:
+    local_logger.error("Your Kubeconfig is missing. Please set up a cluster.")
+    exit(1)
+from kubernetes import dynamic
+from kubernetes.client import api_client
+from kubernetes.client.rest import ApiException
+from rich.console import Console
+import dotenv
+import os
+
+dotenv.load_dotenv(override=True)
+
+WAIT_FOR_POD_READY_TIMEOUT = int(os.getenv("WAIT_FOR_POD_READY_TIMEOUT", "600"))
+
+class KubeCtl:
+    def __init__(self):
+        """Initialize the KubeCtl object and load the Kubernetes configuration."""
+        try:
+            config.load_kube_config()
+        except Exception as e:
+            local_logger.error("Missing kubeconfig. Please set up a cluster.")
+            exit(1)
+        self.core_v1_api = client.CoreV1Api()
+        self.apps_v1_api = client.AppsV1Api()
+
+    def list_namespaces(self):
+        """Return a list of all namespaces in the cluster."""
+        return self.core_v1_api.list_namespace()
+
+    def list_pods(self, namespace):
+        """Return a list of all pods within a specified namespace."""
+        return self.core_v1_api.list_namespaced_pod(namespace)
+
+    def list_services(self, namespace):
+        """Return a list of all services within a specified namespace."""
+        return self.core_v1_api.list_namespaced_service(namespace)
+
+    def list_nodes(self):
+        """Return a list of all running nodes."""
+        return self.core_v1_api.list_node()
+
+    def get_concise_deployments_info(self, namespace=None):
+        """Return a concise info of a deployment."""
+        cmd = f"kubectl get deployment {f'-n {namespace}' if namespace else ''} -o wide"
+        result = self.exec_command(cmd)
+        return result
+
+    def get_concise_pods_info(self, namespace=None):
+        """Return a concise info of a pod."""
+        cmd = f"kubectl get pod {f'-n {namespace}' if namespace else ''} -o wide"
+        result = self.exec_command(cmd)
+        return result
+
+    def list_deployments(self, namespace):
+        """Return a list of all deployments within a specified namespace."""
+        return self.apps_v1_api.list_namespaced_deployment(namespace)
+
+    def get_cluster_ip(self, service_name, namespace):
+        """Retrieve the cluster IP address of a specified service within a namespace."""
+        service_info = self.core_v1_api.read_namespaced_service(service_name, namespace)
+        return service_info.spec.cluster_ip  # type: ignore
+
+    def get_container_runtime(self):
+        """
+        Retrieve the container runtime used by the cluster.
+        If the cluster uses multiple container runtimes, the first one found will be returned.
+        """
+        for node in self.core_v1_api.list_node().items:
+            for status in node.status.conditions:
+                if status.type == "Ready" and status.status == "True":
+                    return node.status.node_info.container_runtime_version
+
+    def get_pod_name(self, namespace, label_selector):
+        """Get the name of the first pod in a namespace that matches a given label selector."""
+        pod_info = self.core_v1_api.list_namespaced_pod(namespace, label_selector=label_selector)
+        return pod_info.items[0].metadata.name
+
+    def get_pod_logs(self, pod_name, namespace):
+        """Retrieve the logs of a specified pod within a namespace."""
+        return self.core_v1_api.read_namespaced_pod_log(pod_name, namespace)
+
+    def get_service_json(self, service_name, namespace, deserialize=True):
+        """Retrieve the JSON description of a specified service within a namespace."""
+        command = f"kubectl get service {service_name} -n {namespace} -o json"
+        result = self.exec_command(command)
+
+        return json.loads(result) if deserialize else result
+
+    def get_deployment(self, name: str, namespace: str):
+        """Fetch the deployment configuration."""
+        return self.apps_v1_api.read_namespaced_deployment(name, namespace)
+
+    def get_namespace_deployment_status(self, namespace: str):
+        """Return the deployment status of an app within a namespace."""
+        try:
+            deployed_services = self.apps_v1_api.list_namespaced_deployment(namespace)
+            return len(deployed_services.items) > 0
+        except ApiException as e:
+            if e.status == 404:
+                local_logger.warning(f"Namespace {namespace} doesn't exist.")
+                return False
+            else:
+                raise e
+
+    def get_service_deployment_status(self, service: str, namespace: str):
+        """Return the deployment status of a single service within a namespace."""
+        try:
+            self.get_deployment(service, namespace)
+            return True
+        except ApiException as e:
+            if e.status == 404:
+                return False
+            else:
+                raise e
+
+    def get_service(self, name: str, namespace: str):
+        """Fetch the service configuration."""
+        return client.CoreV1Api().read_namespaced_service(name=name, namespace=namespace)
+
+    def wait_for_ready(self, namespace, sleep=2, max_wait=WAIT_FOR_POD_READY_TIMEOUT):
+        """Wait for all pods in a namespace to be in a Ready state before proceeding."""
+
+        console = Console()
+        console.log(f"[bold yellow]Waiting for all pods in namespace '{namespace}' to be ready...")
+
+        with console.status("[bold green]Waiting for pods to be ready...") as status:
+            wait = 0
+
+            while wait < max_wait:
+                try:
+                    pod_list = self.list_pods(namespace)
+
+                    if pod_list.items:
+                        ready_pods = [
+                            pod
+                            for pod in pod_list.items
+                            if pod.status.container_statuses and all(cs.ready for cs in pod.status.container_statuses)
+                        ]
+
+                        if len(ready_pods) == len(pod_list.items):
+                            console.log(f"[bold green]All pods in namespace '{namespace}' are ready.")
+                            return
+
+                except Exception as e:
+                    console.log(f"[red]Error checking pod statuses: {e}")
+
+                time.sleep(sleep)
+                wait += sleep
+
+            raise Exception(
+                f"[red]Timeout: Not all pods in namespace '{namespace}' reached the Ready state within {max_wait} seconds."
+            )
+
+    def wait_for_namespace_deletion(self, namespace, sleep=2, max_wait=300):
+        """Wait for a namespace to be fully deleted before proceeding."""
+
+        console = Console()
+        console.log("[bold yellow]Waiting for namespace deletion...")
+
+        wait = 0
+
+        while wait < max_wait:
+            try:
+                self.core_v1_api.read_namespace(name=namespace)
+            except Exception as e:
+                console.log(f"[bold green]Namespace '{namespace}' has been deleted.")
+                return
+
+            time.sleep(sleep)
+            wait += sleep
+
+        raise Exception(f"[red]Timeout: Namespace '{namespace}' was not deleted within {max_wait} seconds.")
+
+    def is_ready(self, pod):
+        phase = pod.status.phase or ""
+        container_statuses = pod.status.container_statuses or []
+        conditions = pod.status.conditions or []
+
+        if phase in ["Succeeded", "Failed"]:
+            return True
+
+        if phase == "Running":
+            if all(cs.ready for cs in container_statuses):
+                return True
+
+        for cs in container_statuses:
+            if cs.state and cs.state.waiting:
+                reason = cs.state.waiting.reason
+                if reason == "CrashLoopBackOff":
+                    return True
+
+        if phase == "Pending":
+            for cond in conditions:
+                if cond.type == "PodScheduled" and cond.status == "False":
+                    return True
+
+        return False
+
+    def wait_for_stable(self, namespace: str, sleep: int = 2, max_wait: int = 300):
+        console = Console()
+        console.log(f"[bold yellow]Waiting for namespace '{namespace}' to be stable...")
+
+        with console.status("[bold yellow]Waiting for pods to be stable...") as status:
+            wait = 0
+
+            while wait < max_wait:
+                try:
+                    pod_list = self.list_pods(namespace)
+
+                    if pod_list.items:
+
+                        if all(self.is_ready(pod) for pod in pod_list.items):
+                            console.log(f"[bold green]All pods in namespace '{namespace}' are stable.")
+                            return
+                except Exception as e:
+                    console.log(f"[red]Error checking pod statuses: {e}")
+
+                time.sleep(sleep)
+                wait += sleep
+
+            raise Exception(f"[red]Timeout: Namespace '{namespace}' was not deleted within {max_wait} seconds.")
+
+    def delete_job(self, job_name: str = None, label: str = None, namespace: str = "default"):
+        """Delete a Kubernetes Job."""
+        console = Console()
+        api_instance = client.BatchV1Api()
+        try:
+            if job_name:
+                api_instance.delete_namespaced_job(
+                    name=job_name, namespace=namespace, body=client.V1DeleteOptions(propagation_policy="Foreground")
+                )
+                console.log(f"[bold green]Job '{job_name}' deleted successfully.")
+            elif label:
+                # If label is provided, delete jobs by label
+                jobs = api_instance.list_namespaced_job(namespace=namespace, label_selector=label)
+                if jobs.items:
+                    for job in jobs.items:
+                        api_instance.delete_namespaced_job(
+                            name=job.metadata.name,
+                            namespace=namespace,
+                            body=client.V1DeleteOptions(propagation_policy="Foreground"),
+                        )
+                        console.log(f"[bold green]Job with label '{label}' deleted successfully.")
+                else:
+                    console.log(f"[yellow]No jobs found with label '{label}' in namespace '{namespace}'.")
+            return True
+        except client.exceptions.ApiException as e:
+            if e.status == 404:
+                console.log(f"[yellow]Job '{job_name}' not found in namespace '{namespace}' (already deleted)")
+                return True
+            else:
+                console.log(f"[red]Error deleting job '{job_name}': {e}")
+                return False
+        except Exception as e:
+            console.log(f"[red]Unexpected error deleting job '{job_name}': {e}")
+            return False
+
+    def wait_for_job_completion(self, job_name: str, namespace: str = "default", timeout: int = 600):
+        """Wait for a Kubernetes Job to complete successfully within a specified timeout."""
+        api_instance = client.BatchV1Api()
+        console = Console()
+        start_time = time.time()
+
+        console.log(f"[yellow]Waiting for job '{job_name}' to complete...")
+        with console.status("[bold green]Waiting for job to be done...") as status:
+            while time.time() - start_time < timeout:
+                try:
+                    job = api_instance.read_namespaced_job(name=job_name, namespace=namespace)
+
+                    # Check job status conditions first (more reliable)
+                    if job.status.conditions:
+                        for condition in job.status.conditions:
+                            if condition.type == "Complete" and condition.status == "True":
+                                console.log(f"[bold green]Job '{job_name}' completed successfully!")
+                                return
+                            elif condition.type == "Failed" and condition.status == "True":
+                                error_msg = f"Job '{job_name}' failed."
+                                if condition.reason:
+                                    error_msg += f"\nReason: {condition.reason}"
+                                if condition.message:
+                                    error_msg += f"\nMessage: {condition.message}"
+                                console.log(f"[bold red]{error_msg}")
+                                raise Exception(error_msg)
+
+                    # Check numeric status as fallback
+                    succeeded = job.status.succeeded or 0
+                    failed = job.status.failed or 0
+
+                    if succeeded > 0:
+                        console.log(f"[bold green]Job '{job_name}' completed successfully! (succeeded: {succeeded})")
+                        return
+                    elif failed > 0:
+                        console.log(f"[bold red]Job '{job_name}' failed! (failed: {failed})")
+                        raise Exception(f"Job '{job_name}' failed.")
+
+                    time.sleep(2)
+
+                except client.exceptions.ApiException as e:
+                    if e.status == 404:
+                        console.log(f"[red]Job '{job_name}' not found!")
+                        raise Exception(f"Job '{job_name}' not found in namespace '{namespace}'") from e
+                    else:
+                        console.log(f"[red]Error checking job status: {e}")
+                        raise
+
+            console.log(f"[bold red]Timeout waiting for job '{job_name}' to complete!")
+            raise TimeoutError(f"Timeout: Job '{job_name}' did not complete within {timeout} seconds.")
+
+    def update_deployment(self, name: str, namespace: str, deployment):
+        """Update the deployment configuration."""
+        return self.apps_v1_api.replace_namespaced_deployment(name, namespace, deployment)
+
+    def patch_deployment(self, name: str, namespace: str, patch_body: dict):
+        return self.apps_v1_api.patch_namespaced_deployment(name=name, namespace=namespace, body=patch_body)
+
+    def patch_service(self, name, namespace, body):
+        """Patch a Kubernetes service in a specified namespace."""
+        try:
+            api_response = self.core_v1_api.patch_namespaced_service(name, namespace, body)
+            return api_response
+        except ApiException as e:
+            local_logger.error(f"Exception when patching service: {e}\n")
+            return None
+
+    def patch_custom_object(self, group, version, namespace, plural, name, body):
+        """Patch a custom Kubernetes object (e.g., Chaos Mesh CRD)."""
+        return self.custom_api.patch_namespaced_custom_object(
+            group=group, version=version, namespace=namespace, plural=plural, name=name, body=body
+        )
+
+    def create_configmap(self, name, namespace, data):
+        """Create or update a configmap from a dictionary of data."""
+        try:
+            api_response = self.update_configmap(name, namespace, data)
+            return api_response
+        except ApiException as e:
+            if e.status == 404:
+                return self.create_new_configmap(name, namespace, data)
+            else:
+                local_logger.error(f"Exception when updating configmap: {e}\n")
+                local_logger.error(f"Exception status code: {e.status}\n")
+                return None
+
+    def create_new_configmap(self, name, namespace, data):
+        """Create a new configmap."""
+        config_map = client.V1ConfigMap(
+            api_version="v1",
+            kind="ConfigMap",
+            metadata=client.V1ObjectMeta(name=name),
+            data=data,
+        )
+        try:
+            return self.core_v1_api.create_namespaced_config_map(namespace, config_map)
+        except ApiException as e:
+            local_logger.error(f"Exception when creating configmap: {e}\n")
+            return None
+
+    def create_or_update_configmap(self, name: str, namespace: str, data: dict):
+        """Create a configmap if it doesn't exist, or update it if it does."""
+        try:
+            existing_configmap = self.core_v1_api.read_namespaced_config_map(name, namespace)
+            # ConfigMap exists, update it
+            existing_configmap.data = data
+            self.core_v1_api.replace_namespaced_config_map(name, namespace, existing_configmap)
+            local_logger.info(f"ConfigMap '{name}' updated in namespace '{namespace}'")
+        except ApiException as e:
+            if e.status == 404:
+                # ConfigMap doesn't exist, create it
+                body = client.V1ConfigMap(metadata=client.V1ObjectMeta(name=name), data=data)
+                self.core_v1_api.create_namespaced_config_map(namespace, body)
+                local_logger.info(f"ConfigMap '{name}' created in namespace '{namespace}'")
+            else:
+                local_logger.error(f"Error creating/updating ConfigMap '{name}': {e}")
+
+    def update_configmap(self, name, namespace, data):
+        """Update existing configmap with the provided data."""
+        config_map = client.V1ConfigMap(
+            api_version="v1",
+            kind="ConfigMap",
+            metadata=client.V1ObjectMeta(name=name),
+            data=data,
+        )
+        try:
+            return self.core_v1_api.replace_namespaced_config_map(name, namespace, config_map)
+        except ApiException as e:
+            local_logger.error(f"Exception when updating configmap: {e}\n")
+            return
+
+    def apply_configs(self, namespace: str, config_path: str):
+        """Apply Kubernetes configurations from a specified path to a namespace."""
+        command = f"kubectl apply -Rf {config_path} -n {namespace}"
+        self.exec_command(command)
+
+    def delete_configs(self, namespace: str, config_path: str):
+        """Delete Kubernetes configurations from a specified path in a namespace."""
+        try:
+            exists_resource = self.exec_command(f"kubectl get all -n {namespace} -o name")
+            if exists_resource:
+                local_logger.info(f"Deleting K8S configs in namespace: {namespace}")
+                command = f"kubectl delete -Rf {config_path} -n {namespace} --timeout=10s"
+                self.exec_command(command)
+            else:
+                local_logger.warning(f"No resources found in: {namespace}. Skipping deletion.")
+        except subprocess.CalledProcessError as e:
+            local_logger.error(f"Error deleting K8S configs: {e}")
+            local_logger.error(f"Command output: {e.output}")
+
+    def delete_namespace(self, namespace: str):
+        """Delete a specified namespace."""
+        try:
+            self.core_v1_api.delete_namespace(name=namespace)
+            self.wait_for_namespace_deletion(namespace)
+            local_logger.info(f"Namespace '{namespace}' deleted successfully.")
+        except ApiException as e:
+            if e.status == 404:
+                local_logger.warning(f"Namespace '{namespace}' not found.")
+            else:
+                local_logger.error(f"Error deleting namespace '{namespace}': {e}")
+
+    def create_namespace_if_not_exist(self, namespace: str):
+        """Create a namespace if it doesn't exist."""
+        try:
+            self.core_v1_api.read_namespace(name=namespace)
+            local_logger.info(f"Namespace '{namespace}' already exists when you want to create.")
+        except ApiException as e:
+            if e.status == 404:
+                local_logger.info(f"Namespace '{namespace}' not found. Creating namespace.")
+                body = client.V1Namespace(metadata=client.V1ObjectMeta(name=namespace))
+                self.core_v1_api.create_namespace(body=body)
+                local_logger.info(f"Namespace '{namespace}' created successfully.")
+            else:
+                local_logger.error(f"Error checking/creating namespace '{namespace}': {e}")
+
+    def exec_command(self, command: str, input_data=None):
+        """Execute an arbitrary kubectl command."""
+        if input_data is not None:
+            input_data = input_data.encode("utf-8")
+        try:
+            out = subprocess.run(command, shell=True, check=True, capture_output=True, input=input_data)
+            return out.stdout.decode("utf-8")
+        except subprocess.CalledProcessError as e:
+            return e.stderr.decode("utf-8")
+
+        # if out.stderr:
+        #     return out.stderr.decode("utf-8")
+        # else:
+        #     return out.stdout.decode("utf-8")
+
+    def get_node_architectures(self):
+        """Return a set of CPU architectures from all nodes in the cluster."""
+        architectures = set()
+        try:
+            nodes = self.core_v1_api.list_node()
+            for node in nodes.items:
+                arch = node.status.node_info.architecture
+                architectures.add(arch)
+        except ApiException as e:
+            local_logger.error(f"Exception when retrieving node architectures: {e}\n")
+        return architectures
+
+    def get_node_memory_capacity(self):
+        max_capacity = 0
+        try:
+            nodes = self.core_v1_api.list_node()
+            for node in nodes.items:
+                capacity = node.status.capacity.get("memory")
+                capacity = self.parse_k8s_quantity(capacity) if capacity else 0
+                max_capacity = max(max_capacity, capacity)
+            return max_capacity
+        except ApiException as e:
+            local_logger.error(f"Exception when retrieving node memory capacity: {e}\n")
+            return {}
+
+    def parse_k8s_quantity(self, mem_str):
+        mem_str = mem_str.strip()
+        unit_multipliers = {
+            "Ki": 1,
+            "Mi": 1024**1,
+            "Gi": 1024**2,
+            "Ti": 1024**3,
+            "Pi": 1024**4,
+            "Ei": 1024**5,
+            "K": 1,
+            "M": 1000**1,
+            "G": 1000**2,
+            "T": 1000**3,
+            "P": 1000**4,
+            "E": 1000**5,
+        }
+
+        import re
+
+        match = re.match(r"^([0-9.]+)([a-zA-Z]+)?$", mem_str)
+        if not match:
+            raise ValueError(f"Invalid Kubernetes quantity: {mem_str}")
+
+        number, unit = match.groups()
+        number = float(number)
+        multiplier = unit_multipliers.get(unit, 1)  # default to 1 if no unit
+        return int(number * multiplier)
+
+    def format_k8s_memory(self, bytes_value):
+        units = ["Ki", "Mi", "Gi", "Ti", "Pi", "Ei"]
+        value = bytes_value
+        for unit in units:
+            if value < 1024:
+                return f"{round(value, 2)}{unit}"
+            value /= 1024
+        return f"{round(value, 2)}Ei"
+
+    def is_emulated_cluster(self) -> bool:
+        try:
+            nodes = self.core_v1_api.list_node()
+            for node in nodes.items:
+                provider_id = (node.spec.provider_id or "").lower()
+                runtime = node.status.node_info.container_runtime_version.lower()
+                kubelet = node.status.node_info.kubelet_version.lower()
+                node_name = node.metadata.name.lower()
+
+                if any(keyword in provider_id for keyword in ["kind", "k3d", "minikube"]):
+                    return True
+                if any(keyword in runtime for keyword in ["containerd://", "docker://"]) and "kind" in node_name:
+                    return True
+                if "minikube" in node_name or "k3d" in node_name:
+                    return True
+                if "kind" in kubelet:
+                    return True
+
+            return False
+        except Exception as e:
+            local_logger.error(f"Error detecting cluster type: {e}")
+            return False
+
+    def get_matching_replicasets(self, namespace: str, deployment_name: str) -> list[client.V1ReplicaSet]:
+        apps_v1 = self.apps_v1_api
+        rs_list = apps_v1.list_namespaced_replica_set(namespace)
+        matching_rs = []
+
+        for rs in rs_list.items:
+            owner_refs = rs.metadata.owner_references
+            if owner_refs:
+                for owner in owner_refs:
+                    if owner.kind == "Deployment" and owner.name == deployment_name:
+                        matching_rs.append(rs)
+                        break
+
+        return matching_rs
+
+    def delete_replicaset(self, name: str, namespace: str):
+        body = client.V1DeleteOptions(propagation_policy="Foreground")
+        try:
+            self.apps_v1_api.delete_namespaced_replica_set(
+                name=name,
+                namespace=namespace,
+                body=body,
+            )
+            local_logger.info(f"✅ Deleted ReplicaSet '{name}' in namespace '{namespace}'")
+        except client.exceptions.ApiException as e:
+            raise RuntimeError(f"Failed to delete ReplicaSet {name} in {namespace}: {e}")
+
+    def apply_resource(self, manifest: dict):
+
+        dyn_client = dynamic.DynamicClient(api_client.ApiClient())
+
+        gvk = {
+            ("v1", "ResourceQuota"): dyn_client.resources.get(api_version="v1", kind="ResourceQuota"),
+            # Add more mappings here if needed in the future
+        }
+
+        key = (manifest["apiVersion"], manifest["kind"])
+        if key not in gvk:
+            raise ValueError(f"Unsupported resource type: {key}")
+
+        resource = gvk[key]
+        namespace = manifest["metadata"].get("namespace")
+
+        try:
+            existing = resource.get(name=manifest["metadata"]["name"], namespace=namespace)
+            # If exists, patch it
+            resource.patch(body=manifest, name=manifest["metadata"]["name"], namespace=namespace)
+            local_logger.info(f"✅ Patched existing {manifest['kind']} '{manifest['metadata']['name']}'")
+        except dynamic.exceptions.NotFoundError:
+            resource.create(body=manifest, namespace=namespace)
+            local_logger.info(f"✅ Created new {manifest['kind']} '{manifest['metadata']['name']}'")
+
+    def get_resource_quotas(self, namespace: str) -> list:
+        try:
+            response = self.core_v1_api.list_namespaced_resource_quota(namespace=namespace)
+            return response.items
+        except client.exceptions.ApiException as e:
+            raise RuntimeError(f"Failed to get resource quotas in namespace '{namespace}': {e}")
+
+    def delete_resource_quota(self, name: str, namespace: str):
+        try:
+            self.core_v1_api.delete_namespaced_resource_quota(
+                name=name, namespace=namespace, body=client.V1DeleteOptions(propagation_policy="Foreground")
+            )
+            local_logger.info(f"✅ Deleted resource quota '{name}' in namespace '{namespace}'")
+        except client.exceptions.ApiException as e:
+            raise RuntimeError(f"❌ Failed to delete resource quota '{name}' in namespace '{namespace}': {e}")
+
+    def scale_deployment(self, name: str, namespace: str, replicas: int):
+        try:
+            body = {"spec": {"replicas": replicas}}
+            self.apps_v1_api.patch_namespaced_deployment(name=name, namespace=namespace, body=body)
+            local_logger.info(f"✅ Scaled deployment '{name}' in namespace '{namespace}' to {replicas} replicas.")
+        except client.exceptions.ApiException as e:
+            raise RuntimeError(f"❌ Failed to scale deployment '{name}' in namespace '{namespace}': {e}")
+
+    def get_pod_cpu_usage(self, namespace: str):
+        cmd = f"kubectl top pod -n {namespace} --no-headers"
+        out = self.exec_command(cmd)
+        # make the result into a dict
+        result = {}
+        for line in out.split("\n"):
+            if line:
+                pod_name, cpu, _ = line.split(None, 2)
+                cpu = cpu.replace("m", "")
+                result[pod_name] = cpu
+        return result
+
+    def trigger_rollout(self, deployment_name: str, namespace: str):
+        self.exec_command(f"kubectl rollout restart deployment {deployment_name} -n {namespace}")
+
+    def trigger_scale(self, deployment_name: str, namespace: str, replicas: int):
+        self.exec_command(f"kubectl scale deployment {deployment_name} -n {namespace} --replicas={replicas}")
+
+
+# Example usage:
+if __name__ == "__main__":
+    kubectl = KubeCtl()
+    namespace = "social-network"
+    frontend_service = "nginx-thrift"
+    user_service = "user-service"
+
+    user_service_pod = kubectl.get_pod_name(namespace, f"app={user_service}")
+    logs = kubectl.get_pod_logs(user_service_pod, namespace)
+    print(logs)
diff --git a/sregym/service/metadata/__init__.py b/sregym/service/metadata/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/service/metadata/astronomy-shop.json b/sregym/service/metadata/astronomy-shop.json
new file mode 100644
index 0000000..4f23292
--- /dev/null
+++ b/sregym/service/metadata/astronomy-shop.json
@@ -0,0 +1,22 @@
+{
+    "Name": "OpenTelemetry Demo Astronomy Shop",
+    "Namespace": "astronomy-shop",
+    "Desc": "An online shopping platform built with a microservices architecture, showcasing OpenTelemetry instrumentation for distributed tracing across services.",
+    "Supported Operations": [
+        "Add item to cart",
+        "View product catalog",
+        "Checkout with selected items",
+        "Generate shipping quotes",
+        "Receive product recommendations",
+        "Process payment",
+        "Register/Login using user credentials",
+        "Send order confirmation emails",
+        "Calculate order totals and apply discounts"
+    ],
+    "Helm Config": {
+        "release_name": "astronomy-shop",
+        "chart_path": "astronomy-shop/charts/opentelemetry-demo",
+        "namespace": "astronomy-shop",
+        "remote_chart": false
+    }
+}
\ No newline at end of file
diff --git a/sregym/service/metadata/blueprint-hotel-reservation.json b/sregym/service/metadata/blueprint-hotel-reservation.json
new file mode 100644
index 0000000..6a939c4
--- /dev/null
+++ b/sregym/service/metadata/blueprint-hotel-reservation.json
@@ -0,0 +1,13 @@
+{
+    "Name": "Blueprint Hotel Reservation",
+    "Namespace": "blueprint-hotel-reservation",
+    "Desc": "A blueprint-compiled version of the hotel reservation application built with Go and gRPC, providing backend in-memory and persistent databases, a recommender system for hotel recommendations, and a functionality to place reservations.",
+    "Supported Operations": [
+        "Get profile and rates of nearby hotels available during given time periods",
+        "Recommend hotels based on user provided metrics",
+        "Place reservations",
+        "Run a workload generator job to simulate user activity"
+    ],
+    "K8S Deploy Path": "BlueprintHotelReservation/kubernetes",
+    "K8S Workload Job Path": "BlueprintHotelReservation/wlgen"
+}
\ No newline at end of file
diff --git a/sregym/service/metadata/fleet-cast.json b/sregym/service/metadata/fleet-cast.json
new file mode 100644
index 0000000..d9d464f
--- /dev/null
+++ b/sregym/service/metadata/fleet-cast.json
@@ -0,0 +1,13 @@
+{
+    "Name": "Fleet Cast",
+    "Namespace": "fleetcast",
+    "Desc": "FleetCast is a TiDB based application for satellite orbital data",
+    "Supported Operations": [
+        "Serves satellite data from TiDB."
+    ],
+    "Helm Config": {
+        "release_name": "fleetcast",
+        "chart_path": "FleetCast/satellite-app",
+        "namespace": "fleetcast"
+    }
+}
\ No newline at end of file
diff --git a/sregym/service/metadata/flight-ticket.json b/sregym/service/metadata/flight-ticket.json
new file mode 100644
index 0000000..46782f7
--- /dev/null
+++ b/sregym/service/metadata/flight-ticket.json
@@ -0,0 +1,13 @@
+{
+    "Name": "Flight Ticket",
+    "Namespace": "openwhisk",
+    "Desc": "FlightTicket is a serverless application benchmark running on top of OpenWhisk on Kubernetes. The application is architectured based on the AirplaneTicket benchmark. Different from AirplaneTicket, FlightTicket is implemented in Python and runs as a serverless application on OpenWhisk. One key feature of FlightTicket is that, instead of using a synthetic input generator, FlightTicket uses the US-airlines dataset from the US Department of transport.",
+    "Supported Operations": [
+        "Serves transportation data from redis."
+    ],
+    "Helm Config": {
+        "release_name": "flight-ticket",
+        "chart_path": "flight-ticket",
+        "namespace": "openwhisk"
+    }
+}
\ No newline at end of file
diff --git a/sregym/service/metadata/hotel-reservation.json b/sregym/service/metadata/hotel-reservation.json
new file mode 100644
index 0000000..2296ee6
--- /dev/null
+++ b/sregym/service/metadata/hotel-reservation.json
@@ -0,0 +1,16 @@
+{
+    "Name": "Hotel Reservation",
+    "Namespace": "hotel-reservation",
+    "Desc": "A hotel reservation application built with Go and gRPC, providing backend in-memory and persistent databases, a recommender system for hotel recommendations, and a functionality to place reservations.",
+    "Supported Operations": [
+        "Get profile and rates of nearby hotels available during given time periods",
+        "Recommend hotels based on user provided metrics",
+        "Place reservations"
+    ],
+    "Helm Config": {
+        "release_name": "hotel-reservation",
+        "chart_path": "hotelReservation/helm-chart/hotelreservation",
+        "namespace": "hotel-reservation"
+    },
+    "K8S Deploy Path": "hotelReservation/kubernetes"
+}
\ No newline at end of file
diff --git a/sregym/service/metadata/prometheus.json b/sregym/service/metadata/prometheus.json
new file mode 100644
index 0000000..68cb7f7
--- /dev/null
+++ b/sregym/service/metadata/prometheus.json
@@ -0,0 +1,17 @@
+{
+    "Name": "Prometheus",
+    "Namespace": "observe",
+    "Desc": "Prometheus is an open-source systems monitoring and alerting toolkit that collects and stores metrics as time series data.",
+    "Supported Operations": [
+        "Collect metrics from various endpoints",
+        "Store time series data",
+        "Query metrics with PromQL",
+        "Generate alerts based on metrics"
+    ],
+    "Helm Config": {
+        "release_name": "prometheus",
+        "chart_path": "observer/prometheus/prometheus/", 
+        "namespace": "observe"
+    },
+    "PersistentVolumeClaimConfig": "observer/prometheus/prometheus-pvc.yml" 
+}
diff --git a/sregym/service/metadata/social-network.json b/sregym/service/metadata/social-network.json
new file mode 100644
index 0000000..5b3fa11
--- /dev/null
+++ b/sregym/service/metadata/social-network.json
@@ -0,0 +1,19 @@
+{
+    "Name": "Social Network",
+    "Namespace": "social-network",
+    "Desc": "A social network with unidirectional follow relationships, implemented with loosely-coupled microservices, communicating with each other via Thrift RPCs.",
+    "Supported Operations": [
+        "Create text post (optional media: image, video, shortened URL, user tag)",
+        "Read post",
+        "Read entire user timeline",
+        "Receive recommendations on which users to follow",
+        "Search database for user or post",
+        "Register/Login using user credentials",
+        "Follow/Unfollow user"
+    ],
+    "Helm Config": {
+        "release_name": "social-network",
+        "chart_path": "socialNetwork/helm-chart/socialnetwork",
+        "namespace": "social-network"
+    }
+}
\ No newline at end of file
diff --git a/sregym/service/metadata/tidb-with-operator.json b/sregym/service/metadata/tidb-with-operator.json
new file mode 100644
index 0000000..f074b90
--- /dev/null
+++ b/sregym/service/metadata/tidb-with-operator.json
@@ -0,0 +1,20 @@
+{
+    "Name": "TiDB Cluster with Operator",
+    "Namespace": "tidb-cluster",
+    "OperatorNamespace": "tidb-admin",
+    "Desc": "A TiDB cluster with operator managing.",
+    "Supported Operations": [
+        "TiDB related operation"
+    ],
+    "K8S Config": {
+        "config_url": "https://raw.githubusercontent.com/pingcap/tidb-operator/v1.6.0/examples/basic/tidb-cluster.yaml",
+        "namespace": "tidb-cluster"
+    },
+    "Helm Operator Config": {
+        "CRD": "https://raw.githubusercontent.com/pingcap/tidb-operator/v1.6.0/manifests/crd.yaml",
+        "release_name": "tidb-operator",
+        "chart_path": "pingcap/tidb-operator",
+        "namespace": "tidb-admin",
+        "version": "v1.6.0"
+    }
+}
\ No newline at end of file
diff --git a/sregym/service/metadata/tidb_metadata.json b/sregym/service/metadata/tidb_metadata.json
new file mode 100644
index 0000000..0dc3c49
--- /dev/null
+++ b/sregym/service/metadata/tidb_metadata.json
@@ -0,0 +1,20 @@
+{
+  "Name": "TiDB Cluster with Operator",
+  "Namespace": "tidb-cluster",
+  "OperatorNamespace": "tidb-operator",
+  "Desc": "A TiDB cluster with operator managing.",
+  "Supported Operations": [
+    "TiDB related operation"
+  ],
+  "K8S Config": {
+    "config_url": "https://raw.githubusercontent.com/pingcap/tidb-operator/v1.6.0/examples/basic/tidb-cluster.yaml",
+    "namespace": "tidb-cluster"
+  },
+  "Helm Operator Config": {
+    "CRD": "https://raw.githubusercontent.com/pingcap/tidb-operator/v1.6.3/manifests/crd.yaml",
+    "release_name": "tidb-operator",
+    "chart_path": "pingcap/tidb-operator",
+    "namespace": "tidb-operator",
+    "version": "v1.6.3"
+  }
+}
\ No newline at end of file
diff --git a/sregym/service/metadata/train-ticket.json b/sregym/service/metadata/train-ticket.json
new file mode 100644
index 0000000..9d94572
--- /dev/null
+++ b/sregym/service/metadata/train-ticket.json
@@ -0,0 +1,13 @@
+{
+    "Name": "Train Ticket",
+    "Namespace": "train-ticket",
+    "Desc": "The project is a train ticket booking system based on microservice architecture which contains 41 microservices.",
+    "Supported Operations": [
+        ""
+    ],
+    "Helm Config": {
+        "release_name": "train-ticket",
+        "chart_path": "train-ticket",
+        "namespace": "train-ticket"
+    }
+}
\ No newline at end of file
diff --git a/sregym/service/shell.py b/sregym/service/shell.py
new file mode 100644
index 0000000..d04ba4f
--- /dev/null
+++ b/sregym/service/shell.py
@@ -0,0 +1,34 @@
+"""Interface to run shell commands in the service cluster."""
+
+import subprocess
+
+
+class Shell:
+    """Interface to run shell commands. Currently used for development/debugging with cli.py"""
+
+    @staticmethod
+    def exec(command: str, input_data=None, cwd=None):
+        """Execute a shell command on localhost."""
+        if input_data is not None:
+            input_data = input_data.encode("utf-8")
+
+        try:
+            out = subprocess.run(
+                command,
+                input=input_data,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                shell=True,
+                cwd=cwd,
+            )
+
+            if out.stderr or out.returncode != 0:
+                error_message = out.stderr.decode("utf-8")
+                print(f"[ERROR] Command execution failed: {error_message}")
+                return error_message
+            else:
+                output_message = out.stdout.decode("utf-8")
+                return output_message
+
+        except Exception as e:
+            raise RuntimeError(f"Failed to execute command: {command}\nError: {str(e)}")
diff --git a/sregym/service/telemetry/__init__.py b/sregym/service/telemetry/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/service/telemetry/prometheus.py b/sregym/service/telemetry/prometheus.py
new file mode 100644
index 0000000..f97c877
--- /dev/null
+++ b/sregym/service/telemetry/prometheus.py
@@ -0,0 +1,208 @@
+import json
+import logging
+import os
+import socket
+import subprocess
+import threading
+import time
+
+import yaml
+
+from sregym.paths import BASE_DIR, PROMETHEUS_METADATA
+from sregym.service.helm import Helm
+from sregym.service.kubectl import KubeCtl
+
+
+class Prometheus:
+    def __init__(self):
+        self.config_file = PROMETHEUS_METADATA
+        self.name = None
+        self.namespace = None
+        self.helm_configs = {}
+        self.pvc_config_file = None
+        self.port = self.find_free_port()
+        self.port_forward_process = None
+
+        self.local_logger = logging.getLogger("all.infra.prometheus")
+        self.local_logger.propagate = True
+        self.local_logger.setLevel(logging.DEBUG)
+
+        self.load_service_json()
+
+    def load_service_json(self):
+        """Load metric service metadata into attributes."""
+        with open(self.config_file, "r") as file:
+            metadata = json.load(file)
+
+        self.name = metadata.get("Name")
+        self.namespace = metadata.get("Namespace")
+
+        self.helm_configs = metadata.get("Helm Config", {})
+
+        self.name = metadata["Name"]
+        self.namespace = metadata["Namespace"]
+        if "Helm Config" in metadata:
+            self.helm_configs = metadata["Helm Config"]
+            if "chart_path" in self.helm_configs:
+                chart_path = self.helm_configs["chart_path"]
+                self.helm_configs["chart_path"] = str(BASE_DIR / chart_path)
+
+        self.pvc_config_file = os.path.join(BASE_DIR, metadata.get("PersistentVolumeClaimConfig"))
+
+    def get_service_json(self) -> dict:
+        """Get metric service metadata in JSON format."""
+        with open(self.config_file, "r") as file:
+            return json.load(file)
+
+    def get_service_summary(self) -> str:
+        """Get a summary of the metric service metadata."""
+        service_json = self.get_service_json()
+        service_name = service_json.get("Name", "")
+        namespace = service_json.get("Namespace", "")
+        desc = service_json.get("Desc", "")
+        supported_operations = service_json.get("Supported Operations", [])
+        operations_str = "\n".join([f"  - {op}" for op in supported_operations])
+
+        return (
+            f"Telemetry Service Name: {service_name}\n"
+            f"Namespace: {namespace}\n"
+            f"Description: {desc}\n"
+            f"Supported Operations:\n{operations_str}"
+        )
+
+    def deploy(self):
+        """Deploy the metric collector using Helm."""
+        if self._is_prometheus_running():
+            self.local_logger.warning("Prometheus is already running. Skipping redeployment.")
+            self.start_port_forward()
+            return
+
+        self._delete_pvc()
+        Helm.uninstall(**self.helm_configs)
+
+        if self.pvc_config_file:
+            pvc_name = self._get_pvc_name_from_file(self.pvc_config_file)
+            if not self._pvc_exists(pvc_name):
+                self._apply_pvc()
+
+        Helm.install(**self.helm_configs)
+        Helm.assert_if_deployed(self.namespace)
+        self.start_port_forward()
+
+    def teardown(self):
+        """Teardown the metric collector deployment."""
+        Helm.uninstall(**self.helm_configs)
+
+        if self.pvc_config_file:
+            self._delete_pvc()
+        self.stop_port_forward()
+
+    def start_port_forward(self):
+        """Starts port-forwarding to access Prometheus."""
+        self.local_logger.info("Start port-forwarding for Prometheus.")
+        if self.port_forward_process and self.port_forward_process.poll() is None:
+            self.local_logger.warning("Port-forwarding already active.")
+            return
+
+        for attempt in range(3):
+            self.local_logger.debug(f"Attempt {attempt + 1} of 3 in starting port-forwarding.")
+            if self.is_port_in_use(self.port):
+                self.local_logger.debug(
+                    f"Port {self.port} is already in use. Attempt {attempt + 1} of 3. Retrying in 3 seconds..."
+                )
+                time.sleep(3)
+                continue
+
+            command = f"kubectl port-forward svc/prometheus-server {self.port}:80 -n observe"
+            self.port_forward_process = subprocess.Popen(
+                command,
+                shell=True,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                text=True,
+            )
+            os.environ["PROMETHEUS_PORT"] = str(self.port)
+            self.local_logger.debug(f"Set PROMETHEUS_PORT environment variable to {self.port}")
+            time.sleep(3)  # Wait a bit for the port-forward to establish
+
+            if self.port_forward_process.poll() is None:
+                self.local_logger.info(f"Port forwarding established at port {self.port}. PROMETHEUS_PORT set.")
+                os.environ["PROMETHEUS_PORT"] = str(self.port)
+                break
+            else:
+                self.local_logger.warning("Port forwarding failed. Retrying...")
+        else:
+            self.local_logger.warning("Failed to establish port forwarding after multiple attempts.")
+
+    def stop_port_forward(self):
+        """Stops the kubectl port-forward command and cleans up resources."""
+        if self.port_forward_process:
+            self.port_forward_process.terminate()
+            try:
+                self.port_forward_process.wait(timeout=5)
+            except subprocess.TimeoutExpired:
+                self.local_logger.warning("Port-forward process did not terminate in time, killing...")
+                self.port_forward_process.kill()
+
+            if self.port_forward_process.stdout:
+                self.port_forward_process.stdout.close()
+            if self.port_forward_process.stderr:
+                self.port_forward_process.stderr.close()
+
+            self.local_logger.info("Port forwarding for Prometheus stopped.")
+
+    def is_port_in_use(self, port):
+        with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
+            return s.connect_ex(("127.0.0.1", port)) == 0
+
+    def find_free_port(self, start=32000, end=32100):
+        for port in range(start, end):
+            with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
+                if s.connect_ex(("127.0.0.1", port)) != 0:
+                    return port
+        raise RuntimeError("No free ports available in the range.")
+
+    def _apply_pvc(self):
+        """Apply the PersistentVolumeClaim configuration."""
+        self.local_logger.info(f"Applying PersistentVolumeClaim from {self.pvc_config_file}")
+        KubeCtl().exec_command(f"kubectl apply -f {self.pvc_config_file} -n {self.namespace}")
+
+    def _delete_pvc(self):
+        """Delete the PersistentVolume and associated PersistentVolumeClaim."""
+        pvc_name = self._get_pvc_name_from_file(self.pvc_config_file)
+        result = KubeCtl().exec_command(f"kubectl get pvc {pvc_name} --ignore-not-found")
+
+        if result:
+            self.local_logger.info(f"Deleting PersistentVolumeClaim {pvc_name}")
+            KubeCtl().exec_command(f"kubectl delete pvc {pvc_name}")
+            self.local_logger.info(f"Successfully deleted PersistentVolumeClaim from {pvc_name}")
+        else:
+            self.local_logger.warning(f"PersistentVolumeClaim {pvc_name} not found. Skipping deletion.")
+
+    def _get_pvc_name_from_file(self, pv_config_file):
+        """Extract PVC name from the configuration file."""
+        with open(pv_config_file, "r") as file:
+            pv_config = yaml.safe_load(file)
+            return pv_config["metadata"]["name"]
+
+    def _pvc_exists(self, pvc_name: str) -> bool:
+        """Check if the PersistentVolumeClaim exists."""
+        command = f"kubectl get pvc {pvc_name}"
+        try:
+            result = KubeCtl().exec_command(command)
+            if "No resources found" in result or "Error" in result:
+                return False
+        except subprocess.CalledProcessError as e:
+            return False
+        return True
+
+    def _is_prometheus_running(self) -> bool:
+        """Check if Prometheus is already running in the cluster."""
+        command = f"kubectl get pods -n {self.namespace} -l app.kubernetes.io/name=prometheus"
+        try:
+            result = KubeCtl().exec_command(command)
+            if "Running" in result:
+                return True
+        except subprocess.CalledProcessError:
+            return False
+        return False
diff --git a/sregym/utils/__init__.py b/sregym/utils/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/sregym/utils/actions.py b/sregym/utils/actions.py
new file mode 100644
index 0000000..c208637
--- /dev/null
+++ b/sregym/utils/actions.py
@@ -0,0 +1,78 @@
+import importlib
+
+
+def action(method):
+    """
+    Decorator to mark a method as an action.
+
+    Args:
+        method (function): The method to mark as an action.
+
+    Returns:
+        function: The decorated method.
+    """
+    method.is_action = True
+    return method
+
+
+def read(method):
+    """
+    Decorator to mark a method as a read action.
+
+    Args:
+        method (function): The method to mark as a read action.
+
+    Returns:
+        function: The decorated method.
+    """
+    method.is_action = True
+    method.action_type = "read"
+    return method
+
+
+def write(method):
+    """
+    Decorator to mark a method as a write action.
+
+    Args:
+        method (function): The method to mark as a write action.
+
+    Returns:
+        function: The decorated method.
+    """
+    method.is_action = True
+    method.action_type = "write"
+    return method
+
+
+def get_actions(task: str, subtype: str | None = None) -> dict:
+    """
+    Get all actions for the given task.
+        key: action name
+        value: docstring of the action
+
+    Args:
+        task (str): The name of the task.
+        subtype (str): The subtype of the action (optional) (default: None).
+
+    Returns:
+        dict: A dictionary of actions for the given task.
+    """
+    class_name = task.title() + "Actions"
+    module = importlib.import_module("sregym.conductor.actions." + task)
+    class_obj = getattr(module, class_name)
+
+    actions = {
+        method: getattr(class_obj, method).__doc__.strip()
+        for method in dir(class_obj)
+        if callable(getattr(class_obj, method)) and getattr(getattr(class_obj, method), "is_action", False)
+    }
+
+    if subtype:
+        actions = {
+            method: doc
+            for method, doc in actions.items()
+            if getattr(getattr(class_obj, method), "action_type", None) == subtype
+        }
+
+    return actions
diff --git a/sregym/utils/cache.py b/sregym/utils/cache.py
new file mode 100644
index 0000000..d916e4f
--- /dev/null
+++ b/sregym/utils/cache.py
@@ -0,0 +1,36 @@
+import json
+import os
+
+from sregym.paths import CACHE_DIR, LLM_CACHE_FILE
+
+
+class LLMCache:
+    """A cache for storing the outputs of an LLM."""
+
+    def __init__(self) -> None:
+        if os.path.exists(LLM_CACHE_FILE):
+            with open(LLM_CACHE_FILE) as f:
+                self.cache_dict = json.load(f)
+        else:
+            os.makedirs(CACHE_DIR, exist_ok=True)
+            self.cache_dict = {}
+
+    @staticmethod
+    def process_payload(payload):
+        if isinstance(payload, (list, dict)):
+            return json.dumps(payload)
+        return payload
+
+    def get_from_cache(self, payload):
+        payload_cache = self.process_payload(payload)
+        if payload_cache in self.cache_dict:
+            return self.cache_dict[payload_cache]
+        return None
+
+    def add_to_cache(self, payload, output):
+        payload_cache = self.process_payload(payload)
+        self.cache_dict[payload_cache] = output
+
+    def save_cache(self):
+        with open(LLM_CACHE_FILE, "w") as f:
+            json.dump(self.cache_dict, f, indent=4)
diff --git a/sregym/utils/decorators.py b/sregym/utils/decorators.py
new file mode 100644
index 0000000..dfb46d5
--- /dev/null
+++ b/sregym/utils/decorators.py
@@ -0,0 +1,16 @@
+def mark_fault_injected(method):
+    def wrapper(self, *args, **kwargs):
+        try:
+            result = method(self, *args, **kwargs)
+        except Exception as e:
+            if method.__name__ == "inject_fault":
+                # We exit if there's an error during fault injection, warning if in recovery
+                raise
+            else:
+                print(f"[{method.__name__}] Warning: encountered error: {e!r}")
+                result = None
+
+        self.fault_injected = method.__name__ == "inject_fault"
+        return result
+
+    return wrapper
diff --git a/tests/e2e-testing-scripts/auto_submit.py b/tests/e2e-testing-scripts/auto_submit.py
new file mode 100644
index 0000000..3def43d
--- /dev/null
+++ b/tests/e2e-testing-scripts/auto_submit.py
@@ -0,0 +1,23 @@
+import subprocess
+import threading
+from time import sleep
+
+
+def automatic_submit():
+    ctr = 0
+    while ctr < 10000:
+        subprocess.run(
+            [
+                "bash",
+                "-c",
+                'curl -v http://localhost:8000/submit -H "Content-Type: application/json" -d \'{"solution":"yes"}\'',
+            ],
+            stdin=subprocess.DEVNULL,
+        )
+        sleep(30)
+        ctr += 1
+
+
+if __name__ == "__main__":
+    thread = threading.Thread(target=automatic_submit)
+    thread.start()
diff --git a/tests/e2e-testing-scripts/automating_tests.py b/tests/e2e-testing-scripts/automating_tests.py
new file mode 100644
index 0000000..4cf5ded
--- /dev/null
+++ b/tests/e2e-testing-scripts/automating_tests.py
@@ -0,0 +1,549 @@
+import json
+import os
+import re
+import shlex
+import subprocess
+import sys
+import tempfile
+from datetime import date
+from pathlib import Path
+from time import sleep
+
+# we added the ssh key to the ssh agent such that all of all the keys are carried with the ssh connection.
+base = Path(__file__).resolve().parent
+
+ENV = {
+    **os.environ,
+    "CI": "1",
+    "NONINTERACTIVE": "1",
+    "DEBIAN_FRONTEND": "noninteractive",
+    "SUDO_ASKPASS": "/bin/false",
+}
+TIMEOUT = 1800
+
+
+scripts = [
+    "brew.sh",
+    "go.sh",
+    "docker.sh",
+    "kind.sh",
+]
+
+
+def init_user_paths(user: str):
+    """Initialize all global paths and user-dependent commands after username is known."""
+    global SREGYM_DIR, SREGYM_ROOT, KIND_DIR, REMOTE_ENV, LOCAL_ENV, REMOTE_SELF_PATH
+    SREGYM_DIR = Path(f"/users/{user}/SREGym").resolve()
+    SREGYM_ROOT = SREGYM_DIR
+    KIND_DIR = SREGYM_ROOT / "kind"
+    REMOTE_ENV = f"/users/{user}/SREGym/.env"
+    LOCAL_ENV = Path(__file__).resolve().parent.parent.parent / ".env"
+    REMOTE_SELF_PATH = f"/users/{user}/e2e-testing-scripts/automating_tests.py"
+
+
+def _read_nodes(path: str = "nodes.txt") -> list[str]:
+    full_path = (base / path).resolve()
+    if not full_path.exists():
+        raise FileNotFoundError(f"nodes.txt not found at {full_path}")
+    with open(full_path) as f:
+        return [ln.strip() for ln in f if ln.strip()]
+
+
+def _run(cmd: list[str]):
+    print("$", " ".join(shlex.quote(x) for x in cmd))
+    subprocess.run(cmd)
+
+
+def scp_scripts_to_all(user, nodes_file: str = "nodes.txt"):
+    """scp -r LOCAL_COPY_SRC -> ~/e2e-testing-scripts on each node."""
+
+    if not Path(base).exists():
+        raise FileNotFoundError(f"LOCAL_COPY_SRC not found: {base}")
+    for host in _read_nodes(nodes_file):
+        _run(["scp", "-r", "-o", "StrictHostKeyChecking=no", str(base), f"{host}:~"])
+
+
+def run_installations_all(user, nodes_file: str = "nodes.txt"):
+    """SSH each node and run this file with --installations in a tmux session named 'installations'."""
+    tmux_cmd = (
+        f"if tmux has-session -t installations; then tmux kill-session -t installations; fi; "
+        f"tmux new-session -d -s installations "
+        f"'bash -ic \"python3 {REMOTE_SELF_PATH} --installations; sleep infinity\"'"
+    )
+    for host in _read_nodes(nodes_file):
+        _run(["ssh", host, tmux_cmd])
+
+
+def run_setup_env_all(user, nodes_file: str = "nodes.txt"):
+    """SSH each node and run this file with --setup-env in a detached tmux session."""
+    for host in _read_nodes(nodes_file):
+        print(f"\n=== [SSH setup-env] {host} ===")
+
+        remote_tmux = (
+            "tmux kill-session -t setup_env 2>/dev/null || true; "
+            "tmux new-session -d -s setup_env "
+            "'bash -ic \""
+            "cd ~/e2e-testing-scripts && "
+            "python3 automating_tests.py --setup-env 2>&1 | tee -a ~/setup_env_log.txt; "
+            "sleep infinity\"'"
+        )
+
+        _run(["ssh", host, remote_tmux])
+        print(f"Started tmux session 'setup_env' on {host} (log: ~/setup_env_log.txt)")
+
+
+def run_shell_script(path: Path):
+    """Run a shell script with Bash: ensure exec bit, then 'bash <script>'."""
+    print(f"\n==> RUN: {path}")
+    if not path.exists():
+        print(f"Script {path.name} not found at {path}")
+        return
+
+    try:
+        cmd = f"chmod +x {shlex.quote(str(path))}; bash {shlex.quote(str(path))}"
+        subprocess.run(
+            ["bash", "-c", cmd],
+            env=ENV,
+            stdin=subprocess.DEVNULL,
+            timeout=TIMEOUT,
+            check=True,
+        )
+        print(f"Executed {path.name} successfully.")
+    except subprocess.TimeoutExpired:
+        print(f"Timed out executing {path}")
+    except subprocess.CalledProcessError as e:
+        print(f"Error executing {path}: exit {e.returncode}")
+
+
+def installations():
+    SCRIPTS_DIR = Path.home() / "e2e-testing-scripts"
+    for script in scripts:
+        path = SCRIPTS_DIR / script
+        if path.exists():
+            run_shell_script(path)
+        else:
+            print(f"Script {script} not found at {path}")
+            return
+    install_python()
+    install_git()
+
+
+def _brew_exists(node: str) -> bool:
+    """Check if Homebrew is installed on a remote node via SSH."""
+    try:
+        subprocess.run(
+            [
+                "ssh",
+                "-o",
+                "StrictHostKeyChecking=no",
+                node,
+                "bash -ic 'command -v brew >/dev/null 2>&1'",
+            ],
+            env=ENV,
+            stdin=subprocess.DEVNULL,
+            stdout=subprocess.DEVNULL,
+            stderr=subprocess.DEVNULL,
+            check=True,
+            timeout=30,
+        )
+        return True
+    except (
+        subprocess.CalledProcessError,
+        FileNotFoundError,
+        subprocess.TimeoutExpired,
+    ):
+        return False
+
+
+def read_file(file_path: Path) -> list[str]:
+    with open(file_path) as f:
+        res = [ln.strip() for ln in f if ln.strip() and not ln.startswith("#")]
+    return res
+
+
+def comment_out_problems():
+    nodes = _read_nodes("nodes.txt")
+    problems = read_file("registry.txt")
+    mapping = {}
+    m = len(problems)
+    n = len(nodes)
+    for i, node in enumerate(nodes):
+        start = i * m // n
+        end = (i + 1) * m // n
+        mapping[node] = problems[start:end]
+    # comment out agent run too
+    agent_run_lines = ["reg = get_agent(agent_name)", "if reg:", "await LAUNCHER.ensure_started(reg)"]
+    for node, probs in mapping.items():
+        for prob in problems:
+            if prob not in mapping[node]:
+                print(f"On node {node}, comment out line: {prob.strip()}")
+                cmd = f'ssh -o StrictHostKeyChecking=no {node} "sed -i \'/\\"{prob}\\":/s/^/#/\' ~/SREGym/sregym/conductor/problems/registry.py"'
+                subprocess.run(cmd, shell=True, check=True)
+        for l in agent_run_lines:
+            cmd = f"ssh -o StrictHostKeyChecking=no {node} \"sed -i '/{l}/ s/^/#/' ~/SREGym/main.py\""
+            subprocess.run(cmd, shell=True, check=True)
+
+
+def run_submit(user, nodes_file: str = "nodes.txt"):
+    TMUX_CMD = (
+        "tmux kill-session -t submission 2>/dev/null || true; "
+        f"tmux new-session -d -s submission -c /users/{user}/e2e-testing-scripts"
+        "'python3 auto_submit.py 2>&1 | tee -a ~/submission_log.txt; sleep infinity'"
+    )
+    # TMUX_CMD2 = "tmux new-session -d -s main_tmux 'echo $PATH; sleep infinity;'"
+    TMUX_CMD2 = (
+        "tmux new-session -d -s main_tmux "
+        "'env -i PATH=/home/linuxbrew/.linuxbrew/bin:/home/linuxbrew/.linuxbrew/sbin:/usr/local/bin:/usr/bin:/bin "
+        "HOME=$HOME TERM=$TERM "
+        'bash -ic "echo PATH=\\$PATH; '
+        "command -v kubectl; kubectl version --client || true; "
+        "command -v helm || true; "
+        f"cd /users/{user}/SREGym && "
+        "~/SREGym/.venv/bin/python3 main.py 2>&1 | tee -a global_benchmark_log_$(date +%Y-%m-%d).txt; "
+        "sleep infinity\"'"
+    )
+
+    with open(nodes_file) as f:
+        nodes = [ln.strip() for ln in f if ln.strip() and not ln.startswith("#")]
+
+    for host in nodes:
+        print(f"=== {host} ===")
+        cmd = [
+            "ssh",
+            host,
+            f"{TMUX_CMD}",
+        ]
+        cmd2 = [
+            "ssh",
+            host,
+            f"{TMUX_CMD2}",
+        ]
+        try:
+            subprocess.run(cmd2, check=True)
+            print(f"Main script started successfully on {host}.")
+            sleep(20)
+            subprocess.run(cmd, check=True)
+            print(f"Submission script started successfully on {host}.")
+
+        except subprocess.CalledProcessError as e:
+            print(f"Setup failed with return code {e.returncode}")
+
+
+def install_git():
+    try:
+        _install_brew_if_needed()
+        shellenv = _brew_shellenv_cmd()
+        subprocess.run(
+            ["bash", "-ic", f"{shellenv}; brew --version; brew install git"],
+            env=ENV,
+            stdin=subprocess.DEVNULL,
+            timeout=TIMEOUT,
+            check=True,
+        )
+        print("Git installed successfully.")
+    except subprocess.TimeoutExpired:
+        print("Timed out installing Git.")
+    except subprocess.CalledProcessError as e:
+        print(f"Error installing Git: exit {e.returncode}")
+
+
+def clone(nodes_file: str = "nodes.txt", repo: str = "https://github.com/SREGym/SREGym"):
+    """
+    Clone the repo on all remote nodes using local SSH agent forwarding.
+    """
+    env = os.environ.copy()
+    if "SSH_AUTH_SOCK" not in env or not env["SSH_AUTH_SOCK"]:
+        raise EnvironmentError("No SSH agent detected. Run `ssh-add -l` to confirm your key is loaded.")
+
+    remote_cmd = f'GIT_SSH_COMMAND="ssh -o StrictHostKeyChecking=accept-new" git clone --recurse-submodules {repo} && cd SREGym && git checkout lily-e2e-test'
+
+    with open(nodes_file) as f:
+        nodes = [ln.strip() for ln in f if ln.strip() and not ln.startswith("#")]
+
+    for host in nodes:
+        print(f"=== {host} ===")
+        cmd = [
+            "ssh",
+            "-A",
+            "-o",
+            "StrictHostKeyChecking=no",
+            host,
+            remote_cmd,
+        ]
+        try:
+            subprocess.run(cmd, check=True, env=env)
+            subprocess.run(
+                [
+                    "scp",
+                    "-o",
+                    "StrictHostKeyChecking=accept-new",
+                    str(LOCAL_ENV),
+                    f"{host}:~/SREGym/.env",
+                ],
+                check=True,
+                env=env,
+            )
+            subprocess.run(
+                [
+                    "ssh",
+                    "-A",
+                    "-o",
+                    "StrictHostKeyChecking=accept-new",
+                    host,
+                    "sed -i '/^API_KEY.*/d' ~/SREGym/.env || true",
+                ],
+                check=True,
+                env=env,
+            )
+        except subprocess.CalledProcessError as e:
+            print(f"FAILED: {host} ({e})")
+
+
+def _brew_shellenv_cmd() -> str:
+    if Path("/home/linuxbrew/.linuxbrew/bin/brew").exists():
+        return 'eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"'
+    return 'eval "$(brew shellenv)"'
+
+
+def _install_brew_if_needed():
+    for node in _read_nodes("nodes.txt"):
+        if _brew_exists(node):
+            print(f"[{node}] Homebrew already installed.")
+            continue
+
+        print(f"[{node}] Installing Homebrew (non-interactive)...")
+        remote_cmd = (
+            "tmux new-session -d -s install_brew "
+            '\'bash -ic "NONINTERACTIVE=1 /bin/bash -c \\"$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)\\"; sleep infinity"\''
+        )
+
+        subprocess.run(
+            [
+                "ssh",
+                "-o",
+                "StrictHostKeyChecking=no",
+                node,
+                remote_cmd,
+            ],
+            env=ENV,
+            stdin=subprocess.DEVNULL,
+            timeout=TIMEOUT,
+            check=True,
+        )
+        print(f"[{node}] Homebrew installed.")
+
+
+def install_python():
+    try:
+        _install_brew_if_needed()
+        shellenv = _brew_shellenv_cmd()
+        subprocess.run(
+            ["bash", "-ic", f"{shellenv}; brew --version; brew install python@3.12"],
+            env=ENV,
+            stdin=subprocess.DEVNULL,
+            timeout=TIMEOUT,
+            check=True,
+        )
+        print("Python installed successfully.")
+    except subprocess.TimeoutExpired:
+        print("Timed out installing Python.")
+    except subprocess.CalledProcessError as e:
+        print(f"Error installing Python: exit {e.returncode}")
+
+
+def _resolve_kind_config() -> str | None:
+    kind_dir = SREGYM_ROOT / "kind"
+    prefs = [
+        kind_dir / "kind-config-x86.yaml",
+        kind_dir / "kind-config-arm.yaml",
+    ]
+    for p in prefs:
+        if p.is_file():
+            return str(p)
+    if kind_dir.is_dir():
+        for p in sorted(kind_dir.glob("*.yaml")):
+            if p.is_file():
+                return str(p)
+    return None
+
+
+def create_cluster(user):
+    for node in _read_nodes("nodes.txt"):
+        print(f"\n=== [Create Kind Cluster] {node} ===")
+        TMUX_SESSION = "cluster_setup"
+
+        cmd = f'ssh -o StrictHostKeyChecking=no {node} "bash -ic \\"tmux new-session -d -s cluster_setup \'kind create cluster --config /users/{user}/SREGym/kind/kind-config-x86.yaml; sleep infinity\'\\""'
+
+        subprocess.run(
+            cmd,
+            check=True,
+            shell=True,
+            executable="/bin/zsh",
+        )
+
+
+def copy_env():
+    for node in _read_nodes("nodes.txt"):
+        print(f"\n=== [SCP .env] {node} ===")
+        subprocess.run(
+            [
+                "scp",
+                "-o",
+                "StrictHostKeyChecking=accept-new",
+                str(LOCAL_ENV),
+                f"{node}:~/SREGym/.env",
+            ],
+            check=True,
+        )
+        subprocess.run(
+            [
+                "ssh",
+                "-A",
+                "-o",
+                "StrictHostKeyChecking=accept-new",
+                node,
+                "sed -i '/^API_KEY.*/d' ~/SREGym/.env || true",
+            ],
+            check=True,
+        )
+
+
+def install_kubectl():
+    _install_brew_if_needed()
+    print("installed brew")
+    SCRIPTS_DIR = Path.home() / "e2e-testing-scripts"
+
+    for node in _read_nodes("nodes.txt"):
+        print(f"\n=== [Install kubectl] {node} ===")
+        cmd = f'ssh -o StrictHostKeyChecking=no {node} "bash -ic \\"brew install kubectl helm\\""'
+        subprocess.run(
+            cmd,
+            check=True,
+            shell=True,
+            executable="/bin/zsh",
+        )
+    print("Kubectl installed successfully on all nodes.")
+
+
+def set_up_environment():
+    try:
+        shellenv = _brew_shellenv_cmd()
+        subprocess.run(
+            ["bash", "-ic", f"{shellenv}; command -v uv || brew install uv"],
+            env=ENV,
+            stdin=subprocess.DEVNULL,
+            timeout=TIMEOUT,
+            check=True,
+        )
+    except Exception:
+        pass
+    nodes = _read_nodes("nodes.txt")
+    commands = [
+        f"cd ~/SREGym",
+        'eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"',
+        "command -v uv >/dev/null 2>&1 || brew install uv",
+        'uv venv -p "$(command -v python3.12 || command -v python3)"',
+        "source .venv/bin/activate",
+        "uv sync",
+    ]
+    cmd = " && ".join(commands)
+    print(f"\n==> RUN: {cmd}")
+    try:
+        subprocess.run(
+            cmd,
+            shell=True,
+            executable="/bin/zsh",
+            env=ENV,
+            stdin=subprocess.DEVNULL,
+            timeout=TIMEOUT,
+            check=True,
+        )
+        print("Setup completed successfully!")
+    except subprocess.TimeoutExpired:
+        print("Setup timed out.")
+    except subprocess.CalledProcessError as e:
+        print(f"Setup failed with return code {e.returncode}")
+
+
+def collect_logs(user, nodes_file: str = "nodes.txt"):
+    """
+    Copy log files from all nodes into a local folder called 'node_logs'.
+
+    Parameters:
+        nodes_file (str): Path to the file listing nodes (one per line).
+        remote_log (str): Path to the log file on the remote machine.
+    """
+    local_dir = Path("./node_logs")
+    local_dir.mkdir(exist_ok=True)
+    today = date.today().strftime("%Y-%m-%d")
+    day = "$(date +%Y-%m-%d)"
+    remote_log = f"/users/{user}/SREGym/global_benchmark_*.txt"
+
+    nodes = _read_nodes(nodes_file)
+
+    for node in nodes:
+        node_name = node.split("@")[-1]
+
+        local_path = local_dir / node_name
+        local_path.mkdir(exist_ok=True)
+
+        print(f"Copying {remote_log} from {node} -> {local_path}")
+        cmd = [
+            "scp",
+            "-o",
+            "StrictHostKeyChecking=no",
+            f"{node}:{remote_log}",
+            str(local_path),
+        ]
+
+        try:
+            subprocess.run(cmd, check=True)
+            print(f"Copied log from {node}")
+        except subprocess.CalledProcessError:
+            print(f"Failed to copy log from {node} (file may not exist)")
+
+
+def kill_server():
+    TMUX_KILL_CMD = "tmux kill-server"
+    for host in _read_nodes("nodes.txt"):
+        print(f"\n=== [KILL TMUX SESSIONS] {host} ===")
+        _run(["ssh", host, TMUX_KILL_CMD])
+
+
+if __name__ == "__main__" and "--installations" in sys.argv:
+    installations()
+    sys.exit(0)
+
+if __name__ == "__main__" and "--setup-env" in sys.argv:
+    set_up_environment()
+    sys.exit(0)
+
+if __name__ == "__main__":
+    user = input("Please enter your username to continue: ").strip()
+    # initialize global variables
+    init_user_paths(user)
+
+    # kills any existing tmux servers
+    kill_server()
+
+    # copying all scripts
+    scp_scripts_to_all(user, "nodes.txt")
+    # clone repo
+    clone(nodes_file="nodes.txt")
+    # comment out problems that we don't test
+    comment_out_problems()
+
+    # installs prereqs
+    run_installations_all(user, "nodes.txt")
+    sleep(120)
+    install_kubectl()
+    create_cluster(user)
+    sleep(120)
+    copy_env()
+    # set up python environment
+    run_setup_env_all(user, "nodes.txt")
+    sleep(120)
+    # runs auto submitting script to keep benchmark going
+    run_submit(user, "nodes.txt")
+    # collects any logs
+    collect_logs(user, "nodes.txt")
diff --git a/tests/e2e-testing-scripts/brew.sh b/tests/e2e-testing-scripts/brew.sh
new file mode 100644
index 0000000..a963809
--- /dev/null
+++ b/tests/e2e-testing-scripts/brew.sh
@@ -0,0 +1,7 @@
+/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)"
+echo >> $HOME/.bashrc
+echo 'eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"' >> $HOME/.bashrc
+eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"
+
+sudo apt install build-essential -y
+brew install gcc
\ No newline at end of file
diff --git a/tests/e2e-testing-scripts/docker.sh b/tests/e2e-testing-scripts/docker.sh
new file mode 100644
index 0000000..5c606d0
--- /dev/null
+++ b/tests/e2e-testing-scripts/docker.sh
@@ -0,0 +1,22 @@
+#!/usr/bin/env bash
+
+# Add Docker's official GPG key:
+sudo apt-get update
+sudo apt-get install ca-certificates curl
+sudo install -m 0755 -d /etc/apt/keyrings
+sudo curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc
+sudo chmod a+r /etc/apt/keyrings/docker.asc
+
+# Add the repository to Apt sources:
+echo \
+  "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu \
+  $(. /etc/os-release && echo "${UBUNTU_CODENAME:-$VERSION_CODENAME}") stable" | \
+  sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
+sudo apt-get update
+sudo apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin -y
+
+sudo groupadd docker
+sudo usermod -aG docker $USER
+sudo chown $USER /var/run/docker.sock
+# newgrp docker
+# docker run hello-world
\ No newline at end of file
diff --git a/tests/e2e-testing-scripts/e2e_testing_readme.md b/tests/e2e-testing-scripts/e2e_testing_readme.md
new file mode 100644
index 0000000..6e58b2c
--- /dev/null
+++ b/tests/e2e-testing-scripts/e2e_testing_readme.md
@@ -0,0 +1,35 @@
+## End-to-End Testing Automation 
+
+The script will:
+- Clone the SREGym repo on each node
+- Install dependencies
+- Create a kind cluster on each node
+- Set up a Python virtual environment
+- Run the benchmark in a tmux session on each node
+- Run an automatic submission script on each node in another tmux session
+- Collect logs from all nodes back to your local machine
+
+### Prerequisites:
+
+Before running the script, make sure:
+1. **You have CloudLab nodes reserved** and can SSH into them
+2.. **Your SSH key is added to your SSH agent** on your local machine to make sure you can access SREGym on the remote node
+
+## Required Files:
+1. Make sure you have a nodes.txt file in this directory, with each line being a cloudlab node hostname
+    ex: 
+    lilygn@c220g2-010810.wisc.cloudlab.us
+    lilygn@c220g2-010812.wisc.cloudlab.us  
+2. Make sure registry.txt is up to date with all of the problems you want to test
+
+### How to use:
+
+1. On your local machine, run the automating_tests.py script
+2. You will be prompted for your CloudLab username
+
+
+## Log files:
+
+You will be able to see the output from each node in the node_logs directory.
+
+
diff --git a/tests/e2e-testing-scripts/go.sh b/tests/e2e-testing-scripts/go.sh
new file mode 100644
index 0000000..550ce42
--- /dev/null
+++ b/tests/e2e-testing-scripts/go.sh
@@ -0,0 +1,7 @@
+wget https://go.dev/dl/go1.24.1.linux-amd64.tar.gz
+sudo rm -rf /usr/local/go && sudo tar -C /usr/local -xzf go1.24.1.linux-amd64.tar.gz
+echo 'export PATH=$PATH:/usr/local/go/bin' >> $HOME/.bashrc
+echo 'export PATH=$PATH:$(go env GOPATH)/bin' >> $HOME/.bashrc
+sudo rm -f go1.24.1.linux-amd64.tar.gz
+sudo rm -f go1.24.1.linux-amd64.tar.gz.\
+
diff --git a/tests/e2e-testing-scripts/kind.sh b/tests/e2e-testing-scripts/kind.sh
new file mode 100644
index 0000000..75bc0e3
--- /dev/null
+++ b/tests/e2e-testing-scripts/kind.sh
@@ -0,0 +1,40 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+# Prefer Homebrew if available
+if command -v /home/linuxbrew/.linuxbrew/bin/brew >/dev/null 2>&1 || command -v brew >/dev/null 2>&1; then
+  if command -v /home/linuxbrew/.linuxbrew/bin/brew >/dev/null 2>&1; then
+    eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"
+  else
+    eval "$(brew shellenv)"
+  fi
+  echo "[kind.sh] Installing kind via brew…"
+  brew install kind || true
+  echo "[kind.sh] Done."
+  exit 0
+fi
+
+# Fallback: install prebuilt Kind binary (no Go needed)
+OS=$(uname -s | tr '[:upper:]' '[:lower:]')
+ARCH=$(uname -m)
+case "$ARCH" in
+  x86_64) ARCH=amd64 ;;
+  aarch64|arm64) ARCH=arm64 ;;
+esac
+URL="https://kind.sigs.k8s.io/dl/v0.23.0/kind-${OS}-${ARCH}"
+
+echo "[kind.sh] Installing kind from ${URL}"
+TMP=/tmp/kind
+curl -fsSL "${URL}" -o "${TMP}"
+chmod +x "${TMP}"
+
+# Prefer /usr/local/bin if sudo works non-interactively; else ~/.local/bin
+if command -v sudo >/dev/null 2>&1 && sudo -n true 2>/dev/null; then
+  sudo mv "${TMP}" /usr/local/bin/kind
+else
+  mkdir -p "$HOME/.local/bin"
+  mv "${TMP}" "$HOME/.local/bin/kind"
+  case ":$PATH:" in *":$HOME/.local/bin:"*) : ;; *) echo 'export PATH="$HOME/.local/bin:$PATH"' >> "$HOME/.bashrc";; esac
+fi
+
+echo "[kind.sh] kind installed: $(kind --version || true)"
diff --git a/tests/e2e-testing-scripts/kubectl.sh b/tests/e2e-testing-scripts/kubectl.sh
new file mode 100644
index 0000000..133240c
--- /dev/null
+++ b/tests/e2e-testing-scripts/kubectl.sh
@@ -0,0 +1 @@
+brew install kubectl helm
\ No newline at end of file
diff --git a/tests/e2e-testing-scripts/registry.txt b/tests/e2e-testing-scripts/registry.txt
new file mode 100644
index 0000000..e18b237
--- /dev/null
+++ b/tests/e2e-testing-scripts/registry.txt
@@ -0,0 +1,86 @@
+faulty_image_correlated
+update_incompatible_correlated
+incorrect_image
+incorrect_port_assignment
+misconfig_app_hotel_res
+missing_env_variable_astronomy_shop
+revoke_auth_mongodb-1
+revoke_auth_mongodb-2
+storage_user_unregistered-1
+storage_user_unregistered-2
+valkey_auth_disruption
+valkey_memory_disruption
+capacity_decrease_rpc_retry_storm
+gc_capacity_degradation
+load_spike_rpc_retry_storm
+assign_to_non_existent_node
+auth_miss_mongodb
+configmap_drift_hotel_reservation
+duplicate_pvc_mounts_astronomy_shop
+duplicate_pvc_mounts_hotel_reservation
+duplicate_pvc_mounts_social_network
+env_variable_shadowing_astronomy_shop
+k8s_target_port-misconfig
+liveness_probe_misconfiguration_astronomy_shop
+liveness_probe_misconfiguration_hotel_reservation
+liveness_probe_misconfiguration_social_network
+liveness_probe_too_aggressive_astronomy_shop
+liveness_probe_too_aggressive_hotel_reservation
+liveness_probe_too_aggressive_social_network
+missing_configmap_hotel_reservation
+missing_configmap_social_network
+missing_service_astronomy_shop
+missing_service_hotel_reservation
+missing_service_social_network
+namespace_memory_limit
+pod_anti_affinity_deadlock
+persistent_volume_affinity_violation
+pvc_claim_mismatch
+rbac_misconfiguration
+readiness_probe_misconfiguration_astronomy_shop
+readiness_probe_misconfiguration_hotel_reservation
+readiness_probe_misconfiguration_social_network
+resource_request_too_large
+resource_request_too_small
+rolling_update_misconfigured_hotel_reservation
+rolling_update_misconfigured_social_network
+scale_pod_zero_social_net
+service_dns_resolution_failure_astronomy_shop
+service_dns_resolution_failure_social_network
+sidecar_port_conflict_astronomy_shop
+sidecar_port_conflict_hotel_reservation
+sidecar_port_conflict_social_network
+stale_coredns_config_astronomy_shop
+stale_coredns_config_social_network
+taint_no_toleration_social_network
+wrong_bin_usage
+wrong_dns_policy_astronomy_shop
+wrong_dns_policy_hotel_reservation
+wrong_dns_policy_social_network
+wrong_service_selector_astronomy_shop
+wrong_service_selector_hotel_reservation
+wrong_service_selector_social_network
+astronomy_shop_ad_service_failure
+astronomy_shop_ad_service_high_cpu
+astronomy_shop_ad_service_manual_gc
+astronomy_shop_cart_service_failure
+astronomy_shop_ad_service_image_slow_load
+astronomy_shop_payment_service_failure
+astronomy_shop_payment_service_unreachable
+astronomy_shop_product_catalog_service_failure
+astronomy_shop_recommendation_service_cache_failure
+kafka_queue_problems_hotel_reservation
+loadgenerator_flood_homepage
+trainticket_f17_nested_sql_select_clause_error
+trainticket_f22_sql_column_name_mismatch_error
+read_error
+ingress_misroute
+network_policy_block
+social_net_hotel_res_astro_shop_concurrent_failures
+kubelet_crash
+workload_imbalance
+operator_overload_replicas
+operator_non_existent_storage
+operator_invalid_affinity_toleration
+operator_security_context_fault
+operator_wrong_update_strategy_fault
\ No newline at end of file
diff --git a/tests/file_editing/example.py b/tests/file_editing/example.py
new file mode 100644
index 0000000..9c029f1
--- /dev/null
+++ b/tests/file_editing/example.py
@@ -0,0 +1,6 @@
+a = [1, 2, 3, 4, 5]
+
+for element in a:
+    print(element)
+print("hello world")
+print("hello world")
diff --git a/tests/file_editing/example.txt b/tests/file_editing/example.txt
new file mode 100644
index 0000000..7f3b241
--- /dev/null
+++ b/tests/file_editing/example.txt
@@ -0,0 +1,2 @@
+hello world
+world hello
\ No newline at end of file
diff --git a/tests/file_editing/test_create_and_insert_1.yaml b/tests/file_editing/test_create_and_insert_1.yaml
new file mode 100644
index 0000000..6ebf7fe
--- /dev/null
+++ b/tests/file_editing/test_create_and_insert_1.yaml
@@ -0,0 +1,19 @@
+tool_calls:
+  - name: "create"
+    path: "tests/file_editing/example_tmp.txt"
+  - name: "open_file"
+    path: "tests/file_editing/example_tmp.txt"
+    line_number: "1"
+  - name: "insert"
+    text: "hello world"
+    line_number: "1"
+  - name: "goto_line"
+    line_number: "1"
+user_inputs:
+  - "create tests/file_editing/example_tmp.txt"
+  - "open tests/file_editing/example_tmp.txt at line 1"
+  - "insert hello world to tests/file_editing/example_tmp.txt"
+  - "goto line 1"
+expected_curr_file: "tests/file_editing/example_tmp.txt"
+expected_curr_line: "1"
+expected_output: "hello world"
diff --git a/tests/file_editing/test_edit_1.yaml b/tests/file_editing/test_edit_1.yaml
new file mode 100644
index 0000000..7d3a301
--- /dev/null
+++ b/tests/file_editing/test_edit_1.yaml
@@ -0,0 +1,13 @@
+tool_calls:
+  - name: "open_file"
+    path: "tests/file_editing/example.txt"
+    line_number: "1"
+  - name: "edit"
+    search: "hello world"
+    replace: "world hello world"
+user_inputs:
+  - "open tests/file_editing/example.txt at line 1"
+  - "replace hello world with world hello world"
+expected_curr_file: "tests/file_editing/example.txt"
+expected_curr_line: "1"
+expected_output: "world hello world"
diff --git a/tests/file_editing/test_file_editing_tool.py b/tests/file_editing/test_file_editing_tool.py
new file mode 100644
index 0000000..0701b39
--- /dev/null
+++ b/tests/file_editing/test_file_editing_tool.py
@@ -0,0 +1,62 @@
+import os
+import subprocess
+
+import pytest
+import yaml
+
+from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+from clients.test_k8s_agent.k8s_agent import XAgent
+
+
+def get_agent():
+    llm = get_llm_backend_for_tools()
+    xagent = XAgent(llm)
+    xagent.build_agent(mock=True)
+    return xagent
+
+
+def feed_input_to_agent(xagent: XAgent, input_text: list[str]):
+    for user_input in input_text:
+        if user_input.lower() in ["quit", "exit", "q"]:
+            print("Goodbye!")
+            break
+        xagent.graph_step(user_input)
+
+
+ROOT_REPO_PATH = os.path.abspath(os.path.join(os.path.dirname(__file__), "..", ".."))
+
+
+def git_restore_repo():
+    """Restores all tracked files in the root of the repository."""
+    try:
+        subprocess.run(["git", "restore", "."], cwd=ROOT_REPO_PATH, check=True)
+        print("Repository restored successfully.")
+    except subprocess.CalledProcessError as e:
+        print(f"Failed to restore repository: {e}")
+
+
+USER_INPUTS = [
+    f"{ROOT_REPO_PATH}/tests/file_editing/test_open_file_1.yaml",
+    f"{ROOT_REPO_PATH}/tests/file_editing/test_open_file_2.yaml",
+    f"{ROOT_REPO_PATH}/tests/file_editing/test_goto_line_1.yaml",
+]
+
+
+@pytest.mark.parametrize("test_campaign_file", USER_INPUTS)
+class TestOpenFile:
+    def test_open_file_success(self, test_campaign_file: str):
+        xagent = get_agent()
+        print(f"xagent msg switch branch: {xagent.test_tool_or_ai_response}")
+        xagent.test_campaign_setter(test_campaign_file)
+        test_campaign = yaml.safe_load(open(test_campaign_file, "r"))
+        print(f"test campaign: {test_campaign}")
+        test_user_inputs = test_campaign["user_inputs"]
+        feed_input_to_agent(xagent, test_user_inputs)
+        config = {"configurable": {"thread_id": "1"}}
+        assert (
+            xagent.graph.get_state(config).values["curr_file"]
+            == ROOT_REPO_PATH + "/" + test_campaign["expected_curr_file"]
+        )
+        assert xagent.graph.get_state(config).values["curr_line"] == str(test_campaign["expected_curr_line"])
+        assert test_campaign["expected_output"] in xagent.graph.get_state(config).values["messages"][-2].content
+        git_restore_repo()
diff --git a/tests/file_editing/test_goto_line_1.yaml b/tests/file_editing/test_goto_line_1.yaml
new file mode 100644
index 0000000..af4c3b4
--- /dev/null
+++ b/tests/file_editing/test_goto_line_1.yaml
@@ -0,0 +1,12 @@
+tool_calls:
+  - name: "open_file"
+    path: "tests/file_editing/example.txt"
+    line_number: "1"
+  - name: "goto_line"
+    line_number: "2"
+user_inputs:
+  - "open tests/file_editing/example.txt at line 1"
+  - "goto line 2"
+expected_curr_file: "tests/file_editing/example.txt"
+expected_curr_line: "2"
+expected_output: "world hello"
diff --git a/tests/file_editing/test_open_file_1.yaml b/tests/file_editing/test_open_file_1.yaml
new file mode 100644
index 0000000..370b07f
--- /dev/null
+++ b/tests/file_editing/test_open_file_1.yaml
@@ -0,0 +1,9 @@
+tool_calls:
+  - name: "open_file"
+    path: "tests/file_editing/example.txt"
+    line_number: "1"
+user_inputs:
+  - "open tests/file_editing/example.txt at line 1"
+expected_curr_file: "tests/file_editing/example.txt"
+expected_curr_line: "1"
+expected_output: "hello world"
\ No newline at end of file
diff --git a/tests/file_editing/test_open_file_2.yaml b/tests/file_editing/test_open_file_2.yaml
new file mode 100644
index 0000000..5ffbdbb
--- /dev/null
+++ b/tests/file_editing/test_open_file_2.yaml
@@ -0,0 +1,13 @@
+tool_calls:
+  - name: "open_file"
+    path: "tests/file_editing/example.txt"
+    line_number: "1"
+  - name: "open_file"
+    path: "tests/file_editing/example.txt"
+    line_number: "2"
+user_inputs:
+  - "open tests/file_editing/example.txt at line 1"
+  - "open tests/file_editing/example.txt at line 2"
+expected_curr_file: "tests/file_editing/example.txt"
+expected_curr_line: "2"
+expected_output: "world hello"
diff --git a/tests/geni-lib/__init__.py b/tests/geni-lib/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/tests/geni-lib/test_deploy_sregym.py b/tests/geni-lib/test_deploy_sregym.py
new file mode 100644
index 0000000..67108e6
--- /dev/null
+++ b/tests/geni-lib/test_deploy_sregym.py
@@ -0,0 +1,44 @@
+from pathlib import Path
+import importlib
+import sys
+
+import pytest
+
+REPO_ROOT = Path(__file__).resolve().parents[2]        
+GENI_LIB  = REPO_ROOT / "scripts" / "geni-lib"
+sys.path.append(str(GENI_LIB))                          
+cluster_setup = importlib.import_module("cluster_setup") 
+class DummyExecutor:
+    def __init__(self, host: str, user: str, key_path: str | None = None):
+        self.host = host
+        self.user = user
+        self.key  = key_path
+        self.exec_calls: list[str] = []
+
+    def exec(self, cmd: str, timeout: int | None = None):
+        self.exec_calls.append(cmd)
+        return 0, "", ""      
+
+    def close(self):
+        pass
+
+
+def test_deploy_sregym(monkeypatch, tmp_path):
+    """
+    1. Create a fake deploy key on disk.
+    2. Monkey-patch cluster_setup.RemoteExecutor → DummyExecutor.
+    3. Call deploy_sregym(); expect no exception.
+    4. Assert that both the git-clone *and* cleanup commands happened.
+    """
+    key_file = tmp_path / "dummy_deploy_key"
+    key_file.write_text("-----BEGIN FAKE KEY-----\nfake\n-----END FAKE KEY-----")
+
+    monkeypatch.setattr(cluster_setup, "RemoteExecutor", DummyExecutor)
+
+    ex = DummyExecutor("node0.test", "tester")           
+    cluster_setup.deploy_sregym(ex, key_file.as_posix())
+
+    assert any("git clone" in c for c in ex.exec_calls), \
+        "SREGym repository was not cloned"
+    assert any("rm -f ~/.ssh/sregym_deploy" in c for c in ex.exec_calls), \
+        "Deploy key was not cleaned up"
diff --git a/tests/geni-lib/test_experiment_creation.py b/tests/geni-lib/test_experiment_creation.py
new file mode 100644
index 0000000..01fff16
--- /dev/null
+++ b/tests/geni-lib/test_experiment_creation.py
@@ -0,0 +1,78 @@
+# Create a 3-node cloudlab experiment with 3 c220g5 nodes for 1 hour
+
+import datetime
+import json
+import random
+
+import geni.portal as portal
+import geni.util
+from geni.aggregate.cloudlab import Clemson, Utah, Wisconsin
+
+context = geni.util.loadContext()
+
+# Randomly generate a slice name as they need to be unique
+SLICE_NAME = "test-" + str(random.randint(100000, 999999))
+DURATION = 1  # (hours)
+DESCRIPTION = "Testing experiment creation"
+HARDWARE_TYPE = "c220g5"
+AGGREGATE = Wisconsin  # c220g5 nodes are only available at Wisconsin
+OS_TYPE = "UBUNTU22-64-STD"
+
+# Create a cluster of 3 c220g5 nodes
+request = portal.context.makeRequestRSpec()
+
+node1 = request.RawPC("control")
+node2 = request.RawPC("compute1")
+node3 = request.RawPC("compute2")
+
+# Free to pick different hardware types but make sure to check if the chosen hardware type is available at the chosen aggregate
+node1.hardware_type = HARDWARE_TYPE
+node2.hardware_type = HARDWARE_TYPE
+node3.hardware_type = HARDWARE_TYPE
+
+node1.disk_image = f"urn:publicid:IDN+emulab.net+image+emulab-ops//{OS_TYPE}"
+node2.disk_image = f"urn:publicid:IDN+emulab.net+image+emulab-ops//{OS_TYPE}"
+node3.disk_image = f"urn:publicid:IDN+emulab.net+image+emulab-ops//{OS_TYPE}"
+
+link1 = request.Link(members=[node1, node2, node3])
+
+### Create the slice
+try:
+    print(f"Creating slice: {SLICE_NAME}")
+    expiration = datetime.datetime.now() + datetime.timedelta(hours=DURATION)
+    ret = context.cf.createSlice(context, SLICE_NAME, exp=expiration, desc=DESCRIPTION)
+    print(f"Slice created: {SLICE_NAME} for {DURATION} hours\n")
+    print(f"Slice Info: {json.dumps(ret, indent=2)}\n")
+except Exception as e:
+    print(f"Error creating slice: {e}")
+    exit(1)
+
+### Create the sliver (actual experiment)
+print(f"Creating sliver in slice: {SLICE_NAME}")
+try:
+    igm = AGGREGATE.createsliver(context, SLICE_NAME, request)
+    print(f"Sliver created\n")
+except Exception as e:
+    print(f"Error creating sliver: {e}")
+    exit(1)
+
+print("Your ssh info:")
+geni.util.printlogininfo(manifest=igm)
+
+### Save the login info to a file
+login_info = geni.util._corelogininfo(igm)
+if isinstance(login_info, list):
+    login_info = "\n".join(map(str, login_info))
+with open(f"{SLICE_NAME}.login.info.txt", "a") as f:
+    f.write(f"Slice name: {SLICE_NAME}\n")
+    f.write(f"Cluster name: {AGGREGATE.name}\n")
+    f.write(f"Duration: {DURATION} hours\n")
+    f.write(f"Hardware type: {HARDWARE_TYPE}\n")
+    f.write(f"OS type: {OS_TYPE}\n")
+    f.write(login_info)
+    f.write("\n")
+    f.write(f"To delete the experiment, run the following command:\n")
+    f.write(f"python3 genictl.py delete-sliver {SLICE_NAME} --site wisconsin\n")
+print(f"\nSSH info saved to {SLICE_NAME}.login.info.txt\n")
+
+print(f"Your experiment under slice: {SLICE_NAME} is successfully created for {DURATION} hours\n")
diff --git a/tests/kubectl_tool_tests/kubectl_tool_set_test.py b/tests/kubectl_tool_tests/kubectl_tool_set_test.py
new file mode 100644
index 0000000..4162ac5
--- /dev/null
+++ b/tests/kubectl_tool_tests/kubectl_tool_set_test.py
@@ -0,0 +1,124 @@
+import logging
+import subprocess  # nosec B404
+import time
+from pathlib import Path
+
+import pytest
+import yaml
+
+from tests.kubectl_tool_tests.nl2kubectl_agent import NL2KubectlAgent
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+KUBECTL_TOOL_TEST_DIR = Path(__file__).resolve().parent
+PRECONDITIONS_FILE = KUBECTL_TOOL_TEST_DIR / "tests" / "preconditions.yaml"
+PRECONDITION_SETTINGS = yaml.safe_load(open(PRECONDITIONS_FILE, "r"))
+
+TEST_SETTINGS = [
+    KUBECTL_TOOL_TEST_DIR / "tests" / "create_del_test.yaml",
+    KUBECTL_TOOL_TEST_DIR / "tests" / "patch_test.yaml",
+]
+
+# in seconds
+TIME_OUT = 30
+WAIT_TIME_GAP = 3
+
+
+def exec_shell_cmd(cmd: str):
+    try:
+        out = subprocess.run(cmd, shell=True, check=True, capture_output=True)  # nosec B602
+        result = out.stdout.decode("utf-8")
+        logger.info(f"Successfully running command: {cmd}\nresult:\n{result}")
+        return result
+    except subprocess.CalledProcessError as e:
+        error_info = e.stderr.decode("utf-8")
+        logger.info(f"Error running command: {cmd}\nError:\n{error_info}")
+        raise e
+
+
+def get_agent(is_mock):
+    if is_mock:
+        llm = None
+    else:
+        from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+
+        llm = get_llm_backend_for_tools()
+
+    agent = NL2KubectlAgent(llm)
+    agent.build_agent(mock=is_mock)
+    return agent
+
+
+def validate_condition(validate_cmd, validator):
+    opt = exec_shell_cmd(validate_cmd)
+    return eval(validator)
+
+
+def set_up_preconditions(preconditions):
+    for precondition in preconditions:
+        condition_set = PRECONDITION_SETTINGS[precondition]
+        if "preconditions" in condition_set:
+            set_up_preconditions(condition_set["preconditions"])
+
+        if "validate_cmd" in condition_set:
+            fixed = False
+            total_slept_time = 0
+            while True:
+                is_valid = validate_condition(condition_set["validate_cmd"], condition_set["validator"])
+                if not is_valid and not fixed:
+                    logger.info(f'Precondition "{precondition}" is not met. Setting up precondition...')
+                    exec_shell_cmd(condition_set["fix"])
+                    fixed = True
+                elif not is_valid and fixed:
+                    if total_slept_time > (TIME_OUT - 1e-2):
+                        raise Exception(f"Fail to set up precondition (timeout): {precondition}")
+                    to_sleep = min(WAIT_TIME_GAP, TIME_OUT - total_slept_time)
+                    time.sleep(to_sleep)
+                    total_slept_time += to_sleep
+                else:
+                    logger.info(f'Precondition "{precondition}" is met now.')
+                    break
+
+
+def running_test(test_rounds, agent):
+    for one_round in test_rounds:
+        logger.info(f"user_input for this round: {one_round['user_input']}")
+        agent.graph_step(one_round["user_input"])
+        if "validate_cmd" in one_round:
+            total_slept_time = 0
+            logger.info("Validating agent's tool call...")
+            while True:
+                is_valid = validate_condition(one_round["validate_cmd"], one_round["validator"])
+                if not is_valid:
+                    if total_slept_time > (TIME_OUT - 1e-2):
+                        raise Exception(f"Fail to validate (timeout). user_input: {one_round['user_input']}")
+                    to_sleep = min(WAIT_TIME_GAP, TIME_OUT - total_slept_time)
+                    time.sleep(to_sleep)
+                    total_slept_time += to_sleep
+                else:
+                    logger.info(f"Success validating. user_input: {one_round['user_input']}")
+                    break
+
+
+@pytest.mark.parametrize("test_campaign_file", TEST_SETTINGS)
+class TestKubectlTools:
+    def test_kubectl_tools_success(self, test_campaign_file: str):
+        agent = get_agent(is_mock=True)
+        logger.info(f"agent msg switch branch: {agent.test_tool_or_ai_response}")
+        agent.test_campaign_setter(test_campaign_file)
+        test_campaign = yaml.safe_load(open(test_campaign_file, "r"))
+
+        set_up_preconditions(test_campaign["preconditions"])
+        running_test(test_campaign["test"], agent)
+
+
+if __name__ == "__main__":
+    pytest.main(
+        [
+            "-v",  # Verbose output
+            "--maxfail=1",  # Stop after first failure
+            "-s",  # Show print output
+            f"{__file__}::TestKubectlTools::test_kubectl_tools_success",  # Specific test
+        ]
+    )
diff --git a/tests/kubectl_tool_tests/nl2kubectl_agent.py b/tests/kubectl_tool_tests/nl2kubectl_agent.py
new file mode 100644
index 0000000..699217e
--- /dev/null
+++ b/tests/kubectl_tool_tests/nl2kubectl_agent.py
@@ -0,0 +1,214 @@
+import json
+import logging
+import uuid
+
+import yaml
+from fastmcp import Client
+from fastmcp.client.transports import SSETransport
+from langchain_core.messages import AIMessage
+from langgraph.checkpoint.memory import MemorySaver
+from langgraph.constants import END
+from langgraph.graph import START, StateGraph
+
+from clients.stratus.stratus_agent.state import State
+from clients.stratus.stratus_utils.ai_msg_mock_utils import ai_msg_tpl
+from clients.stratus.tools.kubectl_tools import (
+    ExecKubectlCmdSafely,
+    GetPreviousRollbackableCmd,
+    RollbackCommand,
+)
+from clients.stratus.tools.stateful_async_tool_node import StatefulAsyncToolNode
+
+logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+logger = logging.getLogger(__name__)
+
+KUBECTL_TOOLS_MCP_URL = f"http://127.0.0.1:{os.getenv("MCP_SERVER_PORT", "8001")}/kubectl_mcp_tools/sse"
+
+
+def route_tools(state: State):
+    """
+    Use in the conditional edge to route to the ToolNode if the last message
+    has tool calls. Otherwise, route to the end.
+    """
+    logger.info(f"route_tools: {state}")
+    if isinstance(state, list):
+        ai_message = state[-1]
+    elif messages := state.get("messages", []):
+        logger.info(f"route_tools: messages length: {len(messages)}")
+        ai_message = messages[-1]
+    else:
+        raise ValueError(f"No messages found in input state to tool_edge: {state}")
+    if hasattr(ai_message, "tool_calls") and len(ai_message.tool_calls) > 0:
+        tool_name = ai_message.tool_calls[0]["name"]
+        kubectl_tool_names = [
+            "exec_kubectl_cmd_safely",
+            "rollback_command",
+            "get_previous_rollbackable_cmd",
+        ]
+        if tool_name in kubectl_tool_names:
+            logger.info("routing tool name: %s", tool_name)
+            return "kubectl_tools_node"
+        else:
+            logger.info(f"Fail routing to kubectl tools node with tool {tool_name}. Tool not found.")
+    else:
+        logger.info("no tool call, returning END")
+    logger.info("invoking node: end")
+    return END
+
+
+class NL2KubectlAgent:
+    def __init__(self, llm):
+        session_id = str(uuid.uuid4())
+        transport = SSETransport(
+            url=KUBECTL_TOOLS_MCP_URL,
+            headers={"sregym_ssid": session_id},
+        )
+        self.client = Client(transport)
+
+        exec_kubectl_cmd_safely = ExecKubectlCmdSafely(self.client)
+        rollback_command = RollbackCommand(self.client)
+        get_previous_rollbackable_cmd = GetPreviousRollbackableCmd(self.client)
+        self.kubectl_tools = [
+            exec_kubectl_cmd_safely,
+            rollback_command,
+            get_previous_rollbackable_cmd,
+        ]
+
+        self.llm = llm
+
+        self.graph_builder = StateGraph(State)
+        self.graph = None
+
+        self.test_tool_call_idx = 0
+        self.test_campaign_file = ""
+        self.test_tool_or_ai_response = "tool"
+
+    def test_campaign_setter(self, test_campaign_file):
+        self.test_campaign_file = test_campaign_file
+
+    def mock_llm_inference_step(self, state: State):
+        logger.info(f"[mock llm] called by graph, currently on {self.test_tool_call_idx}th tool call")
+        ai_message_template = AIMessage(**ai_msg_tpl)
+        logger.info("invoking mock llm inference, custom state: %s", state)
+        logger.info(f"[mock llm] msg branch: {self.test_tool_or_ai_response}")
+        if self.test_tool_or_ai_response == "tool":
+            test_campaign = yaml.safe_load(open(self.test_campaign_file, "r"))
+            cur_test = test_campaign["test"][self.test_tool_call_idx]
+            logger.info(
+                f"\n[mock llm] test campaign tool call: {cur_test['tool_call']}"
+                f"\nargs: {cur_test.get('args', dict())}"
+            )
+
+            function_name = cur_test["tool_call"]
+            function_args_str = json.dumps(cur_test.get("args", dict()))
+            ai_message_template.additional_kwargs["tool_calls"][0]["function"]["arguments"] = function_args_str
+            ai_message_template.additional_kwargs["tool_calls"][0]["function"]["name"] = function_name
+            ai_message_template.tool_calls[0]["name"] = function_name
+            ai_message_template.tool_calls[0]["args"] = cur_test.get("args", dict())
+
+            logger.info("[mock llm] type: %s, ai message returned: %s", type(ai_message_template), ai_message_template)
+            logger.info("[mock llm] tool calling, returning to ai")
+            self.test_tool_call_idx += 1
+        elif self.test_tool_or_ai_response == "ai":
+            ai_message_template.tool_calls = []
+            ai_message_template.content = "test"
+            ai_message_template.additional_kwargs = {"refusal": None}
+            ai_message_template.response_metadata["finish_reason"] = "stop"
+            logger.info("[mock llm] ai messaging, returning to tool")
+
+        if self.test_tool_or_ai_response == "tool":
+            self.test_tool_or_ai_response = "ai"
+        elif self.test_tool_or_ai_response == "ai":
+            self.test_tool_or_ai_response = "tool"
+
+        logger.info(
+            "[mock llm] next msg branch: %s, messages returns: %s",
+            self.test_tool_or_ai_response,
+            state["messages"] + [ai_message_template],
+        )
+
+        output = [*state["messages"], ai_message_template]
+        return {
+            "messages": output,
+            "curr_file": state["curr_file"],
+            "curr_line": state["curr_line"],
+        }
+
+    def llm_inference_step(self, state: State):
+        logger.info("invoking llm inference, custom state: %s", state)
+        return {
+            "messages": [self.llm.inference(messages=state["messages"], tools=self.kubectl_tools)],
+            "curr_file": state["curr_file"],
+            "curr_line": state["curr_line"],
+        }
+
+    def build_agent(self, mock: bool = False):
+        # we add the node to the graph
+        if mock:
+            self.graph_builder.add_node("agent", self.mock_llm_inference_step)
+        else:
+            self.graph_builder.add_node("agent", self.llm_inference_step)
+
+        # we also have a tool node. this tool node connects to a jaeger MCP server
+        # and allows you to query any jaeger information
+        kubectl_tools_node = StatefulAsyncToolNode(self.kubectl_tools)
+
+        # we add the node to the graph
+        self.graph_builder.add_node("kubectl_tools_node", kubectl_tools_node)
+
+        # after creating the nodes, we now add the edges
+        # the start of the graph is denoted by the keyword START, end is END.
+        # here, we point START to the "agent" node
+        self.graph_builder.add_edge(START, "agent")
+
+        # once we arrive at the "agent" node, the execution graph can
+        # have 2 paths: either choosing to use a tool or not.
+        # e.g.,
+        # agent -> ob tool -> agent -> ob tool (tool loop)
+        # agent -> agent -> agent -> end (normal chatbot loop)
+        # this is accomplished by "conditional edges" in the graph
+        # we implement "route_tools," which routes the execution based on the agent's
+        # output. if the output is a tool usage, we direct the execution to the tool and loop back to the agent node
+        # if not, we finish *one* graph traversal (i.e., to END)
+        self.graph_builder.add_conditional_edges(
+            "agent",
+            route_tools,
+            # The following dictionary lets you tell the graph to interpret the condition's outputs as a specific node
+            # It defaults to the identity function, but if you
+            # want to use a node named something else apart from "tools",
+            # You can update the value of the dictionary to something else
+            # e.g., "tools": "my_tools"
+            {"kubectl_tools_node": "kubectl_tools_node", END: END},
+        )
+        self.graph_builder.add_edge("kubectl_tools_node", "agent")
+
+        # interestingly, for short-term memory (i.e., agent trajectories or conversation history), we need
+        # to explicitly implement it.
+        # here, it is implemented as a in-memory checkpointer.
+        memory = MemorySaver()
+        self.graph = self.graph_builder.compile(checkpointer=memory)
+
+    def graph_step(self, user_input: str):
+        if not self.graph:
+            raise ValueError("Agent graph is None. Have you built the agent?")
+        config = {"configurable": {"thread_id": "1"}}
+        last_state = self.graph.get_state(config=config)
+        logger.info("last state: %s", last_state)
+        if len(last_state.values) != 0:
+            msgs = last_state.values["messages"] + [{"role": "user", "content": user_input}]
+            state = dict(last_state.values)
+            state["messages"] = msgs
+            logger.info(f"last state values: %s", state)
+        else:
+            state = {
+                "messages": [{"role": "user", "content": user_input}],
+                "workdir": "",
+                "curr_file": "",
+                "curr_line": 0,
+            }
+        for event in self.graph.stream(
+            state,
+            config=config,
+            stream_mode="values",
+        ):
+            event["messages"][-1].pretty_print()
diff --git a/tests/kubectl_tool_tests/tests/create_del_test.yaml b/tests/kubectl_tool_tests/tests/create_del_test.yaml
new file mode 100644
index 0000000..e9b118f
--- /dev/null
+++ b/tests/kubectl_tool_tests/tests/create_del_test.yaml
@@ -0,0 +1,37 @@
+# check file preconditions.yaml
+preconditions:
+  - "mt_ns_restarted"
+
+test:
+  - user_input: "Create a deployment \"nginx-deployment\" with nginx image in namespace mt."
+    tool_call: "exec_kubectl_cmd_safely"
+    args:
+      command: "kubectl create deployment nginx-deployment --image=nginx -n mt"
+
+    # validate_cmd will be executed in a shell
+    validate_cmd: "kubectl get deployment -n mt | awk '$1 == \"nginx-deployment\" && $4 == \"1\"'"
+
+    # validator is a valid python expression returning a boolean value
+    # opt is the output of exec validate_cmd
+    validator: "len(opt.strip()) > 0"
+
+  - user_input: "Delete the nginx-deployment deployment in namespace mt."
+    tool_call: "exec_kubectl_cmd_safely"
+    args:
+      command: "kubectl delete deployment nginx-deployment -n mt"
+    validate_cmd: "kubectl get deployment -n mt | awk '$1 == \"nginx-deployment\"'"
+    validator: "len(opt.strip()) == 0"
+
+  # No validation for this, but you can manually validate through the log information.
+  - user_input: "Show me the rollback order of previous commands"
+    tool_call: "get_previous_rollbackable_cmd"
+
+  - user_input: "Rollback the last mutating command."
+    tool_call: "rollback_command"
+    validate_cmd: "kubectl get deployment -n mt | awk '$1 == \"nginx-deployment\" && $4 == \"1\"'"
+    validator: "len(opt.strip()) > 0"
+
+  - user_input: "Rollback again."
+    tool_call: "rollback_command"
+    validate_cmd: "kubectl get deployment -n mt | awk '$1 == \"nginx-deployment\"'"
+    validator: "len(opt.strip()) == 0"
diff --git a/tests/kubectl_tool_tests/tests/patch_test.yaml b/tests/kubectl_tool_tests/tests/patch_test.yaml
new file mode 100644
index 0000000..4ce0d66
--- /dev/null
+++ b/tests/kubectl_tool_tests/tests/patch_test.yaml
@@ -0,0 +1,15 @@
+preconditions:
+  - "custom_nginx_deploy_in_mt_exist"
+
+test:
+  - user_input: "Patch the deployment \"nginx-deployment\" so that its nginx container use image nginx 1.21."
+    tool_call: "exec_kubectl_cmd_safely"
+    args:
+      command: "kubectl patch deployment nginx-deployment --type=strategic -p='{\"spec\": {\"template\": {\"spec\": {\"containers\": [{\"name\": \"nginx\",\"image\": \"nginx:1.21\"}]}}}}' -n mt"
+    validate_cmd: "kubectl get deployment nginx-deployment -o jsonpath=\"{.spec.template.spec.containers[0].image}\" -n mt"
+    validator: "opt.strip() == 'nginx:1.21'"
+
+  - user_input: "Rollback the last command"
+    tool_call: "rollback_command"
+    validate_cmd: "kubectl get deployment nginx-deployment -o jsonpath=\"{.spec.template.spec.containers[0].image}\" -n mt"
+    validator: "opt.strip() == 'nginx:1.20'"
diff --git a/tests/kubectl_tool_tests/tests/preconditions.yaml b/tests/kubectl_tool_tests/tests/preconditions.yaml
new file mode 100644
index 0000000..9ee6656
--- /dev/null
+++ b/tests/kubectl_tool_tests/tests/preconditions.yaml
@@ -0,0 +1,24 @@
+mt_ns_exist:
+  validate_cmd: "kubectl get ns | awk '$1 == \"mt\" && $2 == \"Active\"'"
+  validator: "len(opt.strip()) > 0"
+  fix: "kubectl create namespace mt"
+
+mt_ns_deleted:
+  validate_cmd: "kubectl get ns | awk '$1 == \"mt\"'"
+  validator: "len(opt.strip()) == 0"
+  fix: "kubectl delete namespace mt"
+
+mt_ns_restarted:
+  preconditions:
+    - "mt_ns_deleted"
+    - "mt_ns_exist"
+
+custom_nginx_deploy_in_mt_exist:
+  preconditions:
+    - "mt_ns_restarted"
+
+#  $1:NAME; $4: AVAILABLE
+  validate_cmd: "kubectl get deployment -n mt | awk '$1 == \"nginx-deployment\" && $4 == \"2\"'"
+  validator: "len(opt.strip()) > 0"
+#  cwd should be "SREGym/tests/kubectl_tool_tests/" when running tests
+  fix: "kubectl apply -f ./tests/resources/custom_nginx_deployment.yaml -n mt"
diff --git a/tests/kubectl_tool_tests/tests/resources/custom_nginx_deployment.yaml b/tests/kubectl_tool_tests/tests/resources/custom_nginx_deployment.yaml
new file mode 100644
index 0000000..401e26e
--- /dev/null
+++ b/tests/kubectl_tool_tests/tests/resources/custom_nginx_deployment.yaml
@@ -0,0 +1,20 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: nginx-deployment
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: nginx
+  template:
+    metadata:
+      labels:
+        app: nginx
+    spec:
+      containers:
+        - name: nginx
+          image: nginx:1.20
+        - name: sidecar
+          image: busybox
+          command: ["sh", "-c", "while true; do sleep 3600; done"]
diff --git a/tests/provisioner/test_provisioner.py b/tests/provisioner/test_provisioner.py
new file mode 100644
index 0000000..ad30165
--- /dev/null
+++ b/tests/provisioner/test_provisioner.py
@@ -0,0 +1,594 @@
+"""
+Test suite for the CloudLab provisioner functionality.
+
+This module contains integration tests that test the core functionality of the CloudLab
+provisioner, including cluster provisioning, user management, and automatic cleanup.
+
+NOTE: These tests are live and will provision real CloudLab clusters.
+You must have your CloudLab credentials configured for them to run.
+To use test settings, set SET_TEST_VALUES = True in provisioner/config/settings.py
+
+The tests are designed to be self-cleaning, but if a test fails,
+you may be left with a running cluster on CloudLab. You should
+manually terminate it.
+"""
+
+import datetime
+import os
+import subprocess
+import sys
+import time
+import uuid
+
+import pytest
+from colorama import Fore, Style, init
+
+import provisioner.cli
+from provisioner.cli import get_state_manager
+from provisioner.cloudlab_provisioner import CloudlabProvisioner
+from provisioner.config.settings import DefaultSettings
+from provisioner.daemon import ProvisionerDaemon
+from provisioner.state_manager import CLUSTER_STATUS, StateManager
+
+# Initialize colorama
+init()
+
+
+class TestLogger:
+    """Custom logger for test output with color-coded messages."""
+
+    @staticmethod
+    def info(msg: str):
+        print(f"{Fore.BLUE}[INFO]{Style.RESET_ALL} {msg}")
+
+    @staticmethod
+    def success(msg: str):
+        print(f"{Fore.GREEN}[SUCCESS]{Style.RESET_ALL} {msg}")
+
+    @staticmethod
+    def error(msg: str):
+        print(f"{Fore.RED}[ERROR]{Style.RESET_ALL} {msg}")
+
+    @staticmethod
+    def warning(msg: str):
+        print(f"{Fore.YELLOW}[WARNING]{Style.RESET_ALL} {msg}")
+
+
+logger = TestLogger()
+
+# Test constants
+TEST_USER_EMAIL = f"testuser-{uuid.uuid4()}@example.com"
+TEST_USER_SSH_KEY = (
+    f"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB+h2XcagLMnSpOeEl/BSe5uf6rcFnPIJV16f7rdUOXj {TEST_USER_EMAIL}"
+)
+
+
+def run_cli_command(command_args):
+    """
+    Run a CLI command using subprocess and return the output and exit code.
+
+    Args:
+        command_args (list): List of command arguments to pass to the CLI
+
+    Returns:
+        tuple: (stdout, stderr, return_code) containing the command output and exit status
+    """
+    cmd = [sys.executable, "-m", "provisioner.cli"]
+    for arg in command_args:
+        if " " in arg:
+            cmd.append(f'"{arg}"')
+        else:
+            cmd.append(arg)
+
+    cmd_str = " ".join(cmd)
+    logger.info(f"Running command: {cmd_str}")
+
+    process = subprocess.run(cmd_str, shell=True, capture_output=True, text=True)
+
+    return process.stdout, process.stderr, process.returncode
+
+
+#
+# Pytest Fixtures
+#
+
+
+@pytest.fixture
+def state_manager():
+    """
+    Sets up the test environment and returns a state manager instance.
+
+    This fixture:
+    1. Cleans up any existing test database
+    2. Creates a fresh state manager instance
+    3. Cleans up after the test by terminating any CloudLab clusters
+       and removing the test database
+
+    Yields:
+        StateManager: A fresh state manager instance for the test
+    """
+    if os.path.exists(DefaultSettings.DATABASE_PATH):
+        os.remove(DefaultSettings.DATABASE_PATH)
+
+    provisioner.cli._state_manager_instance = None
+    sm = get_state_manager()
+
+    yield sm
+
+    # Cleanup after the test
+    cleanup_cloudlab_clusters(sm)
+    if os.path.exists(DefaultSettings.DATABASE_PATH):
+        os.remove(DefaultSettings.DATABASE_PATH)
+    logger.success("Test environment cleaned up")
+
+
+@pytest.fixture
+def daemon():
+    """
+    Returns a provisioner daemon instance.
+
+    Returns:
+        ProvisionerDaemon: A fresh daemon instance for the test
+    """
+    return ProvisionerDaemon()
+
+
+def cleanup_cloudlab_clusters(state_manager: StateManager):
+    """
+    Cleans up any clusters created during the test.
+
+    This function:
+    1. Gets all clusters from the state manager
+    2. Attempts to terminate each cluster on CloudLab
+    3. Handles cases where clusters may already be deleted
+    4. Logs success/failure for each operation
+
+    Args:
+        state_manager (StateManager): The state manager instance containing cluster records
+
+    """
+    logger.info("Cleaning up CloudLab clusters")
+    all_clusters = state_manager.get_all_clusters()
+    if not all_clusters:
+        logger.info("No clusters to clean up.")
+        return
+
+    provisioner = CloudlabProvisioner()
+    for cluster in all_clusters:
+        slice_name = cluster["slice_name"]
+        agg_name = cluster["aggregate_name"]
+        if agg_name and agg_name != "<PENDING>":
+            logger.info(f"Terminating cluster: {slice_name} on {agg_name}")
+            try:
+                provisioner.delete_experiment(slice_name, agg_name)
+                logger.success(f"Successfully terminated {slice_name}.")
+            except Exception as e:
+                if "No slice or aggregate here" in str(e) or "No such slice here" in str(e):
+                    logger.warning(f"Cluster {slice_name} already deleted.")
+                else:
+                    logger.error(f"Error terminating {slice_name}: {e}")
+        else:
+            logger.warning(f"Skipping termination for {slice_name} (no aggregate name).")
+
+
+#
+# Test Suite
+#
+# The following tests test the core functionality of the CloudLab provisioner:
+# 1. test_auto_provisioning - Tests automatic cluster provisioning when lower than MIN_AVAILABLE_CLUSTERS
+# 2. test_user_claim_and_relinquish - Tests user cluster claim and release workflow
+# 3. test_max_clusters_per_user - Ensures users can't exceed their cluster limit
+# 4. test_unclaimed_cluster_timeout - Tests automatic cleanup of unused clusters
+# 5. test_max_total_clusters_limit - Tests system-wide cluster limit enforcement
+# 6. test_claimed_cluster_inactivity_timeout - Tests cleanup of inactive claimed clusters
+# 7. test_eval_override_for_inactivity - Tests evaluation mode claimed cluster protection
+# 8. test_claimed_cluster_extension - Tests automatic claimed cluster reservation extension
+# 9. test_sregym_deploy - Tests SREGym deployment.
+#
+
+
+def test_auto_provisioning(state_manager, daemon):
+    """
+    Tests that the provisioner creates the minimum number of available clusters on startup.
+
+    This test checks that:
+    1. Initially there are no available clusters
+    2. After running checks, the minimum number of clusters are provisioned
+    3. The provisioned clusters are in the correct state
+
+    Args:
+        state_manager: Fixture providing a fresh state manager instance
+        daemon: Fixture providing a fresh daemon instance
+    """
+    logger.info("Running Test: Auto Provisioning")
+
+    assert state_manager.count_total_available_clusters() == 0
+
+    daemon.run_all_checks()
+
+    assert (
+        state_manager.count_total_available_clusters() == DefaultSettings.MIN_AVAILABLE_CLUSTERS
+    ), "Initial provisioning did not create the minimum number of available clusters"
+
+    logger.success("Test PASSED: Auto provisioning created an available cluster.")
+
+
+def test_user_claim_and_relinquish(state_manager, daemon):
+    """
+    Tests the complete workflow of a user claiming and relinquishing a cluster.
+
+    This test checks that:
+    1. A cluster can be auto-provisioned
+    2. A user can register and claim the cluster
+    3. The user can relinquish the cluster
+    4. The cluster is properly terminated after relinquishment
+
+    Args:
+        state_manager: Fixture providing a fresh state manager instance
+        daemon: Fixture providing a fresh daemon instance
+    """
+    logger.info("Running Test: User Claim and Relinquish")
+
+    # 1. Auto-provision a cluster first
+    logger.info("Provisioning a cluster for the test...")
+    daemon.run_all_checks()
+
+    assert (
+        state_manager.count_total_available_clusters() == DefaultSettings.MIN_AVAILABLE_CLUSTERS
+    ), "Auto-provisioning did not create the minimum number of available clusters"
+
+    # 2. Register a user
+    stdout, stderr, exit_code = run_cli_command(
+        ["register", "--email", TEST_USER_EMAIL, "--ssh-key", TEST_USER_SSH_KEY]
+    )
+    assert exit_code == 0, f"Registration failed: {stderr}"
+
+    # 3. User claims the cluster
+    stdout, stderr, exit_code = run_cli_command(["claim", "--email", TEST_USER_EMAIL])
+    assert exit_code == 0, f"Claim failed: {stderr}"
+
+    # 4. Verify that a cluster was claimed
+    claimed_clusters = state_manager.get_claimed_clusters_by_user(TEST_USER_EMAIL)
+    assert len(claimed_clusters) == 1, "User did not successfully claim a cluster"
+    cluster_name = claimed_clusters[0]["slice_name"]
+    logger.info(f"User claimed cluster: {cluster_name}")
+
+    # 5. User relinquishes the cluster
+    stdout, stderr, exit_code = run_cli_command(
+        ["relinquish", "--email", TEST_USER_EMAIL, "--experiment", cluster_name]
+    )
+    assert exit_code == 0, f"Relinquish failed: {stderr}"
+
+    # 6. Check that the cluster is marked for termination
+    cluster_state = state_manager.get_cluster_by_slice_name(cluster_name)
+    assert cluster_state["status"] == CLUSTER_STATUS.STATUS_TERMINATING, "Cluster was not marked for termination"
+
+    # 7. Run termination check to clean it up
+    daemon.run_all_checks()
+
+    # 8. After termination, check that the cluster is marked as terminated
+    cluster_state = state_manager.get_cluster_by_slice_name(cluster_name)
+    assert cluster_state is not None, "Cluster record was deleted"
+    assert cluster_state["status"] == CLUSTER_STATUS.STATUS_TERMINATED, "Cluster was not marked as terminated"
+    logger.success("Test PASSED: User successfully claimed and relinquished a cluster.")
+
+
+def test_max_clusters_per_user(state_manager, daemon):
+    """
+    Tests that users cannot exceed their maximum allowed cluster limit.
+
+    This test checks that:
+    1. A user can claim their first cluster
+    2. The user is prevented from claiming additional clusters (MAX_CLUSTERS_PER_USER = 1)
+    3. The system maintains the correct cluster count
+
+    Args:
+        state_manager: Fixture providing a fresh state manager instance
+        daemon: Fixture providing a fresh daemon instance
+    """
+    logger.info("Running Test: Max Clusters Per User")
+
+    # 1. Auto-provision a cluster first
+    logger.info("Provisioning a cluster for the test...")
+    daemon.run_all_checks()
+
+    assert (
+        state_manager.count_total_available_clusters() == DefaultSettings.MIN_AVAILABLE_CLUSTERS
+    ), "Auto-provisioning did not create the minimum number of available clusters"
+
+    # 2. Register a user
+    stdout, stderr, exit_code = run_cli_command(
+        ["register", "--email", TEST_USER_EMAIL, "--ssh-key", TEST_USER_SSH_KEY]
+    )
+    assert exit_code == 0, f"Registration failed: {stderr}"
+
+    # 3. User claims cluster
+    stdout, stderr, exit_code = run_cli_command(["claim", "--email", TEST_USER_EMAIL])
+    assert exit_code == 0, f"Claim failed: {stderr}"
+    claimed_clusters = state_manager.get_claimed_clusters_by_user(TEST_USER_EMAIL)
+    assert len(claimed_clusters) == 1, "User could not claim the first cluster"
+    logger.info("User claimed first cluster.")
+
+    logger.info("Provisioning a second cluster...")
+    daemon.run_all_checks()
+
+    assert (
+        state_manager.count_total_available_clusters() == DefaultSettings.MIN_AVAILABLE_CLUSTERS
+    ), "Auto-provisioning did not create the minimum number of available clusters"
+
+    # 4. User tries to claim a second cluster and should fail
+    stdout, stderr, exit_code = run_cli_command(["claim", "--email", TEST_USER_EMAIL])
+
+    # Verify user still only has one cluster
+    claimed_clusters = state_manager.get_claimed_clusters_by_user(TEST_USER_EMAIL)
+    assert len(claimed_clusters) == 1, "User was able to claim more than MAX_CLUSTERS_PER_USER"
+    logger.success("Test PASSED: User was correctly blocked from claiming more than max clusters.")
+
+
+def test_unclaimed_cluster_timeout(state_manager, daemon):
+    """
+    Tests that unclaimed clusters are automatically terminated after the timeout period.
+
+    This test checks that:
+    1. A cluster can be provisioned
+    2. The cluster is terminated after the unclaimed timeout period
+    3. The cluster state is properly updated to terminated
+
+    Args:
+        state_manager: Fixture providing a fresh state manager instance
+        daemon: Fixture providing a fresh daemon instance
+    """
+    logger.info("Running Test: Unclaimed Cluster Timeout")
+
+    # 1. Provision a cluster
+    logger.info("Provisioning a cluster for the test...")
+    daemon.run_all_checks()
+
+    assert (
+        state_manager.count_total_available_clusters() == DefaultSettings.MIN_AVAILABLE_CLUSTERS
+    ), "Auto-provisioning did not create the minimum number of available clusters"
+    cluster_name = state_manager.get_clusters_by_status(CLUSTER_STATUS.STATUS_UNCLAIMED_READY)[0]["slice_name"]
+    logger.info(f"Cluster {cluster_name} is ready and unclaimed.")
+
+    # 2. Manipulate the created_at timestamp to be in the past
+    cluster_state = state_manager.get_cluster_by_slice_name(cluster_name)
+    modified_created_at = datetime.datetime.now() - datetime.timedelta(
+        hours=DefaultSettings.UNCLAIMED_CLUSTER_TIMEOUT_HOURS
+    )
+    state_manager.update_cluster_record(cluster_name, created_at=modified_created_at)
+
+    # 3. Run the timeout check
+    daemon.run_all_checks()
+
+    # 4. After termination, check that the cluster is marked as terminated
+    cluster_state = state_manager.get_cluster_by_slice_name(cluster_name)
+    assert cluster_state is not None, "Cluster record was deleted"
+    assert cluster_state["status"] == CLUSTER_STATUS.STATUS_TERMINATED, "Cluster was not marked as terminated"
+
+    logger.success("Test PASSED: Unclaimed cluster was terminated after timeout.")
+
+
+def test_max_total_clusters_limit(state_manager, daemon):
+    """
+    Tests that the system enforces a maximum total number of clusters.
+
+    This test checks that:
+    1. Users can claim clusters up to the system-wide limit
+    2. Additional claims are rejected when the limit is reached
+    3. The total cluster count remains at the maximum limit
+
+    Args:
+        state_manager: Fixture providing a fresh state manager instance
+        daemon: Fixture providing a fresh daemon instance
+    """
+    logger.info("Running Test: Max Total Clusters Limit")
+
+    # Try to claim clusters up to MAX_TOTAL_CLUSTERS + 1
+    for i in range(1, DefaultSettings.MAX_TOTAL_CLUSTERS + 2):
+        stdout, stderr, exit_code = run_cli_command(
+            ["register", "--email", f"testuser{i}@example.com", "--ssh-key", TEST_USER_SSH_KEY]
+        )
+        assert exit_code == 0, f"Registration failed: {stderr}"
+
+        if i <= DefaultSettings.MAX_TOTAL_CLUSTERS:
+            stdout, stderr, exit_code = run_cli_command(["claim", "--email", f"testuser{i}@example.com"])
+            assert exit_code == 0, f"Claim failed: {stderr}"
+        else:
+            stdout, stderr, exit_code = run_cli_command(["claim", "--email", f"testuser{i}@example.com"])
+            assert "Maximum total clusters" in stdout, "Error message should mention maximum clusters limit"
+            logger.success(f"Successfully tested that claim {i} was blocked due to MAX_TOTAL_CLUSTERS limit")
+
+    # The total count should still be MAX_TOTAL_CLUSTERS
+    assert (
+        state_manager.count_total_managed_clusters() == DefaultSettings.MAX_TOTAL_CLUSTERS
+    ), "Total cluster count should not have increased"
+    logger.success("Test PASSED: Provisioner correctly enforced MAX_TOTAL_CLUSTERS limit.")
+
+
+def test_claimed_cluster_inactivity_timeout(state_manager, daemon):
+    """
+    Tests that claimed clusters are terminated after a period of inactivity.
+
+    This test checks that:
+    1. A user can claim a cluster
+    2. The cluster is terminated after the inactivity timeout period
+    3. The cluster state is properly updated to terminated
+
+    Note:
+        This test is highly dependent on SSH access to the node from the
+        machine running the test, and the logic for parsing auth.log. It may be flaky.
+
+    Args:
+        state_manager: Fixture providing a fresh state manager instance
+        daemon: Fixture providing a fresh daemon instance
+    """
+    logger.info("Running Test: Claimed Cluster Inactivity Timeout")
+
+    # 1. Register a user and claim a cluster
+    stdout, stderr, exit_code = run_cli_command(
+        ["register", "--email", TEST_USER_EMAIL, "--ssh-key", TEST_USER_SSH_KEY]
+    )
+    assert exit_code == 0, f"Registration failed: {stderr}"
+
+    stdout, stderr, exit_code = run_cli_command(["claim", "--email", TEST_USER_EMAIL])
+    assert exit_code == 0, f"Claim failed: {stderr}"
+
+    claimed_clusters = state_manager.get_claimed_clusters_by_user(TEST_USER_EMAIL)
+    assert len(claimed_clusters) == 1, "User could not claim a cluster"
+
+    cluster_name = claimed_clusters[0]["slice_name"]
+    logger.info(f"Cluster {cluster_name} claimed.")
+
+    # 2. Wait for inactivity timeout to pass
+    wait_time = DefaultSettings.CLAIMED_CLUSTER_INACTIVITY_TIMEOUT_HOURS * 3600 + 15  # add 15-second buffer
+    logger.info(f"Waiting for {wait_time:.1f} seconds for inactivity timeout...")
+    time.sleep(wait_time)
+
+    # 3. Run the inactivity check
+    daemon.run_all_checks()
+
+    # 4. After termination, check that the cluster is marked as terminated
+    cluster_state = state_manager.get_cluster_by_slice_name(cluster_name)
+    assert cluster_state is not None, "Cluster record was deleted"
+    assert cluster_state["status"] == CLUSTER_STATUS.STATUS_TERMINATED, "Cluster was not marked as terminated"
+
+    logger.success("Test PASSED: Claimed inactive cluster was terminated.")
+
+
+def test_eval_override_for_inactivity(state_manager, daemon):
+    """
+    Tests that clusters with evaluation override are protected from inactivity termination.
+
+    This test checks that:
+    1. A user can claim a cluster with evaluation override
+    2. The cluster remains active after the inactivity timeout period
+    3. The cluster state remains as claimed
+
+    Args:
+        state_manager: Fixture providing a fresh state manager instance
+        daemon: Fixture providing a fresh daemon instance
+    """
+    logger.info("Running Test: Eval Override for Inactivity")
+
+    # 1. Register a user and claim a cluster with eval override
+    stdout, stderr, exit_code = run_cli_command(
+        ["register", "--email", TEST_USER_EMAIL, "--ssh-key", TEST_USER_SSH_KEY]
+    )
+    assert exit_code == 0, f"Registration failed: {stderr}"
+
+    stdout, stderr, exit_code = run_cli_command(["claim", "--email", TEST_USER_EMAIL, "--eval-override"])
+    assert exit_code == 0, f"Claim with eval-override failed: {stderr}"
+
+    claimed_clusters = state_manager.get_claimed_clusters_by_user(TEST_USER_EMAIL)
+    assert len(claimed_clusters) == 1, "User could not claim a cluster"
+
+    cluster_name = claimed_clusters[0]["slice_name"]
+    logger.info(f"Cluster {cluster_name} claimed with eval override.")
+
+    # 2. Verify the override flag is set in the DB
+    cluster_state = state_manager.get_cluster_by_slice_name(cluster_name)
+    assert cluster_state["evaluation_override"] in (True, 1), "Evaluation override flag not set in database"
+
+    # 3. Wait for inactivity timeout to pass
+    wait_time = DefaultSettings.CLAIMED_CLUSTER_INACTIVITY_TIMEOUT_HOURS * 3600 + 15  # add 15-second buffer
+    logger.info(f"Waiting for {wait_time:.1f} seconds (inactivity timeout period)...")
+    time.sleep(wait_time)
+
+    # 4. Run the inactivity check
+    daemon.run_all_checks()
+
+    # 5. Check cluster is NOT marked for termination
+    cluster_state = state_manager.get_cluster_by_slice_name(cluster_name)
+    assert (
+        cluster_state["status"] == CLUSTER_STATUS.STATUS_CLAIMED
+    ), "Cluster with eval-override was incorrectly terminated"
+    logger.info("Cluster was not terminated, as expected.")
+    logger.success("--eval-override correctly prevented inactivity termination.")
+
+
+def test_claimed_cluster_extension(state_manager, daemon):
+    """
+    Tests that claimed clusters are automatically extended before expiration.
+
+    This test checks that:
+    1. A user can claim a cluster
+    2. The cluster's reservation is automatically extended
+    3. The extension time is properly recorded and updated
+
+    Args:
+        state_manager: Fixture providing a fresh state manager instance
+        daemon: Fixture providing a fresh daemon instance
+    """
+    logger.info("Running Test: Claimed Cluster Extension")
+
+    # 1. Register and claim a cluster
+    stdout, stderr, exit_code = run_cli_command(
+        ["register", "--email", TEST_USER_EMAIL, "--ssh-key", TEST_USER_SSH_KEY]
+    )
+    assert exit_code == 0, f"Registration failed: {stderr}"
+
+    stdout, stderr, exit_code = run_cli_command(["claim", "--email", TEST_USER_EMAIL])
+    assert exit_code == 0, f"Claim failed: {stderr}"
+
+    claimed_clusters = state_manager.get_claimed_clusters_by_user(TEST_USER_EMAIL)
+    assert len(claimed_clusters) == 1, "User could not claim a cluster"
+
+    cluster_name = claimed_clusters[0]["slice_name"]
+    logger.info(f"Cluster {cluster_name} claimed.")
+
+    # 2. Record the original extension time
+    original_cluster = state_manager.get_cluster_by_slice_name(cluster_name)
+    assert original_cluster is not None, "Could not find claimed cluster"
+    original_last_extended_at = original_cluster.get("last_extended_at")
+
+    logger.info(f"Original last extended at: {original_last_extended_at}")
+
+    # 3. Wait for the extension check time to pass
+    wait_time = DefaultSettings.CLAIMED_CLUSTER_EXTENSION_CHECK_HOURS * 3600 + 15  # add 15-second buffer
+    logger.info(f"Waiting for {wait_time:.1f} seconds for extension check...")
+    time.sleep(wait_time)
+
+    # 4. Run the extension check
+    daemon.run_all_checks()
+
+    # 5. Check if the cluster's expiry and last_extended_at have been updated
+    cluster_state = state_manager.get_cluster_by_slice_name(cluster_name)
+    assert cluster_state["last_extended_at"] is not None, "last_extended_at field is None"
+
+    last_extended_at = cluster_state["last_extended_at"]
+    if isinstance(last_extended_at, str):
+        last_extended_at = datetime.datetime.fromisoformat(last_extended_at)
+
+    # 6. Check if the extension time was updated
+    if original_last_extended_at:
+        if isinstance(original_last_extended_at, str):
+            original_time = datetime.datetime.fromisoformat(original_last_extended_at)
+        else:
+            original_time = original_last_extended_at
+
+    assert last_extended_at > original_time, "Cluster extension time was not updated"
+
+    assert (datetime.datetime.now() - last_extended_at).total_seconds() < 60, "Extension time is not recent"
+
+    logger.success("Test PASSED: Claimed cluster reservation was extended.")
+
+
+def test_sregym_deploy(state_manager):
+    """
+    Tests that SREGym is deployed on a claimed cluster.
+    """
+    logger.info("Running Test: SREGym Deployment when claiming a cluster")
+
+    # 1. Register a user and claim a cluster
+    stdout, stderr, exit_code = run_cli_command(
+        ["register", "--email", TEST_USER_EMAIL, "--ssh-key", TEST_USER_SSH_KEY]
+    )
+    assert exit_code == 0, f"Registration failed: {stderr}"
+
+    stdout, stderr, exit_code = run_cli_command(["claim", "--email", TEST_USER_EMAIL, "--deploy-sregym"])
+    assert exit_code == 0, f"Claim failed: {stderr}"
+
+    claimed_clusters = state_manager.get_claimed_clusters_by_user(TEST_USER_EMAIL)
+    assert len(claimed_clusters) == 1, "User could not claim a cluster"
+
+    logger.success("Test PASSED: SREGym was deployed on a claimed cluster.")
diff --git a/tests/provisioner/test_ssh.py b/tests/provisioner/test_ssh.py
new file mode 100644
index 0000000..ecd71b2
--- /dev/null
+++ b/tests/provisioner/test_ssh.py
@@ -0,0 +1,79 @@
+import logging
+import os
+
+from dotenv import load_dotenv
+
+from provisioner.utils.logger import logger
+from provisioner.utils.ssh import SSHManager, SSHUtilError
+
+load_dotenv(override=True)
+
+# Put actual hostname here
+TEST_HOSTNAME = "YOUR_TEST_HOSTNAME_OR_IP"
+
+if __name__ == "__main__":
+    logging.basicConfig(level=logging.DEBUG, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
+    logger.info("SSH Utils direct execution test started.")
+
+    test_hostname = TEST_HOSTNAME
+    test_username = "sregym"
+    test_private_key_path = os.getenv("PROVISIONER_SSH_PRIVATE_KEY_PATH")
+
+    if test_hostname == "YOUR_TEST_HOSTNAME_OR_IP":
+        logger.warning("Skipping SSH tests: Please update test_hostname and credentials in ssh_utils.py")
+    else:
+        try:
+            # Test execute_ssh_command
+            logger.info("\n--- Testing execute_ssh_command ---")
+            ssh_manager = SSHManager(test_hostname, test_username, test_private_key_path)
+            stdout, stderr, exit_code = ssh_manager.execute_ssh_command(
+                "echo 'Hello from Paramiko!' && ls -la / && date"
+            )
+            logger.info(f"Execute Command Result:\nSTDOUT:\n{stdout}\nSTDERR:\n{stderr}\nEXIT_CODE: {exit_code}")
+            assert exit_code == 0
+
+            # Test file upload
+            logger.info("\n--- Testing upload_file_scp ---")
+            local_test_file = "test_upload.txt"
+            remote_test_file = f"/tmp/{local_test_file}"
+            with open(local_test_file, "w") as f:
+                f.write("This is a test file for SCP upload.\n")
+
+            ssh_manager.upload_file_scp(local_test_file, remote_test_file)
+            # Verify upload by trying to cat it
+            stdout_cat, _, exit_code_cat = ssh_manager.execute_ssh_command(f"cat {remote_test_file}")
+            assert exit_code_cat == 0
+            assert "This is a test file for SCP upload." in stdout_cat
+            logger.info(f"Verified uploaded file content: {stdout_cat.strip()}")
+
+            # Test file download
+            logger.info("\n--- Testing download_file_scp ---")
+            local_downloaded_file = "test_downloaded.txt"
+            if os.path.exists(local_downloaded_file):
+                os.remove(local_downloaded_file)
+
+            ssh_manager.download_file_scp(remote_test_file, local_downloaded_file)
+            assert os.path.exists(local_downloaded_file)
+            with open(local_downloaded_file, "r") as f:
+                content = f.read()
+                assert "This is a test file for SCP upload." in content
+            logger.info(f"Verified downloaded file content: {content.strip()}")
+
+            # Clean up remote test file
+            ssh_manager.execute_ssh_command(f"rm {remote_test_file}")
+            # Clean up local test files
+            if os.path.exists(local_test_file):
+                os.remove(local_test_file)
+            if os.path.exists(local_downloaded_file):
+                os.remove(local_downloaded_file)
+
+            logger.info("\nSSH Utils tests completed successfully.")
+
+        except SSHUtilError as e:
+            logger.error(f"SSH Util Test FAILED: {e}", exc_info=True)
+        except FileNotFoundError as e:
+            logger.error(f"SSH Util Test FAILED (FileNotFound): {e}", exc_info=True)
+        except AssertionError as e:
+            logger.error(f"SSH Util Test FAILED (AssertionError): {e}", exc_info=True)
+        except Exception as e:
+            logger.error(f"An unexpected error occurred during SSH Util tests: {e}", exc_info=True)
diff --git a/tests/provisioner/test_state_manager.py b/tests/provisioner/test_state_manager.py
new file mode 100644
index 0000000..a99db9f
--- /dev/null
+++ b/tests/provisioner/test_state_manager.py
@@ -0,0 +1,46 @@
+import os
+from pathlib import Path
+
+from provisioner.state_manager import CLUSTER_STATUS, StateManager
+from provisioner.utils.logger import logger
+
+if __name__ == "__main__":
+    logger.info("StateManager direct execution test started.")
+    DB_FILE = "test_provisioner_state.sqlite3"
+    db_path_obj = Path(DB_FILE)
+    if db_path_obj.exists():
+        os.remove(DB_FILE)
+
+    sm = StateManager(DB_FILE)
+    sm.add_user("user1", "ssh-rsa AAA...")
+
+    sample_login_info = [
+        ["control", "sregym", "c220g5-111111.wisc.cloudlab.us", 22],
+        ["compute1", "sregym", "c220g5-222222.wisc.cloudlab.us", 22],
+    ]
+
+    slice1 = sm.create_cluster_record(
+        slice_name="testslice001",
+        aggregate_name="utah",
+        hardware_type="m510",
+        os_type="UBUNTU20-64-STD",
+        node_count=1,
+        login_info=sample_login_info,
+        status=CLUSTER_STATUS.STATUS_UNCLAIMED_READY,
+    )
+    assert slice1 == "testslice001"
+
+    cluster1_data = sm.get_cluster_by_slice_name("testslice001")
+    logger.info(f"Cluster1 Data: {cluster1_data}")
+    assert cluster1_data and cluster1_data["status"] == CLUSTER_STATUS.STATUS_UNCLAIMED_READY
+    assert cluster1_data["login_info"] == sample_login_info
+
+    # Test update with login_info
+    new_login_info = [["control", "NewUser", "new.host.name", 22]]
+    sm.update_cluster_record("testslice001", login_info=new_login_info, status=CLUSTER_STATUS.STATUS_CLAIMED)
+    cluster1_updated = sm.get_cluster_by_slice_name("testslice001")
+    logger.info(f"Cluster1 Updated Data: {cluster1_updated}")
+    assert cluster1_updated["login_info"] == new_login_info
+    assert cluster1_updated["status"] == CLUSTER_STATUS.STATUS_CLAIMED
+
+    logger.info("StateManager direct execution test finished successfully.")
diff --git a/tests/sre-ql/cli.py b/tests/sre-ql/cli.py
new file mode 100755
index 0000000..d428bdf
--- /dev/null
+++ b/tests/sre-ql/cli.py
@@ -0,0 +1,834 @@
+import csv
+import json
+import subprocess
+import webbrowser
+from datetime import datetime
+from pathlib import Path
+
+import click
+from rich import box
+from rich.console import Console
+from rich.panel import Panel
+from rich.progress import Progress, SpinnerColumn, TextColumn
+from rich.prompt import Confirm, Prompt
+from rich.syntax import Syntax
+from rich.table import Table
+
+console = Console()
+
+DATABASE = "/Users/lilygniedz/Documents/SREArena/SREArena/python-database"
+QUERIES_DIR = Path(__file__).parent / "queries"
+OUTPUT_DIR = Path("./results")
+
+FIX_SUGGESTIONS = {
+    "NO self.app defined": {
+        "description": "Missing self.app assignment in Problem subclass",
+        "fix_template": "self.app = {app_class}()",
+        "explanation": "Problem subclasses must initialize self.app with an Application instance",
+        "example": "self.app = AstronomyShop()",
+    },
+    "NO self.namespace defined": {
+        "description": "Missing self.namespace assignment",
+        "fix_template": "self.namespace = self.app.namespace",
+        "explanation": "Set namespace from the application instance",
+        "example": "self.namespace = self.app.namespace",
+    },
+    "NO self.faulty_service defined": {
+        "description": "Missing self.faulty_service assignment",
+        "fix_template": 'self.faulty_service = "{service_name}"',
+        "explanation": "Specify which service has the fault",
+        "example": 'self.faulty_service = "payment-service"',
+    },
+    "NO self.diagnosis_oracle defined": {
+        "description": "Missing self.diagnosis_oracle assignment",
+        "fix_template": "self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)",
+        "explanation": "Attach a diagnosis oracle for evaluation",
+        "example": "self.diagnosis_oracle = LLMAsAJudgeOracle(problem=self, expected=self.root_cause)",
+    },
+    "NO self.mitigation_oracle defined": {
+        "description": "Missing self.mitigation_oracle assignment",
+        "fix_template": "self.mitigation_oracle = MitigationOracle(problem=self)",
+        "explanation": "Attach a mitigation oracle for evaluation",
+        "example": "self.mitigation_oracle = MitigationOracle(problem=self)",
+    },
+    "missing @mark_fault_injected decorator": {
+        "description": "Fault method missing required decorator",
+        "fix_template": "@mark_fault_injected",
+        "explanation": "Add @mark_fault_injected decorator above the method",
+        "example": "@mark_fault_injected\ndef inject_fault(self):\n    ...",
+    },
+    "has inject_fault() but missing recover_fault()": {
+        "description": "Missing recovery method",
+        "fix_template": "@mark_fault_injected\ndef recover_fault(self):\n    self.injector.recover_fault()",
+        "explanation": "Every inject_fault() needs a corresponding recover_fault()",
+        "example": '@mark_fault_injected\ndef recover_fault(self):\n    self.injector.recover_fault("faultName")',
+    },
+    "has deploy() but missing cleanup()": {
+        "description": "Missing cleanup method",
+        "fix_template": "def cleanup(self):\n    self.kubectl.delete_namespace(self.namespace)",
+        "explanation": "Every deploy() needs a corresponding cleanup() for resource management",
+        "example": "def cleanup(self):\n    if self.trace_api:\n        self.trace_api.stop_port_forward()\n    self.kubectl.delete_namespace(self.namespace)",
+    },
+}
+
+
+@click.group()
+def cli():
+    """SRE CodeQL Check Runner"""
+    pass
+
+
+@cli.command()
+@click.option("--query", "-q", help="Run specific query file")
+@click.option("--format", "-f", default="csv", type=click.Choice(["csv", "sarif", "json"]))
+@click.option("--output", "-o", help="Output file path")
+def run(query, format, output):
+    """Run CodeQL checks"""
+    OUTPUT_DIR.mkdir(exist_ok=True)
+
+    if query:
+        query_path = QUERIES_DIR / query
+        if not query_path.exists():
+            console.print(f"[red]❌ Query not found: {query}[/red]")
+            return
+    else:
+        query_path = QUERIES_DIR
+
+    output_file = output or OUTPUT_DIR / f"results.{format}"
+
+    config_table = Table(show_header=False, box=box.SIMPLE)
+    config_table.add_column("Setting", style="cyan")
+    config_table.add_column("Value", style="yellow")
+    config_table.add_row("Database", str(DATABASE))
+    config_table.add_row("Queries", str(query_path))
+    config_table.add_row("Output", str(output_file))
+    config_table.add_row("Format", format)
+
+    console.print(Panel(config_table, title="[bold blue]🔍 CodeQL Configuration[/bold blue]", border_style="blue"))
+
+    cmd = [
+        "codeql",
+        "database",
+        "analyze",
+        DATABASE,
+        str(query_path),
+        f"--format={format}",
+        f"--output={output_file}",
+        "--rerun",
+    ]
+
+    with Progress(SpinnerColumn(), TextColumn("[progress.description]{task.description}"), console=console) as progress:
+        task = progress.add_task("[cyan]Running analysis...", total=None)
+        result = subprocess.run(cmd, capture_output=True, text=True)
+
+    if result.returncode == 0:
+        console.print("\n[bold green]✅ Analysis complete![/bold green]\n")
+
+        if format == "csv" and Path(output_file).exists():
+            with open(output_file, "r", newline="", encoding="utf-8") as f:
+                reader = csv.reader(f)
+                rows = list(reader)
+                issue_count = len(rows)
+
+                if issue_count > 0:
+                    console.print(f"[bold red]⚠️  Found {issue_count} issues[/bold red]\n")
+
+                    table = Table(title="Top Issues", box=box.ROUNDED)
+                    table.add_column("Name", style="cyan", no_wrap=False, max_width=30)
+                    table.add_column("Message", style="yellow", no_wrap=False, max_width=40)
+                    table.add_column("Path", style="white", no_wrap=False, max_width=35)
+                    table.add_column("Line", style="green", justify="right", width=6)
+
+                    for row in rows[:10]:
+                        if len(row) >= 6:
+                            name = row[0]
+                            message = row[3]
+                            path = row[4]
+                            line = row[5]
+                            table.add_row(name, message, path, line)
+
+                    console.print(table)
+
+                    if issue_count > 10:
+                        console.print(f"\n[dim]... and {issue_count - 10} more issues[/dim]")
+                else:
+                    console.print(
+                        Panel("[bold green]✨ No issues found! Your code is clean.[/bold green]", border_style="green")
+                    )
+
+        console.print(f"\n[dim]Full results saved to: {output_file}[/dim]")
+    else:
+        console.print(
+            Panel(f"[red]{result.stderr}[/red]", title="[bold red]❌ Analysis Failed[/bold red]", border_style="red")
+        )
+
+
+@cli.command()
+def interactive():
+    """Interactive query selector"""
+
+    console.print(
+        Panel(
+            "[bold]Select queries by number (comma-separated, e.g., 1,3,5 or 'all')[/bold]",
+            title="[bold blue]🎮 Interactive Mode[/bold blue]",
+            border_style="blue",
+        )
+    )
+
+    queries = []
+    table = Table(box=box.ROUNDED)
+    table.add_column("#", style="cyan", justify="right", width=4)
+    table.add_column("Query File", style="yellow", width=50)
+    table.add_column("Description", style="white")
+
+    for i, query_file in enumerate(sorted(QUERIES_DIR.rglob("*.ql")), 1):
+        description = ""
+
+        with open(query_file, "r") as f:
+            for line in f:
+                if "@name" in line:
+                    description = line.split("@name")[1].strip()
+                    break
+
+        relative_path = str(query_file.relative_to(QUERIES_DIR))
+        queries.append(relative_path)
+        table.add_row(str(i), relative_path, description)
+
+    if not queries:
+        console.print("[yellow]No queries found in queries directory[/yellow]")
+        return
+
+    console.print(table)
+    console.print()
+
+    selection = Prompt.ask("[cyan]Enter query numbers to run (or 'all')[/cyan]", default="all")
+
+    if selection.lower() == "all":
+        selected_indices = list(range(len(queries)))
+    else:
+        try:
+            selected_indices = [int(x.strip()) - 1 for x in selection.split(",")]
+            selected_indices = [i for i in selected_indices if 0 <= i < len(queries)]
+        except ValueError:
+            console.print("[red]Invalid selection. Please enter numbers separated by commas.[/red]")
+            return
+
+    if not selected_indices:
+        console.print("[yellow]No valid queries selected[/yellow]")
+        return
+
+    output_format = Prompt.ask("[cyan]Select output format[/cyan]", choices=["csv", "sarif", "json"], default="csv")
+
+    selected_queries = [queries[i] for i in selected_indices]
+    console.print(f"\n[cyan]Running {len(selected_queries)} selected queries...[/cyan]\n")
+
+    for i, query in enumerate(selected_queries, 1):
+        console.print(f"[bold cyan]━━━ ({i}/{len(selected_queries)}) {query} ━━━[/bold cyan]")
+        ctx = click.Context(run)
+        ctx.invoke(run, query=query, format=output_format, output=None)
+        console.print()
+
+
+@cli.command()
+@click.option("--format", "-f", type=click.Choice(["markdown", "json", "slack", "github", "html"]), default="markdown")
+@click.option("--output", "-o", help="Output file path")
+def export(format, output):
+    """Export results in different formats"""
+
+    OUTPUT_DIR.mkdir(exist_ok=True)
+    csv_files = list(OUTPUT_DIR.glob("*.csv"))
+
+    if not csv_files:
+        console.print("[yellow]No results found. Run checks first with: ./cli.py run[/yellow]")
+        return
+
+    # CodeQL CSV format (NO HEADERS): Name, Description, Severity, Message, Path, StartLine, StartColumn, EndLine, EndColumn
+    all_issues = []
+    for csv_file in csv_files:
+        with open(csv_file, "r", newline="", encoding="utf-8") as f:
+            reader = csv.reader(f)
+            for row in reader:
+                if len(row) >= 5:
+                    issue = {
+                        "Name": row[0],
+                        "Description": row[1],
+                        "Severity": row[2],
+                        "Message": row[3],
+                        "Path": row[4],
+                        "Line": row[5] if len(row) > 5 else "",
+                        "source_file": csv_file.name,
+                    }
+                    all_issues.append(issue)
+
+    if format == "markdown":
+        output_file = output or OUTPUT_DIR / "report.md"
+        _export_markdown(all_issues, output_file)
+
+    elif format == "json":
+        output_file = output or OUTPUT_DIR / "report.json"
+        _export_json(all_issues, output_file)
+
+    elif format == "slack":
+        output_file = output or OUTPUT_DIR / "slack.json"
+        _export_slack(all_issues, output_file)
+
+    elif format == "github":
+        output_file = output or OUTPUT_DIR / "github-issues.md"
+        _export_github(all_issues, output_file)
+
+    elif format == "html":
+        output_file = output or OUTPUT_DIR / "report.html"
+        _export_html(all_issues, output_file)
+
+    console.print(f"\n[green]✅ Exported to {output_file}[/green]")
+
+
+def _export_markdown(issues, output_file):
+    """Export to Markdown format"""
+    md = f"# 🔍 CodeQL Analysis Report\n\n"
+    md += f"**Generated:** {datetime.now().strftime('%Y-%m-%d %H:%M:%S')}\n\n"
+    md += f"**Total Issues:** {len(issues)}\n\n"
+
+    md += "## Summary\n\n"
+
+    from collections import Counter
+
+    if issues:
+        messages = [i.get("Message", "Unknown") for i in issues]
+        common = Counter(messages).most_common(5)
+
+        md += "### Most Common Issues\n\n"
+        for msg, count in common:
+            md += f"- **{msg}**: {count} occurrences\n"
+
+        md += "\n## Detailed Issues\n\n"
+        for i, issue in enumerate(issues, 1):
+            md += f"### Issue #{i}\n\n"
+            for key, value in issue.items():
+                md += f"- **{key}**: {value}\n"
+            md += "\n"
+
+    with open(output_file, "w") as f:
+        f.write(md)
+
+
+def _export_json(issues, output_file):
+    """Export to JSON format"""
+    report = {"generated": datetime.now().isoformat(), "total_issues": len(issues), "issues": issues}
+
+    with open(output_file, "w") as f:
+        json.dump(report, f, indent=2)
+
+
+def _export_slack(issues, output_file):
+    """Export to Slack message format"""
+
+    severity_emoji = {"error": "🔴", "warning": "⚠️", "note": "ℹ️"}
+
+    message = {
+        "text": f"🔍 CodeQL Analysis Results",
+        "blocks": [
+            {"type": "header", "text": {"type": "plain_text", "text": "🔍 CodeQL Analysis Results"}},
+            {
+                "type": "section",
+                "text": {
+                    "type": "mrkdwn",
+                    "text": f"*Total Issues:* {len(issues)}\n*Generated:* {datetime.now().strftime('%Y-%m-%d %H:%M')}",
+                },
+            },
+            {"type": "divider"},
+        ],
+    }
+
+    for issue in issues[:10]:
+        message["blocks"].append(
+            {
+                "type": "section",
+                "text": {
+                    "type": "mrkdwn",
+                    "text": f"*{issue.get('Message', 'Unknown')}*\n`{issue.get('Name', 'Unknown location')}`",
+                },
+            }
+        )
+
+    if len(issues) > 10:
+        message["blocks"].append(
+            {"type": "section", "text": {"type": "mrkdwn", "text": f"_... and {len(issues) - 10} more issues_"}}
+        )
+
+    with open(output_file, "w") as f:
+        json.dump(message, f, indent=2)
+
+    console.print("\n[cyan]Slack message JSON created. Send to Slack with:[/cyan]")
+    console.print(
+        f"[dim]curl -X POST -H 'Content-type: application/json' --data @{output_file} YOUR_SLACK_WEBHOOK_URL[/dim]"
+    )
+
+
+def _export_github(issues, output_file):
+    """Export to GitHub issues format"""
+    md = "# CodeQL Issues\n\n"
+    md += f"Found {len(issues)} issues that need attention.\n\n"
+
+    for i, issue in enumerate(issues, 1):
+        md += f"## Issue #{i}: {issue.get('Message', 'Unknown')}\n\n"
+        md += f"**Location:** `{issue.get('Name', 'Unknown')}`\n\n"
+
+        if "Description" in issue and issue["Description"]:
+            md += f"**Description:** {issue['Description']}\n\n"
+
+        md += "**Labels:** `codeql`, `bug`, `automated`\n\n"
+        md += "---\n\n"
+
+    with open(output_file, "w") as f:
+        f.write(md)
+
+    console.print("\n[cyan]GitHub issues template created. Create issues with:[/cyan]")
+    console.print('[dim]gh issue create --title "CodeQL Issue" --body-file ' + str(output_file) + "[/dim]")
+
+
+def _export_html(issues, output_file):
+    """Export to HTML format"""
+
+    html = f"""
+<!DOCTYPE html>
+<html>
+<head>
+    <meta charset="UTF-8">
+    <title>CodeQL Analysis Report</title>
+    <style>
+        * {{ margin: 0; padding: 0; box-sizing: border-box; }}
+        body {{
+            font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, 'Helvetica Neue', Arial, sans-serif;
+            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+            padding: 20px;
+            min-height: 100vh;
+        }}
+        .container {{
+            max-width: 1200px;
+            margin: 0 auto;
+            background: white;
+            border-radius: 20px;
+            box-shadow: 0 20px 60px rgba(0,0,0,0.3);
+            overflow: hidden;
+        }}
+        .header {{
+            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+            color: white;
+            padding: 40px;
+            text-align: center;
+        }}
+        .header h1 {{
+            font-size: 2.5em;
+            margin-bottom: 10px;
+        }}
+        .stats {{
+            display: flex;
+            justify-content: space-around;
+            padding: 30px;
+            background: #f8f9fa;
+            border-bottom: 2px solid #e9ecef;
+        }}
+        .stat {{
+            text-align: center;
+        }}
+        .stat-number {{
+            font-size: 3em;
+            font-weight: bold;
+            color: #667eea;
+        }}
+        .stat-label {{
+            color: #6c757d;
+            font-size: 0.9em;
+            text-transform: uppercase;
+            letter-spacing: 1px;
+        }}
+        .issues {{
+            padding: 40px;
+        }}
+        .issue {{
+            background: #fff;
+            border: 2px solid #e9ecef;
+            border-radius: 12px;
+            padding: 25px;
+            margin-bottom: 20px;
+            transition: all 0.3s ease;
+        }}
+        .issue:hover {{
+            transform: translateY(-5px);
+            box-shadow: 0 10px 30px rgba(0,0,0,0.1);
+            border-color: #667eea;
+        }}
+        .issue-header {{
+            display: flex;
+            align-items: center;
+            margin-bottom: 15px;
+        }}
+        .issue-number {{
+            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+            color: white;
+            width: 40px;
+            height: 40px;
+            border-radius: 50%;
+            display: flex;
+            align-items: center;
+            justify-content: center;
+            font-weight: bold;
+            margin-right: 15px;
+        }}
+        .issue-title {{
+            font-size: 1.2em;
+            font-weight: 600;
+            color: #2d3748;
+            flex: 1;
+        }}
+        .issue-severity {{
+            padding: 5px 15px;
+            border-radius: 20px;
+            font-size: 0.85em;
+            font-weight: 600;
+            text-transform: uppercase;
+        }}
+        .severity-error {{
+            background: #fee;
+            color: #c53030;
+        }}
+        .severity-warning {{
+            background: #fef3cd;
+            color: #d97706;
+        }}
+        .issue-location {{
+            color: #667eea;
+            margin-top: 10px;
+            font-size: 0.9em;
+            word-wrap: break-word;
+        }}
+        .issue-file {{
+            color: #6c757d;
+            font-family: 'Monaco', monospace;
+            font-size: 0.85em;
+            margin-top: 5px;
+        }}
+        .issue-description {{
+            color: #718096;
+            font-size: 0.9em;
+            margin-top: 10px;
+            font-style: italic;
+        }}
+        .footer {{
+            text-align: center;
+            padding: 30px;
+            background: #f8f9fa;
+            color: #6c757d;
+            font-size: 0.9em;
+        }}
+        .no-issues {{
+            text-align: center;
+            padding: 60px;
+            color: #6c757d;
+        }}
+        .no-issues-icon {{
+            font-size: 4em;
+            margin-bottom: 20px;
+        }}
+    </style>
+</head>
+<body>
+    <div class="container">
+        <div class="header">
+            <h1>🔍 CodeQL Analysis Report</h1>
+            <p>Generated on {datetime.now().strftime('%B %d, %Y at %H:%M:%S')}</p>
+        </div>
+        
+        <div class="stats">
+            <div class="stat">
+                <div class="stat-number">{len(issues)}</div>
+                <div class="stat-label">Total Issues</div>
+            </div>
+            <div class="stat">
+                <div class="stat-number">{len([i for i in issues if i.get('Severity', '').lower() == 'error'])}</div>
+                <div class="stat-label">Errors</div>
+            </div>
+            <div class="stat">
+                <div class="stat-number">{len([i for i in issues if i.get('Severity', '').lower() == 'warning'])}</div>
+                <div class="stat-label">Warnings</div>
+            </div>
+        </div>
+        
+        <div class="issues">
+"""
+
+    if not issues:
+        html += """
+            <div class="no-issues">
+                <div class="no-issues-icon">✨</div>
+                <h2>No Issues Found!</h2>
+                <p>Your code is clean and follows all CodeQL rules.</p>
+            </div>
+"""
+    else:
+        for i, issue in enumerate(issues, 1):
+            name = issue.get("Name", "Unknown")
+            description = issue.get("Description", "")
+            message = issue.get("Message", "No message")
+            path = issue.get("Path", "Unknown location")
+            line = issue.get("Line", "")
+            severity = issue.get("Severity", "warning")
+
+            severity_class = "error" if severity.lower() == "error" else "warning"
+
+            html += f"""
+            <div class="issue">
+                <div class="issue-header">
+                    <div class="issue-number">{i}</div>
+                    <div class="issue-title">{message}</div>
+                    <span class="issue-severity severity-{severity_class}">{severity.upper()}</span>
+                </div>
+                <div class="issue-description">{description}</div>
+                <div class="issue-location">📋 {name}</div>
+                <div class="issue-file">📍 {path}{':' + line if line else ''}</div>
+            </div>
+"""
+
+    html += f"""
+        </div>
+        
+        <div class="footer">
+            <p>Generated by SRE CodeQL Check Runner</p>
+            <p>For more information, run: ./cli.py --help</p>
+        </div>
+    </div>
+</body>
+</html>
+"""
+
+    with open(output_file, "w") as f:
+        f.write(html)
+
+
+@cli.command()
+@click.option("--auto-open/--no-auto-open", default=True, help="Automatically open report in browser")
+def report(auto_open):
+    """📊 Generate HTML report"""
+
+    OUTPUT_DIR.mkdir(exist_ok=True)
+    csv_files = list(OUTPUT_DIR.glob("*.csv"))
+
+    if not csv_files:
+        console.print("[yellow]No results found. Run checks first with: ./cli.py run[/yellow]")
+        return
+
+    all_issues = []
+    for csv_file in csv_files:
+        with open(csv_file, "r", newline="", encoding="utf-8") as f:
+            reader = csv.reader(f)
+            for row in reader:
+                if len(row) >= 5:
+                    issue = {
+                        "Name": row[0],
+                        "Description": row[1],
+                        "Severity": row[2],
+                        "Message": row[3],
+                        "Path": row[4],
+                        "Line": row[5] if len(row) > 5 else "",
+                        "source_file": csv_file.name,
+                    }
+                    all_issues.append(issue)
+
+    report_file = OUTPUT_DIR / "report.html"
+    _export_html(all_issues, report_file)
+
+    console.print(f"\n[green]✅ Report generated: {report_file}[/green]")
+
+    if auto_open:
+        console.print(f"[cyan]Opening report in browser...[/cyan]")
+        webbrowser.open(f"file://{report_file.absolute()}")
+
+
+@cli.command()
+def fixes():
+    """Show available fix suggestions"""
+
+    OUTPUT_DIR.mkdir(exist_ok=True)
+
+    csv_files = list(OUTPUT_DIR.glob("*.csv"))
+
+    if not csv_files:
+        console.print("[yellow]No results found. Run checks first with: ./cli.py run[/yellow]")
+        return
+
+    console.print(
+        Panel(
+            "[bold]Available fixes for common issues[/bold]",
+            title="[bold blue]🔧 Fix Suggestions[/bold blue]",
+            border_style="blue",
+        )
+    )
+
+    issues_with_fixes = []
+
+    for csv_file in csv_files:
+        with open(csv_file, "r", newline="", encoding="utf-8") as f:
+            reader = csv.reader(f)
+            for row in reader:
+                if len(row) >= 5:
+                    issue = {
+                        "Name": row[0],
+                        "Description": row[1],
+                        "Severity": row[2],
+                        "Message": row[3],
+                        "Path": row[4],
+                        "Line": row[5] if len(row) > 5 else "",
+                    }
+
+                    message = issue.get("Message", "")
+                    for pattern, fix_info in FIX_SUGGESTIONS.items():
+                        if pattern.lower() in message.lower():
+                            issues_with_fixes.append({"issue": issue, "fix": fix_info})
+                            break
+
+    if not issues_with_fixes:
+        console.print("\n[yellow]No fixable issues found or no fix suggestions available.[/yellow]")
+        return
+
+    console.print(f"\n[green]Found {len(issues_with_fixes)} issues with fix suggestions![/green]\n")
+
+    for i, item in enumerate(issues_with_fixes, 1):
+        issue = item["issue"]
+        fix = item["fix"]
+
+        console.print(f"[bold cyan]Issue #{i}:[/bold cyan] {issue.get('Message', 'Unknown')}")
+        console.print(f"[dim]Location: {issue.get('Name', 'Unknown')}[/dim]\n")
+
+        console.print(
+            Panel(
+                f"[yellow]{fix['explanation']}[/yellow]\n\n"
+                f"[bold]Suggested fix:[/bold]\n"
+                f"[green]{fix['fix_template']}[/green]\n\n"
+                f"[bold]Example:[/bold]\n"
+                f"[cyan]{fix['example']}[/cyan]",
+                title=f"[bold]🔧 Fix #{i}[/bold]",
+                border_style="green",
+            )
+        )
+        console.print()
+
+
+@cli.command()
+@click.argument("category", type=click.Choice(["problem", "application", "lifecycle", "fault"]))
+def check(category):
+    """Run checks by category"""
+    query_map = {
+        "problem": [
+            "null.ql",
+            "namespace-null.ql",
+            "faulty-service-null.ql",
+            "diagnosis-oracle-null.ql",
+            "mitigation-oracle-null.ql",
+        ],
+        "application": ["application-required-attrs.ql"],
+        "lifecycle": ["lifecycle-methods.ql"],
+        "fault": ["fault-injection-recovery.ql"],
+    }
+
+    queries = query_map.get(category, [])
+
+    console.print(
+        Panel(
+            f"[bold]Running {len(queries)} {category} checks[/bold]",
+            title=f"[bold blue]🔍 {category.capitalize()} Analysis[/bold blue]",
+            border_style="blue",
+        )
+    )
+
+    all_issues = []
+
+    for i, query in enumerate(queries, 1):
+        console.print(f"\n[cyan]({i}/{len(queries)}) Running {query}...[/cyan]")
+
+        query_path = QUERIES_DIR / query
+        if not query_path.exists():
+            console.print(f"[yellow]  ⚠️  Query not found, skipping[/yellow]")
+            continue
+
+        output_file = OUTPUT_DIR / f"{category}-{query}.csv"
+
+        cmd = [
+            "codeql",
+            "database",
+            "analyze",
+            DATABASE,
+            str(query_path),
+            "--format=csv",
+            f"--output={output_file}",
+            "--rerun",
+        ]
+
+        result = subprocess.run(cmd, capture_output=True, text=True)
+
+        if result.returncode == 0 and output_file.exists():
+            with open(output_file, "r", newline="", encoding="utf-8") as f:
+                reader = csv.reader(f)
+                rows = list(reader)
+                issue_count = len(rows)
+
+                if issue_count > 0:
+                    console.print(f"  [red]❌ {issue_count} issues found[/red]")
+                    all_issues.extend(rows)
+                else:
+                    console.print(f"  [green]✅ No issues[/green]")
+
+    console.print("\n" + "=" * 60 + "\n")
+    if all_issues:
+        console.print(Panel(f"[bold red]Total Issues: {len(all_issues)}[/bold red]", border_style="red"))
+    else:
+        console.print(Panel("[bold green]✨ All checks passed![/bold green]", border_style="green"))
+
+
+@cli.command()
+def summary():
+    """Show summary of all results"""
+    csv_files = list(OUTPUT_DIR.glob("*.csv"))
+
+    if not csv_files:
+        console.print(
+            Panel(
+                "[yellow]No results found. Run checks first with:[/yellow]\n\n" "[cyan]./cli.py run[/cyan]",
+                title="[bold]📊 Results Summary[/bold]",
+                border_style="yellow",
+            )
+        )
+        return
+
+    console.print("\n[bold blue]📊 Results Summary[/bold blue]\n")
+
+    table = Table(box=box.ROUNDED)
+    table.add_column("Result File", style="cyan")
+    table.add_column("Issues", justify="right", style="yellow")
+    table.add_column("Status", justify="center")
+
+    total_issues = 0
+
+    for csv_file in sorted(csv_files):
+        with open(csv_file, "r", newline="", encoding="utf-8") as f:
+            reader = csv.reader(f)
+            rows = list(reader)
+            issue_count = len(rows)
+            total_issues += issue_count
+
+            status = "✅" if issue_count == 0 else "❌"
+            style = "green" if issue_count == 0 else "red"
+
+            table.add_row(csv_file.name, f"[{style}]{issue_count}[/{style}]", status)
+
+    console.print(table)
+    console.print()
+
+    if total_issues == 0:
+        console.print(Panel("[bold green]✨ Perfect! No issues found.[/bold green]", border_style="green"))
+    else:
+        console.print(Panel(f"[bold red]Total Issues: {total_issues}[/bold red]", border_style="red"))
+
+
+if __name__ == "__main__":
+    cli()
diff --git a/tests/sre-ql/codeql-pack.lock.yml b/tests/sre-ql/codeql-pack.lock.yml
new file mode 100644
index 0000000..5300427
--- /dev/null
+++ b/tests/sre-ql/codeql-pack.lock.yml
@@ -0,0 +1,4 @@
+---
+lockVersion: 1.0.0
+dependencies: {}
+compiled: false
diff --git a/tests/sre-ql/qlpack.yml b/tests/sre-ql/qlpack.yml
new file mode 100644
index 0000000..d588abe
--- /dev/null
+++ b/tests/sre-ql/qlpack.yml
@@ -0,0 +1,7 @@
+---
+library: false
+warnOnImplicitThis: false
+name: sre-ql
+version: 0.0.1
+dependencies:
+  codeql/python-all: "*"
diff --git a/tests/sre-ql/queries/absolute_paths.ql b/tests/sre-ql/queries/absolute_paths.ql
new file mode 100644
index 0000000..e5df551
--- /dev/null
+++ b/tests/sre-ql/queries/absolute_paths.ql
@@ -0,0 +1,17 @@
+/**
+ * @name Hardcoded absolute path
+ * @description Use Path(__file__).parent or relative paths instead of absolute paths
+ * @kind problem
+ * @problem.severity warning
+ * @id python/hardcoded-absolute-path
+ * @precision high
+ */
+import python
+
+from StringLiteral path
+where
+  path.getText().regexpMatch(".*/Users/.*") or
+  path.getText().regexpMatch(".*/home/.*") or
+  path.getText().regexpMatch(".*C:\\\\.*") or
+  path.getText().regexpMatch(".*/root/.*")
+select path, "Hardcoded absolute path detected - use relative paths instead"
\ No newline at end of file
diff --git a/tests/sre-ql/queries/application_attributes/application_checks.ql b/tests/sre-ql/queries/application_attributes/application_checks.ql
new file mode 100644
index 0000000..90c7b1b
--- /dev/null
+++ b/tests/sre-ql/queries/application_attributes/application_checks.ql
@@ -0,0 +1,52 @@
+/**
+ * @id sre-ql.application-load-json-check
+ * @name Application subclass load_app_json call check
+ * @description Detects Application subclasses that don't call self.load_app_json() or super().load_app_json().
+ * @kind problem
+ * @problem.severity error
+ */
+import python
+
+class ApplicationSubclass extends Class {
+  ApplicationSubclass() {
+    // Direct inheritance from Application
+    this.getABase().(Name).getId() = "Application"
+  }
+}
+
+predicate callsLoadAppJson(ApplicationSubclass c) {
+  exists(Call call, Function init |
+    init.getName() = "__init__" and
+    init.getScope() = c and
+    call.getScope() = init and
+    call.getFunc().(Attribute).getName() = "load_app_json" and
+    call.getFunc().(Attribute).getObject().(Name).getId() = "self"
+  )
+}
+
+predicate overridesLoadAppJson(ApplicationSubclass c) {
+  exists(Function f |
+    f.getName() = "load_app_json" and
+    f.getScope() = c
+  )
+}
+
+predicate callsSuperLoadAppJson(ApplicationSubclass c) {
+  exists(Call call, Function f |
+    f.getName() = "load_app_json" and
+    f.getScope() = c and
+    call.getScope() = f and
+    call.getFunc().(Attribute).getName() = "load_app_json" and
+    call.getFunc().(Attribute).getObject().(Call).getFunc().(Name).getId() = "super"
+  )
+}
+
+from ApplicationSubclass c, string msg
+where
+  (not callsLoadAppJson(c) and
+   msg = "Application subclass __init__ does not call self.load_app_json()")
+  or
+  (overridesLoadAppJson(c) and
+   not callsSuperLoadAppJson(c) and
+   msg = "Application subclass overrides load_app_json() but doesn't call super().load_app_json()")
+select c, msg
\ No newline at end of file
diff --git a/tests/sre-ql/queries/fault_recover_checks.ql b/tests/sre-ql/queries/fault_recover_checks.ql
new file mode 100644
index 0000000..8e2f37a
--- /dev/null
+++ b/tests/sre-ql/queries/fault_recover_checks.ql
@@ -0,0 +1,113 @@
+/**
+ * @id sre-ql.fault-injection-recovery-check
+ * @name Fault injection and recovery consistency check
+ * @description Detects Problem subclasses with missing or inconsistent inject_fault/recover_fault methods.
+ * @kind problem
+ * @problem.severity error
+ */
+import python
+
+class ProblemSubclass extends Class {
+  ProblemSubclass() {
+    // Direct inheritance from Problem
+    this.getABase().(Name).getId() = "Problem"
+  }
+}
+
+class FaultMethod extends Function {
+  FaultMethod() {
+    this.getName() in ["inject_fault", "recover_fault"]
+  }
+
+  string getMethodName() {
+    result = this.getName()
+  }
+
+  predicate hasMarkFaultInjectedDecorator() {
+    exists(Expr decorator |
+      decorator = this.getADecorator() and
+      (
+        // Direct decorator: @mark_fault_injected
+        decorator.(Name).getId() = "mark_fault_injected"
+        or
+        // Call decorator: @mark_fault_injected()
+        decorator.(Call).getFunc().(Name).getId() = "mark_fault_injected"
+        or
+        // Attribute access: @module.mark_fault_injected
+        decorator.(Attribute).getName() = "mark_fault_injected"
+        or
+        // Call on attribute: @module.mark_fault_injected()
+        decorator.(Call).getFunc().(Attribute).getName() = "mark_fault_injected"
+      )
+    )
+  }
+
+  string getFaultIdentifier() {
+    exists(Call call, StringLiteral arg |
+      call.getScope() = this and
+      call.getFunc().(Attribute).getName() in ["inject_fault", "recover_fault"] and
+      arg = call.getArg(0) and
+      result = arg.getText()
+    )
+  }
+}
+
+predicate hasMethod(ProblemSubclass c, string methodName) {
+  exists(FaultMethod m |
+    m.getScope() = c and
+    m.getMethodName() = methodName
+  )
+}
+
+predicate hasDecoratorOnMethod(ProblemSubclass c, string methodName) {
+  exists(FaultMethod m |
+    m.getScope() = c and
+    m.getMethodName() = methodName and
+    m.hasMarkFaultInjectedDecorator()
+  )
+}
+
+string getFaultIdentifiers(ProblemSubclass c, string methodName) {
+  exists(FaultMethod m |
+    m.getScope() = c and
+    m.getMethodName() = methodName and
+    result = m.getFaultIdentifier()
+  )
+}
+
+predicate hasMismatchedFaultIdentifiers(ProblemSubclass c) {
+  exists(string injectId, string recoverId |
+    injectId = getFaultIdentifiers(c, "inject_fault") and
+    recoverId = getFaultIdentifiers(c, "recover_fault") and
+    injectId != recoverId
+  )
+}
+
+from ProblemSubclass c, string msg
+where
+  // Check 1: Has inject_fault but no recover_fault
+  (hasMethod(c, "inject_fault") and
+   not hasMethod(c, "recover_fault") and
+   msg = "Problem subclass has inject_fault() but missing recover_fault()")
+  or
+  // Check 2: Has recover_fault but no inject_fault
+  (hasMethod(c, "recover_fault") and
+   not hasMethod(c, "inject_fault") and
+   msg = "Problem subclass has recover_fault() but missing inject_fault()")
+  or
+  // Check 3: inject_fault exists but missing @mark_fault_injected decorator
+  (hasMethod(c, "inject_fault") and
+   not hasDecoratorOnMethod(c, "inject_fault") and
+   msg = "inject_fault() method missing @mark_fault_injected decorator")
+  or
+  // Check 4: recover_fault exists but missing @mark_fault_injected decorator
+  (hasMethod(c, "recover_fault") and
+   not hasDecoratorOnMethod(c, "recover_fault") and
+   msg = "recover_fault() method missing @mark_fault_injected decorator")
+  or
+  // Check 5: Mismatched fault identifiers between inject and recover
+  (hasMismatchedFaultIdentifiers(c) and
+   msg = "inject_fault() and recover_fault() use different fault identifiers: '" + 
+         getFaultIdentifiers(c, "inject_fault") + "' vs '" + 
+         getFaultIdentifiers(c, "recover_fault") + "'")
+select c, msg
\ No newline at end of file
diff --git a/tests/sre-ql/queries/problem_attributes/app.ql b/tests/sre-ql/queries/problem_attributes/app.ql
new file mode 100644
index 0000000..0e51ecb
--- /dev/null
+++ b/tests/sre-ql/queries/problem_attributes/app.ql
@@ -0,0 +1,48 @@
+/**
+ * @id sre-ql.null-check
+ * @name Problem subclass app assignment check
+ * @description Detects subclasses of Problem missing self.app assignments or assigning None.
+ * @kind problem
+ * @problem.severity warning
+ */
+import python
+
+class ProblemSubclass extends Class {
+  ProblemSubclass() {
+    // Direct inheritance from Problem
+    this.getABase().(Name).getId() = "Problem"
+  }
+}
+
+class AppAssignment extends AssignStmt {
+  AppAssignment() {
+    exists(Attribute attr |
+      attr = this.getATarget() and 
+      attr.getObject().(Name).getId() = "self" and
+      attr.getName() = "app"
+    )
+  }
+}
+
+predicate assignsApp(ProblemSubclass c, AppAssignment a) {
+  a.getScope().(Function).getScope() = c
+}
+
+predicate assignsNone(AppAssignment a) {
+  a.getValue() instanceof None
+}
+
+string getMessage(ProblemSubclass c) {
+  not exists(AppAssignment a | assignsApp(c, a)) and
+  result = "NO self.app defined"
+  or
+  exists(AppAssignment a |
+    assignsApp(c, a) and
+    assignsNone(a)
+  ) and
+  result = "self.app assigned to None"
+}
+
+from ProblemSubclass c, string msg
+where msg = getMessage(c)
+select c, msg
\ No newline at end of file
diff --git a/tests/sre-ql/queries/problem_attributes/diagnosis_oracle.ql b/tests/sre-ql/queries/problem_attributes/diagnosis_oracle.ql
new file mode 100644
index 0000000..2622df0
--- /dev/null
+++ b/tests/sre-ql/queries/problem_attributes/diagnosis_oracle.ql
@@ -0,0 +1,48 @@
+/**
+ * @id sre-ql.diagnosis-oracle-null-check
+ * @name Problem subclass diagnosis_oracle assignment check
+ * @description Detects subclasses of Problem missing self.diagnosis_oracle assignments or assigning None.
+ * @kind problem
+ * @problem.severity warning
+ */
+import python
+
+class ProblemSubclass extends Class {
+  ProblemSubclass() {
+    // Direct inheritance from Problem
+    this.getABase().(Name).getId() = "Problem"
+  }
+}
+
+class DiagnosisOracleAssignment extends AssignStmt {
+  DiagnosisOracleAssignment() {
+    exists(Attribute attr |
+      attr = this.getATarget() and 
+      attr.getObject().(Name).getId() = "self" and
+      attr.getName() = "diagnosis_oracle"
+    )
+  }
+}
+
+predicate assignsDiagnosisOracle(ProblemSubclass c, DiagnosisOracleAssignment a) {
+  a.getScope().(Function).getScope() = c
+}
+
+predicate assignsNone(DiagnosisOracleAssignment a) {
+  a.getValue() instanceof None
+}
+
+string getMessage(ProblemSubclass c) {
+  not exists(DiagnosisOracleAssignment a | assignsDiagnosisOracle(c, a)) and
+  result = "NO self.diagnosis_oracle defined"
+  or
+  exists(DiagnosisOracleAssignment a |
+    assignsDiagnosisOracle(c, a) and
+    assignsNone(a)
+  ) and
+  result = "self.diagnosis_oracle assigned to None"
+}
+
+from ProblemSubclass c, string msg
+where msg = getMessage(c)
+select c, msg
\ No newline at end of file
diff --git a/tests/sre-ql/queries/problem_attributes/faultyservice.ql b/tests/sre-ql/queries/problem_attributes/faultyservice.ql
new file mode 100644
index 0000000..3e8eea6
--- /dev/null
+++ b/tests/sre-ql/queries/problem_attributes/faultyservice.ql
@@ -0,0 +1,48 @@
+/**
+ * @id sre-ql.faulty-service-null-check
+ * @name Problem subclass faulty_service assignment check
+ * @description Detects subclasses of Problem missing self.faulty_service assignments or assigning None.
+ * @kind problem
+ * @problem.severity warning
+ */
+import python
+
+class ProblemSubclass extends Class {
+  ProblemSubclass() {
+    // Direct inheritance from Problem
+    this.getABase().(Name).getId() = "Problem"
+  }
+}
+
+class FaultyServiceAssignment extends AssignStmt {
+  FaultyServiceAssignment() {
+    exists(Attribute attr |
+      attr = this.getATarget() and 
+      attr.getObject().(Name).getId() = "self" and
+      attr.getName() = "faulty_service"
+    )
+  }
+}
+
+predicate assignsFaultyService(ProblemSubclass c, FaultyServiceAssignment a) {
+  a.getScope().(Function).getScope() = c
+}
+
+predicate assignsNone(FaultyServiceAssignment a) {
+  a.getValue() instanceof None
+}
+
+string getMessage(ProblemSubclass c) {
+  not exists(FaultyServiceAssignment a | assignsFaultyService(c, a)) and
+  result = "NO self.faulty_service defined"
+  or
+  exists(FaultyServiceAssignment a |
+    assignsFaultyService(c, a) and
+    assignsNone(a)
+  ) and
+  result = "self.faulty_service assigned to None"
+}
+
+from ProblemSubclass c, string msg
+where msg = getMessage(c)
+select c, msg
\ No newline at end of file
diff --git a/tests/sre-ql/queries/problem_attributes/mitigation_oracle.ql b/tests/sre-ql/queries/problem_attributes/mitigation_oracle.ql
new file mode 100644
index 0000000..673c98d
--- /dev/null
+++ b/tests/sre-ql/queries/problem_attributes/mitigation_oracle.ql
@@ -0,0 +1,48 @@
+/**
+ * @id sre-ql.mitigation-oracle-null-check
+ * @name Problem subclass mitigation_oracle assignment check
+ * @description Detects subclasses of Problem missing self.mitigation_oracle assignments or assigning None.
+ * @kind problem
+ * @problem.severity warning
+ */
+import python
+
+class ProblemSubclass extends Class {
+  ProblemSubclass() {
+    // Direct inheritance from Problem
+    this.getABase().(Name).getId() = "Problem"
+  }
+}
+
+class MitigationOracleAssignment extends AssignStmt {
+  MitigationOracleAssignment() {
+    exists(Attribute attr |
+      attr = this.getATarget() and 
+      attr.getObject().(Name).getId() = "self" and
+      attr.getName() = "mitigation_oracle"
+    )
+  }
+}
+
+predicate assignsMitigationOracle(ProblemSubclass c, MitigationOracleAssignment a) {
+  a.getScope().(Function).getScope() = c
+}
+
+predicate assignsNone(MitigationOracleAssignment a) {
+  a.getValue() instanceof None
+}
+
+string getMessage(ProblemSubclass c) {
+  not exists(MitigationOracleAssignment a | assignsMitigationOracle(c, a)) and
+  result = "NO self.mitigation_oracle defined"
+  or
+  exists(MitigationOracleAssignment a |
+    assignsMitigationOracle(c, a) and
+    assignsNone(a)
+  ) and
+  result = "self.mitigation_oracle assigned to None"
+}
+
+from ProblemSubclass c, string msg
+where msg = getMessage(c)
+select c, msg
\ No newline at end of file
diff --git a/tests/sre-ql/queries/problem_attributes/namespace.ql b/tests/sre-ql/queries/problem_attributes/namespace.ql
new file mode 100644
index 0000000..896c80b
--- /dev/null
+++ b/tests/sre-ql/queries/problem_attributes/namespace.ql
@@ -0,0 +1,48 @@
+/**
+ * @id sre-ql.namespace-null-check
+ * @name Problem subclass namespace assignment check
+ * @description Detects subclasses of Problem missing self.namespace assignments or assigning None.
+ * @kind problem
+ * @problem.severity warning
+ */
+import python
+
+class ProblemSubclass extends Class {
+  ProblemSubclass() {
+    // Direct inheritance from Problem
+    this.getABase().(Name).getId() = "Problem"
+  }
+}
+
+class NamespaceAssignment extends AssignStmt {
+  NamespaceAssignment() {
+    exists(Attribute attr |
+      attr = this.getATarget() and 
+      attr.getObject().(Name).getId() = "self" and
+      attr.getName() = "namespace"
+    )
+  }
+}
+
+predicate assignsNamespace(ProblemSubclass c, NamespaceAssignment a) {
+  a.getScope().(Function).getScope() = c
+}
+
+predicate assignsNone(NamespaceAssignment a) {
+  a.getValue() instanceof None
+}
+
+string getMessage(ProblemSubclass c) {
+  not exists(NamespaceAssignment a | assignsNamespace(c, a)) and
+  result = "NO self.namespace defined"
+  or
+  exists(NamespaceAssignment a |
+    assignsNamespace(c, a) and
+    assignsNone(a)
+  ) and
+  result = "self.namespace assigned to None"
+}
+
+from ProblemSubclass c, string msg
+where msg = getMessage(c)
+select c, msg
\ No newline at end of file
diff --git a/tests/sre-ql/queries/problem_lifecycle.ql b/tests/sre-ql/queries/problem_lifecycle.ql
new file mode 100644
index 0000000..931ccd3
--- /dev/null
+++ b/tests/sre-ql/queries/problem_lifecycle.ql
@@ -0,0 +1,121 @@
+/**
+ * @id sre-ql.lifecycle-methods-check
+ * @name Application lifecycle methods check
+ * @description Detects classes with incomplete lifecycle method implementations.
+ * @kind problem
+ * @problem.severity error
+ */
+import python
+
+class ApplicationSubclass extends Class {
+  ApplicationSubclass() {
+    // Direct inheritance from Application or Problem
+    this.getABase().(Name).getId() in ["Application", "Problem"]
+  }
+}
+
+predicate hasMethod(ApplicationSubclass c, string methodName) {
+  exists(Function f |
+    f.getScope() = c and
+    f.getName() = methodName
+  )
+}
+
+predicate callsMethodAnywhere(ApplicationSubclass c, string methodName) {
+  exists(Call call, Function f |
+    f.getScope() = c and
+    call.getScope() = f and
+    call.getFunc().(Attribute).getName() = methodName and
+    call.getFunc().(Attribute).getObject().(Name).getId() in ["self", "kubectl"]
+  )
+}
+
+predicate callsCreateNamespace(ApplicationSubclass c) {
+  exists(Call call, Function f |
+    f.getScope() = c and
+    call.getScope() = f and
+    (
+      call.getFunc().(Attribute).getName() = "create_namespace"
+      or
+      call.getFunc().(Attribute).getName() = "create_namespace_if_not_exist"
+    )
+  )
+}
+
+predicate callsDeleteNamespace(ApplicationSubclass c) {
+  exists(Call call, Function f |
+    f.getScope() = c and
+    call.getScope() = f and
+    call.getFunc().(Attribute).getName() = "delete_namespace"
+  )
+}
+
+predicate callsStartPortForward(ApplicationSubclass c) {
+  exists(Call call, Function f |
+    f.getScope() = c and
+    call.getScope() = f and
+    call.getFunc().(Attribute).getName() = "start_port_forward"
+  )
+}
+
+predicate callsStopPortForward(ApplicationSubclass c) {
+  exists(Call call, Function f |
+    f.getScope() = c and
+    call.getScope() = f and
+    call.getFunc().(Attribute).getName() = "stop_port_forward"
+  )
+}
+
+predicate hasWorkloadManager(ApplicationSubclass c) {
+  exists(Attribute attr |
+    attr.getObject().(Name).getId() = "self" and
+    attr.getName() in ["wrk", "workload_manager"] and
+    attr.getScope().getScope() = c
+  )
+}
+
+predicate callsStopWorkload(ApplicationSubclass c) {
+  exists(Call call, Function f |
+    f.getScope() = c and
+    call.getScope() = f and
+    (
+      (call.getFunc().(Attribute).getName() = "stop" and
+       call.getFunc().(Attribute).getObject().(Attribute).getName() in ["wrk", "workload_manager"])
+      or
+      call.getFunc().(Attribute).getName() = "stop_workload"
+    )
+  )
+}
+
+from ApplicationSubclass c, string msg
+where
+  // Check 1: Has deploy() but no cleanup()
+  (hasMethod(c, "deploy") and
+   not hasMethod(c, "cleanup") and
+   msg = "Class has deploy() method but missing cleanup() method")
+  or
+  // Check 2: Has deploy() but no delete()
+  (hasMethod(c, "deploy") and
+   not hasMethod(c, "delete") and
+   msg = "Class has deploy() method but missing delete() method")
+  or
+  // Check 3: Has start_workload() but no stop mechanism
+  (hasMethod(c, "start_workload") and
+   not callsStopWorkload(c) and
+   msg = "Class has start_workload() but no mechanism to stop workload (missing stop() or stop_workload())")
+  or
+  // Check 4: Calls create_namespace() but never delete_namespace()
+  (callsCreateNamespace(c) and
+   not callsDeleteNamespace(c) and
+   msg = "Class calls create_namespace() but never calls delete_namespace() in cleanup")
+  or
+  // Check 5: Calls start_port_forward() but never stop_port_forward()
+  (callsStartPortForward(c) and
+   not callsStopPortForward(c) and
+   msg = "Class calls start_port_forward() but never calls stop_port_forward() (resource leak)")
+  or
+  // Check 6: Has workload manager but doesn't stop it
+  (hasWorkloadManager(c) and
+   not callsStopWorkload(c) and
+   msg = "Class has workload manager (self.wrk) but never calls stop() in cleanup")
+select c, msg
\ No newline at end of file
diff --git a/uv.lock b/uv.lock
new file mode 100644
index 0000000..1d3567e
--- /dev/null
+++ b/uv.lock
@@ -0,0 +1,4686 @@
+version = 1
+revision = 3
+requires-python = ">=3.12"
+resolution-markers = [
+    "python_full_version >= '3.13' and sys_platform == 'darwin'",
+    "python_full_version >= '3.12.4' and python_full_version < '3.13' and sys_platform == 'darwin'",
+    "python_full_version < '3.12.4' and sys_platform == 'darwin'",
+    "python_full_version >= '3.13' and platform_machine == 'aarch64' and sys_platform == 'linux'",
+    "python_full_version >= '3.12.4' and python_full_version < '3.13' and platform_machine == 'aarch64' and sys_platform == 'linux'",
+    "python_full_version < '3.12.4' and platform_machine == 'aarch64' and sys_platform == 'linux'",
+    "python_full_version >= '3.13' and platform_machine != 'aarch64' and sys_platform == 'linux'",
+    "python_full_version >= '3.12.4' and python_full_version < '3.13' and platform_machine != 'aarch64' and sys_platform == 'linux'",
+    "python_full_version < '3.12.4' and platform_machine != 'aarch64' and sys_platform == 'linux'",
+    "python_full_version >= '3.13' and sys_platform != 'darwin' and sys_platform != 'linux'",
+    "python_full_version >= '3.12.4' and python_full_version < '3.13' and sys_platform != 'darwin' and sys_platform != 'linux'",
+    "python_full_version < '3.12.4' and sys_platform != 'darwin' and sys_platform != 'linux'",
+]
+
+[[package]]
+name = "aiohappyeyeballs"
+version = "2.6.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/26/30/f84a107a9c4331c14b2b586036f40965c128aa4fee4dda5d3d51cb14ad54/aiohappyeyeballs-2.6.1.tar.gz", hash = "sha256:c3f9d0113123803ccadfdf3f0faa505bc78e6a72d1cc4806cbd719826e943558", size = 22760, upload-time = "2025-03-12T01:42:48.764Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/0f/15/5bf3b99495fb160b63f95972b81750f18f7f4e02ad051373b669d17d44f2/aiohappyeyeballs-2.6.1-py3-none-any.whl", hash = "sha256:f349ba8f4b75cb25c99c5c2d84e997e485204d2902a9597802b0371f09331fb8", size = 15265, upload-time = "2025-03-12T01:42:47.083Z" },
+]
+
+[[package]]
+name = "aiohttp"
+version = "3.12.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "aiohappyeyeballs" },
+    { name = "aiosignal" },
+    { name = "attrs" },
+    { name = "frozenlist" },
+    { name = "multidict" },
+    { name = "propcache" },
+    { name = "yarl" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/d1/c8/f681bcfdbc8cc2d8d9310710020fa895be2862b5b291ff278dc1ef66e8dc/aiohttp-3.12.1.tar.gz", hash = "sha256:85b8256d911ae4462cdd39a2ad2fd95ec6d7cc97af8f159d29fa69ad0844f6bb", size = 7779561, upload-time = "2025-05-26T16:23:39.482Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/60/16/eee24f237c30281bf3720453d45be22c89bd9be75de6471789550403b156/aiohttp-3.12.1-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:8475e731b69063da96a92519bd78710c949c8ea26434507e957006e52c027d27", size = 692806, upload-time = "2025-05-26T16:21:49.429Z" },
+    { url = "https://files.pythonhosted.org/packages/b2/00/aec552257a3c920fa3c8950e220f88d878b70d00d7306eb3b6589461100f/aiohttp-3.12.1-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:974d533968a574f6ce27b53b3662b4c1d895237fd151c2a1fff22b94214f0995", size = 467418, upload-time = "2025-05-26T16:21:51.103Z" },
+    { url = "https://files.pythonhosted.org/packages/27/72/f5a31e4cff9f281e84b6683c6552669e6150c6d6fadac4c470b29f3cd86d/aiohttp-3.12.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:6482fabe5947c109adb6646d1ebd1bbe79cf634d80c11b19b7a56b7d1d628487", size = 460257, upload-time = "2025-05-26T16:21:52.741Z" },
+    { url = "https://files.pythonhosted.org/packages/71/95/2296b934f0ae0b1750310ee4f0189807f38fb26d6d2c98d5612936795e63/aiohttp-3.12.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:8b7f3ce2f86255b7245f6e2e15b1dc6f6473237bbdd5c0d2eee3c7ca66b556dc", size = 1707053, upload-time = "2025-05-26T16:21:54.453Z" },
+    { url = "https://files.pythonhosted.org/packages/d0/c1/e3d1ed65479ae1c6cc5f244cb334da5a97345a3638905084e9b592ca3047/aiohttp-3.12.1-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:222fb161b3890b613184ef8d61c088d4ff3036c3687fcefb3ce54a1b2b41cf25", size = 1689700, upload-time = "2025-05-26T16:21:56.341Z" },
+    { url = "https://files.pythonhosted.org/packages/92/49/1a9b4de1f39dcda4eb9427520e83bdc3fa112d38b45cecbb1feab7e6fef5/aiohttp-3.12.1-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:03fcc6a08b322f69cd3c4e2f0358a5323ba075bff3af3f02640feaef1c9ca9c5", size = 1744799, upload-time = "2025-05-26T16:21:58.146Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/42/15a7621a305439bfe207af8729d8662584d1a97e7a09cd0b337ae953b389/aiohttp-3.12.1-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:e583f988286f3d1b36b030c91008172561b88fa02c81bccda93442d6ff2f9c18", size = 1790952, upload-time = "2025-05-26T16:22:00.739Z" },
+    { url = "https://files.pythonhosted.org/packages/e4/2c/8617ae6c8ac2761bda8e5492158061c3d4c28dc2dfc2a5dd4e5ae2b55f2d/aiohttp-3.12.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0c18006fce18be8bc431f8178f24d3d8f0a1ea5c9b9d9cbdc9361158c81579da", size = 1710392, upload-time = "2025-05-26T16:22:03.564Z" },
+    { url = "https://files.pythonhosted.org/packages/1c/0a/bc40f9f9c2d24662d9390c6fa7835782bdae990818436adc7d60e06649d1/aiohttp-3.12.1-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:9f988e07a4d3a5c0ee73ba2a7a2dea8de71ea0e6ebcf19d87d5daefc8ff63566", size = 1626192, upload-time = "2025-05-26T16:22:05.49Z" },
+    { url = "https://files.pythonhosted.org/packages/53/dc/37fd5e64dd07b00bda99b14a27394f68e04703a0c8bdc5a1877c31ffad97/aiohttp-3.12.1-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:324bae9dcad6245f8aa2dbbea2daeae92cff757dab12ec438761462149cf74c0", size = 1687254, upload-time = "2025-05-26T16:22:07.304Z" },
+    { url = "https://files.pythonhosted.org/packages/35/45/ddaa7c96aecdd5298e70e3eb38cd4cfdf215b338466085de7d28d88b5944/aiohttp-3.12.1-cp312-cp312-musllinux_1_2_armv7l.whl", hash = "sha256:db35689970e62cc2e39f8e39fc45d6943ad623a14f601ba5f0bdfee87a8ba638", size = 1708707, upload-time = "2025-05-26T16:22:09.515Z" },
+    { url = "https://files.pythonhosted.org/packages/a8/99/d1101a4fd0abe8b75c597164a5445cceb870ee6f13d50e680fa7ad257593/aiohttp-3.12.1-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:5fa5e3029a251b88e69033fedeb3fb6df05817df60d2725fdf6b4665f9076efe", size = 1649360, upload-time = "2025-05-26T16:22:11.711Z" },
+    { url = "https://files.pythonhosted.org/packages/1e/82/6b8ac40edc842a004fc17c013cf67a1d8a1f152dbeb8acd0fd12447d5017/aiohttp-3.12.1-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:284b3b9458b53c28a8ea273be8b63b320d9a7b55b3856c707421f05ea47f4930", size = 1728923, upload-time = "2025-05-26T16:22:13.536Z" },
+    { url = "https://files.pythonhosted.org/packages/05/29/5999e3965569ead4332607d1cddc16c4932d53ce65fc6f1449814e5afa38/aiohttp-3.12.1-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:82552cf0d12e47e2976c59e1fba12a712f8ec321e759b9c48ce61a28b4449f26", size = 1756894, upload-time = "2025-05-26T16:22:15.341Z" },
+    { url = "https://files.pythonhosted.org/packages/86/78/bc3df750b7e778940ef88c3e475ed5f91d8c124d343ee02e5db5a8c7c60c/aiohttp-3.12.1-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:00b17b19802e1900c6bd42c21f8c3a1668a069882ee182686b210f422f3d75b2", size = 1716505, upload-time = "2025-05-26T16:22:17.286Z" },
+    { url = "https://files.pythonhosted.org/packages/cf/5b/d819bd9ea4ce0ad2f563d574f2911f35782738587a6b57274a63a2a0943b/aiohttp-3.12.1-cp312-cp312-win32.whl", hash = "sha256:c8acbe37e1e3393418c07b226e3c4e90e3e2d5204944c5b2011de0325c76b148", size = 413959, upload-time = "2025-05-26T16:22:19.143Z" },
+    { url = "https://files.pythonhosted.org/packages/d5/d9/33b08e29692694b108d1105083d83d7079ba74d2f244ce2a2a341f67480a/aiohttp-3.12.1-cp312-cp312-win_amd64.whl", hash = "sha256:21998081d931d5b0ef1288f01e8e204ca56f2cfb8055a69a01271ecb4a7b5258", size = 440065, upload-time = "2025-05-26T16:22:20.916Z" },
+    { url = "https://files.pythonhosted.org/packages/5c/ee/1d85a49188a8b4eefe79412b59367c0b329f545c6d07365501d605de2ebc/aiohttp-3.12.1-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:e0b0a4fd7afcd488818d07ff917789257910bb473a5a167ecb1274e503a35a4f", size = 687214, upload-time = "2025-05-26T16:22:22.775Z" },
+    { url = "https://files.pythonhosted.org/packages/03/ff/b880f1bf5708dcb5e186da3a329bae302cbc5c872233598a0845934d7cbc/aiohttp-3.12.1-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:121d2369051bec60de5344c8f2ae61814a980044a729846850825494f70c28f5", size = 464876, upload-time = "2025-05-26T16:22:24.536Z" },
+    { url = "https://files.pythonhosted.org/packages/85/e4/eefde9ef4b6f8b8c8ed360b18734b7129da45894bfdcb4e911bfe4ab8f1a/aiohttp-3.12.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:2f1e22ab661bd88d84c1ae18eb1498c3beb328f55fd546546d96ea787ee3e16e", size = 457176, upload-time = "2025-05-26T16:22:26.386Z" },
+    { url = "https://files.pythonhosted.org/packages/66/07/34e4fcda5ac2f1d67dca56481f0e6887e9320c5ad4b1175b9ec7bcfd70d7/aiohttp-3.12.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d50e257062155ef9f62db31517352c9ba29446edf76a788672307c8322dba7db", size = 1695991, upload-time = "2025-05-26T16:22:28.326Z" },
+    { url = "https://files.pythonhosted.org/packages/30/44/1a9c4eb0379a8ac3c4ac48418cb2033e4544341151bed77924e08848547d/aiohttp-3.12.1-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:caed695a120d33c6b346679089012d4bed2b630ba9c6d7c9d174f3c56b5cc696", size = 1677256, upload-time = "2025-05-26T16:22:30.231Z" },
+    { url = "https://files.pythonhosted.org/packages/57/24/c0ac5a263e12ea600cd5e0e8fe4eaba25ef7999e2f3408afcba3273e8ad5/aiohttp-3.12.1-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:a6ceb71e701bf196b5affc6149388096df34bce462011e8e8c574aec3158edf2", size = 1729325, upload-time = "2025-05-26T16:22:32.79Z" },
+    { url = "https://files.pythonhosted.org/packages/7c/ff/af844c6864a671c84fc28d3f1fc635e3f80b010c309cb195248ca44ace45/aiohttp-3.12.1-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:d18f4bdff93981cc2c9ac8ad978c6a6f087aed23baea2b0fbc715d636c33c257", size = 1778700, upload-time = "2025-05-26T16:22:35.126Z" },
+    { url = "https://files.pythonhosted.org/packages/a3/ed/6c2019b4ed80da1365810a40a8b931b724d113f9032fb8d643162476f614/aiohttp-3.12.1-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8cc7b11155ae578cd352225e3bf4a3fb796f82773c0f5d8d128aa80ffb81c578", size = 1701028, upload-time = "2025-05-26T16:22:37.5Z" },
+    { url = "https://files.pythonhosted.org/packages/e7/bc/8c67b8df254d049d923f20a7d1baaaa756ae32d6c538616b15ce807645ac/aiohttp-3.12.1-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:4edd43ccebf3b9c9e805c84e7e74746efa9ffeb75932d5c94e02d42d7d4ea60e", size = 1614734, upload-time = "2025-05-26T16:22:39.42Z" },
+    { url = "https://files.pythonhosted.org/packages/f9/26/7c311e872e5f6db22f8c51fd2df1f7ce49b0a15a29b12e06b788e25c4374/aiohttp-3.12.1-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:b6221d4268d9f3498168eae36328211c32430a091702bbbd86e3b922aa417517", size = 1667755, upload-time = "2025-05-26T16:22:41.329Z" },
+    { url = "https://files.pythonhosted.org/packages/e3/99/d3e21b90f553c8cef3982face62bc65892ce8d76955720468201ca9a7522/aiohttp-3.12.1-cp313-cp313-musllinux_1_2_armv7l.whl", hash = "sha256:ee0911819f4550d5f1aa06bf6a1c9ff0d85c15f98835a49b35589686eb72df36", size = 1699423, upload-time = "2025-05-26T16:22:43.751Z" },
+    { url = "https://files.pythonhosted.org/packages/30/57/543f7ef8b550ba2f8e258f7a06c24572eb2e0618671ac03cf87b40993794/aiohttp-3.12.1-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:0db588298cae65da9ea25e3c1f75e86b7bcb34a824d16c5dd2de726110874c63", size = 1642015, upload-time = "2025-05-26T16:22:46.229Z" },
+    { url = "https://files.pythonhosted.org/packages/4f/e5/14ce6df370fdf56072c02d5bae38e8f9e1b33fd92fed338c44598b1f1dbb/aiohttp-3.12.1-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:9afe8288ece956316afaa0d4a3287fde7e9c337b6ce27f6a51a275a3373f30d7", size = 1718151, upload-time = "2025-05-26T16:22:48.237Z" },
+    { url = "https://files.pythonhosted.org/packages/7b/58/4a2e71e96a794268c17da9284535bb4d70334342d89f4328c92a0cd50811/aiohttp-3.12.1-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:da410ce4628082fa9b4fea9057e7d29a9d2d72e8e18459a9577762522bdada22", size = 1751620, upload-time = "2025-05-26T16:22:50.691Z" },
+    { url = "https://files.pythonhosted.org/packages/88/34/83166c348f70ce4a56b20b54964fa402ee084ba36c320112f60bb105e18e/aiohttp-3.12.1-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:cb4069941b3ae25e9a80b7649889b2ff0e1df606eb25087b2e8391694ba116a5", size = 1700509, upload-time = "2025-05-26T16:22:53.255Z" },
+    { url = "https://files.pythonhosted.org/packages/9d/7d/320571e5da0c864351263a9b7d63e7c63362aac3a635bf40edd1654c05df/aiohttp-3.12.1-cp313-cp313-win32.whl", hash = "sha256:680ea9c7c5e14b87d73493662a8eed1242a0d7ac85e5b7cd599adb898d2d96b3", size = 412985, upload-time = "2025-05-26T16:22:55.599Z" },
+    { url = "https://files.pythonhosted.org/packages/7d/45/921595e842aa9cf9d75497a441f02dce95aa932becc9bf3ea4e859608ebf/aiohttp-3.12.1-cp313-cp313-win_amd64.whl", hash = "sha256:bb3c685984dddf8f9f1e8bf8106b04fb053dcc9837da6e31d378b525af44aa77", size = 438924, upload-time = "2025-05-26T16:22:57.772Z" },
+]
+
+[[package]]
+name = "aiosignal"
+version = "1.3.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "frozenlist" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ba/b5/6d55e80f6d8a08ce22b982eafa278d823b541c925f11ee774b0b9c43473d/aiosignal-1.3.2.tar.gz", hash = "sha256:a8c255c66fafb1e499c9351d0bf32ff2d8a0321595ebac3b93713656d2436f54", size = 19424, upload-time = "2024-12-13T17:10:40.86Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ec/6a/bc7e17a3e87a2985d3e8f4da4cd0f481060eb78fb08596c42be62c90a4d9/aiosignal-1.3.2-py2.py3-none-any.whl", hash = "sha256:45cde58e409a301715980c2b01d0c28bdde3770d8290b5eb2173759d9acb31a5", size = 7597, upload-time = "2024-12-13T17:10:38.469Z" },
+]
+
+[[package]]
+name = "annotated-types"
+version = "0.7.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ee/67/531ea369ba64dcff5ec9c3402f9f51bf748cec26dde048a2f973a4eea7f5/annotated_types-0.7.0.tar.gz", hash = "sha256:aff07c09a53a08bc8cfccb9c85b05f1aa9a2a6f23728d790723543408344ce89", size = 16081, upload-time = "2024-05-20T21:33:25.928Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/78/b6/6307fbef88d9b5ee7421e68d78a9f162e0da4900bc5f5793f6d3d0e34fb8/annotated_types-0.7.0-py3-none-any.whl", hash = "sha256:1f02e8b43a8fbbc3f3e0d4f0f4bfc8131bcb4eebe8849b8e5c773f3a1c582a53", size = 13643, upload-time = "2024-05-20T21:33:24.1Z" },
+]
+
+[[package]]
+name = "ansible"
+version = "11.8.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "ansible-core" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/82/74/b86d14d2c458edf27ddb56d42bf6d07335a0ccfc713f040fb0cbffd30017/ansible-11.8.0.tar.gz", hash = "sha256:28ea032c77f344bb8ea4d7d39f9a5d4e935e6c8b60836c8c8a28b9cf6c9adb1a", size = 44286995, upload-time = "2025-07-16T15:13:22.91Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/47/47/23fe9f6d9cd533ce4d54f4925cb0b7fdcfd3500b226421aad6166d9aa11c/ansible-11.8.0-py3-none-any.whl", hash = "sha256:a2cd44c0d2c03972f5d676d1b024d09dd3d3edbd418fb0426f4dd356fca9e5b1", size = 56046023, upload-time = "2025-07-16T15:13:17.557Z" },
+]
+
+[[package]]
+name = "ansible-core"
+version = "2.18.7"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cryptography" },
+    { name = "jinja2" },
+    { name = "packaging" },
+    { name = "pyyaml" },
+    { name = "resolvelib" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/29/33/cd25e1af669941fbb5c3d7ac4494cf4a288cb11f53225648d552f8bd8e54/ansible_core-2.18.7.tar.gz", hash = "sha256:1a129bf9fcd5dca2b17e83ce77147ee2fbc3c51a4958970152897cc5b6d0aae7", size = 3090256, upload-time = "2025-07-15T17:49:24.074Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7e/a7/568e51c20f49c9e76a555a876ed641ecc59df29e93868f24cdf8c3289f6a/ansible_core-2.18.7-py3-none-any.whl", hash = "sha256:ac42ecb480fb98890d338072f7298cd462fb2117da6700d989c7ae688962ba69", size = 2209456, upload-time = "2025-07-15T17:49:22.549Z" },
+]
+
+[[package]]
+name = "anthropic"
+version = "0.52.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "anyio" },
+    { name = "distro" },
+    { name = "httpx" },
+    { name = "jiter" },
+    { name = "pydantic" },
+    { name = "sniffio" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/57/fd/8a9332f5baf352c272494a9d359863a53385a208954c1a7251a524071930/anthropic-0.52.0.tar.gz", hash = "sha256:f06bc924d7eb85f8a43fe587b875ff58b410d60251b7dc5f1387b322a35bd67b", size = 229372, upload-time = "2025-05-22T16:42:22.044Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a0/43/172c0031654908bbac2a87d356fff4de1b4947a9b14b9658540b69416417/anthropic-0.52.0-py3-none-any.whl", hash = "sha256:c026daa164f0e3bde36ce9cbdd27f5f1419fff03306be1e138726f42e6a7810f", size = 286076, upload-time = "2025-05-22T16:42:20Z" },
+]
+
+[[package]]
+name = "anyio"
+version = "4.9.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "idna" },
+    { name = "sniffio" },
+    { name = "typing-extensions", marker = "python_full_version < '3.13'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/95/7d/4c1bd541d4dffa1b52bd83fb8527089e097a106fc90b467a7313b105f840/anyio-4.9.0.tar.gz", hash = "sha256:673c0c244e15788651a4ff38710fea9675823028a6f08a5eda409e0c9840a028", size = 190949, upload-time = "2025-03-17T00:02:54.77Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a1/ee/48ca1a7c89ffec8b6a0c5d02b89c305671d5ffd8d3c94acf8b8c408575bb/anyio-4.9.0-py3-none-any.whl", hash = "sha256:9f76d541cad6e36af7beb62e978876f3b41e3e04f2c1fbf0884604c0a9c4d93c", size = 100916, upload-time = "2025-03-17T00:02:52.713Z" },
+]
+
+[[package]]
+name = "apscheduler"
+version = "3.11.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "tzlocal" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/4e/00/6d6814ddc19be2df62c8c898c4df6b5b1914f3bd024b780028caa392d186/apscheduler-3.11.0.tar.gz", hash = "sha256:4c622d250b0955a65d5d0eb91c33e6d43fd879834bf541e0a18661ae60460133", size = 107347, upload-time = "2024-11-24T19:39:26.463Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d0/ae/9a053dd9229c0fde6b1f1f33f609ccff1ee79ddda364c756a924c6d8563b/APScheduler-3.11.0-py3-none-any.whl", hash = "sha256:fc134ca32e50f5eadcc4938e3a4545ab19131435e851abb40b34d63d5141c6da", size = 64004, upload-time = "2024-11-24T19:39:24.442Z" },
+]
+
+[[package]]
+name = "asgiref"
+version = "3.8.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/29/38/b3395cc9ad1b56d2ddac9970bc8f4141312dbaec28bc7c218b0dfafd0f42/asgiref-3.8.1.tar.gz", hash = "sha256:c343bd80a0bec947a9860adb4c432ffa7db769836c64238fc34bdc3fec84d590", size = 35186, upload-time = "2024-03-22T14:39:36.863Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/39/e3/893e8757be2612e6c266d9bb58ad2e3651524b5b40cf56761e985a28b13e/asgiref-3.8.1-py3-none-any.whl", hash = "sha256:3e1e3ecc849832fe52ccf2cb6686b7a55f82bb1d6aee72a58826471390335e47", size = 23828, upload-time = "2024-03-22T14:39:34.521Z" },
+]
+
+[[package]]
+name = "attrs"
+version = "25.3.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/5a/b0/1367933a8532ee6ff8d63537de4f1177af4bff9f3e829baf7331f595bb24/attrs-25.3.0.tar.gz", hash = "sha256:75d7cefc7fb576747b2c81b4442d4d4a1ce0900973527c011d1030fd3bf4af1b", size = 812032, upload-time = "2025-03-13T11:10:22.779Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/77/06/bb80f5f86020c4551da315d78b3ab75e8228f89f0162f2c3a819e407941a/attrs-25.3.0-py3-none-any.whl", hash = "sha256:427318ce031701fea540783410126f03899a97ffc6f61596ad581ac2e40e3bc3", size = 63815, upload-time = "2025-03-13T11:10:21.14Z" },
+]
+
+[[package]]
+name = "authlib"
+version = "1.6.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cryptography" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/8e/a1/d8d1c6f8bc922c0b87ae0d933a8ed57be1bef6970894ed79c2852a153cd3/authlib-1.6.1.tar.gz", hash = "sha256:4dffdbb1460ba6ec8c17981a4c67af7d8af131231b5a36a88a1e8c80c111cdfd", size = 159988, upload-time = "2025-07-20T07:38:42.834Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f9/58/cc6a08053f822f98f334d38a27687b69c6655fb05cd74a7a5e70a2aeed95/authlib-1.6.1-py2.py3-none-any.whl", hash = "sha256:e9d2031c34c6309373ab845afc24168fe9e93dc52d252631f52642f21f5ed06e", size = 239299, upload-time = "2025-07-20T07:38:39.259Z" },
+]
+
+[[package]]
+name = "autogen-agentchat"
+version = "0.2.40"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "diskcache" },
+    { name = "docker" },
+    { name = "flaml" },
+    { name = "numpy" },
+    { name = "openai" },
+    { name = "packaging" },
+    { name = "pydantic" },
+    { name = "python-dotenv" },
+    { name = "termcolor" },
+    { name = "tiktoken" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/2a/82/91a2a38a7188c216cf6c2ff1177b47eb0ec9451a5f60b83dc5f1669ae5f1/autogen-agentchat-0.2.40.tar.gz", hash = "sha256:bfdd25ab63fb75a701095315d0d7214f1616411b9edbcdf6183da35a956cc42e", size = 335172, upload-time = "2024-12-15T06:10:45.423Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e2/27/198414c4c24e886770a03e0bed349582c40e3bfc2ec327034cc5d22c185f/autogen_agentchat-0.2.40-py3-none-any.whl", hash = "sha256:03f11ab89442a3b2408e7e46aa4a66d0be44e6f4447467efbb3ef4e35940176e", size = 382317, upload-time = "2024-12-15T06:10:41.952Z" },
+]
+
+[[package]]
+name = "azure-ai-ml"
+version = "1.27.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-common" },
+    { name = "azure-core" },
+    { name = "azure-mgmt-core" },
+    { name = "azure-monitor-opentelemetry" },
+    { name = "azure-storage-blob" },
+    { name = "azure-storage-file-datalake" },
+    { name = "azure-storage-file-share" },
+    { name = "colorama" },
+    { name = "isodate" },
+    { name = "jsonschema" },
+    { name = "marshmallow" },
+    { name = "msrest" },
+    { name = "pydash" },
+    { name = "pyjwt" },
+    { name = "pyyaml" },
+    { name = "six" },
+    { name = "strictyaml" },
+    { name = "tqdm" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/06/2f/2528b27bee5523534f8da1a5c53fb4d69fcb744db534b02d95ea3f2b6f13/azure_ai_ml-1.27.1.tar.gz", hash = "sha256:2925aa68796f11c2742c7603cf7115325dbbcf75c3a46af01a8f321627c22ba2", size = 9482358, upload-time = "2025-05-13T11:43:31.105Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/9a/74/58550bffdce7784075b0455f10cef514b6585607f3c4653c7e17a97acdfb/azure_ai_ml-1.27.1-py3-none-any.whl", hash = "sha256:7e01bdbfe361757bc7f91dedd0192894bfe4197d5156e4b49b5a594ba88e3b92", size = 13212669, upload-time = "2025-05-13T11:43:34.326Z" },
+]
+
+[[package]]
+name = "azure-common"
+version = "1.1.28"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/3e/71/f6f71a276e2e69264a97ad39ef850dca0a04fce67b12570730cb38d0ccac/azure-common-1.1.28.zip", hash = "sha256:4ac0cd3214e36b6a1b6a442686722a5d8cc449603aa833f3f0f40bda836704a3", size = 20914, upload-time = "2022-02-03T19:39:44.373Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/62/55/7f118b9c1b23ec15ca05d15a578d8207aa1706bc6f7c87218efffbbf875d/azure_common-1.1.28-py2.py3-none-any.whl", hash = "sha256:5c12d3dcf4ec20599ca6b0d3e09e86e146353d443e7fcc050c9a19c1f9df20ad", size = 14462, upload-time = "2022-02-03T19:39:42.417Z" },
+]
+
+[[package]]
+name = "azure-core"
+version = "1.34.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "requests" },
+    { name = "six" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c9/29/ff7a519a315e41c85bab92a7478c6acd1cf0b14353139a08caee4c691f77/azure_core-1.34.0.tar.gz", hash = "sha256:bdb544989f246a0ad1c85d72eeb45f2f835afdcbc5b45e43f0dbde7461c81ece", size = 297999, upload-time = "2025-05-01T23:17:27.59Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/84/9e/5c87b49f65bb16571599bc789857d0ded2f53014d3392bc88a5d1f3ad779/azure_core-1.34.0-py3-none-any.whl", hash = "sha256:0615d3b756beccdb6624d1c0ae97284f38b78fb59a2a9839bf927c66fbbdddd6", size = 207409, upload-time = "2025-05-01T23:17:29.818Z" },
+]
+
+[[package]]
+name = "azure-core-tracing-opentelemetry"
+version = "1.0.0b12"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+    { name = "opentelemetry-api" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/5a/7f/5de13a331a5f2919417819cc37dcf7c897018f02f83aa82b733e6629a6a6/azure_core_tracing_opentelemetry-1.0.0b12.tar.gz", hash = "sha256:bb454142440bae11fd9d68c7c1d67ae38a1756ce808c5e4d736730a7b4b04144", size = 26010, upload-time = "2025-03-21T00:18:37.346Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/76/5e/97a471f66935e7f89f521d0e11ae49c7f0871ca38f5c319dccae2155c8d8/azure_core_tracing_opentelemetry-1.0.0b12-py3-none-any.whl", hash = "sha256:38fd42709f1cc4bbc4f2797008b1c30a6a01617e49910c05daa3a0d0c65053ac", size = 11962, upload-time = "2025-03-21T00:18:38.581Z" },
+]
+
+[[package]]
+name = "azure-identity"
+version = "1.23.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+    { name = "cryptography" },
+    { name = "msal" },
+    { name = "msal-extensions" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/41/52/458c1be17a5d3796570ae2ed3c6b7b55b134b22d5ef8132b4f97046a9051/azure_identity-1.23.0.tar.gz", hash = "sha256:d9cdcad39adb49d4bb2953a217f62aec1f65bbb3c63c9076da2be2a47e53dde4", size = 265280, upload-time = "2025-05-14T00:18:30.408Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/07/16/a51d47780f41e4b87bb2d454df6aea90a44a346e918ac189d3700f3d728d/azure_identity-1.23.0-py3-none-any.whl", hash = "sha256:dbbeb64b8e5eaa81c44c565f264b519ff2de7ff0e02271c49f3cb492762a50b0", size = 186097, upload-time = "2025-05-14T00:18:32.734Z" },
+]
+
+[[package]]
+name = "azure-mgmt-core"
+version = "1.5.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/48/9a/9bdc35295a16fe9139a1f99c13d9915563cbc4f30b479efaa40f8694eaf7/azure_mgmt_core-1.5.0.tar.gz", hash = "sha256:380ae3dfa3639f4a5c246a7db7ed2d08374e88230fd0da3eb899f7c11e5c441a", size = 32093, upload-time = "2024-10-31T18:06:39.836Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ab/2d/762b027cfd58b1b2c9b5b60d112615bd04bc33ef85dac55d2ee739641054/azure_mgmt_core-1.5.0-py3-none-any.whl", hash = "sha256:18aaa5a723ee8ae05bf1bfc9f6d0ffb996631c7ea3c922cc86f522973ce07b5f", size = 30295, upload-time = "2024-10-31T18:06:41.409Z" },
+]
+
+[[package]]
+name = "azure-monitor-opentelemetry"
+version = "1.6.9"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+    { name = "azure-core-tracing-opentelemetry" },
+    { name = "azure-monitor-opentelemetry-exporter" },
+    { name = "opentelemetry-instrumentation-django" },
+    { name = "opentelemetry-instrumentation-fastapi" },
+    { name = "opentelemetry-instrumentation-flask" },
+    { name = "opentelemetry-instrumentation-psycopg2" },
+    { name = "opentelemetry-instrumentation-requests" },
+    { name = "opentelemetry-instrumentation-urllib" },
+    { name = "opentelemetry-instrumentation-urllib3" },
+    { name = "opentelemetry-resource-detector-azure" },
+    { name = "opentelemetry-sdk" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/62/7d/e21c48705cccb31e627a3ca59f8410b8f2cd37ff13ab6fffe92c8957d59a/azure_monitor_opentelemetry-1.6.9.tar.gz", hash = "sha256:2689cb019982d01688584de832e118316e974c3ba02d81f71d8e8e7ca5d1e799", size = 47131, upload-time = "2025-05-13T18:32:27.564Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f3/cb/0b9ae1ba27f2b7c3f9195c93c2a2d3b16fc763b8bf321feba4c03702cf6f/azure_monitor_opentelemetry-1.6.9-py3-none-any.whl", hash = "sha256:3e3ae4b4f8f048df7b7056510f75dbcf41055cdd433cc9425a5b7f7d1a0163c3", size = 23673, upload-time = "2025-05-13T18:32:28.703Z" },
+]
+
+[[package]]
+name = "azure-monitor-opentelemetry-exporter"
+version = "1.0.0b36"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+    { name = "azure-identity" },
+    { name = "fixedint" },
+    { name = "msrest" },
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-sdk" },
+    { name = "psutil" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/38/34/4a545d8613262361e83125df8108806584853f60cc054c675d87efb06c93/azure_monitor_opentelemetry_exporter-1.0.0b36.tar.gz", hash = "sha256:82977b9576a694362ea9c6a9eec6add6e56314da759dbc543d02f50962d4b72d", size = 189364, upload-time = "2025-04-07T18:23:22.871Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8d/d9/e1130395b3575544b6dce87b414452ec9c8d3b2c3f75d515c3c4cd391159/azure_monitor_opentelemetry_exporter-1.0.0b36-py2.py3-none-any.whl", hash = "sha256:8b669deae6a247246944495f519fd93dbdfa9c0150d1222cfc780de098338546", size = 154118, upload-time = "2025-04-07T18:23:24.522Z" },
+]
+
+[[package]]
+name = "azure-storage-blob"
+version = "12.25.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+    { name = "cryptography" },
+    { name = "isodate" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/8b/f3/f764536c25cc3829d36857167f03933ce9aee2262293179075439f3cd3ad/azure_storage_blob-12.25.1.tar.gz", hash = "sha256:4f294ddc9bc47909ac66b8934bd26b50d2000278b10ad82cc109764fdc6e0e3b", size = 570541, upload-time = "2025-03-27T17:13:05.424Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/57/33/085d9352d416e617993821b9d9488222fbb559bc15c3641d6cbd6d16d236/azure_storage_blob-12.25.1-py3-none-any.whl", hash = "sha256:1f337aab12e918ec3f1b638baada97550673911c4ceed892acc8e4e891b74167", size = 406990, upload-time = "2025-03-27T17:13:06.879Z" },
+]
+
+[[package]]
+name = "azure-storage-file-datalake"
+version = "12.20.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+    { name = "azure-storage-blob" },
+    { name = "isodate" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/4d/4b/66e68e1cb5655d3f290541151dc97c82ae565e4146b66f72f3465ba6e617/azure_storage_file_datalake-12.20.0.tar.gz", hash = "sha256:8d6932b75470de935998755d980a3296412d8ff2a11631c1d99267ae65f11f03", size = 283945, upload-time = "2025-03-27T17:43:19.42Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/5e/de/771c2c75129599bd1a693ed29fc4b9961e79b88a641beb6e8ea714198184/azure_storage_file_datalake-12.20.0-py3-none-any.whl", hash = "sha256:d32af627ccf7f8523ac4520a4004291b8ca340d7c607545366e1b08822afa01b", size = 263978, upload-time = "2025-03-27T17:43:21.663Z" },
+]
+
+[[package]]
+name = "azure-storage-file-share"
+version = "12.21.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+    { name = "cryptography" },
+    { name = "isodate" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/da/ef/40d6a0ee632725a2f1508b6ab18fa510802f850edf94147292e0ad1bea7d/azure_storage_file_share-12.21.0.tar.gz", hash = "sha256:db42bf6b43b3c0c27c9152202955277dfc26a59f7fad26c058431a6ae99580ce", size = 353616, upload-time = "2025-03-11T19:11:45.911Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e6/e9/4856cdaba192955108f9bc9e80c772a7c608a24065c3866d058ced5a4f12/azure_storage_file_share-12.21.0-py3-none-any.whl", hash = "sha256:0875c7ee13d9a750d8a9b8ddd93d6502edd26cf40f44a390d7ae2637779300da", size = 290624, upload-time = "2025-03-11T19:11:47.374Z" },
+]
+
+[[package]]
+name = "bashlex"
+version = "0.18"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/76/60/aae0bb54f9af5e0128ba90eb83d8d0d506ee8f0475c4fdda3deeda20b1d2/bashlex-0.18.tar.gz", hash = "sha256:5bb03a01c6d5676338c36fd1028009c8ad07e7d61d8a1ce3f513b7fff52796ee", size = 68742, upload-time = "2023-01-18T15:21:26.402Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f4/be/6985abb1011fda8a523cfe21ed9629e397d6e06fb5bae99750402b25c95b/bashlex-0.18-py2.py3-none-any.whl", hash = "sha256:91d73a23a3e51711919c1c899083890cdecffc91d8c088942725ac13e9dcfffa", size = 69539, upload-time = "2023-01-18T15:21:24.167Z" },
+]
+
+[[package]]
+name = "bcrypt"
+version = "4.3.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/bb/5d/6d7433e0f3cd46ce0b43cd65e1db465ea024dbb8216fb2404e919c2ad77b/bcrypt-4.3.0.tar.gz", hash = "sha256:3a3fd2204178b6d2adcf09cb4f6426ffef54762577a7c9b54c159008cb288c18", size = 25697, upload-time = "2025-02-28T01:24:09.174Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/bf/2c/3d44e853d1fe969d229bd58d39ae6902b3d924af0e2b5a60d17d4b809ded/bcrypt-4.3.0-cp313-cp313t-macosx_10_12_universal2.whl", hash = "sha256:f01e060f14b6b57bbb72fc5b4a83ac21c443c9a2ee708e04a10e9192f90a6281", size = 483719, upload-time = "2025-02-28T01:22:34.539Z" },
+    { url = "https://files.pythonhosted.org/packages/a1/e2/58ff6e2a22eca2e2cff5370ae56dba29d70b1ea6fc08ee9115c3ae367795/bcrypt-4.3.0-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c5eeac541cefd0bb887a371ef73c62c3cd78535e4887b310626036a7c0a817bb", size = 272001, upload-time = "2025-02-28T01:22:38.078Z" },
+    { url = "https://files.pythonhosted.org/packages/37/1f/c55ed8dbe994b1d088309e366749633c9eb90d139af3c0a50c102ba68a1a/bcrypt-4.3.0-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:59e1aa0e2cd871b08ca146ed08445038f42ff75968c7ae50d2fdd7860ade2180", size = 277451, upload-time = "2025-02-28T01:22:40.787Z" },
+    { url = "https://files.pythonhosted.org/packages/d7/1c/794feb2ecf22fe73dcfb697ea7057f632061faceb7dcf0f155f3443b4d79/bcrypt-4.3.0-cp313-cp313t-manylinux_2_28_aarch64.whl", hash = "sha256:0042b2e342e9ae3d2ed22727c1262f76cc4f345683b5c1715f0250cf4277294f", size = 272792, upload-time = "2025-02-28T01:22:43.144Z" },
+    { url = "https://files.pythonhosted.org/packages/13/b7/0b289506a3f3598c2ae2bdfa0ea66969812ed200264e3f61df77753eee6d/bcrypt-4.3.0-cp313-cp313t-manylinux_2_28_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:74a8d21a09f5e025a9a23e7c0fd2c7fe8e7503e4d356c0a2c1486ba010619f09", size = 289752, upload-time = "2025-02-28T01:22:45.56Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/24/d0fb023788afe9e83cc118895a9f6c57e1044e7e1672f045e46733421fe6/bcrypt-4.3.0-cp313-cp313t-manylinux_2_28_x86_64.whl", hash = "sha256:0142b2cb84a009f8452c8c5a33ace5e3dfec4159e7735f5afe9a4d50a8ea722d", size = 277762, upload-time = "2025-02-28T01:22:47.023Z" },
+    { url = "https://files.pythonhosted.org/packages/e4/38/cde58089492e55ac4ef6c49fea7027600c84fd23f7520c62118c03b4625e/bcrypt-4.3.0-cp313-cp313t-manylinux_2_34_aarch64.whl", hash = "sha256:12fa6ce40cde3f0b899729dbd7d5e8811cb892d31b6f7d0334a1f37748b789fd", size = 272384, upload-time = "2025-02-28T01:22:49.221Z" },
+    { url = "https://files.pythonhosted.org/packages/de/6a/d5026520843490cfc8135d03012a413e4532a400e471e6188b01b2de853f/bcrypt-4.3.0-cp313-cp313t-manylinux_2_34_x86_64.whl", hash = "sha256:5bd3cca1f2aa5dbcf39e2aa13dd094ea181f48959e1071265de49cc2b82525af", size = 277329, upload-time = "2025-02-28T01:22:51.603Z" },
+    { url = "https://files.pythonhosted.org/packages/b3/a3/4fc5255e60486466c389e28c12579d2829b28a527360e9430b4041df4cf9/bcrypt-4.3.0-cp313-cp313t-musllinux_1_1_aarch64.whl", hash = "sha256:335a420cfd63fc5bc27308e929bee231c15c85cc4c496610ffb17923abf7f231", size = 305241, upload-time = "2025-02-28T01:22:53.283Z" },
+    { url = "https://files.pythonhosted.org/packages/c7/15/2b37bc07d6ce27cc94e5b10fd5058900eb8fb11642300e932c8c82e25c4a/bcrypt-4.3.0-cp313-cp313t-musllinux_1_1_x86_64.whl", hash = "sha256:0e30e5e67aed0187a1764911af023043b4542e70a7461ad20e837e94d23e1d6c", size = 309617, upload-time = "2025-02-28T01:22:55.461Z" },
+    { url = "https://files.pythonhosted.org/packages/5f/1f/99f65edb09e6c935232ba0430c8c13bb98cb3194b6d636e61d93fe60ac59/bcrypt-4.3.0-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:3b8d62290ebefd49ee0b3ce7500f5dbdcf13b81402c05f6dafab9a1e1b27212f", size = 335751, upload-time = "2025-02-28T01:22:57.81Z" },
+    { url = "https://files.pythonhosted.org/packages/00/1b/b324030c706711c99769988fcb694b3cb23f247ad39a7823a78e361bdbb8/bcrypt-4.3.0-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:2ef6630e0ec01376f59a006dc72918b1bf436c3b571b80fa1968d775fa02fe7d", size = 355965, upload-time = "2025-02-28T01:22:59.181Z" },
+    { url = "https://files.pythonhosted.org/packages/aa/dd/20372a0579dd915dfc3b1cd4943b3bca431866fcb1dfdfd7518c3caddea6/bcrypt-4.3.0-cp313-cp313t-win32.whl", hash = "sha256:7a4be4cbf241afee43f1c3969b9103a41b40bcb3a3f467ab19f891d9bc4642e4", size = 155316, upload-time = "2025-02-28T01:23:00.763Z" },
+    { url = "https://files.pythonhosted.org/packages/6d/52/45d969fcff6b5577c2bf17098dc36269b4c02197d551371c023130c0f890/bcrypt-4.3.0-cp313-cp313t-win_amd64.whl", hash = "sha256:5c1949bf259a388863ced887c7861da1df681cb2388645766c89fdfd9004c669", size = 147752, upload-time = "2025-02-28T01:23:02.908Z" },
+    { url = "https://files.pythonhosted.org/packages/11/22/5ada0b9af72b60cbc4c9a399fdde4af0feaa609d27eb0adc61607997a3fa/bcrypt-4.3.0-cp38-abi3-macosx_10_12_universal2.whl", hash = "sha256:f81b0ed2639568bf14749112298f9e4e2b28853dab50a8b357e31798686a036d", size = 498019, upload-time = "2025-02-28T01:23:05.838Z" },
+    { url = "https://files.pythonhosted.org/packages/b8/8c/252a1edc598dc1ce57905be173328eda073083826955ee3c97c7ff5ba584/bcrypt-4.3.0-cp38-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:864f8f19adbe13b7de11ba15d85d4a428c7e2f344bac110f667676a0ff84924b", size = 279174, upload-time = "2025-02-28T01:23:07.274Z" },
+    { url = "https://files.pythonhosted.org/packages/29/5b/4547d5c49b85f0337c13929f2ccbe08b7283069eea3550a457914fc078aa/bcrypt-4.3.0-cp38-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3e36506d001e93bffe59754397572f21bb5dc7c83f54454c990c74a468cd589e", size = 283870, upload-time = "2025-02-28T01:23:09.151Z" },
+    { url = "https://files.pythonhosted.org/packages/be/21/7dbaf3fa1745cb63f776bb046e481fbababd7d344c5324eab47f5ca92dd2/bcrypt-4.3.0-cp38-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:842d08d75d9fe9fb94b18b071090220697f9f184d4547179b60734846461ed59", size = 279601, upload-time = "2025-02-28T01:23:11.461Z" },
+    { url = "https://files.pythonhosted.org/packages/6d/64/e042fc8262e971347d9230d9abbe70d68b0a549acd8611c83cebd3eaec67/bcrypt-4.3.0-cp38-abi3-manylinux_2_28_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:7c03296b85cb87db865d91da79bf63d5609284fc0cab9472fdd8367bbd830753", size = 297660, upload-time = "2025-02-28T01:23:12.989Z" },
+    { url = "https://files.pythonhosted.org/packages/50/b8/6294eb84a3fef3b67c69b4470fcdd5326676806bf2519cda79331ab3c3a9/bcrypt-4.3.0-cp38-abi3-manylinux_2_28_x86_64.whl", hash = "sha256:62f26585e8b219cdc909b6a0069efc5e4267e25d4a3770a364ac58024f62a761", size = 284083, upload-time = "2025-02-28T01:23:14.5Z" },
+    { url = "https://files.pythonhosted.org/packages/62/e6/baff635a4f2c42e8788fe1b1633911c38551ecca9a749d1052d296329da6/bcrypt-4.3.0-cp38-abi3-manylinux_2_34_aarch64.whl", hash = "sha256:beeefe437218a65322fbd0069eb437e7c98137e08f22c4660ac2dc795c31f8bb", size = 279237, upload-time = "2025-02-28T01:23:16.686Z" },
+    { url = "https://files.pythonhosted.org/packages/39/48/46f623f1b0c7dc2e5de0b8af5e6f5ac4cc26408ac33f3d424e5ad8da4a90/bcrypt-4.3.0-cp38-abi3-manylinux_2_34_x86_64.whl", hash = "sha256:97eea7408db3a5bcce4a55d13245ab3fa566e23b4c67cd227062bb49e26c585d", size = 283737, upload-time = "2025-02-28T01:23:18.897Z" },
+    { url = "https://files.pythonhosted.org/packages/49/8b/70671c3ce9c0fca4a6cc3cc6ccbaa7e948875a2e62cbd146e04a4011899c/bcrypt-4.3.0-cp38-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:191354ebfe305e84f344c5964c7cd5f924a3bfc5d405c75ad07f232b6dffb49f", size = 312741, upload-time = "2025-02-28T01:23:21.041Z" },
+    { url = "https://files.pythonhosted.org/packages/27/fb/910d3a1caa2d249b6040a5caf9f9866c52114d51523ac2fb47578a27faee/bcrypt-4.3.0-cp38-abi3-musllinux_1_1_x86_64.whl", hash = "sha256:41261d64150858eeb5ff43c753c4b216991e0ae16614a308a15d909503617732", size = 316472, upload-time = "2025-02-28T01:23:23.183Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/cf/7cf3a05b66ce466cfb575dbbda39718d45a609daa78500f57fa9f36fa3c0/bcrypt-4.3.0-cp38-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:33752b1ba962ee793fa2b6321404bf20011fe45b9afd2a842139de3011898fef", size = 343606, upload-time = "2025-02-28T01:23:25.361Z" },
+    { url = "https://files.pythonhosted.org/packages/e3/b8/e970ecc6d7e355c0d892b7f733480f4aa8509f99b33e71550242cf0b7e63/bcrypt-4.3.0-cp38-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:50e6e80a4bfd23a25f5c05b90167c19030cf9f87930f7cb2eacb99f45d1c3304", size = 362867, upload-time = "2025-02-28T01:23:26.875Z" },
+    { url = "https://files.pythonhosted.org/packages/a9/97/8d3118efd8354c555a3422d544163f40d9f236be5b96c714086463f11699/bcrypt-4.3.0-cp38-abi3-win32.whl", hash = "sha256:67a561c4d9fb9465ec866177e7aebcad08fe23aaf6fbd692a6fab69088abfc51", size = 160589, upload-time = "2025-02-28T01:23:28.381Z" },
+    { url = "https://files.pythonhosted.org/packages/29/07/416f0b99f7f3997c69815365babbc2e8754181a4b1899d921b3c7d5b6f12/bcrypt-4.3.0-cp38-abi3-win_amd64.whl", hash = "sha256:584027857bc2843772114717a7490a37f68da563b3620f78a849bcb54dc11e62", size = 152794, upload-time = "2025-02-28T01:23:30.187Z" },
+    { url = "https://files.pythonhosted.org/packages/6e/c1/3fa0e9e4e0bfd3fd77eb8b52ec198fd6e1fd7e9402052e43f23483f956dd/bcrypt-4.3.0-cp39-abi3-macosx_10_12_universal2.whl", hash = "sha256:0d3efb1157edebfd9128e4e46e2ac1a64e0c1fe46fb023158a407c7892b0f8c3", size = 498969, upload-time = "2025-02-28T01:23:31.945Z" },
+    { url = "https://files.pythonhosted.org/packages/ce/d4/755ce19b6743394787fbd7dff6bf271b27ee9b5912a97242e3caf125885b/bcrypt-4.3.0-cp39-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:08bacc884fd302b611226c01014eca277d48f0a05187666bca23aac0dad6fe24", size = 279158, upload-time = "2025-02-28T01:23:34.161Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/5d/805ef1a749c965c46b28285dfb5cd272a7ed9fa971f970435a5133250182/bcrypt-4.3.0-cp39-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f6746e6fec103fcd509b96bacdfdaa2fbde9a553245dbada284435173a6f1aef", size = 284285, upload-time = "2025-02-28T01:23:35.765Z" },
+    { url = "https://files.pythonhosted.org/packages/ab/2b/698580547a4a4988e415721b71eb45e80c879f0fb04a62da131f45987b96/bcrypt-4.3.0-cp39-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:afe327968aaf13fc143a56a3360cb27d4ad0345e34da12c7290f1b00b8fe9a8b", size = 279583, upload-time = "2025-02-28T01:23:38.021Z" },
+    { url = "https://files.pythonhosted.org/packages/f2/87/62e1e426418204db520f955ffd06f1efd389feca893dad7095bf35612eec/bcrypt-4.3.0-cp39-abi3-manylinux_2_28_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:d9af79d322e735b1fc33404b5765108ae0ff232d4b54666d46730f8ac1a43676", size = 297896, upload-time = "2025-02-28T01:23:39.575Z" },
+    { url = "https://files.pythonhosted.org/packages/cb/c6/8fedca4c2ada1b6e889c52d2943b2f968d3427e5d65f595620ec4c06fa2f/bcrypt-4.3.0-cp39-abi3-manylinux_2_28_x86_64.whl", hash = "sha256:f1e3ffa1365e8702dc48c8b360fef8d7afeca482809c5e45e653af82ccd088c1", size = 284492, upload-time = "2025-02-28T01:23:40.901Z" },
+    { url = "https://files.pythonhosted.org/packages/4d/4d/c43332dcaaddb7710a8ff5269fcccba97ed3c85987ddaa808db084267b9a/bcrypt-4.3.0-cp39-abi3-manylinux_2_34_aarch64.whl", hash = "sha256:3004df1b323d10021fda07a813fd33e0fd57bef0e9a480bb143877f6cba996fe", size = 279213, upload-time = "2025-02-28T01:23:42.653Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/7f/1e36379e169a7df3a14a1c160a49b7b918600a6008de43ff20d479e6f4b5/bcrypt-4.3.0-cp39-abi3-manylinux_2_34_x86_64.whl", hash = "sha256:531457e5c839d8caea9b589a1bcfe3756b0547d7814e9ce3d437f17da75c32b0", size = 284162, upload-time = "2025-02-28T01:23:43.964Z" },
+    { url = "https://files.pythonhosted.org/packages/1c/0a/644b2731194b0d7646f3210dc4d80c7fee3ecb3a1f791a6e0ae6bb8684e3/bcrypt-4.3.0-cp39-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:17a854d9a7a476a89dcef6c8bd119ad23e0f82557afbd2c442777a16408e614f", size = 312856, upload-time = "2025-02-28T01:23:46.011Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/62/2a871837c0bb6ab0c9a88bf54de0fc021a6a08832d4ea313ed92a669d437/bcrypt-4.3.0-cp39-abi3-musllinux_1_1_x86_64.whl", hash = "sha256:6fb1fd3ab08c0cbc6826a2e0447610c6f09e983a281b919ed721ad32236b8b23", size = 316726, upload-time = "2025-02-28T01:23:47.575Z" },
+    { url = "https://files.pythonhosted.org/packages/0c/a1/9898ea3faac0b156d457fd73a3cb9c2855c6fd063e44b8522925cdd8ce46/bcrypt-4.3.0-cp39-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:e965a9c1e9a393b8005031ff52583cedc15b7884fce7deb8b0346388837d6cfe", size = 343664, upload-time = "2025-02-28T01:23:49.059Z" },
+    { url = "https://files.pythonhosted.org/packages/40/f2/71b4ed65ce38982ecdda0ff20c3ad1b15e71949c78b2c053df53629ce940/bcrypt-4.3.0-cp39-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:79e70b8342a33b52b55d93b3a59223a844962bef479f6a0ea318ebbcadf71505", size = 363128, upload-time = "2025-02-28T01:23:50.399Z" },
+    { url = "https://files.pythonhosted.org/packages/11/99/12f6a58eca6dea4be992d6c681b7ec9410a1d9f5cf368c61437e31daa879/bcrypt-4.3.0-cp39-abi3-win32.whl", hash = "sha256:b4d4e57f0a63fd0b358eb765063ff661328f69a04494427265950c71b992a39a", size = 160598, upload-time = "2025-02-28T01:23:51.775Z" },
+    { url = "https://files.pythonhosted.org/packages/a9/cf/45fb5261ece3e6b9817d3d82b2f343a505fd58674a92577923bc500bd1aa/bcrypt-4.3.0-cp39-abi3-win_amd64.whl", hash = "sha256:e53e074b120f2877a35cc6c736b8eb161377caae8925c17688bd46ba56daaa5b", size = 152799, upload-time = "2025-02-28T01:23:53.139Z" },
+]
+
+[[package]]
+name = "beautifulsoup4"
+version = "4.13.4"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "soupsieve" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/d8/e4/0c4c39e18fd76d6a628d4dd8da40543d136ce2d1752bd6eeeab0791f4d6b/beautifulsoup4-4.13.4.tar.gz", hash = "sha256:dbb3c4e1ceae6aefebdaf2423247260cd062430a410e38c66f2baa50a8437195", size = 621067, upload-time = "2025-04-15T17:05:13.836Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/50/cd/30110dc0ffcf3b131156077b90e9f60ed75711223f306da4db08eff8403b/beautifulsoup4-4.13.4-py3-none-any.whl", hash = "sha256:9bbbb14bfde9d79f38b8cd5f8c7c85f4b8f2523190ebed90e950a8dea4cb1c4b", size = 187285, upload-time = "2025-04-15T17:05:12.221Z" },
+]
+
+[[package]]
+name = "bidict"
+version = "0.23.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/9a/6e/026678aa5a830e07cd9498a05d3e7e650a4f56a42f267a53d22bcda1bdc9/bidict-0.23.1.tar.gz", hash = "sha256:03069d763bc387bbd20e7d49914e75fc4132a41937fa3405417e1a5a2d006d71", size = 29093, upload-time = "2024-02-18T19:09:05.748Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/99/37/e8730c3587a65eb5645d4aba2d27aae48e8003614d6aaf15dda67f702f1f/bidict-0.23.1-py3-none-any.whl", hash = "sha256:5dae8d4d79b552a71cbabc7deb25dfe8ce710b17ff41711e13010ead2abfc3e5", size = 32764, upload-time = "2024-02-18T19:09:04.156Z" },
+]
+
+[[package]]
+name = "black"
+version = "24.10.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "click" },
+    { name = "mypy-extensions" },
+    { name = "packaging" },
+    { name = "pathspec" },
+    { name = "platformdirs" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/d8/0d/cc2fb42b8c50d80143221515dd7e4766995bd07c56c9a3ed30baf080b6dc/black-24.10.0.tar.gz", hash = "sha256:846ea64c97afe3bc677b761787993be4991810ecc7a4a937816dd6bddedc4875", size = 645813, upload-time = "2024-10-07T19:20:50.361Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/90/04/bf74c71f592bcd761610bbf67e23e6a3cff824780761f536512437f1e655/black-24.10.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:b5e39e0fae001df40f95bd8cc36b9165c5e2ea88900167bddf258bacef9bbdc3", size = 1644256, upload-time = "2024-10-07T19:27:53.355Z" },
+    { url = "https://files.pythonhosted.org/packages/4c/ea/a77bab4cf1887f4b2e0bce5516ea0b3ff7d04ba96af21d65024629afedb6/black-24.10.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:d37d422772111794b26757c5b55a3eade028aa3fde43121ab7b673d050949d65", size = 1448534, upload-time = "2024-10-07T19:26:44.953Z" },
+    { url = "https://files.pythonhosted.org/packages/4e/3e/443ef8bc1fbda78e61f79157f303893f3fddf19ca3c8989b163eb3469a12/black-24.10.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:14b3502784f09ce2443830e3133dacf2c0110d45191ed470ecb04d0f5f6fcb0f", size = 1761892, upload-time = "2024-10-07T19:24:10.264Z" },
+    { url = "https://files.pythonhosted.org/packages/52/93/eac95ff229049a6901bc84fec6908a5124b8a0b7c26ea766b3b8a5debd22/black-24.10.0-cp312-cp312-win_amd64.whl", hash = "sha256:30d2c30dc5139211dda799758559d1b049f7f14c580c409d6ad925b74a4208a8", size = 1434796, upload-time = "2024-10-07T19:25:06.239Z" },
+    { url = "https://files.pythonhosted.org/packages/d0/a0/a993f58d4ecfba035e61fca4e9f64a2ecae838fc9f33ab798c62173ed75c/black-24.10.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:1cbacacb19e922a1d75ef2b6ccaefcd6e93a2c05ede32f06a21386a04cedb981", size = 1643986, upload-time = "2024-10-07T19:28:50.684Z" },
+    { url = "https://files.pythonhosted.org/packages/37/d5/602d0ef5dfcace3fb4f79c436762f130abd9ee8d950fa2abdbf8bbc555e0/black-24.10.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:1f93102e0c5bb3907451063e08b9876dbeac810e7da5a8bfb7aeb5a9ef89066b", size = 1448085, upload-time = "2024-10-07T19:28:12.093Z" },
+    { url = "https://files.pythonhosted.org/packages/47/6d/a3a239e938960df1a662b93d6230d4f3e9b4a22982d060fc38c42f45a56b/black-24.10.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:ddacb691cdcdf77b96f549cf9591701d8db36b2f19519373d60d31746068dbf2", size = 1760928, upload-time = "2024-10-07T19:24:15.233Z" },
+    { url = "https://files.pythonhosted.org/packages/dd/cf/af018e13b0eddfb434df4d9cd1b2b7892bab119f7a20123e93f6910982e8/black-24.10.0-cp313-cp313-win_amd64.whl", hash = "sha256:680359d932801c76d2e9c9068d05c6b107f2584b2a5b88831c83962eb9984c1b", size = 1436875, upload-time = "2024-10-07T19:24:42.762Z" },
+    { url = "https://files.pythonhosted.org/packages/8d/a7/4b27c50537ebca8bec139b872861f9d2bf501c5ec51fcf897cb924d9e264/black-24.10.0-py3-none-any.whl", hash = "sha256:3bb2b7a1f7b685f85b11fed1ef10f8a9148bceb49853e47a294a3dd963c1dd7d", size = 206898, upload-time = "2024-10-07T19:20:48.317Z" },
+]
+
+[[package]]
+name = "blake3"
+version = "1.0.5"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/e7/08/22b6326dbe002ca77c92082b37b14a935003897b0e3eed025da92c700751/blake3-1.0.5.tar.gz", hash = "sha256:7bac73f393a67ea6d5ac32e4a45d39c184487c89c712ab3ed839c1a51ed82259", size = 115140, upload-time = "2025-05-19T20:08:29.911Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8f/a4/7ea6cb45d8ce36b05dd01cc35a1bf9921c07d36dc56869e461f0e832ca76/blake3-1.0.5-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:73dd1bfc802e2343113805d104b9600e794bf700c844f05dda86a9a05c0e7c41", size = 345971, upload-time = "2025-05-19T20:07:03.913Z" },
+    { url = "https://files.pythonhosted.org/packages/13/09/87c56b1d3113e1381178e2ff386ac58d32b23c65b20054ce4b8de59be93d/blake3-1.0.5-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:d4e53332a5db53a652395f5e56c72fb81c7e584a192e6931a4eb3f9b32edcf0a", size = 328272, upload-time = "2025-05-19T20:07:05.158Z" },
+    { url = "https://files.pythonhosted.org/packages/c1/40/b81a25077df6fa1722be8c268732205281e12a244f9d5a15e9e72c2baa04/blake3-1.0.5-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:abe84cc2db3172bbade48dbf7b6029decb82e9cd382bc3cb783b8624a3ee55d8", size = 374599, upload-time = "2025-05-19T20:07:06.951Z" },
+    { url = "https://files.pythonhosted.org/packages/58/1b/8fc14c7b7ae116edc42f8e8cd5c21a99d8b68ab761e31347c4c9c6bbedf6/blake3-1.0.5-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:ca8935b4a733968a463d6445dc7cb0dcc09759c280df4847f020deec8fcaff27", size = 375221, upload-time = "2025-05-19T20:07:08.39Z" },
+    { url = "https://files.pythonhosted.org/packages/26/fa/879c74815dbb39e9b91d35b672b25c3547435e479b9aaf1a80191a86f3f4/blake3-1.0.5-cp312-cp312-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:12e5c722ef966f2b8df0d4024e6f4afd4c466bb0dcd3f8f671fad6cb5dab6a3e", size = 445913, upload-time = "2025-05-19T20:07:09.698Z" },
+    { url = "https://files.pythonhosted.org/packages/ce/91/e335f22765d7e80fd5aa6a25b2f2f5f0c5d649049f88d0c8ac1f6a8c431d/blake3-1.0.5-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:15ecd628f824d5591a1958babd4217749f1facd3945f33a14c3e5fbb52ffb922", size = 509907, upload-time = "2025-05-19T20:07:11.023Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/ec/c1676c275592efdb3a6e4489d0f5e029d38565593466ba70c42b73e76b1a/blake3-1.0.5-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:a12b12df3c40089bf2785c333f8f1161b2a66ecacb44828de9fbf2868037934b", size = 395611, upload-time = "2025-05-19T20:07:12.815Z" },
+    { url = "https://files.pythonhosted.org/packages/5c/04/a86bfb3c20e859e43ead0b13be59afd98feb166ea929e76fa3d190f65f6e/blake3-1.0.5-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f39e8d36e33f413938230683f192f0565f44ee2b050ad92fb94b343706f3df55", size = 384757, upload-time = "2025-05-19T20:07:14.122Z" },
+    { url = "https://files.pythonhosted.org/packages/6b/bf/93ce719f88b48d5bcdf2f765789a5a955ea6a02a33f310321508c8421ad6/blake3-1.0.5-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:7083e1b2cfb737c812e20d790c232c38045c7bfe37ef02526f395d491f90f213", size = 551032, upload-time = "2025-05-19T20:07:15.56Z" },
+    { url = "https://files.pythonhosted.org/packages/13/99/a2e644e0a2039977beb67abbc1f48f6f6c7e0f0c345665811cfa2880b196/blake3-1.0.5-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:21240932fc914fd719e2d33297f29742c28a31d8a96cb666ec4679bf2c35aa48", size = 555543, upload-time = "2025-05-19T20:07:17.056Z" },
+    { url = "https://files.pythonhosted.org/packages/45/15/80d9b2866af5d7ec4c665bb961b16d3db9a9527a80de78e44b828129d51f/blake3-1.0.5-cp312-cp312-win32.whl", hash = "sha256:cba3e6d12bd310b5ff4970daddd7e77a0ca383678e1f0a1ec414d4c7cb083f9d", size = 234714, upload-time = "2025-05-19T20:07:18.321Z" },
+    { url = "https://files.pythonhosted.org/packages/09/a5/76cd4402c685ad1d336351f22483bc2ecd48e5604ba5f5ad340e22b8703a/blake3-1.0.5-cp312-cp312-win_amd64.whl", hash = "sha256:adb54b8bfe4fb2e8106b3a1bddc3614d2de555d2b657861068160176ff723eb0", size = 222127, upload-time = "2025-05-19T20:07:19.579Z" },
+    { url = "https://files.pythonhosted.org/packages/e0/88/6d3a1523f748a10841894706cc34f8293c942aa6e3bcb9f7ce26daccffe6/blake3-1.0.5-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:53d3469f99d868c065a202e1e6ba52beb715123706bb2019d0fc00f703bb95ef", size = 345629, upload-time = "2025-05-19T20:07:20.956Z" },
+    { url = "https://files.pythonhosted.org/packages/ff/20/b579b052ae5c37f007015d282f7ff3bd9052e1d713274498807c9d81fee4/blake3-1.0.5-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:ee4517f925717bab87061f5c3fde7c669609da50c9ec4ea86c9239302b31b198", size = 327951, upload-time = "2025-05-19T20:07:22.33Z" },
+    { url = "https://files.pythonhosted.org/packages/70/fd/d387e5a1dd987bff808b67feca806005d4187f2766a60a2aa5649367b629/blake3-1.0.5-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:db12ab293cd55d827829a5e96dcd348ad78aba777dbb7139883cb3bf1f724bcb", size = 373629, upload-time = "2025-05-19T20:07:23.633Z" },
+    { url = "https://files.pythonhosted.org/packages/a1/a9/5dc9dcc31d9b6ba127a7d27b15ff47b88e5d59821b20343306ae44a911c2/blake3-1.0.5-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:5e9c26b9bc02ed039a67227cb643548f52226e48c2a68fe3a864cf3f204c5d2e", size = 374603, upload-time = "2025-05-19T20:07:24.871Z" },
+    { url = "https://files.pythonhosted.org/packages/39/2f/411beb9c70e25bf5a2b1a7c5bbe6da620dcd0e4f91a93eff1bd09fae9e9b/blake3-1.0.5-cp313-cp313-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:24f6c9957973446bbafe0b93b50d1cd07fe31227d7a5e46a4da8d78ccf882dc1", size = 445504, upload-time = "2025-05-19T20:07:26.193Z" },
+    { url = "https://files.pythonhosted.org/packages/7a/2a/c16d4754805eed680e95307e46393c2d640f9ff060462c319ca5603ceddd/blake3-1.0.5-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:71bdb08e6425da9a13135dfa9a9554438b2ba90aa97fe43f385b7e89781124f3", size = 509906, upload-time = "2025-05-19T20:07:27.509Z" },
+    { url = "https://files.pythonhosted.org/packages/c1/35/b09914fa19d9688bcc63ea1d0b1cb2aea29d99c82ec02e5ef07e1e395f7d/blake3-1.0.5-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:344ae90921f68b4ce60a15ea5b5e6410eba5780e0b7f350b69768772176a10de", size = 395127, upload-time = "2025-05-19T20:07:28.816Z" },
+    { url = "https://files.pythonhosted.org/packages/93/a2/90cb6cf880c708f38469890fd38bd112cab9af81ee8d5d6cece2e04be595/blake3-1.0.5-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:83dacc3e029672152240a93e81c9ee02fca599785cffe5e3d2c864aef582ec2e", size = 383970, upload-time = "2025-05-19T20:07:30.046Z" },
+    { url = "https://files.pythonhosted.org/packages/8e/11/01d43d9129a837ffb05b8c5cef4542a1680e31e1e036504066e3e2b27218/blake3-1.0.5-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:6e9a1083e1dcce1155aac2288a01a1031b2bfaf17e210a70fb9aefd9454bcac9", size = 550036, upload-time = "2025-05-19T20:07:31.364Z" },
+    { url = "https://files.pythonhosted.org/packages/e3/47/9eb21dac9c78fefd52475d235e48c703122f58cd760f2696e6250dabd1a9/blake3-1.0.5-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:b0d5c2f30f542d855dccf71a2bf59ff8c92b321c573fe4538be7aec635e4a11c", size = 555057, upload-time = "2025-05-19T20:07:32.657Z" },
+    { url = "https://files.pythonhosted.org/packages/82/c7/1ced9a0c895e114d0c280b882be39131931a88fb5d4fbe5eb3b10e96be4a/blake3-1.0.5-cp313-cp313-win32.whl", hash = "sha256:b3425aca2799ba992750f364de74cefed932d93e54e62b3b450ac33bf8269eeb", size = 234156, upload-time = "2025-05-19T20:07:33.961Z" },
+    { url = "https://files.pythonhosted.org/packages/c8/57/2d18ee7b155e1530e2ad8d8bbf9d01789c2c14013b14257814f9078e2b1d/blake3-1.0.5-cp313-cp313-win_amd64.whl", hash = "sha256:15981940f96691d08f2c4593a0153b720a57fedb32799ba96d147dc54a3f7ceb", size = 221797, upload-time = "2025-05-19T20:07:35.286Z" },
+    { url = "https://files.pythonhosted.org/packages/12/f8/ae5cf4e0d305ac055e034dd688fd85ed51c69e0218faeb9c92ad162d9dad/blake3-1.0.5-cp313-cp313t-macosx_10_12_x86_64.whl", hash = "sha256:402a44fd0e8c85d91342e397a23e4b36809bc2f11c859b6b33ba5798a31b46c5", size = 345738, upload-time = "2025-05-19T20:07:36.485Z" },
+    { url = "https://files.pythonhosted.org/packages/e7/f5/0b6032e29eee5b1d98f0855717c742c66b64e1405fb1eae466a944f347da/blake3-1.0.5-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:1eb5b09f7b11e3f04efdbaf0231f7d55d233703264bb654b2d84f94d2c9f86c5", size = 328064, upload-time = "2025-05-19T20:07:37.824Z" },
+    { url = "https://files.pythonhosted.org/packages/68/1e/6fa940402007eb6c7425efb28f03b085bd20c0a934306055ac8d5f6cecdd/blake3-1.0.5-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:36c072cbc196a17e92a039f76917356a92a0e37b5af1d8b1a5e02c5ee8cf5677", size = 373780, upload-time = "2025-05-19T20:07:39.171Z" },
+    { url = "https://files.pythonhosted.org/packages/93/52/af32617c297df04708b9ab18f496466c347959bc48bacc9bae185d34d830/blake3-1.0.5-cp313-cp313t-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:4084a9d3a5ed301fd8b97bed502cae341c89f8fcb891b4abf793f73b71a80c1c", size = 374567, upload-time = "2025-05-19T20:07:40.973Z" },
+    { url = "https://files.pythonhosted.org/packages/0f/ea/c5ef763aa808c2467b2cf78b4bbf85a4836ec1f68975121353af5bea7888/blake3-1.0.5-cp313-cp313t-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:7ec1c8d9da5e4184337af2d8e4403b97088aa64d6d72eeca5e980ee3e283ec75", size = 446570, upload-time = "2025-05-19T20:07:42.591Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/fe/abeb8dd2ed5a90b75e2eac318643df66c03ad72e5c3df37c3cc36d96bed9/blake3-1.0.5-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d3b56b7df6de580a71cb2c5b24a87732d6ccf225399e70370ae976ecda39c5bc", size = 509702, upload-time = "2025-05-19T20:07:44.122Z" },
+    { url = "https://files.pythonhosted.org/packages/56/1f/2062a84b46a5d762b0129109155afbc8154616031e647bfd9c54658b7380/blake3-1.0.5-cp313-cp313t-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:4683e46a056b23a550a58e50b6d4ba278888aa435951729615a72e50ca36674b", size = 395541, upload-time = "2025-05-19T20:07:45.423Z" },
+    { url = "https://files.pythonhosted.org/packages/18/d1/6e1ba4be82f70df6014d6646aac68c67b3890778a88de13beb668a6adf45/blake3-1.0.5-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:5cb1f16cf65c799d551b62205bc361f84501c78c5bad1e136c8fd0b719a27e4b", size = 384282, upload-time = "2025-05-19T20:07:46.686Z" },
+    { url = "https://files.pythonhosted.org/packages/98/8c/4f5dffa401bdd7d75533597045fb2a5bb853b60736ef294b8b4362a172aa/blake3-1.0.5-cp313-cp313t-musllinux_1_1_aarch64.whl", hash = "sha256:83c8f2141caa97dda6109e91304f53c973358a70596c78947795d5dcd0dfe2b6", size = 549835, upload-time = "2025-05-19T20:07:48.051Z" },
+    { url = "https://files.pythonhosted.org/packages/a9/b0/f3ebf5c88e88c1787e316640808a50f4371bdfbed01b8f061ce888d01e7d/blake3-1.0.5-cp313-cp313t-musllinux_1_1_x86_64.whl", hash = "sha256:7d3941c3bb28d5287467f0ee3b1e15682d4664b6eddf156ad556475523737f95", size = 555360, upload-time = "2025-05-19T20:07:49.388Z" },
+    { url = "https://files.pythonhosted.org/packages/e5/95/3c0bc68accf45814072dbc73800b177200ffe833c72c3b587f2c20d15f50/blake3-1.0.5-cp313-cp313t-win32.whl", hash = "sha256:2fe3464aa94abb8bfc395f98cf6455153f28aa9278526ecf71aed7dc8bdd3a72", size = 234039, upload-time = "2025-05-19T20:07:50.67Z" },
+    { url = "https://files.pythonhosted.org/packages/e9/da/1e552eb583a968280abc638f1a6473054215da6831d38467465432107130/blake3-1.0.5-cp313-cp313t-win_amd64.whl", hash = "sha256:efbf948b3c88c980e42d256d92e7d7e30089665b895e7c1e1f19e202fef464f4", size = 221006, upload-time = "2025-05-19T20:07:52.256Z" },
+]
+
+[[package]]
+name = "blinker"
+version = "1.9.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/21/28/9b3f50ce0e048515135495f198351908d99540d69bfdc8c1d15b73dc55ce/blinker-1.9.0.tar.gz", hash = "sha256:b4ce2265a7abece45e7cc896e98dbebe6cead56bcf805a3d23136d145f5445bf", size = 22460, upload-time = "2024-11-08T17:25:47.436Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/10/cb/f2ad4230dc2eb1a74edf38f1a38b9b52277f75bef262d8908e60d957e13c/blinker-1.9.0-py3-none-any.whl", hash = "sha256:ba0efaa9080b619ff2f3459d1d500c57bddea4a6b424b60a91141db6fd2f08bc", size = 8458, upload-time = "2024-11-08T17:25:46.184Z" },
+]
+
+[[package]]
+name = "boto3"
+version = "1.40.61"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "botocore" },
+    { name = "jmespath" },
+    { name = "s3transfer" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ed/f9/6ef8feb52c3cce5ec3967a535a6114b57ac7949fd166b0f3090c2b06e4e5/boto3-1.40.61.tar.gz", hash = "sha256:d6c56277251adf6c2bdd25249feae625abe4966831676689ff23b4694dea5b12", size = 111535, upload-time = "2025-10-28T19:26:57.247Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/61/24/3bf865b07d15fea85b63504856e137029b6acbc73762496064219cdb265d/boto3-1.40.61-py3-none-any.whl", hash = "sha256:6b9c57b2a922b5d8c17766e29ed792586a818098efe84def27c8f582b33f898c", size = 139321, upload-time = "2025-10-28T19:26:55.007Z" },
+]
+
+[[package]]
+name = "botocore"
+version = "1.40.61"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "jmespath" },
+    { name = "python-dateutil" },
+    { name = "urllib3" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/28/a3/81d3a47c2dbfd76f185d3b894f2ad01a75096c006a2dd91f237dca182188/botocore-1.40.61.tar.gz", hash = "sha256:a2487ad69b090f9cccd64cf07c7021cd80ee9c0655ad974f87045b02f3ef52cd", size = 14393956, upload-time = "2025-10-28T19:26:46.108Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/38/c5/f6ce561004db45f0b847c2cd9b19c67c6bf348a82018a48cb718be6b58b0/botocore-1.40.61-py3-none-any.whl", hash = "sha256:17ebae412692fd4824f99cde0f08d50126dc97954008e5ba2b522eb049238aa7", size = 14055973, upload-time = "2025-10-28T19:26:42.15Z" },
+]
+
+[[package]]
+name = "brotli"
+version = "1.2.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/f7/16/c92ca344d646e71a43b8bb353f0a6490d7f6e06210f8554c8f874e454285/brotli-1.2.0.tar.gz", hash = "sha256:e310f77e41941c13340a95976fe66a8a95b01e783d430eeaf7a2f87e0a57dd0a", size = 7388632, upload-time = "2025-11-05T18:39:42.86Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/11/ee/b0a11ab2315c69bb9b45a2aaed022499c9c24a205c3a49c3513b541a7967/brotli-1.2.0-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:35d382625778834a7f3061b15423919aa03e4f5da34ac8e02c074e4b75ab4f84", size = 861543, upload-time = "2025-11-05T18:38:24.183Z" },
+    { url = "https://files.pythonhosted.org/packages/e1/2f/29c1459513cd35828e25531ebfcbf3e92a5e49f560b1777a9af7203eb46e/brotli-1.2.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:7a61c06b334bd99bc5ae84f1eeb36bfe01400264b3c352f968c6e30a10f9d08b", size = 444288, upload-time = "2025-11-05T18:38:25.139Z" },
+    { url = "https://files.pythonhosted.org/packages/3d/6f/feba03130d5fceadfa3a1bb102cb14650798c848b1df2a808356f939bb16/brotli-1.2.0-cp312-cp312-manylinux2014_aarch64.manylinux_2_17_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:acec55bb7c90f1dfc476126f9711a8e81c9af7fb617409a9ee2953115343f08d", size = 1528071, upload-time = "2025-11-05T18:38:26.081Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/38/f3abb554eee089bd15471057ba85f47e53a44a462cfce265d9bf7088eb09/brotli-1.2.0-cp312-cp312-manylinux2014_ppc64le.manylinux_2_17_ppc64le.manylinux_2_28_ppc64le.whl", hash = "sha256:260d3692396e1895c5034f204f0db022c056f9e2ac841593a4cf9426e2a3faca", size = 1626913, upload-time = "2025-11-05T18:38:27.284Z" },
+    { url = "https://files.pythonhosted.org/packages/03/a7/03aa61fbc3c5cbf99b44d158665f9b0dd3d8059be16c460208d9e385c837/brotli-1.2.0-cp312-cp312-manylinux2014_x86_64.manylinux_2_17_x86_64.whl", hash = "sha256:072e7624b1fc4d601036ab3f4f27942ef772887e876beff0301d261210bca97f", size = 1419762, upload-time = "2025-11-05T18:38:28.295Z" },
+    { url = "https://files.pythonhosted.org/packages/21/1b/0374a89ee27d152a5069c356c96b93afd1b94eae83f1e004b57eb6ce2f10/brotli-1.2.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:adedc4a67e15327dfdd04884873c6d5a01d3e3b6f61406f99b1ed4865a2f6d28", size = 1484494, upload-time = "2025-11-05T18:38:29.29Z" },
+    { url = "https://files.pythonhosted.org/packages/cf/57/69d4fe84a67aef4f524dcd075c6eee868d7850e85bf01d778a857d8dbe0a/brotli-1.2.0-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:7a47ce5c2288702e09dc22a44d0ee6152f2c7eda97b3c8482d826a1f3cfc7da7", size = 1593302, upload-time = "2025-11-05T18:38:30.639Z" },
+    { url = "https://files.pythonhosted.org/packages/d5/3b/39e13ce78a8e9a621c5df3aeb5fd181fcc8caba8c48a194cd629771f6828/brotli-1.2.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:af43b8711a8264bb4e7d6d9a6d004c3a2019c04c01127a868709ec29962b6036", size = 1487913, upload-time = "2025-11-05T18:38:31.618Z" },
+    { url = "https://files.pythonhosted.org/packages/62/28/4d00cb9bd76a6357a66fcd54b4b6d70288385584063f4b07884c1e7286ac/brotli-1.2.0-cp312-cp312-win32.whl", hash = "sha256:e99befa0b48f3cd293dafeacdd0d191804d105d279e0b387a32054c1180f3161", size = 334362, upload-time = "2025-11-05T18:38:32.939Z" },
+    { url = "https://files.pythonhosted.org/packages/1c/4e/bc1dcac9498859d5e353c9b153627a3752868a9d5f05ce8dedd81a2354ab/brotli-1.2.0-cp312-cp312-win_amd64.whl", hash = "sha256:b35c13ce241abdd44cb8ca70683f20c0c079728a36a996297adb5334adfc1c44", size = 369115, upload-time = "2025-11-05T18:38:33.765Z" },
+    { url = "https://files.pythonhosted.org/packages/6c/d4/4ad5432ac98c73096159d9ce7ffeb82d151c2ac84adcc6168e476bb54674/brotli-1.2.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:9e5825ba2c9998375530504578fd4d5d1059d09621a02065d1b6bfc41a8e05ab", size = 861523, upload-time = "2025-11-05T18:38:34.67Z" },
+    { url = "https://files.pythonhosted.org/packages/91/9f/9cc5bd03ee68a85dc4bc89114f7067c056a3c14b3d95f171918c088bf88d/brotli-1.2.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:0cf8c3b8ba93d496b2fae778039e2f5ecc7cff99df84df337ca31d8f2252896c", size = 444289, upload-time = "2025-11-05T18:38:35.6Z" },
+    { url = "https://files.pythonhosted.org/packages/2e/b6/fe84227c56a865d16a6614e2c4722864b380cb14b13f3e6bef441e73a85a/brotli-1.2.0-cp313-cp313-manylinux2014_aarch64.manylinux_2_17_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:c8565e3cdc1808b1a34714b553b262c5de5fbda202285782173ec137fd13709f", size = 1528076, upload-time = "2025-11-05T18:38:36.639Z" },
+    { url = "https://files.pythonhosted.org/packages/55/de/de4ae0aaca06c790371cf6e7ee93a024f6b4bb0568727da8c3de112e726c/brotli-1.2.0-cp313-cp313-manylinux2014_ppc64le.manylinux_2_17_ppc64le.manylinux_2_28_ppc64le.whl", hash = "sha256:26e8d3ecb0ee458a9804f47f21b74845cc823fd1bb19f02272be70774f56e2a6", size = 1626880, upload-time = "2025-11-05T18:38:37.623Z" },
+    { url = "https://files.pythonhosted.org/packages/5f/16/a1b22cbea436642e071adcaf8d4b350a2ad02f5e0ad0da879a1be16188a0/brotli-1.2.0-cp313-cp313-manylinux2014_x86_64.manylinux_2_17_x86_64.whl", hash = "sha256:67a91c5187e1eec76a61625c77a6c8c785650f5b576ca732bd33ef58b0dff49c", size = 1419737, upload-time = "2025-11-05T18:38:38.729Z" },
+    { url = "https://files.pythonhosted.org/packages/46/63/c968a97cbb3bdbf7f974ef5a6ab467a2879b82afbc5ffb65b8acbb744f95/brotli-1.2.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:4ecdb3b6dc36e6d6e14d3a1bdc6c1057c8cbf80db04031d566eb6080ce283a48", size = 1484440, upload-time = "2025-11-05T18:38:39.916Z" },
+    { url = "https://files.pythonhosted.org/packages/06/9d/102c67ea5c9fc171f423e8399e585dabea29b5bc79b05572891e70013cdd/brotli-1.2.0-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:3e1b35d56856f3ed326b140d3c6d9db91740f22e14b06e840fe4bb1923439a18", size = 1593313, upload-time = "2025-11-05T18:38:41.24Z" },
+    { url = "https://files.pythonhosted.org/packages/9e/4a/9526d14fa6b87bc827ba1755a8440e214ff90de03095cacd78a64abe2b7d/brotli-1.2.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:54a50a9dad16b32136b2241ddea9e4df159b41247b2ce6aac0b3276a66a8f1e5", size = 1487945, upload-time = "2025-11-05T18:38:42.277Z" },
+    { url = "https://files.pythonhosted.org/packages/5b/e8/3fe1ffed70cbef83c5236166acaed7bb9c766509b157854c80e2f766b38c/brotli-1.2.0-cp313-cp313-win32.whl", hash = "sha256:1b1d6a4efedd53671c793be6dd760fcf2107da3a52331ad9ea429edf0902f27a", size = 334368, upload-time = "2025-11-05T18:38:43.345Z" },
+    { url = "https://files.pythonhosted.org/packages/ff/91/e739587be970a113b37b821eae8097aac5a48e5f0eca438c22e4c7dd8648/brotli-1.2.0-cp313-cp313-win_amd64.whl", hash = "sha256:b63daa43d82f0cdabf98dee215b375b4058cce72871fd07934f179885aad16e8", size = 369116, upload-time = "2025-11-05T18:38:44.609Z" },
+    { url = "https://files.pythonhosted.org/packages/17/e1/298c2ddf786bb7347a1cd71d63a347a79e5712a7c0cba9e3c3458ebd976f/brotli-1.2.0-cp314-cp314-macosx_10_15_universal2.whl", hash = "sha256:6c12dad5cd04530323e723787ff762bac749a7b256a5bece32b2243dd5c27b21", size = 863080, upload-time = "2025-11-05T18:38:45.503Z" },
+    { url = "https://files.pythonhosted.org/packages/84/0c/aac98e286ba66868b2b3b50338ffbd85a35c7122e9531a73a37a29763d38/brotli-1.2.0-cp314-cp314-macosx_10_15_x86_64.whl", hash = "sha256:3219bd9e69868e57183316ee19c84e03e8f8b5a1d1f2667e1aa8c2f91cb061ac", size = 445453, upload-time = "2025-11-05T18:38:46.433Z" },
+    { url = "https://files.pythonhosted.org/packages/ec/f1/0ca1f3f99ae300372635ab3fe2f7a79fa335fee3d874fa7f9e68575e0e62/brotli-1.2.0-cp314-cp314-manylinux2014_aarch64.manylinux_2_17_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:963a08f3bebd8b75ac57661045402da15991468a621f014be54e50f53a58d19e", size = 1528168, upload-time = "2025-11-05T18:38:47.371Z" },
+    { url = "https://files.pythonhosted.org/packages/d6/a6/2ebfc8f766d46df8d3e65b880a2e220732395e6d7dc312c1e1244b0f074a/brotli-1.2.0-cp314-cp314-manylinux2014_ppc64le.manylinux_2_17_ppc64le.manylinux_2_28_ppc64le.whl", hash = "sha256:9322b9f8656782414b37e6af884146869d46ab85158201d82bab9abbcb971dc7", size = 1627098, upload-time = "2025-11-05T18:38:48.385Z" },
+    { url = "https://files.pythonhosted.org/packages/f3/2f/0976d5b097ff8a22163b10617f76b2557f15f0f39d6a0fe1f02b1a53e92b/brotli-1.2.0-cp314-cp314-manylinux2014_x86_64.manylinux_2_17_x86_64.whl", hash = "sha256:cf9cba6f5b78a2071ec6fb1e7bd39acf35071d90a81231d67e92d637776a6a63", size = 1419861, upload-time = "2025-11-05T18:38:49.372Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/97/d76df7176a2ce7616ff94c1fb72d307c9a30d2189fe877f3dd99af00ea5a/brotli-1.2.0-cp314-cp314-musllinux_1_2_aarch64.whl", hash = "sha256:7547369c4392b47d30a3467fe8c3330b4f2e0f7730e45e3103d7d636678a808b", size = 1484594, upload-time = "2025-11-05T18:38:50.655Z" },
+    { url = "https://files.pythonhosted.org/packages/d3/93/14cf0b1216f43df5609f5b272050b0abd219e0b54ea80b47cef9867b45e7/brotli-1.2.0-cp314-cp314-musllinux_1_2_ppc64le.whl", hash = "sha256:fc1530af5c3c275b8524f2e24841cbe2599d74462455e9bae5109e9ff42e9361", size = 1593455, upload-time = "2025-11-05T18:38:51.624Z" },
+    { url = "https://files.pythonhosted.org/packages/b3/73/3183c9e41ca755713bdf2cc1d0810df742c09484e2e1ddd693bee53877c1/brotli-1.2.0-cp314-cp314-musllinux_1_2_x86_64.whl", hash = "sha256:d2d085ded05278d1c7f65560aae97b3160aeb2ea2c0b3e26204856beccb60888", size = 1488164, upload-time = "2025-11-05T18:38:53.079Z" },
+    { url = "https://files.pythonhosted.org/packages/64/6a/0c78d8f3a582859236482fd9fa86a65a60328a00983006bcf6d83b7b2253/brotli-1.2.0-cp314-cp314-win32.whl", hash = "sha256:832c115a020e463c2f67664560449a7bea26b0c1fdd690352addad6d0a08714d", size = 339280, upload-time = "2025-11-05T18:38:54.02Z" },
+    { url = "https://files.pythonhosted.org/packages/f5/10/56978295c14794b2c12007b07f3e41ba26acda9257457d7085b0bb3bb90c/brotli-1.2.0-cp314-cp314-win_amd64.whl", hash = "sha256:e7c0af964e0b4e3412a0ebf341ea26ec767fa0b4cf81abb5e897c9338b5ad6a3", size = 375639, upload-time = "2025-11-05T18:38:55.67Z" },
+]
+
+[[package]]
+name = "bs4"
+version = "0.0.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "beautifulsoup4" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c9/aa/4acaf814ff901145da37332e05bb510452ebed97bc9602695059dd46ef39/bs4-0.0.2.tar.gz", hash = "sha256:a48685c58f50fe127722417bae83fe6badf500d54b55f7e39ffe43b798653925", size = 698, upload-time = "2024-01-17T18:15:47.371Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/51/bb/bf7aab772a159614954d84aa832c129624ba6c32faa559dfb200a534e50b/bs4-0.0.2-py2.py3-none-any.whl", hash = "sha256:abf8742c0805ef7f662dce4b51cca104cffe52b835238afc169142ab9b3fbccc", size = 1189, upload-time = "2024-01-17T18:15:48.613Z" },
+]
+
+[[package]]
+name = "cachetools"
+version = "5.5.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/6c/81/3747dad6b14fa2cf53fcf10548cf5aea6913e96fab41a3c198676f8948a5/cachetools-5.5.2.tar.gz", hash = "sha256:1a661caa9175d26759571b2e19580f9d6393969e5dfca11fdb1f947a23e640d4", size = 28380, upload-time = "2025-02-20T21:01:19.524Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/72/76/20fa66124dbe6be5cafeb312ece67de6b61dd91a0247d1ea13db4ebb33c2/cachetools-5.5.2-py3-none-any.whl", hash = "sha256:d26a22bcc62eb95c3beabd9f1ee5e820d3d2704fe2967cbe350e20c8ffcd3f0a", size = 10080, upload-time = "2025-02-20T21:01:16.647Z" },
+]
+
+[[package]]
+name = "certifi"
+version = "2025.4.26"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/e8/9e/c05b3920a3b7d20d3d3310465f50348e5b3694f4f88c6daf736eef3024c4/certifi-2025.4.26.tar.gz", hash = "sha256:0a816057ea3cdefcef70270d2c515e4506bbc954f417fa5ade2021213bb8f0c6", size = 160705, upload-time = "2025-04-26T02:12:29.51Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/4a/7e/3db2bd1b1f9e95f7cddca6d6e75e2f2bd9f51b1246e546d88addca0106bd/certifi-2025.4.26-py3-none-any.whl", hash = "sha256:30350364dfe371162649852c63336a15c70c6510c2ad5015b21c2345311805f3", size = 159618, upload-time = "2025-04-26T02:12:27.662Z" },
+]
+
+[[package]]
+name = "cffi"
+version = "1.17.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "pycparser" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/fc/97/c783634659c2920c3fc70419e3af40972dbaf758daa229a7d6ea6135c90d/cffi-1.17.1.tar.gz", hash = "sha256:1c39c6016c32bc48dd54561950ebd6836e1670f2ae46128f67cf49e789c52824", size = 516621, upload-time = "2024-09-04T20:45:21.852Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/5a/84/e94227139ee5fb4d600a7a4927f322e1d4aea6fdc50bd3fca8493caba23f/cffi-1.17.1-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:805b4371bf7197c329fcb3ead37e710d1bca9da5d583f5073b799d5c5bd1eee4", size = 183178, upload-time = "2024-09-04T20:44:12.232Z" },
+    { url = "https://files.pythonhosted.org/packages/da/ee/fb72c2b48656111c4ef27f0f91da355e130a923473bf5ee75c5643d00cca/cffi-1.17.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:733e99bc2df47476e3848417c5a4540522f234dfd4ef3ab7fafdf555b082ec0c", size = 178840, upload-time = "2024-09-04T20:44:13.739Z" },
+    { url = "https://files.pythonhosted.org/packages/cc/b6/db007700f67d151abadf508cbfd6a1884f57eab90b1bb985c4c8c02b0f28/cffi-1.17.1-cp312-cp312-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:1257bdabf294dceb59f5e70c64a3e2f462c30c7ad68092d01bbbfb1c16b1ba36", size = 454803, upload-time = "2024-09-04T20:44:15.231Z" },
+    { url = "https://files.pythonhosted.org/packages/1a/df/f8d151540d8c200eb1c6fba8cd0dfd40904f1b0682ea705c36e6c2e97ab3/cffi-1.17.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:da95af8214998d77a98cc14e3a3bd00aa191526343078b530ceb0bd710fb48a5", size = 478850, upload-time = "2024-09-04T20:44:17.188Z" },
+    { url = "https://files.pythonhosted.org/packages/28/c0/b31116332a547fd2677ae5b78a2ef662dfc8023d67f41b2a83f7c2aa78b1/cffi-1.17.1-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d63afe322132c194cf832bfec0dc69a99fb9bb6bbd550f161a49e9e855cc78ff", size = 485729, upload-time = "2024-09-04T20:44:18.688Z" },
+    { url = "https://files.pythonhosted.org/packages/91/2b/9a1ddfa5c7f13cab007a2c9cc295b70fbbda7cb10a286aa6810338e60ea1/cffi-1.17.1-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f79fc4fc25f1c8698ff97788206bb3c2598949bfe0fef03d299eb1b5356ada99", size = 471256, upload-time = "2024-09-04T20:44:20.248Z" },
+    { url = "https://files.pythonhosted.org/packages/b2/d5/da47df7004cb17e4955df6a43d14b3b4ae77737dff8bf7f8f333196717bf/cffi-1.17.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:b62ce867176a75d03a665bad002af8e6d54644fad99a3c70905c543130e39d93", size = 479424, upload-time = "2024-09-04T20:44:21.673Z" },
+    { url = "https://files.pythonhosted.org/packages/0b/ac/2a28bcf513e93a219c8a4e8e125534f4f6db03e3179ba1c45e949b76212c/cffi-1.17.1-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:386c8bf53c502fff58903061338ce4f4950cbdcb23e2902d86c0f722b786bbe3", size = 484568, upload-time = "2024-09-04T20:44:23.245Z" },
+    { url = "https://files.pythonhosted.org/packages/d4/38/ca8a4f639065f14ae0f1d9751e70447a261f1a30fa7547a828ae08142465/cffi-1.17.1-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:4ceb10419a9adf4460ea14cfd6bc43d08701f0835e979bf821052f1805850fe8", size = 488736, upload-time = "2024-09-04T20:44:24.757Z" },
+    { url = "https://files.pythonhosted.org/packages/86/c5/28b2d6f799ec0bdecf44dced2ec5ed43e0eb63097b0f58c293583b406582/cffi-1.17.1-cp312-cp312-win32.whl", hash = "sha256:a08d7e755f8ed21095a310a693525137cfe756ce62d066e53f502a83dc550f65", size = 172448, upload-time = "2024-09-04T20:44:26.208Z" },
+    { url = "https://files.pythonhosted.org/packages/50/b9/db34c4755a7bd1cb2d1603ac3863f22bcecbd1ba29e5ee841a4bc510b294/cffi-1.17.1-cp312-cp312-win_amd64.whl", hash = "sha256:51392eae71afec0d0c8fb1a53b204dbb3bcabcb3c9b807eedf3e1e6ccf2de903", size = 181976, upload-time = "2024-09-04T20:44:27.578Z" },
+    { url = "https://files.pythonhosted.org/packages/8d/f8/dd6c246b148639254dad4d6803eb6a54e8c85c6e11ec9df2cffa87571dbe/cffi-1.17.1-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:f3a2b4222ce6b60e2e8b337bb9596923045681d71e5a082783484d845390938e", size = 182989, upload-time = "2024-09-04T20:44:28.956Z" },
+    { url = "https://files.pythonhosted.org/packages/8b/f1/672d303ddf17c24fc83afd712316fda78dc6fce1cd53011b839483e1ecc8/cffi-1.17.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:0984a4925a435b1da406122d4d7968dd861c1385afe3b45ba82b750f229811e2", size = 178802, upload-time = "2024-09-04T20:44:30.289Z" },
+    { url = "https://files.pythonhosted.org/packages/0e/2d/eab2e858a91fdff70533cab61dcff4a1f55ec60425832ddfdc9cd36bc8af/cffi-1.17.1-cp313-cp313-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d01b12eeeb4427d3110de311e1774046ad344f5b1a7403101878976ecd7a10f3", size = 454792, upload-time = "2024-09-04T20:44:32.01Z" },
+    { url = "https://files.pythonhosted.org/packages/75/b2/fbaec7c4455c604e29388d55599b99ebcc250a60050610fadde58932b7ee/cffi-1.17.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:706510fe141c86a69c8ddc029c7910003a17353970cff3b904ff0686a5927683", size = 478893, upload-time = "2024-09-04T20:44:33.606Z" },
+    { url = "https://files.pythonhosted.org/packages/4f/b7/6e4a2162178bf1935c336d4da8a9352cccab4d3a5d7914065490f08c0690/cffi-1.17.1-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:de55b766c7aa2e2a3092c51e0483d700341182f08e67c63630d5b6f200bb28e5", size = 485810, upload-time = "2024-09-04T20:44:35.191Z" },
+    { url = "https://files.pythonhosted.org/packages/c7/8a/1d0e4a9c26e54746dc08c2c6c037889124d4f59dffd853a659fa545f1b40/cffi-1.17.1-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:c59d6e989d07460165cc5ad3c61f9fd8f1b4796eacbd81cee78957842b834af4", size = 471200, upload-time = "2024-09-04T20:44:36.743Z" },
+    { url = "https://files.pythonhosted.org/packages/26/9f/1aab65a6c0db35f43c4d1b4f580e8df53914310afc10ae0397d29d697af4/cffi-1.17.1-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:dd398dbc6773384a17fe0d3e7eeb8d1a21c2200473ee6806bb5e6a8e62bb73dd", size = 479447, upload-time = "2024-09-04T20:44:38.492Z" },
+    { url = "https://files.pythonhosted.org/packages/5f/e4/fb8b3dd8dc0e98edf1135ff067ae070bb32ef9d509d6cb0f538cd6f7483f/cffi-1.17.1-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:3edc8d958eb099c634dace3c7e16560ae474aa3803a5df240542b305d14e14ed", size = 484358, upload-time = "2024-09-04T20:44:40.046Z" },
+    { url = "https://files.pythonhosted.org/packages/f1/47/d7145bf2dc04684935d57d67dff9d6d795b2ba2796806bb109864be3a151/cffi-1.17.1-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:72e72408cad3d5419375fc87d289076ee319835bdfa2caad331e377589aebba9", size = 488469, upload-time = "2024-09-04T20:44:41.616Z" },
+    { url = "https://files.pythonhosted.org/packages/bf/ee/f94057fa6426481d663b88637a9a10e859e492c73d0384514a17d78ee205/cffi-1.17.1-cp313-cp313-win32.whl", hash = "sha256:e03eab0a8677fa80d646b5ddece1cbeaf556c313dcfac435ba11f107ba117b5d", size = 172475, upload-time = "2024-09-04T20:44:43.733Z" },
+    { url = "https://files.pythonhosted.org/packages/7c/fc/6a8cb64e5f0324877d503c854da15d76c1e50eb722e320b15345c4d0c6de/cffi-1.17.1-cp313-cp313-win_amd64.whl", hash = "sha256:f6a16c31041f09ead72d69f583767292f750d24913dadacf5756b966aacb3f1a", size = 182009, upload-time = "2024-09-04T20:44:45.309Z" },
+]
+
+[[package]]
+name = "cfgv"
+version = "3.4.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/11/74/539e56497d9bd1d484fd863dd69cbbfa653cd2aa27abfe35653494d85e94/cfgv-3.4.0.tar.gz", hash = "sha256:e52591d4c5f5dead8e0f673fb16db7949d2cfb3f7da4582893288f0ded8fe560", size = 7114, upload-time = "2023-08-12T20:38:17.776Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c5/55/51844dd50c4fc7a33b653bfaba4c2456f06955289ca770a5dbd5fd267374/cfgv-3.4.0-py2.py3-none-any.whl", hash = "sha256:b7265b1f29fd3316bfcd2b330d63d024f2bfd8bcb8b0272f8e19a504856c48f9", size = 7249, upload-time = "2023-08-12T20:38:16.269Z" },
+]
+
+[[package]]
+name = "charset-normalizer"
+version = "3.4.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/e4/33/89c2ced2b67d1c2a61c19c6751aa8902d46ce3dacb23600a283619f5a12d/charset_normalizer-3.4.2.tar.gz", hash = "sha256:5baececa9ecba31eff645232d59845c07aa030f0c81ee70184a90d35099a0e63", size = 126367, upload-time = "2025-05-02T08:34:42.01Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d7/a4/37f4d6035c89cac7930395a35cc0f1b872e652eaafb76a6075943754f095/charset_normalizer-3.4.2-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:0c29de6a1a95f24b9a1aa7aefd27d2487263f00dfd55a77719b530788f75cff7", size = 199936, upload-time = "2025-05-02T08:32:33.712Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/8a/1a5e33b73e0d9287274f899d967907cd0bf9c343e651755d9307e0dbf2b3/charset_normalizer-3.4.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:cddf7bd982eaa998934a91f69d182aec997c6c468898efe6679af88283b498d3", size = 143790, upload-time = "2025-05-02T08:32:35.768Z" },
+    { url = "https://files.pythonhosted.org/packages/66/52/59521f1d8e6ab1482164fa21409c5ef44da3e9f653c13ba71becdd98dec3/charset_normalizer-3.4.2-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:fcbe676a55d7445b22c10967bceaaf0ee69407fbe0ece4d032b6eb8d4565982a", size = 153924, upload-time = "2025-05-02T08:32:37.284Z" },
+    { url = "https://files.pythonhosted.org/packages/86/2d/fb55fdf41964ec782febbf33cb64be480a6b8f16ded2dbe8db27a405c09f/charset_normalizer-3.4.2-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:d41c4d287cfc69060fa91cae9683eacffad989f1a10811995fa309df656ec214", size = 146626, upload-time = "2025-05-02T08:32:38.803Z" },
+    { url = "https://files.pythonhosted.org/packages/8c/73/6ede2ec59bce19b3edf4209d70004253ec5f4e319f9a2e3f2f15601ed5f7/charset_normalizer-3.4.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4e594135de17ab3866138f496755f302b72157d115086d100c3f19370839dd3a", size = 148567, upload-time = "2025-05-02T08:32:40.251Z" },
+    { url = "https://files.pythonhosted.org/packages/09/14/957d03c6dc343c04904530b6bef4e5efae5ec7d7990a7cbb868e4595ee30/charset_normalizer-3.4.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:cf713fe9a71ef6fd5adf7a79670135081cd4431c2943864757f0fa3a65b1fafd", size = 150957, upload-time = "2025-05-02T08:32:41.705Z" },
+    { url = "https://files.pythonhosted.org/packages/0d/c8/8174d0e5c10ccebdcb1b53cc959591c4c722a3ad92461a273e86b9f5a302/charset_normalizer-3.4.2-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:a370b3e078e418187da8c3674eddb9d983ec09445c99a3a263c2011993522981", size = 145408, upload-time = "2025-05-02T08:32:43.709Z" },
+    { url = "https://files.pythonhosted.org/packages/58/aa/8904b84bc8084ac19dc52feb4f5952c6df03ffb460a887b42615ee1382e8/charset_normalizer-3.4.2-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:a955b438e62efdf7e0b7b52a64dc5c3396e2634baa62471768a64bc2adb73d5c", size = 153399, upload-time = "2025-05-02T08:32:46.197Z" },
+    { url = "https://files.pythonhosted.org/packages/c2/26/89ee1f0e264d201cb65cf054aca6038c03b1a0c6b4ae998070392a3ce605/charset_normalizer-3.4.2-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:7222ffd5e4de8e57e03ce2cef95a4c43c98fcb72ad86909abdfc2c17d227fc1b", size = 156815, upload-time = "2025-05-02T08:32:48.105Z" },
+    { url = "https://files.pythonhosted.org/packages/fd/07/68e95b4b345bad3dbbd3a8681737b4338ff2c9df29856a6d6d23ac4c73cb/charset_normalizer-3.4.2-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:bee093bf902e1d8fc0ac143c88902c3dfc8941f7ea1d6a8dd2bcb786d33db03d", size = 154537, upload-time = "2025-05-02T08:32:49.719Z" },
+    { url = "https://files.pythonhosted.org/packages/77/1a/5eefc0ce04affb98af07bc05f3bac9094513c0e23b0562d64af46a06aae4/charset_normalizer-3.4.2-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:dedb8adb91d11846ee08bec4c8236c8549ac721c245678282dcb06b221aab59f", size = 149565, upload-time = "2025-05-02T08:32:51.404Z" },
+    { url = "https://files.pythonhosted.org/packages/37/a0/2410e5e6032a174c95e0806b1a6585eb21e12f445ebe239fac441995226a/charset_normalizer-3.4.2-cp312-cp312-win32.whl", hash = "sha256:db4c7bf0e07fc3b7d89ac2a5880a6a8062056801b83ff56d8464b70f65482b6c", size = 98357, upload-time = "2025-05-02T08:32:53.079Z" },
+    { url = "https://files.pythonhosted.org/packages/6c/4f/c02d5c493967af3eda9c771ad4d2bbc8df6f99ddbeb37ceea6e8716a32bc/charset_normalizer-3.4.2-cp312-cp312-win_amd64.whl", hash = "sha256:5a9979887252a82fefd3d3ed2a8e3b937a7a809f65dcb1e068b090e165bbe99e", size = 105776, upload-time = "2025-05-02T08:32:54.573Z" },
+    { url = "https://files.pythonhosted.org/packages/ea/12/a93df3366ed32db1d907d7593a94f1fe6293903e3e92967bebd6950ed12c/charset_normalizer-3.4.2-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:926ca93accd5d36ccdabd803392ddc3e03e6d4cd1cf17deff3b989ab8e9dbcf0", size = 199622, upload-time = "2025-05-02T08:32:56.363Z" },
+    { url = "https://files.pythonhosted.org/packages/04/93/bf204e6f344c39d9937d3c13c8cd5bbfc266472e51fc8c07cb7f64fcd2de/charset_normalizer-3.4.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:eba9904b0f38a143592d9fc0e19e2df0fa2e41c3c3745554761c5f6447eedabf", size = 143435, upload-time = "2025-05-02T08:32:58.551Z" },
+    { url = "https://files.pythonhosted.org/packages/22/2a/ea8a2095b0bafa6c5b5a55ffdc2f924455233ee7b91c69b7edfcc9e02284/charset_normalizer-3.4.2-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:3fddb7e2c84ac87ac3a947cb4e66d143ca5863ef48e4a5ecb83bd48619e4634e", size = 153653, upload-time = "2025-05-02T08:33:00.342Z" },
+    { url = "https://files.pythonhosted.org/packages/b6/57/1b090ff183d13cef485dfbe272e2fe57622a76694061353c59da52c9a659/charset_normalizer-3.4.2-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:98f862da73774290f251b9df8d11161b6cf25b599a66baf087c1ffe340e9bfd1", size = 146231, upload-time = "2025-05-02T08:33:02.081Z" },
+    { url = "https://files.pythonhosted.org/packages/e2/28/ffc026b26f441fc67bd21ab7f03b313ab3fe46714a14b516f931abe1a2d8/charset_normalizer-3.4.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6c9379d65defcab82d07b2a9dfbfc2e95bc8fe0ebb1b176a3190230a3ef0e07c", size = 148243, upload-time = "2025-05-02T08:33:04.063Z" },
+    { url = "https://files.pythonhosted.org/packages/c0/0f/9abe9bd191629c33e69e47c6ef45ef99773320e9ad8e9cb08b8ab4a8d4cb/charset_normalizer-3.4.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:e635b87f01ebc977342e2697d05b56632f5f879a4f15955dfe8cef2448b51691", size = 150442, upload-time = "2025-05-02T08:33:06.418Z" },
+    { url = "https://files.pythonhosted.org/packages/67/7c/a123bbcedca91d5916c056407f89a7f5e8fdfce12ba825d7d6b9954a1a3c/charset_normalizer-3.4.2-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:1c95a1e2902a8b722868587c0e1184ad5c55631de5afc0eb96bc4b0d738092c0", size = 145147, upload-time = "2025-05-02T08:33:08.183Z" },
+    { url = "https://files.pythonhosted.org/packages/ec/fe/1ac556fa4899d967b83e9893788e86b6af4d83e4726511eaaad035e36595/charset_normalizer-3.4.2-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:ef8de666d6179b009dce7bcb2ad4c4a779f113f12caf8dc77f0162c29d20490b", size = 153057, upload-time = "2025-05-02T08:33:09.986Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/ff/acfc0b0a70b19e3e54febdd5301a98b72fa07635e56f24f60502e954c461/charset_normalizer-3.4.2-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:32fc0341d72e0f73f80acb0a2c94216bd704f4f0bce10aedea38f30502b271ff", size = 156454, upload-time = "2025-05-02T08:33:11.814Z" },
+    { url = "https://files.pythonhosted.org/packages/92/08/95b458ce9c740d0645feb0e96cea1f5ec946ea9c580a94adfe0b617f3573/charset_normalizer-3.4.2-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:289200a18fa698949d2b39c671c2cc7a24d44096784e76614899a7ccf2574b7b", size = 154174, upload-time = "2025-05-02T08:33:13.707Z" },
+    { url = "https://files.pythonhosted.org/packages/78/be/8392efc43487ac051eee6c36d5fbd63032d78f7728cb37aebcc98191f1ff/charset_normalizer-3.4.2-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:4a476b06fbcf359ad25d34a057b7219281286ae2477cc5ff5e3f70a246971148", size = 149166, upload-time = "2025-05-02T08:33:15.458Z" },
+    { url = "https://files.pythonhosted.org/packages/44/96/392abd49b094d30b91d9fbda6a69519e95802250b777841cf3bda8fe136c/charset_normalizer-3.4.2-cp313-cp313-win32.whl", hash = "sha256:aaeeb6a479c7667fbe1099af9617c83aaca22182d6cf8c53966491a0f1b7ffb7", size = 98064, upload-time = "2025-05-02T08:33:17.06Z" },
+    { url = "https://files.pythonhosted.org/packages/e9/b0/0200da600134e001d91851ddc797809e2fe0ea72de90e09bec5a2fbdaccb/charset_normalizer-3.4.2-cp313-cp313-win_amd64.whl", hash = "sha256:aa6af9e7d59f9c12b33ae4e9450619cf2488e2bbe9b44030905877f0b2324980", size = 105641, upload-time = "2025-05-02T08:33:18.753Z" },
+    { url = "https://files.pythonhosted.org/packages/20/94/c5790835a017658cbfabd07f3bfb549140c3ac458cfc196323996b10095a/charset_normalizer-3.4.2-py3-none-any.whl", hash = "sha256:7f56930ab0abd1c45cd15be65cc741c28b1c9a34876ce8c17a2fa107810c0af0", size = 52626, upload-time = "2025-05-02T08:34:40.053Z" },
+]
+
+[[package]]
+name = "click"
+version = "8.2.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "colorama", marker = "sys_platform == 'win32'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/60/6c/8ca2efa64cf75a977a0d7fac081354553ebe483345c734fb6b6515d96bbc/click-8.2.1.tar.gz", hash = "sha256:27c491cc05d968d271d5a1db13e3b5a184636d9d930f148c50b038f0d0646202", size = 286342, upload-time = "2025-05-20T23:19:49.832Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/85/32/10bb5764d90a8eee674e9dc6f4db6a0ab47c8c4d0d83c27f7c39ac415a4d/click-8.2.1-py3-none-any.whl", hash = "sha256:61a3265b914e850b85317d0b3109c7f8cd35a670f963866005d6ef1d5175a12b", size = 102215, upload-time = "2025-05-20T23:19:47.796Z" },
+]
+
+[[package]]
+name = "cloudpickle"
+version = "3.1.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/52/39/069100b84d7418bc358d81669d5748efb14b9cceacd2f9c75f550424132f/cloudpickle-3.1.1.tar.gz", hash = "sha256:b216fa8ae4019d5482a8ac3c95d8f6346115d8835911fd4aefd1a445e4242c64", size = 22113, upload-time = "2025-01-14T17:02:05.085Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7e/e8/64c37fadfc2816a7701fa8a6ed8d87327c7d54eacfbfb6edab14a2f2be75/cloudpickle-3.1.1-py3-none-any.whl", hash = "sha256:c8c5a44295039331ee9dad40ba100a9c7297b6f988e50e87ccdf3765a668350e", size = 20992, upload-time = "2025-01-14T17:02:02.417Z" },
+]
+
+[[package]]
+name = "colorama"
+version = "0.4.6"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/d8/53/6f443c9a4a8358a93a6792e2acffb9d9d5cb0a5cfd8802644b7b1c9a02e4/colorama-0.4.6.tar.gz", hash = "sha256:08695f5cb7ed6e0531a20572697297273c47b8cae5a63ffc6d6ed5c201be6e44", size = 27697, upload-time = "2022-10-25T02:36:22.414Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d1/d6/3965ed04c63042e047cb6a3e6ed1a63a35087b6a609aa3a15ed8ac56c221/colorama-0.4.6-py2.py3-none-any.whl", hash = "sha256:4f1d9991f5acc0ca119f9d443620b77f9d6b33703e51011c16baf57afb285fc6", size = 25335, upload-time = "2022-10-25T02:36:20.889Z" },
+]
+
+[[package]]
+name = "configargparse"
+version = "1.7.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/85/4d/6c9ef746dfcc2a32e26f3860bb4a011c008c392b83eabdfb598d1a8bbe5d/configargparse-1.7.1.tar.gz", hash = "sha256:79c2ddae836a1e5914b71d58e4b9adbd9f7779d4e6351a637b7d2d9b6c46d3d9", size = 43958, upload-time = "2025-05-23T14:26:17.369Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/31/28/d28211d29bcc3620b1fece85a65ce5bb22f18670a03cd28ea4b75ede270c/configargparse-1.7.1-py3-none-any.whl", hash = "sha256:8b586a31f9d873abd1ca527ffbe58863c99f36d896e2829779803125e83be4b6", size = 25607, upload-time = "2025-05-23T14:26:15.923Z" },
+]
+
+[[package]]
+name = "cryptography"
+version = "45.0.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cffi", marker = "platform_python_implementation != 'PyPy'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/13/1f/9fa001e74a1993a9cadd2333bb889e50c66327b8594ac538ab8a04f915b7/cryptography-45.0.3.tar.gz", hash = "sha256:ec21313dd335c51d7877baf2972569f40a4291b76a0ce51391523ae358d05899", size = 744738, upload-time = "2025-05-25T14:17:24.777Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/82/b2/2345dc595998caa6f68adf84e8f8b50d18e9fc4638d32b22ea8daedd4b7a/cryptography-45.0.3-cp311-abi3-macosx_10_9_universal2.whl", hash = "sha256:7573d9eebaeceeb55285205dbbb8753ac1e962af3d9640791d12b36864065e71", size = 7056239, upload-time = "2025-05-25T14:16:12.22Z" },
+    { url = "https://files.pythonhosted.org/packages/71/3d/ac361649a0bfffc105e2298b720d8b862330a767dab27c06adc2ddbef96a/cryptography-45.0.3-cp311-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d377dde61c5d67eb4311eace661c3efda46c62113ff56bf05e2d679e02aebb5b", size = 4205541, upload-time = "2025-05-25T14:16:14.333Z" },
+    { url = "https://files.pythonhosted.org/packages/70/3e/c02a043750494d5c445f769e9c9f67e550d65060e0bfce52d91c1362693d/cryptography-45.0.3-cp311-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:fae1e637f527750811588e4582988932c222f8251f7b7ea93739acb624e1487f", size = 4433275, upload-time = "2025-05-25T14:16:16.421Z" },
+    { url = "https://files.pythonhosted.org/packages/40/7a/9af0bfd48784e80eef3eb6fd6fde96fe706b4fc156751ce1b2b965dada70/cryptography-45.0.3-cp311-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:ca932e11218bcc9ef812aa497cdf669484870ecbcf2d99b765d6c27a86000942", size = 4209173, upload-time = "2025-05-25T14:16:18.163Z" },
+    { url = "https://files.pythonhosted.org/packages/31/5f/d6f8753c8708912df52e67969e80ef70b8e8897306cd9eb8b98201f8c184/cryptography-45.0.3-cp311-abi3-manylinux_2_28_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:af3f92b1dc25621f5fad065288a44ac790c5798e986a34d393ab27d2b27fcff9", size = 3898150, upload-time = "2025-05-25T14:16:20.34Z" },
+    { url = "https://files.pythonhosted.org/packages/8b/50/f256ab79c671fb066e47336706dc398c3b1e125f952e07d54ce82cf4011a/cryptography-45.0.3-cp311-abi3-manylinux_2_28_x86_64.whl", hash = "sha256:2f8f8f0b73b885ddd7f3d8c2b2234a7d3ba49002b0223f58cfde1bedd9563c56", size = 4466473, upload-time = "2025-05-25T14:16:22.605Z" },
+    { url = "https://files.pythonhosted.org/packages/62/e7/312428336bb2df0848d0768ab5a062e11a32d18139447a76dfc19ada8eed/cryptography-45.0.3-cp311-abi3-manylinux_2_34_aarch64.whl", hash = "sha256:9cc80ce69032ffa528b5e16d217fa4d8d4bb7d6ba8659c1b4d74a1b0f4235fca", size = 4211890, upload-time = "2025-05-25T14:16:24.738Z" },
+    { url = "https://files.pythonhosted.org/packages/e7/53/8a130e22c1e432b3c14896ec5eb7ac01fb53c6737e1d705df7e0efb647c6/cryptography-45.0.3-cp311-abi3-manylinux_2_34_x86_64.whl", hash = "sha256:c824c9281cb628015bfc3c59335163d4ca0540d49de4582d6c2637312907e4b1", size = 4466300, upload-time = "2025-05-25T14:16:26.768Z" },
+    { url = "https://files.pythonhosted.org/packages/ba/75/6bb6579688ef805fd16a053005fce93944cdade465fc92ef32bbc5c40681/cryptography-45.0.3-cp311-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:5833bb4355cb377ebd880457663a972cd044e7f49585aee39245c0d592904578", size = 4332483, upload-time = "2025-05-25T14:16:28.316Z" },
+    { url = "https://files.pythonhosted.org/packages/2f/11/2538f4e1ce05c6c4f81f43c1ef2bd6de7ae5e24ee284460ff6c77e42ca77/cryptography-45.0.3-cp311-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:9bb5bf55dcb69f7067d80354d0a348368da907345a2c448b0babc4215ccd3497", size = 4573714, upload-time = "2025-05-25T14:16:30.474Z" },
+    { url = "https://files.pythonhosted.org/packages/f5/bb/e86e9cf07f73a98d84a4084e8fd420b0e82330a901d9cac8149f994c3417/cryptography-45.0.3-cp311-abi3-win32.whl", hash = "sha256:3ad69eeb92a9de9421e1f6685e85a10fbcfb75c833b42cc9bc2ba9fb00da4710", size = 2934752, upload-time = "2025-05-25T14:16:32.204Z" },
+    { url = "https://files.pythonhosted.org/packages/c7/75/063bc9ddc3d1c73e959054f1fc091b79572e716ef74d6caaa56e945b4af9/cryptography-45.0.3-cp311-abi3-win_amd64.whl", hash = "sha256:97787952246a77d77934d41b62fb1b6f3581d83f71b44796a4158d93b8f5c490", size = 3412465, upload-time = "2025-05-25T14:16:33.888Z" },
+    { url = "https://files.pythonhosted.org/packages/71/9b/04ead6015229a9396890d7654ee35ef630860fb42dc9ff9ec27f72157952/cryptography-45.0.3-cp37-abi3-macosx_10_9_universal2.whl", hash = "sha256:c92519d242703b675ccefd0f0562eb45e74d438e001f8ab52d628e885751fb06", size = 7031892, upload-time = "2025-05-25T14:16:36.214Z" },
+    { url = "https://files.pythonhosted.org/packages/46/c7/c7d05d0e133a09fc677b8a87953815c522697bdf025e5cac13ba419e7240/cryptography-45.0.3-cp37-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:c5edcb90da1843df85292ef3a313513766a78fbbb83f584a5a58fb001a5a9d57", size = 4196181, upload-time = "2025-05-25T14:16:37.934Z" },
+    { url = "https://files.pythonhosted.org/packages/08/7a/6ad3aa796b18a683657cef930a986fac0045417e2dc428fd336cfc45ba52/cryptography-45.0.3-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:38deed72285c7ed699864f964a3f4cf11ab3fb38e8d39cfcd96710cd2b5bb716", size = 4423370, upload-time = "2025-05-25T14:16:39.502Z" },
+    { url = "https://files.pythonhosted.org/packages/4f/58/ec1461bfcb393525f597ac6a10a63938d18775b7803324072974b41a926b/cryptography-45.0.3-cp37-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:5555365a50efe1f486eed6ac7062c33b97ccef409f5970a0b6f205a7cfab59c8", size = 4197839, upload-time = "2025-05-25T14:16:41.322Z" },
+    { url = "https://files.pythonhosted.org/packages/d4/3d/5185b117c32ad4f40846f579369a80e710d6146c2baa8ce09d01612750db/cryptography-45.0.3-cp37-abi3-manylinux_2_28_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:9e4253ed8f5948a3589b3caee7ad9a5bf218ffd16869c516535325fece163dcc", size = 3886324, upload-time = "2025-05-25T14:16:43.041Z" },
+    { url = "https://files.pythonhosted.org/packages/67/85/caba91a57d291a2ad46e74016d1f83ac294f08128b26e2a81e9b4f2d2555/cryptography-45.0.3-cp37-abi3-manylinux_2_28_x86_64.whl", hash = "sha256:cfd84777b4b6684955ce86156cfb5e08d75e80dc2585e10d69e47f014f0a5342", size = 4450447, upload-time = "2025-05-25T14:16:44.759Z" },
+    { url = "https://files.pythonhosted.org/packages/ae/d1/164e3c9d559133a38279215c712b8ba38e77735d3412f37711b9f8f6f7e0/cryptography-45.0.3-cp37-abi3-manylinux_2_34_aarch64.whl", hash = "sha256:a2b56de3417fd5f48773ad8e91abaa700b678dc7fe1e0c757e1ae340779acf7b", size = 4200576, upload-time = "2025-05-25T14:16:46.438Z" },
+    { url = "https://files.pythonhosted.org/packages/71/7a/e002d5ce624ed46dfc32abe1deff32190f3ac47ede911789ee936f5a4255/cryptography-45.0.3-cp37-abi3-manylinux_2_34_x86_64.whl", hash = "sha256:57a6500d459e8035e813bd8b51b671977fb149a8c95ed814989da682314d0782", size = 4450308, upload-time = "2025-05-25T14:16:48.228Z" },
+    { url = "https://files.pythonhosted.org/packages/87/ad/3fbff9c28cf09b0a71e98af57d74f3662dea4a174b12acc493de00ea3f28/cryptography-45.0.3-cp37-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:f22af3c78abfbc7cbcdf2c55d23c3e022e1a462ee2481011d518c7fb9c9f3d65", size = 4325125, upload-time = "2025-05-25T14:16:49.844Z" },
+    { url = "https://files.pythonhosted.org/packages/f5/b4/51417d0cc01802304c1984d76e9592f15e4801abd44ef7ba657060520bf0/cryptography-45.0.3-cp37-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:232954730c362638544758a8160c4ee1b832dc011d2c41a306ad8f7cccc5bb0b", size = 4560038, upload-time = "2025-05-25T14:16:51.398Z" },
+    { url = "https://files.pythonhosted.org/packages/80/38/d572f6482d45789a7202fb87d052deb7a7b136bf17473ebff33536727a2c/cryptography-45.0.3-cp37-abi3-win32.whl", hash = "sha256:cb6ab89421bc90e0422aca911c69044c2912fc3debb19bb3c1bfe28ee3dff6ab", size = 2924070, upload-time = "2025-05-25T14:16:53.472Z" },
+    { url = "https://files.pythonhosted.org/packages/91/5a/61f39c0ff4443651cc64e626fa97ad3099249152039952be8f344d6b0c86/cryptography-45.0.3-cp37-abi3-win_amd64.whl", hash = "sha256:d54ae41e6bd70ea23707843021c778f151ca258081586f0cfa31d936ae43d1b2", size = 3395005, upload-time = "2025-05-25T14:16:55.134Z" },
+]
+
+[[package]]
+name = "dash"
+version = "3.2.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "flask" },
+    { name = "importlib-metadata" },
+    { name = "nest-asyncio" },
+    { name = "plotly" },
+    { name = "requests" },
+    { name = "retrying" },
+    { name = "setuptools" },
+    { name = "typing-extensions" },
+    { name = "werkzeug" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/80/37/8b5621e0a0b3c6e81a8b6cd3f033aa4b750f53e288dd1a494a887a8a06e9/dash-3.2.0.tar.gz", hash = "sha256:93300b9b99498f8b8ed267e61c455b4ee1282c7e4d4b518600eec87ce6ddea55", size = 7558708, upload-time = "2025-07-31T19:18:59.014Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d3/36/e0010483ca49b9bf6f389631ccea07b3ff6b678d14d8c7a0a4357860c36a/dash-3.2.0-py3-none-any.whl", hash = "sha256:4c1819588d83bed2cbcf5807daa5c2380c8c85789a6935a733f018f04ad8a6a2", size = 7900661, upload-time = "2025-07-31T19:18:50.679Z" },
+]
+
+[[package]]
+name = "dateparser"
+version = "1.2.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "python-dateutil" },
+    { name = "pytz" },
+    { name = "regex" },
+    { name = "tzlocal" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/bd/3f/d3207a05f5b6a78c66d86631e60bfba5af163738a599a5b9aa2c2737a09e/dateparser-1.2.1.tar.gz", hash = "sha256:7e4919aeb48481dbfc01ac9683c8e20bfe95bb715a38c1e9f6af889f4f30ccc3", size = 309924, upload-time = "2025-02-05T12:34:55.593Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/cf/0a/981c438c4cd84147c781e4e96c1d72df03775deb1bc76c5a6ee8afa89c62/dateparser-1.2.1-py3-none-any.whl", hash = "sha256:bdcac262a467e6260030040748ad7c10d6bacd4f3b9cdb4cfd2251939174508c", size = 295658, upload-time = "2025-02-05T12:34:53.1Z" },
+]
+
+[[package]]
+name = "deprecated"
+version = "1.2.18"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "wrapt" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/98/97/06afe62762c9a8a86af0cfb7bfdab22a43ad17138b07af5b1a58442690a2/deprecated-1.2.18.tar.gz", hash = "sha256:422b6f6d859da6f2ef57857761bfb392480502a64c3028ca9bbe86085d72115d", size = 2928744, upload-time = "2025-01-27T10:46:25.7Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/6e/c6/ac0b6c1e2d138f1002bcf799d330bd6d85084fece321e662a14223794041/Deprecated-1.2.18-py2.py3-none-any.whl", hash = "sha256:bd5011788200372a32418f888e326a09ff80d0214bd961147cfed01b5c018eec", size = 9998, upload-time = "2025-01-27T10:46:09.186Z" },
+]
+
+[[package]]
+name = "deptry"
+version = "0.24.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "click" },
+    { name = "colorama", marker = "sys_platform == 'win32'" },
+    { name = "packaging" },
+    { name = "requirements-parser" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/58/aa/5cae0f25a2ac5334d5bd2782a6bcd80eecf184f433ff74b2fb0387cfbbb6/deptry-0.24.0.tar.gz", hash = "sha256:852e88af2087e03cdf9ece6916f3f58b74191ab51cc8074897951bd496ee7dbb", size = 440158, upload-time = "2025-11-09T00:31:44.637Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/21/5a/c1552996499911b6eabe874a994d9eede58ac3936d7fe7f865857b97c03f/deptry-0.24.0-cp39-abi3-macosx_10_12_x86_64.whl", hash = "sha256:a575880146bab671a62babb9825b85b4f1bda8aeaade4fcb59f9262caf91d6c7", size = 1774138, upload-time = "2025-11-09T00:31:41.896Z" },
+    { url = "https://files.pythonhosted.org/packages/32/b6/1dcc011fc3e6eec71601569c9de3215530563412b3714fba80dcd1a88ec8/deptry-0.24.0-cp39-abi3-macosx_11_0_arm64.whl", hash = "sha256:00ec34b968a13c03a5268ce0211f891ace31851d916415e0a748fae9596c00d5", size = 1677340, upload-time = "2025-11-09T00:31:39.676Z" },
+    { url = "https://files.pythonhosted.org/packages/4a/e2/af81dfd46b457be9e8ded9472872141777fbda8af661f5d509157b165359/deptry-0.24.0-cp39-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:6ddfedafafe5cbfce31a50d4ea99d7b9074edcd08b9b94350dc739e2fb6ed7f9", size = 1782740, upload-time = "2025-11-09T00:31:28.302Z" },
+    { url = "https://files.pythonhosted.org/packages/ab/28/960c311aae084deef57ece41aac13cb359b06ce31b7771139e79c394a1b7/deptry-0.24.0-cp39-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:dd22fa2dbbdf4b38061ca9504f2a6ce41ec14fa5c9fe9b0b763ccc1275efebd5", size = 1845477, upload-time = "2025-11-09T00:31:33.452Z" },
+    { url = "https://files.pythonhosted.org/packages/f5/6c/4b972b011a06611e0cf8f4bb6bc04a3d0f9c651950ad9abe320fcbac6983/deptry-0.24.0-cp39-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:0fbe50a2122d79cec53fdfd73a7092c05f316555a1139bcbacf3432572675977", size = 1960410, upload-time = "2025-11-09T00:31:31.174Z" },
+    { url = "https://files.pythonhosted.org/packages/1b/08/0eac3c72a9fd79a043cc492f3ba350c47a7be2160288353218b2c8c1bf3a/deptry-0.24.0-cp39-abi3-musllinux_1_1_x86_64.whl", hash = "sha256:92bd8d331a5a6f8e6247436bc6fe384bcf86a8d69fe33442d195996fb9b20547", size = 2023832, upload-time = "2025-11-09T00:31:36.381Z" },
+    { url = "https://files.pythonhosted.org/packages/35/e4/23dcbc505f6f35c70ba68015774cf891ceda080331d7fd6d75e84ada9f73/deptry-0.24.0-cp39-abi3-win_amd64.whl", hash = "sha256:94b354848130d45e16d3a3039ae8177bce33828f62028c4ff8f2e1b04f7182ba", size = 1631631, upload-time = "2025-11-09T00:31:47.108Z" },
+    { url = "https://files.pythonhosted.org/packages/39/69/6ec1e18e27dd6f80e4fb6c5fc05a6527242ff83b81c0711d0ba470e9a144/deptry-0.24.0-cp39-abi3-win_arm64.whl", hash = "sha256:ea58709e5f3aa77c0737d8fb76166b7703201cf368fbbb14072ccda968b6703a", size = 1550504, upload-time = "2025-11-09T00:31:45.988Z" },
+]
+
+[[package]]
+name = "dill"
+version = "0.4.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/12/80/630b4b88364e9a8c8c5797f4602d0f76ef820909ee32f0bacb9f90654042/dill-0.4.0.tar.gz", hash = "sha256:0633f1d2df477324f53a895b02c901fb961bdbf65a17122586ea7019292cbcf0", size = 186976, upload-time = "2025-04-16T00:41:48.867Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/50/3d/9373ad9c56321fdab5b41197068e1d8c25883b3fea29dd361f9b55116869/dill-0.4.0-py3-none-any.whl", hash = "sha256:44f54bf6412c2c8464c14e8243eb163690a9800dbe2c367330883b19c7561049", size = 119668, upload-time = "2025-04-16T00:41:47.671Z" },
+]
+
+[[package]]
+name = "diskcache"
+version = "5.6.3"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/3f/21/1c1ffc1a039ddcc459db43cc108658f32c57d271d7289a2794e401d0fdb6/diskcache-5.6.3.tar.gz", hash = "sha256:2c3a3fa2743d8535d832ec61c2054a1641f41775aa7c556758a109941e33e4fc", size = 67916, upload-time = "2023-08-31T06:12:00.316Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/3f/27/4570e78fc0bf5ea0ca45eb1de3818a23787af9b390c0b0a0033a1b8236f9/diskcache-5.6.3-py3-none-any.whl", hash = "sha256:5e31b2d5fbad117cc363ebaf6b689474db18a1f6438bc82358b024abd4c2ca19", size = 45550, upload-time = "2023-08-31T06:11:58.822Z" },
+]
+
+[[package]]
+name = "distlib"
+version = "0.3.9"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/0d/dd/1bec4c5ddb504ca60fc29472f3d27e8d4da1257a854e1d96742f15c1d02d/distlib-0.3.9.tar.gz", hash = "sha256:a60f20dea646b8a33f3e7772f74dc0b2d0772d2837ee1342a00645c81edf9403", size = 613923, upload-time = "2024-10-09T18:35:47.551Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/91/a1/cf2472db20f7ce4a6be1253a81cfdf85ad9c7885ffbed7047fb72c24cf87/distlib-0.3.9-py2.py3-none-any.whl", hash = "sha256:47f8c22fd27c27e25a65601af709b38e4f0a45ea4fc2e710f65755fa8caaaf87", size = 468973, upload-time = "2024-10-09T18:35:44.272Z" },
+]
+
+[[package]]
+name = "distro"
+version = "1.9.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/fc/f8/98eea607f65de6527f8a2e8885fc8015d3e6f5775df186e443e0964a11c3/distro-1.9.0.tar.gz", hash = "sha256:2fa77c6fd8940f116ee1d6b94a2f90b13b5ea8d019b98bc8bafdcabcdd9bdbed", size = 60722, upload-time = "2023-12-24T09:54:32.31Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/12/b3/231ffd4ab1fc9d679809f356cebee130ac7daa00d6d6f3206dd4fd137e9e/distro-1.9.0-py3-none-any.whl", hash = "sha256:7bffd925d65168f85027d8da9af6bddab658135b840670a223589bc0c8ef02b2", size = 20277, upload-time = "2023-12-24T09:54:30.421Z" },
+]
+
+[[package]]
+name = "dnspython"
+version = "2.7.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/b5/4a/263763cb2ba3816dd94b08ad3a33d5fdae34ecb856678773cc40a3605829/dnspython-2.7.0.tar.gz", hash = "sha256:ce9c432eda0dc91cf618a5cedf1a4e142651196bbcd2c80e89ed5a907e5cfaf1", size = 345197, upload-time = "2024-10-05T20:14:59.362Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/68/1b/e0a87d256e40e8c888847551b20a017a6b98139178505dc7ffb96f04e954/dnspython-2.7.0-py3-none-any.whl", hash = "sha256:b4c34b7d10b51bcc3a5071e7b8dee77939f1e878477eeecc965e9835f63c6c86", size = 313632, upload-time = "2024-10-05T20:14:57.687Z" },
+]
+
+[[package]]
+name = "docker"
+version = "7.1.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "pywin32", marker = "sys_platform == 'win32'" },
+    { name = "requests" },
+    { name = "urllib3" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/91/9b/4a2ea29aeba62471211598dac5d96825bb49348fa07e906ea930394a83ce/docker-7.1.0.tar.gz", hash = "sha256:ad8c70e6e3f8926cb8a92619b832b4ea5299e2831c14284663184e200546fa6c", size = 117834, upload-time = "2024-05-23T11:13:57.216Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e3/26/57c6fb270950d476074c087527a558ccb6f4436657314bfb6cdf484114c4/docker-7.1.0-py3-none-any.whl", hash = "sha256:c96b93b7f0a746f9e77d325bcfb87422a3d8bd4f03136ae8a85b37f1898d5fc0", size = 147774, upload-time = "2024-05-23T11:13:55.01Z" },
+]
+
+[[package]]
+name = "elastic-transport"
+version = "8.17.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "certifi" },
+    { name = "urllib3" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/6a/54/d498a766ac8fa475f931da85a154666cc81a70f8eb4a780bc8e4e934e9ac/elastic_transport-8.17.1.tar.gz", hash = "sha256:5edef32ac864dca8e2f0a613ef63491ee8d6b8cfb52881fa7313ba9290cac6d2", size = 73425, upload-time = "2025-03-13T07:28:30.776Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/cf/cd/b71d5bc74cde7fc6fd9b2ff9389890f45d9762cbbbf81dc5e51fd7588c4a/elastic_transport-8.17.1-py3-none-any.whl", hash = "sha256:192718f498f1d10c5e9aa8b9cf32aed405e469a7f0e9d6a8923431dbb2c59fb8", size = 64969, upload-time = "2025-03-13T07:28:29.031Z" },
+]
+
+[[package]]
+name = "elasticsearch"
+version = "8.18.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "elastic-transport" },
+    { name = "python-dateutil" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/2a/e4/40fc0e8d9a646889ac3f865cd35e41835f3cf888c716c7aae82248e022f0/elasticsearch-8.18.1.tar.gz", hash = "sha256:998035f17a8c1fba7ae26b183dca797dcf95db86da6a7ecba56d31afc40f07c7", size = 750746, upload-time = "2025-04-29T09:32:16.361Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/33/62/f62e8a5c7c6f7b27481c9ffc248fb32078ad88878aa4f3731a83a14cc797/elasticsearch-8.18.1-py3-none-any.whl", hash = "sha256:1a8c8b5ec3ce5be88f96d2f898375671648e96272978bce0dee3137d9326aabb", size = 906320, upload-time = "2025-04-29T09:32:12.527Z" },
+]
+
+[[package]]
+name = "email-validator"
+version = "2.2.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "dnspython" },
+    { name = "idna" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/48/ce/13508a1ec3f8bb981ae4ca79ea40384becc868bfae97fd1c942bb3a001b1/email_validator-2.2.0.tar.gz", hash = "sha256:cb690f344c617a714f22e66ae771445a1ceb46821152df8e165c5f9a364582b7", size = 48967, upload-time = "2024-06-20T11:30:30.034Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d7/ee/bf0adb559ad3c786f12bcbc9296b3f5675f529199bef03e2df281fa1fadb/email_validator-2.2.0-py3-none-any.whl", hash = "sha256:561977c2d73ce3611850a06fa56b414621e0c8faa9d66f2611407d87465da631", size = 33521, upload-time = "2024-06-20T11:30:28.248Z" },
+]
+
+[[package]]
+name = "exceptiongroup"
+version = "1.3.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "typing-extensions", marker = "python_full_version < '3.13'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/0b/9f/a65090624ecf468cdca03533906e7c69ed7588582240cfe7cc9e770b50eb/exceptiongroup-1.3.0.tar.gz", hash = "sha256:b241f5885f560bc56a59ee63ca4c6a8bfa46ae4ad651af316d4e81817bb9fd88", size = 29749, upload-time = "2025-05-10T17:42:51.123Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/36/f4/c6e662dade71f56cd2f3735141b265c3c79293c109549c1e6933b0651ffc/exceptiongroup-1.3.0-py3-none-any.whl", hash = "sha256:4d111e6e0c13d0644cad6ddaa7ed0261a0b36971f6d23e7ec9b4b9097da78a10", size = 16674, upload-time = "2025-05-10T17:42:49.33Z" },
+]
+
+[[package]]
+name = "fastapi"
+version = "0.115.12"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "pydantic" },
+    { name = "starlette" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/f4/55/ae499352d82338331ca1e28c7f4a63bfd09479b16395dce38cf50a39e2c2/fastapi-0.115.12.tar.gz", hash = "sha256:1e2c2a2646905f9e83d32f04a3f86aff4a286669c6c950ca95b5fd68c2602681", size = 295236, upload-time = "2025-03-23T22:55:43.822Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/50/b3/b51f09c2ba432a576fe63758bddc81f78f0c6309d9e5c10d194313bf021e/fastapi-0.115.12-py3-none-any.whl", hash = "sha256:e94613d6c05e27be7ffebdd6ea5f388112e5e430c8f7d6494a9d1d88d43e814d", size = 95164, upload-time = "2025-03-23T22:55:42.101Z" },
+]
+
+[package.optional-dependencies]
+standard = [
+    { name = "email-validator" },
+    { name = "fastapi-cli", extra = ["standard"] },
+    { name = "httpx" },
+    { name = "jinja2" },
+    { name = "python-multipart" },
+    { name = "uvicorn", extra = ["standard"] },
+]
+
+[[package]]
+name = "fastapi-cli"
+version = "0.0.7"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "rich-toolkit" },
+    { name = "typer" },
+    { name = "uvicorn", extra = ["standard"] },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/fe/73/82a5831fbbf8ed75905bacf5b2d9d3dfd6f04d6968b29fe6f72a5ae9ceb1/fastapi_cli-0.0.7.tar.gz", hash = "sha256:02b3b65956f526412515907a0793c9094abd4bfb5457b389f645b0ea6ba3605e", size = 16753, upload-time = "2024-12-15T14:28:10.028Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a1/e6/5daefc851b514ce2287d8f5d358ae4341089185f78f3217a69d0ce3a390c/fastapi_cli-0.0.7-py3-none-any.whl", hash = "sha256:d549368ff584b2804336c61f192d86ddea080c11255f375959627911944804f4", size = 10705, upload-time = "2024-12-15T14:28:06.18Z" },
+]
+
+[package.optional-dependencies]
+standard = [
+    { name = "uvicorn", extra = ["standard"] },
+]
+
+[[package]]
+name = "fastmcp"
+version = "2.9.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "authlib" },
+    { name = "exceptiongroup" },
+    { name = "httpx" },
+    { name = "mcp" },
+    { name = "openapi-pydantic" },
+    { name = "python-dotenv" },
+    { name = "rich" },
+    { name = "typer" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/68/17/d2b5981180717e6e689d0aaa6215d1ddcec6cb065c6f6b45c471ab7d2edb/fastmcp-2.9.2.tar.gz", hash = "sha256:c000eb0a2d50afcc7d26be4c867abf5c995ca0e0119f17417d50f61e2e17347c", size = 2663824, upload-time = "2025-06-26T15:03:15.395Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/89/60/223e1975e65ed7c6cead0fda947d4cdb4f7ee5ec60a7c8ea3b3787868f67/fastmcp-2.9.2-py3-none-any.whl", hash = "sha256:3626a3d9b1fa6325756273b6d1fe1ec610baafec957ac22f7aa1dc17c1db8b93", size = 162690, upload-time = "2025-06-26T15:03:13.553Z" },
+]
+
+[[package]]
+name = "fastuuid"
+version = "0.14.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/c3/7d/d9daedf0f2ebcacd20d599928f8913e9d2aea1d56d2d355a93bfa2b611d7/fastuuid-0.14.0.tar.gz", hash = "sha256:178947fc2f995b38497a74172adee64fdeb8b7ec18f2a5934d037641ba265d26", size = 18232, upload-time = "2025-10-19T22:19:22.402Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/02/a2/e78fcc5df65467f0d207661b7ef86c5b7ac62eea337c0c0fcedbeee6fb13/fastuuid-0.14.0-cp312-cp312-macosx_10_12_x86_64.macosx_11_0_arm64.macosx_10_12_universal2.whl", hash = "sha256:77e94728324b63660ebf8adb27055e92d2e4611645bf12ed9d88d30486471d0a", size = 510164, upload-time = "2025-10-19T22:31:45.635Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/b3/c846f933f22f581f558ee63f81f29fa924acd971ce903dab1a9b6701816e/fastuuid-0.14.0-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:caa1f14d2102cb8d353096bc6ef6c13b2c81f347e6ab9d6fbd48b9dea41c153d", size = 261837, upload-time = "2025-10-19T22:38:38.53Z" },
+    { url = "https://files.pythonhosted.org/packages/54/ea/682551030f8c4fa9a769d9825570ad28c0c71e30cf34020b85c1f7ee7382/fastuuid-0.14.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:d23ef06f9e67163be38cece704170486715b177f6baae338110983f99a72c070", size = 251370, upload-time = "2025-10-19T22:40:26.07Z" },
+    { url = "https://files.pythonhosted.org/packages/14/dd/5927f0a523d8e6a76b70968e6004966ee7df30322f5fc9b6cdfb0276646a/fastuuid-0.14.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0c9ec605ace243b6dbe3bd27ebdd5d33b00d8d1d3f580b39fdd15cd96fd71796", size = 277766, upload-time = "2025-10-19T22:37:23.779Z" },
+    { url = "https://files.pythonhosted.org/packages/16/6e/c0fb547eef61293153348f12e0f75a06abb322664b34a1573a7760501336/fastuuid-0.14.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:808527f2407f58a76c916d6aa15d58692a4a019fdf8d4c32ac7ff303b7d7af09", size = 278105, upload-time = "2025-10-19T22:26:56.821Z" },
+    { url = "https://files.pythonhosted.org/packages/2d/b1/b9c75e03b768f61cf2e84ee193dc18601aeaf89a4684b20f2f0e9f52b62c/fastuuid-0.14.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:2fb3c0d7fef6674bbeacdd6dbd386924a7b60b26de849266d1ff6602937675c8", size = 301564, upload-time = "2025-10-19T22:30:31.604Z" },
+    { url = "https://files.pythonhosted.org/packages/fc/fa/f7395fdac07c7a54f18f801744573707321ca0cee082e638e36452355a9d/fastuuid-0.14.0-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:ab3f5d36e4393e628a4df337c2c039069344db5f4b9d2a3c9cea48284f1dd741", size = 459659, upload-time = "2025-10-19T22:31:32.341Z" },
+    { url = "https://files.pythonhosted.org/packages/66/49/c9fd06a4a0b1f0f048aacb6599e7d96e5d6bc6fa680ed0d46bf111929d1b/fastuuid-0.14.0-cp312-cp312-musllinux_1_1_i686.whl", hash = "sha256:b9a0ca4f03b7e0b01425281ffd44e99d360e15c895f1907ca105854ed85e2057", size = 478430, upload-time = "2025-10-19T22:26:22.962Z" },
+    { url = "https://files.pythonhosted.org/packages/be/9c/909e8c95b494e8e140e8be6165d5fc3f61fdc46198c1554df7b3e1764471/fastuuid-0.14.0-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:3acdf655684cc09e60fb7e4cf524e8f42ea760031945aa8086c7eae2eeeabeb8", size = 450894, upload-time = "2025-10-19T22:27:01.647Z" },
+    { url = "https://files.pythonhosted.org/packages/90/eb/d29d17521976e673c55ef7f210d4cdd72091a9ec6755d0fd4710d9b3c871/fastuuid-0.14.0-cp312-cp312-win32.whl", hash = "sha256:9579618be6280700ae36ac42c3efd157049fe4dd40ca49b021280481c78c3176", size = 154374, upload-time = "2025-10-19T22:29:19.879Z" },
+    { url = "https://files.pythonhosted.org/packages/cc/fc/f5c799a6ea6d877faec0472d0b27c079b47c86b1cdc577720a5386483b36/fastuuid-0.14.0-cp312-cp312-win_amd64.whl", hash = "sha256:d9e4332dc4ba054434a9594cbfaf7823b57993d7d8e7267831c3e059857cf397", size = 156550, upload-time = "2025-10-19T22:27:49.658Z" },
+    { url = "https://files.pythonhosted.org/packages/a5/83/ae12dd39b9a39b55d7f90abb8971f1a5f3c321fd72d5aa83f90dc67fe9ed/fastuuid-0.14.0-cp313-cp313-macosx_10_12_x86_64.macosx_11_0_arm64.macosx_10_12_universal2.whl", hash = "sha256:77a09cb7427e7af74c594e409f7731a0cf887221de2f698e1ca0ebf0f3139021", size = 510720, upload-time = "2025-10-19T22:42:34.633Z" },
+    { url = "https://files.pythonhosted.org/packages/53/b0/a4b03ff5d00f563cc7546b933c28cb3f2a07344b2aec5834e874f7d44143/fastuuid-0.14.0-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:9bd57289daf7b153bfa3e8013446aa144ce5e8c825e9e366d455155ede5ea2dc", size = 262024, upload-time = "2025-10-19T22:30:25.482Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/6d/64aee0a0f6a58eeabadd582e55d0d7d70258ffdd01d093b30c53d668303b/fastuuid-0.14.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:ac60fc860cdf3c3f327374db87ab8e064c86566ca8c49d2e30df15eda1b0c2d5", size = 251679, upload-time = "2025-10-19T22:36:14.096Z" },
+    { url = "https://files.pythonhosted.org/packages/60/f5/a7e9cda8369e4f7919d36552db9b2ae21db7915083bc6336f1b0082c8b2e/fastuuid-0.14.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ab32f74bd56565b186f036e33129da77db8be09178cd2f5206a5d4035fb2a23f", size = 277862, upload-time = "2025-10-19T22:36:23.302Z" },
+    { url = "https://files.pythonhosted.org/packages/f0/d3/8ce11827c783affffd5bd4d6378b28eb6cc6d2ddf41474006b8d62e7448e/fastuuid-0.14.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:33e678459cf4addaedd9936bbb038e35b3f6b2061330fd8f2f6a1d80414c0f87", size = 278278, upload-time = "2025-10-19T22:29:43.809Z" },
+    { url = "https://files.pythonhosted.org/packages/a2/51/680fb6352d0bbade04036da46264a8001f74b7484e2fd1f4da9e3db1c666/fastuuid-0.14.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:1e3cc56742f76cd25ecb98e4b82a25f978ccffba02e4bdce8aba857b6d85d87b", size = 301788, upload-time = "2025-10-19T22:36:06.825Z" },
+    { url = "https://files.pythonhosted.org/packages/fa/7c/2014b5785bd8ebdab04ec857635ebd84d5ee4950186a577db9eff0fb8ff6/fastuuid-0.14.0-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:cb9a030f609194b679e1660f7e32733b7a0f332d519c5d5a6a0a580991290022", size = 459819, upload-time = "2025-10-19T22:35:31.623Z" },
+    { url = "https://files.pythonhosted.org/packages/01/d2/524d4ceeba9160e7a9bc2ea3e8f4ccf1ad78f3bde34090ca0c51f09a5e91/fastuuid-0.14.0-cp313-cp313-musllinux_1_1_i686.whl", hash = "sha256:09098762aad4f8da3a888eb9ae01c84430c907a297b97166b8abc07b640f2995", size = 478546, upload-time = "2025-10-19T22:26:03.023Z" },
+    { url = "https://files.pythonhosted.org/packages/bc/17/354d04951ce114bf4afc78e27a18cfbd6ee319ab1829c2d5fb5e94063ac6/fastuuid-0.14.0-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:1383fff584fa249b16329a059c68ad45d030d5a4b70fb7c73a08d98fd53bcdab", size = 450921, upload-time = "2025-10-19T22:31:02.151Z" },
+    { url = "https://files.pythonhosted.org/packages/fb/be/d7be8670151d16d88f15bb121c5b66cdb5ea6a0c2a362d0dcf30276ade53/fastuuid-0.14.0-cp313-cp313-win32.whl", hash = "sha256:a0809f8cc5731c066c909047f9a314d5f536c871a7a22e815cc4967c110ac9ad", size = 154559, upload-time = "2025-10-19T22:36:36.011Z" },
+    { url = "https://files.pythonhosted.org/packages/22/1d/5573ef3624ceb7abf4a46073d3554e37191c868abc3aecd5289a72f9810a/fastuuid-0.14.0-cp313-cp313-win_amd64.whl", hash = "sha256:0df14e92e7ad3276327631c9e7cec09e32572ce82089c55cb1bb8df71cf394ed", size = 156539, upload-time = "2025-10-19T22:33:35.898Z" },
+    { url = "https://files.pythonhosted.org/packages/16/c9/8c7660d1fe3862e3f8acabd9be7fc9ad71eb270f1c65cce9a2b7a31329ab/fastuuid-0.14.0-cp314-cp314-macosx_10_12_x86_64.macosx_11_0_arm64.macosx_10_12_universal2.whl", hash = "sha256:b852a870a61cfc26c884af205d502881a2e59cc07076b60ab4a951cc0c94d1ad", size = 510600, upload-time = "2025-10-19T22:43:44.17Z" },
+    { url = "https://files.pythonhosted.org/packages/4c/f4/a989c82f9a90d0ad995aa957b3e572ebef163c5299823b4027986f133dfb/fastuuid-0.14.0-cp314-cp314-macosx_10_12_x86_64.whl", hash = "sha256:c7502d6f54cd08024c3ea9b3514e2d6f190feb2f46e6dbcd3747882264bb5f7b", size = 262069, upload-time = "2025-10-19T22:43:38.38Z" },
+    { url = "https://files.pythonhosted.org/packages/da/6c/a1a24f73574ac995482b1326cf7ab41301af0fabaa3e37eeb6b3df00e6e2/fastuuid-0.14.0-cp314-cp314-macosx_11_0_arm64.whl", hash = "sha256:1ca61b592120cf314cfd66e662a5b54a578c5a15b26305e1b8b618a6f22df714", size = 251543, upload-time = "2025-10-19T22:32:22.537Z" },
+    { url = "https://files.pythonhosted.org/packages/1a/20/2a9b59185ba7a6c7b37808431477c2d739fcbdabbf63e00243e37bd6bf49/fastuuid-0.14.0-cp314-cp314-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:aa75b6657ec129d0abded3bec745e6f7ab642e6dba3a5272a68247e85f5f316f", size = 277798, upload-time = "2025-10-19T22:33:53.821Z" },
+    { url = "https://files.pythonhosted.org/packages/ef/33/4105ca574f6ded0af6a797d39add041bcfb468a1255fbbe82fcb6f592da2/fastuuid-0.14.0-cp314-cp314-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a8a0dfea3972200f72d4c7df02c8ac70bad1bb4c58d7e0ec1e6f341679073a7f", size = 278283, upload-time = "2025-10-19T22:29:02.812Z" },
+    { url = "https://files.pythonhosted.org/packages/fe/8c/fca59f8e21c4deb013f574eae05723737ddb1d2937ce87cb2a5d20992dc3/fastuuid-0.14.0-cp314-cp314-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:1bf539a7a95f35b419f9ad105d5a8a35036df35fdafae48fb2fd2e5f318f0d75", size = 301627, upload-time = "2025-10-19T22:35:54.985Z" },
+    { url = "https://files.pythonhosted.org/packages/cb/e2/f78c271b909c034d429218f2798ca4e89eeda7983f4257d7865976ddbb6c/fastuuid-0.14.0-cp314-cp314-musllinux_1_1_aarch64.whl", hash = "sha256:9a133bf9cc78fdbd1179cb58a59ad0100aa32d8675508150f3658814aeefeaa4", size = 459778, upload-time = "2025-10-19T22:28:00.999Z" },
+    { url = "https://files.pythonhosted.org/packages/1e/f0/5ff209d865897667a2ff3e7a572267a9ced8f7313919f6d6043aed8b1caa/fastuuid-0.14.0-cp314-cp314-musllinux_1_1_i686.whl", hash = "sha256:f54d5b36c56a2d5e1a31e73b950b28a0d83eb0c37b91d10408875a5a29494bad", size = 478605, upload-time = "2025-10-19T22:36:21.764Z" },
+    { url = "https://files.pythonhosted.org/packages/e0/c8/2ce1c78f983a2c4987ea865d9516dbdfb141a120fd3abb977ae6f02ba7ca/fastuuid-0.14.0-cp314-cp314-musllinux_1_1_x86_64.whl", hash = "sha256:ec27778c6ca3393ef662e2762dba8af13f4ec1aaa32d08d77f71f2a70ae9feb8", size = 450837, upload-time = "2025-10-19T22:34:37.178Z" },
+    { url = "https://files.pythonhosted.org/packages/df/60/dad662ec9a33b4a5fe44f60699258da64172c39bd041da2994422cdc40fe/fastuuid-0.14.0-cp314-cp314-win32.whl", hash = "sha256:e23fc6a83f112de4be0cc1990e5b127c27663ae43f866353166f87df58e73d06", size = 154532, upload-time = "2025-10-19T22:35:18.217Z" },
+    { url = "https://files.pythonhosted.org/packages/1f/f6/da4db31001e854025ffd26bc9ba0740a9cbba2c3259695f7c5834908b336/fastuuid-0.14.0-cp314-cp314-win_amd64.whl", hash = "sha256:df61342889d0f5e7a32f7284e55ef95103f2110fee433c2ae7c2c0956d76ac8a", size = 156457, upload-time = "2025-10-19T22:33:44.579Z" },
+]
+
+[[package]]
+name = "filelock"
+version = "3.18.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/0a/10/c23352565a6544bdc5353e0b15fc1c563352101f30e24bf500207a54df9a/filelock-3.18.0.tar.gz", hash = "sha256:adbc88eabb99d2fec8c9c1b229b171f18afa655400173ddc653d5d01501fb9f2", size = 18075, upload-time = "2025-03-14T07:11:40.47Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/4d/36/2a115987e2d8c300a974597416d9de88f2444426de9571f4b59b2cca3acc/filelock-3.18.0-py3-none-any.whl", hash = "sha256:c401f4f8377c4464e6db25fff06205fd89bdd83b65eb0488ed1b160f780e21de", size = 16215, upload-time = "2025-03-14T07:11:39.145Z" },
+]
+
+[[package]]
+name = "filetype"
+version = "1.2.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/bb/29/745f7d30d47fe0f251d3ad3dc2978a23141917661998763bebb6da007eb1/filetype-1.2.0.tar.gz", hash = "sha256:66b56cd6474bf41d8c54660347d37afcc3f7d1970648de365c102ef77548aadb", size = 998020, upload-time = "2022-11-02T17:34:04.141Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/18/79/1b8fa1bb3568781e84c9200f951c735f3f157429f44be0495da55894d620/filetype-1.2.0-py2.py3-none-any.whl", hash = "sha256:7ce71b6880181241cf7ac8697a2f1eb6a8bd9b429f7ad6d27b8db9ba5f1c2d25", size = 19970, upload-time = "2022-11-02T17:34:01.425Z" },
+]
+
+[[package]]
+name = "fixedint"
+version = "0.1.6"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/32/c6/b1b9b3f69915d51909ef6ebe6352e286ec3d6f2077278af83ec6e3cc569c/fixedint-0.1.6.tar.gz", hash = "sha256:703005d090499d41ce7ce2ee7eae8f7a5589a81acdc6b79f1728a56495f2c799", size = 12750, upload-time = "2020-06-20T22:14:16.544Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c8/6d/8f5307d26ce700a89e5a67d1e1ad15eff977211f9ed3ae90d7b0d67f4e66/fixedint-0.1.6-py3-none-any.whl", hash = "sha256:b8cf9f913735d2904deadda7a6daa9f57100599da1de57a7448ea1be75ae8c9c", size = 12702, upload-time = "2020-06-20T22:14:15.454Z" },
+]
+
+[[package]]
+name = "flaml"
+version = "2.3.4"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "numpy" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/20/a8/17322311b77f3012194f92c47c81455463f99c48d358c463fa45bd3c8541/flaml-2.3.4.tar.gz", hash = "sha256:308c3e769976d8a0272f2fd7d98258d7d4a4fd2e4525ba540d1ba149ae266c54", size = 284728, upload-time = "2025-02-17T10:13:59.261Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/14/5c/c1e734b36d0f068708836238fbf1e8c34716a61e1a844482f37e277ba476/FLAML-2.3.4-py3-none-any.whl", hash = "sha256:dceab62194d469889c4584531049ac0a43480056f4f39c6ea207bfc12a157d76", size = 314250, upload-time = "2025-02-17T10:13:57.674Z" },
+]
+
+[[package]]
+name = "flask"
+version = "3.1.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "blinker" },
+    { name = "click" },
+    { name = "itsdangerous" },
+    { name = "jinja2" },
+    { name = "markupsafe" },
+    { name = "werkzeug" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/dc/6d/cfe3c0fcc5e477df242b98bfe186a4c34357b4847e87ecaef04507332dab/flask-3.1.2.tar.gz", hash = "sha256:bf656c15c80190ed628ad08cdfd3aaa35beb087855e2f494910aa3774cc4fd87", size = 720160, upload-time = "2025-08-19T21:03:21.205Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ec/f9/7f9263c5695f4bd0023734af91bedb2ff8209e8de6ead162f35d8dc762fd/flask-3.1.2-py3-none-any.whl", hash = "sha256:ca1d8112ec8a6158cc29ea4858963350011b5c846a414cdb7a954aa9e967d03c", size = 103308, upload-time = "2025-08-19T21:03:19.499Z" },
+]
+
+[[package]]
+name = "flask-cors"
+version = "6.0.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "flask" },
+    { name = "werkzeug" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/76/37/bcfa6c7d5eec777c4c7cf45ce6b27631cebe5230caf88d85eadd63edd37a/flask_cors-6.0.1.tar.gz", hash = "sha256:d81bcb31f07b0985be7f48406247e9243aced229b7747219160a0559edd678db", size = 13463, upload-time = "2025-06-11T01:32:08.518Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/17/f8/01bf35a3afd734345528f98d0353f2a978a476528ad4d7e78b70c4d149dd/flask_cors-6.0.1-py3-none-any.whl", hash = "sha256:c7b2cbfb1a31aa0d2e5341eea03a6805349f7a61647daee1a15c46bbe981494c", size = 13244, upload-time = "2025-06-11T01:32:07.352Z" },
+]
+
+[[package]]
+name = "flask-login"
+version = "0.6.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "flask" },
+    { name = "werkzeug" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c3/6e/2f4e13e373bb49e68c02c51ceadd22d172715a06716f9299d9df01b6ddb2/Flask-Login-0.6.3.tar.gz", hash = "sha256:5e23d14a607ef12806c699590b89d0f0e0d67baeec599d75947bf9c147330333", size = 48834, upload-time = "2023-10-30T14:53:21.151Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/59/f5/67e9cc5c2036f58115f9fe0f00d203cf6780c3ff8ae0e705e7a9d9e8ff9e/Flask_Login-0.6.3-py3-none-any.whl", hash = "sha256:849b25b82a436bf830a054e74214074af59097171562ab10bfa999e6b78aae5d", size = 17303, upload-time = "2023-10-30T14:53:19.636Z" },
+]
+
+[[package]]
+name = "frozenlist"
+version = "1.6.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ee/f4/d744cba2da59b5c1d88823cf9e8a6c74e4659e2b27604ed973be2a0bf5ab/frozenlist-1.6.0.tar.gz", hash = "sha256:b99655c32c1c8e06d111e7f41c06c29a5318cb1835df23a45518e02a47c63b68", size = 42831, upload-time = "2025-04-17T22:38:53.099Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/9c/8a/289b7d0de2fbac832ea80944d809759976f661557a38bb8e77db5d9f79b7/frozenlist-1.6.0-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:c5b9e42ace7d95bf41e19b87cec8f262c41d3510d8ad7514ab3862ea2197bfb1", size = 160193, upload-time = "2025-04-17T22:36:47.382Z" },
+    { url = "https://files.pythonhosted.org/packages/19/80/2fd17d322aec7f430549f0669f599997174f93ee17929ea5b92781ec902c/frozenlist-1.6.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:ca9973735ce9f770d24d5484dcb42f68f135351c2fc81a7a9369e48cf2998a29", size = 123831, upload-time = "2025-04-17T22:36:49.401Z" },
+    { url = "https://files.pythonhosted.org/packages/99/06/f5812da431273f78c6543e0b2f7de67dfd65eb0a433978b2c9c63d2205e4/frozenlist-1.6.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:6ac40ec76041c67b928ca8aaffba15c2b2ee3f5ae8d0cb0617b5e63ec119ca25", size = 121862, upload-time = "2025-04-17T22:36:51.899Z" },
+    { url = "https://files.pythonhosted.org/packages/d0/31/9e61c6b5fc493cf24d54881731204d27105234d09878be1a5983182cc4a5/frozenlist-1.6.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:95b7a8a3180dfb280eb044fdec562f9b461614c0ef21669aea6f1d3dac6ee576", size = 316361, upload-time = "2025-04-17T22:36:53.402Z" },
+    { url = "https://files.pythonhosted.org/packages/9d/55/22ca9362d4f0222324981470fd50192be200154d51509ee6eb9baa148e96/frozenlist-1.6.0-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:c444d824e22da6c9291886d80c7d00c444981a72686e2b59d38b285617cb52c8", size = 307115, upload-time = "2025-04-17T22:36:55.016Z" },
+    { url = "https://files.pythonhosted.org/packages/ae/39/4fff42920a57794881e7bb3898dc7f5f539261711ea411b43bba3cde8b79/frozenlist-1.6.0-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:bb52c8166499a8150bfd38478248572c924c003cbb45fe3bcd348e5ac7c000f9", size = 322505, upload-time = "2025-04-17T22:36:57.12Z" },
+    { url = "https://files.pythonhosted.org/packages/55/f2/88c41f374c1e4cf0092a5459e5f3d6a1e17ed274c98087a76487783df90c/frozenlist-1.6.0-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:b35298b2db9c2468106278537ee529719228950a5fdda686582f68f247d1dc6e", size = 322666, upload-time = "2025-04-17T22:36:58.735Z" },
+    { url = "https://files.pythonhosted.org/packages/75/51/034eeb75afdf3fd03997856195b500722c0b1a50716664cde64e28299c4b/frozenlist-1.6.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d108e2d070034f9d57210f22fefd22ea0d04609fc97c5f7f5a686b3471028590", size = 302119, upload-time = "2025-04-17T22:37:00.512Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/a6/564ecde55ee633270a793999ef4fd1d2c2b32b5a7eec903b1012cb7c5143/frozenlist-1.6.0-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4e1be9111cb6756868ac242b3c2bd1f09d9aea09846e4f5c23715e7afb647103", size = 316226, upload-time = "2025-04-17T22:37:02.102Z" },
+    { url = "https://files.pythonhosted.org/packages/f1/c8/6c0682c32377f402b8a6174fb16378b683cf6379ab4d2827c580892ab3c7/frozenlist-1.6.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:94bb451c664415f02f07eef4ece976a2c65dcbab9c2f1705b7031a3a75349d8c", size = 312788, upload-time = "2025-04-17T22:37:03.578Z" },
+    { url = "https://files.pythonhosted.org/packages/b6/b8/10fbec38f82c5d163ca1750bfff4ede69713badf236a016781cf1f10a0f0/frozenlist-1.6.0-cp312-cp312-musllinux_1_2_armv7l.whl", hash = "sha256:d1a686d0b0949182b8faddea596f3fc11f44768d1f74d4cad70213b2e139d821", size = 325914, upload-time = "2025-04-17T22:37:05.213Z" },
+    { url = "https://files.pythonhosted.org/packages/62/ca/2bf4f3a1bd40cdedd301e6ecfdbb291080d5afc5f9ce350c0739f773d6b9/frozenlist-1.6.0-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:ea8e59105d802c5a38bdbe7362822c522230b3faba2aa35c0fa1765239b7dd70", size = 305283, upload-time = "2025-04-17T22:37:06.985Z" },
+    { url = "https://files.pythonhosted.org/packages/09/64/20cc13ccf94abc2a1f482f74ad210703dc78a590d0b805af1c9aa67f76f9/frozenlist-1.6.0-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:abc4e880a9b920bc5020bf6a431a6bb40589d9bca3975c980495f63632e8382f", size = 319264, upload-time = "2025-04-17T22:37:08.618Z" },
+    { url = "https://files.pythonhosted.org/packages/20/ff/86c6a2bbe98cfc231519f5e6d712a0898488ceac804a917ce014f32e68f6/frozenlist-1.6.0-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:9a79713adfe28830f27a3c62f6b5406c37376c892b05ae070906f07ae4487046", size = 326482, upload-time = "2025-04-17T22:37:10.196Z" },
+    { url = "https://files.pythonhosted.org/packages/2f/da/8e381f66367d79adca245d1d71527aac774e30e291d41ef161ce2d80c38e/frozenlist-1.6.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:9a0318c2068e217a8f5e3b85e35899f5a19e97141a45bb925bb357cfe1daf770", size = 318248, upload-time = "2025-04-17T22:37:12.284Z" },
+    { url = "https://files.pythonhosted.org/packages/39/24/1a1976563fb476ab6f0fa9fefaac7616a4361dbe0461324f9fd7bf425dbe/frozenlist-1.6.0-cp312-cp312-win32.whl", hash = "sha256:853ac025092a24bb3bf09ae87f9127de9fe6e0c345614ac92536577cf956dfcc", size = 115161, upload-time = "2025-04-17T22:37:13.902Z" },
+    { url = "https://files.pythonhosted.org/packages/80/2e/fb4ed62a65f8cd66044706b1013f0010930d8cbb0729a2219561ea075434/frozenlist-1.6.0-cp312-cp312-win_amd64.whl", hash = "sha256:2bdfe2d7e6c9281c6e55523acd6c2bf77963cb422fdc7d142fb0cb6621b66878", size = 120548, upload-time = "2025-04-17T22:37:15.326Z" },
+    { url = "https://files.pythonhosted.org/packages/6f/e5/04c7090c514d96ca00887932417f04343ab94904a56ab7f57861bf63652d/frozenlist-1.6.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:1d7fb014fe0fbfee3efd6a94fc635aeaa68e5e1720fe9e57357f2e2c6e1a647e", size = 158182, upload-time = "2025-04-17T22:37:16.837Z" },
+    { url = "https://files.pythonhosted.org/packages/e9/8f/60d0555c61eec855783a6356268314d204137f5e0c53b59ae2fc28938c99/frozenlist-1.6.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:01bcaa305a0fdad12745502bfd16a1c75b14558dabae226852f9159364573117", size = 122838, upload-time = "2025-04-17T22:37:18.352Z" },
+    { url = "https://files.pythonhosted.org/packages/5a/a7/d0ec890e3665b4b3b7c05dc80e477ed8dc2e2e77719368e78e2cd9fec9c8/frozenlist-1.6.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:8b314faa3051a6d45da196a2c495e922f987dc848e967d8cfeaee8a0328b1cd4", size = 120980, upload-time = "2025-04-17T22:37:19.857Z" },
+    { url = "https://files.pythonhosted.org/packages/cc/19/9b355a5e7a8eba903a008579964192c3e427444752f20b2144b10bb336df/frozenlist-1.6.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:da62fecac21a3ee10463d153549d8db87549a5e77eefb8c91ac84bb42bb1e4e3", size = 305463, upload-time = "2025-04-17T22:37:21.328Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/8d/5b4c758c2550131d66935ef2fa700ada2461c08866aef4229ae1554b93ca/frozenlist-1.6.0-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:d1eb89bf3454e2132e046f9599fbcf0a4483ed43b40f545551a39316d0201cd1", size = 297985, upload-time = "2025-04-17T22:37:23.55Z" },
+    { url = "https://files.pythonhosted.org/packages/48/2c/537ec09e032b5865715726b2d1d9813e6589b571d34d01550c7aeaad7e53/frozenlist-1.6.0-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d18689b40cb3936acd971f663ccb8e2589c45db5e2c5f07e0ec6207664029a9c", size = 311188, upload-time = "2025-04-17T22:37:25.221Z" },
+    { url = "https://files.pythonhosted.org/packages/31/2f/1aa74b33f74d54817055de9a4961eff798f066cdc6f67591905d4fc82a84/frozenlist-1.6.0-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:e67ddb0749ed066b1a03fba812e2dcae791dd50e5da03be50b6a14d0c1a9ee45", size = 311874, upload-time = "2025-04-17T22:37:26.791Z" },
+    { url = "https://files.pythonhosted.org/packages/bf/f0/cfec18838f13ebf4b37cfebc8649db5ea71a1b25dacd691444a10729776c/frozenlist-1.6.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:fc5e64626e6682638d6e44398c9baf1d6ce6bc236d40b4b57255c9d3f9761f1f", size = 291897, upload-time = "2025-04-17T22:37:28.958Z" },
+    { url = "https://files.pythonhosted.org/packages/ea/a5/deb39325cbbea6cd0a46db8ccd76150ae2fcbe60d63243d9df4a0b8c3205/frozenlist-1.6.0-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:437cfd39564744ae32ad5929e55b18ebd88817f9180e4cc05e7d53b75f79ce85", size = 305799, upload-time = "2025-04-17T22:37:30.889Z" },
+    { url = "https://files.pythonhosted.org/packages/78/22/6ddec55c5243a59f605e4280f10cee8c95a449f81e40117163383829c241/frozenlist-1.6.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:62dd7df78e74d924952e2feb7357d826af8d2f307557a779d14ddf94d7311be8", size = 302804, upload-time = "2025-04-17T22:37:32.489Z" },
+    { url = "https://files.pythonhosted.org/packages/5d/b7/d9ca9bab87f28855063c4d202936800219e39db9e46f9fb004d521152623/frozenlist-1.6.0-cp313-cp313-musllinux_1_2_armv7l.whl", hash = "sha256:a66781d7e4cddcbbcfd64de3d41a61d6bdde370fc2e38623f30b2bd539e84a9f", size = 316404, upload-time = "2025-04-17T22:37:34.59Z" },
+    { url = "https://files.pythonhosted.org/packages/a6/3a/1255305db7874d0b9eddb4fe4a27469e1fb63720f1fc6d325a5118492d18/frozenlist-1.6.0-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:482fe06e9a3fffbcd41950f9d890034b4a54395c60b5e61fae875d37a699813f", size = 295572, upload-time = "2025-04-17T22:37:36.337Z" },
+    { url = "https://files.pythonhosted.org/packages/2a/f2/8d38eeee39a0e3a91b75867cc102159ecccf441deb6ddf67be96d3410b84/frozenlist-1.6.0-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:e4f9373c500dfc02feea39f7a56e4f543e670212102cc2eeb51d3a99c7ffbde6", size = 307601, upload-time = "2025-04-17T22:37:37.923Z" },
+    { url = "https://files.pythonhosted.org/packages/38/04/80ec8e6b92f61ef085422d7b196822820404f940950dde5b2e367bede8bc/frozenlist-1.6.0-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:e69bb81de06827147b7bfbaeb284d85219fa92d9f097e32cc73675f279d70188", size = 314232, upload-time = "2025-04-17T22:37:39.669Z" },
+    { url = "https://files.pythonhosted.org/packages/3a/58/93b41fb23e75f38f453ae92a2f987274c64637c450285577bd81c599b715/frozenlist-1.6.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:7613d9977d2ab4a9141dde4a149f4357e4065949674c5649f920fec86ecb393e", size = 308187, upload-time = "2025-04-17T22:37:41.662Z" },
+    { url = "https://files.pythonhosted.org/packages/6a/a2/e64df5c5aa36ab3dee5a40d254f3e471bb0603c225f81664267281c46a2d/frozenlist-1.6.0-cp313-cp313-win32.whl", hash = "sha256:4def87ef6d90429f777c9d9de3961679abf938cb6b7b63d4a7eb8a268babfce4", size = 114772, upload-time = "2025-04-17T22:37:43.132Z" },
+    { url = "https://files.pythonhosted.org/packages/a0/77/fead27441e749b2d574bb73d693530d59d520d4b9e9679b8e3cb779d37f2/frozenlist-1.6.0-cp313-cp313-win_amd64.whl", hash = "sha256:37a8a52c3dfff01515e9bbbee0e6063181362f9de3db2ccf9bc96189b557cbfd", size = 119847, upload-time = "2025-04-17T22:37:45.118Z" },
+    { url = "https://files.pythonhosted.org/packages/df/bd/cc6d934991c1e5d9cafda83dfdc52f987c7b28343686aef2e58a9cf89f20/frozenlist-1.6.0-cp313-cp313t-macosx_10_13_universal2.whl", hash = "sha256:46138f5a0773d064ff663d273b309b696293d7a7c00a0994c5c13a5078134b64", size = 174937, upload-time = "2025-04-17T22:37:46.635Z" },
+    { url = "https://files.pythonhosted.org/packages/f2/a2/daf945f335abdbfdd5993e9dc348ef4507436936ab3c26d7cfe72f4843bf/frozenlist-1.6.0-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:f88bc0a2b9c2a835cb888b32246c27cdab5740059fb3688852bf91e915399b91", size = 136029, upload-time = "2025-04-17T22:37:48.192Z" },
+    { url = "https://files.pythonhosted.org/packages/51/65/4c3145f237a31247c3429e1c94c384d053f69b52110a0d04bfc8afc55fb2/frozenlist-1.6.0-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:777704c1d7655b802c7850255639672e90e81ad6fa42b99ce5ed3fbf45e338dd", size = 134831, upload-time = "2025-04-17T22:37:50.485Z" },
+    { url = "https://files.pythonhosted.org/packages/77/38/03d316507d8dea84dfb99bdd515ea245628af964b2bf57759e3c9205cc5e/frozenlist-1.6.0-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:85ef8d41764c7de0dcdaf64f733a27352248493a85a80661f3c678acd27e31f2", size = 392981, upload-time = "2025-04-17T22:37:52.558Z" },
+    { url = "https://files.pythonhosted.org/packages/37/02/46285ef9828f318ba400a51d5bb616ded38db8466836a9cfa39f3903260b/frozenlist-1.6.0-cp313-cp313t-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:da5cb36623f2b846fb25009d9d9215322318ff1c63403075f812b3b2876c8506", size = 371999, upload-time = "2025-04-17T22:37:54.092Z" },
+    { url = "https://files.pythonhosted.org/packages/0d/64/1212fea37a112c3c5c05bfb5f0a81af4836ce349e69be75af93f99644da9/frozenlist-1.6.0-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:cbb56587a16cf0fb8acd19e90ff9924979ac1431baea8681712716a8337577b0", size = 392200, upload-time = "2025-04-17T22:37:55.951Z" },
+    { url = "https://files.pythonhosted.org/packages/81/ce/9a6ea1763e3366e44a5208f76bf37c76c5da570772375e4d0be85180e588/frozenlist-1.6.0-cp313-cp313t-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:c6154c3ba59cda3f954c6333025369e42c3acd0c6e8b6ce31eb5c5b8116c07e0", size = 390134, upload-time = "2025-04-17T22:37:57.633Z" },
+    { url = "https://files.pythonhosted.org/packages/bc/36/939738b0b495b2c6d0c39ba51563e453232813042a8d908b8f9544296c29/frozenlist-1.6.0-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:2e8246877afa3f1ae5c979fe85f567d220f86a50dc6c493b9b7d8191181ae01e", size = 365208, upload-time = "2025-04-17T22:37:59.742Z" },
+    { url = "https://files.pythonhosted.org/packages/b4/8b/939e62e93c63409949c25220d1ba8e88e3960f8ef6a8d9ede8f94b459d27/frozenlist-1.6.0-cp313-cp313t-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:7b0f6cce16306d2e117cf9db71ab3a9e8878a28176aeaf0dbe35248d97b28d0c", size = 385548, upload-time = "2025-04-17T22:38:01.416Z" },
+    { url = "https://files.pythonhosted.org/packages/62/38/22d2873c90102e06a7c5a3a5b82ca47e393c6079413e8a75c72bff067fa8/frozenlist-1.6.0-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:1b8e8cd8032ba266f91136d7105706ad57770f3522eac4a111d77ac126a25a9b", size = 391123, upload-time = "2025-04-17T22:38:03.049Z" },
+    { url = "https://files.pythonhosted.org/packages/44/78/63aaaf533ee0701549500f6d819be092c6065cb5c577edb70c09df74d5d0/frozenlist-1.6.0-cp313-cp313t-musllinux_1_2_armv7l.whl", hash = "sha256:e2ada1d8515d3ea5378c018a5f6d14b4994d4036591a52ceaf1a1549dec8e1ad", size = 394199, upload-time = "2025-04-17T22:38:04.776Z" },
+    { url = "https://files.pythonhosted.org/packages/54/45/71a6b48981d429e8fbcc08454dc99c4c2639865a646d549812883e9c9dd3/frozenlist-1.6.0-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:cdb2c7f071e4026c19a3e32b93a09e59b12000751fc9b0b7758da899e657d215", size = 373854, upload-time = "2025-04-17T22:38:06.576Z" },
+    { url = "https://files.pythonhosted.org/packages/3f/f3/dbf2a5e11736ea81a66e37288bf9f881143a7822b288a992579ba1b4204d/frozenlist-1.6.0-cp313-cp313t-musllinux_1_2_ppc64le.whl", hash = "sha256:03572933a1969a6d6ab509d509e5af82ef80d4a5d4e1e9f2e1cdd22c77a3f4d2", size = 395412, upload-time = "2025-04-17T22:38:08.197Z" },
+    { url = "https://files.pythonhosted.org/packages/b3/f1/c63166806b331f05104d8ea385c4acd511598568b1f3e4e8297ca54f2676/frozenlist-1.6.0-cp313-cp313t-musllinux_1_2_s390x.whl", hash = "sha256:77effc978947548b676c54bbd6a08992759ea6f410d4987d69feea9cd0919911", size = 394936, upload-time = "2025-04-17T22:38:10.056Z" },
+    { url = "https://files.pythonhosted.org/packages/ef/ea/4f3e69e179a430473eaa1a75ff986526571215fefc6b9281cdc1f09a4eb8/frozenlist-1.6.0-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:a2bda8be77660ad4089caf2223fdbd6db1858462c4b85b67fbfa22102021e497", size = 391459, upload-time = "2025-04-17T22:38:11.826Z" },
+    { url = "https://files.pythonhosted.org/packages/d3/c3/0fc2c97dea550df9afd072a37c1e95421652e3206bbeaa02378b24c2b480/frozenlist-1.6.0-cp313-cp313t-win32.whl", hash = "sha256:a4d96dc5bcdbd834ec6b0f91027817214216b5b30316494d2b1aebffb87c534f", size = 128797, upload-time = "2025-04-17T22:38:14.013Z" },
+    { url = "https://files.pythonhosted.org/packages/ae/f5/79c9320c5656b1965634fe4be9c82b12a3305bdbc58ad9cb941131107b20/frozenlist-1.6.0-cp313-cp313t-win_amd64.whl", hash = "sha256:e18036cb4caa17ea151fd5f3d70be9d354c99eb8cf817a3ccde8a7873b074348", size = 134709, upload-time = "2025-04-17T22:38:15.551Z" },
+    { url = "https://files.pythonhosted.org/packages/71/3e/b04a0adda73bd52b390d730071c0d577073d3d26740ee1bad25c3ad0f37b/frozenlist-1.6.0-py3-none-any.whl", hash = "sha256:535eec9987adb04701266b92745d6cdcef2e77669299359c3009c3404dd5d191", size = 12404, upload-time = "2025-04-17T22:38:51.668Z" },
+]
+
+[[package]]
+name = "fsspec"
+version = "2025.5.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/00/f7/27f15d41f0ed38e8fcc488584b57e902b331da7f7c6dcda53721b15838fc/fsspec-2025.5.1.tar.gz", hash = "sha256:2e55e47a540b91843b755e83ded97c6e897fa0942b11490113f09e9c443c2475", size = 303033, upload-time = "2025-05-24T12:03:23.792Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/bb/61/78c7b3851add1481b048b5fdc29067397a1784e2910592bc81bb3f608635/fsspec-2025.5.1-py3-none-any.whl", hash = "sha256:24d3a2e663d5fc735ab256263c4075f374a174c3410c0b25e5bd1970bceaa462", size = 199052, upload-time = "2025-05-24T12:03:21.66Z" },
+]
+
+[[package]]
+name = "geni-lib-xlab"
+version = "1.0.0"
+source = { path = "scripts/geni_lib/mod/geni_lib_xlab-1.0.0.tar.gz" }
+dependencies = [
+    { name = "cryptography" },
+    { name = "lxml" },
+    { name = "requests" },
+    { name = "wrapt" },
+]
+sdist = { hash = "sha256:3099aab2c05e8206e0dd186aabc580be5ec0882d3a1e878bd142e335654e7a9c" }
+
+[package.metadata]
+requires-dist = [
+    { name = "cryptography" },
+    { name = "ipaddress", marker = "python_full_version == '2.7.*'" },
+    { name = "lxml" },
+    { name = "requests" },
+    { name = "wrapt" },
+]
+
+[[package]]
+name = "gevent"
+version = "25.9.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cffi", marker = "platform_python_implementation == 'CPython' and sys_platform == 'win32'" },
+    { name = "greenlet", marker = "platform_python_implementation == 'CPython'" },
+    { name = "zope-event" },
+    { name = "zope-interface" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/9e/48/b3ef2673ffb940f980966694e40d6d32560f3ffa284ecaeb5ea3a90a6d3f/gevent-25.9.1.tar.gz", hash = "sha256:adf9cd552de44a4e6754c51ff2e78d9193b7fa6eab123db9578a210e657235dd", size = 5059025, upload-time = "2025-09-17T16:15:34.528Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f7/49/e55930ba5259629eb28ac7ee1abbca971996a9165f902f0249b561602f24/gevent-25.9.1-cp312-cp312-macosx_11_0_universal2.whl", hash = "sha256:46b188248c84ffdec18a686fcac5dbb32365d76912e14fda350db5dc0bfd4f86", size = 2955991, upload-time = "2025-09-17T14:52:30.568Z" },
+    { url = "https://files.pythonhosted.org/packages/aa/88/63dc9e903980e1da1e16541ec5c70f2b224ec0a8e34088cb42794f1c7f52/gevent-25.9.1-cp312-cp312-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:f2b54ea3ca6f0c763281cd3f96010ac7e98c2e267feb1221b5a26e2ca0b9a692", size = 1808503, upload-time = "2025-09-17T15:41:25.59Z" },
+    { url = "https://files.pythonhosted.org/packages/7a/8d/7236c3a8f6ef7e94c22e658397009596fa90f24c7d19da11ad7ab3a9248e/gevent-25.9.1-cp312-cp312-manylinux2014_ppc64le.manylinux_2_17_ppc64le.whl", hash = "sha256:7a834804ac00ed8a92a69d3826342c677be651b1c3cd66cc35df8bc711057aa2", size = 1890001, upload-time = "2025-09-17T15:49:01.227Z" },
+    { url = "https://files.pythonhosted.org/packages/4f/63/0d7f38c4a2085ecce26b50492fc6161aa67250d381e26d6a7322c309b00f/gevent-25.9.1-cp312-cp312-manylinux2014_s390x.manylinux_2_17_s390x.whl", hash = "sha256:323a27192ec4da6b22a9e51c3d9d896ff20bc53fdc9e45e56eaab76d1c39dd74", size = 1855335, upload-time = "2025-09-17T15:49:20.582Z" },
+    { url = "https://files.pythonhosted.org/packages/95/18/da5211dfc54c7a57e7432fd9a6ffeae1ce36fe5a313fa782b1c96529ea3d/gevent-25.9.1-cp312-cp312-manylinux2014_x86_64.manylinux_2_17_x86_64.whl", hash = "sha256:6ea78b39a2c51d47ff0f130f4c755a9a4bbb2dd9721149420ad4712743911a51", size = 2109046, upload-time = "2025-09-17T15:15:13.817Z" },
+    { url = "https://files.pythonhosted.org/packages/a6/5a/7bb5ec8e43a2c6444853c4a9f955f3e72f479d7c24ea86c95fb264a2de65/gevent-25.9.1-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:dc45cd3e1cc07514a419960af932a62eb8515552ed004e56755e4bf20bad30c5", size = 1827099, upload-time = "2025-09-17T15:52:41.384Z" },
+    { url = "https://files.pythonhosted.org/packages/ca/d4/b63a0a60635470d7d986ef19897e893c15326dd69e8fb342c76a4f07fe9e/gevent-25.9.1-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:34e01e50c71eaf67e92c186ee0196a039d6e4f4b35670396baed4a2d8f1b347f", size = 2172623, upload-time = "2025-09-17T15:24:12.03Z" },
+    { url = "https://files.pythonhosted.org/packages/d5/98/caf06d5d22a7c129c1fb2fc1477306902a2c8ddfd399cd26bbbd4caf2141/gevent-25.9.1-cp312-cp312-win_amd64.whl", hash = "sha256:4acd6bcd5feabf22c7c5174bd3b9535ee9f088d2bbce789f740ad8d6554b18f3", size = 1682837, upload-time = "2025-09-17T19:48:47.318Z" },
+    { url = "https://files.pythonhosted.org/packages/5a/77/b97f086388f87f8ad3e01364f845004aef0123d4430241c7c9b1f9bde742/gevent-25.9.1-cp313-cp313-macosx_11_0_universal2.whl", hash = "sha256:4f84591d13845ee31c13f44bdf6bd6c3dbf385b5af98b2f25ec328213775f2ed", size = 2973739, upload-time = "2025-09-17T14:53:30.279Z" },
+    { url = "https://files.pythonhosted.org/packages/3c/2e/9d5f204ead343e5b27bbb2fedaec7cd0009d50696b2266f590ae845d0331/gevent-25.9.1-cp313-cp313-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:9cdbb24c276a2d0110ad5c978e49daf620b153719ac8a548ce1250a7eb1b9245", size = 1809165, upload-time = "2025-09-17T15:41:27.193Z" },
+    { url = "https://files.pythonhosted.org/packages/10/3e/791d1bf1eb47748606d5f2c2aa66571f474d63e0176228b1f1fd7b77ab37/gevent-25.9.1-cp313-cp313-manylinux2014_ppc64le.manylinux_2_17_ppc64le.whl", hash = "sha256:88b6c07169468af631dcf0fdd3658f9246d6822cc51461d43f7c44f28b0abb82", size = 1890638, upload-time = "2025-09-17T15:49:02.45Z" },
+    { url = "https://files.pythonhosted.org/packages/f2/5c/9ad0229b2b4d81249ca41e4f91dd8057deaa0da6d4fbe40bf13cdc5f7a47/gevent-25.9.1-cp313-cp313-manylinux2014_s390x.manylinux_2_17_s390x.whl", hash = "sha256:b7bb0e29a7b3e6ca9bed2394aa820244069982c36dc30b70eb1004dd67851a48", size = 1857118, upload-time = "2025-09-17T15:49:22.125Z" },
+    { url = "https://files.pythonhosted.org/packages/49/2a/3010ed6c44179a3a5c5c152e6de43a30ff8bc2c8de3115ad8733533a018f/gevent-25.9.1-cp313-cp313-manylinux2014_x86_64.manylinux_2_17_x86_64.whl", hash = "sha256:2951bb070c0ee37b632ac9134e4fdaad70d2e660c931bb792983a0837fe5b7d7", size = 2111598, upload-time = "2025-09-17T15:15:15.226Z" },
+    { url = "https://files.pythonhosted.org/packages/08/75/6bbe57c19a7aa4527cc0f9afcdf5a5f2aed2603b08aadbccb5bf7f607ff4/gevent-25.9.1-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:e4e17c2d57e9a42e25f2a73d297b22b60b2470a74be5a515b36c984e1a246d47", size = 1829059, upload-time = "2025-09-17T15:52:42.596Z" },
+    { url = "https://files.pythonhosted.org/packages/06/6e/19a9bee9092be45679cb69e4dd2e0bf5f897b7140b4b39c57cc123d24829/gevent-25.9.1-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:8d94936f8f8b23d9de2251798fcb603b84f083fdf0d7f427183c1828fb64f117", size = 2173529, upload-time = "2025-09-17T15:24:13.897Z" },
+    { url = "https://files.pythonhosted.org/packages/ca/4f/50de9afd879440e25737e63f5ba6ee764b75a3abe17376496ab57f432546/gevent-25.9.1-cp313-cp313-win_amd64.whl", hash = "sha256:eb51c5f9537b07da673258b4832f6635014fee31690c3f0944d34741b69f92fa", size = 1681518, upload-time = "2025-09-17T19:39:47.488Z" },
+    { url = "https://files.pythonhosted.org/packages/15/1a/948f8167b2cdce573cf01cec07afc64d0456dc134b07900b26ac7018b37e/gevent-25.9.1-cp314-cp314-macosx_11_0_universal2.whl", hash = "sha256:1a3fe4ea1c312dbf6b375b416925036fe79a40054e6bf6248ee46526ea628be1", size = 2982934, upload-time = "2025-09-17T14:54:11.302Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/ec/726b146d1d3aad82e03d2e1e1507048ab6072f906e83f97f40667866e582/gevent-25.9.1-cp314-cp314-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:0adb937f13e5fb90cca2edf66d8d7e99d62a299687400ce2edee3f3504009356", size = 1813982, upload-time = "2025-09-17T15:41:28.506Z" },
+    { url = "https://files.pythonhosted.org/packages/35/5d/5f83f17162301662bd1ce702f8a736a8a8cac7b7a35e1d8b9866938d1f9d/gevent-25.9.1-cp314-cp314-manylinux2014_ppc64le.manylinux_2_17_ppc64le.whl", hash = "sha256:427f869a2050a4202d93cf7fd6ab5cffb06d3e9113c10c967b6e2a0d45237cb8", size = 1894902, upload-time = "2025-09-17T15:49:03.702Z" },
+    { url = "https://files.pythonhosted.org/packages/83/cd/cf5e74e353f60dab357829069ffc300a7bb414c761f52cf8c0c6e9728b8d/gevent-25.9.1-cp314-cp314-manylinux2014_s390x.manylinux_2_17_s390x.whl", hash = "sha256:c049880175e8c93124188f9d926af0a62826a3b81aa6d3074928345f8238279e", size = 1861792, upload-time = "2025-09-17T15:49:23.279Z" },
+    { url = "https://files.pythonhosted.org/packages/dd/65/b9a4526d4a4edce26fe4b3b993914ec9dc64baabad625a3101e51adb17f3/gevent-25.9.1-cp314-cp314-manylinux2014_x86_64.manylinux_2_17_x86_64.whl", hash = "sha256:b5a67a0974ad9f24721034d1e008856111e0535f1541499f72a733a73d658d1c", size = 2113215, upload-time = "2025-09-17T15:15:16.34Z" },
+    { url = "https://files.pythonhosted.org/packages/e5/be/7d35731dfaf8370795b606e515d964a0967e129db76ea7873f552045dd39/gevent-25.9.1-cp314-cp314-musllinux_1_2_aarch64.whl", hash = "sha256:1d0f5d8d73f97e24ea8d24d8be0f51e0cf7c54b8021c1fddb580bf239474690f", size = 1833449, upload-time = "2025-09-17T15:52:43.75Z" },
+    { url = "https://files.pythonhosted.org/packages/65/58/7bc52544ea5e63af88c4a26c90776feb42551b7555a1c89c20069c168a3f/gevent-25.9.1-cp314-cp314-musllinux_1_2_x86_64.whl", hash = "sha256:ddd3ff26e5c4240d3fbf5516c2d9d5f2a998ef87cfb73e1429cfaeaaec860fa6", size = 2176034, upload-time = "2025-09-17T15:24:15.676Z" },
+    { url = "https://files.pythonhosted.org/packages/c2/69/a7c4ba2ffbc7c7dbf6d8b4f5d0f0a421f7815d229f4909854266c445a3d4/gevent-25.9.1-cp314-cp314-win_amd64.whl", hash = "sha256:bb63c0d6cb9950cc94036a4995b9cc4667b8915366613449236970f4394f94d7", size = 1703019, upload-time = "2025-09-17T19:30:55.272Z" },
+]
+
+[[package]]
+name = "geventhttpclient"
+version = "2.3.5"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "brotli" },
+    { name = "certifi" },
+    { name = "gevent" },
+    { name = "urllib3" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/0a/6b/c9be60c4f4de31e9234d5cd927096cb44136767aa58b21ee4e3f0a60a15e/geventhttpclient-2.3.5.tar.gz", hash = "sha256:0f0cf13528de7628a21b28b80ee90a471d4840e3fe26f84b394644c366595151", size = 83673, upload-time = "2025-10-26T10:33:56.475Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/86/6c/bef9fbdf02ffbeea0fdc5c928c0a9824e2797951b93db295ace43efbd2c5/geventhttpclient-2.3.5-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:c262e295fa017ad7d6d62873e2a781478cb03852b1d0559ccfba598ac059fd23", size = 69745, upload-time = "2025-10-26T10:33:06.855Z" },
+    { url = "https://files.pythonhosted.org/packages/af/71/d9dfd1fd5d3ee0674942d0cdf1342001ce2c63cd95ffbd91901ace2820ab/geventhttpclient-2.3.5-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:44b822ce5ebddac4cd4ac4199acc2cbec1e968e3bce0ed4c62a4ce8ffaae9277", size = 51388, upload-time = "2025-10-26T10:33:07.607Z" },
+    { url = "https://files.pythonhosted.org/packages/6e/49/711a28fe4ac99537a051a1839872d740e40825be66c9c4b74d966f3554ef/geventhttpclient-2.3.5-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:e8926ac5338764cabcf8fb54be706a6533d45756f164940a7568b03c80adb1f8", size = 51133, upload-time = "2025-10-26T10:33:08.346Z" },
+    { url = "https://files.pythonhosted.org/packages/15/6b/d1a6056deb14aff2839b11e9b1a2536b0d47f1553f7385bf83180f764210/geventhttpclient-2.3.5-cp312-cp312-manylinux1_x86_64.manylinux_2_28_x86_64.manylinux_2_5_x86_64.whl", hash = "sha256:e84e3985a6a3f9ce39efb8fcfa4273365de2898739eea07d4b259b30ae8d58b7", size = 114985, upload-time = "2025-10-26T10:33:09.113Z" },
+    { url = "https://files.pythonhosted.org/packages/98/56/fb6b7a7c5d1b5ebe18ff9eff9f877f059231b436012c2f0498d17198f28b/geventhttpclient-2.3.5-cp312-cp312-manylinux2014_aarch64.manylinux_2_17_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:abc63685019c5d6ec08d036248a0743df36e2afa6ab8a1fc833e2a82d0be723f", size = 115657, upload-time = "2025-10-26T10:33:10.277Z" },
+    { url = "https://files.pythonhosted.org/packages/51/8b/35068d11f81f4c928dfc188db3c1a2db92f8236ad30d2be50ef64e6f59c7/geventhttpclient-2.3.5-cp312-cp312-manylinux2014_ppc64le.manylinux_2_17_ppc64le.manylinux_2_28_ppc64le.whl", hash = "sha256:18e129e49ec1dadfb5fc067ac15bd43a3e6f80ddb2b6fd994ce8235c4f8b5e92", size = 121674, upload-time = "2025-10-26T10:33:11.43Z" },
+    { url = "https://files.pythonhosted.org/packages/7f/d3/3fe234574f6baf1f85784136757b5715b4636bc3576cc9b14d303949ca1d/geventhttpclient-2.3.5-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:6a04a3bdf102100a14dab58991e984b54e7db9ed950d12d8cb9fdfe5fc5088f0", size = 111577, upload-time = "2025-10-26T10:33:12.239Z" },
+    { url = "https://files.pythonhosted.org/packages/b7/e8/186b62f2774b5bb33b08576a8094b7bce1145553df9843cfb86ad10fe301/geventhttpclient-2.3.5-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:3ecaea089408add812a7c1ad9c6043741155f4fbe5ed5c1741ce9322044f419d", size = 118453, upload-time = "2025-10-26T10:33:13.626Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/b2/3374065e10242c3013dc8a5973abd7c1514cd013a3f40b28a40de4070849/geventhttpclient-2.3.5-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:47fa4d0b9f1739570960b5125e5c86974dff8baaa245d3b96f3e214efbb3ae5e", size = 112226, upload-time = "2025-10-26T10:33:14.432Z" },
+    { url = "https://files.pythonhosted.org/packages/84/d9/ea4ed02204c84888acae2d834cf09e165388ee450ec90fc0deed6106dce0/geventhttpclient-2.3.5-cp312-cp312-win32.whl", hash = "sha256:677be43d1941543d2897123b98831867a48286c12cd378ad995f545442854558", size = 48360, upload-time = "2025-10-26T10:33:15.633Z" },
+    { url = "https://files.pythonhosted.org/packages/ec/75/7686abde7a8b2b83040a306339558b6964ebfad66ff5b83c83a4a0aaa8a7/geventhttpclient-2.3.5-cp312-cp312-win_amd64.whl", hash = "sha256:cee0ce8bb23668fb6b1a2cc572cb3d01765c5d95734c5d205e1ff459708e4c19", size = 48994, upload-time = "2025-10-26T10:33:16.431Z" },
+    { url = "https://files.pythonhosted.org/packages/8d/a7/bdcb92b4d6240538eaf7194bde4a086607a86061e31acbd4c065958e52ea/geventhttpclient-2.3.5-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:700d28d00d77e3c32d9e65dc078ee52a5ca77c3ac16f55674ae36250fe2550a1", size = 69750, upload-time = "2025-10-26T10:33:17.444Z" },
+    { url = "https://files.pythonhosted.org/packages/59/19/91d9c585a5c3221882bc372de19885c14b04534895e68ebc8fd66a897a3c/geventhttpclient-2.3.5-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:9a0c0d37fc2bc60dea9d66e839c497374a5c15ec45523ae358593c760a5d433e", size = 51392, upload-time = "2025-10-26T10:33:18.19Z" },
+    { url = "https://files.pythonhosted.org/packages/c5/30/2297177c2a5d6fde7345ff44543afb61ede37eb4b9f156fea8aed2593776/geventhttpclient-2.3.5-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:c8fceda991eab2afd95c92b3e4177ce684ea8738ef15043ebc911eb7b336dc38", size = 51126, upload-time = "2025-10-26T10:33:18.988Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/eb/b11c05d6864e4726795b6a4b41c30a6e6df5f3d4709e24a3db1f1c597240/geventhttpclient-2.3.5-cp313-cp313-manylinux1_x86_64.manylinux_2_28_x86_64.manylinux_2_5_x86_64.whl", hash = "sha256:1fbc86461e993ff6e15ee33a8252bcec6aede03ce8d8640da4205112eba28d11", size = 115000, upload-time = "2025-10-26T10:33:19.799Z" },
+    { url = "https://files.pythonhosted.org/packages/ae/09/0a5efe53df27303793a2aeaf1181fde21e490bbae9bd2cdf4ea2befba867/geventhttpclient-2.3.5-cp313-cp313-manylinux2014_aarch64.manylinux_2_17_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:2e2d8c2b55d2c3e22be8a6fa48acde4771dcdecf01309125f1d8630de8bb4daa", size = 115693, upload-time = "2025-10-26T10:33:20.634Z" },
+    { url = "https://files.pythonhosted.org/packages/0e/60/ab039a4eb2537fa0d7c70f467fa97816035b8c0556a7cd5bf830be67160a/geventhttpclient-2.3.5-cp313-cp313-manylinux2014_ppc64le.manylinux_2_17_ppc64le.manylinux_2_28_ppc64le.whl", hash = "sha256:006d301f98222d1649b5df7e5b475eefc79519fbaf3309c5fde606db188686c8", size = 121682, upload-time = "2025-10-26T10:33:21.45Z" },
+    { url = "https://files.pythonhosted.org/packages/5a/8b/c480772879b7b731c1bf4301da9df55bcb9c6e947d8a71ec2ba6705b39e6/geventhttpclient-2.3.5-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:75bd6b8131e4c566ef69df881f1861e90d00c1222e41ab211f328bec71559d75", size = 111666, upload-time = "2025-10-26T10:33:22.289Z" },
+    { url = "https://files.pythonhosted.org/packages/b9/93/b31c882d3748ca39528ce755bba243ef316803acc6a4f9157d74332bc147/geventhttpclient-2.3.5-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:3081221440b270e535cc796b8d3d4e9c423e89a58ac825de94af5a630ea9911e", size = 118445, upload-time = "2025-10-26T10:33:23.141Z" },
+    { url = "https://files.pythonhosted.org/packages/3e/c0/3c035c26e1740fd3cf83d73b36657ed2c227a6ae4d097898127b1ae71e46/geventhttpclient-2.3.5-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:ee48b9cdde46f4c1e4609f9ba7e4a4096f0447bb5e07ddd531b3bb67461cc4e2", size = 112256, upload-time = "2025-10-26T10:33:24.123Z" },
+    { url = "https://files.pythonhosted.org/packages/62/57/d010e546212f36797090ff88df4ab38becb01749e9ed07bf9a5916305ef0/geventhttpclient-2.3.5-cp313-cp313-win32.whl", hash = "sha256:22b6bd036ce0cfe5e7a280eda17ab6358b7a0f340ed5893015f3d2575624b4a4", size = 48357, upload-time = "2025-10-26T10:33:25.334Z" },
+    { url = "https://files.pythonhosted.org/packages/9d/aa/eaeefdeec8fb35dc707be4f3fa0b0034053727aa0ce6729fe13f6ce22751/geventhttpclient-2.3.5-cp313-cp313-win_amd64.whl", hash = "sha256:4d89b59ee8b672b355a598dd2a964b768c1acf9e0c3429bb8e393a9eea31dd26", size = 48986, upload-time = "2025-10-26T10:33:26.39Z" },
+    { url = "https://files.pythonhosted.org/packages/70/50/5fee5b08580997e17fb796bdde90cd6d7bdb7a971b7b736bc606370a5e49/geventhttpclient-2.3.5-cp314-cp314-macosx_10_15_universal2.whl", hash = "sha256:7a5f79c9bd0a47b18e3cf58c27f9aa4e8e13fedb12f20ea494771ad4d721f053", size = 70024, upload-time = "2025-10-26T10:33:27.206Z" },
+    { url = "https://files.pythonhosted.org/packages/74/e7/c77dc7b00cd59c59b63b2bfe3c9ebf7d4583a5eabcc6e31a5b64d29cb923/geventhttpclient-2.3.5-cp314-cp314-macosx_10_15_x86_64.whl", hash = "sha256:2e294e70d7c30f0209921dc1548428887923e85f28a78a3905b4a11aefb13746", size = 51515, upload-time = "2025-10-26T10:33:27.99Z" },
+    { url = "https://files.pythonhosted.org/packages/46/bb/946b17788d00e02a8ef2a1fde6c4769dacb00a2d628e6bf2f06e2991c885/geventhttpclient-2.3.5-cp314-cp314-macosx_11_0_arm64.whl", hash = "sha256:c5d8a4a57ecc9281c037544645141514a5753db6d78b2dda014f11ef639cd641", size = 51169, upload-time = "2025-10-26T10:33:28.784Z" },
+    { url = "https://files.pythonhosted.org/packages/53/90/105337fda82dd39a735042077e4e86cccca527aea4aaf9f8cf65c0dc2416/geventhttpclient-2.3.5-cp314-cp314-manylinux1_x86_64.manylinux_2_28_x86_64.manylinux_2_5_x86_64.whl", hash = "sha256:18f1a02a1f51731e7433876be07859c8b1ccfd826e79ce7db03a54a1c64c9cb3", size = 115034, upload-time = "2025-10-26T10:33:29.633Z" },
+    { url = "https://files.pythonhosted.org/packages/d2/ef/3dea5e1f08c8e02769dd9facd9606b1c77d697d73e69feec856c5c708823/geventhttpclient-2.3.5-cp314-cp314-manylinux2014_aarch64.manylinux_2_17_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:4024739fd05b193b233e084014ee9d87f49cbeb24727d4adf23698417f6fff13", size = 115760, upload-time = "2025-10-26T10:33:30.921Z" },
+    { url = "https://files.pythonhosted.org/packages/e0/4c/9a32a96636aadec1c043fdefbf4b0150b532b3df9f02afb3a66d008f222c/geventhttpclient-2.3.5-cp314-cp314-manylinux2014_ppc64le.manylinux_2_17_ppc64le.manylinux_2_28_ppc64le.whl", hash = "sha256:4cabd19028ccbfa5871d550f627c7b9e163de99f7ad80d451ffcbeee6fb427d9", size = 121757, upload-time = "2025-10-26T10:33:31.831Z" },
+    { url = "https://files.pythonhosted.org/packages/15/83/7d491256c1cfe9208ffa0ee7780699918b5b24d5336f719e17a4909df8be/geventhttpclient-2.3.5-cp314-cp314-musllinux_1_2_aarch64.whl", hash = "sha256:228e639471ed636a7ea46b17fdd207da34f3519e6f84da30b510673ddf2fe2a6", size = 111747, upload-time = "2025-10-26T10:33:32.666Z" },
+    { url = "https://files.pythonhosted.org/packages/c0/27/5fdc2b47a3975d050a665c1f8562bcaf6e2cf5fc92d56ee1f4ec9ec48210/geventhttpclient-2.3.5-cp314-cp314-musllinux_1_2_ppc64le.whl", hash = "sha256:ac0d3da9228f53f7a4960619172a6b6c11e0b3e8a470903166d83af66bfc8ce6", size = 118489, upload-time = "2025-10-26T10:33:33.489Z" },
+    { url = "https://files.pythonhosted.org/packages/d3/e0/704fa92777563f24beebee63567b0e04601e13ae171764dc67c7da5a8f2c/geventhttpclient-2.3.5-cp314-cp314-musllinux_1_2_x86_64.whl", hash = "sha256:d84c96d8b83c5e9b9059e4f2f62917eed834519c00b61d820b2d6aaefb4012a2", size = 112198, upload-time = "2025-10-26T10:33:34.384Z" },
+    { url = "https://files.pythonhosted.org/packages/16/6f/ac0e5d6b51a03183ee171ba3d4fd3cbfed7284d3dceaef37b6c209a67597/geventhttpclient-2.3.5-cp314-cp314t-macosx_10_15_universal2.whl", hash = "sha256:849bd108028ae0fc24ed65ca8e693c8d4ac140ecffa394e69fc77203c4dd93a2", size = 70417, upload-time = "2025-10-26T10:33:35.277Z" },
+    { url = "https://files.pythonhosted.org/packages/09/ca/6c3de521fd84a52505269ca2afd713d5d72d04badb0a27cbd2a4964d39ff/geventhttpclient-2.3.5-cp314-cp314t-macosx_10_15_x86_64.whl", hash = "sha256:3c412be766aced0bec5d4a7b12a499bc8619a6d692ac2f6df7b8062de26f724b", size = 51695, upload-time = "2025-10-26T10:33:36.056Z" },
+    { url = "https://files.pythonhosted.org/packages/40/da/47413b2483b98cd9e519c76a52aa82f049cb586ee12420e9dd4f13c56d67/geventhttpclient-2.3.5-cp314-cp314t-macosx_11_0_arm64.whl", hash = "sha256:29a8efd438bf13f69bf5099e7577c44fcec8864a832b1de39c484346f0a9bf62", size = 51384, upload-time = "2025-10-26T10:33:36.856Z" },
+    { url = "https://files.pythonhosted.org/packages/02/8e/c45858e81cfe8208f41e186896403f711fd0caae3298c11c0e5d6f1638cf/geventhttpclient-2.3.5-cp314-cp314t-manylinux1_x86_64.manylinux_2_28_x86_64.manylinux_2_5_x86_64.whl", hash = "sha256:9ab68459780add7b52ada0092af1a4773d0acc870373e6fd21179d9e32d23bfb", size = 117934, upload-time = "2025-10-26T10:33:37.775Z" },
+    { url = "https://files.pythonhosted.org/packages/6e/a9/ae0c4b5b50090c878eeee938747e3cae94776ac066fee35ca2bc51f146bc/geventhttpclient-2.3.5-cp314-cp314t-manylinux2014_aarch64.manylinux_2_17_aarch64.manylinux_2_28_aarch64.whl", hash = "sha256:966ec7a7948adbf2dc5f68d76119d29f05e0c1f645c0d516a5ddb35f9e5d3242", size = 119584, upload-time = "2025-10-26T10:33:38.603Z" },
+    { url = "https://files.pythonhosted.org/packages/9d/a5/82bff95f26d4fda52a9279142a47fcf49bc3a70b2489a55cf609481d0081/geventhttpclient-2.3.5-cp314-cp314t-manylinux2014_ppc64le.manylinux_2_17_ppc64le.manylinux_2_28_ppc64le.whl", hash = "sha256:693d8fea804cd2547b9cc9bab13c73f9394b912391ab6e34ea3719a1a875e58c", size = 125389, upload-time = "2025-10-26T10:33:39.45Z" },
+    { url = "https://files.pythonhosted.org/packages/29/24/445a824edd51e43bfd81fa03f91b91580540592f312237c21a75c97e2fa4/geventhttpclient-2.3.5-cp314-cp314t-musllinux_1_2_aarch64.whl", hash = "sha256:ac03db48b1e0e913b3becd1e5fb2b52453754172be6868e067787f72cd1158ed", size = 115216, upload-time = "2025-10-26T10:33:40.363Z" },
+    { url = "https://files.pythonhosted.org/packages/49/d8/ef1c37860cc8f0f5d7ce8086bf385818fcc5e8e44c1fe4aad3783c34eaef/geventhttpclient-2.3.5-cp314-cp314t-musllinux_1_2_ppc64le.whl", hash = "sha256:79e2afab2ec6562bb3814bdac6bb04333f3c6ab4824666565a73f73caf91d8fd", size = 121867, upload-time = "2025-10-26T10:33:41.237Z" },
+    { url = "https://files.pythonhosted.org/packages/7a/50/75d5a7d123015c8cd57710fecc7c1ecdecb7a98381034c1f87ba5dfb87e4/geventhttpclient-2.3.5-cp314-cp314t-musllinux_1_2_x86_64.whl", hash = "sha256:7803e3e2db5f2bc87743afd015b86b7250c20dc4ace68899b2510a98519d8643", size = 114998, upload-time = "2025-10-26T10:33:42.145Z" },
+]
+
+[[package]]
+name = "gguf"
+version = "0.10.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "numpy" },
+    { name = "pyyaml" },
+    { name = "tqdm" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/0e/c4/a159e9f842b0e8b8495b2689af6cf3426f002cf01207ca8134db82fc4088/gguf-0.10.0.tar.gz", hash = "sha256:52a30ef26328b419ffc47d9269fc580c238edf1c8a19b5ea143c323e04a038c1", size = 65704, upload-time = "2024-08-23T08:03:25.599Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/1b/e4/c5f9bd71840ae9afb7e2b7c285ba209f2ef5e9cd83885f8c596c551d3026/gguf-0.10.0-py3-none-any.whl", hash = "sha256:706089fba756a06913227841b4a6c8398360fa991569fd974e663a92b224e33f", size = 71584, upload-time = "2024-08-23T08:03:24.088Z" },
+]
+
+[[package]]
+name = "gitdb"
+version = "4.0.12"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "smmap" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/72/94/63b0fc47eb32792c7ba1fe1b694daec9a63620db1e313033d18140c2320a/gitdb-4.0.12.tar.gz", hash = "sha256:5ef71f855d191a3326fcfbc0d5da835f26b13fbcba60c32c21091c349ffdb571", size = 394684, upload-time = "2025-01-02T07:20:46.413Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a0/61/5c78b91c3143ed5c14207f463aecfc8f9dbb5092fb2869baf37c273b2705/gitdb-4.0.12-py3-none-any.whl", hash = "sha256:67073e15955400952c6565cc3e707c554a4eea2e428946f7a4c162fab9bd9bcf", size = 62794, upload-time = "2025-01-02T07:20:43.624Z" },
+]
+
+[[package]]
+name = "gitpython"
+version = "3.1.44"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "gitdb" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c0/89/37df0b71473153574a5cdef8f242de422a0f5d26d7a9e231e6f169b4ad14/gitpython-3.1.44.tar.gz", hash = "sha256:c87e30b26253bf5418b01b0660f818967f3c503193838337fe5e573331249269", size = 214196, upload-time = "2025-01-02T07:32:43.59Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/1d/9a/4114a9057db2f1462d5c8f8390ab7383925fe1ac012eaa42402ad65c2963/GitPython-3.1.44-py3-none-any.whl", hash = "sha256:9e0e10cda9bed1ee64bc9a6de50e7e38a9c9943241cd7f585f6df3ed28011110", size = 207599, upload-time = "2025-01-02T07:32:40.731Z" },
+]
+
+[[package]]
+name = "google-ai-generativelanguage"
+version = "0.7.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "google-api-core", extra = ["grpc"] },
+    { name = "google-auth" },
+    { name = "proto-plus" },
+    { name = "protobuf" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c5/35/af6c759bfde70386c741309df0cba6a1cb09b8bbd1d02c841df51f4c672d/google_ai_generativelanguage-0.7.0.tar.gz", hash = "sha256:207fed3089949e2e99f7cbd513e2d0ea5f2babdfa5a8f2f239c3ddffe6bd4297", size = 1475859, upload-time = "2025-09-02T15:39:53.46Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f5/e7/b670b2d5b53f18ae51d331283278595fea93a156ea79baf59d4098effaec/google_ai_generativelanguage-0.7.0-py3-none-any.whl", hash = "sha256:3241215c16e669f37054f6111c84cca50fdb7a8e10a62933b9e68086ce71eefe", size = 1394333, upload-time = "2025-09-02T15:39:06.14Z" },
+]
+
+[[package]]
+name = "google-api-core"
+version = "2.25.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "google-auth" },
+    { name = "googleapis-common-protos" },
+    { name = "proto-plus" },
+    { name = "protobuf" },
+    { name = "requests" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/dc/21/e9d043e88222317afdbdb567165fdbc3b0aad90064c7e0c9eb0ad9955ad8/google_api_core-2.25.1.tar.gz", hash = "sha256:d2aaa0b13c78c61cb3f4282c464c046e45fbd75755683c9c525e6e8f7ed0a5e8", size = 165443, upload-time = "2025-06-12T20:52:20.439Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/14/4b/ead00905132820b623732b175d66354e9d3e69fcf2a5dcdab780664e7896/google_api_core-2.25.1-py3-none-any.whl", hash = "sha256:8a2a56c1fef82987a524371f99f3bd0143702fecc670c72e600c1cda6bf8dbb7", size = 160807, upload-time = "2025-06-12T20:52:19.334Z" },
+]
+
+[package.optional-dependencies]
+grpc = [
+    { name = "grpcio" },
+    { name = "grpcio-status" },
+]
+
+[[package]]
+name = "google-auth"
+version = "2.40.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cachetools" },
+    { name = "pyasn1-modules" },
+    { name = "rsa" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/66/84/f67f53c505a6b2c5da05c988e2a5483f5ba9eee4b1841d2e3ff22f547cd5/google_auth-2.40.2.tar.gz", hash = "sha256:a33cde547a2134273226fa4b853883559947ebe9207521f7afc707efbf690f58", size = 280990, upload-time = "2025-05-21T18:04:59.816Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/6a/c7/e2d82e6702e2a9e2311c138f8e1100f21d08aed0231290872b229ae57a86/google_auth-2.40.2-py2.py3-none-any.whl", hash = "sha256:f7e568d42eedfded58734f6a60c58321896a621f7c116c411550a4b4a13da90b", size = 216102, upload-time = "2025-05-21T18:04:57.547Z" },
+]
+
+[[package]]
+name = "googleapis-common-protos"
+version = "1.70.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "protobuf" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/39/24/33db22342cf4a2ea27c9955e6713140fedd51e8b141b5ce5260897020f1a/googleapis_common_protos-1.70.0.tar.gz", hash = "sha256:0e1b44e0ea153e6594f9f394fef15193a68aaaea2d843f83e2742717ca753257", size = 145903, upload-time = "2025-04-14T10:17:02.924Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/86/f1/62a193f0227cf15a920390abe675f386dec35f7ae3ffe6da582d3ade42c7/googleapis_common_protos-1.70.0-py3-none-any.whl", hash = "sha256:b8bfcca8c25a2bb253e0e0b0adaf8c00773e5e6af6fd92397576680b807e0fd8", size = 294530, upload-time = "2025-04-14T10:17:01.271Z" },
+]
+
+[[package]]
+name = "greenlet"
+version = "3.2.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/34/c1/a82edae11d46c0d83481aacaa1e578fea21d94a1ef400afd734d47ad95ad/greenlet-3.2.2.tar.gz", hash = "sha256:ad053d34421a2debba45aa3cc39acf454acbcd025b3fc1a9f8a0dee237abd485", size = 185797, upload-time = "2025-05-09T19:47:35.066Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2c/a1/88fdc6ce0df6ad361a30ed78d24c86ea32acb2b563f33e39e927b1da9ea0/greenlet-3.2.2-cp312-cp312-macosx_11_0_universal2.whl", hash = "sha256:df4d1509efd4977e6a844ac96d8be0b9e5aa5d5c77aa27ca9f4d3f92d3fcf330", size = 270413, upload-time = "2025-05-09T14:51:32.455Z" },
+    { url = "https://files.pythonhosted.org/packages/a6/2e/6c1caffd65490c68cd9bcec8cb7feb8ac7b27d38ba1fea121fdc1f2331dc/greenlet-3.2.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:da956d534a6d1b9841f95ad0f18ace637668f680b1339ca4dcfb2c1837880a0b", size = 637242, upload-time = "2025-05-09T15:24:02.63Z" },
+    { url = "https://files.pythonhosted.org/packages/98/28/088af2cedf8823b6b7ab029a5626302af4ca1037cf8b998bed3a8d3cb9e2/greenlet-3.2.2-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:9c7b15fb9b88d9ee07e076f5a683027bc3befd5bb5d25954bb633c385d8b737e", size = 651444, upload-time = "2025-05-09T15:24:49.856Z" },
+    { url = "https://files.pythonhosted.org/packages/4a/9f/0116ab876bb0bc7a81eadc21c3f02cd6100dcd25a1cf2a085a130a63a26a/greenlet-3.2.2-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:752f0e79785e11180ebd2e726c8a88109ded3e2301d40abced2543aa5d164275", size = 646067, upload-time = "2025-05-09T15:29:24.989Z" },
+    { url = "https://files.pythonhosted.org/packages/35/17/bb8f9c9580e28a94a9575da847c257953d5eb6e39ca888239183320c1c28/greenlet-3.2.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9ae572c996ae4b5e122331e12bbb971ea49c08cc7c232d1bd43150800a2d6c65", size = 648153, upload-time = "2025-05-09T14:53:34.716Z" },
+    { url = "https://files.pythonhosted.org/packages/2c/ee/7f31b6f7021b8df6f7203b53b9cc741b939a2591dcc6d899d8042fcf66f2/greenlet-3.2.2-cp312-cp312-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:02f5972ff02c9cf615357c17ab713737cccfd0eaf69b951084a9fd43f39833d3", size = 603865, upload-time = "2025-05-09T14:53:45.738Z" },
+    { url = "https://files.pythonhosted.org/packages/b5/2d/759fa59323b521c6f223276a4fc3d3719475dc9ae4c44c2fe7fc750f8de0/greenlet-3.2.2-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:4fefc7aa68b34b9224490dfda2e70ccf2131368493add64b4ef2d372955c207e", size = 1119575, upload-time = "2025-05-09T15:27:04.248Z" },
+    { url = "https://files.pythonhosted.org/packages/30/05/356813470060bce0e81c3df63ab8cd1967c1ff6f5189760c1a4734d405ba/greenlet-3.2.2-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:a31ead8411a027c2c4759113cf2bd473690517494f3d6e4bf67064589afcd3c5", size = 1147460, upload-time = "2025-05-09T14:54:00.315Z" },
+    { url = "https://files.pythonhosted.org/packages/07/f4/b2a26a309a04fb844c7406a4501331b9400e1dd7dd64d3450472fd47d2e1/greenlet-3.2.2-cp312-cp312-win_amd64.whl", hash = "sha256:b24c7844c0a0afc3ccbeb0b807adeefb7eff2b5599229ecedddcfeb0ef333bec", size = 296239, upload-time = "2025-05-09T14:57:17.633Z" },
+    { url = "https://files.pythonhosted.org/packages/89/30/97b49779fff8601af20972a62cc4af0c497c1504dfbb3e93be218e093f21/greenlet-3.2.2-cp313-cp313-macosx_11_0_universal2.whl", hash = "sha256:3ab7194ee290302ca15449f601036007873028712e92ca15fc76597a0aeb4c59", size = 269150, upload-time = "2025-05-09T14:50:30.784Z" },
+    { url = "https://files.pythonhosted.org/packages/21/30/877245def4220f684bc2e01df1c2e782c164e84b32e07373992f14a2d107/greenlet-3.2.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:2dc5c43bb65ec3669452af0ab10729e8fdc17f87a1f2ad7ec65d4aaaefabf6bf", size = 637381, upload-time = "2025-05-09T15:24:12.893Z" },
+    { url = "https://files.pythonhosted.org/packages/8e/16/adf937908e1f913856b5371c1d8bdaef5f58f251d714085abeea73ecc471/greenlet-3.2.2-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:decb0658ec19e5c1f519faa9a160c0fc85a41a7e6654b3ce1b44b939f8bf1325", size = 651427, upload-time = "2025-05-09T15:24:51.074Z" },
+    { url = "https://files.pythonhosted.org/packages/ad/49/6d79f58fa695b618654adac64e56aff2eeb13344dc28259af8f505662bb1/greenlet-3.2.2-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:6fadd183186db360b61cb34e81117a096bff91c072929cd1b529eb20dd46e6c5", size = 645795, upload-time = "2025-05-09T15:29:26.673Z" },
+    { url = "https://files.pythonhosted.org/packages/5a/e6/28ed5cb929c6b2f001e96b1d0698c622976cd8f1e41fe7ebc047fa7c6dd4/greenlet-3.2.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1919cbdc1c53ef739c94cf2985056bcc0838c1f217b57647cbf4578576c63825", size = 648398, upload-time = "2025-05-09T14:53:36.61Z" },
+    { url = "https://files.pythonhosted.org/packages/9d/70/b200194e25ae86bc57077f695b6cc47ee3118becf54130c5514456cf8dac/greenlet-3.2.2-cp313-cp313-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:3885f85b61798f4192d544aac7b25a04ece5fe2704670b4ab73c2d2c14ab740d", size = 606795, upload-time = "2025-05-09T14:53:47.039Z" },
+    { url = "https://files.pythonhosted.org/packages/f8/c8/ba1def67513a941154ed8f9477ae6e5a03f645be6b507d3930f72ed508d3/greenlet-3.2.2-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:85f3e248507125bf4af607a26fd6cb8578776197bd4b66e35229cdf5acf1dfbf", size = 1117976, upload-time = "2025-05-09T15:27:06.542Z" },
+    { url = "https://files.pythonhosted.org/packages/c3/30/d0e88c1cfcc1b3331d63c2b54a0a3a4a950ef202fb8b92e772ca714a9221/greenlet-3.2.2-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:1e76106b6fc55fa3d6fe1c527f95ee65e324a13b62e243f77b48317346559708", size = 1145509, upload-time = "2025-05-09T14:54:02.223Z" },
+    { url = "https://files.pythonhosted.org/packages/90/2e/59d6491834b6e289051b252cf4776d16da51c7c6ca6a87ff97e3a50aa0cd/greenlet-3.2.2-cp313-cp313-win_amd64.whl", hash = "sha256:fe46d4f8e94e637634d54477b0cfabcf93c53f29eedcbdeecaf2af32029b4421", size = 296023, upload-time = "2025-05-09T14:53:24.157Z" },
+    { url = "https://files.pythonhosted.org/packages/65/66/8a73aace5a5335a1cba56d0da71b7bd93e450f17d372c5b7c5fa547557e9/greenlet-3.2.2-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ba30e88607fb6990544d84caf3c706c4b48f629e18853fc6a646f82db9629418", size = 629911, upload-time = "2025-05-09T15:24:22.376Z" },
+    { url = "https://files.pythonhosted.org/packages/48/08/c8b8ebac4e0c95dcc68ec99198842e7db53eda4ab3fb0a4e785690883991/greenlet-3.2.2-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:055916fafad3e3388d27dd68517478933a97edc2fc54ae79d3bec827de2c64c4", size = 635251, upload-time = "2025-05-09T15:24:52.205Z" },
+    { url = "https://files.pythonhosted.org/packages/37/26/7db30868f73e86b9125264d2959acabea132b444b88185ba5c462cb8e571/greenlet-3.2.2-cp313-cp313t-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:2593283bf81ca37d27d110956b79e8723f9aa50c4bcdc29d3c0543d4743d2763", size = 632620, upload-time = "2025-05-09T15:29:28.051Z" },
+    { url = "https://files.pythonhosted.org/packages/10/ec/718a3bd56249e729016b0b69bee4adea0dfccf6ca43d147ef3b21edbca16/greenlet-3.2.2-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:89c69e9a10670eb7a66b8cef6354c24671ba241f46152dd3eed447f79c29fb5b", size = 628851, upload-time = "2025-05-09T14:53:38.472Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/9d/d1c79286a76bc62ccdc1387291464af16a4204ea717f24e77b0acd623b99/greenlet-3.2.2-cp313-cp313t-manylinux_2_24_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:02a98600899ca1ca5d3a2590974c9e3ec259503b2d6ba6527605fcd74e08e207", size = 593718, upload-time = "2025-05-09T14:53:48.313Z" },
+    { url = "https://files.pythonhosted.org/packages/cd/41/96ba2bf948f67b245784cd294b84e3d17933597dffd3acdb367a210d1949/greenlet-3.2.2-cp313-cp313t-musllinux_1_1_aarch64.whl", hash = "sha256:b50a8c5c162469c3209e5ec92ee4f95c8231b11db6a04db09bbe338176723bb8", size = 1105752, upload-time = "2025-05-09T15:27:08.217Z" },
+    { url = "https://files.pythonhosted.org/packages/68/3b/3b97f9d33c1f2eb081759da62bd6162159db260f602f048bc2f36b4c453e/greenlet-3.2.2-cp313-cp313t-musllinux_1_1_x86_64.whl", hash = "sha256:45f9f4853fb4cc46783085261c9ec4706628f3b57de3e68bae03e8f8b3c0de51", size = 1125170, upload-time = "2025-05-09T14:54:04.082Z" },
+    { url = "https://files.pythonhosted.org/packages/31/df/b7d17d66c8d0f578d2885a3d8f565e9e4725eacc9d3fdc946d0031c055c4/greenlet-3.2.2-cp314-cp314-macosx_11_0_universal2.whl", hash = "sha256:9ea5231428af34226c05f927e16fc7f6fa5e39e3ad3cd24ffa48ba53a47f4240", size = 269899, upload-time = "2025-05-09T14:54:01.581Z" },
+]
+
+[[package]]
+name = "grpcio"
+version = "1.75.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/91/88/fe2844eefd3d2188bc0d7a2768c6375b46dfd96469ea52d8aeee8587d7e0/grpcio-1.75.0.tar.gz", hash = "sha256:b989e8b09489478c2d19fecc744a298930f40d8b27c3638afbfe84d22f36ce4e", size = 12722485, upload-time = "2025-09-16T09:20:21.731Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/0d/93/a1b29c2452d15cecc4a39700fbf54721a3341f2ddbd1bd883f8ec0004e6e/grpcio-1.75.0-cp312-cp312-linux_armv7l.whl", hash = "sha256:fa35ccd9501ffdd82b861809cbfc4b5b13f4b4c5dc3434d2d9170b9ed38a9054", size = 5661861, upload-time = "2025-09-16T09:18:58.748Z" },
+    { url = "https://files.pythonhosted.org/packages/b8/ce/7280df197e602d14594e61d1e60e89dfa734bb59a884ba86cdd39686aadb/grpcio-1.75.0-cp312-cp312-macosx_11_0_universal2.whl", hash = "sha256:0fcb77f2d718c1e58cc04ef6d3b51e0fa3b26cf926446e86c7eba105727b6cd4", size = 11459982, upload-time = "2025-09-16T09:19:01.211Z" },
+    { url = "https://files.pythonhosted.org/packages/7c/9b/37e61349771f89b543a0a0bbc960741115ea8656a2414bfb24c4de6f3dd7/grpcio-1.75.0-cp312-cp312-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:36764a4ad9dc1eb891042fab51e8cdf7cc014ad82cee807c10796fb708455041", size = 6239680, upload-time = "2025-09-16T09:19:04.443Z" },
+    { url = "https://files.pythonhosted.org/packages/a6/66/f645d9d5b22ca307f76e71abc83ab0e574b5dfef3ebde4ec8b865dd7e93e/grpcio-1.75.0-cp312-cp312-manylinux2014_i686.manylinux_2_17_i686.whl", hash = "sha256:725e67c010f63ef17fc052b261004942763c0b18dcd84841e6578ddacf1f9d10", size = 6908511, upload-time = "2025-09-16T09:19:07.884Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/9a/34b11cd62d03c01b99068e257595804c695c3c119596c7077f4923295e19/grpcio-1.75.0-cp312-cp312-manylinux2014_x86_64.manylinux_2_17_x86_64.whl", hash = "sha256:91fbfc43f605c5ee015c9056d580a70dd35df78a7bad97e05426795ceacdb59f", size = 6429105, upload-time = "2025-09-16T09:19:10.085Z" },
+    { url = "https://files.pythonhosted.org/packages/1a/46/76eaceaad1f42c1e7e6a5b49a61aac40fc5c9bee4b14a1630f056ac3a57e/grpcio-1.75.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:7a9337ac4ce61c388e02019d27fa837496c4b7837cbbcec71b05934337e51531", size = 7060578, upload-time = "2025-09-16T09:19:12.283Z" },
+    { url = "https://files.pythonhosted.org/packages/3d/82/181a0e3f1397b6d43239e95becbeb448563f236c0db11ce990f073b08d01/grpcio-1.75.0-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:ee16e232e3d0974750ab5f4da0ab92b59d6473872690b5e40dcec9a22927f22e", size = 8003283, upload-time = "2025-09-16T09:19:15.601Z" },
+    { url = "https://files.pythonhosted.org/packages/de/09/a335bca211f37a3239be4b485e3c12bf3da68d18b1f723affdff2b9e9680/grpcio-1.75.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:55dfb9122973cc69520b23d39867726722cafb32e541435707dc10249a1bdbc6", size = 7460319, upload-time = "2025-09-16T09:19:18.409Z" },
+    { url = "https://files.pythonhosted.org/packages/aa/59/6330105cdd6bc4405e74c96838cd7e148c3653ae3996e540be6118220c79/grpcio-1.75.0-cp312-cp312-win32.whl", hash = "sha256:fb64dd62face3d687a7b56cd881e2ea39417af80f75e8b36f0f81dfd93071651", size = 3934011, upload-time = "2025-09-16T09:19:21.013Z" },
+    { url = "https://files.pythonhosted.org/packages/ff/14/e1309a570b7ebdd1c8ca24c4df6b8d6690009fa8e0d997cb2c026ce850c9/grpcio-1.75.0-cp312-cp312-win_amd64.whl", hash = "sha256:6b365f37a9c9543a9e91c6b4103d68d38d5bcb9965b11d5092b3c157bd6a5ee7", size = 4637934, upload-time = "2025-09-16T09:19:23.19Z" },
+    { url = "https://files.pythonhosted.org/packages/00/64/dbce0ffb6edaca2b292d90999dd32a3bd6bc24b5b77618ca28440525634d/grpcio-1.75.0-cp313-cp313-linux_armv7l.whl", hash = "sha256:1bb78d052948d8272c820bb928753f16a614bb2c42fbf56ad56636991b427518", size = 5666860, upload-time = "2025-09-16T09:19:25.417Z" },
+    { url = "https://files.pythonhosted.org/packages/f3/e6/da02c8fa882ad3a7f868d380bb3da2c24d35dd983dd12afdc6975907a352/grpcio-1.75.0-cp313-cp313-macosx_11_0_universal2.whl", hash = "sha256:9dc4a02796394dd04de0b9673cb79a78901b90bb16bf99ed8cb528c61ed9372e", size = 11455148, upload-time = "2025-09-16T09:19:28.615Z" },
+    { url = "https://files.pythonhosted.org/packages/ba/a0/84f87f6c2cf2a533cfce43b2b620eb53a51428ec0c8fe63e5dd21d167a70/grpcio-1.75.0-cp313-cp313-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:437eeb16091d31498585d73b133b825dc80a8db43311e332c08facf820d36894", size = 6243865, upload-time = "2025-09-16T09:19:31.342Z" },
+    { url = "https://files.pythonhosted.org/packages/be/12/53da07aa701a4839dd70d16e61ce21ecfcc9e929058acb2f56e9b2dd8165/grpcio-1.75.0-cp313-cp313-manylinux2014_i686.manylinux_2_17_i686.whl", hash = "sha256:c2c39984e846bd5da45c5f7bcea8fafbe47c98e1ff2b6f40e57921b0c23a52d0", size = 6915102, upload-time = "2025-09-16T09:19:33.658Z" },
+    { url = "https://files.pythonhosted.org/packages/5b/c0/7eaceafd31f52ec4bf128bbcf36993b4bc71f64480f3687992ddd1a6e315/grpcio-1.75.0-cp313-cp313-manylinux2014_x86_64.manylinux_2_17_x86_64.whl", hash = "sha256:38d665f44b980acdbb2f0e1abf67605ba1899f4d2443908df9ec8a6f26d2ed88", size = 6432042, upload-time = "2025-09-16T09:19:36.583Z" },
+    { url = "https://files.pythonhosted.org/packages/6b/12/a2ce89a9f4fc52a16ed92951f1b05f53c17c4028b3db6a4db7f08332bee8/grpcio-1.75.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:2e8e752ab5cc0a9c5b949808c000ca7586223be4f877b729f034b912364c3964", size = 7062984, upload-time = "2025-09-16T09:19:39.163Z" },
+    { url = "https://files.pythonhosted.org/packages/55/a6/2642a9b491e24482d5685c0f45c658c495a5499b43394846677abed2c966/grpcio-1.75.0-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:3a6788b30aa8e6f207c417874effe3f79c2aa154e91e78e477c4825e8b431ce0", size = 8001212, upload-time = "2025-09-16T09:19:41.726Z" },
+    { url = "https://files.pythonhosted.org/packages/19/20/530d4428750e9ed6ad4254f652b869a20a40a276c1f6817b8c12d561f5ef/grpcio-1.75.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:ffc33e67cab6141c54e75d85acd5dec616c5095a957ff997b4330a6395aa9b51", size = 7457207, upload-time = "2025-09-16T09:19:44.368Z" },
+    { url = "https://files.pythonhosted.org/packages/e2/6f/843670007e0790af332a21468d10059ea9fdf97557485ae633b88bd70efc/grpcio-1.75.0-cp313-cp313-win32.whl", hash = "sha256:c8cfc780b7a15e06253aae5f228e1e84c0d3c4daa90faf5bc26b751174da4bf9", size = 3934235, upload-time = "2025-09-16T09:19:46.815Z" },
+    { url = "https://files.pythonhosted.org/packages/4b/92/c846b01b38fdf9e2646a682b12e30a70dc7c87dfe68bd5e009ee1501c14b/grpcio-1.75.0-cp313-cp313-win_amd64.whl", hash = "sha256:0c91d5b16eff3cbbe76b7a1eaaf3d91e7a954501e9d4f915554f87c470475c3d", size = 4637558, upload-time = "2025-09-16T09:19:49.698Z" },
+]
+
+[[package]]
+name = "grpcio-status"
+version = "1.73.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "googleapis-common-protos" },
+    { name = "grpcio" },
+    { name = "protobuf" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/f6/59/9350a13804f2e407d76b3962c548e023639fc1545056e342c6bad0d4fd30/grpcio_status-1.73.1.tar.gz", hash = "sha256:928f49ccf9688db5f20cd9e45c4578a1d01ccca29aeaabf066f2ac76aa886668", size = 13664, upload-time = "2025-06-26T02:02:50.083Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2e/50/ee32e6073e2c3a4457be168e2bbf84d02ad9d2c18c4a578a641480c293d4/grpcio_status-1.73.1-py3-none-any.whl", hash = "sha256:538595c32a6c819c32b46a621a51e9ae4ffcd7e7e1bce35f728ef3447e9809b6", size = 14422, upload-time = "2025-06-26T02:02:08.415Z" },
+]
+
+[[package]]
+name = "h11"
+version = "0.16.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/01/ee/02a2c011bdab74c6fb3c75474d40b3052059d95df7e73351460c8588d963/h11-0.16.0.tar.gz", hash = "sha256:4e35b956cf45792e4caa5885e69fba00bdbc6ffafbfa020300e549b208ee5ff1", size = 101250, upload-time = "2025-04-24T03:35:25.427Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/04/4b/29cac41a4d98d144bf5f6d33995617b185d14b22401f75ca86f384e87ff1/h11-0.16.0-py3-none-any.whl", hash = "sha256:63cf8bbe7522de3bf65932fda1d9c2772064ffb3dae62d55932da54b31cb6c86", size = 37515, upload-time = "2025-04-24T03:35:24.344Z" },
+]
+
+[[package]]
+name = "hf-xet"
+version = "1.1.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/95/be/58f20728a5b445f8b064e74f0618897b3439f5ef90934da1916b9dfac76f/hf_xet-1.1.2.tar.gz", hash = "sha256:3712d6d4819d3976a1c18e36db9f503e296283f9363af818f50703506ed63da3", size = 467009, upload-time = "2025-05-16T20:44:34.944Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/45/ae/f1a63f75d9886f18a80220ba31a1c7b9c4752f03aae452f358f538c6a991/hf_xet-1.1.2-cp37-abi3-macosx_10_12_x86_64.whl", hash = "sha256:dfd1873fd648488c70735cb60f7728512bca0e459e61fcd107069143cd798469", size = 2642559, upload-time = "2025-05-16T20:44:30.217Z" },
+    { url = "https://files.pythonhosted.org/packages/50/ab/d2c83ae18f1015d926defd5bfbe94c62d15e93f900e6a192e318ee947105/hf_xet-1.1.2-cp37-abi3-macosx_11_0_arm64.whl", hash = "sha256:29b584983b2d977c44157d9241dcf0fd50acde0b7bff8897fe4386912330090d", size = 2541360, upload-time = "2025-05-16T20:44:29.056Z" },
+    { url = "https://files.pythonhosted.org/packages/9f/a7/693dc9f34f979e30a378125e2150a0b2d8d166e6d83ce3950eeb81e560aa/hf_xet-1.1.2-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6b29ac84298147fe9164cc55ad994ba47399f90b5d045b0b803b99cf5f06d8ec", size = 5183081, upload-time = "2025-05-16T20:44:27.505Z" },
+    { url = "https://files.pythonhosted.org/packages/3d/23/c48607883f692a36c0a7735f47f98bad32dbe459a32d1568c0f21576985d/hf_xet-1.1.2-cp37-abi3-manylinux_2_28_aarch64.whl", hash = "sha256:d921ba32615676e436a0d15e162331abc9ed43d440916b1d836dc27ce1546173", size = 5356100, upload-time = "2025-05-16T20:44:25.681Z" },
+    { url = "https://files.pythonhosted.org/packages/eb/5b/b2316c7f1076da0582b52ea228f68bea95e243c388440d1dc80297c9d813/hf_xet-1.1.2-cp37-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:d9b03c34e13c44893ab6e8fea18ee8d2a6878c15328dd3aabedbdd83ee9f2ed3", size = 5647688, upload-time = "2025-05-16T20:44:31.867Z" },
+    { url = "https://files.pythonhosted.org/packages/2c/98/e6995f0fa579929da7795c961f403f4ee84af36c625963f52741d56f242c/hf_xet-1.1.2-cp37-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:01b18608955b3d826307d37da8bd38b28a46cd2d9908b3a3655d1363274f941a", size = 5322627, upload-time = "2025-05-16T20:44:33.677Z" },
+    { url = "https://files.pythonhosted.org/packages/59/40/8f1d5a44a64d8bf9e3c19576e789f716af54875b46daae65426714e75db1/hf_xet-1.1.2-cp37-abi3-win_amd64.whl", hash = "sha256:3562902c81299b09f3582ddfb324400c6a901a2f3bc854f83556495755f4954c", size = 2739542, upload-time = "2025-05-16T20:44:36.287Z" },
+]
+
+[[package]]
+name = "httpcore"
+version = "1.0.9"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "certifi" },
+    { name = "h11" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/06/94/82699a10bca87a5556c9c59b5963f2d039dbd239f25bc2a63907a05a14cb/httpcore-1.0.9.tar.gz", hash = "sha256:6e34463af53fd2ab5d807f399a9b45ea31c3dfa2276f15a2c3f00afff6e176e8", size = 85484, upload-time = "2025-04-24T22:06:22.219Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7e/f5/f66802a942d491edb555dd61e3a9961140fd64c90bce1eafd741609d334d/httpcore-1.0.9-py3-none-any.whl", hash = "sha256:2d400746a40668fc9dec9810239072b40b4484b640a8c38fd654a024c7a1bf55", size = 78784, upload-time = "2025-04-24T22:06:20.566Z" },
+]
+
+[[package]]
+name = "httptools"
+version = "0.6.4"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/a7/9a/ce5e1f7e131522e6d3426e8e7a490b3a01f39a6696602e1c4f33f9e94277/httptools-0.6.4.tar.gz", hash = "sha256:4e93eee4add6493b59a5c514da98c939b244fce4a0d8879cd3f466562f4b7d5c", size = 240639, upload-time = "2024-10-16T19:45:08.902Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/bb/0e/d0b71465c66b9185f90a091ab36389a7352985fe857e352801c39d6127c8/httptools-0.6.4-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:df017d6c780287d5c80601dafa31f17bddb170232d85c066604d8558683711a2", size = 200683, upload-time = "2024-10-16T19:44:30.175Z" },
+    { url = "https://files.pythonhosted.org/packages/e2/b8/412a9bb28d0a8988de3296e01efa0bd62068b33856cdda47fe1b5e890954/httptools-0.6.4-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:85071a1e8c2d051b507161f6c3e26155b5c790e4e28d7f236422dbacc2a9cc44", size = 104337, upload-time = "2024-10-16T19:44:31.786Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/01/6fb20be3196ffdc8eeec4e653bc2a275eca7f36634c86302242c4fbb2760/httptools-0.6.4-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:69422b7f458c5af875922cdb5bd586cc1f1033295aa9ff63ee196a87519ac8e1", size = 508796, upload-time = "2024-10-16T19:44:32.825Z" },
+    { url = "https://files.pythonhosted.org/packages/f7/d8/b644c44acc1368938317d76ac991c9bba1166311880bcc0ac297cb9d6bd7/httptools-0.6.4-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:16e603a3bff50db08cd578d54f07032ca1631450ceb972c2f834c2b860c28ea2", size = 510837, upload-time = "2024-10-16T19:44:33.974Z" },
+    { url = "https://files.pythonhosted.org/packages/52/d8/254d16a31d543073a0e57f1c329ca7378d8924e7e292eda72d0064987486/httptools-0.6.4-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:ec4f178901fa1834d4a060320d2f3abc5c9e39766953d038f1458cb885f47e81", size = 485289, upload-time = "2024-10-16T19:44:35.111Z" },
+    { url = "https://files.pythonhosted.org/packages/5f/3c/4aee161b4b7a971660b8be71a92c24d6c64372c1ab3ae7f366b3680df20f/httptools-0.6.4-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:f9eb89ecf8b290f2e293325c646a211ff1c2493222798bb80a530c5e7502494f", size = 489779, upload-time = "2024-10-16T19:44:36.253Z" },
+    { url = "https://files.pythonhosted.org/packages/12/b7/5cae71a8868e555f3f67a50ee7f673ce36eac970f029c0c5e9d584352961/httptools-0.6.4-cp312-cp312-win_amd64.whl", hash = "sha256:db78cb9ca56b59b016e64b6031eda5653be0589dba2b1b43453f6e8b405a0970", size = 88634, upload-time = "2024-10-16T19:44:37.357Z" },
+    { url = "https://files.pythonhosted.org/packages/94/a3/9fe9ad23fd35f7de6b91eeb60848986058bd8b5a5c1e256f5860a160cc3e/httptools-0.6.4-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:ade273d7e767d5fae13fa637f4d53b6e961fb7fd93c7797562663f0171c26660", size = 197214, upload-time = "2024-10-16T19:44:38.738Z" },
+    { url = "https://files.pythonhosted.org/packages/ea/d9/82d5e68bab783b632023f2fa31db20bebb4e89dfc4d2293945fd68484ee4/httptools-0.6.4-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:856f4bc0478ae143bad54a4242fccb1f3f86a6e1be5548fecfd4102061b3a083", size = 102431, upload-time = "2024-10-16T19:44:39.818Z" },
+    { url = "https://files.pythonhosted.org/packages/96/c1/cb499655cbdbfb57b577734fde02f6fa0bbc3fe9fb4d87b742b512908dff/httptools-0.6.4-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:322d20ea9cdd1fa98bd6a74b77e2ec5b818abdc3d36695ab402a0de8ef2865a3", size = 473121, upload-time = "2024-10-16T19:44:41.189Z" },
+    { url = "https://files.pythonhosted.org/packages/af/71/ee32fd358f8a3bb199b03261f10921716990808a675d8160b5383487a317/httptools-0.6.4-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:4d87b29bd4486c0093fc64dea80231f7c7f7eb4dc70ae394d70a495ab8436071", size = 473805, upload-time = "2024-10-16T19:44:42.384Z" },
+    { url = "https://files.pythonhosted.org/packages/8a/0a/0d4df132bfca1507114198b766f1737d57580c9ad1cf93c1ff673e3387be/httptools-0.6.4-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:342dd6946aa6bda4b8f18c734576106b8a31f2fe31492881a9a160ec84ff4bd5", size = 448858, upload-time = "2024-10-16T19:44:43.959Z" },
+    { url = "https://files.pythonhosted.org/packages/1e/6a/787004fdef2cabea27bad1073bf6a33f2437b4dbd3b6fb4a9d71172b1c7c/httptools-0.6.4-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:4b36913ba52008249223042dca46e69967985fb4051951f94357ea681e1f5dc0", size = 452042, upload-time = "2024-10-16T19:44:45.071Z" },
+    { url = "https://files.pythonhosted.org/packages/4d/dc/7decab5c404d1d2cdc1bb330b1bf70e83d6af0396fd4fc76fc60c0d522bf/httptools-0.6.4-cp313-cp313-win_amd64.whl", hash = "sha256:28908df1b9bb8187393d5b5db91435ccc9c8e891657f9cbb42a2541b44c82fc8", size = 87682, upload-time = "2024-10-16T19:44:46.46Z" },
+]
+
+[[package]]
+name = "httpx"
+version = "0.28.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "anyio" },
+    { name = "certifi" },
+    { name = "httpcore" },
+    { name = "idna" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/b1/df/48c586a5fe32a0f01324ee087459e112ebb7224f646c0b5023f5e79e9956/httpx-0.28.1.tar.gz", hash = "sha256:75e98c5f16b0f35b567856f597f06ff2270a374470a5c2392242528e3e3e42fc", size = 141406, upload-time = "2024-12-06T15:37:23.222Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2a/39/e50c7c3a983047577ee07d2a9e53faf5a69493943ec3f6a384bdc792deb2/httpx-0.28.1-py3-none-any.whl", hash = "sha256:d909fcccc110f8c7faf814ca82a9a4d816bc5a6dbfea25d6591d6985b8ba59ad", size = 73517, upload-time = "2024-12-06T15:37:21.509Z" },
+]
+
+[[package]]
+name = "httpx-sse"
+version = "0.4.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/4c/60/8f4281fa9bbf3c8034fd54c0e7412e66edbab6bc74c4996bd616f8d0406e/httpx-sse-0.4.0.tar.gz", hash = "sha256:1e81a3a3070ce322add1d3529ed42eb5f70817f45ed6ec915ab753f961139721", size = 12624, upload-time = "2023-12-22T08:01:21.083Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e1/9b/a181f281f65d776426002f330c31849b86b31fc9d848db62e16f03ff739f/httpx_sse-0.4.0-py3-none-any.whl", hash = "sha256:f329af6eae57eaa2bdfd962b42524764af68075ea87370a2de920af5341e318f", size = 7819, upload-time = "2023-12-22T08:01:19.89Z" },
+]
+
+[[package]]
+name = "huggingface-hub"
+version = "0.32.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "filelock" },
+    { name = "fsspec" },
+    { name = "hf-xet", marker = "platform_machine == 'aarch64' or platform_machine == 'amd64' or platform_machine == 'arm64' or platform_machine == 'x86_64'" },
+    { name = "packaging" },
+    { name = "pyyaml" },
+    { name = "requests" },
+    { name = "tqdm" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/bf/4d/7a1f24199a4a6f1c8e47c3b5e0a7faf44e249fec5afb7e7f6000bb87e513/huggingface_hub-0.32.1.tar.gz", hash = "sha256:770acdae5ad973447074e10a98044306e567ff36012419ae80c051f446156551", size = 422371, upload-time = "2025-05-26T09:51:21.427Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/5f/cd/4fbfa8e937b89272a75805dc895cf3c7f648e1ba6ee431f8f6bf27bc1255/huggingface_hub-0.32.1-py3-none-any.whl", hash = "sha256:b7e644f8ba6c6ad975c436960eacc026c83ba2c2bc5ae8b4e3f7ce2b292e6b11", size = 509412, upload-time = "2025-05-26T09:51:19.269Z" },
+]
+
+[[package]]
+name = "ibm-cos-sdk"
+version = "2.14.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "ibm-cos-sdk-core" },
+    { name = "ibm-cos-sdk-s3transfer" },
+    { name = "jmespath" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/08/0f/976e187ba09f5efee94a371f0d65edca82714975de7e71bf6ad8d30f20a7/ibm_cos_sdk-2.14.2.tar.gz", hash = "sha256:d859422c1dfd03e52cd66acbb2b45b4c944a390725c3a91d4a8e003f0cfc4e4b", size = 58847, upload-time = "2025-06-18T05:04:01.193Z" }
+
+[[package]]
+name = "ibm-cos-sdk-core"
+version = "2.14.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "jmespath" },
+    { name = "python-dateutil" },
+    { name = "requests" },
+    { name = "urllib3" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/a5/db/e913f210d66c2ad09521925f29754fb9b7240da11238a29a0186ebad4ffa/ibm_cos_sdk_core-2.14.2.tar.gz", hash = "sha256:d594b2af58f70e892aa3b0f6ae4b0fa5d412422c05beeba083d4561b5fad91b4", size = 1103504, upload-time = "2025-06-18T05:03:42.969Z" }
+
+[[package]]
+name = "ibm-cos-sdk-s3transfer"
+version = "2.14.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "ibm-cos-sdk-core" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/8e/ca/3c4c48c2a180e3410d08b400435b72648e6630c2d556beb126b7a21a78d7/ibm_cos_sdk_s3transfer-2.14.2.tar.gz", hash = "sha256:01d1cb14c0decaeef273979da7a13f7a874f1d4c542ff3ae0a186c7b090569bc", size = 139579, upload-time = "2025-06-18T05:03:48.841Z" }
+
+[[package]]
+name = "ibm-watsonx-ai"
+version = "1.3.32"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cachetools" },
+    { name = "certifi" },
+    { name = "httpx" },
+    { name = "ibm-cos-sdk" },
+    { name = "lomond" },
+    { name = "packaging" },
+    { name = "pandas" },
+    { name = "requests" },
+    { name = "tabulate" },
+    { name = "urllib3" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/d0/0b/ff2dcd7abd03c444bd4e85040dcde3513079bd723fbcee7533f3371bd2ed/ibm_watsonx_ai-1.3.32.tar.gz", hash = "sha256:a76503ed65b9255e6cb8bcaed49e18ab2620aa1294a283b30cb849e698279d14", size = 763350, upload-time = "2025-07-23T08:25:33.162Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/01/e3/5126126ca545b6efe5cb71e67f26533e6dd720b403610d39835b2298b7f1/ibm_watsonx_ai-1.3.32-py3-none-any.whl", hash = "sha256:a3607d475ba529867ab274e43010cd745f8cfc7695d17432484aca3553967e5a", size = 1173743, upload-time = "2025-07-23T08:25:31.059Z" },
+]
+
+[[package]]
+name = "identify"
+version = "2.6.12"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/a2/88/d193a27416618628a5eea64e3223acd800b40749a96ffb322a9b55a49ed1/identify-2.6.12.tar.gz", hash = "sha256:d8de45749f1efb108badef65ee8386f0f7bb19a7f26185f74de6367bffbaf0e6", size = 99254, upload-time = "2025-05-23T20:37:53.3Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7a/cd/18f8da995b658420625f7ef13f037be53ae04ec5ad33f9b718240dcfd48c/identify-2.6.12-py2.py3-none-any.whl", hash = "sha256:ad9672d5a72e0d2ff7c5c8809b62dfa60458626352fb0eb7b55e69bdc45334a2", size = 99145, upload-time = "2025-05-23T20:37:51.495Z" },
+]
+
+[[package]]
+name = "idna"
+version = "3.10"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/f1/70/7703c29685631f5a7590aa73f1f1d3fa9a380e654b86af429e0934a32f7d/idna-3.10.tar.gz", hash = "sha256:12f65c9b470abda6dc35cf8e63cc574b1c52b11df2c86030af0ac09b01b13ea9", size = 190490, upload-time = "2024-09-15T18:07:39.745Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/76/c6/c88e154df9c4e1a2a66ccf0005a88dfb2650c1dffb6f5ce603dfbd452ce3/idna-3.10-py3-none-any.whl", hash = "sha256:946d195a0d259cbba61165e88e65941f16e9b36ea6ddb97f00452bae8b1287d3", size = 70442, upload-time = "2024-09-15T18:07:37.964Z" },
+]
+
+[[package]]
+name = "importlib-metadata"
+version = "8.6.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "zipp" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/33/08/c1395a292bb23fd03bdf572a1357c5a733d3eecbab877641ceacab23db6e/importlib_metadata-8.6.1.tar.gz", hash = "sha256:310b41d755445d74569f993ccfc22838295d9fe005425094fad953d7f15c8580", size = 55767, upload-time = "2025-01-20T22:21:30.429Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/79/9d/0fb148dc4d6fa4a7dd1d8378168d9b4cd8d4560a6fbf6f0121c5fc34eb68/importlib_metadata-8.6.1-py3-none-any.whl", hash = "sha256:02a89390c1e15fdfdc0d7c6b25cb3e62650d0494005c97d6f148bf5b9787525e", size = 26971, upload-time = "2025-01-20T22:21:29.177Z" },
+]
+
+[[package]]
+name = "iniconfig"
+version = "2.1.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/f2/97/ebf4da567aa6827c909642694d71c9fcf53e5b504f2d96afea02718862f3/iniconfig-2.1.0.tar.gz", hash = "sha256:3abbd2e30b36733fee78f9c7f7308f2d0050e88f0087fd25c2645f63c773e1c7", size = 4793, upload-time = "2025-03-19T20:09:59.721Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2c/e1/e6716421ea10d38022b952c159d5161ca1193197fb744506875fbb87ea7b/iniconfig-2.1.0-py3-none-any.whl", hash = "sha256:9deba5723312380e77435581c6bf4935c94cbfab9b1ed33ef8d238ea168eb760", size = 6050, upload-time = "2025-03-19T20:10:01.071Z" },
+]
+
+[[package]]
+name = "isodate"
+version = "0.7.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/54/4d/e940025e2ce31a8ce1202635910747e5a87cc3a6a6bb2d00973375014749/isodate-0.7.2.tar.gz", hash = "sha256:4cd1aa0f43ca76f4a6c6c0292a85f40b35ec2e43e315b59f06e6d32171a953e6", size = 29705, upload-time = "2024-10-08T23:04:11.5Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/15/aa/0aca39a37d3c7eb941ba736ede56d689e7be91cab5d9ca846bde3999eba6/isodate-0.7.2-py3-none-any.whl", hash = "sha256:28009937d8031054830160fce6d409ed342816b543597cece116d966c6d99e15", size = 22320, upload-time = "2024-10-08T23:04:09.501Z" },
+]
+
+[[package]]
+name = "itsdangerous"
+version = "2.2.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/9c/cb/8ac0172223afbccb63986cc25049b154ecfb5e85932587206f42317be31d/itsdangerous-2.2.0.tar.gz", hash = "sha256:e0050c0b7da1eea53ffaf149c0cfbb5c6e2e2b69c4bef22c81fa6eb73e5f6173", size = 54410, upload-time = "2024-04-16T21:28:15.614Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/04/96/92447566d16df59b2a776c0fb82dbc4d9e07cd95062562af01e408583fc4/itsdangerous-2.2.0-py3-none-any.whl", hash = "sha256:c6242fc49e35958c8b15141343aa660db5fc54d4f13a1db01a3f5891b98700ef", size = 16234, upload-time = "2024-04-16T21:28:14.499Z" },
+]
+
+[[package]]
+name = "jinja2"
+version = "3.1.6"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "markupsafe" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/df/bf/f7da0350254c0ed7c72f3e33cef02e048281fec7ecec5f032d4aac52226b/jinja2-3.1.6.tar.gz", hash = "sha256:0137fb05990d35f1275a587e9aee6d56da821fc83491a0fb838183be43f66d6d", size = 245115, upload-time = "2025-03-05T20:05:02.478Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/62/a1/3d680cbfd5f4b8f15abc1d571870c5fc3e594bb582bc3b64ea099db13e56/jinja2-3.1.6-py3-none-any.whl", hash = "sha256:85ece4451f492d0c13c5dd7c13a64681a86afae63a5f347908daf103ce6d2f67", size = 134899, upload-time = "2025-03-05T20:05:00.369Z" },
+]
+
+[[package]]
+name = "jiter"
+version = "0.10.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ee/9d/ae7ddb4b8ab3fb1b51faf4deb36cb48a4fbbd7cb36bad6a5fca4741306f7/jiter-0.10.0.tar.gz", hash = "sha256:07a7142c38aacc85194391108dc91b5b57093c978a9932bd86a36862759d9500", size = 162759, upload-time = "2025-05-18T19:04:59.73Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/6d/b5/348b3313c58f5fbfb2194eb4d07e46a35748ba6e5b3b3046143f3040bafa/jiter-0.10.0-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:1e274728e4a5345a6dde2d343c8da018b9d4bd4350f5a472fa91f66fda44911b", size = 312262, upload-time = "2025-05-18T19:03:44.637Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/4a/6a2397096162b21645162825f058d1709a02965606e537e3304b02742e9b/jiter-0.10.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:7202ae396446c988cb2a5feb33a543ab2165b786ac97f53b59aafb803fef0744", size = 320124, upload-time = "2025-05-18T19:03:46.341Z" },
+    { url = "https://files.pythonhosted.org/packages/2a/85/1ce02cade7516b726dd88f59a4ee46914bf79d1676d1228ef2002ed2f1c9/jiter-0.10.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:23ba7722d6748b6920ed02a8f1726fb4b33e0fd2f3f621816a8b486c66410ab2", size = 345330, upload-time = "2025-05-18T19:03:47.596Z" },
+    { url = "https://files.pythonhosted.org/packages/75/d0/bb6b4f209a77190ce10ea8d7e50bf3725fc16d3372d0a9f11985a2b23eff/jiter-0.10.0-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:371eab43c0a288537d30e1f0b193bc4eca90439fc08a022dd83e5e07500ed026", size = 369670, upload-time = "2025-05-18T19:03:49.334Z" },
+    { url = "https://files.pythonhosted.org/packages/a0/f5/a61787da9b8847a601e6827fbc42ecb12be2c925ced3252c8ffcb56afcaf/jiter-0.10.0-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:6c675736059020365cebc845a820214765162728b51ab1e03a1b7b3abb70f74c", size = 489057, upload-time = "2025-05-18T19:03:50.66Z" },
+    { url = "https://files.pythonhosted.org/packages/12/e4/6f906272810a7b21406c760a53aadbe52e99ee070fc5c0cb191e316de30b/jiter-0.10.0-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:0c5867d40ab716e4684858e4887489685968a47e3ba222e44cde6e4a2154f959", size = 389372, upload-time = "2025-05-18T19:03:51.98Z" },
+    { url = "https://files.pythonhosted.org/packages/e2/ba/77013b0b8ba904bf3762f11e0129b8928bff7f978a81838dfcc958ad5728/jiter-0.10.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:395bb9a26111b60141757d874d27fdea01b17e8fac958b91c20128ba8f4acc8a", size = 352038, upload-time = "2025-05-18T19:03:53.703Z" },
+    { url = "https://files.pythonhosted.org/packages/67/27/c62568e3ccb03368dbcc44a1ef3a423cb86778a4389e995125d3d1aaa0a4/jiter-0.10.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:6842184aed5cdb07e0c7e20e5bdcfafe33515ee1741a6835353bb45fe5d1bd95", size = 391538, upload-time = "2025-05-18T19:03:55.046Z" },
+    { url = "https://files.pythonhosted.org/packages/c0/72/0d6b7e31fc17a8fdce76164884edef0698ba556b8eb0af9546ae1a06b91d/jiter-0.10.0-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:62755d1bcea9876770d4df713d82606c8c1a3dca88ff39046b85a048566d56ea", size = 523557, upload-time = "2025-05-18T19:03:56.386Z" },
+    { url = "https://files.pythonhosted.org/packages/2f/09/bc1661fbbcbeb6244bd2904ff3a06f340aa77a2b94e5a7373fd165960ea3/jiter-0.10.0-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:533efbce2cacec78d5ba73a41756beff8431dfa1694b6346ce7af3a12c42202b", size = 514202, upload-time = "2025-05-18T19:03:57.675Z" },
+    { url = "https://files.pythonhosted.org/packages/1b/84/5a5d5400e9d4d54b8004c9673bbe4403928a00d28529ff35b19e9d176b19/jiter-0.10.0-cp312-cp312-win32.whl", hash = "sha256:8be921f0cadd245e981b964dfbcd6fd4bc4e254cdc069490416dd7a2632ecc01", size = 211781, upload-time = "2025-05-18T19:03:59.025Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/52/7ec47455e26f2d6e5f2ea4951a0652c06e5b995c291f723973ae9e724a65/jiter-0.10.0-cp312-cp312-win_amd64.whl", hash = "sha256:a7c7d785ae9dda68c2678532a5a1581347e9c15362ae9f6e68f3fdbfb64f2e49", size = 206176, upload-time = "2025-05-18T19:04:00.305Z" },
+    { url = "https://files.pythonhosted.org/packages/2e/b0/279597e7a270e8d22623fea6c5d4eeac328e7d95c236ed51a2b884c54f70/jiter-0.10.0-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:e0588107ec8e11b6f5ef0e0d656fb2803ac6cf94a96b2b9fc675c0e3ab5e8644", size = 311617, upload-time = "2025-05-18T19:04:02.078Z" },
+    { url = "https://files.pythonhosted.org/packages/91/e3/0916334936f356d605f54cc164af4060e3e7094364add445a3bc79335d46/jiter-0.10.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:cafc4628b616dc32530c20ee53d71589816cf385dd9449633e910d596b1f5c8a", size = 318947, upload-time = "2025-05-18T19:04:03.347Z" },
+    { url = "https://files.pythonhosted.org/packages/6a/8e/fd94e8c02d0e94539b7d669a7ebbd2776e51f329bb2c84d4385e8063a2ad/jiter-0.10.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:520ef6d981172693786a49ff5b09eda72a42e539f14788124a07530f785c3ad6", size = 344618, upload-time = "2025-05-18T19:04:04.709Z" },
+    { url = "https://files.pythonhosted.org/packages/6f/b0/f9f0a2ec42c6e9c2e61c327824687f1e2415b767e1089c1d9135f43816bd/jiter-0.10.0-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:554dedfd05937f8fc45d17ebdf298fe7e0c77458232bcb73d9fbbf4c6455f5b3", size = 368829, upload-time = "2025-05-18T19:04:06.912Z" },
+    { url = "https://files.pythonhosted.org/packages/e8/57/5bbcd5331910595ad53b9fd0c610392ac68692176f05ae48d6ce5c852967/jiter-0.10.0-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:5bc299da7789deacf95f64052d97f75c16d4fc8c4c214a22bf8d859a4288a1c2", size = 491034, upload-time = "2025-05-18T19:04:08.222Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/be/c393df00e6e6e9e623a73551774449f2f23b6ec6a502a3297aeeece2c65a/jiter-0.10.0-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:5161e201172de298a8a1baad95eb85db4fb90e902353b1f6a41d64ea64644e25", size = 388529, upload-time = "2025-05-18T19:04:09.566Z" },
+    { url = "https://files.pythonhosted.org/packages/42/3e/df2235c54d365434c7f150b986a6e35f41ebdc2f95acea3036d99613025d/jiter-0.10.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2e2227db6ba93cb3e2bf67c87e594adde0609f146344e8207e8730364db27041", size = 350671, upload-time = "2025-05-18T19:04:10.98Z" },
+    { url = "https://files.pythonhosted.org/packages/c6/77/71b0b24cbcc28f55ab4dbfe029f9a5b73aeadaba677843fc6dc9ed2b1d0a/jiter-0.10.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:15acb267ea5e2c64515574b06a8bf393fbfee6a50eb1673614aa45f4613c0cca", size = 390864, upload-time = "2025-05-18T19:04:12.722Z" },
+    { url = "https://files.pythonhosted.org/packages/6a/d3/ef774b6969b9b6178e1d1e7a89a3bd37d241f3d3ec5f8deb37bbd203714a/jiter-0.10.0-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:901b92f2e2947dc6dfcb52fd624453862e16665ea909a08398dde19c0731b7f4", size = 522989, upload-time = "2025-05-18T19:04:14.261Z" },
+    { url = "https://files.pythonhosted.org/packages/0c/41/9becdb1d8dd5d854142f45a9d71949ed7e87a8e312b0bede2de849388cb9/jiter-0.10.0-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:d0cb9a125d5a3ec971a094a845eadde2db0de85b33c9f13eb94a0c63d463879e", size = 513495, upload-time = "2025-05-18T19:04:15.603Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/36/3468e5a18238bdedae7c4d19461265b5e9b8e288d3f86cd89d00cbb48686/jiter-0.10.0-cp313-cp313-win32.whl", hash = "sha256:48a403277ad1ee208fb930bdf91745e4d2d6e47253eedc96e2559d1e6527006d", size = 211289, upload-time = "2025-05-18T19:04:17.541Z" },
+    { url = "https://files.pythonhosted.org/packages/7e/07/1c96b623128bcb913706e294adb5f768fb7baf8db5e1338ce7b4ee8c78ef/jiter-0.10.0-cp313-cp313-win_amd64.whl", hash = "sha256:75f9eb72ecb640619c29bf714e78c9c46c9c4eaafd644bf78577ede459f330d4", size = 205074, upload-time = "2025-05-18T19:04:19.21Z" },
+    { url = "https://files.pythonhosted.org/packages/54/46/caa2c1342655f57d8f0f2519774c6d67132205909c65e9aa8255e1d7b4f4/jiter-0.10.0-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:28ed2a4c05a1f32ef0e1d24c2611330219fed727dae01789f4a335617634b1ca", size = 318225, upload-time = "2025-05-18T19:04:20.583Z" },
+    { url = "https://files.pythonhosted.org/packages/43/84/c7d44c75767e18946219ba2d703a5a32ab37b0bc21886a97bc6062e4da42/jiter-0.10.0-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:14a4c418b1ec86a195f1ca69da8b23e8926c752b685af665ce30777233dfe070", size = 350235, upload-time = "2025-05-18T19:04:22.363Z" },
+    { url = "https://files.pythonhosted.org/packages/01/16/f5a0135ccd968b480daad0e6ab34b0c7c5ba3bc447e5088152696140dcb3/jiter-0.10.0-cp313-cp313t-win_amd64.whl", hash = "sha256:d7bfed2fe1fe0e4dda6ef682cee888ba444b21e7a6553e03252e4feb6cf0adca", size = 207278, upload-time = "2025-05-18T19:04:23.627Z" },
+    { url = "https://files.pythonhosted.org/packages/1c/9b/1d646da42c3de6c2188fdaa15bce8ecb22b635904fc68be025e21249ba44/jiter-0.10.0-cp314-cp314-macosx_10_12_x86_64.whl", hash = "sha256:5e9251a5e83fab8d87799d3e1a46cb4b7f2919b895c6f4483629ed2446f66522", size = 310866, upload-time = "2025-05-18T19:04:24.891Z" },
+    { url = "https://files.pythonhosted.org/packages/ad/0e/26538b158e8a7c7987e94e7aeb2999e2e82b1f9d2e1f6e9874ddf71ebda0/jiter-0.10.0-cp314-cp314-macosx_11_0_arm64.whl", hash = "sha256:023aa0204126fe5b87ccbcd75c8a0d0261b9abdbbf46d55e7ae9f8e22424eeb8", size = 318772, upload-time = "2025-05-18T19:04:26.161Z" },
+    { url = "https://files.pythonhosted.org/packages/7b/fb/d302893151caa1c2636d6574d213e4b34e31fd077af6050a9c5cbb42f6fb/jiter-0.10.0-cp314-cp314-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:3c189c4f1779c05f75fc17c0c1267594ed918996a231593a21a5ca5438445216", size = 344534, upload-time = "2025-05-18T19:04:27.495Z" },
+    { url = "https://files.pythonhosted.org/packages/01/d8/5780b64a149d74e347c5128d82176eb1e3241b1391ac07935693466d6219/jiter-0.10.0-cp314-cp314-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:15720084d90d1098ca0229352607cd68256c76991f6b374af96f36920eae13c4", size = 369087, upload-time = "2025-05-18T19:04:28.896Z" },
+    { url = "https://files.pythonhosted.org/packages/e8/5b/f235a1437445160e777544f3ade57544daf96ba7e96c1a5b24a6f7ac7004/jiter-0.10.0-cp314-cp314-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:e4f2fb68e5f1cfee30e2b2a09549a00683e0fde4c6a2ab88c94072fc33cb7426", size = 490694, upload-time = "2025-05-18T19:04:30.183Z" },
+    { url = "https://files.pythonhosted.org/packages/85/a9/9c3d4617caa2ff89cf61b41e83820c27ebb3f7b5fae8a72901e8cd6ff9be/jiter-0.10.0-cp314-cp314-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:ce541693355fc6da424c08b7edf39a2895f58d6ea17d92cc2b168d20907dee12", size = 388992, upload-time = "2025-05-18T19:04:32.028Z" },
+    { url = "https://files.pythonhosted.org/packages/68/b1/344fd14049ba5c94526540af7eb661871f9c54d5f5601ff41a959b9a0bbd/jiter-0.10.0-cp314-cp314-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:31c50c40272e189d50006ad5c73883caabb73d4e9748a688b216e85a9a9ca3b9", size = 351723, upload-time = "2025-05-18T19:04:33.467Z" },
+    { url = "https://files.pythonhosted.org/packages/41/89/4c0e345041186f82a31aee7b9d4219a910df672b9fef26f129f0cda07a29/jiter-0.10.0-cp314-cp314-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:fa3402a2ff9815960e0372a47b75c76979d74402448509ccd49a275fa983ef8a", size = 392215, upload-time = "2025-05-18T19:04:34.827Z" },
+    { url = "https://files.pythonhosted.org/packages/55/58/ee607863e18d3f895feb802154a2177d7e823a7103f000df182e0f718b38/jiter-0.10.0-cp314-cp314-musllinux_1_1_aarch64.whl", hash = "sha256:1956f934dca32d7bb647ea21d06d93ca40868b505c228556d3373cbd255ce853", size = 522762, upload-time = "2025-05-18T19:04:36.19Z" },
+    { url = "https://files.pythonhosted.org/packages/15/d0/9123fb41825490d16929e73c212de9a42913d68324a8ce3c8476cae7ac9d/jiter-0.10.0-cp314-cp314-musllinux_1_1_x86_64.whl", hash = "sha256:fcedb049bdfc555e261d6f65a6abe1d5ad68825b7202ccb9692636c70fcced86", size = 513427, upload-time = "2025-05-18T19:04:37.544Z" },
+    { url = "https://files.pythonhosted.org/packages/d8/b3/2bd02071c5a2430d0b70403a34411fc519c2f227da7b03da9ba6a956f931/jiter-0.10.0-cp314-cp314-win32.whl", hash = "sha256:ac509f7eccca54b2a29daeb516fb95b6f0bd0d0d8084efaf8ed5dfc7b9f0b357", size = 210127, upload-time = "2025-05-18T19:04:38.837Z" },
+    { url = "https://files.pythonhosted.org/packages/03/0c/5fe86614ea050c3ecd728ab4035534387cd41e7c1855ef6c031f1ca93e3f/jiter-0.10.0-cp314-cp314t-macosx_11_0_arm64.whl", hash = "sha256:5ed975b83a2b8639356151cef5c0d597c68376fc4922b45d0eb384ac058cfa00", size = 318527, upload-time = "2025-05-18T19:04:40.612Z" },
+    { url = "https://files.pythonhosted.org/packages/b3/4a/4175a563579e884192ba6e81725fc0448b042024419be8d83aa8a80a3f44/jiter-0.10.0-cp314-cp314t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3aa96f2abba33dc77f79b4cf791840230375f9534e5fac927ccceb58c5e604a5", size = 354213, upload-time = "2025-05-18T19:04:41.894Z" },
+]
+
+[[package]]
+name = "jmespath"
+version = "1.0.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/00/2a/e867e8531cf3e36b41201936b7fa7ba7b5702dbef42922193f05c8976cd6/jmespath-1.0.1.tar.gz", hash = "sha256:90261b206d6defd58fdd5e85f478bf633a2901798906be2ad389150c5c60edbe", size = 25843, upload-time = "2022-06-17T18:00:12.224Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/31/b4/b9b800c45527aadd64d5b442f9b932b00648617eb5d63d2c7a6587b7cafc/jmespath-1.0.1-py3-none-any.whl", hash = "sha256:02e2e4cc71b5bcab88332eebf907519190dd9e6e82107fa7f83b1003a6252980", size = 20256, upload-time = "2022-06-17T18:00:10.251Z" },
+]
+
+[[package]]
+name = "jsonpatch"
+version = "1.33"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "jsonpointer" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/42/78/18813351fe5d63acad16aec57f94ec2b70a09e53ca98145589e185423873/jsonpatch-1.33.tar.gz", hash = "sha256:9fcd4009c41e6d12348b4a0ff2563ba56a2923a7dfee731d004e212e1ee5030c", size = 21699, upload-time = "2023-06-26T12:07:29.144Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/73/07/02e16ed01e04a374e644b575638ec7987ae846d25ad97bcc9945a3ee4b0e/jsonpatch-1.33-py2.py3-none-any.whl", hash = "sha256:0ae28c0cd062bbd8b8ecc26d7d164fbbea9652a1a3693f3b956c1eae5145dade", size = 12898, upload-time = "2023-06-16T21:01:28.466Z" },
+]
+
+[[package]]
+name = "jsonpointer"
+version = "3.0.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/6a/0a/eebeb1fa92507ea94016a2a790b93c2ae41a7e18778f85471dc54475ed25/jsonpointer-3.0.0.tar.gz", hash = "sha256:2b2d729f2091522d61c3b31f82e11870f60b68f43fbc705cb76bf4b832af59ef", size = 9114, upload-time = "2024-06-10T19:24:42.462Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/71/92/5e77f98553e9e75130c78900d000368476aed74276eb8ae8796f65f00918/jsonpointer-3.0.0-py2.py3-none-any.whl", hash = "sha256:13e088adc14fca8b6aa8177c044e12701e6ad4b28ff10e65f2267a90109c9942", size = 7595, upload-time = "2024-06-10T19:24:40.698Z" },
+]
+
+[[package]]
+name = "jsonschema"
+version = "4.23.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "attrs" },
+    { name = "jsonschema-specifications" },
+    { name = "referencing" },
+    { name = "rpds-py" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/38/2e/03362ee4034a4c917f697890ccd4aec0800ccf9ded7f511971c75451deec/jsonschema-4.23.0.tar.gz", hash = "sha256:d71497fef26351a33265337fa77ffeb82423f3ea21283cd9467bb03999266bc4", size = 325778, upload-time = "2024-07-08T18:40:05.546Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/69/4a/4f9dbeb84e8850557c02365a0eee0649abe5eb1d84af92a25731c6c0f922/jsonschema-4.23.0-py3-none-any.whl", hash = "sha256:fbadb6f8b144a8f8cf9f0b89ba94501d143e50411a1278633f56a7acf7fd5566", size = 88462, upload-time = "2024-07-08T18:40:00.165Z" },
+]
+
+[[package]]
+name = "jsonschema-specifications"
+version = "2025.4.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "referencing" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/bf/ce/46fbd9c8119cfc3581ee5643ea49464d168028cfb5caff5fc0596d0cf914/jsonschema_specifications-2025.4.1.tar.gz", hash = "sha256:630159c9f4dbea161a6a2205c3011cc4f18ff381b189fff48bb39b9bf26ae608", size = 15513, upload-time = "2025-04-23T12:34:07.418Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/01/0e/b27cdbaccf30b890c40ed1da9fd4a3593a5cf94dae54fb34f8a4b74fcd3f/jsonschema_specifications-2025.4.1-py3-none-any.whl", hash = "sha256:4653bffbd6584f7de83a67e0d620ef16900b390ddc7939d56684d6c81e33f1af", size = 18437, upload-time = "2025-04-23T12:34:05.422Z" },
+]
+
+[[package]]
+name = "kubernetes"
+version = "30.1.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "certifi" },
+    { name = "google-auth" },
+    { name = "oauthlib" },
+    { name = "python-dateutil" },
+    { name = "pyyaml" },
+    { name = "requests" },
+    { name = "requests-oauthlib" },
+    { name = "six" },
+    { name = "urllib3" },
+    { name = "websocket-client" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/82/3c/9f29f6cab7f35df8e54f019e5719465fa97b877be2454e99f989270b4f34/kubernetes-30.1.0.tar.gz", hash = "sha256:41e4c77af9f28e7a6c314e3bd06a8c6229ddd787cad684e0ab9f69b498e98ebc", size = 887810, upload-time = "2024-06-06T15:58:30.031Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/62/a1/2027ddede72d33be2effc087580aeba07e733a7360780ae87226f1f91bd8/kubernetes-30.1.0-py2.py3-none-any.whl", hash = "sha256:e212e8b7579031dd2e512168b617373bc1e03888d41ac4e04039240a292d478d", size = 1706042, upload-time = "2024-06-06T15:58:27.13Z" },
+]
+
+[[package]]
+name = "langchain"
+version = "0.3.25"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "langchain-core" },
+    { name = "langchain-text-splitters" },
+    { name = "langsmith" },
+    { name = "pydantic" },
+    { name = "pyyaml" },
+    { name = "requests" },
+    { name = "sqlalchemy" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/fc/f9/a256609096a9fc7a1b3a6300a97000091efabdf21555a97988f93d4d9258/langchain-0.3.25.tar.gz", hash = "sha256:a1d72aa39546a23db08492d7228464af35c9ee83379945535ceef877340d2a3a", size = 10225045, upload-time = "2025-05-02T18:39:04.353Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ed/5c/5c0be747261e1f8129b875fa3bfea736bc5fe17652f9d5e15ca118571b6f/langchain-0.3.25-py3-none-any.whl", hash = "sha256:931f7d2d1eaf182f9f41c5e3272859cfe7f94fc1f7cef6b3e5a46024b4884c21", size = 1011008, upload-time = "2025-05-02T18:39:02.21Z" },
+]
+
+[[package]]
+name = "langchain-core"
+version = "0.3.76"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "jsonpatch" },
+    { name = "langsmith" },
+    { name = "packaging" },
+    { name = "pydantic" },
+    { name = "pyyaml" },
+    { name = "tenacity" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/4f/4d/5e2ea7754ee0a1f524c412801c6ba9ad49318ecb58b0d524903c3d9efe0a/langchain_core-0.3.76.tar.gz", hash = "sha256:71136a122dd1abae2c289c5809d035cf12b5f2bb682d8a4c1078cd94feae7419", size = 573568, upload-time = "2025-09-10T14:49:39.863Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/77/b5/501c0ffcb09c734457ceaa86bc7b1dd37b6a261147bd653add03b838aacb/langchain_core-0.3.76-py3-none-any.whl", hash = "sha256:46e0eb48c7ac532432d51f8ca1ece1804c82afe9ae3dcf027b867edadf82b3ec", size = 447508, upload-time = "2025-09-10T14:49:38.179Z" },
+]
+
+[[package]]
+name = "langchain-google-genai"
+version = "2.1.12"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "filetype" },
+    { name = "google-ai-generativelanguage" },
+    { name = "langchain-core" },
+    { name = "pydantic" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/09/38/8b3a71c729bd03e9eb0fd8bdb19e06a074c35bc2eaa61b1b9edfa863f38d/langchain_google_genai-2.1.12.tar.gz", hash = "sha256:4a98371e545eb97fcdf483086a4aebbb8eceeb9597ca5a9c4c35e92f4fbbd271", size = 77566, upload-time = "2025-09-17T01:27:11.747Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e1/8d/9dd9653e5414e73cae3480e5947bbbbd94ba7fa824efdf46e7ff2c0faef2/langchain_google_genai-2.1.12-py3-none-any.whl", hash = "sha256:4c07630419a8fbe7a2ec512c6dea68289663bfe7d5fae0ba431d2cd59a0d0880", size = 50746, upload-time = "2025-09-17T01:27:10.653Z" },
+]
+
+[[package]]
+name = "langchain-ibm"
+version = "0.3.15"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "ibm-watsonx-ai" },
+    { name = "langchain-core" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/31/d9/50a2f4d91c8d95f72e70520573aa812dd60d57e93597a9c4a86f6953d676/langchain_ibm-0.3.15.tar.gz", hash = "sha256:4b284889d91c2703fedbb9bd9db10a0405bb736f2686bd0745f2214d64899828", size = 27213, upload-time = "2025-07-09T08:11:00.006Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/05/79/efca6430613adbfae4ac7584ce44960663a73910e4bed45ce74fcf855374/langchain_ibm-0.3.15-py3-none-any.whl", hash = "sha256:a603d9be6668f374ad11e5a30f01ace0ecdb89e69d0cd027b943104ba94b4077", size = 32109, upload-time = "2025-07-09T08:10:59.064Z" },
+]
+
+[[package]]
+name = "langchain-litellm"
+version = "0.2.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "langchain-core" },
+    { name = "litellm" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/37/82/a39244efb54ecbe6314852330311bdabd8298fdefc09296c6d4f7b9219d9/langchain_litellm-0.2.2.tar.gz", hash = "sha256:317b320573661f96afb70786c2b3b690acdfaff14d324e87dca4207ff3d44c5e", size = 10854, upload-time = "2025-07-11T17:58:04.921Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/6b/b7/f4dce688cb63373fb0b244f2aba598871142f293fa873052e0a7943741d0/langchain_litellm-0.2.2-py3-none-any.whl", hash = "sha256:f17ef94e819dddbe13c5ce7c1dbd875ca432ecf0e1c5b16e7fc2413c9a1d5fbe", size = 11605, upload-time = "2025-07-11T17:58:03.9Z" },
+]
+
+[[package]]
+name = "langchain-openai"
+version = "0.3.18"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "langchain-core" },
+    { name = "openai" },
+    { name = "tiktoken" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/77/09/0c3332bf1f53b6e90a06eaac7c7b94898769157bfc41f2c116136559791e/langchain_openai-0.3.18.tar.gz", hash = "sha256:8e0769e4042de099a6217bbdccf7cc06b14c462e900424cbfc340c5f46f079ba", size = 273282, upload-time = "2025-05-22T17:02:22.354Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/58/3a/312c543281021fb4b22c0bc300d525b3a77696b427d87a7d484754929eae/langchain_openai-0.3.18-py3-none-any.whl", hash = "sha256:1687b972a6f6ac125cb8b23c0043278ab3bce031983ef9b32c1277155f88a03e", size = 63393, upload-time = "2025-05-22T17:02:20.668Z" },
+]
+
+[[package]]
+name = "langchain-text-splitters"
+version = "0.3.8"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "langchain-core" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/e7/ac/b4a25c5716bb0103b1515f1f52cc69ffb1035a5a225ee5afe3aed28bf57b/langchain_text_splitters-0.3.8.tar.gz", hash = "sha256:116d4b9f2a22dda357d0b79e30acf005c5518177971c66a9f1ab0edfdb0f912e", size = 42128, upload-time = "2025-04-04T14:03:51.521Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8b/a3/3696ff2444658053c01b6b7443e761f28bb71217d82bb89137a978c5f66f/langchain_text_splitters-0.3.8-py3-none-any.whl", hash = "sha256:e75cc0f4ae58dcf07d9f18776400cf8ade27fadd4ff6d264df6278bb302f6f02", size = 32440, upload-time = "2025-04-04T14:03:50.6Z" },
+]
+
+[[package]]
+name = "langgraph"
+version = "0.4.7"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "langchain-core" },
+    { name = "langgraph-checkpoint" },
+    { name = "langgraph-prebuilt" },
+    { name = "langgraph-sdk" },
+    { name = "pydantic" },
+    { name = "xxhash" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/67/64/4275256f9d22bf579376be6a3eabf82494d1ef2f82e353dca9bfcc1bda83/langgraph-0.4.7.tar.gz", hash = "sha256:8948a35f6f85805c8ac36e94d5492c86a34c39dcf6f405b0f84491bc444e3479", size = 444029, upload-time = "2025-05-24T00:01:32.904Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c0/ed/6435328d51f0a56f42e53f8089ce31479c6e041248de9448652150f83162/langgraph-0.4.7-py3-none-any.whl", hash = "sha256:a925a3881fcd631eccf076994f41012e9320cd1adacc9aeb89ffcb3442b61f86", size = 154924, upload-time = "2025-05-24T00:01:31.097Z" },
+]
+
+[[package]]
+name = "langgraph-checkpoint"
+version = "2.0.26"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "langchain-core", marker = "python_full_version < '4'" },
+    { name = "ormsgpack" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c5/61/e2518ac9216a4e9f4efda3ac61595e3c9e9ac00833141c9688e8d56bd7eb/langgraph_checkpoint-2.0.26.tar.gz", hash = "sha256:2b800195532d5efb079db9754f037281225ae175f7a395523f4bf41223cbc9d6", size = 37874, upload-time = "2025-05-15T17:31:22.466Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/38/48/d7cec540a3011b3207470bb07294a399e3b94b2e8a602e38cb007ce5bc10/langgraph_checkpoint-2.0.26-py3-none-any.whl", hash = "sha256:ad4907858ed320a208e14ac037e4b9244ec1cb5aa54570518166ae8b25752cec", size = 44247, upload-time = "2025-05-15T17:31:21.38Z" },
+]
+
+[[package]]
+name = "langgraph-prebuilt"
+version = "0.2.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "langchain-core" },
+    { name = "langgraph-checkpoint" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/88/f5/15b26cda94ebb89400048d478a3b1927005d85e273a557d8683f4cda775c/langgraph_prebuilt-0.2.2.tar.gz", hash = "sha256:0a5d1f651f97c848cd1c3dd0ef017614f47ee74effb7375b59ac639e41b253f9", size = 112785, upload-time = "2025-05-28T13:39:54.235Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/14/46/c98fec1f8620cbffbabda346a2c68155eec3720c6c3393ab3b9529618810/langgraph_prebuilt-0.2.2-py3-none-any.whl", hash = "sha256:72de5ef1d969a8f02ad7adc7cc1915bb9b4467912d57ba60da34b5a70fdad1f6", size = 23748, upload-time = "2025-05-28T13:39:53.361Z" },
+]
+
+[[package]]
+name = "langgraph-sdk"
+version = "0.1.70"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "httpx" },
+    { name = "orjson" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c1/dd/c074adf91d2fe67f00dc3be4348119f40a9d0ead9e55c958f81492c522c0/langgraph_sdk-0.1.70.tar.gz", hash = "sha256:cc65ec33bcdf8c7008d43da2d2b0bc1dd09f98d21a7f636828d9379535069cf9", size = 71530, upload-time = "2025-05-21T22:23:22.502Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8c/77/b0930ca5d54ef91e2bdb37e0f7dbeda1923e1e0b5b71ab3af35c103c2e39/langgraph_sdk-0.1.70-py3-none-any.whl", hash = "sha256:47f2b04a964f40a610c1636b387ea52f961ce7a233afc21d3103e5faac8ca1e5", size = 49986, upload-time = "2025-05-21T22:23:21.377Z" },
+]
+
+[[package]]
+name = "langsmith"
+version = "0.3.45"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "httpx" },
+    { name = "orjson", marker = "platform_python_implementation != 'PyPy'" },
+    { name = "packaging" },
+    { name = "pydantic" },
+    { name = "requests" },
+    { name = "requests-toolbelt" },
+    { name = "zstandard" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/be/86/b941012013260f95af2e90a3d9415af4a76a003a28412033fc4b09f35731/langsmith-0.3.45.tar.gz", hash = "sha256:1df3c6820c73ed210b2c7bc5cdb7bfa19ddc9126cd03fdf0da54e2e171e6094d", size = 348201, upload-time = "2025-06-05T05:10:28.948Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/6a/f4/c206c0888f8a506404cb4f16ad89593bdc2f70cf00de26a1a0a7a76ad7a3/langsmith-0.3.45-py3-none-any.whl", hash = "sha256:5b55f0518601fa65f3bb6b1a3100379a96aa7b3ed5e9380581615ba9c65ed8ed", size = 363002, upload-time = "2025-06-05T05:10:27.228Z" },
+]
+
+[[package]]
+name = "litellm"
+version = "1.79.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "aiohttp" },
+    { name = "click" },
+    { name = "fastuuid" },
+    { name = "httpx" },
+    { name = "importlib-metadata" },
+    { name = "jinja2" },
+    { name = "jsonschema" },
+    { name = "openai" },
+    { name = "pydantic" },
+    { name = "python-dotenv" },
+    { name = "tiktoken" },
+    { name = "tokenizers" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c3/0a/587c3f895f5d6c842d6cd630204c8bf7de677fc69ce2bd26e812c02b6e0b/litellm-1.79.3.tar.gz", hash = "sha256:4da4716f8da3e1b77838262c36d3016146860933e0489171658a9d4a3fd59b1b", size = 11319885, upload-time = "2025-11-09T02:33:17.684Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/41/ad/3e030c925c99b9a2f1573bf376259338b502ed1aa25ae768bf1f79d8b1bf/litellm-1.79.3-py3-none-any.whl", hash = "sha256:16314049d109e5cadb2abdccaf2e07ea03d2caa3a9b3f54f34b5b825092b4eeb", size = 10412553, upload-time = "2025-11-09T02:33:14.021Z" },
+]
+
+[[package]]
+name = "locust"
+version = "2.42.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "configargparse" },
+    { name = "flask" },
+    { name = "flask-cors" },
+    { name = "flask-login" },
+    { name = "gevent" },
+    { name = "geventhttpclient" },
+    { name = "locust-cloud" },
+    { name = "msgpack" },
+    { name = "psutil" },
+    { name = "pytest" },
+    { name = "python-engineio" },
+    { name = "python-socketio", extra = ["client"] },
+    { name = "pywin32", marker = "sys_platform == 'win32'" },
+    { name = "pyzmq" },
+    { name = "requests" },
+    { name = "werkzeug" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/bb/f9/ba22c81fb6fbb81610e4c661c6ffe4f495cbb5d5e8296de31964e710feb8/locust-2.42.3.tar.gz", hash = "sha256:01227890df7bf5268332f2dc041558ae45561b72a06193b068f7e02774f75ab2", size = 1416478, upload-time = "2025-11-15T10:41:50.143Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/61/b3/38dd0eb197ca63d1ee39f6cedfb1aab8e6c844da3c8f3fd8d0f41192a293/locust-2.42.3-py3-none-any.whl", hash = "sha256:89c6359abcb79f8cbd870cd33c01acd3dc099baaea8774155cfdede4167d6a1d", size = 1435187, upload-time = "2025-11-15T10:41:48.654Z" },
+]
+
+[[package]]
+name = "locust-cloud"
+version = "1.28.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "configargparse" },
+    { name = "gevent" },
+    { name = "platformdirs" },
+    { name = "python-engineio" },
+    { name = "python-socketio", extra = ["client"] },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/cf/11/c9b8ebef10a5dd3df11ebf371e1defddbf123cd798f2010dfaeece03c642/locust_cloud-1.28.1.tar.gz", hash = "sha256:c010a80dbd26fbd791a9c1202c63c59ddb96e9f3cc4ff5af48a9ee858057a56c", size = 457093, upload-time = "2025-11-06T11:26:13.558Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/86/ca/9439688ed80ec97ff292e01863cca2bd1c27fc0acd40e6f8751edb0ad6d6/locust_cloud-1.28.1-py3-none-any.whl", hash = "sha256:fadfd423dd83057b96c4332e8fdb94ccacaecbb6b8ae837212c42276b8b5c22e", size = 413154, upload-time = "2025-11-06T11:26:12.068Z" },
+]
+
+[[package]]
+name = "lomond"
+version = "0.3.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "six" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c0/9e/ef7813c910d4a893f2bc763ce9246269f55cc68db21dc1327e376d6a2d02/lomond-0.3.3.tar.gz", hash = "sha256:427936596b144b4ec387ead99aac1560b77c8a78107d3d49415d3abbe79acbd3", size = 28789, upload-time = "2018-09-21T15:17:43.297Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/0f/b1/02eebed49c754b01b17de7705caa8c4ceecfb4f926cdafc220c863584360/lomond-0.3.3-py2.py3-none-any.whl", hash = "sha256:df1dd4dd7b802a12b71907ab1abb08b8ce9950195311207579379eb3b1553de7", size = 35512, upload-time = "2018-09-21T15:17:38.686Z" },
+]
+
+[[package]]
+name = "lxml"
+version = "5.4.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/76/3d/14e82fc7c8fb1b7761f7e748fd47e2ec8276d137b6acfe5a4bb73853e08f/lxml-5.4.0.tar.gz", hash = "sha256:d12832e1dbea4be280b22fd0ea7c9b87f0d8fc51ba06e92dc62d52f804f78ebd", size = 3679479, upload-time = "2025-04-23T01:50:29.322Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f8/4c/d101ace719ca6a4ec043eb516fcfcb1b396a9fccc4fcd9ef593df34ba0d5/lxml-5.4.0-cp312-cp312-macosx_10_9_universal2.whl", hash = "sha256:b5aff6f3e818e6bdbbb38e5967520f174b18f539c2b9de867b1e7fde6f8d95a4", size = 8127392, upload-time = "2025-04-23T01:46:04.09Z" },
+    { url = "https://files.pythonhosted.org/packages/11/84/beddae0cec4dd9ddf46abf156f0af451c13019a0fa25d7445b655ba5ccb7/lxml-5.4.0-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:942a5d73f739ad7c452bf739a62a0f83e2578afd6b8e5406308731f4ce78b16d", size = 4415103, upload-time = "2025-04-23T01:46:07.227Z" },
+    { url = "https://files.pythonhosted.org/packages/d0/25/d0d93a4e763f0462cccd2b8a665bf1e4343dd788c76dcfefa289d46a38a9/lxml-5.4.0-cp312-cp312-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:460508a4b07364d6abf53acaa0a90b6d370fafde5693ef37602566613a9b0779", size = 5024224, upload-time = "2025-04-23T01:46:10.237Z" },
+    { url = "https://files.pythonhosted.org/packages/31/ce/1df18fb8f7946e7f3388af378b1f34fcf253b94b9feedb2cec5969da8012/lxml-5.4.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:529024ab3a505fed78fe3cc5ddc079464e709f6c892733e3f5842007cec8ac6e", size = 4769913, upload-time = "2025-04-23T01:46:12.757Z" },
+    { url = "https://files.pythonhosted.org/packages/4e/62/f4a6c60ae7c40d43657f552f3045df05118636be1165b906d3423790447f/lxml-5.4.0-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:7ca56ebc2c474e8f3d5761debfd9283b8b18c76c4fc0967b74aeafba1f5647f9", size = 5290441, upload-time = "2025-04-23T01:46:16.037Z" },
+    { url = "https://files.pythonhosted.org/packages/9e/aa/04f00009e1e3a77838c7fc948f161b5d2d5de1136b2b81c712a263829ea4/lxml-5.4.0-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:a81e1196f0a5b4167a8dafe3a66aa67c4addac1b22dc47947abd5d5c7a3f24b5", size = 4820165, upload-time = "2025-04-23T01:46:19.137Z" },
+    { url = "https://files.pythonhosted.org/packages/c9/1f/e0b2f61fa2404bf0f1fdf1898377e5bd1b74cc9b2cf2c6ba8509b8f27990/lxml-5.4.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:00b8686694423ddae324cf614e1b9659c2edb754de617703c3d29ff568448df5", size = 4932580, upload-time = "2025-04-23T01:46:21.963Z" },
+    { url = "https://files.pythonhosted.org/packages/24/a2/8263f351b4ffe0ed3e32ea7b7830f845c795349034f912f490180d88a877/lxml-5.4.0-cp312-cp312-manylinux_2_28_aarch64.whl", hash = "sha256:c5681160758d3f6ac5b4fea370495c48aac0989d6a0f01bb9a72ad8ef5ab75c4", size = 4759493, upload-time = "2025-04-23T01:46:24.316Z" },
+    { url = "https://files.pythonhosted.org/packages/05/00/41db052f279995c0e35c79d0f0fc9f8122d5b5e9630139c592a0b58c71b4/lxml-5.4.0-cp312-cp312-manylinux_2_28_ppc64le.whl", hash = "sha256:2dc191e60425ad70e75a68c9fd90ab284df64d9cd410ba8d2b641c0c45bc006e", size = 5324679, upload-time = "2025-04-23T01:46:27.097Z" },
+    { url = "https://files.pythonhosted.org/packages/1d/be/ee99e6314cdef4587617d3b3b745f9356d9b7dd12a9663c5f3b5734b64ba/lxml-5.4.0-cp312-cp312-manylinux_2_28_s390x.whl", hash = "sha256:67f779374c6b9753ae0a0195a892a1c234ce8416e4448fe1e9f34746482070a7", size = 4890691, upload-time = "2025-04-23T01:46:30.009Z" },
+    { url = "https://files.pythonhosted.org/packages/ad/36/239820114bf1d71f38f12208b9c58dec033cbcf80101cde006b9bde5cffd/lxml-5.4.0-cp312-cp312-manylinux_2_28_x86_64.whl", hash = "sha256:79d5bfa9c1b455336f52343130b2067164040604e41f6dc4d8313867ed540079", size = 4955075, upload-time = "2025-04-23T01:46:32.33Z" },
+    { url = "https://files.pythonhosted.org/packages/d4/e1/1b795cc0b174efc9e13dbd078a9ff79a58728a033142bc6d70a1ee8fc34d/lxml-5.4.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:3d3c30ba1c9b48c68489dc1829a6eede9873f52edca1dda900066542528d6b20", size = 4838680, upload-time = "2025-04-23T01:46:34.852Z" },
+    { url = "https://files.pythonhosted.org/packages/72/48/3c198455ca108cec5ae3662ae8acd7fd99476812fd712bb17f1b39a0b589/lxml-5.4.0-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:1af80c6316ae68aded77e91cd9d80648f7dd40406cef73df841aa3c36f6907c8", size = 5391253, upload-time = "2025-04-23T01:46:37.608Z" },
+    { url = "https://files.pythonhosted.org/packages/d6/10/5bf51858971c51ec96cfc13e800a9951f3fd501686f4c18d7d84fe2d6352/lxml-5.4.0-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:4d885698f5019abe0de3d352caf9466d5de2baded00a06ef3f1216c1a58ae78f", size = 5261651, upload-time = "2025-04-23T01:46:40.183Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/11/06710dd809205377da380546f91d2ac94bad9ff735a72b64ec029f706c85/lxml-5.4.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:aea53d51859b6c64e7c51d522c03cc2c48b9b5d6172126854cc7f01aa11f52bc", size = 5024315, upload-time = "2025-04-23T01:46:43.333Z" },
+    { url = "https://files.pythonhosted.org/packages/f5/b0/15b6217834b5e3a59ebf7f53125e08e318030e8cc0d7310355e6edac98ef/lxml-5.4.0-cp312-cp312-win32.whl", hash = "sha256:d90b729fd2732df28130c064aac9bb8aff14ba20baa4aee7bd0795ff1187545f", size = 3486149, upload-time = "2025-04-23T01:46:45.684Z" },
+    { url = "https://files.pythonhosted.org/packages/91/1e/05ddcb57ad2f3069101611bd5f5084157d90861a2ef460bf42f45cced944/lxml-5.4.0-cp312-cp312-win_amd64.whl", hash = "sha256:1dc4ca99e89c335a7ed47d38964abcb36c5910790f9bd106f2a8fa2ee0b909d2", size = 3817095, upload-time = "2025-04-23T01:46:48.521Z" },
+    { url = "https://files.pythonhosted.org/packages/87/cb/2ba1e9dd953415f58548506fa5549a7f373ae55e80c61c9041b7fd09a38a/lxml-5.4.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:773e27b62920199c6197130632c18fb7ead3257fce1ffb7d286912e56ddb79e0", size = 8110086, upload-time = "2025-04-23T01:46:52.218Z" },
+    { url = "https://files.pythonhosted.org/packages/b5/3e/6602a4dca3ae344e8609914d6ab22e52ce42e3e1638c10967568c5c1450d/lxml-5.4.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:ce9c671845de9699904b1e9df95acfe8dfc183f2310f163cdaa91a3535af95de", size = 4404613, upload-time = "2025-04-23T01:46:55.281Z" },
+    { url = "https://files.pythonhosted.org/packages/4c/72/bf00988477d3bb452bef9436e45aeea82bb40cdfb4684b83c967c53909c7/lxml-5.4.0-cp313-cp313-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:9454b8d8200ec99a224df8854786262b1bd6461f4280064c807303c642c05e76", size = 5012008, upload-time = "2025-04-23T01:46:57.817Z" },
+    { url = "https://files.pythonhosted.org/packages/92/1f/93e42d93e9e7a44b2d3354c462cd784dbaaf350f7976b5d7c3f85d68d1b1/lxml-5.4.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:cccd007d5c95279e529c146d095f1d39ac05139de26c098166c4beb9374b0f4d", size = 4760915, upload-time = "2025-04-23T01:47:00.745Z" },
+    { url = "https://files.pythonhosted.org/packages/45/0b/363009390d0b461cf9976a499e83b68f792e4c32ecef092f3f9ef9c4ba54/lxml-5.4.0-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:0fce1294a0497edb034cb416ad3e77ecc89b313cff7adbee5334e4dc0d11f422", size = 5283890, upload-time = "2025-04-23T01:47:04.702Z" },
+    { url = "https://files.pythonhosted.org/packages/19/dc/6056c332f9378ab476c88e301e6549a0454dbee8f0ae16847414f0eccb74/lxml-5.4.0-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:24974f774f3a78ac12b95e3a20ef0931795ff04dbb16db81a90c37f589819551", size = 4812644, upload-time = "2025-04-23T01:47:07.833Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/8a/f8c66bbb23ecb9048a46a5ef9b495fd23f7543df642dabeebcb2eeb66592/lxml-5.4.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:497cab4d8254c2a90bf988f162ace2ddbfdd806fce3bda3f581b9d24c852e03c", size = 4921817, upload-time = "2025-04-23T01:47:10.317Z" },
+    { url = "https://files.pythonhosted.org/packages/04/57/2e537083c3f381f83d05d9b176f0d838a9e8961f7ed8ddce3f0217179ce3/lxml-5.4.0-cp313-cp313-manylinux_2_28_aarch64.whl", hash = "sha256:e794f698ae4c5084414efea0f5cc9f4ac562ec02d66e1484ff822ef97c2cadff", size = 4753916, upload-time = "2025-04-23T01:47:12.823Z" },
+    { url = "https://files.pythonhosted.org/packages/d8/80/ea8c4072109a350848f1157ce83ccd9439601274035cd045ac31f47f3417/lxml-5.4.0-cp313-cp313-manylinux_2_28_ppc64le.whl", hash = "sha256:2c62891b1ea3094bb12097822b3d44b93fc6c325f2043c4d2736a8ff09e65f60", size = 5289274, upload-time = "2025-04-23T01:47:15.916Z" },
+    { url = "https://files.pythonhosted.org/packages/b3/47/c4be287c48cdc304483457878a3f22999098b9a95f455e3c4bda7ec7fc72/lxml-5.4.0-cp313-cp313-manylinux_2_28_s390x.whl", hash = "sha256:142accb3e4d1edae4b392bd165a9abdee8a3c432a2cca193df995bc3886249c8", size = 4874757, upload-time = "2025-04-23T01:47:19.793Z" },
+    { url = "https://files.pythonhosted.org/packages/2f/04/6ef935dc74e729932e39478e44d8cfe6a83550552eaa072b7c05f6f22488/lxml-5.4.0-cp313-cp313-manylinux_2_28_x86_64.whl", hash = "sha256:1a42b3a19346e5601d1b8296ff6ef3d76038058f311902edd574461e9c036982", size = 4947028, upload-time = "2025-04-23T01:47:22.401Z" },
+    { url = "https://files.pythonhosted.org/packages/cb/f9/c33fc8daa373ef8a7daddb53175289024512b6619bc9de36d77dca3df44b/lxml-5.4.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:4291d3c409a17febf817259cb37bc62cb7eb398bcc95c1356947e2871911ae61", size = 4834487, upload-time = "2025-04-23T01:47:25.513Z" },
+    { url = "https://files.pythonhosted.org/packages/8d/30/fc92bb595bcb878311e01b418b57d13900f84c2b94f6eca9e5073ea756e6/lxml-5.4.0-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:4f5322cf38fe0e21c2d73901abf68e6329dc02a4994e483adbcf92b568a09a54", size = 5381688, upload-time = "2025-04-23T01:47:28.454Z" },
+    { url = "https://files.pythonhosted.org/packages/43/d1/3ba7bd978ce28bba8e3da2c2e9d5ae3f8f521ad3f0ca6ea4788d086ba00d/lxml-5.4.0-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:0be91891bdb06ebe65122aa6bf3fc94489960cf7e03033c6f83a90863b23c58b", size = 5242043, upload-time = "2025-04-23T01:47:31.208Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/cd/95fa2201041a610c4d08ddaf31d43b98ecc4b1d74b1e7245b1abdab443cb/lxml-5.4.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:15a665ad90054a3d4f397bc40f73948d48e36e4c09f9bcffc7d90c87410e478a", size = 5021569, upload-time = "2025-04-23T01:47:33.805Z" },
+    { url = "https://files.pythonhosted.org/packages/2d/a6/31da006fead660b9512d08d23d31e93ad3477dd47cc42e3285f143443176/lxml-5.4.0-cp313-cp313-win32.whl", hash = "sha256:d5663bc1b471c79f5c833cffbc9b87d7bf13f87e055a5c86c363ccd2348d7e82", size = 3485270, upload-time = "2025-04-23T01:47:36.133Z" },
+    { url = "https://files.pythonhosted.org/packages/fc/14/c115516c62a7d2499781d2d3d7215218c0731b2c940753bf9f9b7b73924d/lxml-5.4.0-cp313-cp313-win_amd64.whl", hash = "sha256:bcb7a1096b4b6b24ce1ac24d4942ad98f983cd3810f9711bcd0293f43a9d8b9f", size = 3814606, upload-time = "2025-04-23T01:47:39.028Z" },
+]
+
+[[package]]
+name = "markdown-it-py"
+version = "3.0.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "mdurl" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/38/71/3b932df36c1a044d397a1f92d1cf91ee0a503d91e470cbd670aa66b07ed0/markdown-it-py-3.0.0.tar.gz", hash = "sha256:e3f60a94fa066dc52ec76661e37c851cb232d92f9886b15cb560aaada2df8feb", size = 74596, upload-time = "2023-06-03T06:41:14.443Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/42/d7/1ec15b46af6af88f19b8e5ffea08fa375d433c998b8a7639e76935c14f1f/markdown_it_py-3.0.0-py3-none-any.whl", hash = "sha256:355216845c60bd96232cd8d8c40e8f9765cc86f46880e43a8fd22dc1a1a8cab1", size = 87528, upload-time = "2023-06-03T06:41:11.019Z" },
+]
+
+[[package]]
+name = "markupsafe"
+version = "3.0.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/b2/97/5d42485e71dfc078108a86d6de8fa46db44a1a9295e89c5d6d4a06e23a62/markupsafe-3.0.2.tar.gz", hash = "sha256:ee55d3edf80167e48ea11a923c7386f4669df67d7994554387f84e7d8b0a2bf0", size = 20537, upload-time = "2024-10-18T15:21:54.129Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/22/09/d1f21434c97fc42f09d290cbb6350d44eb12f09cc62c9476effdb33a18aa/MarkupSafe-3.0.2-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:9778bd8ab0a994ebf6f84c2b949e65736d5575320a17ae8984a77fab08db94cf", size = 14274, upload-time = "2024-10-18T15:21:13.777Z" },
+    { url = "https://files.pythonhosted.org/packages/6b/b0/18f76bba336fa5aecf79d45dcd6c806c280ec44538b3c13671d49099fdd0/MarkupSafe-3.0.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:846ade7b71e3536c4e56b386c2a47adf5741d2d8b94ec9dc3e92e5e1ee1e2225", size = 12348, upload-time = "2024-10-18T15:21:14.822Z" },
+    { url = "https://files.pythonhosted.org/packages/e0/25/dd5c0f6ac1311e9b40f4af06c78efde0f3b5cbf02502f8ef9501294c425b/MarkupSafe-3.0.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:1c99d261bd2d5f6b59325c92c73df481e05e57f19837bdca8413b9eac4bd8028", size = 24149, upload-time = "2024-10-18T15:21:15.642Z" },
+    { url = "https://files.pythonhosted.org/packages/f3/f0/89e7aadfb3749d0f52234a0c8c7867877876e0a20b60e2188e9850794c17/MarkupSafe-3.0.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:e17c96c14e19278594aa4841ec148115f9c7615a47382ecb6b82bd8fea3ab0c8", size = 23118, upload-time = "2024-10-18T15:21:17.133Z" },
+    { url = "https://files.pythonhosted.org/packages/d5/da/f2eeb64c723f5e3777bc081da884b414671982008c47dcc1873d81f625b6/MarkupSafe-3.0.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:88416bd1e65dcea10bc7569faacb2c20ce071dd1f87539ca2ab364bf6231393c", size = 22993, upload-time = "2024-10-18T15:21:18.064Z" },
+    { url = "https://files.pythonhosted.org/packages/da/0e/1f32af846df486dce7c227fe0f2398dc7e2e51d4a370508281f3c1c5cddc/MarkupSafe-3.0.2-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:2181e67807fc2fa785d0592dc2d6206c019b9502410671cc905d132a92866557", size = 24178, upload-time = "2024-10-18T15:21:18.859Z" },
+    { url = "https://files.pythonhosted.org/packages/c4/f6/bb3ca0532de8086cbff5f06d137064c8410d10779c4c127e0e47d17c0b71/MarkupSafe-3.0.2-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:52305740fe773d09cffb16f8ed0427942901f00adedac82ec8b67752f58a1b22", size = 23319, upload-time = "2024-10-18T15:21:19.671Z" },
+    { url = "https://files.pythonhosted.org/packages/a2/82/8be4c96ffee03c5b4a034e60a31294daf481e12c7c43ab8e34a1453ee48b/MarkupSafe-3.0.2-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:ad10d3ded218f1039f11a75f8091880239651b52e9bb592ca27de44eed242a48", size = 23352, upload-time = "2024-10-18T15:21:20.971Z" },
+    { url = "https://files.pythonhosted.org/packages/51/ae/97827349d3fcffee7e184bdf7f41cd6b88d9919c80f0263ba7acd1bbcb18/MarkupSafe-3.0.2-cp312-cp312-win32.whl", hash = "sha256:0f4ca02bea9a23221c0182836703cbf8930c5e9454bacce27e767509fa286a30", size = 15097, upload-time = "2024-10-18T15:21:22.646Z" },
+    { url = "https://files.pythonhosted.org/packages/c1/80/a61f99dc3a936413c3ee4e1eecac96c0da5ed07ad56fd975f1a9da5bc630/MarkupSafe-3.0.2-cp312-cp312-win_amd64.whl", hash = "sha256:8e06879fc22a25ca47312fbe7c8264eb0b662f6db27cb2d3bbbc74b1df4b9b87", size = 15601, upload-time = "2024-10-18T15:21:23.499Z" },
+    { url = "https://files.pythonhosted.org/packages/83/0e/67eb10a7ecc77a0c2bbe2b0235765b98d164d81600746914bebada795e97/MarkupSafe-3.0.2-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:ba9527cdd4c926ed0760bc301f6728ef34d841f405abf9d4f959c478421e4efd", size = 14274, upload-time = "2024-10-18T15:21:24.577Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/6d/9409f3684d3335375d04e5f05744dfe7e9f120062c9857df4ab490a1031a/MarkupSafe-3.0.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:f8b3d067f2e40fe93e1ccdd6b2e1d16c43140e76f02fb1319a05cf2b79d99430", size = 12352, upload-time = "2024-10-18T15:21:25.382Z" },
+    { url = "https://files.pythonhosted.org/packages/d2/f5/6eadfcd3885ea85fe2a7c128315cc1bb7241e1987443d78c8fe712d03091/MarkupSafe-3.0.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:569511d3b58c8791ab4c2e1285575265991e6d8f8700c7be0e88f86cb0672094", size = 24122, upload-time = "2024-10-18T15:21:26.199Z" },
+    { url = "https://files.pythonhosted.org/packages/0c/91/96cf928db8236f1bfab6ce15ad070dfdd02ed88261c2afafd4b43575e9e9/MarkupSafe-3.0.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:15ab75ef81add55874e7ab7055e9c397312385bd9ced94920f2802310c930396", size = 23085, upload-time = "2024-10-18T15:21:27.029Z" },
+    { url = "https://files.pythonhosted.org/packages/c2/cf/c9d56af24d56ea04daae7ac0940232d31d5a8354f2b457c6d856b2057d69/MarkupSafe-3.0.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f3818cb119498c0678015754eba762e0d61e5b52d34c8b13d770f0719f7b1d79", size = 22978, upload-time = "2024-10-18T15:21:27.846Z" },
+    { url = "https://files.pythonhosted.org/packages/2a/9f/8619835cd6a711d6272d62abb78c033bda638fdc54c4e7f4272cf1c0962b/MarkupSafe-3.0.2-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:cdb82a876c47801bb54a690c5ae105a46b392ac6099881cdfb9f6e95e4014c6a", size = 24208, upload-time = "2024-10-18T15:21:28.744Z" },
+    { url = "https://files.pythonhosted.org/packages/f9/bf/176950a1792b2cd2102b8ffeb5133e1ed984547b75db47c25a67d3359f77/MarkupSafe-3.0.2-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:cabc348d87e913db6ab4aa100f01b08f481097838bdddf7c7a84b7575b7309ca", size = 23357, upload-time = "2024-10-18T15:21:29.545Z" },
+    { url = "https://files.pythonhosted.org/packages/ce/4f/9a02c1d335caabe5c4efb90e1b6e8ee944aa245c1aaaab8e8a618987d816/MarkupSafe-3.0.2-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:444dcda765c8a838eaae23112db52f1efaf750daddb2d9ca300bcae1039adc5c", size = 23344, upload-time = "2024-10-18T15:21:30.366Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/55/c271b57db36f748f0e04a759ace9f8f759ccf22b4960c270c78a394f58be/MarkupSafe-3.0.2-cp313-cp313-win32.whl", hash = "sha256:bcf3e58998965654fdaff38e58584d8937aa3096ab5354d493c77d1fdd66d7a1", size = 15101, upload-time = "2024-10-18T15:21:31.207Z" },
+    { url = "https://files.pythonhosted.org/packages/29/88/07df22d2dd4df40aba9f3e402e6dc1b8ee86297dddbad4872bd5e7b0094f/MarkupSafe-3.0.2-cp313-cp313-win_amd64.whl", hash = "sha256:e6a2a455bd412959b57a172ce6328d2dd1f01cb2135efda2e4576e8a23fa3b0f", size = 15603, upload-time = "2024-10-18T15:21:32.032Z" },
+    { url = "https://files.pythonhosted.org/packages/62/6a/8b89d24db2d32d433dffcd6a8779159da109842434f1dd2f6e71f32f738c/MarkupSafe-3.0.2-cp313-cp313t-macosx_10_13_universal2.whl", hash = "sha256:b5a6b3ada725cea8a5e634536b1b01c30bcdcd7f9c6fff4151548d5bf6b3a36c", size = 14510, upload-time = "2024-10-18T15:21:33.625Z" },
+    { url = "https://files.pythonhosted.org/packages/7a/06/a10f955f70a2e5a9bf78d11a161029d278eeacbd35ef806c3fd17b13060d/MarkupSafe-3.0.2-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:a904af0a6162c73e3edcb969eeeb53a63ceeb5d8cf642fade7d39e7963a22ddb", size = 12486, upload-time = "2024-10-18T15:21:34.611Z" },
+    { url = "https://files.pythonhosted.org/packages/34/cf/65d4a571869a1a9078198ca28f39fba5fbb910f952f9dbc5220afff9f5e6/MarkupSafe-3.0.2-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:4aa4e5faecf353ed117801a068ebab7b7e09ffb6e1d5e412dc852e0da018126c", size = 25480, upload-time = "2024-10-18T15:21:35.398Z" },
+    { url = "https://files.pythonhosted.org/packages/0c/e3/90e9651924c430b885468b56b3d597cabf6d72be4b24a0acd1fa0e12af67/MarkupSafe-3.0.2-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:c0ef13eaeee5b615fb07c9a7dadb38eac06a0608b41570d8ade51c56539e509d", size = 23914, upload-time = "2024-10-18T15:21:36.231Z" },
+    { url = "https://files.pythonhosted.org/packages/66/8c/6c7cf61f95d63bb866db39085150df1f2a5bd3335298f14a66b48e92659c/MarkupSafe-3.0.2-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d16a81a06776313e817c951135cf7340a3e91e8c1ff2fac444cfd75fffa04afe", size = 23796, upload-time = "2024-10-18T15:21:37.073Z" },
+    { url = "https://files.pythonhosted.org/packages/bb/35/cbe9238ec3f47ac9a7c8b3df7a808e7cb50fe149dc7039f5f454b3fba218/MarkupSafe-3.0.2-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:6381026f158fdb7c72a168278597a5e3a5222e83ea18f543112b2662a9b699c5", size = 25473, upload-time = "2024-10-18T15:21:37.932Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/32/7621a4382488aa283cc05e8984a9c219abad3bca087be9ec77e89939ded9/MarkupSafe-3.0.2-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:3d79d162e7be8f996986c064d1c7c817f6df3a77fe3d6859f6f9e7be4b8c213a", size = 24114, upload-time = "2024-10-18T15:21:39.799Z" },
+    { url = "https://files.pythonhosted.org/packages/0d/80/0985960e4b89922cb5a0bac0ed39c5b96cbc1a536a99f30e8c220a996ed9/MarkupSafe-3.0.2-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:131a3c7689c85f5ad20f9f6fb1b866f402c445b220c19fe4308c0b147ccd2ad9", size = 24098, upload-time = "2024-10-18T15:21:40.813Z" },
+    { url = "https://files.pythonhosted.org/packages/82/78/fedb03c7d5380df2427038ec8d973587e90561b2d90cd472ce9254cf348b/MarkupSafe-3.0.2-cp313-cp313t-win32.whl", hash = "sha256:ba8062ed2cf21c07a9e295d5b8a2a5ce678b913b45fdf68c32d95d6c1291e0b6", size = 15208, upload-time = "2024-10-18T15:21:41.814Z" },
+    { url = "https://files.pythonhosted.org/packages/4f/65/6079a46068dfceaeabb5dcad6d674f5f5c61a6fa5673746f42a9f4c233b3/MarkupSafe-3.0.2-cp313-cp313t-win_amd64.whl", hash = "sha256:e444a31f8db13eb18ada366ab3cf45fd4b31e4db1236a4448f68778c1d1a5a2f", size = 15739, upload-time = "2024-10-18T15:21:42.784Z" },
+]
+
+[[package]]
+name = "marshmallow"
+version = "3.26.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "packaging" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ab/5e/5e53d26b42ab75491cda89b871dab9e97c840bf12c63ec58a1919710cd06/marshmallow-3.26.1.tar.gz", hash = "sha256:e6d8affb6cb61d39d26402096dc0aee12d5a26d490a121f118d2e81dc0719dc6", size = 221825, upload-time = "2025-02-03T15:32:25.093Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/34/75/51952c7b2d3873b44a0028b1bd26a25078c18f92f256608e8d1dc61b39fd/marshmallow-3.26.1-py3-none-any.whl", hash = "sha256:3350409f20a70a7e4e11a27661187b77cdcaeb20abca41c1454fe33636bea09c", size = 50878, upload-time = "2025-02-03T15:32:22.295Z" },
+]
+
+[[package]]
+name = "mcp"
+version = "1.9.4"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "anyio" },
+    { name = "httpx" },
+    { name = "httpx-sse" },
+    { name = "pydantic" },
+    { name = "pydantic-settings" },
+    { name = "python-multipart" },
+    { name = "sse-starlette" },
+    { name = "starlette" },
+    { name = "uvicorn", marker = "sys_platform != 'emscripten'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/06/f2/dc2450e566eeccf92d89a00c3e813234ad58e2ba1e31d11467a09ac4f3b9/mcp-1.9.4.tar.gz", hash = "sha256:cfb0bcd1a9535b42edaef89947b9e18a8feb49362e1cc059d6e7fc636f2cb09f", size = 333294, upload-time = "2025-06-12T08:20:30.158Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/97/fc/80e655c955137393c443842ffcc4feccab5b12fa7cb8de9ced90f90e6998/mcp-1.9.4-py3-none-any.whl", hash = "sha256:7fcf36b62936adb8e63f89346bccca1268eeca9bf6dfb562ee10b1dfbda9dac0", size = 130232, upload-time = "2025-06-12T08:20:28.551Z" },
+]
+
+[package.optional-dependencies]
+cli = [
+    { name = "python-dotenv" },
+    { name = "typer" },
+]
+
+[[package]]
+name = "mdurl"
+version = "0.1.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/d6/54/cfe61301667036ec958cb99bd3efefba235e65cdeb9c84d24a8293ba1d90/mdurl-0.1.2.tar.gz", hash = "sha256:bb413d29f5eea38f31dd4754dd7377d4465116fb207585f97bf925588687c1ba", size = 8729, upload-time = "2022-08-14T12:40:10.846Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/b3/38/89ba8ad64ae25be8de66a6d463314cf1eb366222074cfda9ee839c56a4b4/mdurl-0.1.2-py3-none-any.whl", hash = "sha256:84008a41e51615a49fc9966191ff91509e3c40b939176e643fd50a5c2196b8f8", size = 9979, upload-time = "2022-08-14T12:40:09.779Z" },
+]
+
+[[package]]
+name = "msal"
+version = "1.32.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cryptography" },
+    { name = "pyjwt", extra = ["crypto"] },
+    { name = "requests" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/3f/90/81dcc50f0be11a8c4dcbae1a9f761a26e5f905231330a7cacc9f04ec4c61/msal-1.32.3.tar.gz", hash = "sha256:5eea038689c78a5a70ca8ecbe1245458b55a857bd096efb6989c69ba15985d35", size = 151449, upload-time = "2025-04-25T13:12:34.204Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/04/bf/81516b9aac7fd867709984d08eb4db1d2e3fe1df795c8e442cde9b568962/msal-1.32.3-py3-none-any.whl", hash = "sha256:b2798db57760b1961b142f027ffb7c8169536bf77316e99a0df5c4aaebb11569", size = 115358, upload-time = "2025-04-25T13:12:33.034Z" },
+]
+
+[[package]]
+name = "msal-extensions"
+version = "1.3.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "msal" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/01/99/5d239b6156eddf761a636bded1118414d161bd6b7b37a9335549ed159396/msal_extensions-1.3.1.tar.gz", hash = "sha256:c5b0fd10f65ef62b5f1d62f4251d51cbcaf003fcedae8c91b040a488614be1a4", size = 23315, upload-time = "2025-03-14T23:51:03.902Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/5e/75/bd9b7bb966668920f06b200e84454c8f3566b102183bc55c5473d96cb2b9/msal_extensions-1.3.1-py3-none-any.whl", hash = "sha256:96d3de4d034504e969ac5e85bae8106c8373b5c6568e4c8fa7af2eca9dbe6bca", size = 20583, upload-time = "2025-03-14T23:51:03.016Z" },
+]
+
+[[package]]
+name = "msgpack"
+version = "1.1.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/cb/d0/7555686ae7ff5731205df1012ede15dd9d927f6227ea151e901c7406af4f/msgpack-1.1.0.tar.gz", hash = "sha256:dd432ccc2c72b914e4cb77afce64aab761c1137cc698be3984eee260bcb2896e", size = 167260, upload-time = "2024-09-10T04:25:52.197Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e1/d6/716b7ca1dbde63290d2973d22bbef1b5032ca634c3ff4384a958ec3f093a/msgpack-1.1.0-cp312-cp312-macosx_10_9_universal2.whl", hash = "sha256:d46cf9e3705ea9485687aa4001a76e44748b609d260af21c4ceea7f2212a501d", size = 152421, upload-time = "2024-09-10T04:25:49.63Z" },
+    { url = "https://files.pythonhosted.org/packages/70/da/5312b067f6773429cec2f8f08b021c06af416bba340c912c2ec778539ed6/msgpack-1.1.0-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:5dbad74103df937e1325cc4bfeaf57713be0b4f15e1c2da43ccdd836393e2ea2", size = 85277, upload-time = "2024-09-10T04:24:48.562Z" },
+    { url = "https://files.pythonhosted.org/packages/28/51/da7f3ae4462e8bb98af0d5bdf2707f1b8c65a0d4f496e46b6afb06cbc286/msgpack-1.1.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:58dfc47f8b102da61e8949708b3eafc3504509a5728f8b4ddef84bd9e16ad420", size = 82222, upload-time = "2024-09-10T04:25:36.49Z" },
+    { url = "https://files.pythonhosted.org/packages/33/af/dc95c4b2a49cff17ce47611ca9ba218198806cad7796c0b01d1e332c86bb/msgpack-1.1.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:4676e5be1b472909b2ee6356ff425ebedf5142427842aa06b4dfd5117d1ca8a2", size = 392971, upload-time = "2024-09-10T04:24:58.129Z" },
+    { url = "https://files.pythonhosted.org/packages/f1/54/65af8de681fa8255402c80eda2a501ba467921d5a7a028c9c22a2c2eedb5/msgpack-1.1.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:17fb65dd0bec285907f68b15734a993ad3fc94332b5bb21b0435846228de1f39", size = 401403, upload-time = "2024-09-10T04:25:40.428Z" },
+    { url = "https://files.pythonhosted.org/packages/97/8c/e333690777bd33919ab7024269dc3c41c76ef5137b211d776fbb404bfead/msgpack-1.1.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a51abd48c6d8ac89e0cfd4fe177c61481aca2d5e7ba42044fd218cfd8ea9899f", size = 385356, upload-time = "2024-09-10T04:25:31.406Z" },
+    { url = "https://files.pythonhosted.org/packages/57/52/406795ba478dc1c890559dd4e89280fa86506608a28ccf3a72fbf45df9f5/msgpack-1.1.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:2137773500afa5494a61b1208619e3871f75f27b03bcfca7b3a7023284140247", size = 383028, upload-time = "2024-09-10T04:25:17.08Z" },
+    { url = "https://files.pythonhosted.org/packages/e7/69/053b6549bf90a3acadcd8232eae03e2fefc87f066a5b9fbb37e2e608859f/msgpack-1.1.0-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:398b713459fea610861c8a7b62a6fec1882759f308ae0795b5413ff6a160cf3c", size = 391100, upload-time = "2024-09-10T04:25:08.993Z" },
+    { url = "https://files.pythonhosted.org/packages/23/f0/d4101d4da054f04274995ddc4086c2715d9b93111eb9ed49686c0f7ccc8a/msgpack-1.1.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:06f5fd2f6bb2a7914922d935d3b8bb4a7fff3a9a91cfce6d06c13bc42bec975b", size = 394254, upload-time = "2024-09-10T04:25:06.048Z" },
+    { url = "https://files.pythonhosted.org/packages/1c/12/cf07458f35d0d775ff3a2dc5559fa2e1fcd06c46f1ef510e594ebefdca01/msgpack-1.1.0-cp312-cp312-win32.whl", hash = "sha256:ad33e8400e4ec17ba782f7b9cf868977d867ed784a1f5f2ab46e7ba53b6e1e1b", size = 69085, upload-time = "2024-09-10T04:25:01.494Z" },
+    { url = "https://files.pythonhosted.org/packages/73/80/2708a4641f7d553a63bc934a3eb7214806b5b39d200133ca7f7afb0a53e8/msgpack-1.1.0-cp312-cp312-win_amd64.whl", hash = "sha256:115a7af8ee9e8cddc10f87636767857e7e3717b7a2e97379dc2054712693e90f", size = 75347, upload-time = "2024-09-10T04:25:33.106Z" },
+    { url = "https://files.pythonhosted.org/packages/c8/b0/380f5f639543a4ac413e969109978feb1f3c66e931068f91ab6ab0f8be00/msgpack-1.1.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:071603e2f0771c45ad9bc65719291c568d4edf120b44eb36324dcb02a13bfddf", size = 151142, upload-time = "2024-09-10T04:24:59.656Z" },
+    { url = "https://files.pythonhosted.org/packages/c8/ee/be57e9702400a6cb2606883d55b05784fada898dfc7fd12608ab1fdb054e/msgpack-1.1.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:0f92a83b84e7c0749e3f12821949d79485971f087604178026085f60ce109330", size = 84523, upload-time = "2024-09-10T04:25:37.924Z" },
+    { url = "https://files.pythonhosted.org/packages/7e/3a/2919f63acca3c119565449681ad08a2f84b2171ddfcff1dba6959db2cceb/msgpack-1.1.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:4a1964df7b81285d00a84da4e70cb1383f2e665e0f1f2a7027e683956d04b734", size = 81556, upload-time = "2024-09-10T04:24:28.296Z" },
+    { url = "https://files.pythonhosted.org/packages/7c/43/a11113d9e5c1498c145a8925768ea2d5fce7cbab15c99cda655aa09947ed/msgpack-1.1.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:59caf6a4ed0d164055ccff8fe31eddc0ebc07cf7326a2aaa0dbf7a4001cd823e", size = 392105, upload-time = "2024-09-10T04:25:20.153Z" },
+    { url = "https://files.pythonhosted.org/packages/2d/7b/2c1d74ca6c94f70a1add74a8393a0138172207dc5de6fc6269483519d048/msgpack-1.1.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0907e1a7119b337971a689153665764adc34e89175f9a34793307d9def08e6ca", size = 399979, upload-time = "2024-09-10T04:25:41.75Z" },
+    { url = "https://files.pythonhosted.org/packages/82/8c/cf64ae518c7b8efc763ca1f1348a96f0e37150061e777a8ea5430b413a74/msgpack-1.1.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:65553c9b6da8166e819a6aa90ad15288599b340f91d18f60b2061f402b9a4915", size = 383816, upload-time = "2024-09-10T04:24:45.826Z" },
+    { url = "https://files.pythonhosted.org/packages/69/86/a847ef7a0f5ef3fa94ae20f52a4cacf596a4e4a010197fbcc27744eb9a83/msgpack-1.1.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:7a946a8992941fea80ed4beae6bff74ffd7ee129a90b4dd5cf9c476a30e9708d", size = 380973, upload-time = "2024-09-10T04:25:04.689Z" },
+    { url = "https://files.pythonhosted.org/packages/aa/90/c74cf6e1126faa93185d3b830ee97246ecc4fe12cf9d2d31318ee4246994/msgpack-1.1.0-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:4b51405e36e075193bc051315dbf29168d6141ae2500ba8cd80a522964e31434", size = 387435, upload-time = "2024-09-10T04:24:17.879Z" },
+    { url = "https://files.pythonhosted.org/packages/7a/40/631c238f1f338eb09f4acb0f34ab5862c4e9d7eda11c1b685471a4c5ea37/msgpack-1.1.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:b4c01941fd2ff87c2a934ee6055bda4ed353a7846b8d4f341c428109e9fcde8c", size = 399082, upload-time = "2024-09-10T04:25:18.398Z" },
+    { url = "https://files.pythonhosted.org/packages/e9/1b/fa8a952be252a1555ed39f97c06778e3aeb9123aa4cccc0fd2acd0b4e315/msgpack-1.1.0-cp313-cp313-win32.whl", hash = "sha256:7c9a35ce2c2573bada929e0b7b3576de647b0defbd25f5139dcdaba0ae35a4cc", size = 69037, upload-time = "2024-09-10T04:24:52.798Z" },
+    { url = "https://files.pythonhosted.org/packages/b6/bc/8bd826dd03e022153bfa1766dcdec4976d6c818865ed54223d71f07862b3/msgpack-1.1.0-cp313-cp313-win_amd64.whl", hash = "sha256:bce7d9e614a04d0883af0b3d4d501171fbfca038f12c77fa838d9f198147a23f", size = 75140, upload-time = "2024-09-10T04:24:31.288Z" },
+]
+
+[[package]]
+name = "msrest"
+version = "0.7.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "azure-core" },
+    { name = "certifi" },
+    { name = "isodate" },
+    { name = "requests" },
+    { name = "requests-oauthlib" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/68/77/8397c8fb8fc257d8ea0fa66f8068e073278c65f05acb17dcb22a02bfdc42/msrest-0.7.1.zip", hash = "sha256:6e7661f46f3afd88b75667b7187a92829924446c7ea1d169be8c4bb7eeb788b9", size = 175332, upload-time = "2022-06-13T22:41:25.111Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/15/cf/f2966a2638144491f8696c27320d5219f48a072715075d168b31d3237720/msrest-0.7.1-py3-none-any.whl", hash = "sha256:21120a810e1233e5e6cc7fe40b474eeb4ec6f757a15d7cf86702c369f9567c32", size = 85384, upload-time = "2022-06-13T22:41:22.42Z" },
+]
+
+[[package]]
+name = "multidict"
+version = "6.4.4"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/91/2f/a3470242707058fe856fe59241eee5635d79087100b7042a867368863a27/multidict-6.4.4.tar.gz", hash = "sha256:69ee9e6ba214b5245031b76233dd95408a0fd57fdb019ddcc1ead4790932a8e8", size = 90183, upload-time = "2025-05-19T14:16:37.381Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d2/b5/5675377da23d60875fe7dae6be841787755878e315e2f517235f22f59e18/multidict-6.4.4-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:dc388f75a1c00000824bf28b7633e40854f4127ede80512b44c3cfeeea1839a2", size = 64293, upload-time = "2025-05-19T14:14:44.724Z" },
+    { url = "https://files.pythonhosted.org/packages/34/a7/be384a482754bb8c95d2bbe91717bf7ccce6dc38c18569997a11f95aa554/multidict-6.4.4-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:98af87593a666f739d9dba5d0ae86e01b0e1a9cfcd2e30d2d361fbbbd1a9162d", size = 38096, upload-time = "2025-05-19T14:14:45.95Z" },
+    { url = "https://files.pythonhosted.org/packages/66/6d/d59854bb4352306145bdfd1704d210731c1bb2c890bfee31fb7bbc1c4c7f/multidict-6.4.4-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:aff4cafea2d120327d55eadd6b7f1136a8e5a0ecf6fb3b6863e8aca32cd8e50a", size = 37214, upload-time = "2025-05-19T14:14:47.158Z" },
+    { url = "https://files.pythonhosted.org/packages/99/e0/c29d9d462d7cfc5fc8f9bf24f9c6843b40e953c0b55e04eba2ad2cf54fba/multidict-6.4.4-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:169c4ba7858176b797fe551d6e99040c531c775d2d57b31bcf4de6d7a669847f", size = 224686, upload-time = "2025-05-19T14:14:48.366Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/4a/da99398d7fd8210d9de068f9a1b5f96dfaf67d51e3f2521f17cba4ee1012/multidict-6.4.4-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:b9eb4c59c54421a32b3273d4239865cb14ead53a606db066d7130ac80cc8ec93", size = 231061, upload-time = "2025-05-19T14:14:49.952Z" },
+    { url = "https://files.pythonhosted.org/packages/21/f5/ac11add39a0f447ac89353e6ca46666847051103649831c08a2800a14455/multidict-6.4.4-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:7cf3bd54c56aa16fdb40028d545eaa8d051402b61533c21e84046e05513d5780", size = 232412, upload-time = "2025-05-19T14:14:51.812Z" },
+    { url = "https://files.pythonhosted.org/packages/d9/11/4b551e2110cded705a3c13a1d4b6a11f73891eb5a1c449f1b2b6259e58a6/multidict-6.4.4-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f682c42003c7264134bfe886376299db4cc0c6cd06a3295b41b347044bcb5482", size = 231563, upload-time = "2025-05-19T14:14:53.262Z" },
+    { url = "https://files.pythonhosted.org/packages/4c/02/751530c19e78fe73b24c3da66618eda0aa0d7f6e7aa512e46483de6be210/multidict-6.4.4-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a920f9cf2abdf6e493c519492d892c362007f113c94da4c239ae88429835bad1", size = 223811, upload-time = "2025-05-19T14:14:55.232Z" },
+    { url = "https://files.pythonhosted.org/packages/c7/cb/2be8a214643056289e51ca356026c7b2ce7225373e7a1f8c8715efee8988/multidict-6.4.4-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:530d86827a2df6504526106b4c104ba19044594f8722d3e87714e847c74a0275", size = 216524, upload-time = "2025-05-19T14:14:57.226Z" },
+    { url = "https://files.pythonhosted.org/packages/19/f3/6d5011ec375c09081f5250af58de85f172bfcaafebff286d8089243c4bd4/multidict-6.4.4-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:ecde56ea2439b96ed8a8d826b50c57364612ddac0438c39e473fafad7ae1c23b", size = 229012, upload-time = "2025-05-19T14:14:58.597Z" },
+    { url = "https://files.pythonhosted.org/packages/67/9c/ca510785df5cf0eaf5b2a8132d7d04c1ce058dcf2c16233e596ce37a7f8e/multidict-6.4.4-cp312-cp312-musllinux_1_2_armv7l.whl", hash = "sha256:dc8c9736d8574b560634775ac0def6bdc1661fc63fa27ffdfc7264c565bcb4f2", size = 226765, upload-time = "2025-05-19T14:15:00.048Z" },
+    { url = "https://files.pythonhosted.org/packages/36/c8/ca86019994e92a0f11e642bda31265854e6ea7b235642f0477e8c2e25c1f/multidict-6.4.4-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:7f3d3b3c34867579ea47cbd6c1f2ce23fbfd20a273b6f9e3177e256584f1eacc", size = 222888, upload-time = "2025-05-19T14:15:01.568Z" },
+    { url = "https://files.pythonhosted.org/packages/c6/67/bc25a8e8bd522935379066950ec4e2277f9b236162a73548a2576d4b9587/multidict-6.4.4-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:87a728af265e08f96b6318ebe3c0f68b9335131f461efab2fc64cc84a44aa6ed", size = 234041, upload-time = "2025-05-19T14:15:03.759Z" },
+    { url = "https://files.pythonhosted.org/packages/f1/a0/70c4c2d12857fccbe607b334b7ee28b6b5326c322ca8f73ee54e70d76484/multidict-6.4.4-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:9f193eeda1857f8e8d3079a4abd258f42ef4a4bc87388452ed1e1c4d2b0c8740", size = 231046, upload-time = "2025-05-19T14:15:05.698Z" },
+    { url = "https://files.pythonhosted.org/packages/c1/0f/52954601d02d39742aab01d6b92f53c1dd38b2392248154c50797b4df7f1/multidict-6.4.4-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:be06e73c06415199200e9a2324a11252a3d62030319919cde5e6950ffeccf72e", size = 227106, upload-time = "2025-05-19T14:15:07.124Z" },
+    { url = "https://files.pythonhosted.org/packages/af/24/679d83ec4379402d28721790dce818e5d6b9f94ce1323a556fb17fa9996c/multidict-6.4.4-cp312-cp312-win32.whl", hash = "sha256:622f26ea6a7e19b7c48dd9228071f571b2fbbd57a8cd71c061e848f281550e6b", size = 35351, upload-time = "2025-05-19T14:15:08.556Z" },
+    { url = "https://files.pythonhosted.org/packages/52/ef/40d98bc5f986f61565f9b345f102409534e29da86a6454eb6b7c00225a13/multidict-6.4.4-cp312-cp312-win_amd64.whl", hash = "sha256:5e2bcda30d5009996ff439e02a9f2b5c3d64a20151d34898c000a6281faa3781", size = 38791, upload-time = "2025-05-19T14:15:09.825Z" },
+    { url = "https://files.pythonhosted.org/packages/df/2a/e166d2ffbf4b10131b2d5b0e458f7cee7d986661caceae0de8753042d4b2/multidict-6.4.4-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:82ffabefc8d84c2742ad19c37f02cde5ec2a1ee172d19944d380f920a340e4b9", size = 64123, upload-time = "2025-05-19T14:15:11.044Z" },
+    { url = "https://files.pythonhosted.org/packages/8c/96/e200e379ae5b6f95cbae472e0199ea98913f03d8c9a709f42612a432932c/multidict-6.4.4-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:6a2f58a66fe2c22615ad26156354005391e26a2f3721c3621504cd87c1ea87bf", size = 38049, upload-time = "2025-05-19T14:15:12.902Z" },
+    { url = "https://files.pythonhosted.org/packages/75/fb/47afd17b83f6a8c7fa863c6d23ac5ba6a0e6145ed8a6bcc8da20b2b2c1d2/multidict-6.4.4-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:5883d6ee0fd9d8a48e9174df47540b7545909841ac82354c7ae4cbe9952603bd", size = 37078, upload-time = "2025-05-19T14:15:14.282Z" },
+    { url = "https://files.pythonhosted.org/packages/fa/70/1af3143000eddfb19fd5ca5e78393985ed988ac493bb859800fe0914041f/multidict-6.4.4-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:9abcf56a9511653fa1d052bfc55fbe53dbee8f34e68bd6a5a038731b0ca42d15", size = 224097, upload-time = "2025-05-19T14:15:15.566Z" },
+    { url = "https://files.pythonhosted.org/packages/b1/39/d570c62b53d4fba844e0378ffbcd02ac25ca423d3235047013ba2f6f60f8/multidict-6.4.4-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:6ed5ae5605d4ad5a049fad2a28bb7193400700ce2f4ae484ab702d1e3749c3f9", size = 230768, upload-time = "2025-05-19T14:15:17.308Z" },
+    { url = "https://files.pythonhosted.org/packages/fd/f8/ed88f2c4d06f752b015933055eb291d9bc184936903752c66f68fb3c95a7/multidict-6.4.4-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:bbfcb60396f9bcfa63e017a180c3105b8c123a63e9d1428a36544e7d37ca9e20", size = 231331, upload-time = "2025-05-19T14:15:18.73Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/6f/8e07cffa32f483ab887b0d56bbd8747ac2c1acd00dc0af6fcf265f4a121e/multidict-6.4.4-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:b0f1987787f5f1e2076b59692352ab29a955b09ccc433c1f6b8e8e18666f608b", size = 230169, upload-time = "2025-05-19T14:15:20.179Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/2b/5dcf173be15e42f330110875a2668ddfc208afc4229097312212dc9c1236/multidict-6.4.4-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1d0121ccce8c812047d8d43d691a1ad7641f72c4f730474878a5aeae1b8ead8c", size = 222947, upload-time = "2025-05-19T14:15:21.714Z" },
+    { url = "https://files.pythonhosted.org/packages/39/75/4ddcbcebe5ebcd6faa770b629260d15840a5fc07ce8ad295a32e14993726/multidict-6.4.4-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:83ec4967114295b8afd120a8eec579920c882831a3e4c3331d591a8e5bfbbc0f", size = 215761, upload-time = "2025-05-19T14:15:23.242Z" },
+    { url = "https://files.pythonhosted.org/packages/6a/c9/55e998ae45ff15c5608e384206aa71a11e1b7f48b64d166db400b14a3433/multidict-6.4.4-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:995f985e2e268deaf17867801b859a282e0448633f1310e3704b30616d269d69", size = 227605, upload-time = "2025-05-19T14:15:24.763Z" },
+    { url = "https://files.pythonhosted.org/packages/04/49/c2404eac74497503c77071bd2e6f88c7e94092b8a07601536b8dbe99be50/multidict-6.4.4-cp313-cp313-musllinux_1_2_armv7l.whl", hash = "sha256:d832c608f94b9f92a0ec8b7e949be7792a642b6e535fcf32f3e28fab69eeb046", size = 226144, upload-time = "2025-05-19T14:15:26.249Z" },
+    { url = "https://files.pythonhosted.org/packages/62/c5/0cd0c3c6f18864c40846aa2252cd69d308699cb163e1c0d989ca301684da/multidict-6.4.4-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:d21c1212171cf7da703c5b0b7a0e85be23b720818aef502ad187d627316d5645", size = 221100, upload-time = "2025-05-19T14:15:28.303Z" },
+    { url = "https://files.pythonhosted.org/packages/71/7b/f2f3887bea71739a046d601ef10e689528d4f911d84da873b6be9194ffea/multidict-6.4.4-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:cbebaa076aaecad3d4bb4c008ecc73b09274c952cf6a1b78ccfd689e51f5a5b0", size = 232731, upload-time = "2025-05-19T14:15:30.263Z" },
+    { url = "https://files.pythonhosted.org/packages/e5/b3/d9de808349df97fa75ec1372758701b5800ebad3c46ae377ad63058fbcc6/multidict-6.4.4-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:c93a6fb06cc8e5d3628b2b5fda215a5db01e8f08fc15fadd65662d9b857acbe4", size = 229637, upload-time = "2025-05-19T14:15:33.337Z" },
+    { url = "https://files.pythonhosted.org/packages/5e/57/13207c16b615eb4f1745b44806a96026ef8e1b694008a58226c2d8f5f0a5/multidict-6.4.4-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:8cd8f81f1310182362fb0c7898145ea9c9b08a71081c5963b40ee3e3cac589b1", size = 225594, upload-time = "2025-05-19T14:15:34.832Z" },
+    { url = "https://files.pythonhosted.org/packages/3a/e4/d23bec2f70221604f5565000632c305fc8f25ba953e8ce2d8a18842b9841/multidict-6.4.4-cp313-cp313-win32.whl", hash = "sha256:3e9f1cd61a0ab857154205fb0b1f3d3ace88d27ebd1409ab7af5096e409614cd", size = 35359, upload-time = "2025-05-19T14:15:36.246Z" },
+    { url = "https://files.pythonhosted.org/packages/a7/7a/cfe1a47632be861b627f46f642c1d031704cc1c0f5c0efbde2ad44aa34bd/multidict-6.4.4-cp313-cp313-win_amd64.whl", hash = "sha256:8ffb40b74400e4455785c2fa37eba434269149ec525fc8329858c862e4b35373", size = 38903, upload-time = "2025-05-19T14:15:37.507Z" },
+    { url = "https://files.pythonhosted.org/packages/68/7b/15c259b0ab49938a0a1c8f3188572802704a779ddb294edc1b2a72252e7c/multidict-6.4.4-cp313-cp313t-macosx_10_13_universal2.whl", hash = "sha256:6a602151dbf177be2450ef38966f4be3467d41a86c6a845070d12e17c858a156", size = 68895, upload-time = "2025-05-19T14:15:38.856Z" },
+    { url = "https://files.pythonhosted.org/packages/f1/7d/168b5b822bccd88142e0a3ce985858fea612404edd228698f5af691020c9/multidict-6.4.4-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:0d2b9712211b860d123815a80b859075d86a4d54787e247d7fbee9db6832cf1c", size = 40183, upload-time = "2025-05-19T14:15:40.197Z" },
+    { url = "https://files.pythonhosted.org/packages/e0/b7/d4b8d98eb850ef28a4922ba508c31d90715fd9b9da3801a30cea2967130b/multidict-6.4.4-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:d2fa86af59f8fc1972e121ade052145f6da22758f6996a197d69bb52f8204e7e", size = 39592, upload-time = "2025-05-19T14:15:41.508Z" },
+    { url = "https://files.pythonhosted.org/packages/18/28/a554678898a19583548e742080cf55d169733baf57efc48c2f0273a08583/multidict-6.4.4-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:50855d03e9e4d66eab6947ba688ffb714616f985838077bc4b490e769e48da51", size = 226071, upload-time = "2025-05-19T14:15:42.877Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/dc/7ba6c789d05c310e294f85329efac1bf5b450338d2542498db1491a264df/multidict-6.4.4-cp313-cp313t-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:5bce06b83be23225be1905dcdb6b789064fae92499fbc458f59a8c0e68718601", size = 222597, upload-time = "2025-05-19T14:15:44.412Z" },
+    { url = "https://files.pythonhosted.org/packages/24/4f/34eadbbf401b03768dba439be0fb94b0d187facae9142821a3d5599ccb3b/multidict-6.4.4-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:66ed0731f8e5dfd8369a883b6e564aca085fb9289aacabd9decd70568b9a30de", size = 228253, upload-time = "2025-05-19T14:15:46.474Z" },
+    { url = "https://files.pythonhosted.org/packages/c0/e6/493225a3cdb0d8d80d43a94503fc313536a07dae54a3f030d279e629a2bc/multidict-6.4.4-cp313-cp313t-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:329ae97fc2f56f44d91bc47fe0972b1f52d21c4b7a2ac97040da02577e2daca2", size = 226146, upload-time = "2025-05-19T14:15:48.003Z" },
+    { url = "https://files.pythonhosted.org/packages/2f/70/e411a7254dc3bff6f7e6e004303b1b0591358e9f0b7c08639941e0de8bd6/multidict-6.4.4-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:c27e5dcf520923d6474d98b96749e6805f7677e93aaaf62656005b8643f907ab", size = 220585, upload-time = "2025-05-19T14:15:49.546Z" },
+    { url = "https://files.pythonhosted.org/packages/08/8f/beb3ae7406a619100d2b1fb0022c3bb55a8225ab53c5663648ba50dfcd56/multidict-6.4.4-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:058cc59b9e9b143cc56715e59e22941a5d868c322242278d28123a5d09cdf6b0", size = 212080, upload-time = "2025-05-19T14:15:51.151Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/ec/355124e9d3d01cf8edb072fd14947220f357e1c5bc79c88dff89297e9342/multidict-6.4.4-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:69133376bc9a03f8c47343d33f91f74a99c339e8b58cea90433d8e24bb298031", size = 226558, upload-time = "2025-05-19T14:15:52.665Z" },
+    { url = "https://files.pythonhosted.org/packages/fd/22/d2b95cbebbc2ada3be3812ea9287dcc9712d7f1a012fad041770afddb2ad/multidict-6.4.4-cp313-cp313t-musllinux_1_2_armv7l.whl", hash = "sha256:d6b15c55721b1b115c5ba178c77104123745b1417527ad9641a4c5e2047450f0", size = 212168, upload-time = "2025-05-19T14:15:55.279Z" },
+    { url = "https://files.pythonhosted.org/packages/4d/c5/62bfc0b2f9ce88326dbe7179f9824a939c6c7775b23b95de777267b9725c/multidict-6.4.4-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:a887b77f51d3d41e6e1a63cf3bc7ddf24de5939d9ff69441387dfefa58ac2e26", size = 217970, upload-time = "2025-05-19T14:15:56.806Z" },
+    { url = "https://files.pythonhosted.org/packages/79/74/977cea1aadc43ff1c75d23bd5bc4768a8fac98c14e5878d6ee8d6bab743c/multidict-6.4.4-cp313-cp313t-musllinux_1_2_ppc64le.whl", hash = "sha256:632a3bf8f1787f7ef7d3c2f68a7bde5be2f702906f8b5842ad6da9d974d0aab3", size = 226980, upload-time = "2025-05-19T14:15:58.313Z" },
+    { url = "https://files.pythonhosted.org/packages/48/fc/cc4a1a2049df2eb84006607dc428ff237af38e0fcecfdb8a29ca47b1566c/multidict-6.4.4-cp313-cp313t-musllinux_1_2_s390x.whl", hash = "sha256:a145c550900deb7540973c5cdb183b0d24bed6b80bf7bddf33ed8f569082535e", size = 220641, upload-time = "2025-05-19T14:15:59.866Z" },
+    { url = "https://files.pythonhosted.org/packages/3b/6a/a7444d113ab918701988d4abdde373dbdfd2def7bd647207e2bf645c7eac/multidict-6.4.4-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:cc5d83c6619ca5c9672cb78b39ed8542f1975a803dee2cda114ff73cbb076edd", size = 221728, upload-time = "2025-05-19T14:16:01.535Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/b0/fdf4c73ad1c55e0f4dbbf2aa59dd37037334091f9a4961646d2b7ac91a86/multidict-6.4.4-cp313-cp313t-win32.whl", hash = "sha256:3312f63261b9df49be9d57aaa6abf53a6ad96d93b24f9cc16cf979956355ce6e", size = 41913, upload-time = "2025-05-19T14:16:03.199Z" },
+    { url = "https://files.pythonhosted.org/packages/8e/92/27989ecca97e542c0d01d05a98a5ae12198a243a9ee12563a0313291511f/multidict-6.4.4-cp313-cp313t-win_amd64.whl", hash = "sha256:ba852168d814b2c73333073e1c7116d9395bea69575a01b0b3c89d2d5a87c8fb", size = 46112, upload-time = "2025-05-19T14:16:04.909Z" },
+    { url = "https://files.pythonhosted.org/packages/84/5d/e17845bb0fa76334477d5de38654d27946d5b5d3695443987a094a71b440/multidict-6.4.4-py3-none-any.whl", hash = "sha256:bd4557071b561a8b3b6075c3ce93cf9bfb6182cb241805c3d66ced3b75eff4ac", size = 10481, upload-time = "2025-05-19T14:16:36.024Z" },
+]
+
+[[package]]
+name = "mypy-extensions"
+version = "1.1.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/a2/6e/371856a3fb9d31ca8dac321cda606860fa4548858c0cc45d9d1d4ca2628b/mypy_extensions-1.1.0.tar.gz", hash = "sha256:52e68efc3284861e772bbcd66823fde5ae21fd2fdb51c62a211403730b916558", size = 6343, upload-time = "2025-04-22T14:54:24.164Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/79/7b/2c79738432f5c924bef5071f933bcc9efd0473bac3b4aa584a6f7c1c8df8/mypy_extensions-1.1.0-py3-none-any.whl", hash = "sha256:1be4cccdb0f2482337c4743e60421de3a356cd97508abadd57d47403e94f5505", size = 4963, upload-time = "2025-04-22T14:54:22.983Z" },
+]
+
+[[package]]
+name = "narwhals"
+version = "2.5.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/7b/b8/3cb005704866f1cc19e8d6b15d0467255821ba12d82f20ea15912672e54c/narwhals-2.5.0.tar.gz", hash = "sha256:8ae0b6f39597f14c0dc52afc98949d6f8be89b5af402d2d98101d2f7d3561418", size = 558573, upload-time = "2025-09-12T10:04:24.436Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f8/5a/22741c5c0e5f6e8050242bfc2052ba68bc94b1735ed5bca35404d136d6ec/narwhals-2.5.0-py3-none-any.whl", hash = "sha256:7e213f9ca7db3f8bf6f7eff35eaee6a1cf80902997e1b78d49b7755775d8f423", size = 407296, upload-time = "2025-09-12T10:04:22.524Z" },
+]
+
+[[package]]
+name = "nest-asyncio"
+version = "1.6.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/83/f8/51569ac65d696c8ecbee95938f89d4abf00f47d58d48f6fbabfe8f0baefe/nest_asyncio-1.6.0.tar.gz", hash = "sha256:6f172d5449aca15afd6c646851f4e31e02c598d553a667e38cafa997cfec55fe", size = 7418, upload-time = "2024-01-21T14:25:19.227Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a0/c4/c2971a3ba4c6103a3d10c4b0f24f461ddc027f0f09763220cf35ca1401b3/nest_asyncio-1.6.0-py3-none-any.whl", hash = "sha256:87af6efd6b5e897c81050477ef65c62e2b2f35d51703cae01aff2905b1852e1c", size = 5195, upload-time = "2024-01-21T14:25:17.223Z" },
+]
+
+[[package]]
+name = "networkx"
+version = "3.4.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/fd/1d/06475e1cd5264c0b870ea2cc6fdb3e37177c1e565c43f56ff17a10e3937f/networkx-3.4.2.tar.gz", hash = "sha256:307c3669428c5362aab27c8a1260aa8f47c4e91d3891f48be0141738d8d053e1", size = 2151368, upload-time = "2024-10-21T12:39:38.695Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/b9/54/dd730b32ea14ea797530a4479b2ed46a6fb250f682a9cfb997e968bf0261/networkx-3.4.2-py3-none-any.whl", hash = "sha256:df5d4365b724cf81b8c6a7312509d0c22386097011ad1abe274afd5e9d3bbc5f", size = 1723263, upload-time = "2024-10-21T12:39:36.247Z" },
+]
+
+[[package]]
+name = "nodeenv"
+version = "1.9.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/43/16/fc88b08840de0e0a72a2f9d8c6bae36be573e475a6326ae854bcc549fc45/nodeenv-1.9.1.tar.gz", hash = "sha256:6ec12890a2dab7946721edbfbcd91f3319c6ccc9aec47be7c7e6b7011ee6645f", size = 47437, upload-time = "2024-06-04T18:44:11.171Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d2/1d/1b658dbd2b9fa9c4c9f32accbfc0205d532c8c6194dc0f2a4c0428e7128a/nodeenv-1.9.1-py2.py3-none-any.whl", hash = "sha256:ba11c9782d29c27c70ffbdda2d7415098754709be8a7056d79a737cd901155c9", size = 22314, upload-time = "2024-06-04T18:44:08.352Z" },
+]
+
+[[package]]
+name = "numpy"
+version = "1.26.4"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/65/6e/09db70a523a96d25e115e71cc56a6f9031e7b8cd166c1ac8438307c14058/numpy-1.26.4.tar.gz", hash = "sha256:2a02aba9ed12e4ac4eb3ea9421c420301a0c6460d9830d74a9df87efa4912010", size = 15786129, upload-time = "2024-02-06T00:26:44.495Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/95/12/8f2020a8e8b8383ac0177dc9570aad031a3beb12e38847f7129bacd96228/numpy-1.26.4-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:b3ce300f3644fb06443ee2222c2201dd3a89ea6040541412b8fa189341847218", size = 20335901, upload-time = "2024-02-05T23:55:32.801Z" },
+    { url = "https://files.pythonhosted.org/packages/75/5b/ca6c8bd14007e5ca171c7c03102d17b4f4e0ceb53957e8c44343a9546dcc/numpy-1.26.4-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:03a8c78d01d9781b28a6989f6fa1bb2c4f2d51201cf99d3dd875df6fbd96b23b", size = 13685868, upload-time = "2024-02-05T23:55:56.28Z" },
+    { url = "https://files.pythonhosted.org/packages/79/f8/97f10e6755e2a7d027ca783f63044d5b1bc1ae7acb12afe6a9b4286eac17/numpy-1.26.4-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:9fad7dcb1aac3c7f0584a5a8133e3a43eeb2fe127f47e3632d43d677c66c102b", size = 13925109, upload-time = "2024-02-05T23:56:20.368Z" },
+    { url = "https://files.pythonhosted.org/packages/0f/50/de23fde84e45f5c4fda2488c759b69990fd4512387a8632860f3ac9cd225/numpy-1.26.4-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:675d61ffbfa78604709862923189bad94014bef562cc35cf61d3a07bba02a7ed", size = 17950613, upload-time = "2024-02-05T23:56:56.054Z" },
+    { url = "https://files.pythonhosted.org/packages/4c/0c/9c603826b6465e82591e05ca230dfc13376da512b25ccd0894709b054ed0/numpy-1.26.4-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:ab47dbe5cc8210f55aa58e4805fe224dac469cde56b9f731a4c098b91917159a", size = 13572172, upload-time = "2024-02-05T23:57:21.56Z" },
+    { url = "https://files.pythonhosted.org/packages/76/8c/2ba3902e1a0fc1c74962ea9bb33a534bb05984ad7ff9515bf8d07527cadd/numpy-1.26.4-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:1dda2e7b4ec9dd512f84935c5f126c8bd8b9f2fc001e9f54af255e8c5f16b0e0", size = 17786643, upload-time = "2024-02-05T23:57:56.585Z" },
+    { url = "https://files.pythonhosted.org/packages/28/4a/46d9e65106879492374999e76eb85f87b15328e06bd1550668f79f7b18c6/numpy-1.26.4-cp312-cp312-win32.whl", hash = "sha256:50193e430acfc1346175fcbdaa28ffec49947a06918b7b92130744e81e640110", size = 5677803, upload-time = "2024-02-05T23:58:08.963Z" },
+    { url = "https://files.pythonhosted.org/packages/16/2e/86f24451c2d530c88daf997cb8d6ac622c1d40d19f5a031ed68a4b73a374/numpy-1.26.4-cp312-cp312-win_amd64.whl", hash = "sha256:08beddf13648eb95f8d867350f6a018a4be2e5ad54c8d8caed89ebca558b2818", size = 15517754, upload-time = "2024-02-05T23:58:36.364Z" },
+]
+
+[[package]]
+name = "oauthlib"
+version = "3.2.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/6d/fa/fbf4001037904031639e6bfbfc02badfc7e12f137a8afa254df6c4c8a670/oauthlib-3.2.2.tar.gz", hash = "sha256:9859c40929662bec5d64f34d01c99e093149682a3f38915dc0655d5a633dd918", size = 177352, upload-time = "2022-10-17T20:04:27.471Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7e/80/cab10959dc1faead58dc8384a781dfbf93cb4d33d50988f7a69f1b7c9bbe/oauthlib-3.2.2-py3-none-any.whl", hash = "sha256:8139f29aac13e25d502680e9e19963e83f16838d48a0d71c287fe40e7067fbca", size = 151688, upload-time = "2022-10-17T20:04:24.037Z" },
+]
+
+[[package]]
+name = "openai"
+version = "1.109.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "anyio" },
+    { name = "distro" },
+    { name = "httpx" },
+    { name = "jiter" },
+    { name = "pydantic" },
+    { name = "sniffio" },
+    { name = "tqdm" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c6/a1/a303104dc55fc546a3f6914c842d3da471c64eec92043aef8f652eb6c524/openai-1.109.1.tar.gz", hash = "sha256:d173ed8dbca665892a6db099b4a2dfac624f94d20a93f46eb0b56aae940ed869", size = 564133, upload-time = "2025-09-24T13:00:53.075Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/1d/2a/7dd3d207ec669cacc1f186fd856a0f61dbc255d24f6fdc1a6715d6051b0f/openai-1.109.1-py3-none-any.whl", hash = "sha256:6bcaf57086cf59159b8e27447e4e7dd019db5d29a438072fbd49c290c7e65315", size = 948627, upload-time = "2025-09-24T13:00:50.754Z" },
+]
+
+[[package]]
+name = "openapi-pydantic"
+version = "0.5.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "pydantic" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/02/2e/58d83848dd1a79cb92ed8e63f6ba901ca282c5f09d04af9423ec26c56fd7/openapi_pydantic-0.5.1.tar.gz", hash = "sha256:ff6835af6bde7a459fb93eb93bb92b8749b754fc6e51b2f1590a19dc3005ee0d", size = 60892, upload-time = "2025-01-08T19:29:27.083Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/12/cf/03675d8bd8ecbf4445504d8071adab19f5f993676795708e36402ab38263/openapi_pydantic-0.5.1-py3-none-any.whl", hash = "sha256:a3a09ef4586f5bd760a8df7f43028b60cafb6d9f61de2acba9574766255ab146", size = 96381, upload-time = "2025-01-08T19:29:25.275Z" },
+]
+
+[[package]]
+name = "opentelemetry-api"
+version = "1.31.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "deprecated" },
+    { name = "importlib-metadata" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/8a/cf/db26ab9d748bf50d6edf524fb863aa4da616ba1ce46c57a7dff1112b73fb/opentelemetry_api-1.31.1.tar.gz", hash = "sha256:137ad4b64215f02b3000a0292e077641c8611aab636414632a9b9068593b7e91", size = 64059, upload-time = "2025-03-20T14:44:21.365Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/6c/c8/86557ff0da32f3817bc4face57ea35cfdc2f9d3bcefd42311ef860dcefb7/opentelemetry_api-1.31.1-py3-none-any.whl", hash = "sha256:1511a3f470c9c8a32eeea68d4ea37835880c0eed09dd1a0187acc8b1301da0a1", size = 65197, upload-time = "2025-03-20T14:43:57.518Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "packaging" },
+    { name = "wrapt" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/49/c9/c52d444576b0776dbee71d2a4485be276cf46bec0123a5ba2f43f0cf7cde/opentelemetry_instrumentation-0.52b1.tar.gz", hash = "sha256:739f3bfadbbeec04dd59297479e15660a53df93c131d907bb61052e3d3c1406f", size = 28406, upload-time = "2025-03-20T14:47:24.376Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/61/dd/a2b35078170941990e7a5194b9600fa75868958a9a2196a752da0e7b97a0/opentelemetry_instrumentation-0.52b1-py3-none-any.whl", hash = "sha256:8c0059c4379d77bbd8015c8d8476020efe873c123047ec069bb335e4b8717477", size = 31036, upload-time = "2025-03-20T14:46:16.236Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-asgi"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "asgiref" },
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/bc/db/79bdc2344b38e60fecc7e99159a3f5b4c0e1acec8de305fba0a713cc3692/opentelemetry_instrumentation_asgi-0.52b1.tar.gz", hash = "sha256:a6dbce9cb5b2c2f45ce4817ad21f44c67fd328358ad3ab911eb46f0be67f82ec", size = 24203, upload-time = "2025-03-20T14:47:28.229Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/19/de/39ec078ae94a365d2f434b7e25886c267864aca5695b48fa5b60f80fbfb3/opentelemetry_instrumentation_asgi-0.52b1-py3-none-any.whl", hash = "sha256:f7179f477ed665ba21871972f979f21e8534edb971232e11920c8a22f4759236", size = 16338, upload-time = "2025-03-20T14:46:24.786Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-dbapi"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "wrapt" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/a4/4b/c73327bc53671a773ec530ab7ee3f6ecf8686e2c76246d108e30b35a221e/opentelemetry_instrumentation_dbapi-0.52b1.tar.gz", hash = "sha256:62a6c37b659f6aa5476f12fb76c78f4ad27c49fb71a8a2c11609afcbb84f1e1c", size = 13864, upload-time = "2025-03-20T14:47:37.071Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/00/76/2f1e9f1e1e8d99d8cc1386313d84a6be6f9caf8babdbbc2836f6ca28139b/opentelemetry_instrumentation_dbapi-0.52b1-py3-none-any.whl", hash = "sha256:47e54d26ad39f3951c7f3b4d4fb685a3c75445cfd57fcff2e92c416575c568ab", size = 12374, upload-time = "2025-03-20T14:46:40.039Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-django"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-instrumentation-wsgi" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/29/b2/3cbf0edad8bd59a2760a04e5897cff664e128be52c073f8124bed57bd944/opentelemetry_instrumentation_django-0.52b1.tar.gz", hash = "sha256:2541819564dae5edb0afd023de25d35761d8943aa88e6344b1e52f4fe036ccb6", size = 24613, upload-time = "2025-03-20T14:47:37.836Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/65/79/1838524d736308f50ab03dd3cea097d8193bfe4bd0e886e7c806064b53a2/opentelemetry_instrumentation_django-0.52b1-py3-none-any.whl", hash = "sha256:895dcc551fa9c38c62e23d6b66ef250b20ff0afd7a39f8822ec61a2929dfc7c7", size = 19472, upload-time = "2025-03-20T14:46:41.069Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-fastapi"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-instrumentation-asgi" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/30/01/d159829077f2795c716445df6f8edfdd33391e82d712ba4613fb62b99dc5/opentelemetry_instrumentation_fastapi-0.52b1.tar.gz", hash = "sha256:d26ab15dc49e041301d5c2571605b8f5c3a6ee4a85b60940338f56c120221e98", size = 19247, upload-time = "2025-03-20T14:47:40.317Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/23/89/acef7f625b218523873e32584dc5243d95ffa4facba737fd8b854c049c58/opentelemetry_instrumentation_fastapi-0.52b1-py3-none-any.whl", hash = "sha256:73c8804f053c5eb2fd2c948218bff9561f1ef65e89db326a6ab0b5bf829969f4", size = 12114, upload-time = "2025-03-20T14:46:45.163Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-flask"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-instrumentation-wsgi" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+    { name = "packaging" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/00/55/83d3a859a10696d8e57f39497843b2522ca493ec1f1166ee94838c1158db/opentelemetry_instrumentation_flask-0.52b1.tar.gz", hash = "sha256:c8bc64da425ccbadb4a2ee5e8d99045e2282bfbf63bc9be07c386675839d00be", size = 19192, upload-time = "2025-03-20T14:47:41.008Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/4b/4c/c52dacd39c90d490eb4f9408f31014c370020e0ce2b9455958a2970e07c2/opentelemetry_instrumentation_flask-0.52b1-py3-none-any.whl", hash = "sha256:3c8b83147838bef24aac0182f0d49865321efba4cb1f96629f460330d21d0fa9", size = 14593, upload-time = "2025-03-20T14:46:46.236Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-psycopg2"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-instrumentation-dbapi" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/84/d7/622e732f1914e4dedaa20a56af1edc9b7f7456d710bda471546b49d48874/opentelemetry_instrumentation_psycopg2-0.52b1.tar.gz", hash = "sha256:5bbdb2a2973aae9402946c995e277b1f76e467faebc40ac0f8da51c701918bb4", size = 9748, upload-time = "2025-03-20T14:47:49.708Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e4/bd/58c72d6fd03810aa87375911d4e3b4029b9e36c05df4ae9735bc62b6574b/opentelemetry_instrumentation_psycopg2-0.52b1-py3-none-any.whl", hash = "sha256:51ac9f3d0b83889a1df2fc1342d86887142c2b70d8532043bc49b36fe95ea9d8", size = 10709, upload-time = "2025-03-20T14:46:57.39Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-requests"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/56/d7/27588187a7092dc64129bc4c8808277460d353fc52299f3e0b9d9d09ce79/opentelemetry_instrumentation_requests-0.52b1.tar.gz", hash = "sha256:711a2ef90e32a0ffd4650b21376b8e102473845ba9121efca0d94314d529b501", size = 14377, upload-time = "2025-03-20T14:47:55.481Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/3f/c5/a1d78cb4beb9e7889799bf6d1c759d7b08f800cc068c94e94386678a7fe0/opentelemetry_instrumentation_requests-0.52b1-py3-none-any.whl", hash = "sha256:58ae3c415543d8ba2b0091b81ac13b65f2993adef0a4b9a5d3d7ebbe0023986a", size = 12746, upload-time = "2025-03-20T14:47:05.837Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-urllib"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/d2/39/7cb4380a3b86eb740c5781f55951231aea5c7f09ee0abc0609d4cb9035dd/opentelemetry_instrumentation_urllib-0.52b1.tar.gz", hash = "sha256:1364c742eaec56e11bab8723aecde378e438f86f753d93fcbf5ca8f6e1073a5c", size = 13790, upload-time = "2025-03-20T14:48:01.709Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/26/1d/4da275bd8057f470589268dccf69ab60d2d9aa2c7a928338f9f5e6af18cb/opentelemetry_instrumentation_urllib-0.52b1-py3-none-any.whl", hash = "sha256:559ee1228194cf025c22b2515bdb855aefd9cec19596a7b30df5f092fbc72e56", size = 12625, upload-time = "2025-03-20T14:47:15.076Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-urllib3"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+    { name = "wrapt" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/97/4b/f0c0f7ee7c06a7068a7016de2f212e03f4a8e9ff17ea1b887b444a20cb62/opentelemetry_instrumentation_urllib3-0.52b1.tar.gz", hash = "sha256:b607aefd2c02ff7fbf6eea4b863f63348e64b29592ffa90dcc970a5bbcbe3c6b", size = 15697, upload-time = "2025-03-20T14:48:02.384Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a0/01/f5cab7bbe73635e9ab351d6d4add625407dbb4aec4b3b6946101776ceb54/opentelemetry_instrumentation_urllib3-0.52b1-py3-none-any.whl", hash = "sha256:4011bac1639a6336c443252d93709eff17e316523f335ddee4ddb47bf464305e", size = 13124, upload-time = "2025-03-20T14:47:16.112Z" },
+]
+
+[[package]]
+name = "opentelemetry-instrumentation-wsgi"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/db/e4/20540e7739a8beaf5cdbc20999475c61b9c5240ccc48164f1034917fb639/opentelemetry_instrumentation_wsgi-0.52b1.tar.gz", hash = "sha256:2c0534cacae594ef8c749edf3d1a8bce78e959a1b40efbc36f1b59d1f7977089", size = 18243, upload-time = "2025-03-20T14:48:03.316Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7e/6d/4bccc2f324a75613a1cf7cd95642809424d5b7b5b7987e59a1fd7fb96f05/opentelemetry_instrumentation_wsgi-0.52b1-py3-none-any.whl", hash = "sha256:13d19958bb63df0dc32df23a047e94fe5db66151d29b17c01b1d751dd84029f8", size = 14377, upload-time = "2025-03-20T14:47:17.158Z" },
+]
+
+[[package]]
+name = "opentelemetry-resource-detector-azure"
+version = "0.1.5"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-sdk" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/67/e4/0d359d48d03d447225b30c3dd889d5d454e3b413763ff721f9b0e4ac2e59/opentelemetry_resource_detector_azure-0.1.5.tar.gz", hash = "sha256:e0ba658a87c69eebc806e75398cd0e9f68a8898ea62de99bc1b7083136403710", size = 11503, upload-time = "2024-05-16T21:54:58.994Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c3/ae/c26d8da88ba2e438e9653a408b0c2ad6f17267801250a8f3cc6405a93a72/opentelemetry_resource_detector_azure-0.1.5-py3-none-any.whl", hash = "sha256:4dcc5d54ab5c3b11226af39509bc98979a8b9e0f8a24c1b888783755d3bf00eb", size = 14252, upload-time = "2024-05-16T21:54:57.208Z" },
+]
+
+[[package]]
+name = "opentelemetry-sdk"
+version = "1.31.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/63/d9/4fe159908a63661e9e635e66edc0d0d816ed20cebcce886132b19ae87761/opentelemetry_sdk-1.31.1.tar.gz", hash = "sha256:c95f61e74b60769f8ff01ec6ffd3d29684743404603df34b20aa16a49dc8d903", size = 159523, upload-time = "2025-03-20T14:44:33.754Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/bc/36/758e5d3746bc86a2af20aa5e2236a7c5aa4264b501dc0e9f40efd9078ef0/opentelemetry_sdk-1.31.1-py3-none-any.whl", hash = "sha256:882d021321f223e37afaca7b4e06c1d8bbc013f9e17ff48a7aa017460a8e7dae", size = 118866, upload-time = "2025-03-20T14:44:17.079Z" },
+]
+
+[[package]]
+name = "opentelemetry-semantic-conventions"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "deprecated" },
+    { name = "opentelemetry-api" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/06/8c/599f9f27cff097ec4d76fbe9fe6d1a74577ceec52efe1a999511e3c42ef5/opentelemetry_semantic_conventions-0.52b1.tar.gz", hash = "sha256:7b3d226ecf7523c27499758a58b542b48a0ac8d12be03c0488ff8ec60c5bae5d", size = 111275, upload-time = "2025-03-20T14:44:35.118Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/98/be/d4ba300cfc1d4980886efbc9b48ee75242b9fcf940d9c4ccdc9ef413a7cf/opentelemetry_semantic_conventions-0.52b1-py3-none-any.whl", hash = "sha256:72b42db327e29ca8bb1b91e8082514ddf3bbf33f32ec088feb09526ade4bc77e", size = 183409, upload-time = "2025-03-20T14:44:18.666Z" },
+]
+
+[[package]]
+name = "opentelemetry-util-http"
+version = "0.52b1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/23/3f/16a4225a953bbaae7d800140ed99813f092ea3071ba7780683299a87049b/opentelemetry_util_http-0.52b1.tar.gz", hash = "sha256:c03c8c23f1b75fadf548faece7ead3aecd50761c5593a2b2831b48730eee5b31", size = 8044, upload-time = "2025-03-20T14:48:05.749Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2c/00/1591b397c9efc0e4215d223553a1cb9090c8499888a4447f842443077d31/opentelemetry_util_http-0.52b1-py3-none-any.whl", hash = "sha256:6a6ab6bfa23fef96f4995233e874f67602adf9d224895981b4ab9d4dde23de78", size = 7305, upload-time = "2025-03-20T14:47:20.031Z" },
+]
+
+[[package]]
+name = "orjson"
+version = "3.10.18"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/81/0b/fea456a3ffe74e70ba30e01ec183a9b26bec4d497f61dcfce1b601059c60/orjson-3.10.18.tar.gz", hash = "sha256:e8da3947d92123eda795b68228cafe2724815621fe35e8e320a9e9593a4bcd53", size = 5422810, upload-time = "2025-04-29T23:30:08.423Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/21/1a/67236da0916c1a192d5f4ccbe10ec495367a726996ceb7614eaa687112f2/orjson-3.10.18-cp312-cp312-macosx_10_15_x86_64.macosx_11_0_arm64.macosx_10_15_universal2.whl", hash = "sha256:50c15557afb7f6d63bc6d6348e0337a880a04eaa9cd7c9d569bcb4e760a24753", size = 249184, upload-time = "2025-04-29T23:28:53.612Z" },
+    { url = "https://files.pythonhosted.org/packages/b3/bc/c7f1db3b1d094dc0c6c83ed16b161a16c214aaa77f311118a93f647b32dc/orjson-3.10.18-cp312-cp312-macosx_15_0_arm64.whl", hash = "sha256:356b076f1662c9813d5fa56db7d63ccceef4c271b1fb3dd522aca291375fcf17", size = 133279, upload-time = "2025-04-29T23:28:55.055Z" },
+    { url = "https://files.pythonhosted.org/packages/af/84/664657cd14cc11f0d81e80e64766c7ba5c9b7fc1ec304117878cc1b4659c/orjson-3.10.18-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:559eb40a70a7494cd5beab2d73657262a74a2c59aff2068fdba8f0424ec5b39d", size = 136799, upload-time = "2025-04-29T23:28:56.828Z" },
+    { url = "https://files.pythonhosted.org/packages/9a/bb/f50039c5bb05a7ab024ed43ba25d0319e8722a0ac3babb0807e543349978/orjson-3.10.18-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:f3c29eb9a81e2fbc6fd7ddcfba3e101ba92eaff455b8d602bf7511088bbc0eae", size = 132791, upload-time = "2025-04-29T23:28:58.751Z" },
+    { url = "https://files.pythonhosted.org/packages/93/8c/ee74709fc072c3ee219784173ddfe46f699598a1723d9d49cbc78d66df65/orjson-3.10.18-cp312-cp312-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:6612787e5b0756a171c7d81ba245ef63a3533a637c335aa7fcb8e665f4a0966f", size = 137059, upload-time = "2025-04-29T23:29:00.129Z" },
+    { url = "https://files.pythonhosted.org/packages/6a/37/e6d3109ee004296c80426b5a62b47bcadd96a3deab7443e56507823588c5/orjson-3.10.18-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:7ac6bd7be0dcab5b702c9d43d25e70eb456dfd2e119d512447468f6405b4a69c", size = 138359, upload-time = "2025-04-29T23:29:01.704Z" },
+    { url = "https://files.pythonhosted.org/packages/4f/5d/387dafae0e4691857c62bd02839a3bf3fa648eebd26185adfac58d09f207/orjson-3.10.18-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:9f72f100cee8dde70100406d5c1abba515a7df926d4ed81e20a9730c062fe9ad", size = 142853, upload-time = "2025-04-29T23:29:03.576Z" },
+    { url = "https://files.pythonhosted.org/packages/27/6f/875e8e282105350b9a5341c0222a13419758545ae32ad6e0fcf5f64d76aa/orjson-3.10.18-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9dca85398d6d093dd41dc0983cbf54ab8e6afd1c547b6b8a311643917fbf4e0c", size = 133131, upload-time = "2025-04-29T23:29:05.753Z" },
+    { url = "https://files.pythonhosted.org/packages/48/b2/73a1f0b4790dcb1e5a45f058f4f5dcadc8a85d90137b50d6bbc6afd0ae50/orjson-3.10.18-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:22748de2a07fcc8781a70edb887abf801bb6142e6236123ff93d12d92db3d406", size = 134834, upload-time = "2025-04-29T23:29:07.35Z" },
+    { url = "https://files.pythonhosted.org/packages/56/f5/7ed133a5525add9c14dbdf17d011dd82206ca6840811d32ac52a35935d19/orjson-3.10.18-cp312-cp312-musllinux_1_2_armv7l.whl", hash = "sha256:3a83c9954a4107b9acd10291b7f12a6b29e35e8d43a414799906ea10e75438e6", size = 413368, upload-time = "2025-04-29T23:29:09.301Z" },
+    { url = "https://files.pythonhosted.org/packages/11/7c/439654221ed9c3324bbac7bdf94cf06a971206b7b62327f11a52544e4982/orjson-3.10.18-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:303565c67a6c7b1f194c94632a4a39918e067bd6176a48bec697393865ce4f06", size = 153359, upload-time = "2025-04-29T23:29:10.813Z" },
+    { url = "https://files.pythonhosted.org/packages/48/e7/d58074fa0cc9dd29a8fa2a6c8d5deebdfd82c6cfef72b0e4277c4017563a/orjson-3.10.18-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:86314fdb5053a2f5a5d881f03fca0219bfdf832912aa88d18676a5175c6916b5", size = 137466, upload-time = "2025-04-29T23:29:12.26Z" },
+    { url = "https://files.pythonhosted.org/packages/57/4d/fe17581cf81fb70dfcef44e966aa4003360e4194d15a3f38cbffe873333a/orjson-3.10.18-cp312-cp312-win32.whl", hash = "sha256:187ec33bbec58c76dbd4066340067d9ece6e10067bb0cc074a21ae3300caa84e", size = 142683, upload-time = "2025-04-29T23:29:13.865Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/22/469f62d25ab5f0f3aee256ea732e72dc3aab6d73bac777bd6277955bceef/orjson-3.10.18-cp312-cp312-win_amd64.whl", hash = "sha256:f9f94cf6d3f9cd720d641f8399e390e7411487e493962213390d1ae45c7814fc", size = 134754, upload-time = "2025-04-29T23:29:15.338Z" },
+    { url = "https://files.pythonhosted.org/packages/10/b0/1040c447fac5b91bc1e9c004b69ee50abb0c1ffd0d24406e1350c58a7fcb/orjson-3.10.18-cp312-cp312-win_arm64.whl", hash = "sha256:3d600be83fe4514944500fa8c2a0a77099025ec6482e8087d7659e891f23058a", size = 131218, upload-time = "2025-04-29T23:29:17.324Z" },
+    { url = "https://files.pythonhosted.org/packages/04/f0/8aedb6574b68096f3be8f74c0b56d36fd94bcf47e6c7ed47a7bd1474aaa8/orjson-3.10.18-cp313-cp313-macosx_10_15_x86_64.macosx_11_0_arm64.macosx_10_15_universal2.whl", hash = "sha256:69c34b9441b863175cc6a01f2935de994025e773f814412030f269da4f7be147", size = 249087, upload-time = "2025-04-29T23:29:19.083Z" },
+    { url = "https://files.pythonhosted.org/packages/bc/f7/7118f965541aeac6844fcb18d6988e111ac0d349c9b80cda53583e758908/orjson-3.10.18-cp313-cp313-macosx_15_0_arm64.whl", hash = "sha256:1ebeda919725f9dbdb269f59bc94f861afbe2a27dce5608cdba2d92772364d1c", size = 133273, upload-time = "2025-04-29T23:29:20.602Z" },
+    { url = "https://files.pythonhosted.org/packages/fb/d9/839637cc06eaf528dd8127b36004247bf56e064501f68df9ee6fd56a88ee/orjson-3.10.18-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5adf5f4eed520a4959d29ea80192fa626ab9a20b2ea13f8f6dc58644f6927103", size = 136779, upload-time = "2025-04-29T23:29:22.062Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/6d/f226ecfef31a1f0e7d6bf9a31a0bbaf384c7cbe3fce49cc9c2acc51f902a/orjson-3.10.18-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:7592bb48a214e18cd670974f289520f12b7aed1fa0b2e2616b8ed9e069e08595", size = 132811, upload-time = "2025-04-29T23:29:23.602Z" },
+    { url = "https://files.pythonhosted.org/packages/73/2d/371513d04143c85b681cf8f3bce743656eb5b640cb1f461dad750ac4b4d4/orjson-3.10.18-cp313-cp313-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f872bef9f042734110642b7a11937440797ace8c87527de25e0c53558b579ccc", size = 137018, upload-time = "2025-04-29T23:29:25.094Z" },
+    { url = "https://files.pythonhosted.org/packages/69/cb/a4d37a30507b7a59bdc484e4a3253c8141bf756d4e13fcc1da760a0b00cb/orjson-3.10.18-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:0315317601149c244cb3ecef246ef5861a64824ccbcb8018d32c66a60a84ffbc", size = 138368, upload-time = "2025-04-29T23:29:26.609Z" },
+    { url = "https://files.pythonhosted.org/packages/1e/ae/cd10883c48d912d216d541eb3db8b2433415fde67f620afe6f311f5cd2ca/orjson-3.10.18-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:e0da26957e77e9e55a6c2ce2e7182a36a6f6b180ab7189315cb0995ec362e049", size = 142840, upload-time = "2025-04-29T23:29:28.153Z" },
+    { url = "https://files.pythonhosted.org/packages/6d/4c/2bda09855c6b5f2c055034c9eda1529967b042ff8d81a05005115c4e6772/orjson-3.10.18-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:bb70d489bc79b7519e5803e2cc4c72343c9dc1154258adf2f8925d0b60da7c58", size = 133135, upload-time = "2025-04-29T23:29:29.726Z" },
+    { url = "https://files.pythonhosted.org/packages/13/4a/35971fd809a8896731930a80dfff0b8ff48eeb5d8b57bb4d0d525160017f/orjson-3.10.18-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:e9e86a6af31b92299b00736c89caf63816f70a4001e750bda179e15564d7a034", size = 134810, upload-time = "2025-04-29T23:29:31.269Z" },
+    { url = "https://files.pythonhosted.org/packages/99/70/0fa9e6310cda98365629182486ff37a1c6578e34c33992df271a476ea1cd/orjson-3.10.18-cp313-cp313-musllinux_1_2_armv7l.whl", hash = "sha256:c382a5c0b5931a5fc5405053d36c1ce3fd561694738626c77ae0b1dfc0242ca1", size = 413491, upload-time = "2025-04-29T23:29:33.315Z" },
+    { url = "https://files.pythonhosted.org/packages/32/cb/990a0e88498babddb74fb97855ae4fbd22a82960e9b06eab5775cac435da/orjson-3.10.18-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:8e4b2ae732431127171b875cb2668f883e1234711d3c147ffd69fe5be51a8012", size = 153277, upload-time = "2025-04-29T23:29:34.946Z" },
+    { url = "https://files.pythonhosted.org/packages/92/44/473248c3305bf782a384ed50dd8bc2d3cde1543d107138fd99b707480ca1/orjson-3.10.18-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:2d808e34ddb24fc29a4d4041dcfafbae13e129c93509b847b14432717d94b44f", size = 137367, upload-time = "2025-04-29T23:29:36.52Z" },
+    { url = "https://files.pythonhosted.org/packages/ad/fd/7f1d3edd4ffcd944a6a40e9f88af2197b619c931ac4d3cfba4798d4d3815/orjson-3.10.18-cp313-cp313-win32.whl", hash = "sha256:ad8eacbb5d904d5591f27dee4031e2c1db43d559edb8f91778efd642d70e6bea", size = 142687, upload-time = "2025-04-29T23:29:38.292Z" },
+    { url = "https://files.pythonhosted.org/packages/4b/03/c75c6ad46be41c16f4cfe0352a2d1450546f3c09ad2c9d341110cd87b025/orjson-3.10.18-cp313-cp313-win_amd64.whl", hash = "sha256:aed411bcb68bf62e85588f2a7e03a6082cc42e5a2796e06e72a962d7c6310b52", size = 134794, upload-time = "2025-04-29T23:29:40.349Z" },
+    { url = "https://files.pythonhosted.org/packages/c2/28/f53038a5a72cc4fd0b56c1eafb4ef64aec9685460d5ac34de98ca78b6e29/orjson-3.10.18-cp313-cp313-win_arm64.whl", hash = "sha256:f54c1385a0e6aba2f15a40d703b858bedad36ded0491e55d35d905b2c34a4cc3", size = 131186, upload-time = "2025-04-29T23:29:41.922Z" },
+]
+
+[[package]]
+name = "ormsgpack"
+version = "1.10.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/92/36/44eed5ef8ce93cded76a576780bab16425ce7876f10d3e2e6265e46c21ea/ormsgpack-1.10.0.tar.gz", hash = "sha256:7f7a27efd67ef22d7182ec3b7fa7e9d147c3ad9be2a24656b23c989077e08b16", size = 58629, upload-time = "2025-05-24T19:07:53.944Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/99/95/f3ab1a7638f6aa9362e87916bb96087fbbc5909db57e19f12ad127560e1e/ormsgpack-1.10.0-cp312-cp312-macosx_10_12_x86_64.macosx_11_0_arm64.macosx_10_12_universal2.whl", hash = "sha256:4e159d50cd4064d7540e2bc6a0ab66eab70b0cc40c618b485324ee17037527c0", size = 376806, upload-time = "2025-05-24T19:07:17.221Z" },
+    { url = "https://files.pythonhosted.org/packages/6c/2b/42f559f13c0b0f647b09d749682851d47c1a7e48308c43612ae6833499c8/ormsgpack-1.10.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:eeb47c85f3a866e29279d801115b554af0fefc409e2ed8aa90aabfa77efe5cc6", size = 204433, upload-time = "2025-05-24T19:07:18.569Z" },
+    { url = "https://files.pythonhosted.org/packages/45/42/1ca0cb4d8c80340a89a4af9e6d8951fb8ba0d076a899d2084eadf536f677/ormsgpack-1.10.0-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:c28249574934534c9bd5dce5485c52f21bcea0ee44d13ece3def6e3d2c3798b5", size = 215547, upload-time = "2025-05-24T19:07:20.245Z" },
+    { url = "https://files.pythonhosted.org/packages/0a/38/184a570d7c44c0260bc576d1daaac35b2bfd465a50a08189518505748b9a/ormsgpack-1.10.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1957dcadbb16e6a981cd3f9caef9faf4c2df1125e2a1b702ee8236a55837ce07", size = 216746, upload-time = "2025-05-24T19:07:21.83Z" },
+    { url = "https://files.pythonhosted.org/packages/69/2f/1aaffd08f6b7fdc2a57336a80bdfb8df24e6a65ada5aa769afecfcbc6cc6/ormsgpack-1.10.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:3b29412558c740bf6bac156727aa85ac67f9952cd6f071318f29ee72e1a76044", size = 384783, upload-time = "2025-05-24T19:07:23.674Z" },
+    { url = "https://files.pythonhosted.org/packages/a9/63/3e53d6f43bb35e00c98f2b8ab2006d5138089ad254bc405614fbf0213502/ormsgpack-1.10.0-cp312-cp312-musllinux_1_2_armv7l.whl", hash = "sha256:6933f350c2041ec189fe739f0ba7d6117c8772f5bc81f45b97697a84d03020dd", size = 479076, upload-time = "2025-05-24T19:07:25.047Z" },
+    { url = "https://files.pythonhosted.org/packages/b8/19/fa1121b03b61402bb4d04e35d164e2320ef73dfb001b57748110319dd014/ormsgpack-1.10.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:9a86de06d368fcc2e58b79dece527dc8ca831e0e8b9cec5d6e633d2777ec93d0", size = 390447, upload-time = "2025-05-24T19:07:26.568Z" },
+    { url = "https://files.pythonhosted.org/packages/b0/0d/73143ecb94ac4a5dcba223402139240a75dee0cc6ba8a543788a5646407a/ormsgpack-1.10.0-cp312-cp312-win_amd64.whl", hash = "sha256:35fa9f81e5b9a0dab42e09a73f7339ecffdb978d6dbf9deb2ecf1e9fc7808722", size = 121401, upload-time = "2025-05-24T19:07:28.308Z" },
+    { url = "https://files.pythonhosted.org/packages/61/f8/ec5f4e03268d0097545efaab2893aa63f171cf2959cb0ea678a5690e16a1/ormsgpack-1.10.0-cp313-cp313-macosx_10_12_x86_64.macosx_11_0_arm64.macosx_10_12_universal2.whl", hash = "sha256:8d816d45175a878993b7372bd5408e0f3ec5a40f48e2d5b9d8f1cc5d31b61f1f", size = 376806, upload-time = "2025-05-24T19:07:29.555Z" },
+    { url = "https://files.pythonhosted.org/packages/c1/19/b3c53284aad1e90d4d7ed8c881a373d218e16675b8b38e3569d5b40cc9b8/ormsgpack-1.10.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a90345ccb058de0f35262893751c603b6376b05f02be2b6f6b7e05d9dd6d5643", size = 204433, upload-time = "2025-05-24T19:07:30.977Z" },
+    { url = "https://files.pythonhosted.org/packages/09/0b/845c258f59df974a20a536c06cace593698491defdd3d026a8a5f9b6e745/ormsgpack-1.10.0-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:144b5e88f1999433e54db9d637bae6fe21e935888be4e3ac3daecd8260bd454e", size = 215549, upload-time = "2025-05-24T19:07:32.345Z" },
+    { url = "https://files.pythonhosted.org/packages/61/56/57fce8fb34ca6c9543c026ebebf08344c64dbb7b6643d6ddd5355d37e724/ormsgpack-1.10.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2190b352509d012915921cca76267db136cd026ddee42f1b0d9624613cc7058c", size = 216747, upload-time = "2025-05-24T19:07:34.075Z" },
+    { url = "https://files.pythonhosted.org/packages/b8/3f/655b5f6a2475c8d209f5348cfbaaf73ce26237b92d79ef2ad439407dd0fa/ormsgpack-1.10.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:86fd9c1737eaba43d3bb2730add9c9e8b5fbed85282433705dd1b1e88ea7e6fb", size = 384785, upload-time = "2025-05-24T19:07:35.83Z" },
+    { url = "https://files.pythonhosted.org/packages/4b/94/687a0ad8afd17e4bce1892145d6a1111e58987ddb176810d02a1f3f18686/ormsgpack-1.10.0-cp313-cp313-musllinux_1_2_armv7l.whl", hash = "sha256:33afe143a7b61ad21bb60109a86bb4e87fec70ef35db76b89c65b17e32da7935", size = 479076, upload-time = "2025-05-24T19:07:37.533Z" },
+    { url = "https://files.pythonhosted.org/packages/c8/34/68925232e81e0e062a2f0ac678f62aa3b6f7009d6a759e19324dbbaebae7/ormsgpack-1.10.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:f23d45080846a7b90feabec0d330a9cc1863dc956728412e4f7986c80ab3a668", size = 390446, upload-time = "2025-05-24T19:07:39.469Z" },
+    { url = "https://files.pythonhosted.org/packages/12/ad/f4e1a36a6d1714afb7ffb74b3ababdcb96529cf4e7a216f9f7c8eda837b6/ormsgpack-1.10.0-cp313-cp313-win_amd64.whl", hash = "sha256:534d18acb805c75e5fba09598bf40abe1851c853247e61dda0c01f772234da69", size = 121399, upload-time = "2025-05-24T19:07:40.854Z" },
+]
+
+[[package]]
+name = "packaging"
+version = "24.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ee/b5/b43a27ac7472e1818c4bafd44430e69605baefe1f34440593e0332ec8b4d/packaging-24.0.tar.gz", hash = "sha256:eb82c5e3e56209074766e6885bb04b8c38a0c015d0a30036ebe7ece34c9989e9", size = 147882, upload-time = "2024-03-10T09:39:28.33Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/49/df/1fceb2f8900f8639e278b056416d49134fb8d84c5942ffaa01ad34782422/packaging-24.0-py3-none-any.whl", hash = "sha256:2ddfb553fdf02fb784c234c7ba6ccc288296ceabec964ad2eae3777778130bc5", size = 53488, upload-time = "2024-03-10T09:39:25.947Z" },
+]
+
+[[package]]
+name = "pandas"
+version = "2.2.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "numpy" },
+    { name = "python-dateutil" },
+    { name = "pytz" },
+    { name = "tzdata" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/9c/d6/9f8431bacc2e19dca897724cd097b1bb224a6ad5433784a44b587c7c13af/pandas-2.2.3.tar.gz", hash = "sha256:4f18ba62b61d7e192368b84517265a99b4d7ee8912f8708660fb4a366cc82667", size = 4399213, upload-time = "2024-09-20T13:10:04.827Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/17/a3/fb2734118db0af37ea7433f57f722c0a56687e14b14690edff0cdb4b7e58/pandas-2.2.3-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:b1d432e8d08679a40e2a6d8b2f9770a5c21793a6f9f47fdd52c5ce1948a5a8a9", size = 12529893, upload-time = "2024-09-20T13:09:09.655Z" },
+    { url = "https://files.pythonhosted.org/packages/e1/0c/ad295fd74bfac85358fd579e271cded3ac969de81f62dd0142c426b9da91/pandas-2.2.3-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:a5a1595fe639f5988ba6a8e5bc9649af3baf26df3998a0abe56c02609392e0a4", size = 11363475, upload-time = "2024-09-20T13:09:14.718Z" },
+    { url = "https://files.pythonhosted.org/packages/c6/2a/4bba3f03f7d07207481fed47f5b35f556c7441acddc368ec43d6643c5777/pandas-2.2.3-cp312-cp312-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:5de54125a92bb4d1c051c0659e6fcb75256bf799a732a87184e5ea503965bce3", size = 15188645, upload-time = "2024-09-20T19:02:03.88Z" },
+    { url = "https://files.pythonhosted.org/packages/38/f8/d8fddee9ed0d0c0f4a2132c1dfcf0e3e53265055da8df952a53e7eaf178c/pandas-2.2.3-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:fffb8ae78d8af97f849404f21411c95062db1496aeb3e56f146f0355c9989319", size = 12739445, upload-time = "2024-09-20T13:09:17.621Z" },
+    { url = "https://files.pythonhosted.org/packages/20/e8/45a05d9c39d2cea61ab175dbe6a2de1d05b679e8de2011da4ee190d7e748/pandas-2.2.3-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:6dfcb5ee8d4d50c06a51c2fffa6cff6272098ad6540aed1a76d15fb9318194d8", size = 16359235, upload-time = "2024-09-20T19:02:07.094Z" },
+    { url = "https://files.pythonhosted.org/packages/1d/99/617d07a6a5e429ff90c90da64d428516605a1ec7d7bea494235e1c3882de/pandas-2.2.3-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:062309c1b9ea12a50e8ce661145c6aab431b1e99530d3cd60640e255778bd43a", size = 14056756, upload-time = "2024-09-20T13:09:20.474Z" },
+    { url = "https://files.pythonhosted.org/packages/29/d4/1244ab8edf173a10fd601f7e13b9566c1b525c4f365d6bee918e68381889/pandas-2.2.3-cp312-cp312-win_amd64.whl", hash = "sha256:59ef3764d0fe818125a5097d2ae867ca3fa64df032331b7e0917cf5d7bf66b13", size = 11504248, upload-time = "2024-09-20T13:09:23.137Z" },
+    { url = "https://files.pythonhosted.org/packages/64/22/3b8f4e0ed70644e85cfdcd57454686b9057c6c38d2f74fe4b8bc2527214a/pandas-2.2.3-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:f00d1345d84d8c86a63e476bb4955e46458b304b9575dcf71102b5c705320015", size = 12477643, upload-time = "2024-09-20T13:09:25.522Z" },
+    { url = "https://files.pythonhosted.org/packages/e4/93/b3f5d1838500e22c8d793625da672f3eec046b1a99257666c94446969282/pandas-2.2.3-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:3508d914817e153ad359d7e069d752cdd736a247c322d932eb89e6bc84217f28", size = 11281573, upload-time = "2024-09-20T13:09:28.012Z" },
+    { url = "https://files.pythonhosted.org/packages/f5/94/6c79b07f0e5aab1dcfa35a75f4817f5c4f677931d4234afcd75f0e6a66ca/pandas-2.2.3-cp313-cp313-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:22a9d949bfc9a502d320aa04e5d02feab689d61da4e7764b62c30b991c42c5f0", size = 15196085, upload-time = "2024-09-20T19:02:10.451Z" },
+    { url = "https://files.pythonhosted.org/packages/e8/31/aa8da88ca0eadbabd0a639788a6da13bb2ff6edbbb9f29aa786450a30a91/pandas-2.2.3-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f3a255b2c19987fbbe62a9dfd6cff7ff2aa9ccab3fc75218fd4b7530f01efa24", size = 12711809, upload-time = "2024-09-20T13:09:30.814Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/7c/c6dbdb0cb2a4344cacfb8de1c5808ca885b2e4dcfde8008266608f9372af/pandas-2.2.3-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:800250ecdadb6d9c78eae4990da62743b857b470883fa27f652db8bdde7f6659", size = 16356316, upload-time = "2024-09-20T19:02:13.825Z" },
+    { url = "https://files.pythonhosted.org/packages/57/b7/8b757e7d92023b832869fa8881a992696a0bfe2e26f72c9ae9f255988d42/pandas-2.2.3-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:6374c452ff3ec675a8f46fd9ab25c4ad0ba590b71cf0656f8b6daa5202bca3fb", size = 14022055, upload-time = "2024-09-20T13:09:33.462Z" },
+    { url = "https://files.pythonhosted.org/packages/3b/bc/4b18e2b8c002572c5a441a64826252ce5da2aa738855747247a971988043/pandas-2.2.3-cp313-cp313-win_amd64.whl", hash = "sha256:61c5ad4043f791b61dd4752191d9f07f0ae412515d59ba8f005832a532f8736d", size = 11481175, upload-time = "2024-09-20T13:09:35.871Z" },
+    { url = "https://files.pythonhosted.org/packages/76/a3/a5d88146815e972d40d19247b2c162e88213ef51c7c25993942c39dbf41d/pandas-2.2.3-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:3b71f27954685ee685317063bf13c7709a7ba74fc996b84fc6821c59b0f06468", size = 12615650, upload-time = "2024-09-20T13:09:38.685Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/8c/f0fd18f6140ddafc0c24122c8a964e48294acc579d47def376fef12bcb4a/pandas-2.2.3-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:38cf8125c40dae9d5acc10fa66af8ea6fdf760b2714ee482ca691fc66e6fcb18", size = 11290177, upload-time = "2024-09-20T13:09:41.141Z" },
+    { url = "https://files.pythonhosted.org/packages/ed/f9/e995754eab9c0f14c6777401f7eece0943840b7a9fc932221c19d1abee9f/pandas-2.2.3-cp313-cp313t-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:ba96630bc17c875161df3818780af30e43be9b166ce51c9a18c1feae342906c2", size = 14651526, upload-time = "2024-09-20T19:02:16.905Z" },
+    { url = "https://files.pythonhosted.org/packages/25/b0/98d6ae2e1abac4f35230aa756005e8654649d305df9a28b16b9ae4353bff/pandas-2.2.3-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:1db71525a1538b30142094edb9adc10be3f3e176748cd7acc2240c2f2e5aa3a4", size = 11871013, upload-time = "2024-09-20T13:09:44.39Z" },
+    { url = "https://files.pythonhosted.org/packages/cc/57/0f72a10f9db6a4628744c8e8f0df4e6e21de01212c7c981d31e50ffc8328/pandas-2.2.3-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:15c0e1e02e93116177d29ff83e8b1619c93ddc9c49083f237d4312337a61165d", size = 15711620, upload-time = "2024-09-20T19:02:20.639Z" },
+    { url = "https://files.pythonhosted.org/packages/ab/5f/b38085618b950b79d2d9164a711c52b10aefc0ae6833b96f626b7021b2ed/pandas-2.2.3-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:ad5b65698ab28ed8d7f18790a0dc58005c7629f227be9ecc1072aa74c0c1d43a", size = 13098436, upload-time = "2024-09-20T13:09:48.112Z" },
+]
+
+[[package]]
+name = "paramiko"
+version = "3.5.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "bcrypt" },
+    { name = "cryptography" },
+    { name = "pynacl" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/7d/15/ad6ce226e8138315f2451c2aeea985bf35ee910afb477bae7477dc3a8f3b/paramiko-3.5.1.tar.gz", hash = "sha256:b2c665bc45b2b215bd7d7f039901b14b067da00f3a11e6640995fd58f2664822", size = 1566110, upload-time = "2025-02-04T02:37:59.783Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/15/f8/c7bd0ef12954a81a1d3cea60a13946bd9a49a0036a5927770c461eade7ae/paramiko-3.5.1-py3-none-any.whl", hash = "sha256:43b9a0501fc2b5e70680388d9346cf252cfb7d00b0667c39e80eb43a408b8f61", size = 227298, upload-time = "2025-02-04T02:37:57.672Z" },
+]
+
+[[package]]
+name = "pathspec"
+version = "0.12.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ca/bc/f35b8446f4531a7cb215605d100cd88b7ac6f44ab3fc94870c120ab3adbf/pathspec-0.12.1.tar.gz", hash = "sha256:a482d51503a1ab33b1c67a6c3813a26953dbdc71c31dacaef9a838c4e29f5712", size = 51043, upload-time = "2023-12-10T22:30:45Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/cc/20/ff623b09d963f88bfde16306a54e12ee5ea43e9b597108672ff3a408aad6/pathspec-0.12.1-py3-none-any.whl", hash = "sha256:a0d503e138a4c123b27490a4f7beda6a01c6f288df0e4a8b79c7eb0dc7b4cc08", size = 31191, upload-time = "2023-12-10T22:30:43.14Z" },
+]
+
+[[package]]
+name = "platformdirs"
+version = "4.3.8"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/fe/8b/3c73abc9c759ecd3f1f7ceff6685840859e8070c4d947c93fae71f6a0bf2/platformdirs-4.3.8.tar.gz", hash = "sha256:3d512d96e16bcb959a814c9f348431070822a6496326a4be0911c40b5a74c2bc", size = 21362, upload-time = "2025-05-07T22:47:42.121Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/fe/39/979e8e21520d4e47a0bbe349e2713c0aac6f3d853d0e5b34d76206c439aa/platformdirs-4.3.8-py3-none-any.whl", hash = "sha256:ff7059bb7eb1179e2685604f4aaf157cfd9535242bd23742eadc3c13542139b4", size = 18567, upload-time = "2025-05-07T22:47:40.376Z" },
+]
+
+[[package]]
+name = "plotly"
+version = "6.3.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "narwhals" },
+    { name = "packaging" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/a0/64/850de5076f4436410e1ce4f6a69f4313ef6215dfea155f3f6559335cad29/plotly-6.3.0.tar.gz", hash = "sha256:8840a184d18ccae0f9189c2b9a2943923fd5cae7717b723f36eef78f444e5a73", size = 6923926, upload-time = "2025-08-12T20:22:14.127Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/95/a9/12e2dc726ba1ba775a2c6922d5d5b4488ad60bdab0888c337c194c8e6de8/plotly-6.3.0-py3-none-any.whl", hash = "sha256:7ad806edce9d3cdd882eaebaf97c0c9e252043ed1ed3d382c3e3520ec07806d4", size = 9791257, upload-time = "2025-08-12T20:22:09.205Z" },
+]
+
+[[package]]
+name = "pluggy"
+version = "1.6.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/f9/e2/3e91f31a7d2b083fe6ef3fa267035b518369d9511ffab804f839851d2779/pluggy-1.6.0.tar.gz", hash = "sha256:7dcc130b76258d33b90f61b658791dede3486c3e6bfb003ee5c9bfb396dd22f3", size = 69412, upload-time = "2025-05-15T12:30:07.975Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/54/20/4d324d65cc6d9205fabedc306948156824eb9f0ee1633355a8f7ec5c66bf/pluggy-1.6.0-py3-none-any.whl", hash = "sha256:e920276dd6813095e9377c0bc5566d94c932c33b27a3e3945d8389c374dd4746", size = 20538, upload-time = "2025-05-15T12:30:06.134Z" },
+]
+
+[[package]]
+name = "pre-commit"
+version = "4.2.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cfgv" },
+    { name = "identify" },
+    { name = "nodeenv" },
+    { name = "pyyaml" },
+    { name = "virtualenv" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/08/39/679ca9b26c7bb2999ff122d50faa301e49af82ca9c066ec061cfbc0c6784/pre_commit-4.2.0.tar.gz", hash = "sha256:601283b9757afd87d40c4c4a9b2b5de9637a8ea02eaff7adc2d0fb4e04841146", size = 193424, upload-time = "2025-03-18T21:35:20.987Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/88/74/a88bf1b1efeae488a0c0b7bdf71429c313722d1fc0f377537fbe554e6180/pre_commit-4.2.0-py2.py3-none-any.whl", hash = "sha256:a009ca7205f1eb497d10b845e52c838a98b6cdd2102a6c8e4540e94ee75c58bd", size = 220707, upload-time = "2025-03-18T21:35:19.343Z" },
+]
+
+[[package]]
+name = "prometheus-client"
+version = "0.22.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/5b/5a/3fa1fa7e91a203759aaf316be394f70f2ef598d589b9785a8611b6094c00/prometheus_client-0.22.0.tar.gz", hash = "sha256:18da1d2241ac2d10c8d2110f13eedcd5c7c0c8af18c926e8731f04fc10cd575c", size = 74443, upload-time = "2025-05-16T20:50:18.333Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/50/c7/cee159ba3d7192e84a4c166ec1752f44a5fa859ac0eeda2d73a1da65ab47/prometheus_client-0.22.0-py3-none-any.whl", hash = "sha256:c8951bbe64e62b96cd8e8f5d917279d1b9b91ab766793f33d4dce6c228558713", size = 62658, upload-time = "2025-05-16T20:50:16.978Z" },
+]
+
+[[package]]
+name = "prometheus-fastapi-instrumentator"
+version = "7.1.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "prometheus-client" },
+    { name = "starlette" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/69/6d/24d53033cf93826aa7857699a4450c1c67e5b9c710e925b1ed2b320c04df/prometheus_fastapi_instrumentator-7.1.0.tar.gz", hash = "sha256:be7cd61eeea4e5912aeccb4261c6631b3f227d8924542d79eaf5af3f439cbe5e", size = 20220, upload-time = "2025-03-19T19:35:05.351Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/27/72/0824c18f3bc75810f55dacc2dd933f6ec829771180245ae3cc976195dec0/prometheus_fastapi_instrumentator-7.1.0-py3-none-any.whl", hash = "sha256:978130f3c0bb7b8ebcc90d35516a6fe13e02d2eb358c8f83887cdef7020c31e9", size = 19296, upload-time = "2025-03-19T19:35:04.323Z" },
+]
+
+[[package]]
+name = "prompt-toolkit"
+version = "3.0.51"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "wcwidth" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/bb/6e/9d084c929dfe9e3bfe0c6a47e31f78a25c54627d64a66e884a8bf5474f1c/prompt_toolkit-3.0.51.tar.gz", hash = "sha256:931a162e3b27fc90c86f1b48bb1fb2c528c2761475e57c9c06de13311c7b54ed", size = 428940, upload-time = "2025-04-15T09:18:47.731Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ce/4f/5249960887b1fbe561d9ff265496d170b55a735b76724f10ef19f9e40716/prompt_toolkit-3.0.51-py3-none-any.whl", hash = "sha256:52742911fde84e2d423e2f9a4cf1de7d7ac4e51958f648d9540e0fb8db077b07", size = 387810, upload-time = "2025-04-15T09:18:44.753Z" },
+]
+
+[[package]]
+name = "propcache"
+version = "0.3.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/07/c8/fdc6686a986feae3541ea23dcaa661bd93972d3940460646c6bb96e21c40/propcache-0.3.1.tar.gz", hash = "sha256:40d980c33765359098837527e18eddefc9a24cea5b45e078a7f3bb5b032c6ecf", size = 43651, upload-time = "2025-03-26T03:06:12.05Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/41/aa/ca78d9be314d1e15ff517b992bebbed3bdfef5b8919e85bf4940e57b6137/propcache-0.3.1-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:f78eb8422acc93d7b69964012ad7048764bb45a54ba7a39bb9e146c72ea29723", size = 80430, upload-time = "2025-03-26T03:04:26.436Z" },
+    { url = "https://files.pythonhosted.org/packages/1a/d8/f0c17c44d1cda0ad1979af2e593ea290defdde9eaeb89b08abbe02a5e8e1/propcache-0.3.1-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:89498dd49c2f9a026ee057965cdf8192e5ae070ce7d7a7bd4b66a8e257d0c976", size = 46637, upload-time = "2025-03-26T03:04:27.932Z" },
+    { url = "https://files.pythonhosted.org/packages/ae/bd/c1e37265910752e6e5e8a4c1605d0129e5b7933c3dc3cf1b9b48ed83b364/propcache-0.3.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:09400e98545c998d57d10035ff623266927cb784d13dd2b31fd33b8a5316b85b", size = 46123, upload-time = "2025-03-26T03:04:30.659Z" },
+    { url = "https://files.pythonhosted.org/packages/d4/b0/911eda0865f90c0c7e9f0415d40a5bf681204da5fd7ca089361a64c16b28/propcache-0.3.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:aa8efd8c5adc5a2c9d3b952815ff8f7710cefdcaf5f2c36d26aff51aeca2f12f", size = 243031, upload-time = "2025-03-26T03:04:31.977Z" },
+    { url = "https://files.pythonhosted.org/packages/0a/06/0da53397c76a74271621807265b6eb61fb011451b1ddebf43213df763669/propcache-0.3.1-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:c2fe5c910f6007e716a06d269608d307b4f36e7babee5f36533722660e8c4a70", size = 249100, upload-time = "2025-03-26T03:04:33.45Z" },
+    { url = "https://files.pythonhosted.org/packages/f1/eb/13090e05bf6b963fc1653cdc922133ced467cb4b8dab53158db5a37aa21e/propcache-0.3.1-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:a0ab8cf8cdd2194f8ff979a43ab43049b1df0b37aa64ab7eca04ac14429baeb7", size = 250170, upload-time = "2025-03-26T03:04:35.542Z" },
+    { url = "https://files.pythonhosted.org/packages/3b/4c/f72c9e1022b3b043ec7dc475a0f405d4c3e10b9b1d378a7330fecf0652da/propcache-0.3.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:563f9d8c03ad645597b8d010ef4e9eab359faeb11a0a2ac9f7b4bc8c28ebef25", size = 245000, upload-time = "2025-03-26T03:04:37.501Z" },
+    { url = "https://files.pythonhosted.org/packages/e8/fd/970ca0e22acc829f1adf5de3724085e778c1ad8a75bec010049502cb3a86/propcache-0.3.1-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:fb6e0faf8cb6b4beea5d6ed7b5a578254c6d7df54c36ccd3d8b3eb00d6770277", size = 230262, upload-time = "2025-03-26T03:04:39.532Z" },
+    { url = "https://files.pythonhosted.org/packages/c4/42/817289120c6b9194a44f6c3e6b2c3277c5b70bbad39e7df648f177cc3634/propcache-0.3.1-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:1c5c7ab7f2bb3f573d1cb921993006ba2d39e8621019dffb1c5bc94cdbae81e8", size = 236772, upload-time = "2025-03-26T03:04:41.109Z" },
+    { url = "https://files.pythonhosted.org/packages/7c/9c/3b3942b302badd589ad6b672da3ca7b660a6c2f505cafd058133ddc73918/propcache-0.3.1-cp312-cp312-musllinux_1_2_armv7l.whl", hash = "sha256:050b571b2e96ec942898f8eb46ea4bfbb19bd5502424747e83badc2d4a99a44e", size = 231133, upload-time = "2025-03-26T03:04:42.544Z" },
+    { url = "https://files.pythonhosted.org/packages/98/a1/75f6355f9ad039108ff000dfc2e19962c8dea0430da9a1428e7975cf24b2/propcache-0.3.1-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:e1c4d24b804b3a87e9350f79e2371a705a188d292fd310e663483af6ee6718ee", size = 230741, upload-time = "2025-03-26T03:04:44.06Z" },
+    { url = "https://files.pythonhosted.org/packages/67/0c/3e82563af77d1f8731132166da69fdfd95e71210e31f18edce08a1eb11ea/propcache-0.3.1-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:e4fe2a6d5ce975c117a6bb1e8ccda772d1e7029c1cca1acd209f91d30fa72815", size = 244047, upload-time = "2025-03-26T03:04:45.983Z" },
+    { url = "https://files.pythonhosted.org/packages/f7/50/9fb7cca01532a08c4d5186d7bb2da6c4c587825c0ae134b89b47c7d62628/propcache-0.3.1-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:feccd282de1f6322f56f6845bf1207a537227812f0a9bf5571df52bb418d79d5", size = 246467, upload-time = "2025-03-26T03:04:47.699Z" },
+    { url = "https://files.pythonhosted.org/packages/a9/02/ccbcf3e1c604c16cc525309161d57412c23cf2351523aedbb280eb7c9094/propcache-0.3.1-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:ec314cde7314d2dd0510c6787326bbffcbdc317ecee6b7401ce218b3099075a7", size = 241022, upload-time = "2025-03-26T03:04:49.195Z" },
+    { url = "https://files.pythonhosted.org/packages/db/19/e777227545e09ca1e77a6e21274ae9ec45de0f589f0ce3eca2a41f366220/propcache-0.3.1-cp312-cp312-win32.whl", hash = "sha256:7d2d5a0028d920738372630870e7d9644ce437142197f8c827194fca404bf03b", size = 40647, upload-time = "2025-03-26T03:04:50.595Z" },
+    { url = "https://files.pythonhosted.org/packages/24/bb/3b1b01da5dd04c77a204c84e538ff11f624e31431cfde7201d9110b092b1/propcache-0.3.1-cp312-cp312-win_amd64.whl", hash = "sha256:88c423efef9d7a59dae0614eaed718449c09a5ac79a5f224a8b9664d603f04a3", size = 44784, upload-time = "2025-03-26T03:04:51.791Z" },
+    { url = "https://files.pythonhosted.org/packages/58/60/f645cc8b570f99be3cf46714170c2de4b4c9d6b827b912811eff1eb8a412/propcache-0.3.1-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:f1528ec4374617a7a753f90f20e2f551121bb558fcb35926f99e3c42367164b8", size = 77865, upload-time = "2025-03-26T03:04:53.406Z" },
+    { url = "https://files.pythonhosted.org/packages/6f/d4/c1adbf3901537582e65cf90fd9c26fde1298fde5a2c593f987112c0d0798/propcache-0.3.1-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:dc1915ec523b3b494933b5424980831b636fe483d7d543f7afb7b3bf00f0c10f", size = 45452, upload-time = "2025-03-26T03:04:54.624Z" },
+    { url = "https://files.pythonhosted.org/packages/d1/b5/fe752b2e63f49f727c6c1c224175d21b7d1727ce1d4873ef1c24c9216830/propcache-0.3.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:a110205022d077da24e60b3df8bcee73971be9575dec5573dd17ae5d81751111", size = 44800, upload-time = "2025-03-26T03:04:55.844Z" },
+    { url = "https://files.pythonhosted.org/packages/62/37/fc357e345bc1971e21f76597028b059c3d795c5ca7690d7a8d9a03c9708a/propcache-0.3.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d249609e547c04d190e820d0d4c8ca03ed4582bcf8e4e160a6969ddfb57b62e5", size = 225804, upload-time = "2025-03-26T03:04:57.158Z" },
+    { url = "https://files.pythonhosted.org/packages/0d/f1/16e12c33e3dbe7f8b737809bad05719cff1dccb8df4dafbcff5575002c0e/propcache-0.3.1-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:5ced33d827625d0a589e831126ccb4f5c29dfdf6766cac441d23995a65825dcb", size = 230650, upload-time = "2025-03-26T03:04:58.61Z" },
+    { url = "https://files.pythonhosted.org/packages/3e/a2/018b9f2ed876bf5091e60153f727e8f9073d97573f790ff7cdf6bc1d1fb8/propcache-0.3.1-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:4114c4ada8f3181af20808bedb250da6bae56660e4b8dfd9cd95d4549c0962f7", size = 234235, upload-time = "2025-03-26T03:05:00.599Z" },
+    { url = "https://files.pythonhosted.org/packages/45/5f/3faee66fc930dfb5da509e34c6ac7128870631c0e3582987fad161fcb4b1/propcache-0.3.1-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:975af16f406ce48f1333ec5e912fe11064605d5c5b3f6746969077cc3adeb120", size = 228249, upload-time = "2025-03-26T03:05:02.11Z" },
+    { url = "https://files.pythonhosted.org/packages/62/1e/a0d5ebda5da7ff34d2f5259a3e171a94be83c41eb1e7cd21a2105a84a02e/propcache-0.3.1-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a34aa3a1abc50740be6ac0ab9d594e274f59960d3ad253cd318af76b996dd654", size = 214964, upload-time = "2025-03-26T03:05:03.599Z" },
+    { url = "https://files.pythonhosted.org/packages/db/a0/d72da3f61ceab126e9be1f3bc7844b4e98c6e61c985097474668e7e52152/propcache-0.3.1-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:9cec3239c85ed15bfaded997773fdad9fb5662b0a7cbc854a43f291eb183179e", size = 222501, upload-time = "2025-03-26T03:05:05.107Z" },
+    { url = "https://files.pythonhosted.org/packages/18/6d/a008e07ad7b905011253adbbd97e5b5375c33f0b961355ca0a30377504ac/propcache-0.3.1-cp313-cp313-musllinux_1_2_armv7l.whl", hash = "sha256:05543250deac8e61084234d5fc54f8ebd254e8f2b39a16b1dce48904f45b744b", size = 217917, upload-time = "2025-03-26T03:05:06.59Z" },
+    { url = "https://files.pythonhosted.org/packages/98/37/02c9343ffe59e590e0e56dc5c97d0da2b8b19fa747ebacf158310f97a79a/propcache-0.3.1-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:5cb5918253912e088edbf023788de539219718d3b10aef334476b62d2b53de53", size = 217089, upload-time = "2025-03-26T03:05:08.1Z" },
+    { url = "https://files.pythonhosted.org/packages/53/1b/d3406629a2c8a5666d4674c50f757a77be119b113eedd47b0375afdf1b42/propcache-0.3.1-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:f3bbecd2f34d0e6d3c543fdb3b15d6b60dd69970c2b4c822379e5ec8f6f621d5", size = 228102, upload-time = "2025-03-26T03:05:09.982Z" },
+    { url = "https://files.pythonhosted.org/packages/cd/a7/3664756cf50ce739e5f3abd48febc0be1a713b1f389a502ca819791a6b69/propcache-0.3.1-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:aca63103895c7d960a5b9b044a83f544b233c95e0dcff114389d64d762017af7", size = 230122, upload-time = "2025-03-26T03:05:11.408Z" },
+    { url = "https://files.pythonhosted.org/packages/35/36/0bbabaacdcc26dac4f8139625e930f4311864251276033a52fd52ff2a274/propcache-0.3.1-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:5a0a9898fdb99bf11786265468571e628ba60af80dc3f6eb89a3545540c6b0ef", size = 226818, upload-time = "2025-03-26T03:05:12.909Z" },
+    { url = "https://files.pythonhosted.org/packages/cc/27/4e0ef21084b53bd35d4dae1634b6d0bad35e9c58ed4f032511acca9d4d26/propcache-0.3.1-cp313-cp313-win32.whl", hash = "sha256:3a02a28095b5e63128bcae98eb59025924f121f048a62393db682f049bf4ac24", size = 40112, upload-time = "2025-03-26T03:05:14.289Z" },
+    { url = "https://files.pythonhosted.org/packages/a6/2c/a54614d61895ba6dd7ac8f107e2b2a0347259ab29cbf2ecc7b94fa38c4dc/propcache-0.3.1-cp313-cp313-win_amd64.whl", hash = "sha256:813fbb8b6aea2fc9659815e585e548fe706d6f663fa73dff59a1677d4595a037", size = 44034, upload-time = "2025-03-26T03:05:15.616Z" },
+    { url = "https://files.pythonhosted.org/packages/5a/a8/0a4fd2f664fc6acc66438370905124ce62e84e2e860f2557015ee4a61c7e/propcache-0.3.1-cp313-cp313t-macosx_10_13_universal2.whl", hash = "sha256:a444192f20f5ce8a5e52761a031b90f5ea6288b1eef42ad4c7e64fef33540b8f", size = 82613, upload-time = "2025-03-26T03:05:16.913Z" },
+    { url = "https://files.pythonhosted.org/packages/4d/e5/5ef30eb2cd81576256d7b6caaa0ce33cd1d2c2c92c8903cccb1af1a4ff2f/propcache-0.3.1-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:0fbe94666e62ebe36cd652f5fc012abfbc2342de99b523f8267a678e4dfdee3c", size = 47763, upload-time = "2025-03-26T03:05:18.607Z" },
+    { url = "https://files.pythonhosted.org/packages/87/9a/87091ceb048efeba4d28e903c0b15bcc84b7c0bf27dc0261e62335d9b7b8/propcache-0.3.1-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:f011f104db880f4e2166bcdcf7f58250f7a465bc6b068dc84c824a3d4a5c94dc", size = 47175, upload-time = "2025-03-26T03:05:19.85Z" },
+    { url = "https://files.pythonhosted.org/packages/3e/2f/854e653c96ad1161f96194c6678a41bbb38c7947d17768e8811a77635a08/propcache-0.3.1-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:3e584b6d388aeb0001d6d5c2bd86b26304adde6d9bb9bfa9c4889805021b96de", size = 292265, upload-time = "2025-03-26T03:05:21.654Z" },
+    { url = "https://files.pythonhosted.org/packages/40/8d/090955e13ed06bc3496ba4a9fb26c62e209ac41973cb0d6222de20c6868f/propcache-0.3.1-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:8a17583515a04358b034e241f952f1715243482fc2c2945fd99a1b03a0bd77d6", size = 294412, upload-time = "2025-03-26T03:05:23.147Z" },
+    { url = "https://files.pythonhosted.org/packages/39/e6/d51601342e53cc7582449e6a3c14a0479fab2f0750c1f4d22302e34219c6/propcache-0.3.1-cp313-cp313t-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:5aed8d8308215089c0734a2af4f2e95eeb360660184ad3912686c181e500b2e7", size = 294290, upload-time = "2025-03-26T03:05:24.577Z" },
+    { url = "https://files.pythonhosted.org/packages/3b/4d/be5f1a90abc1881884aa5878989a1acdafd379a91d9c7e5e12cef37ec0d7/propcache-0.3.1-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6d8e309ff9a0503ef70dc9a0ebd3e69cf7b3894c9ae2ae81fc10943c37762458", size = 282926, upload-time = "2025-03-26T03:05:26.459Z" },
+    { url = "https://files.pythonhosted.org/packages/57/2b/8f61b998c7ea93a2b7eca79e53f3e903db1787fca9373af9e2cf8dc22f9d/propcache-0.3.1-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:b655032b202028a582d27aeedc2e813299f82cb232f969f87a4fde491a233f11", size = 267808, upload-time = "2025-03-26T03:05:28.188Z" },
+    { url = "https://files.pythonhosted.org/packages/11/1c/311326c3dfce59c58a6098388ba984b0e5fb0381ef2279ec458ef99bd547/propcache-0.3.1-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:9f64d91b751df77931336b5ff7bafbe8845c5770b06630e27acd5dbb71e1931c", size = 290916, upload-time = "2025-03-26T03:05:29.757Z" },
+    { url = "https://files.pythonhosted.org/packages/4b/74/91939924b0385e54dc48eb2e4edd1e4903ffd053cf1916ebc5347ac227f7/propcache-0.3.1-cp313-cp313t-musllinux_1_2_armv7l.whl", hash = "sha256:19a06db789a4bd896ee91ebc50d059e23b3639c25d58eb35be3ca1cbe967c3bf", size = 262661, upload-time = "2025-03-26T03:05:31.472Z" },
+    { url = "https://files.pythonhosted.org/packages/c2/d7/e6079af45136ad325c5337f5dd9ef97ab5dc349e0ff362fe5c5db95e2454/propcache-0.3.1-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:bef100c88d8692864651b5f98e871fb090bd65c8a41a1cb0ff2322db39c96c27", size = 264384, upload-time = "2025-03-26T03:05:32.984Z" },
+    { url = "https://files.pythonhosted.org/packages/b7/d5/ba91702207ac61ae6f1c2da81c5d0d6bf6ce89e08a2b4d44e411c0bbe867/propcache-0.3.1-cp313-cp313t-musllinux_1_2_ppc64le.whl", hash = "sha256:87380fb1f3089d2a0b8b00f006ed12bd41bd858fabfa7330c954c70f50ed8757", size = 291420, upload-time = "2025-03-26T03:05:34.496Z" },
+    { url = "https://files.pythonhosted.org/packages/58/70/2117780ed7edcd7ba6b8134cb7802aada90b894a9810ec56b7bb6018bee7/propcache-0.3.1-cp313-cp313t-musllinux_1_2_s390x.whl", hash = "sha256:e474fc718e73ba5ec5180358aa07f6aded0ff5f2abe700e3115c37d75c947e18", size = 290880, upload-time = "2025-03-26T03:05:36.256Z" },
+    { url = "https://files.pythonhosted.org/packages/4a/1f/ecd9ce27710021ae623631c0146719280a929d895a095f6d85efb6a0be2e/propcache-0.3.1-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:17d1c688a443355234f3c031349da69444be052613483f3e4158eef751abcd8a", size = 287407, upload-time = "2025-03-26T03:05:37.799Z" },
+    { url = "https://files.pythonhosted.org/packages/3e/66/2e90547d6b60180fb29e23dc87bd8c116517d4255240ec6d3f7dc23d1926/propcache-0.3.1-cp313-cp313t-win32.whl", hash = "sha256:359e81a949a7619802eb601d66d37072b79b79c2505e6d3fd8b945538411400d", size = 42573, upload-time = "2025-03-26T03:05:39.193Z" },
+    { url = "https://files.pythonhosted.org/packages/cb/8f/50ad8599399d1861b4d2b6b45271f0ef6af1b09b0a2386a46dbaf19c9535/propcache-0.3.1-cp313-cp313t-win_amd64.whl", hash = "sha256:e7fb9a84c9abbf2b2683fa3e7b0d7da4d8ecf139a1c635732a8bda29c5214b0e", size = 46757, upload-time = "2025-03-26T03:05:40.811Z" },
+    { url = "https://files.pythonhosted.org/packages/b8/d3/c3cb8f1d6ae3b37f83e1de806713a9b3642c5895f0215a62e1a4bd6e5e34/propcache-0.3.1-py3-none-any.whl", hash = "sha256:9a8ecf38de50a7f518c21568c80f985e776397b902f1ce0b01f799aba1608b40", size = 12376, upload-time = "2025-03-26T03:06:10.5Z" },
+]
+
+[[package]]
+name = "proto-plus"
+version = "1.26.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "protobuf" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/f4/ac/87285f15f7cce6d4a008f33f1757fb5a13611ea8914eb58c3d0d26243468/proto_plus-1.26.1.tar.gz", hash = "sha256:21a515a4c4c0088a773899e23c7bbade3d18f9c66c73edd4c7ee3816bc96a012", size = 56142, upload-time = "2025-03-10T15:54:38.843Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/4e/6d/280c4c2ce28b1593a19ad5239c8b826871fc6ec275c21afc8e1820108039/proto_plus-1.26.1-py3-none-any.whl", hash = "sha256:13285478c2dcf2abb829db158e1047e2f1e8d63a077d94263c2b88b043c75a66", size = 50163, upload-time = "2025-03-10T15:54:37.335Z" },
+]
+
+[[package]]
+name = "protobuf"
+version = "6.31.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/13/48/718c1e104a2e89970a8ff3b06d87e152834b576c570a6908f8c17ba88d65/protobuf-6.31.0.tar.gz", hash = "sha256:314fab1a6a316469dc2dd46f993cbbe95c861ea6807da910becfe7475bc26ffe", size = 441644, upload-time = "2025-05-14T17:58:27.862Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/b6/77/8671682038b08237c927215fa3296bc1c54e4086fe542c87017c1b626663/protobuf-6.31.0-cp310-abi3-win32.whl", hash = "sha256:10bd62802dfa0588649740a59354090eaf54b8322f772fbdcca19bc78d27f0d6", size = 423437, upload-time = "2025-05-14T17:58:16.116Z" },
+    { url = "https://files.pythonhosted.org/packages/e4/07/cc9b0cbf7593f6ef8cf87fa9b0e55cd74c5cb526dd89ad84aa7d6547ef8d/protobuf-6.31.0-cp310-abi3-win_amd64.whl", hash = "sha256:3e987c99fd634be8347246a02123250f394ba20573c953de133dc8b2c107dd71", size = 435118, upload-time = "2025-05-14T17:58:18.591Z" },
+    { url = "https://files.pythonhosted.org/packages/21/46/33f884aa8bc59114dc97e0d954ca4618c556483670236008c88fbb7e834f/protobuf-6.31.0-cp39-abi3-macosx_10_9_universal2.whl", hash = "sha256:2c812f0f96ceb6b514448cefeb1df54ec06dde456783f5099c0e2f8a0f2caa89", size = 425439, upload-time = "2025-05-14T17:58:19.709Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/f2/9a676b50229ce37b12777d7b21de90ae7bc0f9505d07e72e2e8d47b8d165/protobuf-6.31.0-cp39-abi3-manylinux2014_aarch64.whl", hash = "sha256:67ce50195e4e584275623b8e6bc6d3d3dfd93924bf6116b86b3b8975ab9e4571", size = 321950, upload-time = "2025-05-14T17:58:22.04Z" },
+    { url = "https://files.pythonhosted.org/packages/a1/a7/243fa2d3c1b7675d54744b32dacf30356f4c27c0d3ad940ca8745a1c6b2c/protobuf-6.31.0-cp39-abi3-manylinux2014_x86_64.whl", hash = "sha256:5353e38844168a327acd2b2aa440044411cd8d1b6774d5701008bd1dba067c79", size = 320904, upload-time = "2025-05-14T17:58:23.438Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/01/1ed1d482960a5718fd99c82f6d79120181947cfd4667ec3944d448ed44a3/protobuf-6.31.0-py3-none-any.whl", hash = "sha256:6ac2e82556e822c17a8d23aa1190bbc1d06efb9c261981da95c71c9da09e9e23", size = 168558, upload-time = "2025-05-14T17:58:26.923Z" },
+]
+
+[[package]]
+name = "psutil"
+version = "6.1.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/1f/5a/07871137bb752428aa4b659f910b399ba6f291156bdea939be3e96cae7cb/psutil-6.1.1.tar.gz", hash = "sha256:cf8496728c18f2d0b45198f06895be52f36611711746b7f30c464b422b50e2f5", size = 508502, upload-time = "2024-12-19T18:21:20.568Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/61/99/ca79d302be46f7bdd8321089762dd4476ee725fce16fc2b2e1dbba8cac17/psutil-6.1.1-cp36-abi3-macosx_10_9_x86_64.whl", hash = "sha256:fc0ed7fe2231a444fc219b9c42d0376e0a9a1a72f16c5cfa0f68d19f1a0663e8", size = 247511, upload-time = "2024-12-19T18:21:45.163Z" },
+    { url = "https://files.pythonhosted.org/packages/0b/6b/73dbde0dd38f3782905d4587049b9be64d76671042fdcaf60e2430c6796d/psutil-6.1.1-cp36-abi3-macosx_11_0_arm64.whl", hash = "sha256:0bdd4eab935276290ad3cb718e9809412895ca6b5b334f5a9111ee6d9aff9377", size = 248985, upload-time = "2024-12-19T18:21:49.254Z" },
+    { url = "https://files.pythonhosted.org/packages/17/38/c319d31a1d3f88c5b79c68b3116c129e5133f1822157dd6da34043e32ed6/psutil-6.1.1-cp36-abi3-manylinux_2_12_i686.manylinux2010_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:b6e06c20c05fe95a3d7302d74e7097756d4ba1247975ad6905441ae1b5b66003", size = 284488, upload-time = "2024-12-19T18:21:51.638Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/39/0f88a830a1c8a3aba27fededc642da37613c57cbff143412e3536f89784f/psutil-6.1.1-cp36-abi3-manylinux_2_12_x86_64.manylinux2010_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:97f7cb9921fbec4904f522d972f0c0e1f4fabbdd4e0287813b21215074a0f160", size = 287477, upload-time = "2024-12-19T18:21:55.306Z" },
+    { url = "https://files.pythonhosted.org/packages/47/da/99f4345d4ddf2845cb5b5bd0d93d554e84542d116934fde07a0c50bd4e9f/psutil-6.1.1-cp36-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:33431e84fee02bc84ea36d9e2c4a6d395d479c9dd9bba2376c1f6ee8f3a4e0b3", size = 289017, upload-time = "2024-12-19T18:21:57.875Z" },
+    { url = "https://files.pythonhosted.org/packages/38/53/bd755c2896f4461fd4f36fa6a6dcb66a88a9e4b9fd4e5b66a77cf9d4a584/psutil-6.1.1-cp37-abi3-win32.whl", hash = "sha256:eaa912e0b11848c4d9279a93d7e2783df352b082f40111e078388701fd479e53", size = 250602, upload-time = "2024-12-19T18:22:08.808Z" },
+    { url = "https://files.pythonhosted.org/packages/7b/d7/7831438e6c3ebbfa6e01a927127a6cb42ad3ab844247f3c5b96bea25d73d/psutil-6.1.1-cp37-abi3-win_amd64.whl", hash = "sha256:f35cfccb065fff93529d2afb4a2e89e363fe63ca1e4a5da22b603a85833c2649", size = 254444, upload-time = "2024-12-19T18:22:11.335Z" },
+]
+
+[[package]]
+name = "pyasn1"
+version = "0.6.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ba/e9/01f1a64245b89f039897cb0130016d79f77d52669aae6ee7b159a6c4c018/pyasn1-0.6.1.tar.gz", hash = "sha256:6f580d2bdd84365380830acf45550f2511469f673cb4a5ae3857a3170128b034", size = 145322, upload-time = "2024-09-10T22:41:42.55Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c8/f1/d6a797abb14f6283c0ddff96bbdd46937f64122b8c925cab503dd37f8214/pyasn1-0.6.1-py3-none-any.whl", hash = "sha256:0d632f46f2ba09143da3a8afe9e33fb6f92fa2320ab7e886e2d0f7672af84629", size = 83135, upload-time = "2024-09-11T16:00:36.122Z" },
+]
+
+[[package]]
+name = "pyasn1-modules"
+version = "0.4.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "pyasn1" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/e9/e6/78ebbb10a8c8e4b61a59249394a4a594c1a7af95593dc933a349c8d00964/pyasn1_modules-0.4.2.tar.gz", hash = "sha256:677091de870a80aae844b1ca6134f54652fa2c8c5a52aa396440ac3106e941e6", size = 307892, upload-time = "2025-03-28T02:41:22.17Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/47/8d/d529b5d697919ba8c11ad626e835d4039be708a35b0d22de83a269a6682c/pyasn1_modules-0.4.2-py3-none-any.whl", hash = "sha256:29253a9207ce32b64c3ac6600edc75368f98473906e8fd1043bd6b5b1de2c14a", size = 181259, upload-time = "2025-03-28T02:41:19.028Z" },
+]
+
+[[package]]
+name = "pycparser"
+version = "2.22"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/1d/b2/31537cf4b1ca988837256c910a668b553fceb8f069bedc4b1c826024b52c/pycparser-2.22.tar.gz", hash = "sha256:491c8be9c040f5390f5bf44a5b07752bd07f56edf992381b05c701439eec10f6", size = 172736, upload-time = "2024-03-30T13:22:22.564Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/13/a3/a812df4e2dd5696d1f351d58b8fe16a405b234ad2886a0dab9183fb78109/pycparser-2.22-py3-none-any.whl", hash = "sha256:c3702b6d3dd8c7abc1afa565d7e63d53a1d0bd86cdc24edd75470f4de499cfcc", size = 117552, upload-time = "2024-03-30T13:22:20.476Z" },
+]
+
+[[package]]
+name = "pydantic"
+version = "2.11.5"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "annotated-types" },
+    { name = "pydantic-core" },
+    { name = "typing-extensions" },
+    { name = "typing-inspection" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/f0/86/8ce9040065e8f924d642c58e4a344e33163a07f6b57f836d0d734e0ad3fb/pydantic-2.11.5.tar.gz", hash = "sha256:7f853db3d0ce78ce8bbb148c401c2cdd6431b3473c0cdff2755c7690952a7b7a", size = 787102, upload-time = "2025-05-22T21:18:08.761Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/b5/69/831ed22b38ff9b4b64b66569f0e5b7b97cf3638346eb95a2147fdb49ad5f/pydantic-2.11.5-py3-none-any.whl", hash = "sha256:f9c26ba06f9747749ca1e5c94d6a85cb84254577553c8785576fd38fa64dc0f7", size = 444229, upload-time = "2025-05-22T21:18:06.329Z" },
+]
+
+[[package]]
+name = "pydantic-core"
+version = "2.33.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ad/88/5f2260bdfae97aabf98f1778d43f69574390ad787afb646292a638c923d4/pydantic_core-2.33.2.tar.gz", hash = "sha256:7cb8bc3605c29176e1b105350d2e6474142d7c1bd1d9327c4a9bdb46bf827acc", size = 435195, upload-time = "2025-04-23T18:33:52.104Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/18/8a/2b41c97f554ec8c71f2a8a5f85cb56a8b0956addfe8b0efb5b3d77e8bdc3/pydantic_core-2.33.2-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:a7ec89dc587667f22b6a0b6579c249fca9026ce7c333fc142ba42411fa243cdc", size = 2009000, upload-time = "2025-04-23T18:31:25.863Z" },
+    { url = "https://files.pythonhosted.org/packages/a1/02/6224312aacb3c8ecbaa959897af57181fb6cf3a3d7917fd44d0f2917e6f2/pydantic_core-2.33.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:3c6db6e52c6d70aa0d00d45cdb9b40f0433b96380071ea80b09277dba021ddf7", size = 1847996, upload-time = "2025-04-23T18:31:27.341Z" },
+    { url = "https://files.pythonhosted.org/packages/d6/46/6dcdf084a523dbe0a0be59d054734b86a981726f221f4562aed313dbcb49/pydantic_core-2.33.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:4e61206137cbc65e6d5256e1166f88331d3b6238e082d9f74613b9b765fb9025", size = 1880957, upload-time = "2025-04-23T18:31:28.956Z" },
+    { url = "https://files.pythonhosted.org/packages/ec/6b/1ec2c03837ac00886ba8160ce041ce4e325b41d06a034adbef11339ae422/pydantic_core-2.33.2-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:eb8c529b2819c37140eb51b914153063d27ed88e3bdc31b71198a198e921e011", size = 1964199, upload-time = "2025-04-23T18:31:31.025Z" },
+    { url = "https://files.pythonhosted.org/packages/2d/1d/6bf34d6adb9debd9136bd197ca72642203ce9aaaa85cfcbfcf20f9696e83/pydantic_core-2.33.2-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:c52b02ad8b4e2cf14ca7b3d918f3eb0ee91e63b3167c32591e57c4317e134f8f", size = 2120296, upload-time = "2025-04-23T18:31:32.514Z" },
+    { url = "https://files.pythonhosted.org/packages/e0/94/2bd0aaf5a591e974b32a9f7123f16637776c304471a0ab33cf263cf5591a/pydantic_core-2.33.2-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:96081f1605125ba0855dfda83f6f3df5ec90c61195421ba72223de35ccfb2f88", size = 2676109, upload-time = "2025-04-23T18:31:33.958Z" },
+    { url = "https://files.pythonhosted.org/packages/f9/41/4b043778cf9c4285d59742281a769eac371b9e47e35f98ad321349cc5d61/pydantic_core-2.33.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8f57a69461af2a5fa6e6bbd7a5f60d3b7e6cebb687f55106933188e79ad155c1", size = 2002028, upload-time = "2025-04-23T18:31:39.095Z" },
+    { url = "https://files.pythonhosted.org/packages/cb/d5/7bb781bf2748ce3d03af04d5c969fa1308880e1dca35a9bd94e1a96a922e/pydantic_core-2.33.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:572c7e6c8bb4774d2ac88929e3d1f12bc45714ae5ee6d9a788a9fb35e60bb04b", size = 2100044, upload-time = "2025-04-23T18:31:41.034Z" },
+    { url = "https://files.pythonhosted.org/packages/fe/36/def5e53e1eb0ad896785702a5bbfd25eed546cdcf4087ad285021a90ed53/pydantic_core-2.33.2-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:db4b41f9bd95fbe5acd76d89920336ba96f03e149097365afe1cb092fceb89a1", size = 2058881, upload-time = "2025-04-23T18:31:42.757Z" },
+    { url = "https://files.pythonhosted.org/packages/01/6c/57f8d70b2ee57fc3dc8b9610315949837fa8c11d86927b9bb044f8705419/pydantic_core-2.33.2-cp312-cp312-musllinux_1_1_armv7l.whl", hash = "sha256:fa854f5cf7e33842a892e5c73f45327760bc7bc516339fda888c75ae60edaeb6", size = 2227034, upload-time = "2025-04-23T18:31:44.304Z" },
+    { url = "https://files.pythonhosted.org/packages/27/b9/9c17f0396a82b3d5cbea4c24d742083422639e7bb1d5bf600e12cb176a13/pydantic_core-2.33.2-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:5f483cfb75ff703095c59e365360cb73e00185e01aaea067cd19acffd2ab20ea", size = 2234187, upload-time = "2025-04-23T18:31:45.891Z" },
+    { url = "https://files.pythonhosted.org/packages/b0/6a/adf5734ffd52bf86d865093ad70b2ce543415e0e356f6cacabbc0d9ad910/pydantic_core-2.33.2-cp312-cp312-win32.whl", hash = "sha256:9cb1da0f5a471435a7bc7e439b8a728e8b61e59784b2af70d7c169f8dd8ae290", size = 1892628, upload-time = "2025-04-23T18:31:47.819Z" },
+    { url = "https://files.pythonhosted.org/packages/43/e4/5479fecb3606c1368d496a825d8411e126133c41224c1e7238be58b87d7e/pydantic_core-2.33.2-cp312-cp312-win_amd64.whl", hash = "sha256:f941635f2a3d96b2973e867144fde513665c87f13fe0e193c158ac51bfaaa7b2", size = 1955866, upload-time = "2025-04-23T18:31:49.635Z" },
+    { url = "https://files.pythonhosted.org/packages/0d/24/8b11e8b3e2be9dd82df4b11408a67c61bb4dc4f8e11b5b0fc888b38118b5/pydantic_core-2.33.2-cp312-cp312-win_arm64.whl", hash = "sha256:cca3868ddfaccfbc4bfb1d608e2ccaaebe0ae628e1416aeb9c4d88c001bb45ab", size = 1888894, upload-time = "2025-04-23T18:31:51.609Z" },
+    { url = "https://files.pythonhosted.org/packages/46/8c/99040727b41f56616573a28771b1bfa08a3d3fe74d3d513f01251f79f172/pydantic_core-2.33.2-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:1082dd3e2d7109ad8b7da48e1d4710c8d06c253cbc4a27c1cff4fbcaa97a9e3f", size = 2015688, upload-time = "2025-04-23T18:31:53.175Z" },
+    { url = "https://files.pythonhosted.org/packages/3a/cc/5999d1eb705a6cefc31f0b4a90e9f7fc400539b1a1030529700cc1b51838/pydantic_core-2.33.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:f517ca031dfc037a9c07e748cefd8d96235088b83b4f4ba8939105d20fa1dcd6", size = 1844808, upload-time = "2025-04-23T18:31:54.79Z" },
+    { url = "https://files.pythonhosted.org/packages/6f/5e/a0a7b8885c98889a18b6e376f344da1ef323d270b44edf8174d6bce4d622/pydantic_core-2.33.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0a9f2c9dd19656823cb8250b0724ee9c60a82f3cdf68a080979d13092a3b0fef", size = 1885580, upload-time = "2025-04-23T18:31:57.393Z" },
+    { url = "https://files.pythonhosted.org/packages/3b/2a/953581f343c7d11a304581156618c3f592435523dd9d79865903272c256a/pydantic_core-2.33.2-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:2b0a451c263b01acebe51895bfb0e1cc842a5c666efe06cdf13846c7418caa9a", size = 1973859, upload-time = "2025-04-23T18:31:59.065Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/55/f1a813904771c03a3f97f676c62cca0c0a4138654107c1b61f19c644868b/pydantic_core-2.33.2-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:1ea40a64d23faa25e62a70ad163571c0b342b8bf66d5fa612ac0dec4f069d916", size = 2120810, upload-time = "2025-04-23T18:32:00.78Z" },
+    { url = "https://files.pythonhosted.org/packages/aa/c3/053389835a996e18853ba107a63caae0b9deb4a276c6b472931ea9ae6e48/pydantic_core-2.33.2-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:0fb2d542b4d66f9470e8065c5469ec676978d625a8b7a363f07d9a501a9cb36a", size = 2676498, upload-time = "2025-04-23T18:32:02.418Z" },
+    { url = "https://files.pythonhosted.org/packages/eb/3c/f4abd740877a35abade05e437245b192f9d0ffb48bbbbd708df33d3cda37/pydantic_core-2.33.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9fdac5d6ffa1b5a83bca06ffe7583f5576555e6c8b3a91fbd25ea7780f825f7d", size = 2000611, upload-time = "2025-04-23T18:32:04.152Z" },
+    { url = "https://files.pythonhosted.org/packages/59/a7/63ef2fed1837d1121a894d0ce88439fe3e3b3e48c7543b2a4479eb99c2bd/pydantic_core-2.33.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:04a1a413977ab517154eebb2d326da71638271477d6ad87a769102f7c2488c56", size = 2107924, upload-time = "2025-04-23T18:32:06.129Z" },
+    { url = "https://files.pythonhosted.org/packages/04/8f/2551964ef045669801675f1cfc3b0d74147f4901c3ffa42be2ddb1f0efc4/pydantic_core-2.33.2-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:c8e7af2f4e0194c22b5b37205bfb293d166a7344a5b0d0eaccebc376546d77d5", size = 2063196, upload-time = "2025-04-23T18:32:08.178Z" },
+    { url = "https://files.pythonhosted.org/packages/26/bd/d9602777e77fc6dbb0c7db9ad356e9a985825547dce5ad1d30ee04903918/pydantic_core-2.33.2-cp313-cp313-musllinux_1_1_armv7l.whl", hash = "sha256:5c92edd15cd58b3c2d34873597a1e20f13094f59cf88068adb18947df5455b4e", size = 2236389, upload-time = "2025-04-23T18:32:10.242Z" },
+    { url = "https://files.pythonhosted.org/packages/42/db/0e950daa7e2230423ab342ae918a794964b053bec24ba8af013fc7c94846/pydantic_core-2.33.2-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:65132b7b4a1c0beded5e057324b7e16e10910c106d43675d9bd87d4f38dde162", size = 2239223, upload-time = "2025-04-23T18:32:12.382Z" },
+    { url = "https://files.pythonhosted.org/packages/58/4d/4f937099c545a8a17eb52cb67fe0447fd9a373b348ccfa9a87f141eeb00f/pydantic_core-2.33.2-cp313-cp313-win32.whl", hash = "sha256:52fb90784e0a242bb96ec53f42196a17278855b0f31ac7c3cc6f5c1ec4811849", size = 1900473, upload-time = "2025-04-23T18:32:14.034Z" },
+    { url = "https://files.pythonhosted.org/packages/a0/75/4a0a9bac998d78d889def5e4ef2b065acba8cae8c93696906c3a91f310ca/pydantic_core-2.33.2-cp313-cp313-win_amd64.whl", hash = "sha256:c083a3bdd5a93dfe480f1125926afcdbf2917ae714bdb80b36d34318b2bec5d9", size = 1955269, upload-time = "2025-04-23T18:32:15.783Z" },
+    { url = "https://files.pythonhosted.org/packages/f9/86/1beda0576969592f1497b4ce8e7bc8cbdf614c352426271b1b10d5f0aa64/pydantic_core-2.33.2-cp313-cp313-win_arm64.whl", hash = "sha256:e80b087132752f6b3d714f041ccf74403799d3b23a72722ea2e6ba2e892555b9", size = 1893921, upload-time = "2025-04-23T18:32:18.473Z" },
+    { url = "https://files.pythonhosted.org/packages/a4/7d/e09391c2eebeab681df2b74bfe6c43422fffede8dc74187b2b0bf6fd7571/pydantic_core-2.33.2-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:61c18fba8e5e9db3ab908620af374db0ac1baa69f0f32df4f61ae23f15e586ac", size = 1806162, upload-time = "2025-04-23T18:32:20.188Z" },
+    { url = "https://files.pythonhosted.org/packages/f1/3d/847b6b1fed9f8ed3bb95a9ad04fbd0b212e832d4f0f50ff4d9ee5a9f15cf/pydantic_core-2.33.2-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:95237e53bb015f67b63c91af7518a62a8660376a6a0db19b89acc77a4d6199f5", size = 1981560, upload-time = "2025-04-23T18:32:22.354Z" },
+    { url = "https://files.pythonhosted.org/packages/6f/9a/e73262f6c6656262b5fdd723ad90f518f579b7bc8622e43a942eec53c938/pydantic_core-2.33.2-cp313-cp313t-win_amd64.whl", hash = "sha256:c2fc0a768ef76c15ab9238afa6da7f69895bb5d1ee83aeea2e3509af4472d0b9", size = 1935777, upload-time = "2025-04-23T18:32:25.088Z" },
+]
+
+[[package]]
+name = "pydantic-settings"
+version = "2.9.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "pydantic" },
+    { name = "python-dotenv" },
+    { name = "typing-inspection" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/67/1d/42628a2c33e93f8e9acbde0d5d735fa0850f3e6a2f8cb1eb6c40b9a732ac/pydantic_settings-2.9.1.tar.gz", hash = "sha256:c509bf79d27563add44e8446233359004ed85066cd096d8b510f715e6ef5d268", size = 163234, upload-time = "2025-04-18T16:44:48.265Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/b6/5f/d6d641b490fd3ec2c4c13b4244d68deea3a1b970a97be64f34fb5504ff72/pydantic_settings-2.9.1-py3-none-any.whl", hash = "sha256:59b4f431b1defb26fe620c71a7d3968a710d719f5f4cdbbdb7926edeb770f6ef", size = 44356, upload-time = "2025-04-18T16:44:46.617Z" },
+]
+
+[[package]]
+name = "pydash"
+version = "8.0.5"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/2f/24/91c037f47e434172c2112d65c00c84d475a6715425e3315ba2cbb7a87e66/pydash-8.0.5.tar.gz", hash = "sha256:7cc44ebfe5d362f4f5f06c74c8684143c5ac481376b059ff02570705523f9e2e", size = 164861, upload-time = "2025-01-17T16:08:50.562Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2c/86/e74c978800131c657fc5145f2c1c63e0cea01a49b6216f729cf77a2e1edf/pydash-8.0.5-py3-none-any.whl", hash = "sha256:b2625f8981862e19911daa07f80ed47b315ce20d9b5eb57aaf97aaf570c3892f", size = 102077, upload-time = "2025-01-17T16:08:47.91Z" },
+]
+
+[[package]]
+name = "pyfiglet"
+version = "1.0.3"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/94/49/2554c0b7fef12c0b9633352bbd8751cc616f8e8880e0ebab7732c1535564/pyfiglet-1.0.3.tar.gz", hash = "sha256:bad3b55d2eccb30d4693ccfd94573c2a3477dd75f86a0e5465cea51bdbfe2875", size = 833445, upload-time = "2025-06-02T12:13:29.357Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/51/1d/f2cb03dd71a4dba891f808333fa505a6ed2762a8514d8ead7e423fa77e1b/pyfiglet-1.0.3-py3-none-any.whl", hash = "sha256:671bd101ca6a08dc2d94c6a2cda75a862c5e162b980af47d0ba4023837e36489", size = 1087203, upload-time = "2025-06-02T12:13:27.393Z" },
+]
+
+[[package]]
+name = "pygments"
+version = "2.19.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/7c/2d/c3338d48ea6cc0feb8446d8e6937e1408088a72a39937982cc6111d17f84/pygments-2.19.1.tar.gz", hash = "sha256:61c16d2a8576dc0649d9f39e089b5f02bcd27fba10d8fb4dcc28173f7a45151f", size = 4968581, upload-time = "2025-01-06T17:26:30.443Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8a/0b/9fcc47d19c48b59121088dd6da2488a49d5f72dacf8262e2790a1d2c7d15/pygments-2.19.1-py3-none-any.whl", hash = "sha256:9ea1544ad55cecf4b8242fab6dd35a93bbce657034b0611ee383099054ab6d8c", size = 1225293, upload-time = "2025-01-06T17:26:25.553Z" },
+]
+
+[[package]]
+name = "pyjwt"
+version = "2.10.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/e7/46/bd74733ff231675599650d3e47f361794b22ef3e3770998dda30d3b63726/pyjwt-2.10.1.tar.gz", hash = "sha256:3cc5772eb20009233caf06e9d8a0577824723b44e6648ee0a2aedb6cf9381953", size = 87785, upload-time = "2024-11-28T03:43:29.933Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/61/ad/689f02752eeec26aed679477e80e632ef1b682313be70793d798c1d5fc8f/PyJWT-2.10.1-py3-none-any.whl", hash = "sha256:dcdd193e30abefd5debf142f9adfcdd2b58004e644f25406ffaebd50bd98dacb", size = 22997, upload-time = "2024-11-28T03:43:27.893Z" },
+]
+
+[package.optional-dependencies]
+crypto = [
+    { name = "cryptography" },
+]
+
+[[package]]
+name = "pynacl"
+version = "1.5.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cffi" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/a7/22/27582568be639dfe22ddb3902225f91f2f17ceff88ce80e4db396c8986da/PyNaCl-1.5.0.tar.gz", hash = "sha256:8ac7448f09ab85811607bdd21ec2464495ac8b7c66d146bf545b0f08fb9220ba", size = 3392854, upload-time = "2022-01-07T22:05:41.134Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ce/75/0b8ede18506041c0bf23ac4d8e2971b4161cd6ce630b177d0a08eb0d8857/PyNaCl-1.5.0-cp36-abi3-macosx_10_10_universal2.whl", hash = "sha256:401002a4aaa07c9414132aaed7f6836ff98f59277a234704ff66878c2ee4a0d1", size = 349920, upload-time = "2022-01-07T22:05:49.156Z" },
+    { url = "https://files.pythonhosted.org/packages/59/bb/fddf10acd09637327a97ef89d2a9d621328850a72f1fdc8c08bdf72e385f/PyNaCl-1.5.0-cp36-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.manylinux_2_24_aarch64.whl", hash = "sha256:52cb72a79269189d4e0dc537556f4740f7f0a9ec41c1322598799b0bdad4ef92", size = 601722, upload-time = "2022-01-07T22:05:50.989Z" },
+    { url = "https://files.pythonhosted.org/packages/5d/70/87a065c37cca41a75f2ce113a5a2c2aa7533be648b184ade58971b5f7ccc/PyNaCl-1.5.0-cp36-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a36d4a9dda1f19ce6e03c9a784a2921a4b726b02e1c736600ca9c22029474394", size = 680087, upload-time = "2022-01-07T22:05:52.539Z" },
+    { url = "https://files.pythonhosted.org/packages/ee/87/f1bb6a595f14a327e8285b9eb54d41fef76c585a0edef0a45f6fc95de125/PyNaCl-1.5.0-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.manylinux_2_24_x86_64.whl", hash = "sha256:0c84947a22519e013607c9be43706dd42513f9e6ae5d39d3613ca1e142fba44d", size = 856678, upload-time = "2022-01-07T22:05:54.251Z" },
+    { url = "https://files.pythonhosted.org/packages/66/28/ca86676b69bf9f90e710571b67450508484388bfce09acf8a46f0b8c785f/PyNaCl-1.5.0-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:06b8f6fa7f5de8d5d2f7573fe8c863c051225a27b61e6860fd047b1775807858", size = 1133660, upload-time = "2022-01-07T22:05:56.056Z" },
+    { url = "https://files.pythonhosted.org/packages/3d/85/c262db650e86812585e2bc59e497a8f59948a005325a11bbbc9ecd3fe26b/PyNaCl-1.5.0-cp36-abi3-musllinux_1_1_aarch64.whl", hash = "sha256:a422368fc821589c228f4c49438a368831cb5bbc0eab5ebe1d7fac9dded6567b", size = 663824, upload-time = "2022-01-07T22:05:57.434Z" },
+    { url = "https://files.pythonhosted.org/packages/fd/1a/cc308a884bd299b651f1633acb978e8596c71c33ca85e9dc9fa33a5399b9/PyNaCl-1.5.0-cp36-abi3-musllinux_1_1_x86_64.whl", hash = "sha256:61f642bf2378713e2c2e1de73444a3778e5f0a38be6fee0fe532fe30060282ff", size = 1117912, upload-time = "2022-01-07T22:05:58.665Z" },
+    { url = "https://files.pythonhosted.org/packages/25/2d/b7df6ddb0c2a33afdb358f8af6ea3b8c4d1196ca45497dd37a56f0c122be/PyNaCl-1.5.0-cp36-abi3-win32.whl", hash = "sha256:e46dae94e34b085175f8abb3b0aaa7da40767865ac82c928eeb9e57e1ea8a543", size = 204624, upload-time = "2022-01-07T22:06:00.085Z" },
+    { url = "https://files.pythonhosted.org/packages/5e/22/d3db169895faaf3e2eda892f005f433a62db2decbcfbc2f61e6517adfa87/PyNaCl-1.5.0-cp36-abi3-win_amd64.whl", hash = "sha256:20f42270d27e1b6a29f54032090b972d97f0a1b0948cc52392041ef7831fee93", size = 212141, upload-time = "2022-01-07T22:06:01.861Z" },
+]
+
+[[package]]
+name = "pyparsing"
+version = "3.2.3"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/bb/22/f1129e69d94ffff626bdb5c835506b3a5b4f3d070f17ea295e12c2c6f60f/pyparsing-3.2.3.tar.gz", hash = "sha256:b9c13f1ab8b3b542f72e28f634bad4de758ab3ce4546e4301970ad6fa77c38be", size = 1088608, upload-time = "2025-03-25T05:01:28.114Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/05/e7/df2285f3d08fee213f2d041540fa4fc9ca6c2d44cf36d3a035bf2a8d2bcc/pyparsing-3.2.3-py3-none-any.whl", hash = "sha256:a749938e02d6fd0b59b356ca504a24982314bb090c383e3cf201c95ef7e2bfcf", size = 111120, upload-time = "2025-03-25T05:01:24.908Z" },
+]
+
+[[package]]
+name = "pyright"
+version = "1.1.401"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "nodeenv" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/79/9a/7ab2b333b921b2d6bfcffe05a0e0a0bbeff884bd6fb5ed50cd68e2898e53/pyright-1.1.401.tar.gz", hash = "sha256:788a82b6611fa5e34a326a921d86d898768cddf59edde8e93e56087d277cc6f1", size = 3894193, upload-time = "2025-05-21T10:44:52.03Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/0d/e6/1f908fce68b0401d41580e0f9acc4c3d1b248adcff00dfaad75cd21a1370/pyright-1.1.401-py3-none-any.whl", hash = "sha256:6fde30492ba5b0d7667c16ecaf6c699fab8d7a1263f6a18549e0b00bf7724c06", size = 5629193, upload-time = "2025-05-21T10:44:50.129Z" },
+]
+
+[[package]]
+name = "pytest"
+version = "8.3.5"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "colorama", marker = "sys_platform == 'win32'" },
+    { name = "iniconfig" },
+    { name = "packaging" },
+    { name = "pluggy" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ae/3c/c9d525a414d506893f0cd8a8d0de7706446213181570cdbd766691164e40/pytest-8.3.5.tar.gz", hash = "sha256:f4efe70cc14e511565ac476b57c279e12a855b11f48f212af1080ef2263d3845", size = 1450891, upload-time = "2025-03-02T12:54:54.503Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/30/3d/64ad57c803f1fa1e963a7946b6e0fea4a70df53c1a7fed304586539c2bac/pytest-8.3.5-py3-none-any.whl", hash = "sha256:c69214aa47deac29fad6c2a4f590b9c4a9fdb16a403176fe154b79c0b4d4d820", size = 343634, upload-time = "2025-03-02T12:54:52.069Z" },
+]
+
+[[package]]
+name = "python-dateutil"
+version = "2.9.0.post0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "six" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/66/c0/0c8b6ad9f17a802ee498c46e004a0eb49bc148f2fd230864601a86dcf6db/python-dateutil-2.9.0.post0.tar.gz", hash = "sha256:37dd54208da7e1cd875388217d5e00ebd4179249f90fb72437e91a35459a0ad3", size = 342432, upload-time = "2024-03-01T18:36:20.211Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ec/57/56b9bcc3c9c6a792fcbaf139543cee77261f3651ca9da0c93f5c1221264b/python_dateutil-2.9.0.post0-py2.py3-none-any.whl", hash = "sha256:a8b2bc7bffae282281c8140a97d3aa9c14da0b136dfe83f850eea9a5f7470427", size = 229892, upload-time = "2024-03-01T18:36:18.57Z" },
+]
+
+[[package]]
+name = "python-dotenv"
+version = "1.1.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/88/2c/7bb1416c5620485aa793f2de31d3df393d3686aa8a8506d11e10e13c5baf/python_dotenv-1.1.0.tar.gz", hash = "sha256:41f90bc6f5f177fb41f53e87666db362025010eb28f60a01c9143bfa33a2b2d5", size = 39920, upload-time = "2025-03-25T10:14:56.835Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/1e/18/98a99ad95133c6a6e2005fe89faedf294a748bd5dc803008059409ac9b1e/python_dotenv-1.1.0-py3-none-any.whl", hash = "sha256:d7c01d9e2293916c18baf562d95698754b0dbbb5e74d457c45d4f6561fb9d55d", size = 20256, upload-time = "2025-03-25T10:14:55.034Z" },
+]
+
+[[package]]
+name = "python-engineio"
+version = "4.12.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "simple-websocket" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c9/d8/63e5535ab21dc4998ba1cfe13690ccf122883a38f025dca24d6e56c05eba/python_engineio-4.12.3.tar.gz", hash = "sha256:35633e55ec30915e7fc8f7e34ca8d73ee0c080cec8a8cd04faf2d7396f0a7a7a", size = 91910, upload-time = "2025-09-28T06:31:36.765Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d8/f0/c5aa0a69fd9326f013110653543f36ece4913c17921f3e1dbd78e1b423ee/python_engineio-4.12.3-py3-none-any.whl", hash = "sha256:7c099abb2a27ea7ab429c04da86ab2d82698cdd6c52406cb73766fe454feb7e1", size = 59637, upload-time = "2025-09-28T06:31:35.354Z" },
+]
+
+[[package]]
+name = "python-multipart"
+version = "0.0.20"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/f3/87/f44d7c9f274c7ee665a29b885ec97089ec5dc034c7f3fafa03da9e39a09e/python_multipart-0.0.20.tar.gz", hash = "sha256:8dd0cab45b8e23064ae09147625994d090fa46f5b0d1e13af944c331a7fa9d13", size = 37158, upload-time = "2024-12-16T19:45:46.972Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/45/58/38b5afbc1a800eeea951b9285d3912613f2603bdf897a4ab0f4bd7f405fc/python_multipart-0.0.20-py3-none-any.whl", hash = "sha256:8a62d3a8335e06589fe01f2a3e178cdcc632f3fbe0d492ad9ee0ec35aab1f104", size = 24546, upload-time = "2024-12-16T19:45:44.423Z" },
+]
+
+[[package]]
+name = "python-socketio"
+version = "5.14.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "bidict" },
+    { name = "python-engineio" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c0/3f/02f5970c82285bd015ec433078bfc3275580b03715ed6024607dbe0f1966/python_socketio-5.14.3.tar.gz", hash = "sha256:cd8da5e0666e741b4be19e07882e880f57a4751d1645f92c2bc746c95f23b1eb", size = 124266, upload-time = "2025-10-29T09:42:53.749Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c0/1a/b393a06aa6f2f6ab4a9c5c160a62d488b17d6da5cf93a67bc13a6e3239cd/python_socketio-5.14.3-py3-none-any.whl", hash = "sha256:a5208c1bbf45a8d6328d01ed67e3fa52ec8b186fd3ea44cfcfcbd120f0c71fbe", size = 79010, upload-time = "2025-10-29T09:42:52.098Z" },
+]
+
+[package.optional-dependencies]
+client = [
+    { name = "requests" },
+    { name = "websocket-client" },
+]
+
+[[package]]
+name = "pytz"
+version = "2025.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/f8/bf/abbd3cdfb8fbc7fb3d4d38d320f2441b1e7cbe29be4f23797b4a2b5d8aac/pytz-2025.2.tar.gz", hash = "sha256:360b9e3dbb49a209c21ad61809c7fb453643e048b38924c765813546746e81c3", size = 320884, upload-time = "2025-03-25T02:25:00.538Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/81/c4/34e93fe5f5429d7570ec1fa436f1986fb1f00c3e0f43a589fe2bbcd22c3f/pytz-2025.2-py2.py3-none-any.whl", hash = "sha256:5ddf76296dd8c44c26eb8f4b6f35488f3ccbf6fbbd7adee0b7262d43f0ec2f00", size = 509225, upload-time = "2025-03-25T02:24:58.468Z" },
+]
+
+[[package]]
+name = "pywin32"
+version = "310"
+source = { registry = "https://pypi.org/simple" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/6b/ec/4fdbe47932f671d6e348474ea35ed94227fb5df56a7c30cbbb42cd396ed0/pywin32-310-cp312-cp312-win32.whl", hash = "sha256:8a75a5cc3893e83a108c05d82198880704c44bbaee4d06e442e471d3c9ea4f3d", size = 8796239, upload-time = "2025-03-17T00:55:58.807Z" },
+    { url = "https://files.pythonhosted.org/packages/e3/e5/b0627f8bb84e06991bea89ad8153a9e50ace40b2e1195d68e9dff6b03d0f/pywin32-310-cp312-cp312-win_amd64.whl", hash = "sha256:bf5c397c9a9a19a6f62f3fb821fbf36cac08f03770056711f765ec1503972060", size = 9503839, upload-time = "2025-03-17T00:56:00.8Z" },
+    { url = "https://files.pythonhosted.org/packages/1f/32/9ccf53748df72301a89713936645a664ec001abd35ecc8578beda593d37d/pywin32-310-cp312-cp312-win_arm64.whl", hash = "sha256:2349cc906eae872d0663d4d6290d13b90621eaf78964bb1578632ff20e152966", size = 8459470, upload-time = "2025-03-17T00:56:02.601Z" },
+    { url = "https://files.pythonhosted.org/packages/1c/09/9c1b978ffc4ae53999e89c19c77ba882d9fce476729f23ef55211ea1c034/pywin32-310-cp313-cp313-win32.whl", hash = "sha256:5d241a659c496ada3253cd01cfaa779b048e90ce4b2b38cd44168ad555ce74ab", size = 8794384, upload-time = "2025-03-17T00:56:04.383Z" },
+    { url = "https://files.pythonhosted.org/packages/45/3c/b4640f740ffebadd5d34df35fecba0e1cfef8fde9f3e594df91c28ad9b50/pywin32-310-cp313-cp313-win_amd64.whl", hash = "sha256:667827eb3a90208ddbdcc9e860c81bde63a135710e21e4cb3348968e4bd5249e", size = 9503039, upload-time = "2025-03-17T00:56:06.207Z" },
+    { url = "https://files.pythonhosted.org/packages/b4/f4/f785020090fb050e7fb6d34b780f2231f302609dc964672f72bfaeb59a28/pywin32-310-cp313-cp313-win_arm64.whl", hash = "sha256:e308f831de771482b7cf692a1f308f8fca701b2d8f9dde6cc440c7da17e47b33", size = 8458152, upload-time = "2025-03-17T00:56:07.819Z" },
+]
+
+[[package]]
+name = "pyyaml"
+version = "6.0.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/54/ed/79a089b6be93607fa5cdaedf301d7dfb23af5f25c398d5ead2525b063e17/pyyaml-6.0.2.tar.gz", hash = "sha256:d584d9ec91ad65861cc08d42e834324ef890a082e591037abe114850ff7bbc3e", size = 130631, upload-time = "2024-08-06T20:33:50.674Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/86/0c/c581167fc46d6d6d7ddcfb8c843a4de25bdd27e4466938109ca68492292c/PyYAML-6.0.2-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:c70c95198c015b85feafc136515252a261a84561b7b1d51e3384e0655ddf25ab", size = 183873, upload-time = "2024-08-06T20:32:25.131Z" },
+    { url = "https://files.pythonhosted.org/packages/a8/0c/38374f5bb272c051e2a69281d71cba6fdb983413e6758b84482905e29a5d/PyYAML-6.0.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:ce826d6ef20b1bc864f0a68340c8b3287705cae2f8b4b1d932177dcc76721725", size = 173302, upload-time = "2024-08-06T20:32:26.511Z" },
+    { url = "https://files.pythonhosted.org/packages/c3/93/9916574aa8c00aa06bbac729972eb1071d002b8e158bd0e83a3b9a20a1f7/PyYAML-6.0.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:1f71ea527786de97d1a0cc0eacd1defc0985dcf6b3f17bb77dcfc8c34bec4dc5", size = 739154, upload-time = "2024-08-06T20:32:28.363Z" },
+    { url = "https://files.pythonhosted.org/packages/95/0f/b8938f1cbd09739c6da569d172531567dbcc9789e0029aa070856f123984/PyYAML-6.0.2-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:9b22676e8097e9e22e36d6b7bda33190d0d400f345f23d4065d48f4ca7ae0425", size = 766223, upload-time = "2024-08-06T20:32:30.058Z" },
+    { url = "https://files.pythonhosted.org/packages/b9/2b/614b4752f2e127db5cc206abc23a8c19678e92b23c3db30fc86ab731d3bd/PyYAML-6.0.2-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:80bab7bfc629882493af4aa31a4cfa43a4c57c83813253626916b8c7ada83476", size = 767542, upload-time = "2024-08-06T20:32:31.881Z" },
+    { url = "https://files.pythonhosted.org/packages/d4/00/dd137d5bcc7efea1836d6264f049359861cf548469d18da90cd8216cf05f/PyYAML-6.0.2-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:0833f8694549e586547b576dcfaba4a6b55b9e96098b36cdc7ebefe667dfed48", size = 731164, upload-time = "2024-08-06T20:32:37.083Z" },
+    { url = "https://files.pythonhosted.org/packages/c9/1f/4f998c900485e5c0ef43838363ba4a9723ac0ad73a9dc42068b12aaba4e4/PyYAML-6.0.2-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:8b9c7197f7cb2738065c481a0461e50ad02f18c78cd75775628afb4d7137fb3b", size = 756611, upload-time = "2024-08-06T20:32:38.898Z" },
+    { url = "https://files.pythonhosted.org/packages/df/d1/f5a275fdb252768b7a11ec63585bc38d0e87c9e05668a139fea92b80634c/PyYAML-6.0.2-cp312-cp312-win32.whl", hash = "sha256:ef6107725bd54b262d6dedcc2af448a266975032bc85ef0172c5f059da6325b4", size = 140591, upload-time = "2024-08-06T20:32:40.241Z" },
+    { url = "https://files.pythonhosted.org/packages/0c/e8/4f648c598b17c3d06e8753d7d13d57542b30d56e6c2dedf9c331ae56312e/PyYAML-6.0.2-cp312-cp312-win_amd64.whl", hash = "sha256:7e7401d0de89a9a855c839bc697c079a4af81cf878373abd7dc625847d25cbd8", size = 156338, upload-time = "2024-08-06T20:32:41.93Z" },
+    { url = "https://files.pythonhosted.org/packages/ef/e3/3af305b830494fa85d95f6d95ef7fa73f2ee1cc8ef5b495c7c3269fb835f/PyYAML-6.0.2-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:efdca5630322a10774e8e98e1af481aad470dd62c3170801852d752aa7a783ba", size = 181309, upload-time = "2024-08-06T20:32:43.4Z" },
+    { url = "https://files.pythonhosted.org/packages/45/9f/3b1c20a0b7a3200524eb0076cc027a970d320bd3a6592873c85c92a08731/PyYAML-6.0.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:50187695423ffe49e2deacb8cd10510bc361faac997de9efef88badc3bb9e2d1", size = 171679, upload-time = "2024-08-06T20:32:44.801Z" },
+    { url = "https://files.pythonhosted.org/packages/7c/9a/337322f27005c33bcb656c655fa78325b730324c78620e8328ae28b64d0c/PyYAML-6.0.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:0ffe8360bab4910ef1b9e87fb812d8bc0a308b0d0eef8c8f44e0254ab3b07133", size = 733428, upload-time = "2024-08-06T20:32:46.432Z" },
+    { url = "https://files.pythonhosted.org/packages/a3/69/864fbe19e6c18ea3cc196cbe5d392175b4cf3d5d0ac1403ec3f2d237ebb5/PyYAML-6.0.2-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:17e311b6c678207928d649faa7cb0d7b4c26a0ba73d41e99c4fff6b6c3276484", size = 763361, upload-time = "2024-08-06T20:32:51.188Z" },
+    { url = "https://files.pythonhosted.org/packages/04/24/b7721e4845c2f162d26f50521b825fb061bc0a5afcf9a386840f23ea19fa/PyYAML-6.0.2-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:70b189594dbe54f75ab3a1acec5f1e3faa7e8cf2f1e08d9b561cb41b845f69d5", size = 759523, upload-time = "2024-08-06T20:32:53.019Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/b2/e3234f59ba06559c6ff63c4e10baea10e5e7df868092bf9ab40e5b9c56b6/PyYAML-6.0.2-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:41e4e3953a79407c794916fa277a82531dd93aad34e29c2a514c2c0c5fe971cc", size = 726660, upload-time = "2024-08-06T20:32:54.708Z" },
+    { url = "https://files.pythonhosted.org/packages/fe/0f/25911a9f080464c59fab9027482f822b86bf0608957a5fcc6eaac85aa515/PyYAML-6.0.2-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:68ccc6023a3400877818152ad9a1033e3db8625d899c72eacb5a668902e4d652", size = 751597, upload-time = "2024-08-06T20:32:56.985Z" },
+    { url = "https://files.pythonhosted.org/packages/14/0d/e2c3b43bbce3cf6bd97c840b46088a3031085179e596d4929729d8d68270/PyYAML-6.0.2-cp313-cp313-win32.whl", hash = "sha256:bc2fa7c6b47d6bc618dd7fb02ef6fdedb1090ec036abab80d4681424b84c1183", size = 140527, upload-time = "2024-08-06T20:33:03.001Z" },
+    { url = "https://files.pythonhosted.org/packages/fa/de/02b54f42487e3d3c6efb3f89428677074ca7bf43aae402517bc7cca949f3/PyYAML-6.0.2-cp313-cp313-win_amd64.whl", hash = "sha256:8388ee1976c416731879ac16da0aff3f63b286ffdd57cdeb95f3f2e085687563", size = 156446, upload-time = "2024-08-06T20:33:04.33Z" },
+]
+
+[[package]]
+name = "pyzmq"
+version = "26.4.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cffi", marker = "implementation_name == 'pypy'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/b1/11/b9213d25230ac18a71b39b3723494e57adebe36e066397b961657b3b41c1/pyzmq-26.4.0.tar.gz", hash = "sha256:4bd13f85f80962f91a651a7356fe0472791a5f7a92f227822b5acf44795c626d", size = 278293, upload-time = "2025-04-04T12:05:44.049Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/10/44/a778555ebfdf6c7fc00816aad12d185d10a74d975800341b1bc36bad1187/pyzmq-26.4.0-cp312-cp312-macosx_10_15_universal2.whl", hash = "sha256:5227cb8da4b6f68acfd48d20c588197fd67745c278827d5238c707daf579227b", size = 1341586, upload-time = "2025-04-04T12:03:41.954Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/4f/f3a58dc69ac757e5103be3bd41fb78721a5e17da7cc617ddb56d973a365c/pyzmq-26.4.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e1c07a7fa7f7ba86554a2b1bef198c9fed570c08ee062fd2fd6a4dcacd45f905", size = 665880, upload-time = "2025-04-04T12:03:43.45Z" },
+    { url = "https://files.pythonhosted.org/packages/fe/45/50230bcfb3ae5cb98bee683b6edeba1919f2565d7cc1851d3c38e2260795/pyzmq-26.4.0-cp312-cp312-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ae775fa83f52f52de73183f7ef5395186f7105d5ed65b1ae65ba27cb1260de2b", size = 902216, upload-time = "2025-04-04T12:03:45.572Z" },
+    { url = "https://files.pythonhosted.org/packages/41/59/56bbdc5689be5e13727491ad2ba5efd7cd564365750514f9bc8f212eef82/pyzmq-26.4.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:66c760d0226ebd52f1e6b644a9e839b5db1e107a23f2fcd46ec0569a4fdd4e63", size = 859814, upload-time = "2025-04-04T12:03:47.188Z" },
+    { url = "https://files.pythonhosted.org/packages/81/b1/57db58cfc8af592ce94f40649bd1804369c05b2190e4cbc0a2dad572baeb/pyzmq-26.4.0-cp312-cp312-manylinux_2_28_x86_64.whl", hash = "sha256:ef8c6ecc1d520debc147173eaa3765d53f06cd8dbe7bd377064cdbc53ab456f5", size = 855889, upload-time = "2025-04-04T12:03:49.223Z" },
+    { url = "https://files.pythonhosted.org/packages/e8/92/47542e629cbac8f221c230a6d0f38dd3d9cff9f6f589ed45fdf572ffd726/pyzmq-26.4.0-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:3150ef4084e163dec29ae667b10d96aad309b668fac6810c9e8c27cf543d6e0b", size = 1197153, upload-time = "2025-04-04T12:03:50.591Z" },
+    { url = "https://files.pythonhosted.org/packages/07/e5/b10a979d1d565d54410afc87499b16c96b4a181af46e7645ab4831b1088c/pyzmq-26.4.0-cp312-cp312-musllinux_1_1_i686.whl", hash = "sha256:4448c9e55bf8329fa1dcedd32f661bf611214fa70c8e02fee4347bc589d39a84", size = 1507352, upload-time = "2025-04-04T12:03:52.473Z" },
+    { url = "https://files.pythonhosted.org/packages/ab/58/5a23db84507ab9c01c04b1232a7a763be66e992aa2e66498521bbbc72a71/pyzmq-26.4.0-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:e07dde3647afb084d985310d067a3efa6efad0621ee10826f2cb2f9a31b89d2f", size = 1406834, upload-time = "2025-04-04T12:03:54Z" },
+    { url = "https://files.pythonhosted.org/packages/22/74/aaa837b331580c13b79ac39396601fb361454ee184ca85e8861914769b99/pyzmq-26.4.0-cp312-cp312-win32.whl", hash = "sha256:ba034a32ecf9af72adfa5ee383ad0fd4f4e38cdb62b13624278ef768fe5b5b44", size = 577992, upload-time = "2025-04-04T12:03:55.815Z" },
+    { url = "https://files.pythonhosted.org/packages/30/0f/55f8c02c182856743b82dde46b2dc3e314edda7f1098c12a8227eeda0833/pyzmq-26.4.0-cp312-cp312-win_amd64.whl", hash = "sha256:056a97aab4064f526ecb32f4343917a4022a5d9efb6b9df990ff72e1879e40be", size = 640466, upload-time = "2025-04-04T12:03:57.231Z" },
+    { url = "https://files.pythonhosted.org/packages/e4/29/073779afc3ef6f830b8de95026ef20b2d1ec22d0324d767748d806e57379/pyzmq-26.4.0-cp312-cp312-win_arm64.whl", hash = "sha256:2f23c750e485ce1eb639dbd576d27d168595908aa2d60b149e2d9e34c9df40e0", size = 556342, upload-time = "2025-04-04T12:03:59.218Z" },
+    { url = "https://files.pythonhosted.org/packages/d7/20/fb2c92542488db70f833b92893769a569458311a76474bda89dc4264bd18/pyzmq-26.4.0-cp313-cp313-macosx_10_15_universal2.whl", hash = "sha256:c43fac689880f5174d6fc864857d1247fe5cfa22b09ed058a344ca92bf5301e3", size = 1339484, upload-time = "2025-04-04T12:04:00.671Z" },
+    { url = "https://files.pythonhosted.org/packages/58/29/2f06b9cabda3a6ea2c10f43e67ded3e47fc25c54822e2506dfb8325155d4/pyzmq-26.4.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:902aca7eba477657c5fb81c808318460328758e8367ecdd1964b6330c73cae43", size = 666106, upload-time = "2025-04-04T12:04:02.366Z" },
+    { url = "https://files.pythonhosted.org/packages/77/e4/dcf62bd29e5e190bd21bfccaa4f3386e01bf40d948c239239c2f1e726729/pyzmq-26.4.0-cp313-cp313-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:e5e48a830bfd152fe17fbdeaf99ac5271aa4122521bf0d275b6b24e52ef35eb6", size = 902056, upload-time = "2025-04-04T12:04:03.919Z" },
+    { url = "https://files.pythonhosted.org/packages/1a/cf/b36b3d7aea236087d20189bec1a87eeb2b66009731d7055e5c65f845cdba/pyzmq-26.4.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:31be2b6de98c824c06f5574331f805707c667dc8f60cb18580b7de078479891e", size = 860148, upload-time = "2025-04-04T12:04:05.581Z" },
+    { url = "https://files.pythonhosted.org/packages/18/a6/f048826bc87528c208e90604c3bf573801e54bd91e390cbd2dfa860e82dc/pyzmq-26.4.0-cp313-cp313-manylinux_2_28_x86_64.whl", hash = "sha256:6332452034be001bbf3206ac59c0d2a7713de5f25bb38b06519fc6967b7cf771", size = 855983, upload-time = "2025-04-04T12:04:07.096Z" },
+    { url = "https://files.pythonhosted.org/packages/0a/27/454d34ab6a1d9772a36add22f17f6b85baf7c16e14325fa29e7202ca8ee8/pyzmq-26.4.0-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:da8c0f5dd352136853e6a09b1b986ee5278dfddfebd30515e16eae425c872b30", size = 1197274, upload-time = "2025-04-04T12:04:08.523Z" },
+    { url = "https://files.pythonhosted.org/packages/f4/3d/7abfeab6b83ad38aa34cbd57c6fc29752c391e3954fd12848bd8d2ec0df6/pyzmq-26.4.0-cp313-cp313-musllinux_1_1_i686.whl", hash = "sha256:f4ccc1a0a2c9806dda2a2dd118a3b7b681e448f3bb354056cad44a65169f6d86", size = 1507120, upload-time = "2025-04-04T12:04:10.58Z" },
+    { url = "https://files.pythonhosted.org/packages/13/ff/bc8d21dbb9bc8705126e875438a1969c4f77e03fc8565d6901c7933a3d01/pyzmq-26.4.0-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:1c0b5fceadbab461578daf8d1dcc918ebe7ddd2952f748cf30c7cf2de5d51101", size = 1406738, upload-time = "2025-04-04T12:04:12.509Z" },
+    { url = "https://files.pythonhosted.org/packages/f5/5d/d4cd85b24de71d84d81229e3bbb13392b2698432cf8fdcea5afda253d587/pyzmq-26.4.0-cp313-cp313-win32.whl", hash = "sha256:28e2b0ff5ba4b3dd11062d905682bad33385cfa3cc03e81abd7f0822263e6637", size = 577826, upload-time = "2025-04-04T12:04:14.289Z" },
+    { url = "https://files.pythonhosted.org/packages/c6/6c/f289c1789d7bb6e5a3b3bef7b2a55089b8561d17132be7d960d3ff33b14e/pyzmq-26.4.0-cp313-cp313-win_amd64.whl", hash = "sha256:23ecc9d241004c10e8b4f49d12ac064cd7000e1643343944a10df98e57bc544b", size = 640406, upload-time = "2025-04-04T12:04:15.757Z" },
+    { url = "https://files.pythonhosted.org/packages/b3/99/676b8851cb955eb5236a0c1e9ec679ea5ede092bf8bf2c8a68d7e965cac3/pyzmq-26.4.0-cp313-cp313-win_arm64.whl", hash = "sha256:1edb0385c7f025045d6e0f759d4d3afe43c17a3d898914ec6582e6f464203c08", size = 556216, upload-time = "2025-04-04T12:04:17.212Z" },
+    { url = "https://files.pythonhosted.org/packages/65/c2/1fac340de9d7df71efc59d9c50fc7a635a77b103392d1842898dd023afcb/pyzmq-26.4.0-cp313-cp313t-macosx_10_15_universal2.whl", hash = "sha256:93a29e882b2ba1db86ba5dd5e88e18e0ac6b627026c5cfbec9983422011b82d4", size = 1333769, upload-time = "2025-04-04T12:04:18.665Z" },
+    { url = "https://files.pythonhosted.org/packages/5c/c7/6c03637e8d742c3b00bec4f5e4cd9d1c01b2f3694c6f140742e93ca637ed/pyzmq-26.4.0-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:cb45684f276f57110bb89e4300c00f1233ca631f08f5f42528a5c408a79efc4a", size = 658826, upload-time = "2025-04-04T12:04:20.405Z" },
+    { url = "https://files.pythonhosted.org/packages/a5/97/a8dca65913c0f78e0545af2bb5078aebfc142ca7d91cdaffa1fbc73e5dbd/pyzmq-26.4.0-cp313-cp313t-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:f72073e75260cb301aad4258ad6150fa7f57c719b3f498cb91e31df16784d89b", size = 891650, upload-time = "2025-04-04T12:04:22.413Z" },
+    { url = "https://files.pythonhosted.org/packages/7d/7e/f63af1031eb060bf02d033732b910fe48548dcfdbe9c785e9f74a6cc6ae4/pyzmq-26.4.0-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:be37e24b13026cfedd233bcbbccd8c0bcd2fdd186216094d095f60076201538d", size = 849776, upload-time = "2025-04-04T12:04:23.959Z" },
+    { url = "https://files.pythonhosted.org/packages/f6/fa/1a009ce582802a895c0d5fe9413f029c940a0a8ee828657a3bb0acffd88b/pyzmq-26.4.0-cp313-cp313t-manylinux_2_28_x86_64.whl", hash = "sha256:237b283044934d26f1eeff4075f751b05d2f3ed42a257fc44386d00df6a270cf", size = 842516, upload-time = "2025-04-04T12:04:25.449Z" },
+    { url = "https://files.pythonhosted.org/packages/6e/bc/f88b0bad0f7a7f500547d71e99f10336f2314e525d4ebf576a1ea4a1d903/pyzmq-26.4.0-cp313-cp313t-musllinux_1_1_aarch64.whl", hash = "sha256:b30f862f6768b17040929a68432c8a8be77780317f45a353cb17e423127d250c", size = 1189183, upload-time = "2025-04-04T12:04:27.035Z" },
+    { url = "https://files.pythonhosted.org/packages/d9/8c/db446a3dd9cf894406dec2e61eeffaa3c07c3abb783deaebb9812c4af6a5/pyzmq-26.4.0-cp313-cp313t-musllinux_1_1_i686.whl", hash = "sha256:c80fcd3504232f13617c6ab501124d373e4895424e65de8b72042333316f64a8", size = 1495501, upload-time = "2025-04-04T12:04:28.833Z" },
+    { url = "https://files.pythonhosted.org/packages/05/4c/bf3cad0d64c3214ac881299c4562b815f05d503bccc513e3fd4fdc6f67e4/pyzmq-26.4.0-cp313-cp313t-musllinux_1_1_x86_64.whl", hash = "sha256:26a2a7451606b87f67cdeca2c2789d86f605da08b4bd616b1a9981605ca3a364", size = 1395540, upload-time = "2025-04-04T12:04:30.562Z" },
+]
+
+[[package]]
+name = "referencing"
+version = "0.36.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "attrs" },
+    { name = "rpds-py" },
+    { name = "typing-extensions", marker = "python_full_version < '3.13'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/2f/db/98b5c277be99dd18bfd91dd04e1b759cad18d1a338188c936e92f921c7e2/referencing-0.36.2.tar.gz", hash = "sha256:df2e89862cd09deabbdba16944cc3f10feb6b3e6f18e902f7cc25609a34775aa", size = 74744, upload-time = "2025-01-25T08:48:16.138Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c1/b1/3baf80dc6d2b7bc27a95a67752d0208e410351e3feb4eb78de5f77454d8d/referencing-0.36.2-py3-none-any.whl", hash = "sha256:e8699adbbf8b5c7de96d8ffa0eb5c158b3beafce084968e2ea8bb08c6794dcd0", size = 26775, upload-time = "2025-01-25T08:48:14.241Z" },
+]
+
+[[package]]
+name = "regex"
+version = "2024.11.6"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/8e/5f/bd69653fbfb76cf8604468d3b4ec4c403197144c7bfe0e6a5fc9e02a07cb/regex-2024.11.6.tar.gz", hash = "sha256:7ab159b063c52a0333c884e4679f8d7a85112ee3078fe3d9004b2dd875585519", size = 399494, upload-time = "2024-11-06T20:12:31.635Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ba/30/9a87ce8336b172cc232a0db89a3af97929d06c11ceaa19d97d84fa90a8f8/regex-2024.11.6-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:52fb28f528778f184f870b7cf8f225f5eef0a8f6e3778529bdd40c7b3920796a", size = 483781, upload-time = "2024-11-06T20:10:07.07Z" },
+    { url = "https://files.pythonhosted.org/packages/01/e8/00008ad4ff4be8b1844786ba6636035f7ef926db5686e4c0f98093612add/regex-2024.11.6-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:fdd6028445d2460f33136c55eeb1f601ab06d74cb3347132e1c24250187500d9", size = 288455, upload-time = "2024-11-06T20:10:09.117Z" },
+    { url = "https://files.pythonhosted.org/packages/60/85/cebcc0aff603ea0a201667b203f13ba75d9fc8668fab917ac5b2de3967bc/regex-2024.11.6-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:805e6b60c54bf766b251e94526ebad60b7de0c70f70a4e6210ee2891acb70bf2", size = 284759, upload-time = "2024-11-06T20:10:11.155Z" },
+    { url = "https://files.pythonhosted.org/packages/94/2b/701a4b0585cb05472a4da28ee28fdfe155f3638f5e1ec92306d924e5faf0/regex-2024.11.6-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b85c2530be953a890eaffde05485238f07029600e8f098cdf1848d414a8b45e4", size = 794976, upload-time = "2024-11-06T20:10:13.24Z" },
+    { url = "https://files.pythonhosted.org/packages/4b/bf/fa87e563bf5fee75db8915f7352e1887b1249126a1be4813837f5dbec965/regex-2024.11.6-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:bb26437975da7dc36b7efad18aa9dd4ea569d2357ae6b783bf1118dabd9ea577", size = 833077, upload-time = "2024-11-06T20:10:15.37Z" },
+    { url = "https://files.pythonhosted.org/packages/a1/56/7295e6bad94b047f4d0834e4779491b81216583c00c288252ef625c01d23/regex-2024.11.6-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:abfa5080c374a76a251ba60683242bc17eeb2c9818d0d30117b4486be10c59d3", size = 823160, upload-time = "2024-11-06T20:10:19.027Z" },
+    { url = "https://files.pythonhosted.org/packages/fb/13/e3b075031a738c9598c51cfbc4c7879e26729c53aa9cca59211c44235314/regex-2024.11.6-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:70b7fa6606c2881c1db9479b0eaa11ed5dfa11c8d60a474ff0e095099f39d98e", size = 796896, upload-time = "2024-11-06T20:10:21.85Z" },
+    { url = "https://files.pythonhosted.org/packages/24/56/0b3f1b66d592be6efec23a795b37732682520b47c53da5a32c33ed7d84e3/regex-2024.11.6-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0c32f75920cf99fe6b6c539c399a4a128452eaf1af27f39bce8909c9a3fd8cbe", size = 783997, upload-time = "2024-11-06T20:10:24.329Z" },
+    { url = "https://files.pythonhosted.org/packages/f9/a1/eb378dada8b91c0e4c5f08ffb56f25fcae47bf52ad18f9b2f33b83e6d498/regex-2024.11.6-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:982e6d21414e78e1f51cf595d7f321dcd14de1f2881c5dc6a6e23bbbbd68435e", size = 781725, upload-time = "2024-11-06T20:10:28.067Z" },
+    { url = "https://files.pythonhosted.org/packages/83/f2/033e7dec0cfd6dda93390089864732a3409246ffe8b042e9554afa9bff4e/regex-2024.11.6-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:a7c2155f790e2fb448faed6dd241386719802296ec588a8b9051c1f5c481bc29", size = 789481, upload-time = "2024-11-06T20:10:31.612Z" },
+    { url = "https://files.pythonhosted.org/packages/83/23/15d4552ea28990a74e7696780c438aadd73a20318c47e527b47a4a5a596d/regex-2024.11.6-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:149f5008d286636e48cd0b1dd65018548944e495b0265b45e1bffecce1ef7f39", size = 852896, upload-time = "2024-11-06T20:10:34.054Z" },
+    { url = "https://files.pythonhosted.org/packages/e3/39/ed4416bc90deedbfdada2568b2cb0bc1fdb98efe11f5378d9892b2a88f8f/regex-2024.11.6-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:e5364a4502efca094731680e80009632ad6624084aff9a23ce8c8c6820de3e51", size = 860138, upload-time = "2024-11-06T20:10:36.142Z" },
+    { url = "https://files.pythonhosted.org/packages/93/2d/dd56bb76bd8e95bbce684326302f287455b56242a4f9c61f1bc76e28360e/regex-2024.11.6-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:0a86e7eeca091c09e021db8eb72d54751e527fa47b8d5787caf96d9831bd02ad", size = 787692, upload-time = "2024-11-06T20:10:38.394Z" },
+    { url = "https://files.pythonhosted.org/packages/0b/55/31877a249ab7a5156758246b9c59539abbeba22461b7d8adc9e8475ff73e/regex-2024.11.6-cp312-cp312-win32.whl", hash = "sha256:32f9a4c643baad4efa81d549c2aadefaeba12249b2adc5af541759237eee1c54", size = 262135, upload-time = "2024-11-06T20:10:40.367Z" },
+    { url = "https://files.pythonhosted.org/packages/38/ec/ad2d7de49a600cdb8dd78434a1aeffe28b9d6fc42eb36afab4a27ad23384/regex-2024.11.6-cp312-cp312-win_amd64.whl", hash = "sha256:a93c194e2df18f7d264092dc8539b8ffb86b45b899ab976aa15d48214138e81b", size = 273567, upload-time = "2024-11-06T20:10:43.467Z" },
+    { url = "https://files.pythonhosted.org/packages/90/73/bcb0e36614601016552fa9344544a3a2ae1809dc1401b100eab02e772e1f/regex-2024.11.6-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:a6ba92c0bcdf96cbf43a12c717eae4bc98325ca3730f6b130ffa2e3c3c723d84", size = 483525, upload-time = "2024-11-06T20:10:45.19Z" },
+    { url = "https://files.pythonhosted.org/packages/0f/3f/f1a082a46b31e25291d830b369b6b0c5576a6f7fb89d3053a354c24b8a83/regex-2024.11.6-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:525eab0b789891ac3be914d36893bdf972d483fe66551f79d3e27146191a37d4", size = 288324, upload-time = "2024-11-06T20:10:47.177Z" },
+    { url = "https://files.pythonhosted.org/packages/09/c9/4e68181a4a652fb3ef5099e077faf4fd2a694ea6e0f806a7737aff9e758a/regex-2024.11.6-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:086a27a0b4ca227941700e0b31425e7a28ef1ae8e5e05a33826e17e47fbfdba0", size = 284617, upload-time = "2024-11-06T20:10:49.312Z" },
+    { url = "https://files.pythonhosted.org/packages/fc/fd/37868b75eaf63843165f1d2122ca6cb94bfc0271e4428cf58c0616786dce/regex-2024.11.6-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:bde01f35767c4a7899b7eb6e823b125a64de314a8ee9791367c9a34d56af18d0", size = 795023, upload-time = "2024-11-06T20:10:51.102Z" },
+    { url = "https://files.pythonhosted.org/packages/c4/7c/d4cd9c528502a3dedb5c13c146e7a7a539a3853dc20209c8e75d9ba9d1b2/regex-2024.11.6-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:b583904576650166b3d920d2bcce13971f6f9e9a396c673187f49811b2769dc7", size = 833072, upload-time = "2024-11-06T20:10:52.926Z" },
+    { url = "https://files.pythonhosted.org/packages/4f/db/46f563a08f969159c5a0f0e722260568425363bea43bb7ae370becb66a67/regex-2024.11.6-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:1c4de13f06a0d54fa0d5ab1b7138bfa0d883220965a29616e3ea61b35d5f5fc7", size = 823130, upload-time = "2024-11-06T20:10:54.828Z" },
+    { url = "https://files.pythonhosted.org/packages/db/60/1eeca2074f5b87df394fccaa432ae3fc06c9c9bfa97c5051aed70e6e00c2/regex-2024.11.6-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:3cde6e9f2580eb1665965ce9bf17ff4952f34f5b126beb509fee8f4e994f143c", size = 796857, upload-time = "2024-11-06T20:10:56.634Z" },
+    { url = "https://files.pythonhosted.org/packages/10/db/ac718a08fcee981554d2f7bb8402f1faa7e868c1345c16ab1ebec54b0d7b/regex-2024.11.6-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0d7f453dca13f40a02b79636a339c5b62b670141e63efd511d3f8f73fba162b3", size = 784006, upload-time = "2024-11-06T20:10:59.369Z" },
+    { url = "https://files.pythonhosted.org/packages/c2/41/7da3fe70216cea93144bf12da2b87367590bcf07db97604edeea55dac9ad/regex-2024.11.6-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:59dfe1ed21aea057a65c6b586afd2a945de04fc7db3de0a6e3ed5397ad491b07", size = 781650, upload-time = "2024-11-06T20:11:02.042Z" },
+    { url = "https://files.pythonhosted.org/packages/a7/d5/880921ee4eec393a4752e6ab9f0fe28009435417c3102fc413f3fe81c4e5/regex-2024.11.6-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:b97c1e0bd37c5cd7902e65f410779d39eeda155800b65fc4d04cc432efa9bc6e", size = 789545, upload-time = "2024-11-06T20:11:03.933Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/96/53770115e507081122beca8899ab7f5ae28ae790bfcc82b5e38976df6a77/regex-2024.11.6-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:f9d1e379028e0fc2ae3654bac3cbbef81bf3fd571272a42d56c24007979bafb6", size = 853045, upload-time = "2024-11-06T20:11:06.497Z" },
+    { url = "https://files.pythonhosted.org/packages/31/d3/1372add5251cc2d44b451bd94f43b2ec78e15a6e82bff6a290ef9fd8f00a/regex-2024.11.6-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:13291b39131e2d002a7940fb176e120bec5145f3aeb7621be6534e46251912c4", size = 860182, upload-time = "2024-11-06T20:11:09.06Z" },
+    { url = "https://files.pythonhosted.org/packages/ed/e3/c446a64984ea9f69982ba1a69d4658d5014bc7a0ea468a07e1a1265db6e2/regex-2024.11.6-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:4f51f88c126370dcec4908576c5a627220da6c09d0bff31cfa89f2523843316d", size = 787733, upload-time = "2024-11-06T20:11:11.256Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/f1/e40c8373e3480e4f29f2692bd21b3e05f296d3afebc7e5dcf21b9756ca1c/regex-2024.11.6-cp313-cp313-win32.whl", hash = "sha256:63b13cfd72e9601125027202cad74995ab26921d8cd935c25f09c630436348ff", size = 262122, upload-time = "2024-11-06T20:11:13.161Z" },
+    { url = "https://files.pythonhosted.org/packages/45/94/bc295babb3062a731f52621cdc992d123111282e291abaf23faa413443ea/regex-2024.11.6-cp313-cp313-win_amd64.whl", hash = "sha256:2b3361af3198667e99927da8b84c1b010752fa4b1115ee30beaa332cabc3ef1a", size = 273545, upload-time = "2024-11-06T20:11:15Z" },
+]
+
+[[package]]
+name = "requests"
+version = "2.32.4"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "certifi" },
+    { name = "charset-normalizer" },
+    { name = "idna" },
+    { name = "urllib3" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/e1/0a/929373653770d8a0d7ea76c37de6e41f11eb07559b103b1c02cafb3f7cf8/requests-2.32.4.tar.gz", hash = "sha256:27d0316682c8a29834d3264820024b62a36942083d52caf2f14c0591336d3422", size = 135258, upload-time = "2025-06-09T16:43:07.34Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7c/e4/56027c4a6b4ae70ca9de302488c5ca95ad4a39e190093d6c1a8ace08341b/requests-2.32.4-py3-none-any.whl", hash = "sha256:27babd3cda2a6d50b30443204ee89830707d396671944c998b5975b031ac2b2c", size = 64847, upload-time = "2025-06-09T16:43:05.728Z" },
+]
+
+[[package]]
+name = "requests-oauthlib"
+version = "2.0.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "oauthlib" },
+    { name = "requests" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/42/f2/05f29bc3913aea15eb670be136045bf5c5bbf4b99ecb839da9b422bb2c85/requests-oauthlib-2.0.0.tar.gz", hash = "sha256:b3dffaebd884d8cd778494369603a9e7b58d29111bf6b41bdc2dcd87203af4e9", size = 55650, upload-time = "2024-03-22T20:32:29.939Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/3b/5d/63d4ae3b9daea098d5d6f5da83984853c1bbacd5dc826764b249fe119d24/requests_oauthlib-2.0.0-py2.py3-none-any.whl", hash = "sha256:7dd8a5c40426b779b0868c404bdef9768deccf22749cde15852df527e6269b36", size = 24179, upload-time = "2024-03-22T20:32:28.055Z" },
+]
+
+[[package]]
+name = "requests-toolbelt"
+version = "1.0.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "requests" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/f3/61/d7545dafb7ac2230c70d38d31cbfe4cc64f7144dc41f6e4e4b78ecd9f5bb/requests-toolbelt-1.0.0.tar.gz", hash = "sha256:7681a0a3d047012b5bdc0ee37d7f8f07ebe76ab08caeccfc3921ce23c88d5bc6", size = 206888, upload-time = "2023-05-01T04:11:33.229Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/3f/51/d4db610ef29373b879047326cbf6fa98b6c1969d6f6dc423279de2b1be2c/requests_toolbelt-1.0.0-py2.py3-none-any.whl", hash = "sha256:cccfdd665f0a24fcf4726e690f65639d272bb0637b9b92dfd91a5568ccf6bd06", size = 54481, upload-time = "2023-05-01T04:11:28.427Z" },
+]
+
+[[package]]
+name = "requirements-parser"
+version = "0.13.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "packaging" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/95/96/fb6dbfebb524d5601d359a47c78fe7ba1eef90fc4096404aa60c9a906fbb/requirements_parser-0.13.0.tar.gz", hash = "sha256:0843119ca2cb2331de4eb31b10d70462e39ace698fd660a915c247d2301a4418", size = 22630, upload-time = "2025-05-21T13:42:05.464Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/bd/60/50fbb6ffb35f733654466f1a90d162bcbea358adc3b0871339254fbc37b2/requirements_parser-0.13.0-py3-none-any.whl", hash = "sha256:2b3173faecf19ec5501971b7222d38f04cb45bb9d87d0ad629ca71e2e62ded14", size = 14782, upload-time = "2025-05-21T13:42:04.007Z" },
+]
+
+[[package]]
+name = "resolvelib"
+version = "1.0.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ce/10/f699366ce577423cbc3df3280063099054c23df70856465080798c6ebad6/resolvelib-1.0.1.tar.gz", hash = "sha256:04ce76cbd63fded2078ce224785da6ecd42b9564b1390793f64ddecbe997b309", size = 21065, upload-time = "2023-03-09T05:10:38.292Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d2/fc/e9ccf0521607bcd244aa0b3fbd574f71b65e9ce6a112c83af988bbbe2e23/resolvelib-1.0.1-py2.py3-none-any.whl", hash = "sha256:d2da45d1a8dfee81bdd591647783e340ef3bcb104b54c383f70d422ef5cc7dbf", size = 17194, upload-time = "2023-03-09T05:10:36.214Z" },
+]
+
+[[package]]
+name = "retrying"
+version = "1.4.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/c8/5a/b17e1e257d3e6f2e7758930e1256832c9ddd576f8631781e6a072914befa/retrying-1.4.2.tar.gz", hash = "sha256:d102e75d53d8d30b88562d45361d6c6c934da06fab31bd81c0420acb97a8ba39", size = 11411, upload-time = "2025-08-03T03:35:25.189Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/67/f3/6cd296376653270ac1b423bb30bd70942d9916b6978c6f40472d6ac038e7/retrying-1.4.2-py3-none-any.whl", hash = "sha256:bbc004aeb542a74f3569aeddf42a2516efefcdaff90df0eb38fbfbf19f179f59", size = 10859, upload-time = "2025-08-03T03:35:23.829Z" },
+]
+
+[[package]]
+name = "rich"
+version = "13.9.4"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "markdown-it-py" },
+    { name = "pygments" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ab/3a/0316b28d0761c6734d6bc14e770d85506c986c85ffb239e688eeaab2c2bc/rich-13.9.4.tar.gz", hash = "sha256:439594978a49a09530cff7ebc4b5c7103ef57baf48d5ea3184f21d9a2befa098", size = 223149, upload-time = "2024-11-01T16:43:57.873Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/19/71/39c7c0d87f8d4e6c020a393182060eaefeeae6c01dab6a84ec346f2567df/rich-13.9.4-py3-none-any.whl", hash = "sha256:6049d5e6ec054bf2779ab3358186963bac2ea89175919d699e378b99738c2a90", size = 242424, upload-time = "2024-11-01T16:43:55.817Z" },
+]
+
+[[package]]
+name = "rich-toolkit"
+version = "0.14.6"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "click" },
+    { name = "rich" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/f6/31/b6d055f291a660a7bcaec4bcc9457b9fef8ecb6293e527b1eef1840aefd4/rich_toolkit-0.14.6.tar.gz", hash = "sha256:9dbd40e83414b84e828bf899115fff8877ce5951b73175f44db142902f07645d", size = 110805, upload-time = "2025-05-12T19:19:15.284Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2e/3c/7a824c0514e87c61000583ac22c8321da6dc8e58a93d5f56e583482a2ee0/rich_toolkit-0.14.6-py3-none-any.whl", hash = "sha256:764f3a5f9e4b539ce805596863299e8982599514906dc5e3ccc2d390ef74c301", size = 24815, upload-time = "2025-05-12T19:19:13.713Z" },
+]
+
+[[package]]
+name = "rpds-py"
+version = "0.25.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/8c/a6/60184b7fc00dd3ca80ac635dd5b8577d444c57e8e8742cecabfacb829921/rpds_py-0.25.1.tar.gz", hash = "sha256:8960b6dac09b62dac26e75d7e2c4a22efb835d827a7278c34f72b2b84fa160e3", size = 27304, upload-time = "2025-05-21T12:46:12.502Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7f/81/28ab0408391b1dc57393653b6a0cf2014cc282cc2909e4615e63e58262be/rpds_py-0.25.1-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:b5ffe453cde61f73fea9430223c81d29e2fbf412a6073951102146c84e19e34c", size = 364647, upload-time = "2025-05-21T12:43:28.559Z" },
+    { url = "https://files.pythonhosted.org/packages/2c/9a/7797f04cad0d5e56310e1238434f71fc6939d0bc517192a18bb99a72a95f/rpds_py-0.25.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:115874ae5e2fdcfc16b2aedc95b5eef4aebe91b28e7e21951eda8a5dc0d3461b", size = 350454, upload-time = "2025-05-21T12:43:30.615Z" },
+    { url = "https://files.pythonhosted.org/packages/69/3c/93d2ef941b04898011e5d6eaa56a1acf46a3b4c9f4b3ad1bbcbafa0bee1f/rpds_py-0.25.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a714bf6e5e81b0e570d01f56e0c89c6375101b8463999ead3a93a5d2a4af91fa", size = 389665, upload-time = "2025-05-21T12:43:32.629Z" },
+    { url = "https://files.pythonhosted.org/packages/c1/57/ad0e31e928751dde8903a11102559628d24173428a0f85e25e187defb2c1/rpds_py-0.25.1-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:35634369325906bcd01577da4c19e3b9541a15e99f31e91a02d010816b49bfda", size = 403873, upload-time = "2025-05-21T12:43:34.576Z" },
+    { url = "https://files.pythonhosted.org/packages/16/ad/c0c652fa9bba778b4f54980a02962748479dc09632e1fd34e5282cf2556c/rpds_py-0.25.1-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d4cb2b3ddc16710548801c6fcc0cfcdeeff9dafbc983f77265877793f2660309", size = 525866, upload-time = "2025-05-21T12:43:36.123Z" },
+    { url = "https://files.pythonhosted.org/packages/2a/39/3e1839bc527e6fcf48d5fec4770070f872cdee6c6fbc9b259932f4e88a38/rpds_py-0.25.1-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:9ceca1cf097ed77e1a51f1dbc8d174d10cb5931c188a4505ff9f3e119dfe519b", size = 416886, upload-time = "2025-05-21T12:43:38.034Z" },
+    { url = "https://files.pythonhosted.org/packages/7a/95/dd6b91cd4560da41df9d7030a038298a67d24f8ca38e150562644c829c48/rpds_py-0.25.1-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2c2cd1a4b0c2b8c5e31ffff50d09f39906fe351389ba143c195566056c13a7ea", size = 390666, upload-time = "2025-05-21T12:43:40.065Z" },
+    { url = "https://files.pythonhosted.org/packages/64/48/1be88a820e7494ce0a15c2d390ccb7c52212370badabf128e6a7bb4cb802/rpds_py-0.25.1-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:1de336a4b164c9188cb23f3703adb74a7623ab32d20090d0e9bf499a2203ad65", size = 425109, upload-time = "2025-05-21T12:43:42.263Z" },
+    { url = "https://files.pythonhosted.org/packages/cf/07/3e2a17927ef6d7720b9949ec1b37d1e963b829ad0387f7af18d923d5cfa5/rpds_py-0.25.1-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:9fca84a15333e925dd59ce01da0ffe2ffe0d6e5d29a9eeba2148916d1824948c", size = 567244, upload-time = "2025-05-21T12:43:43.846Z" },
+    { url = "https://files.pythonhosted.org/packages/d2/e5/76cf010998deccc4f95305d827847e2eae9c568099c06b405cf96384762b/rpds_py-0.25.1-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:88ec04afe0c59fa64e2f6ea0dd9657e04fc83e38de90f6de201954b4d4eb59bd", size = 596023, upload-time = "2025-05-21T12:43:45.932Z" },
+    { url = "https://files.pythonhosted.org/packages/52/9a/df55efd84403736ba37a5a6377b70aad0fd1cb469a9109ee8a1e21299a1c/rpds_py-0.25.1-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:a8bd2f19e312ce3e1d2c635618e8a8d8132892bb746a7cf74780a489f0f6cdcb", size = 561634, upload-time = "2025-05-21T12:43:48.263Z" },
+    { url = "https://files.pythonhosted.org/packages/ab/aa/dc3620dd8db84454aaf9374bd318f1aa02578bba5e567f5bf6b79492aca4/rpds_py-0.25.1-cp312-cp312-win32.whl", hash = "sha256:e5e2f7280d8d0d3ef06f3ec1b4fd598d386cc6f0721e54f09109a8132182fbfe", size = 222713, upload-time = "2025-05-21T12:43:49.897Z" },
+    { url = "https://files.pythonhosted.org/packages/a3/7f/7cef485269a50ed5b4e9bae145f512d2a111ca638ae70cc101f661b4defd/rpds_py-0.25.1-cp312-cp312-win_amd64.whl", hash = "sha256:db58483f71c5db67d643857404da360dce3573031586034b7d59f245144cc192", size = 235280, upload-time = "2025-05-21T12:43:51.893Z" },
+    { url = "https://files.pythonhosted.org/packages/99/f2/c2d64f6564f32af913bf5f3f7ae41c7c263c5ae4c4e8f1a17af8af66cd46/rpds_py-0.25.1-cp312-cp312-win_arm64.whl", hash = "sha256:6d50841c425d16faf3206ddbba44c21aa3310a0cebc3c1cdfc3e3f4f9f6f5728", size = 225399, upload-time = "2025-05-21T12:43:53.351Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/da/323848a2b62abe6a0fec16ebe199dc6889c5d0a332458da8985b2980dffe/rpds_py-0.25.1-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:659d87430a8c8c704d52d094f5ba6fa72ef13b4d385b7e542a08fc240cb4a559", size = 364498, upload-time = "2025-05-21T12:43:54.841Z" },
+    { url = "https://files.pythonhosted.org/packages/1f/b4/4d3820f731c80fd0cd823b3e95b9963fec681ae45ba35b5281a42382c67d/rpds_py-0.25.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:68f6f060f0bbdfb0245267da014d3a6da9be127fe3e8cc4a68c6f833f8a23bb1", size = 350083, upload-time = "2025-05-21T12:43:56.428Z" },
+    { url = "https://files.pythonhosted.org/packages/d5/b1/3a8ee1c9d480e8493619a437dec685d005f706b69253286f50f498cbdbcf/rpds_py-0.25.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:083a9513a33e0b92cf6e7a6366036c6bb43ea595332c1ab5c8ae329e4bcc0a9c", size = 389023, upload-time = "2025-05-21T12:43:57.995Z" },
+    { url = "https://files.pythonhosted.org/packages/3b/31/17293edcfc934dc62c3bf74a0cb449ecd549531f956b72287203e6880b87/rpds_py-0.25.1-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:816568614ecb22b18a010c7a12559c19f6fe993526af88e95a76d5a60b8b75fb", size = 403283, upload-time = "2025-05-21T12:43:59.546Z" },
+    { url = "https://files.pythonhosted.org/packages/d1/ca/e0f0bc1a75a8925024f343258c8ecbd8828f8997ea2ac71e02f67b6f5299/rpds_py-0.25.1-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:3c6564c0947a7f52e4792983f8e6cf9bac140438ebf81f527a21d944f2fd0a40", size = 524634, upload-time = "2025-05-21T12:44:01.087Z" },
+    { url = "https://files.pythonhosted.org/packages/3e/03/5d0be919037178fff33a6672ffc0afa04ea1cfcb61afd4119d1b5280ff0f/rpds_py-0.25.1-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:5c4a128527fe415d73cf1f70a9a688d06130d5810be69f3b553bf7b45e8acf79", size = 416233, upload-time = "2025-05-21T12:44:02.604Z" },
+    { url = "https://files.pythonhosted.org/packages/05/7c/8abb70f9017a231c6c961a8941403ed6557664c0913e1bf413cbdc039e75/rpds_py-0.25.1-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a49e1d7a4978ed554f095430b89ecc23f42014a50ac385eb0c4d163ce213c325", size = 390375, upload-time = "2025-05-21T12:44:04.162Z" },
+    { url = "https://files.pythonhosted.org/packages/7a/ac/a87f339f0e066b9535074a9f403b9313fd3892d4a164d5d5f5875ac9f29f/rpds_py-0.25.1-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:d74ec9bc0e2feb81d3f16946b005748119c0f52a153f6db6a29e8cd68636f295", size = 424537, upload-time = "2025-05-21T12:44:06.175Z" },
+    { url = "https://files.pythonhosted.org/packages/1f/8f/8d5c1567eaf8c8afe98a838dd24de5013ce6e8f53a01bd47fe8bb06b5533/rpds_py-0.25.1-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:3af5b4cc10fa41e5bc64e5c198a1b2d2864337f8fcbb9a67e747e34002ce812b", size = 566425, upload-time = "2025-05-21T12:44:08.242Z" },
+    { url = "https://files.pythonhosted.org/packages/95/33/03016a6be5663b389c8ab0bbbcca68d9e96af14faeff0a04affcb587e776/rpds_py-0.25.1-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:79dc317a5f1c51fd9c6a0c4f48209c6b8526d0524a6904fc1076476e79b00f98", size = 595197, upload-time = "2025-05-21T12:44:10.449Z" },
+    { url = "https://files.pythonhosted.org/packages/33/8d/da9f4d3e208c82fda311bff0cf0a19579afceb77cf456e46c559a1c075ba/rpds_py-0.25.1-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:1521031351865e0181bc585147624d66b3b00a84109b57fcb7a779c3ec3772cd", size = 561244, upload-time = "2025-05-21T12:44:12.387Z" },
+    { url = "https://files.pythonhosted.org/packages/e2/b3/39d5dcf7c5f742ecd6dbc88f6f84ae54184b92f5f387a4053be2107b17f1/rpds_py-0.25.1-cp313-cp313-win32.whl", hash = "sha256:5d473be2b13600b93a5675d78f59e63b51b1ba2d0476893415dfbb5477e65b31", size = 222254, upload-time = "2025-05-21T12:44:14.261Z" },
+    { url = "https://files.pythonhosted.org/packages/5f/19/2d6772c8eeb8302c5f834e6d0dfd83935a884e7c5ce16340c7eaf89ce925/rpds_py-0.25.1-cp313-cp313-win_amd64.whl", hash = "sha256:a7b74e92a3b212390bdce1d93da9f6488c3878c1d434c5e751cbc202c5e09500", size = 234741, upload-time = "2025-05-21T12:44:16.236Z" },
+    { url = "https://files.pythonhosted.org/packages/5b/5a/145ada26cfaf86018d0eb304fe55eafdd4f0b6b84530246bb4a7c4fb5c4b/rpds_py-0.25.1-cp313-cp313-win_arm64.whl", hash = "sha256:dd326a81afe332ede08eb39ab75b301d5676802cdffd3a8f287a5f0b694dc3f5", size = 224830, upload-time = "2025-05-21T12:44:17.749Z" },
+    { url = "https://files.pythonhosted.org/packages/4b/ca/d435844829c384fd2c22754ff65889c5c556a675d2ed9eb0e148435c6690/rpds_py-0.25.1-cp313-cp313t-macosx_10_12_x86_64.whl", hash = "sha256:a58d1ed49a94d4183483a3ce0af22f20318d4a1434acee255d683ad90bf78129", size = 359668, upload-time = "2025-05-21T12:44:19.322Z" },
+    { url = "https://files.pythonhosted.org/packages/1f/01/b056f21db3a09f89410d493d2f6614d87bb162499f98b649d1dbd2a81988/rpds_py-0.25.1-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:f251bf23deb8332823aef1da169d5d89fa84c89f67bdfb566c49dea1fccfd50d", size = 345649, upload-time = "2025-05-21T12:44:20.962Z" },
+    { url = "https://files.pythonhosted.org/packages/e0/0f/e0d00dc991e3d40e03ca36383b44995126c36b3eafa0ccbbd19664709c88/rpds_py-0.25.1-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:8dbd586bfa270c1103ece2109314dd423df1fa3d9719928b5d09e4840cec0d72", size = 384776, upload-time = "2025-05-21T12:44:22.516Z" },
+    { url = "https://files.pythonhosted.org/packages/9f/a2/59374837f105f2ca79bde3c3cd1065b2f8c01678900924949f6392eab66d/rpds_py-0.25.1-cp313-cp313t-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:6d273f136e912aa101a9274c3145dcbddbe4bac560e77e6d5b3c9f6e0ed06d34", size = 395131, upload-time = "2025-05-21T12:44:24.147Z" },
+    { url = "https://files.pythonhosted.org/packages/9c/dc/48e8d84887627a0fe0bac53f0b4631e90976fd5d35fff8be66b8e4f3916b/rpds_py-0.25.1-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:666fa7b1bd0a3810a7f18f6d3a25ccd8866291fbbc3c9b912b917a6715874bb9", size = 520942, upload-time = "2025-05-21T12:44:25.915Z" },
+    { url = "https://files.pythonhosted.org/packages/7c/f5/ee056966aeae401913d37befeeab57a4a43a4f00099e0a20297f17b8f00c/rpds_py-0.25.1-cp313-cp313t-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:921954d7fbf3fccc7de8f717799304b14b6d9a45bbeec5a8d7408ccbf531faf5", size = 411330, upload-time = "2025-05-21T12:44:27.638Z" },
+    { url = "https://files.pythonhosted.org/packages/ab/74/b2cffb46a097cefe5d17f94ede7a174184b9d158a0aeb195f39f2c0361e8/rpds_py-0.25.1-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f3d86373ff19ca0441ebeb696ef64cb58b8b5cbacffcda5a0ec2f3911732a194", size = 387339, upload-time = "2025-05-21T12:44:29.292Z" },
+    { url = "https://files.pythonhosted.org/packages/7f/9a/0ff0b375dcb5161c2b7054e7d0b7575f1680127505945f5cabaac890bc07/rpds_py-0.25.1-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.whl", hash = "sha256:c8980cde3bb8575e7c956a530f2c217c1d6aac453474bf3ea0f9c89868b531b6", size = 418077, upload-time = "2025-05-21T12:44:30.877Z" },
+    { url = "https://files.pythonhosted.org/packages/0d/a1/fda629bf20d6b698ae84c7c840cfb0e9e4200f664fc96e1f456f00e4ad6e/rpds_py-0.25.1-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:8eb8c84ecea987a2523e057c0d950bcb3f789696c0499290b8d7b3107a719d78", size = 562441, upload-time = "2025-05-21T12:44:32.541Z" },
+    { url = "https://files.pythonhosted.org/packages/20/15/ce4b5257f654132f326f4acd87268e1006cc071e2c59794c5bdf4bebbb51/rpds_py-0.25.1-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:e43a005671a9ed5a650f3bc39e4dbccd6d4326b24fb5ea8be5f3a43a6f576c72", size = 590750, upload-time = "2025-05-21T12:44:34.557Z" },
+    { url = "https://files.pythonhosted.org/packages/fb/ab/e04bf58a8d375aeedb5268edcc835c6a660ebf79d4384d8e0889439448b0/rpds_py-0.25.1-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:58f77c60956501a4a627749a6dcb78dac522f249dd96b5c9f1c6af29bfacfb66", size = 558891, upload-time = "2025-05-21T12:44:37.358Z" },
+    { url = "https://files.pythonhosted.org/packages/90/82/cb8c6028a6ef6cd2b7991e2e4ced01c854b6236ecf51e81b64b569c43d73/rpds_py-0.25.1-cp313-cp313t-win32.whl", hash = "sha256:2cb9e5b5e26fc02c8a4345048cd9998c2aca7c2712bd1b36da0c72ee969a3523", size = 218718, upload-time = "2025-05-21T12:44:38.969Z" },
+    { url = "https://files.pythonhosted.org/packages/b6/97/5a4b59697111c89477d20ba8a44df9ca16b41e737fa569d5ae8bff99e650/rpds_py-0.25.1-cp313-cp313t-win_amd64.whl", hash = "sha256:401ca1c4a20cc0510d3435d89c069fe0a9ae2ee6495135ac46bdd49ec0495763", size = 232218, upload-time = "2025-05-21T12:44:40.512Z" },
+]
+
+[[package]]
+name = "rsa"
+version = "4.9.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "pyasn1" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/da/8a/22b7beea3ee0d44b1916c0c1cb0ee3af23b700b6da9f04991899d0c555d4/rsa-4.9.1.tar.gz", hash = "sha256:e7bdbfdb5497da4c07dfd35530e1a902659db6ff241e39d9953cad06ebd0ae75", size = 29034, upload-time = "2025-04-16T09:51:18.218Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/64/8d/0133e4eb4beed9e425d9a98ed6e081a55d195481b7632472be1af08d2f6b/rsa-4.9.1-py3-none-any.whl", hash = "sha256:68635866661c6836b8d39430f97a996acbd61bfa49406748ea243539fe239762", size = 34696, upload-time = "2025-04-16T09:51:17.142Z" },
+]
+
+[[package]]
+name = "s3transfer"
+version = "0.14.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "botocore" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/62/74/8d69dcb7a9efe8baa2046891735e5dfe433ad558ae23d9e3c14c633d1d58/s3transfer-0.14.0.tar.gz", hash = "sha256:eff12264e7c8b4985074ccce27a3b38a485bb7f7422cc8046fee9be4983e4125", size = 151547, upload-time = "2025-09-09T19:23:31.089Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/48/f0/ae7ca09223a81a1d890b2557186ea015f6e0502e9b8cb8e1813f1d8cfa4e/s3transfer-0.14.0-py3-none-any.whl", hash = "sha256:ea3b790c7077558ed1f02a3072fb3cb992bbbd253392f4b6e9e8976941c7d456", size = 85712, upload-time = "2025-09-09T19:23:30.041Z" },
+]
+
+[[package]]
+name = "sentry-sdk"
+version = "2.29.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "certifi" },
+    { name = "urllib3" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/22/67/d552a5f8e5a6a56b2feea6529e2d8ccd54349084c84176d5a1f7295044bc/sentry_sdk-2.29.1.tar.gz", hash = "sha256:8d4a0206b95fa5fe85e5e7517ed662e3888374bdc342c00e435e10e6d831aa6d", size = 325518, upload-time = "2025-05-19T14:27:38.512Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f0/e5/da07b0bd832cefd52d16f2b9bbbe31624d57552602c06631686b93ccb1bd/sentry_sdk-2.29.1-py2.py3-none-any.whl", hash = "sha256:90862fe0616ded4572da6c9dadb363121a1ae49a49e21c418f0634e9d10b4c19", size = 341553, upload-time = "2025-05-19T14:27:36.882Z" },
+]
+
+[[package]]
+name = "setproctitle"
+version = "1.3.6"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/9e/af/56efe21c53ac81ac87e000b15e60b3d8104224b4313b6eacac3597bd183d/setproctitle-1.3.6.tar.gz", hash = "sha256:c9f32b96c700bb384f33f7cf07954bb609d35dd82752cef57fb2ee0968409169", size = 26889, upload-time = "2025-04-29T13:35:00.184Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8f/fb/99456fd94d4207c5f6c40746a048a33a52b4239cd7d9c8d4889e2210ec82/setproctitle-1.3.6-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:af44bb7a1af163806bbb679eb8432fa7b4fb6d83a5d403b541b675dcd3798638", size = 17399, upload-time = "2025-04-29T13:33:13.406Z" },
+    { url = "https://files.pythonhosted.org/packages/d5/48/9699191fe6062827683c43bfa9caac33a2c89f8781dd8c7253fa3dba85fd/setproctitle-1.3.6-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:3cca16fd055316a48f0debfcbfb6af7cea715429fc31515ab3fcac05abd527d8", size = 11966, upload-time = "2025-04-29T13:33:14.976Z" },
+    { url = "https://files.pythonhosted.org/packages/33/03/b085d192b9ecb9c7ce6ad6ef30ecf4110b7f39430b58a56245569827fcf4/setproctitle-1.3.6-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:ea002088d5554fd75e619742cefc78b84a212ba21632e59931b3501f0cfc8f67", size = 32017, upload-time = "2025-04-29T13:33:16.163Z" },
+    { url = "https://files.pythonhosted.org/packages/ae/68/c53162e645816f97212002111420d1b2f75bf6d02632e37e961dc2cd6d8b/setproctitle-1.3.6-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:bb465dd5825356c1191a038a86ee1b8166e3562d6e8add95eec04ab484cfb8a2", size = 33419, upload-time = "2025-04-29T13:33:18.239Z" },
+    { url = "https://files.pythonhosted.org/packages/ac/0d/119a45d15a816a6cf5ccc61b19729f82620095b27a47e0a6838216a95fae/setproctitle-1.3.6-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d2c8e20487b3b73c1fa72c56f5c89430617296cd380373e7af3a538a82d4cd6d", size = 30711, upload-time = "2025-04-29T13:33:19.571Z" },
+    { url = "https://files.pythonhosted.org/packages/e3/fb/5e9b5068df9e9f31a722a775a5e8322a29a638eaaa3eac5ea7f0b35e6314/setproctitle-1.3.6-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:a0d6252098e98129a1decb59b46920d4eca17b0395f3d71b0d327d086fefe77d", size = 31742, upload-time = "2025-04-29T13:33:21.172Z" },
+    { url = "https://files.pythonhosted.org/packages/35/88/54de1e73e8fce87d587889c7eedb48fc4ee2bbe4e4ca6331690d03024f86/setproctitle-1.3.6-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:cf355fbf0d4275d86f9f57be705d8e5eaa7f8ddb12b24ced2ea6cbd68fdb14dc", size = 31925, upload-time = "2025-04-29T13:33:22.427Z" },
+    { url = "https://files.pythonhosted.org/packages/f3/01/65948d7badd66e63e3db247b923143da142790fa293830fdecf832712c2d/setproctitle-1.3.6-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:e288f8a162d663916060beb5e8165a8551312b08efee9cf68302687471a6545d", size = 30981, upload-time = "2025-04-29T13:33:23.739Z" },
+    { url = "https://files.pythonhosted.org/packages/22/20/c495e61786f1d38d5dc340b9d9077fee9be3dfc7e89f515afe12e1526dbc/setproctitle-1.3.6-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:b2e54f4a2dc6edf0f5ea5b1d0a608d2af3dcb5aa8c8eeab9c8841b23e1b054fe", size = 33209, upload-time = "2025-04-29T13:33:24.915Z" },
+    { url = "https://files.pythonhosted.org/packages/98/3f/a457b8550fbd34d5b482fe20b8376b529e76bf1fbf9a474a6d9a641ab4ad/setproctitle-1.3.6-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:b6f4abde9a2946f57e8daaf1160b2351bcf64274ef539e6675c1d945dbd75e2a", size = 31587, upload-time = "2025-04-29T13:33:26.123Z" },
+    { url = "https://files.pythonhosted.org/packages/44/fe/743517340e5a635e3f1c4310baea20c16c66202f96a6f4cead222ffd6d84/setproctitle-1.3.6-cp312-cp312-win32.whl", hash = "sha256:db608db98ccc21248370d30044a60843b3f0f3d34781ceeea67067c508cd5a28", size = 11487, upload-time = "2025-04-29T13:33:27.403Z" },
+    { url = "https://files.pythonhosted.org/packages/60/9a/d88f1c1f0f4efff1bd29d9233583ee341114dda7d9613941453984849674/setproctitle-1.3.6-cp312-cp312-win_amd64.whl", hash = "sha256:082413db8a96b1f021088e8ec23f0a61fec352e649aba20881895815388b66d3", size = 12208, upload-time = "2025-04-29T13:33:28.852Z" },
+    { url = "https://files.pythonhosted.org/packages/89/76/f1a2fdbf9b9602945a7489ba5c52e9863de37381ef1a85a2b9ed0ff8bc79/setproctitle-1.3.6-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:e2a9e62647dc040a76d55563580bf3bb8fe1f5b6ead08447c2ed0d7786e5e794", size = 17392, upload-time = "2025-04-29T13:33:30.925Z" },
+    { url = "https://files.pythonhosted.org/packages/5c/5b/4e0db8b10b4543afcb3dbc0827793d46e43ec1de6b377e313af3703d08e0/setproctitle-1.3.6-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:751ba352ed922e0af60458e961167fa7b732ac31c0ddd1476a2dfd30ab5958c5", size = 11951, upload-time = "2025-04-29T13:33:32.296Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/fe/d5d00aaa700fe1f6160b6e95c225b29c01f4d9292176d48fd968815163ea/setproctitle-1.3.6-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:7890e291bf4708e3b61db9069ea39b3ab0651e42923a5e1f4d78a7b9e4b18301", size = 32087, upload-time = "2025-04-29T13:33:33.469Z" },
+    { url = "https://files.pythonhosted.org/packages/9f/b3/894b827b93ef813c082479bebf88185860f01ac243df737823dd705e7fff/setproctitle-1.3.6-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:b2b17855ed7f994f3f259cf2dfbfad78814538536fa1a91b50253d84d87fd88d", size = 33502, upload-time = "2025-04-29T13:33:34.831Z" },
+    { url = "https://files.pythonhosted.org/packages/b2/cd/5330734cca1a4cfcb721432c22cb7899ff15a4101ba868b2ef452ffafea1/setproctitle-1.3.6-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:2e51ec673513465663008ce402171192a053564865c2fc6dc840620871a9bd7c", size = 30713, upload-time = "2025-04-29T13:33:36.739Z" },
+    { url = "https://files.pythonhosted.org/packages/fa/d3/c2590c5daa2e9a008d3f2b16c0f4a351826193be55f147cb32af49c6d814/setproctitle-1.3.6-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:63cc10352dc6cf35a33951656aa660d99f25f574eb78132ce41a85001a638aa7", size = 31792, upload-time = "2025-04-29T13:33:37.974Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/b1/c553ed5af8cfcecd5ae7737e63af58a17a03d26f3d61868c7eb20bf7e3cf/setproctitle-1.3.6-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:0dba8faee2e4a96e934797c9f0f2d093f8239bf210406a99060b3eabe549628e", size = 31927, upload-time = "2025-04-29T13:33:39.203Z" },
+    { url = "https://files.pythonhosted.org/packages/70/78/2d5385206540127a3dca0ff83225b1ac66873f5cc89d4a6d3806c92f5ae2/setproctitle-1.3.6-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:e3e44d08b61de0dd6f205528498f834a51a5c06689f8fb182fe26f3a3ce7dca9", size = 30981, upload-time = "2025-04-29T13:33:40.431Z" },
+    { url = "https://files.pythonhosted.org/packages/31/62/e3e4a4e006d0e549748e53cded4ff3b667be0602860fc61b7de8b412b667/setproctitle-1.3.6-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:de004939fc3fd0c1200d26ea9264350bfe501ffbf46c8cf5dc7f345f2d87a7f1", size = 33244, upload-time = "2025-04-29T13:33:41.817Z" },
+    { url = "https://files.pythonhosted.org/packages/aa/05/4b223fd4ef94e105dc7aff27fa502fb7200cf52be2bb0c064bd2406b5611/setproctitle-1.3.6-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:3f8194b4d631b003a1176a75d1acd545e04b1f54b821638e098a93e6e62830ef", size = 31630, upload-time = "2025-04-29T13:33:43.093Z" },
+    { url = "https://files.pythonhosted.org/packages/1b/ba/5f68eb969f7336f54b54a599fd3ffbd7662f9733b080bc8598705971b3dd/setproctitle-1.3.6-cp313-cp313-win32.whl", hash = "sha256:d714e002dd3638170fe7376dc1b686dbac9cb712cde3f7224440af722cc9866a", size = 11480, upload-time = "2025-04-29T13:34:01.257Z" },
+    { url = "https://files.pythonhosted.org/packages/ba/f5/7f47f0ca35c9c357f16187cee9229f3eda0237bc6fdd3061441336f361c0/setproctitle-1.3.6-cp313-cp313-win_amd64.whl", hash = "sha256:b70c07409d465f3a8b34d52f863871fb8a00755370791d2bd1d4f82b3cdaf3d5", size = 12198, upload-time = "2025-04-29T13:34:02.293Z" },
+    { url = "https://files.pythonhosted.org/packages/39/ad/c3941b8fc6b32a976c9e2d9615a90ae793b69cd010ca8c3575dbc822104f/setproctitle-1.3.6-cp313-cp313t-macosx_10_13_universal2.whl", hash = "sha256:23a57d3b8f1549515c2dbe4a2880ebc1f27780dc126c5e064167563e015817f5", size = 17401, upload-time = "2025-04-29T13:33:44.186Z" },
+    { url = "https://files.pythonhosted.org/packages/04/38/a184f857b988d3a9c401e470a4e38182a5c99ee77bf90432d7665e9d35a3/setproctitle-1.3.6-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:81c443310831e29fabbd07b75ebbfa29d0740b56f5907c6af218482d51260431", size = 11959, upload-time = "2025-04-29T13:33:45.71Z" },
+    { url = "https://files.pythonhosted.org/packages/b7/b9/4878ef9d8483adfd1edf6bf95151362aaec0d05aac306a97ff0383f491b5/setproctitle-1.3.6-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d88c63bd395c787b0aa81d8bbc22c1809f311032ce3e823a6517b711129818e4", size = 33463, upload-time = "2025-04-29T13:33:46.913Z" },
+    { url = "https://files.pythonhosted.org/packages/cc/60/3ef49d1931aff2a36a7324a49cca10d77ef03e0278452fd468c33a52d7e3/setproctitle-1.3.6-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d73f14b86d0e2858ece6bf5807c9889670e392c001d414b4293d0d9b291942c3", size = 34959, upload-time = "2025-04-29T13:33:48.216Z" },
+    { url = "https://files.pythonhosted.org/packages/81/c6/dee0a973acecefb0db6c9c2e0ea7f18b7e4db773a72e534741ebdee8bbb8/setproctitle-1.3.6-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:3393859eb8f19f5804049a685bf286cb08d447e28ba5c6d8543c7bf5500d5970", size = 32055, upload-time = "2025-04-29T13:33:49.443Z" },
+    { url = "https://files.pythonhosted.org/packages/ea/a5/5dd5c4192cf18d16349a32a07f728a9a48a2a05178e16966cabd6645903e/setproctitle-1.3.6-cp313-cp313t-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:785cd210c0311d9be28a70e281a914486d62bfd44ac926fcd70cf0b4d65dff1c", size = 32986, upload-time = "2025-04-29T13:33:51.519Z" },
+    { url = "https://files.pythonhosted.org/packages/df/a6/1508d37eb8008670d33f13fcdb91cbd8ef54697276469abbfdd3d4428c59/setproctitle-1.3.6-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:c051f46ed1e13ba8214b334cbf21902102807582fbfaf0fef341b9e52f0fafbf", size = 32736, upload-time = "2025-04-29T13:33:52.852Z" },
+    { url = "https://files.pythonhosted.org/packages/1a/73/c84ec8880d543766a12fcd6b65dbd013770974a40577889f357409b0441e/setproctitle-1.3.6-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:49498ebf68ca3e75321ffe634fcea5cc720502bfaa79bd6b03ded92ce0dc3c24", size = 31945, upload-time = "2025-04-29T13:33:54.665Z" },
+    { url = "https://files.pythonhosted.org/packages/95/0a/126b9ff7a406a69a62825fe5bd6d1ba8671919a7018c4f9e2c63f49bfcb6/setproctitle-1.3.6-cp313-cp313t-musllinux_1_2_ppc64le.whl", hash = "sha256:4431629c178193f23c538cb1de3da285a99ccc86b20ee91d81eb5f1a80e0d2ba", size = 34333, upload-time = "2025-04-29T13:33:56.101Z" },
+    { url = "https://files.pythonhosted.org/packages/9a/fd/5474b04f1c013ff460129d2bc774557dd6e186da4667865efef9a83bf378/setproctitle-1.3.6-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:d136fbf8ad4321716e44d6d6b3d8dffb4872626010884e07a1db54b7450836cf", size = 32508, upload-time = "2025-04-29T13:33:57.43Z" },
+    { url = "https://files.pythonhosted.org/packages/32/21/2503e38520cb076a7ecaef6a35d6a6fa89cf02af3541c84c811fd7500d20/setproctitle-1.3.6-cp313-cp313t-win32.whl", hash = "sha256:d483cc23cc56ab32911ea0baa0d2d9ea7aa065987f47de847a0a93a58bf57905", size = 11482, upload-time = "2025-04-29T13:33:58.602Z" },
+    { url = "https://files.pythonhosted.org/packages/65/23/7833d75a27fba25ddc5cd3b54cd03c4bf8e18b8e2dbec622eb6326278ce8/setproctitle-1.3.6-cp313-cp313t-win_amd64.whl", hash = "sha256:74973aebea3543ad033b9103db30579ec2b950a466e09f9c2180089e8346e0ec", size = 12209, upload-time = "2025-04-29T13:33:59.727Z" },
+]
+
+[[package]]
+name = "setuptools"
+version = "80.8.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/8d/d2/ec1acaaff45caed5c2dedb33b67055ba9d4e96b091094df90762e60135fe/setuptools-80.8.0.tar.gz", hash = "sha256:49f7af965996f26d43c8ae34539c8d99c5042fbff34302ea151eaa9c207cd257", size = 1319720, upload-time = "2025-05-20T14:02:53.503Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/58/29/93c53c098d301132196c3238c312825324740851d77a8500a2462c0fd888/setuptools-80.8.0-py3-none-any.whl", hash = "sha256:95a60484590d24103af13b686121328cc2736bee85de8936383111e421b9edc0", size = 1201470, upload-time = "2025-05-20T14:02:51.348Z" },
+]
+
+[[package]]
+name = "shellingham"
+version = "1.5.4"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/58/15/8b3609fd3830ef7b27b655beb4b4e9c62313a4e8da8c676e142cc210d58e/shellingham-1.5.4.tar.gz", hash = "sha256:8dbca0739d487e5bd35ab3ca4b36e11c4078f3a234bfce294b0a0291363404de", size = 10310, upload-time = "2023-10-24T04:13:40.426Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e0/f9/0595336914c5619e5f28a1fb793285925a8cd4b432c9da0a987836c7f822/shellingham-1.5.4-py2.py3-none-any.whl", hash = "sha256:7ecfff8f2fd72616f7481040475a65b2bf8af90a56c89140852d1120324e8686", size = 9755, upload-time = "2023-10-24T04:13:38.866Z" },
+]
+
+[[package]]
+name = "simple-websocket"
+version = "1.1.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "wsproto" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/b0/d4/bfa032f961103eba93de583b161f0e6a5b63cebb8f2c7d0c6e6efe1e3d2e/simple_websocket-1.1.0.tar.gz", hash = "sha256:7939234e7aa067c534abdab3a9ed933ec9ce4691b0713c78acb195560aa52ae4", size = 17300, upload-time = "2024-10-10T22:39:31.412Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/52/59/0782e51887ac6b07ffd1570e0364cf901ebc36345fea669969d2084baebb/simple_websocket-1.1.0-py3-none-any.whl", hash = "sha256:4af6069630a38ed6c561010f0e11a5bc0d4ca569b36306eb257cd9a192497c8c", size = 13842, upload-time = "2024-10-10T22:39:29.645Z" },
+]
+
+[[package]]
+name = "six"
+version = "1.17.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/94/e7/b2c673351809dca68a0e064b6af791aa332cf192da575fd474ed7d6f16a2/six-1.17.0.tar.gz", hash = "sha256:ff70335d468e7eb6ec65b95b99d3a2836546063f63acc5171de367e834932a81", size = 34031, upload-time = "2024-12-04T17:35:28.174Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/b7/ce/149a00dd41f10bc29e5921b496af8b574d8413afcd5e30dfa0ed46c2cc5e/six-1.17.0-py2.py3-none-any.whl", hash = "sha256:4721f391ed90541fddacab5acf947aa0d3dc7d27b2e1e8eda2be8970586c3274", size = 11050, upload-time = "2024-12-04T17:35:26.475Z" },
+]
+
+[[package]]
+name = "smmap"
+version = "5.0.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/44/cd/a040c4b3119bbe532e5b0732286f805445375489fceaec1f48306068ee3b/smmap-5.0.2.tar.gz", hash = "sha256:26ea65a03958fa0c8a1c7e8c7a58fdc77221b8910f6be2131affade476898ad5", size = 22329, upload-time = "2025-01-02T07:14:40.909Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/04/be/d09147ad1ec7934636ad912901c5fd7667e1c858e19d355237db0d0cd5e4/smmap-5.0.2-py3-none-any.whl", hash = "sha256:b30115f0def7d7531d22a0fb6502488d879e75b260a9db4d0819cfb25403af5e", size = 24303, upload-time = "2025-01-02T07:14:38.724Z" },
+]
+
+[[package]]
+name = "sniffio"
+version = "1.3.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/a2/87/a6771e1546d97e7e041b6ae58d80074f81b7d5121207425c964ddf5cfdbd/sniffio-1.3.1.tar.gz", hash = "sha256:f4324edc670a0f49750a81b895f35c3adb843cca46f0530f79fc1babb23789dc", size = 20372, upload-time = "2024-02-25T23:20:04.057Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e9/44/75a9c9421471a6c4805dbf2356f7c181a29c1879239abab1ea2cc8f38b40/sniffio-1.3.1-py3-none-any.whl", hash = "sha256:2f6da418d1f1e0fddd844478f41680e794e6051915791a034ff65e5f100525a2", size = 10235, upload-time = "2024-02-25T23:20:01.196Z" },
+]
+
+[[package]]
+name = "soupsieve"
+version = "2.7"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/3f/f4/4a80cd6ef364b2e8b65b15816a843c0980f7a5a2b4dc701fc574952aa19f/soupsieve-2.7.tar.gz", hash = "sha256:ad282f9b6926286d2ead4750552c8a6142bc4c783fd66b0293547c8fe6ae126a", size = 103418, upload-time = "2025-04-20T18:50:08.518Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e7/9c/0e6afc12c269578be5c0c1c9f4b49a8d32770a080260c333ac04cc1c832d/soupsieve-2.7-py3-none-any.whl", hash = "sha256:6e60cc5c1ffaf1cebcc12e8188320b72071e922c2e897f737cadce79ad5d30c4", size = 36677, upload-time = "2025-04-20T18:50:07.196Z" },
+]
+
+[[package]]
+name = "sqlalchemy"
+version = "2.0.41"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "greenlet", marker = "(python_full_version < '3.14' and platform_machine == 'AMD64') or (python_full_version < '3.14' and platform_machine == 'WIN32') or (python_full_version < '3.14' and platform_machine == 'aarch64') or (python_full_version < '3.14' and platform_machine == 'amd64') or (python_full_version < '3.14' and platform_machine == 'ppc64le') or (python_full_version < '3.14' and platform_machine == 'win32') or (python_full_version < '3.14' and platform_machine == 'x86_64')" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/63/66/45b165c595ec89aa7dcc2c1cd222ab269bc753f1fc7a1e68f8481bd957bf/sqlalchemy-2.0.41.tar.gz", hash = "sha256:edba70118c4be3c2b1f90754d308d0b79c6fe2c0fdc52d8ddf603916f83f4db9", size = 9689424, upload-time = "2025-05-14T17:10:32.339Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/3e/2a/f1f4e068b371154740dd10fb81afb5240d5af4aa0087b88d8b308b5429c2/sqlalchemy-2.0.41-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:81f413674d85cfd0dfcd6512e10e0f33c19c21860342a4890c3a2b59479929f9", size = 2119645, upload-time = "2025-05-14T17:55:24.854Z" },
+    { url = "https://files.pythonhosted.org/packages/9b/e8/c664a7e73d36fbfc4730f8cf2bf930444ea87270f2825efbe17bf808b998/sqlalchemy-2.0.41-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:598d9ebc1e796431bbd068e41e4de4dc34312b7aa3292571bb3674a0cb415dd1", size = 2107399, upload-time = "2025-05-14T17:55:28.097Z" },
+    { url = "https://files.pythonhosted.org/packages/5c/78/8a9cf6c5e7135540cb682128d091d6afa1b9e48bd049b0d691bf54114f70/sqlalchemy-2.0.41-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a104c5694dfd2d864a6f91b0956eb5d5883234119cb40010115fd45a16da5e70", size = 3293269, upload-time = "2025-05-14T17:50:38.227Z" },
+    { url = "https://files.pythonhosted.org/packages/3c/35/f74add3978c20de6323fb11cb5162702670cc7a9420033befb43d8d5b7a4/sqlalchemy-2.0.41-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6145afea51ff0af7f2564a05fa95eb46f542919e6523729663a5d285ecb3cf5e", size = 3303364, upload-time = "2025-05-14T17:51:49.829Z" },
+    { url = "https://files.pythonhosted.org/packages/6a/d4/c990f37f52c3f7748ebe98883e2a0f7d038108c2c5a82468d1ff3eec50b7/sqlalchemy-2.0.41-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:b46fa6eae1cd1c20e6e6f44e19984d438b6b2d8616d21d783d150df714f44078", size = 3229072, upload-time = "2025-05-14T17:50:39.774Z" },
+    { url = "https://files.pythonhosted.org/packages/15/69/cab11fecc7eb64bc561011be2bd03d065b762d87add52a4ca0aca2e12904/sqlalchemy-2.0.41-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:41836fe661cc98abfae476e14ba1906220f92c4e528771a8a3ae6a151242d2ae", size = 3268074, upload-time = "2025-05-14T17:51:51.736Z" },
+    { url = "https://files.pythonhosted.org/packages/5c/ca/0c19ec16858585d37767b167fc9602593f98998a68a798450558239fb04a/sqlalchemy-2.0.41-cp312-cp312-win32.whl", hash = "sha256:a8808d5cf866c781150d36a3c8eb3adccfa41a8105d031bf27e92c251e3969d6", size = 2084514, upload-time = "2025-05-14T17:55:49.915Z" },
+    { url = "https://files.pythonhosted.org/packages/7f/23/4c2833d78ff3010a4e17f984c734f52b531a8c9060a50429c9d4b0211be6/sqlalchemy-2.0.41-cp312-cp312-win_amd64.whl", hash = "sha256:5b14e97886199c1f52c14629c11d90c11fbb09e9334fa7bb5f6d068d9ced0ce0", size = 2111557, upload-time = "2025-05-14T17:55:51.349Z" },
+    { url = "https://files.pythonhosted.org/packages/d3/ad/2e1c6d4f235a97eeef52d0200d8ddda16f6c4dd70ae5ad88c46963440480/sqlalchemy-2.0.41-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:4eeb195cdedaf17aab6b247894ff2734dcead6c08f748e617bfe05bd5a218443", size = 2115491, upload-time = "2025-05-14T17:55:31.177Z" },
+    { url = "https://files.pythonhosted.org/packages/cf/8d/be490e5db8400dacc89056f78a52d44b04fbf75e8439569d5b879623a53b/sqlalchemy-2.0.41-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:d4ae769b9c1c7757e4ccce94b0641bc203bbdf43ba7a2413ab2523d8d047d8dc", size = 2102827, upload-time = "2025-05-14T17:55:34.921Z" },
+    { url = "https://files.pythonhosted.org/packages/a0/72/c97ad430f0b0e78efaf2791342e13ffeafcbb3c06242f01a3bb8fe44f65d/sqlalchemy-2.0.41-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:a62448526dd9ed3e3beedc93df9bb6b55a436ed1474db31a2af13b313a70a7e1", size = 3225224, upload-time = "2025-05-14T17:50:41.418Z" },
+    { url = "https://files.pythonhosted.org/packages/5e/51/5ba9ea3246ea068630acf35a6ba0d181e99f1af1afd17e159eac7e8bc2b8/sqlalchemy-2.0.41-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:dc56c9788617b8964ad02e8fcfeed4001c1f8ba91a9e1f31483c0dffb207002a", size = 3230045, upload-time = "2025-05-14T17:51:54.722Z" },
+    { url = "https://files.pythonhosted.org/packages/78/2f/8c14443b2acea700c62f9b4a8bad9e49fc1b65cfb260edead71fd38e9f19/sqlalchemy-2.0.41-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:c153265408d18de4cc5ded1941dcd8315894572cddd3c58df5d5b5705b3fa28d", size = 3159357, upload-time = "2025-05-14T17:50:43.483Z" },
+    { url = "https://files.pythonhosted.org/packages/fc/b2/43eacbf6ccc5276d76cea18cb7c3d73e294d6fb21f9ff8b4eef9b42bbfd5/sqlalchemy-2.0.41-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:4f67766965996e63bb46cfbf2ce5355fc32d9dd3b8ad7e536a920ff9ee422e23", size = 3197511, upload-time = "2025-05-14T17:51:57.308Z" },
+    { url = "https://files.pythonhosted.org/packages/fa/2e/677c17c5d6a004c3c45334ab1dbe7b7deb834430b282b8a0f75ae220c8eb/sqlalchemy-2.0.41-cp313-cp313-win32.whl", hash = "sha256:bfc9064f6658a3d1cadeaa0ba07570b83ce6801a1314985bf98ec9b95d74e15f", size = 2082420, upload-time = "2025-05-14T17:55:52.69Z" },
+    { url = "https://files.pythonhosted.org/packages/e9/61/e8c1b9b6307c57157d328dd8b8348ddc4c47ffdf1279365a13b2b98b8049/sqlalchemy-2.0.41-cp313-cp313-win_amd64.whl", hash = "sha256:82ca366a844eb551daff9d2e6e7a9e5e76d2612c8564f58db6c19a726869c1df", size = 2108329, upload-time = "2025-05-14T17:55:54.495Z" },
+    { url = "https://files.pythonhosted.org/packages/1c/fc/9ba22f01b5cdacc8f5ed0d22304718d2c758fce3fd49a5372b886a86f37c/sqlalchemy-2.0.41-py3-none-any.whl", hash = "sha256:57df5dc6fdb5ed1a88a1ed2195fd31927e705cad62dedd86b46972752a80f576", size = 1911224, upload-time = "2025-05-14T17:39:42.154Z" },
+]
+
+[[package]]
+name = "sregym"
+version = "0.0.1"
+source = { editable = "." }
+dependencies = [
+    { name = "aiosignal" },
+    { name = "ansible" },
+    { name = "anthropic" },
+    { name = "anyio" },
+    { name = "apscheduler" },
+    { name = "asgiref" },
+    { name = "attrs" },
+    { name = "autogen-agentchat" },
+    { name = "azure-ai-ml" },
+    { name = "azure-common" },
+    { name = "azure-core" },
+    { name = "azure-core-tracing-opentelemetry" },
+    { name = "azure-identity" },
+    { name = "azure-mgmt-core" },
+    { name = "azure-monitor-opentelemetry" },
+    { name = "azure-monitor-opentelemetry-exporter" },
+    { name = "azure-storage-blob" },
+    { name = "azure-storage-file-datalake" },
+    { name = "azure-storage-file-share" },
+    { name = "bashlex" },
+    { name = "bcrypt" },
+    { name = "black" },
+    { name = "blake3" },
+    { name = "boto3" },
+    { name = "bs4" },
+    { name = "cachetools" },
+    { name = "certifi" },
+    { name = "cffi" },
+    { name = "charset-normalizer" },
+    { name = "click" },
+    { name = "cloudpickle" },
+    { name = "colorama" },
+    { name = "cryptography" },
+    { name = "dash" },
+    { name = "dateparser" },
+    { name = "deprecated" },
+    { name = "dill" },
+    { name = "distro" },
+    { name = "dnspython" },
+    { name = "docker" },
+    { name = "elastic-transport" },
+    { name = "elasticsearch" },
+    { name = "email-validator" },
+    { name = "fastapi", extra = ["standard"] },
+    { name = "fastapi-cli" },
+    { name = "fastmcp" },
+    { name = "filelock" },
+    { name = "flaml" },
+    { name = "fsspec" },
+    { name = "geni-lib-xlab" },
+    { name = "gguf" },
+    { name = "gitpython" },
+    { name = "google-auth" },
+    { name = "h11" },
+    { name = "httpcore" },
+    { name = "httptools" },
+    { name = "httpx" },
+    { name = "idna" },
+    { name = "importlib-metadata" },
+    { name = "itsdangerous" },
+    { name = "jinja2" },
+    { name = "jsonschema" },
+    { name = "kubernetes" },
+    { name = "langchain" },
+    { name = "langchain-google-genai" },
+    { name = "langchain-ibm" },
+    { name = "langchain-litellm" },
+    { name = "langchain-openai" },
+    { name = "langgraph" },
+    { name = "langsmith" },
+    { name = "litellm" },
+    { name = "locust" },
+    { name = "markdown-it-py" },
+    { name = "markupsafe" },
+    { name = "mcp", extra = ["cli"] },
+    { name = "msal" },
+    { name = "msal-extensions" },
+    { name = "multidict" },
+    { name = "mypy-extensions" },
+    { name = "nest-asyncio" },
+    { name = "networkx" },
+    { name = "nodeenv" },
+    { name = "numpy" },
+    { name = "oauthlib" },
+    { name = "opentelemetry-api" },
+    { name = "opentelemetry-instrumentation" },
+    { name = "opentelemetry-instrumentation-asgi" },
+    { name = "opentelemetry-instrumentation-dbapi" },
+    { name = "opentelemetry-instrumentation-django" },
+    { name = "opentelemetry-instrumentation-fastapi" },
+    { name = "opentelemetry-instrumentation-flask" },
+    { name = "opentelemetry-instrumentation-psycopg2" },
+    { name = "opentelemetry-instrumentation-requests" },
+    { name = "opentelemetry-instrumentation-urllib" },
+    { name = "opentelemetry-instrumentation-urllib3" },
+    { name = "opentelemetry-instrumentation-wsgi" },
+    { name = "opentelemetry-resource-detector-azure" },
+    { name = "opentelemetry-sdk" },
+    { name = "opentelemetry-semantic-conventions" },
+    { name = "opentelemetry-util-http" },
+    { name = "packaging" },
+    { name = "pandas" },
+    { name = "paramiko" },
+    { name = "pathspec" },
+    { name = "platformdirs" },
+    { name = "pre-commit" },
+    { name = "prometheus-client" },
+    { name = "prometheus-fastapi-instrumentator" },
+    { name = "prompt-toolkit" },
+    { name = "protobuf" },
+    { name = "psutil" },
+    { name = "pydantic" },
+    { name = "pydantic-core" },
+    { name = "pydash" },
+    { name = "pyfiglet" },
+    { name = "pygments" },
+    { name = "pyjwt" },
+    { name = "pynacl" },
+    { name = "pyparsing" },
+    { name = "pyright" },
+    { name = "pytest" },
+    { name = "python-dateutil" },
+    { name = "python-dotenv" },
+    { name = "python-multipart" },
+    { name = "pytz" },
+    { name = "pyyaml" },
+    { name = "pyzmq" },
+    { name = "referencing" },
+    { name = "regex" },
+    { name = "requests" },
+    { name = "requests-oauthlib" },
+    { name = "rich" },
+    { name = "rich-toolkit" },
+    { name = "rsa" },
+    { name = "sentry-sdk" },
+    { name = "setproctitle" },
+    { name = "shellingham" },
+    { name = "sniffio" },
+    { name = "starlette" },
+    { name = "termcolor" },
+    { name = "tiktoken" },
+    { name = "tqdm" },
+    { name = "typer" },
+    { name = "typing-extensions" },
+    { name = "typing-inspection" },
+    { name = "tzdata" },
+    { name = "tzlocal" },
+    { name = "urllib3" },
+    { name = "uvicorn" },
+    { name = "uvloop" },
+    { name = "watchfiles" },
+    { name = "websocket-client" },
+    { name = "websockets" },
+    { name = "yarl" },
+]
+
+[package.dev-dependencies]
+dev = [
+    { name = "deptry" },
+]
+
+[package.metadata]
+requires-dist = [
+    { name = "aiosignal", specifier = ">=1.3.2" },
+    { name = "ansible", specifier = ">=11.8.0" },
+    { name = "anthropic", specifier = ">=0.52.0" },
+    { name = "anyio", specifier = "==4.9.0" },
+    { name = "apscheduler", specifier = ">=3.11.0" },
+    { name = "asgiref", specifier = "==3.8.1" },
+    { name = "attrs", specifier = "==25.3.0" },
+    { name = "autogen-agentchat", specifier = "==0.2.40" },
+    { name = "azure-ai-ml", specifier = "==1.27.1" },
+    { name = "azure-common", specifier = "==1.1.28" },
+    { name = "azure-core", specifier = "==1.34.0" },
+    { name = "azure-core-tracing-opentelemetry", specifier = "==1.0.0b12" },
+    { name = "azure-identity", specifier = "==1.23.0" },
+    { name = "azure-mgmt-core", specifier = "==1.5.0" },
+    { name = "azure-monitor-opentelemetry", specifier = "==1.6.9" },
+    { name = "azure-monitor-opentelemetry-exporter", specifier = "==1.0.0b36" },
+    { name = "azure-storage-blob", specifier = "==12.25.1" },
+    { name = "azure-storage-file-datalake", specifier = "==12.20.0" },
+    { name = "azure-storage-file-share", specifier = "==12.21.0" },
+    { name = "bashlex", specifier = ">=0.18" },
+    { name = "bcrypt", specifier = "==4.3.0" },
+    { name = "black", specifier = "==24.10.0" },
+    { name = "blake3", specifier = "==1.0.5" },
+    { name = "boto3", specifier = ">=1.28.57" },
+    { name = "bs4", specifier = ">=0.0.2" },
+    { name = "cachetools", specifier = "==5.5.2" },
+    { name = "certifi", specifier = "==2025.4.26" },
+    { name = "cffi", specifier = "==1.17.1" },
+    { name = "charset-normalizer", specifier = "==3.4.2" },
+    { name = "click", specifier = "==8.2.1" },
+    { name = "cloudpickle", specifier = "==3.1.1" },
+    { name = "colorama", specifier = "==0.4.6" },
+    { name = "cryptography", specifier = "==45.0.3" },
+    { name = "dash", specifier = ">=3.2.0" },
+    { name = "dateparser", specifier = "==1.2.1" },
+    { name = "deprecated", specifier = "==1.2.18" },
+    { name = "dill", specifier = "==0.4.0" },
+    { name = "distro", specifier = "==1.9.0" },
+    { name = "dnspython", specifier = "==2.7.0" },
+    { name = "docker", specifier = "==7.1.0" },
+    { name = "elastic-transport", specifier = "==8.17.1" },
+    { name = "elasticsearch", specifier = "==8.18.1" },
+    { name = "email-validator", specifier = "==2.2.0" },
+    { name = "fastapi", extras = ["standard"], specifier = "==0.115.12" },
+    { name = "fastapi-cli", specifier = "==0.0.7" },
+    { name = "fastmcp", specifier = ">=2.9.2" },
+    { name = "filelock", specifier = "==3.18.0" },
+    { name = "flaml", specifier = "==2.3.4" },
+    { name = "fsspec", specifier = "==2025.5.1" },
+    { name = "geni-lib-xlab", path = "scripts/geni_lib/mod/geni_lib_xlab-1.0.0.tar.gz" },
+    { name = "gguf", specifier = "==0.10.0" },
+    { name = "gitpython", specifier = "==3.1.44" },
+    { name = "google-auth", specifier = "==2.40.2" },
+    { name = "h11", specifier = "==0.16.0" },
+    { name = "httpcore", specifier = "==1.0.9" },
+    { name = "httptools", specifier = "==0.6.4" },
+    { name = "httpx", specifier = "==0.28.1" },
+    { name = "idna", specifier = "==3.10" },
+    { name = "importlib-metadata", specifier = "==8.6.1" },
+    { name = "itsdangerous", specifier = ">=2.2.0" },
+    { name = "jinja2", specifier = "==3.1.6" },
+    { name = "jsonschema", specifier = "==4.23.0" },
+    { name = "kubernetes", specifier = "==30.1.0" },
+    { name = "langchain", specifier = ">=0.3.25" },
+    { name = "langchain-google-genai", specifier = ">=2.1.12" },
+    { name = "langchain-ibm", specifier = ">=0.3.15" },
+    { name = "langchain-litellm", specifier = ">=0.2.2" },
+    { name = "langchain-openai", specifier = ">=0.3.18" },
+    { name = "langgraph", specifier = ">=0.4.7" },
+    { name = "langsmith", specifier = ">=0.3.43" },
+    { name = "litellm", specifier = ">=1.75.0" },
+    { name = "locust", specifier = ">=2.42.3" },
+    { name = "markdown-it-py", specifier = "==3.0.0" },
+    { name = "markupsafe", specifier = "==3.0.2" },
+    { name = "mcp", extras = ["cli"], specifier = ">=1.9.1" },
+    { name = "msal", specifier = "==1.32.3" },
+    { name = "msal-extensions", specifier = "==1.3.1" },
+    { name = "multidict", specifier = "==6.4.4" },
+    { name = "mypy-extensions", specifier = "==1.1.0" },
+    { name = "nest-asyncio", specifier = "==1.6.0" },
+    { name = "networkx", specifier = "==3.4.2" },
+    { name = "nodeenv", specifier = "==1.9.1" },
+    { name = "numpy", specifier = "==1.26.4" },
+    { name = "oauthlib", specifier = "==3.2.2" },
+    { name = "opentelemetry-api", specifier = "==1.31.1" },
+    { name = "opentelemetry-instrumentation", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-asgi", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-dbapi", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-django", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-fastapi", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-flask", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-psycopg2", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-requests", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-urllib", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-urllib3", specifier = "==0.52b1" },
+    { name = "opentelemetry-instrumentation-wsgi", specifier = "==0.52b1" },
+    { name = "opentelemetry-resource-detector-azure", specifier = "==0.1.5" },
+    { name = "opentelemetry-sdk", specifier = "==1.31.1" },
+    { name = "opentelemetry-semantic-conventions", specifier = "==0.52b1" },
+    { name = "opentelemetry-util-http", specifier = "==0.52b1" },
+    { name = "packaging", specifier = ">=24.0" },
+    { name = "pandas", specifier = "==2.2.3" },
+    { name = "paramiko", specifier = "==3.5.1" },
+    { name = "pathspec", specifier = "==0.12.1" },
+    { name = "platformdirs", specifier = "==4.3.8" },
+    { name = "pre-commit", specifier = ">=4.2.0" },
+    { name = "prometheus-client", specifier = "==0.22.0" },
+    { name = "prometheus-fastapi-instrumentator", specifier = "==7.1.0" },
+    { name = "prompt-toolkit", specifier = "==3.0.51" },
+    { name = "protobuf", specifier = "==6.31.0" },
+    { name = "psutil", specifier = "==6.1.1" },
+    { name = "pydantic", specifier = "==2.11.5" },
+    { name = "pydantic-core", specifier = "==2.33.2" },
+    { name = "pydash", specifier = "==8.0.5" },
+    { name = "pyfiglet", specifier = ">=1.0.3" },
+    { name = "pygments", specifier = "==2.19.1" },
+    { name = "pyjwt", specifier = "==2.10.1" },
+    { name = "pynacl", specifier = "==1.5.0" },
+    { name = "pyparsing", specifier = "==3.2.3" },
+    { name = "pyright", specifier = "==1.1.401" },
+    { name = "pytest", specifier = ">=8.3.5" },
+    { name = "python-dateutil", specifier = "==2.9.0.post0" },
+    { name = "python-dotenv", specifier = "==1.1.0" },
+    { name = "python-multipart", specifier = "==0.0.20" },
+    { name = "pytz", specifier = "==2025.2" },
+    { name = "pyyaml", specifier = "==6.0.2" },
+    { name = "pyzmq", specifier = "==26.4.0" },
+    { name = "referencing", specifier = "==0.36.2" },
+    { name = "regex", specifier = "==2024.11.6" },
+    { name = "requests", specifier = ">=2.32.3" },
+    { name = "requests-oauthlib", specifier = "==2.0.0" },
+    { name = "rich", specifier = "==13.9.4" },
+    { name = "rich-toolkit", specifier = "==0.14.6" },
+    { name = "rsa", specifier = "==4.9.1" },
+    { name = "sentry-sdk", specifier = "==2.29.1" },
+    { name = "setproctitle", specifier = "==1.3.6" },
+    { name = "shellingham", specifier = "==1.5.4" },
+    { name = "sniffio", specifier = "==1.3.1" },
+    { name = "starlette", specifier = "==0.46.2" },
+    { name = "termcolor", specifier = "==3.1.0" },
+    { name = "tiktoken", specifier = "==0.7.0" },
+    { name = "tqdm", specifier = "==4.67.1" },
+    { name = "typer", specifier = "==0.16.0" },
+    { name = "typing-extensions", specifier = "==4.13.2" },
+    { name = "typing-inspection", specifier = "==0.4.1" },
+    { name = "tzdata", specifier = "==2025.2" },
+    { name = "tzlocal", specifier = "==5.3.1" },
+    { name = "urllib3", specifier = ">=2.4.0" },
+    { name = "uvicorn", specifier = "==0.34.2" },
+    { name = "uvloop", specifier = "==0.21.0" },
+    { name = "watchfiles", specifier = "==1.0.5" },
+    { name = "websocket-client", specifier = "==1.8.0" },
+    { name = "websockets", specifier = "==15.0.1" },
+    { name = "yarl", specifier = "==1.20.0" },
+]
+
+[package.metadata.requires-dev]
+dev = [{ name = "deptry", specifier = ">=0.24.0" }]
+
+[[package]]
+name = "sse-starlette"
+version = "2.3.5"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "anyio" },
+    { name = "starlette" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/10/5f/28f45b1ff14bee871bacafd0a97213f7ec70e389939a80c60c0fb72a9fc9/sse_starlette-2.3.5.tar.gz", hash = "sha256:228357b6e42dcc73a427990e2b4a03c023e2495ecee82e14f07ba15077e334b2", size = 17511, upload-time = "2025-05-12T18:23:52.601Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c8/48/3e49cf0f64961656402c0023edbc51844fe17afe53ab50e958a6dbbbd499/sse_starlette-2.3.5-py3-none-any.whl", hash = "sha256:251708539a335570f10eaaa21d1848a10c42ee6dc3a9cf37ef42266cdb1c52a8", size = 10233, upload-time = "2025-05-12T18:23:50.722Z" },
+]
+
+[[package]]
+name = "starlette"
+version = "0.46.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "anyio" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ce/20/08dfcd9c983f6a6f4a1000d934b9e6d626cff8d2eeb77a89a68eef20a2b7/starlette-0.46.2.tar.gz", hash = "sha256:7f7361f34eed179294600af672f565727419830b54b7b084efe44bb82d2fccd5", size = 2580846, upload-time = "2025-04-13T13:56:17.942Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8b/0c/9d30a4ebeb6db2b25a841afbb80f6ef9a854fc3b41be131d249a977b4959/starlette-0.46.2-py3-none-any.whl", hash = "sha256:595633ce89f8ffa71a015caed34a5b2dc1c0cdb3f0f1fbd1e69339cf2abeec35", size = 72037, upload-time = "2025-04-13T13:56:16.21Z" },
+]
+
+[[package]]
+name = "strictyaml"
+version = "1.7.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "python-dateutil" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/b3/08/efd28d49162ce89c2ad61a88bd80e11fb77bc9f6c145402589112d38f8af/strictyaml-1.7.3.tar.gz", hash = "sha256:22f854a5fcab42b5ddba8030a0e4be51ca89af0267961c8d6cfa86395586c407", size = 115206, upload-time = "2023-03-10T12:50:27.062Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/96/7c/a81ef5ef10978dd073a854e0fa93b5d8021d0594b639cc8f6453c3c78a1d/strictyaml-1.7.3-py3-none-any.whl", hash = "sha256:fb5c8a4edb43bebb765959e420f9b3978d7f1af88c80606c03fb420888f5d1c7", size = 123917, upload-time = "2023-03-10T12:50:17.242Z" },
+]
+
+[[package]]
+name = "tabulate"
+version = "0.9.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ec/fe/802052aecb21e3797b8f7902564ab6ea0d60ff8ca23952079064155d1ae1/tabulate-0.9.0.tar.gz", hash = "sha256:0095b12bf5966de529c0feb1fa08671671b3368eec77d7ef7ab114be2c068b3c", size = 81090, upload-time = "2022-10-06T17:21:48.54Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/40/44/4a5f08c96eb108af5cb50b41f76142f0afa346dfa99d5296fe7202a11854/tabulate-0.9.0-py3-none-any.whl", hash = "sha256:024ca478df22e9340661486f85298cff5f6dcdba14f3813e8830015b9ed1948f", size = 35252, upload-time = "2022-10-06T17:21:44.262Z" },
+]
+
+[[package]]
+name = "tenacity"
+version = "9.1.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/0a/d4/2b0cd0fe285e14b36db076e78c93766ff1d529d70408bd1d2a5a84f1d929/tenacity-9.1.2.tar.gz", hash = "sha256:1169d376c297e7de388d18b4481760d478b0e99a777cad3a9c86e556f4b697cb", size = 48036, upload-time = "2025-04-02T08:25:09.966Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/e5/30/643397144bfbfec6f6ef821f36f33e57d35946c44a2352d3c9f0ae847619/tenacity-9.1.2-py3-none-any.whl", hash = "sha256:f77bf36710d8b73a50b2dd155c97b870017ad21afe6ab300326b0371b3b05138", size = 28248, upload-time = "2025-04-02T08:25:07.678Z" },
+]
+
+[[package]]
+name = "termcolor"
+version = "3.1.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/ca/6c/3d75c196ac07ac8749600b60b03f4f6094d54e132c4d94ebac6ee0e0add0/termcolor-3.1.0.tar.gz", hash = "sha256:6a6dd7fbee581909eeec6a756cff1d7f7c376063b14e4a298dc4980309e55970", size = 14324, upload-time = "2025-04-30T11:37:53.791Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/4f/bd/de8d508070629b6d84a30d01d57e4a65c69aa7f5abe7560b8fad3b50ea59/termcolor-3.1.0-py3-none-any.whl", hash = "sha256:591dd26b5c2ce03b9e43f391264626557873ce1d379019786f99b0c2bee140aa", size = 7684, upload-time = "2025-04-30T11:37:52.382Z" },
+]
+
+[[package]]
+name = "tiktoken"
+version = "0.7.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "regex" },
+    { name = "requests" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c4/4a/abaec53e93e3ef37224a4dd9e2fc6bb871e7a538c2b6b9d2a6397271daf4/tiktoken-0.7.0.tar.gz", hash = "sha256:1077266e949c24e0291f6c350433c6f0971365ece2b173a23bc3b9f9defef6b6", size = 33437, upload-time = "2024-05-13T18:03:28.793Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/1d/46/4cdda4186ce900608f522da34acf442363346688c71b938a90a52d7b84cc/tiktoken-0.7.0-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:71c55d066388c55a9c00f61d2c456a6086673ab7dec22dd739c23f77195b1908", size = 960446, upload-time = "2024-05-13T18:02:54.409Z" },
+    { url = "https://files.pythonhosted.org/packages/b6/30/09ced367d280072d7a3e21f34263dfbbf6378661e7a0f6414e7c18971083/tiktoken-0.7.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:09ed925bccaa8043e34c519fbb2f99110bd07c6fd67714793c21ac298e449410", size = 906652, upload-time = "2024-05-13T18:02:56.25Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/7b/c949e4954441a879a67626963dff69096e3c774758b9f2bb0853f7b4e1e7/tiktoken-0.7.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:03c6c40ff1db0f48a7b4d2dafeae73a5607aacb472fa11f125e7baf9dce73704", size = 1047904, upload-time = "2024-05-13T18:02:57.707Z" },
+    { url = "https://files.pythonhosted.org/packages/50/81/1842a22f15586072280364c2ab1e40835adaf64e42fe80e52aff921ee021/tiktoken-0.7.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:d20b5c6af30e621b4aca094ee61777a44118f52d886dbe4f02b70dfe05c15350", size = 1079836, upload-time = "2024-05-13T18:02:59.009Z" },
+    { url = "https://files.pythonhosted.org/packages/6d/87/51a133a3d5307cf7ae3754249b0faaa91d3414b85c3d36f80b54d6817aa6/tiktoken-0.7.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:d427614c3e074004efa2f2411e16c826f9df427d3c70a54725cae860f09e4bf4", size = 1092472, upload-time = "2024-05-13T18:03:00.597Z" },
+    { url = "https://files.pythonhosted.org/packages/a5/1f/c93517dc6d3b2c9e988b8e24f87a8b2d4a4ab28920a3a3f3ea338397ae0c/tiktoken-0.7.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:8c46d7af7b8c6987fac9b9f61041b452afe92eb087d29c9ce54951280f899a97", size = 1141881, upload-time = "2024-05-13T18:03:02.743Z" },
+    { url = "https://files.pythonhosted.org/packages/bf/4b/48ca098cb580c099b5058bf62c4cb5e90ca6130fa43ef4df27088536245b/tiktoken-0.7.0-cp312-cp312-win_amd64.whl", hash = "sha256:0bc603c30b9e371e7c4c7935aba02af5994a909fc3c0fe66e7004070858d3f8f", size = 799281, upload-time = "2024-05-13T18:03:04.036Z" },
+]
+
+[[package]]
+name = "tokenizers"
+version = "0.21.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "huggingface-hub" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/92/76/5ac0c97f1117b91b7eb7323dcd61af80d72f790b4df71249a7850c195f30/tokenizers-0.21.1.tar.gz", hash = "sha256:a1bb04dc5b448985f86ecd4b05407f5a8d97cb2c0532199b2a302a604a0165ab", size = 343256, upload-time = "2025-03-13T10:51:18.189Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a5/1f/328aee25f9115bf04262e8b4e5a2050b7b7cf44b59c74e982db7270c7f30/tokenizers-0.21.1-cp39-abi3-macosx_10_12_x86_64.whl", hash = "sha256:e78e413e9e668ad790a29456e677d9d3aa50a9ad311a40905d6861ba7692cf41", size = 2780767, upload-time = "2025-03-13T10:51:09.459Z" },
+    { url = "https://files.pythonhosted.org/packages/ae/1a/4526797f3719b0287853f12c5ad563a9be09d446c44ac784cdd7c50f76ab/tokenizers-0.21.1-cp39-abi3-macosx_11_0_arm64.whl", hash = "sha256:cd51cd0a91ecc801633829fcd1fda9cf8682ed3477c6243b9a095539de4aecf3", size = 2650555, upload-time = "2025-03-13T10:51:07.692Z" },
+    { url = "https://files.pythonhosted.org/packages/4d/7a/a209b29f971a9fdc1da86f917fe4524564924db50d13f0724feed37b2a4d/tokenizers-0.21.1-cp39-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:28da6b72d4fb14ee200a1bd386ff74ade8992d7f725f2bde2c495a9a98cf4d9f", size = 2937541, upload-time = "2025-03-13T10:50:56.679Z" },
+    { url = "https://files.pythonhosted.org/packages/3c/1e/b788b50ffc6191e0b1fc2b0d49df8cff16fe415302e5ceb89f619d12c5bc/tokenizers-0.21.1-cp39-abi3-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:34d8cfde551c9916cb92014e040806122295a6800914bab5865deb85623931cf", size = 2819058, upload-time = "2025-03-13T10:50:59.525Z" },
+    { url = "https://files.pythonhosted.org/packages/36/aa/3626dfa09a0ecc5b57a8c58eeaeb7dd7ca9a37ad9dd681edab5acd55764c/tokenizers-0.21.1-cp39-abi3-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:aaa852d23e125b73d283c98f007e06d4595732104b65402f46e8ef24b588d9f8", size = 3133278, upload-time = "2025-03-13T10:51:04.678Z" },
+    { url = "https://files.pythonhosted.org/packages/a4/4d/8fbc203838b3d26269f944a89459d94c858f5b3f9a9b6ee9728cdcf69161/tokenizers-0.21.1-cp39-abi3-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:a21a15d5c8e603331b8a59548bbe113564136dc0f5ad8306dd5033459a226da0", size = 3144253, upload-time = "2025-03-13T10:51:01.261Z" },
+    { url = "https://files.pythonhosted.org/packages/d8/1b/2bd062adeb7c7511b847b32e356024980c0ffcf35f28947792c2d8ad2288/tokenizers-0.21.1-cp39-abi3-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:2fdbd4c067c60a0ac7eca14b6bd18a5bebace54eb757c706b47ea93204f7a37c", size = 3398225, upload-time = "2025-03-13T10:51:03.243Z" },
+    { url = "https://files.pythonhosted.org/packages/8a/63/38be071b0c8e06840bc6046991636bcb30c27f6bb1e670f4f4bc87cf49cc/tokenizers-0.21.1-cp39-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:2dd9a0061e403546f7377df940e866c3e678d7d4e9643d0461ea442b4f89e61a", size = 3038874, upload-time = "2025-03-13T10:51:06.235Z" },
+    { url = "https://files.pythonhosted.org/packages/ec/83/afa94193c09246417c23a3c75a8a0a96bf44ab5630a3015538d0c316dd4b/tokenizers-0.21.1-cp39-abi3-musllinux_1_2_aarch64.whl", hash = "sha256:db9484aeb2e200c43b915a1a0150ea885e35f357a5a8fabf7373af333dcc8dbf", size = 9014448, upload-time = "2025-03-13T10:51:10.927Z" },
+    { url = "https://files.pythonhosted.org/packages/ae/b3/0e1a37d4f84c0f014d43701c11eb8072704f6efe8d8fc2dcdb79c47d76de/tokenizers-0.21.1-cp39-abi3-musllinux_1_2_armv7l.whl", hash = "sha256:ed248ab5279e601a30a4d67bdb897ecbe955a50f1e7bb62bd99f07dd11c2f5b6", size = 8937877, upload-time = "2025-03-13T10:51:12.688Z" },
+    { url = "https://files.pythonhosted.org/packages/ac/33/ff08f50e6d615eb180a4a328c65907feb6ded0b8f990ec923969759dc379/tokenizers-0.21.1-cp39-abi3-musllinux_1_2_i686.whl", hash = "sha256:9ac78b12e541d4ce67b4dfd970e44c060a2147b9b2a21f509566d556a509c67d", size = 9186645, upload-time = "2025-03-13T10:51:14.723Z" },
+    { url = "https://files.pythonhosted.org/packages/5f/aa/8ae85f69a9f6012c6f8011c6f4aa1c96154c816e9eea2e1b758601157833/tokenizers-0.21.1-cp39-abi3-musllinux_1_2_x86_64.whl", hash = "sha256:e5a69c1a4496b81a5ee5d2c1f3f7fbdf95e90a0196101b0ee89ed9956b8a168f", size = 9384380, upload-time = "2025-03-13T10:51:16.526Z" },
+    { url = "https://files.pythonhosted.org/packages/e8/5b/a5d98c89f747455e8b7a9504910c865d5e51da55e825a7ae641fb5ff0a58/tokenizers-0.21.1-cp39-abi3-win32.whl", hash = "sha256:1039a3a5734944e09de1d48761ade94e00d0fa760c0e0551151d4dd851ba63e3", size = 2239506, upload-time = "2025-03-13T10:51:20.643Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/b6/072a8e053ae600dcc2ac0da81a23548e3b523301a442a6ca900e92ac35be/tokenizers-0.21.1-cp39-abi3-win_amd64.whl", hash = "sha256:0f0dcbcc9f6e13e675a66d7a5f2f225a736745ce484c1a4e07476a89ccdad382", size = 2435481, upload-time = "2025-03-13T10:51:19.243Z" },
+]
+
+[[package]]
+name = "tqdm"
+version = "4.67.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "colorama", marker = "sys_platform == 'win32'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/a8/4b/29b4ef32e036bb34e4ab51796dd745cdba7ed47ad142a9f4a1eb8e0c744d/tqdm-4.67.1.tar.gz", hash = "sha256:f8aef9c52c08c13a65f30ea34f4e5aac3fd1a34959879d7e59e63027286627f2", size = 169737, upload-time = "2024-11-24T20:12:22.481Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/d0/30/dc54f88dd4a2b5dc8a0279bdd7270e735851848b762aeb1c1184ed1f6b14/tqdm-4.67.1-py3-none-any.whl", hash = "sha256:26445eca388f82e72884e0d580d5464cd801a3ea01e63e5601bdff9ba6a48de2", size = 78540, upload-time = "2024-11-24T20:12:19.698Z" },
+]
+
+[[package]]
+name = "typer"
+version = "0.16.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "click" },
+    { name = "rich" },
+    { name = "shellingham" },
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/c5/8c/7d682431efca5fd290017663ea4588bf6f2c6aad085c7f108c5dbc316e70/typer-0.16.0.tar.gz", hash = "sha256:af377ffaee1dbe37ae9440cb4e8f11686ea5ce4e9bae01b84ae7c63b87f1dd3b", size = 102625, upload-time = "2025-05-26T14:30:31.824Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/76/42/3efaf858001d2c2913de7f354563e3a3a2f0decae3efe98427125a8f441e/typer-0.16.0-py3-none-any.whl", hash = "sha256:1f79bed11d4d02d4310e3c1b7ba594183bcedb0ac73b27a9e5f28f6fb5b98855", size = 46317, upload-time = "2025-05-26T14:30:30.523Z" },
+]
+
+[[package]]
+name = "typing-extensions"
+version = "4.13.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/f6/37/23083fcd6e35492953e8d2aaaa68b860eb422b34627b13f2ce3eb6106061/typing_extensions-4.13.2.tar.gz", hash = "sha256:e6c81219bd689f51865d9e372991c540bda33a0379d5573cddb9a3a23f7caaef", size = 106967, upload-time = "2025-04-10T14:19:05.416Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8b/54/b1ae86c0973cc6f0210b53d508ca3641fb6d0c56823f288d108bc7ab3cc8/typing_extensions-4.13.2-py3-none-any.whl", hash = "sha256:a439e7c04b49fec3e5d3e2beaa21755cadbbdc391694e28ccdd36ca4a1408f8c", size = 45806, upload-time = "2025-04-10T14:19:03.967Z" },
+]
+
+[[package]]
+name = "typing-inspection"
+version = "0.4.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "typing-extensions" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/f8/b1/0c11f5058406b3af7609f121aaa6b609744687f1d158b3c3a5bf4cc94238/typing_inspection-0.4.1.tar.gz", hash = "sha256:6ae134cc0203c33377d43188d4064e9b357dba58cff3185f22924610e70a9d28", size = 75726, upload-time = "2025-05-21T18:55:23.885Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/17/69/cd203477f944c353c31bade965f880aa1061fd6bf05ded0726ca845b6ff7/typing_inspection-0.4.1-py3-none-any.whl", hash = "sha256:389055682238f53b04f7badcb49b989835495a96700ced5dab2d8feae4b26f51", size = 14552, upload-time = "2025-05-21T18:55:22.152Z" },
+]
+
+[[package]]
+name = "tzdata"
+version = "2025.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/95/32/1a225d6164441be760d75c2c42e2780dc0873fe382da3e98a2e1e48361e5/tzdata-2025.2.tar.gz", hash = "sha256:b60a638fcc0daffadf82fe0f57e53d06bdec2f36c4df66280ae79bce6bd6f2b9", size = 196380, upload-time = "2025-03-23T13:54:43.652Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/5c/23/c7abc0ca0a1526a0774eca151daeb8de62ec457e77262b66b359c3c7679e/tzdata-2025.2-py2.py3-none-any.whl", hash = "sha256:1a403fada01ff9221ca8044d701868fa132215d84beb92242d9acd2147f667a8", size = 347839, upload-time = "2025-03-23T13:54:41.845Z" },
+]
+
+[[package]]
+name = "tzlocal"
+version = "5.3.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "tzdata", marker = "sys_platform == 'win32'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/8b/2e/c14812d3d4d9cd1773c6be938f89e5735a1f11a9f184ac3639b93cef35d5/tzlocal-5.3.1.tar.gz", hash = "sha256:cceffc7edecefea1f595541dbd6e990cb1ea3d19bf01b2809f362a03dd7921fd", size = 30761, upload-time = "2025-03-05T21:17:41.549Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c2/14/e2a54fabd4f08cd7af1c07030603c3356b74da07f7cc056e600436edfa17/tzlocal-5.3.1-py3-none-any.whl", hash = "sha256:eb1a66c3ef5847adf7a834f1be0800581b683b5608e74f86ecbcef8ab91bb85d", size = 18026, upload-time = "2025-03-05T21:17:39.857Z" },
+]
+
+[[package]]
+name = "urllib3"
+version = "2.4.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/8a/78/16493d9c386d8e60e442a35feac5e00f0913c0f4b7c217c11e8ec2ff53e0/urllib3-2.4.0.tar.gz", hash = "sha256:414bc6535b787febd7567804cc015fee39daab8ad86268f1310a9250697de466", size = 390672, upload-time = "2025-04-10T15:23:39.232Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/6b/11/cc635220681e93a0183390e26485430ca2c7b5f9d33b15c74c2861cb8091/urllib3-2.4.0-py3-none-any.whl", hash = "sha256:4e16665048960a0900c702d4a66415956a584919c03361cac9f1df5c5dd7e813", size = 128680, upload-time = "2025-04-10T15:23:37.377Z" },
+]
+
+[[package]]
+name = "uvicorn"
+version = "0.34.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "click" },
+    { name = "h11" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/a6/ae/9bbb19b9e1c450cf9ecaef06463e40234d98d95bf572fab11b4f19ae5ded/uvicorn-0.34.2.tar.gz", hash = "sha256:0e929828f6186353a80b58ea719861d2629d766293b6d19baf086ba31d4f3328", size = 76815, upload-time = "2025-04-19T06:02:50.101Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/b1/4b/4cef6ce21a2aaca9d852a6e84ef4f135d99fcd74fa75105e2fc0c8308acd/uvicorn-0.34.2-py3-none-any.whl", hash = "sha256:deb49af569084536d269fe0a6d67e3754f104cf03aba7c11c40f01aadf33c403", size = 62483, upload-time = "2025-04-19T06:02:48.42Z" },
+]
+
+[package.optional-dependencies]
+standard = [
+    { name = "colorama", marker = "sys_platform == 'win32'" },
+    { name = "httptools" },
+    { name = "python-dotenv" },
+    { name = "pyyaml" },
+    { name = "uvloop", marker = "platform_python_implementation != 'PyPy' and sys_platform != 'cygwin' and sys_platform != 'win32'" },
+    { name = "watchfiles" },
+    { name = "websockets" },
+]
+
+[[package]]
+name = "uvloop"
+version = "0.21.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/af/c0/854216d09d33c543f12a44b393c402e89a920b1a0a7dc634c42de91b9cf6/uvloop-0.21.0.tar.gz", hash = "sha256:3bf12b0fda68447806a7ad847bfa591613177275d35b6724b1ee573faa3704e3", size = 2492741, upload-time = "2024-10-14T23:38:35.489Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8c/4c/03f93178830dc7ce8b4cdee1d36770d2f5ebb6f3d37d354e061eefc73545/uvloop-0.21.0-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:359ec2c888397b9e592a889c4d72ba3d6befba8b2bb01743f72fffbde663b59c", size = 1471284, upload-time = "2024-10-14T23:37:47.833Z" },
+    { url = "https://files.pythonhosted.org/packages/43/3e/92c03f4d05e50f09251bd8b2b2b584a2a7f8fe600008bcc4523337abe676/uvloop-0.21.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:f7089d2dc73179ce5ac255bdf37c236a9f914b264825fdaacaded6990a7fb4c2", size = 821349, upload-time = "2024-10-14T23:37:50.149Z" },
+    { url = "https://files.pythonhosted.org/packages/a6/ef/a02ec5da49909dbbfb1fd205a9a1ac4e88ea92dcae885e7c961847cd51e2/uvloop-0.21.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:baa4dcdbd9ae0a372f2167a207cd98c9f9a1ea1188a8a526431eef2f8116cc8d", size = 4580089, upload-time = "2024-10-14T23:37:51.703Z" },
+    { url = "https://files.pythonhosted.org/packages/06/a7/b4e6a19925c900be9f98bec0a75e6e8f79bb53bdeb891916609ab3958967/uvloop-0.21.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:86975dca1c773a2c9864f4c52c5a55631038e387b47eaf56210f873887b6c8dc", size = 4693770, upload-time = "2024-10-14T23:37:54.122Z" },
+    { url = "https://files.pythonhosted.org/packages/ce/0c/f07435a18a4b94ce6bd0677d8319cd3de61f3a9eeb1e5f8ab4e8b5edfcb3/uvloop-0.21.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:461d9ae6660fbbafedd07559c6a2e57cd553b34b0065b6550685f6653a98c1cb", size = 4451321, upload-time = "2024-10-14T23:37:55.766Z" },
+    { url = "https://files.pythonhosted.org/packages/8f/eb/f7032be105877bcf924709c97b1bf3b90255b4ec251f9340cef912559f28/uvloop-0.21.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:183aef7c8730e54c9a3ee3227464daed66e37ba13040bb3f350bc2ddc040f22f", size = 4659022, upload-time = "2024-10-14T23:37:58.195Z" },
+    { url = "https://files.pythonhosted.org/packages/3f/8d/2cbef610ca21539f0f36e2b34da49302029e7c9f09acef0b1c3b5839412b/uvloop-0.21.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:bfd55dfcc2a512316e65f16e503e9e450cab148ef11df4e4e679b5e8253a5281", size = 1468123, upload-time = "2024-10-14T23:38:00.688Z" },
+    { url = "https://files.pythonhosted.org/packages/93/0d/b0038d5a469f94ed8f2b2fce2434a18396d8fbfb5da85a0a9781ebbdec14/uvloop-0.21.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:787ae31ad8a2856fc4e7c095341cccc7209bd657d0e71ad0dc2ea83c4a6fa8af", size = 819325, upload-time = "2024-10-14T23:38:02.309Z" },
+    { url = "https://files.pythonhosted.org/packages/50/94/0a687f39e78c4c1e02e3272c6b2ccdb4e0085fda3b8352fecd0410ccf915/uvloop-0.21.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5ee4d4ef48036ff6e5cfffb09dd192c7a5027153948d85b8da7ff705065bacc6", size = 4582806, upload-time = "2024-10-14T23:38:04.711Z" },
+    { url = "https://files.pythonhosted.org/packages/d2/19/f5b78616566ea68edd42aacaf645adbf71fbd83fc52281fba555dc27e3f1/uvloop-0.21.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:f3df876acd7ec037a3d005b3ab85a7e4110422e4d9c1571d4fc89b0fc41b6816", size = 4701068, upload-time = "2024-10-14T23:38:06.385Z" },
+    { url = "https://files.pythonhosted.org/packages/47/57/66f061ee118f413cd22a656de622925097170b9380b30091b78ea0c6ea75/uvloop-0.21.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:bd53ecc9a0f3d87ab847503c2e1552b690362e005ab54e8a48ba97da3924c0dc", size = 4454428, upload-time = "2024-10-14T23:38:08.416Z" },
+    { url = "https://files.pythonhosted.org/packages/63/9a/0962b05b308494e3202d3f794a6e85abe471fe3cafdbcf95c2e8c713aabd/uvloop-0.21.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:a5c39f217ab3c663dc699c04cbd50c13813e31d917642d459fdcec07555cc553", size = 4660018, upload-time = "2024-10-14T23:38:10.888Z" },
+]
+
+[[package]]
+name = "virtualenv"
+version = "20.31.2"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "distlib" },
+    { name = "filelock" },
+    { name = "platformdirs" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/56/2c/444f465fb2c65f40c3a104fd0c495184c4f2336d65baf398e3c75d72ea94/virtualenv-20.31.2.tar.gz", hash = "sha256:e10c0a9d02835e592521be48b332b6caee6887f332c111aa79a09b9e79efc2af", size = 6076316, upload-time = "2025-05-08T17:58:23.811Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/f3/40/b1c265d4b2b62b58576588510fc4d1fe60a86319c8de99fd8e9fec617d2c/virtualenv-20.31.2-py3-none-any.whl", hash = "sha256:36efd0d9650ee985f0cad72065001e66d49a6f24eb44d98980f630686243cf11", size = 6057982, upload-time = "2025-05-08T17:58:21.15Z" },
+]
+
+[[package]]
+name = "watchfiles"
+version = "1.0.5"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "anyio" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/03/e2/8ed598c42057de7aa5d97c472254af4906ff0a59a66699d426fc9ef795d7/watchfiles-1.0.5.tar.gz", hash = "sha256:b7529b5dcc114679d43827d8c35a07c493ad6f083633d573d81c660abc5979e9", size = 94537, upload-time = "2025-04-08T10:36:26.722Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/2a/8c/4f0b9bdb75a1bfbd9c78fad7d8854369283f74fe7cf03eb16be77054536d/watchfiles-1.0.5-cp312-cp312-macosx_10_12_x86_64.whl", hash = "sha256:b5eb568c2aa6018e26da9e6c86f3ec3fd958cee7f0311b35c2630fa4217d17f2", size = 401511, upload-time = "2025-04-08T10:35:17.956Z" },
+    { url = "https://files.pythonhosted.org/packages/dc/4e/7e15825def77f8bd359b6d3f379f0c9dac4eb09dd4ddd58fd7d14127179c/watchfiles-1.0.5-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:0a04059f4923ce4e856b4b4e5e783a70f49d9663d22a4c3b3298165996d1377f", size = 392715, upload-time = "2025-04-08T10:35:19.202Z" },
+    { url = "https://files.pythonhosted.org/packages/58/65/b72fb817518728e08de5840d5d38571466c1b4a3f724d190cec909ee6f3f/watchfiles-1.0.5-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:3e380c89983ce6e6fe2dd1e1921b9952fb4e6da882931abd1824c092ed495dec", size = 454138, upload-time = "2025-04-08T10:35:20.586Z" },
+    { url = "https://files.pythonhosted.org/packages/3e/a4/86833fd2ea2e50ae28989f5950b5c3f91022d67092bfec08f8300d8b347b/watchfiles-1.0.5-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:fe43139b2c0fdc4a14d4f8d5b5d967f7a2777fd3d38ecf5b1ec669b0d7e43c21", size = 458592, upload-time = "2025-04-08T10:35:21.87Z" },
+    { url = "https://files.pythonhosted.org/packages/38/7e/42cb8df8be9a37e50dd3a818816501cf7a20d635d76d6bd65aae3dbbff68/watchfiles-1.0.5-cp312-cp312-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ee0822ce1b8a14fe5a066f93edd20aada932acfe348bede8aa2149f1a4489512", size = 487532, upload-time = "2025-04-08T10:35:23.143Z" },
+    { url = "https://files.pythonhosted.org/packages/fc/fd/13d26721c85d7f3df6169d8b495fcac8ab0dc8f0945ebea8845de4681dab/watchfiles-1.0.5-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:a0dbcb1c2d8f2ab6e0a81c6699b236932bd264d4cef1ac475858d16c403de74d", size = 522865, upload-time = "2025-04-08T10:35:24.702Z" },
+    { url = "https://files.pythonhosted.org/packages/a1/0d/7f9ae243c04e96c5455d111e21b09087d0eeaf9a1369e13a01c7d3d82478/watchfiles-1.0.5-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:a2014a2b18ad3ca53b1f6c23f8cd94a18ce930c1837bd891262c182640eb40a6", size = 499887, upload-time = "2025-04-08T10:35:25.969Z" },
+    { url = "https://files.pythonhosted.org/packages/8e/0f/a257766998e26aca4b3acf2ae97dff04b57071e991a510857d3799247c67/watchfiles-1.0.5-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:10f6ae86d5cb647bf58f9f655fcf577f713915a5d69057a0371bc257e2553234", size = 454498, upload-time = "2025-04-08T10:35:27.353Z" },
+    { url = "https://files.pythonhosted.org/packages/81/79/8bf142575a03e0af9c3d5f8bcae911ee6683ae93a625d349d4ecf4c8f7df/watchfiles-1.0.5-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:1a7bac2bde1d661fb31f4d4e8e539e178774b76db3c2c17c4bb3e960a5de07a2", size = 630663, upload-time = "2025-04-08T10:35:28.685Z" },
+    { url = "https://files.pythonhosted.org/packages/f1/80/abe2e79f610e45c63a70d271caea90c49bbf93eb00fa947fa9b803a1d51f/watchfiles-1.0.5-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:4ab626da2fc1ac277bbf752446470b367f84b50295264d2d313e28dc4405d663", size = 625410, upload-time = "2025-04-08T10:35:30.42Z" },
+    { url = "https://files.pythonhosted.org/packages/91/6f/bc7fbecb84a41a9069c2c6eb6319f7f7df113adf113e358c57fc1aff7ff5/watchfiles-1.0.5-cp312-cp312-win32.whl", hash = "sha256:9f4571a783914feda92018ef3901dab8caf5b029325b5fe4558c074582815249", size = 277965, upload-time = "2025-04-08T10:35:32.023Z" },
+    { url = "https://files.pythonhosted.org/packages/99/a5/bf1c297ea6649ec59e935ab311f63d8af5faa8f0b86993e3282b984263e3/watchfiles-1.0.5-cp312-cp312-win_amd64.whl", hash = "sha256:360a398c3a19672cf93527f7e8d8b60d8275119c5d900f2e184d32483117a705", size = 291693, upload-time = "2025-04-08T10:35:33.225Z" },
+    { url = "https://files.pythonhosted.org/packages/7f/7b/fd01087cc21db5c47e5beae507b87965db341cce8a86f9eb12bf5219d4e0/watchfiles-1.0.5-cp312-cp312-win_arm64.whl", hash = "sha256:1a2902ede862969077b97523987c38db28abbe09fb19866e711485d9fbf0d417", size = 283287, upload-time = "2025-04-08T10:35:34.568Z" },
+    { url = "https://files.pythonhosted.org/packages/c7/62/435766874b704f39b2fecd8395a29042db2b5ec4005bd34523415e9bd2e0/watchfiles-1.0.5-cp313-cp313-macosx_10_12_x86_64.whl", hash = "sha256:0b289572c33a0deae62daa57e44a25b99b783e5f7aed81b314232b3d3c81a11d", size = 401531, upload-time = "2025-04-08T10:35:35.792Z" },
+    { url = "https://files.pythonhosted.org/packages/6e/a6/e52a02c05411b9cb02823e6797ef9bbba0bfaf1bb627da1634d44d8af833/watchfiles-1.0.5-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:a056c2f692d65bf1e99c41045e3bdcaea3cb9e6b5a53dcaf60a5f3bd95fc9763", size = 392417, upload-time = "2025-04-08T10:35:37.048Z" },
+    { url = "https://files.pythonhosted.org/packages/3f/53/c4af6819770455932144e0109d4854437769672d7ad897e76e8e1673435d/watchfiles-1.0.5-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b9dca99744991fc9850d18015c4f0438865414e50069670f5f7eee08340d8b40", size = 453423, upload-time = "2025-04-08T10:35:38.357Z" },
+    { url = "https://files.pythonhosted.org/packages/cb/d1/8e88df58bbbf819b8bc5cfbacd3c79e01b40261cad0fc84d1e1ebd778a07/watchfiles-1.0.5-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.whl", hash = "sha256:894342d61d355446d02cd3988a7326af344143eb33a2fd5d38482a92072d9563", size = 458185, upload-time = "2025-04-08T10:35:39.708Z" },
+    { url = "https://files.pythonhosted.org/packages/ff/70/fffaa11962dd5429e47e478a18736d4e42bec42404f5ee3b92ef1b87ad60/watchfiles-1.0.5-cp313-cp313-manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ab44e1580924d1ffd7b3938e02716d5ad190441965138b4aa1d1f31ea0877f04", size = 486696, upload-time = "2025-04-08T10:35:41.469Z" },
+    { url = "https://files.pythonhosted.org/packages/39/db/723c0328e8b3692d53eb273797d9a08be6ffb1d16f1c0ba2bdbdc2a3852c/watchfiles-1.0.5-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:d6f9367b132078b2ceb8d066ff6c93a970a18c3029cea37bfd7b2d3dd2e5db8f", size = 522327, upload-time = "2025-04-08T10:35:43.289Z" },
+    { url = "https://files.pythonhosted.org/packages/cd/05/9fccc43c50c39a76b68343484b9da7b12d42d0859c37c61aec018c967a32/watchfiles-1.0.5-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f2e55a9b162e06e3f862fb61e399fe9f05d908d019d87bf5b496a04ef18a970a", size = 499741, upload-time = "2025-04-08T10:35:44.574Z" },
+    { url = "https://files.pythonhosted.org/packages/23/14/499e90c37fa518976782b10a18b18db9f55ea73ca14641615056f8194bb3/watchfiles-1.0.5-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0125f91f70e0732a9f8ee01e49515c35d38ba48db507a50c5bdcad9503af5827", size = 453995, upload-time = "2025-04-08T10:35:46.336Z" },
+    { url = "https://files.pythonhosted.org/packages/61/d9/f75d6840059320df5adecd2c687fbc18960a7f97b55c300d20f207d48aef/watchfiles-1.0.5-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:13bb21f8ba3248386337c9fa51c528868e6c34a707f729ab041c846d52a0c69a", size = 629693, upload-time = "2025-04-08T10:35:48.161Z" },
+    { url = "https://files.pythonhosted.org/packages/fc/17/180ca383f5061b61406477218c55d66ec118e6c0c51f02d8142895fcf0a9/watchfiles-1.0.5-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:839ebd0df4a18c5b3c1b890145b5a3f5f64063c2a0d02b13c76d78fe5de34936", size = 624677, upload-time = "2025-04-08T10:35:49.65Z" },
+    { url = "https://files.pythonhosted.org/packages/bf/15/714d6ef307f803f236d69ee9d421763707899d6298d9f3183e55e366d9af/watchfiles-1.0.5-cp313-cp313-win32.whl", hash = "sha256:4a8ec1e4e16e2d5bafc9ba82f7aaecfeec990ca7cd27e84fb6f191804ed2fcfc", size = 277804, upload-time = "2025-04-08T10:35:51.093Z" },
+    { url = "https://files.pythonhosted.org/packages/a8/b4/c57b99518fadf431f3ef47a610839e46e5f8abf9814f969859d1c65c02c7/watchfiles-1.0.5-cp313-cp313-win_amd64.whl", hash = "sha256:f436601594f15bf406518af922a89dcaab416568edb6f65c4e5bbbad1ea45c11", size = 291087, upload-time = "2025-04-08T10:35:52.458Z" },
+]
+
+[[package]]
+name = "wcwidth"
+version = "0.2.13"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/6c/63/53559446a878410fc5a5974feb13d31d78d752eb18aeba59c7fef1af7598/wcwidth-0.2.13.tar.gz", hash = "sha256:72ea0c06399eb286d978fdedb6923a9eb47e1c486ce63e9b4e64fc18303972b5", size = 101301, upload-time = "2024-01-06T02:10:57.829Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/fd/84/fd2ba7aafacbad3c4201d395674fc6348826569da3c0937e75505ead3528/wcwidth-0.2.13-py2.py3-none-any.whl", hash = "sha256:3da69048e4540d84af32131829ff948f1e022c1c6bdb8d6102117aac784f6859", size = 34166, upload-time = "2024-01-06T02:10:55.763Z" },
+]
+
+[[package]]
+name = "websocket-client"
+version = "1.8.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/e6/30/fba0d96b4b5fbf5948ed3f4681f7da2f9f64512e1d303f94b4cc174c24a5/websocket_client-1.8.0.tar.gz", hash = "sha256:3239df9f44da632f96012472805d40a23281a991027ce11d2f45a6f24ac4c3da", size = 54648, upload-time = "2024-04-23T22:16:16.976Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/5a/84/44687a29792a70e111c5c477230a72c4b957d88d16141199bf9acb7537a3/websocket_client-1.8.0-py3-none-any.whl", hash = "sha256:17b44cc997f5c498e809b22cdf2d9c7a9e71c02c8cc2b6c56e7c2d1239bfa526", size = 58826, upload-time = "2024-04-23T22:16:14.422Z" },
+]
+
+[[package]]
+name = "websockets"
+version = "15.0.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/21/e6/26d09fab466b7ca9c7737474c52be4f76a40301b08362eb2dbc19dcc16c1/websockets-15.0.1.tar.gz", hash = "sha256:82544de02076bafba038ce055ee6412d68da13ab47f0c60cab827346de828dee", size = 177016, upload-time = "2025-03-05T20:03:41.606Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/51/6b/4545a0d843594f5d0771e86463606a3988b5a09ca5123136f8a76580dd63/websockets-15.0.1-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:3e90baa811a5d73f3ca0bcbf32064d663ed81318ab225ee4f427ad4e26e5aff3", size = 175437, upload-time = "2025-03-05T20:02:16.706Z" },
+    { url = "https://files.pythonhosted.org/packages/f4/71/809a0f5f6a06522af902e0f2ea2757f71ead94610010cf570ab5c98e99ed/websockets-15.0.1-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:592f1a9fe869c778694f0aa806ba0374e97648ab57936f092fd9d87f8bc03665", size = 173096, upload-time = "2025-03-05T20:02:18.832Z" },
+    { url = "https://files.pythonhosted.org/packages/3d/69/1a681dd6f02180916f116894181eab8b2e25b31e484c5d0eae637ec01f7c/websockets-15.0.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:0701bc3cfcb9164d04a14b149fd74be7347a530ad3bbf15ab2c678a2cd3dd9a2", size = 173332, upload-time = "2025-03-05T20:02:20.187Z" },
+    { url = "https://files.pythonhosted.org/packages/a6/02/0073b3952f5bce97eafbb35757f8d0d54812b6174ed8dd952aa08429bcc3/websockets-15.0.1-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:e8b56bdcdb4505c8078cb6c7157d9811a85790f2f2b3632c7d1462ab5783d215", size = 183152, upload-time = "2025-03-05T20:02:22.286Z" },
+    { url = "https://files.pythonhosted.org/packages/74/45/c205c8480eafd114b428284840da0b1be9ffd0e4f87338dc95dc6ff961a1/websockets-15.0.1-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:0af68c55afbd5f07986df82831c7bff04846928ea8d1fd7f30052638788bc9b5", size = 182096, upload-time = "2025-03-05T20:02:24.368Z" },
+    { url = "https://files.pythonhosted.org/packages/14/8f/aa61f528fba38578ec553c145857a181384c72b98156f858ca5c8e82d9d3/websockets-15.0.1-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:64dee438fed052b52e4f98f76c5790513235efaa1ef7f3f2192c392cd7c91b65", size = 182523, upload-time = "2025-03-05T20:02:25.669Z" },
+    { url = "https://files.pythonhosted.org/packages/ec/6d/0267396610add5bc0d0d3e77f546d4cd287200804fe02323797de77dbce9/websockets-15.0.1-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:d5f6b181bb38171a8ad1d6aa58a67a6aa9d4b38d0f8c5f496b9e42561dfc62fe", size = 182790, upload-time = "2025-03-05T20:02:26.99Z" },
+    { url = "https://files.pythonhosted.org/packages/02/05/c68c5adbf679cf610ae2f74a9b871ae84564462955d991178f95a1ddb7dd/websockets-15.0.1-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:5d54b09eba2bada6011aea5375542a157637b91029687eb4fdb2dab11059c1b4", size = 182165, upload-time = "2025-03-05T20:02:30.291Z" },
+    { url = "https://files.pythonhosted.org/packages/29/93/bb672df7b2f5faac89761cb5fa34f5cec45a4026c383a4b5761c6cea5c16/websockets-15.0.1-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:3be571a8b5afed347da347bfcf27ba12b069d9d7f42cb8c7028b5e98bbb12597", size = 182160, upload-time = "2025-03-05T20:02:31.634Z" },
+    { url = "https://files.pythonhosted.org/packages/ff/83/de1f7709376dc3ca9b7eeb4b9a07b4526b14876b6d372a4dc62312bebee0/websockets-15.0.1-cp312-cp312-win32.whl", hash = "sha256:c338ffa0520bdb12fbc527265235639fb76e7bc7faafbb93f6ba80d9c06578a9", size = 176395, upload-time = "2025-03-05T20:02:33.017Z" },
+    { url = "https://files.pythonhosted.org/packages/7d/71/abf2ebc3bbfa40f391ce1428c7168fb20582d0ff57019b69ea20fa698043/websockets-15.0.1-cp312-cp312-win_amd64.whl", hash = "sha256:fcd5cf9e305d7b8338754470cf69cf81f420459dbae8a3b40cee57417f4614a7", size = 176841, upload-time = "2025-03-05T20:02:34.498Z" },
+    { url = "https://files.pythonhosted.org/packages/cb/9f/51f0cf64471a9d2b4d0fc6c534f323b664e7095640c34562f5182e5a7195/websockets-15.0.1-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:ee443ef070bb3b6ed74514f5efaa37a252af57c90eb33b956d35c8e9c10a1931", size = 175440, upload-time = "2025-03-05T20:02:36.695Z" },
+    { url = "https://files.pythonhosted.org/packages/8a/05/aa116ec9943c718905997412c5989f7ed671bc0188ee2ba89520e8765d7b/websockets-15.0.1-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:5a939de6b7b4e18ca683218320fc67ea886038265fd1ed30173f5ce3f8e85675", size = 173098, upload-time = "2025-03-05T20:02:37.985Z" },
+    { url = "https://files.pythonhosted.org/packages/ff/0b/33cef55ff24f2d92924923c99926dcce78e7bd922d649467f0eda8368923/websockets-15.0.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:746ee8dba912cd6fc889a8147168991d50ed70447bf18bcda7039f7d2e3d9151", size = 173329, upload-time = "2025-03-05T20:02:39.298Z" },
+    { url = "https://files.pythonhosted.org/packages/31/1d/063b25dcc01faa8fada1469bdf769de3768b7044eac9d41f734fd7b6ad6d/websockets-15.0.1-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:595b6c3969023ecf9041b2936ac3827e4623bfa3ccf007575f04c5a6aa318c22", size = 183111, upload-time = "2025-03-05T20:02:40.595Z" },
+    { url = "https://files.pythonhosted.org/packages/93/53/9a87ee494a51bf63e4ec9241c1ccc4f7c2f45fff85d5bde2ff74fcb68b9e/websockets-15.0.1-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:3c714d2fc58b5ca3e285461a4cc0c9a66bd0e24c5da9911e30158286c9b5be7f", size = 182054, upload-time = "2025-03-05T20:02:41.926Z" },
+    { url = "https://files.pythonhosted.org/packages/ff/b2/83a6ddf56cdcbad4e3d841fcc55d6ba7d19aeb89c50f24dd7e859ec0805f/websockets-15.0.1-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:0f3c1e2ab208db911594ae5b4f79addeb3501604a165019dd221c0bdcabe4db8", size = 182496, upload-time = "2025-03-05T20:02:43.304Z" },
+    { url = "https://files.pythonhosted.org/packages/98/41/e7038944ed0abf34c45aa4635ba28136f06052e08fc2168520bb8b25149f/websockets-15.0.1-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:229cf1d3ca6c1804400b0a9790dc66528e08a6a1feec0d5040e8b9eb14422375", size = 182829, upload-time = "2025-03-05T20:02:48.812Z" },
+    { url = "https://files.pythonhosted.org/packages/e0/17/de15b6158680c7623c6ef0db361da965ab25d813ae54fcfeae2e5b9ef910/websockets-15.0.1-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:756c56e867a90fb00177d530dca4b097dd753cde348448a1012ed6c5131f8b7d", size = 182217, upload-time = "2025-03-05T20:02:50.14Z" },
+    { url = "https://files.pythonhosted.org/packages/33/2b/1f168cb6041853eef0362fb9554c3824367c5560cbdaad89ac40f8c2edfc/websockets-15.0.1-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:558d023b3df0bffe50a04e710bc87742de35060580a293c2a984299ed83bc4e4", size = 182195, upload-time = "2025-03-05T20:02:51.561Z" },
+    { url = "https://files.pythonhosted.org/packages/86/eb/20b6cdf273913d0ad05a6a14aed4b9a85591c18a987a3d47f20fa13dcc47/websockets-15.0.1-cp313-cp313-win32.whl", hash = "sha256:ba9e56e8ceeeedb2e080147ba85ffcd5cd0711b89576b83784d8605a7df455fa", size = 176393, upload-time = "2025-03-05T20:02:53.814Z" },
+    { url = "https://files.pythonhosted.org/packages/1b/6c/c65773d6cab416a64d191d6ee8a8b1c68a09970ea6909d16965d26bfed1e/websockets-15.0.1-cp313-cp313-win_amd64.whl", hash = "sha256:e09473f095a819042ecb2ab9465aee615bd9c2028e4ef7d933600a8401c79561", size = 176837, upload-time = "2025-03-05T20:02:55.237Z" },
+    { url = "https://files.pythonhosted.org/packages/fa/a8/5b41e0da817d64113292ab1f8247140aac61cbf6cfd085d6a0fa77f4984f/websockets-15.0.1-py3-none-any.whl", hash = "sha256:f7a866fbc1e97b5c617ee4116daaa09b722101d4a3c170c787450ba409f9736f", size = 169743, upload-time = "2025-03-05T20:03:39.41Z" },
+]
+
+[[package]]
+name = "werkzeug"
+version = "3.1.3"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "markupsafe" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/9f/69/83029f1f6300c5fb2471d621ab06f6ec6b3324685a2ce0f9777fd4a8b71e/werkzeug-3.1.3.tar.gz", hash = "sha256:60723ce945c19328679790e3282cc758aa4a6040e4bb330f53d30fa546d44746", size = 806925, upload-time = "2024-11-08T15:52:18.093Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/52/24/ab44c871b0f07f491e5d2ad12c9bd7358e527510618cb1b803a88e986db1/werkzeug-3.1.3-py3-none-any.whl", hash = "sha256:54b78bf3716d19a65be4fceccc0d1d7b89e608834989dfae50ea87564639213e", size = 224498, upload-time = "2024-11-08T15:52:16.132Z" },
+]
+
+[[package]]
+name = "wrapt"
+version = "1.17.2"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/c3/fc/e91cc220803d7bc4db93fb02facd8461c37364151b8494762cc88b0fbcef/wrapt-1.17.2.tar.gz", hash = "sha256:41388e9d4d1522446fe79d3213196bd9e3b301a336965b9e27ca2788ebd122f3", size = 55531, upload-time = "2025-01-14T10:35:45.465Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/a1/bd/ab55f849fd1f9a58ed7ea47f5559ff09741b25f00c191231f9f059c83949/wrapt-1.17.2-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:d5e2439eecc762cd85e7bd37161d4714aa03a33c5ba884e26c81559817ca0925", size = 53799, upload-time = "2025-01-14T10:33:57.4Z" },
+    { url = "https://files.pythonhosted.org/packages/53/18/75ddc64c3f63988f5a1d7e10fb204ffe5762bc663f8023f18ecaf31a332e/wrapt-1.17.2-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:3fc7cb4c1c744f8c05cd5f9438a3caa6ab94ce8344e952d7c45a8ed59dd88392", size = 38821, upload-time = "2025-01-14T10:33:59.334Z" },
+    { url = "https://files.pythonhosted.org/packages/48/2a/97928387d6ed1c1ebbfd4efc4133a0633546bec8481a2dd5ec961313a1c7/wrapt-1.17.2-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:8fdbdb757d5390f7c675e558fd3186d590973244fab0c5fe63d373ade3e99d40", size = 38919, upload-time = "2025-01-14T10:34:04.093Z" },
+    { url = "https://files.pythonhosted.org/packages/73/54/3bfe5a1febbbccb7a2f77de47b989c0b85ed3a6a41614b104204a788c20e/wrapt-1.17.2-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5bb1d0dbf99411f3d871deb6faa9aabb9d4e744d67dcaaa05399af89d847a91d", size = 88721, upload-time = "2025-01-14T10:34:07.163Z" },
+    { url = "https://files.pythonhosted.org/packages/25/cb/7262bc1b0300b4b64af50c2720ef958c2c1917525238d661c3e9a2b71b7b/wrapt-1.17.2-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:d18a4865f46b8579d44e4fe1e2bcbc6472ad83d98e22a26c963d46e4c125ef0b", size = 80899, upload-time = "2025-01-14T10:34:09.82Z" },
+    { url = "https://files.pythonhosted.org/packages/2a/5a/04cde32b07a7431d4ed0553a76fdb7a61270e78c5fd5a603e190ac389f14/wrapt-1.17.2-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:bc570b5f14a79734437cb7b0500376b6b791153314986074486e0b0fa8d71d98", size = 89222, upload-time = "2025-01-14T10:34:11.258Z" },
+    { url = "https://files.pythonhosted.org/packages/09/28/2e45a4f4771fcfb109e244d5dbe54259e970362a311b67a965555ba65026/wrapt-1.17.2-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:6d9187b01bebc3875bac9b087948a2bccefe464a7d8f627cf6e48b1bbae30f82", size = 86707, upload-time = "2025-01-14T10:34:12.49Z" },
+    { url = "https://files.pythonhosted.org/packages/c6/d2/dcb56bf5f32fcd4bd9aacc77b50a539abdd5b6536872413fd3f428b21bed/wrapt-1.17.2-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:9e8659775f1adf02eb1e6f109751268e493c73716ca5761f8acb695e52a756ae", size = 79685, upload-time = "2025-01-14T10:34:15.043Z" },
+    { url = "https://files.pythonhosted.org/packages/80/4e/eb8b353e36711347893f502ce91c770b0b0929f8f0bed2670a6856e667a9/wrapt-1.17.2-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:e8b2816ebef96d83657b56306152a93909a83f23994f4b30ad4573b00bd11bb9", size = 87567, upload-time = "2025-01-14T10:34:16.563Z" },
+    { url = "https://files.pythonhosted.org/packages/17/27/4fe749a54e7fae6e7146f1c7d914d28ef599dacd4416566c055564080fe2/wrapt-1.17.2-cp312-cp312-win32.whl", hash = "sha256:468090021f391fe0056ad3e807e3d9034e0fd01adcd3bdfba977b6fdf4213ea9", size = 36672, upload-time = "2025-01-14T10:34:17.727Z" },
+    { url = "https://files.pythonhosted.org/packages/15/06/1dbf478ea45c03e78a6a8c4be4fdc3c3bddea5c8de8a93bc971415e47f0f/wrapt-1.17.2-cp312-cp312-win_amd64.whl", hash = "sha256:ec89ed91f2fa8e3f52ae53cd3cf640d6feff92ba90d62236a81e4e563ac0e991", size = 38865, upload-time = "2025-01-14T10:34:19.577Z" },
+    { url = "https://files.pythonhosted.org/packages/ce/b9/0ffd557a92f3b11d4c5d5e0c5e4ad057bd9eb8586615cdaf901409920b14/wrapt-1.17.2-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:6ed6ffac43aecfe6d86ec5b74b06a5be33d5bb9243d055141e8cabb12aa08125", size = 53800, upload-time = "2025-01-14T10:34:21.571Z" },
+    { url = "https://files.pythonhosted.org/packages/c0/ef/8be90a0b7e73c32e550c73cfb2fa09db62234227ece47b0e80a05073b375/wrapt-1.17.2-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:35621ae4c00e056adb0009f8e86e28eb4a41a4bfa8f9bfa9fca7d343fe94f998", size = 38824, upload-time = "2025-01-14T10:34:22.999Z" },
+    { url = "https://files.pythonhosted.org/packages/36/89/0aae34c10fe524cce30fe5fc433210376bce94cf74d05b0d68344c8ba46e/wrapt-1.17.2-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:a604bf7a053f8362d27eb9fefd2097f82600b856d5abe996d623babd067b1ab5", size = 38920, upload-time = "2025-01-14T10:34:25.386Z" },
+    { url = "https://files.pythonhosted.org/packages/3b/24/11c4510de906d77e0cfb5197f1b1445d4fec42c9a39ea853d482698ac681/wrapt-1.17.2-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:5cbabee4f083b6b4cd282f5b817a867cf0b1028c54d445b7ec7cfe6505057cf8", size = 88690, upload-time = "2025-01-14T10:34:28.058Z" },
+    { url = "https://files.pythonhosted.org/packages/71/d7/cfcf842291267bf455b3e266c0c29dcb675b5540ee8b50ba1699abf3af45/wrapt-1.17.2-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:49703ce2ddc220df165bd2962f8e03b84c89fee2d65e1c24a7defff6f988f4d6", size = 80861, upload-time = "2025-01-14T10:34:29.167Z" },
+    { url = "https://files.pythonhosted.org/packages/d5/66/5d973e9f3e7370fd686fb47a9af3319418ed925c27d72ce16b791231576d/wrapt-1.17.2-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:8112e52c5822fc4253f3901b676c55ddf288614dc7011634e2719718eaa187dc", size = 89174, upload-time = "2025-01-14T10:34:31.702Z" },
+    { url = "https://files.pythonhosted.org/packages/a7/d3/8e17bb70f6ae25dabc1aaf990f86824e4fd98ee9cadf197054e068500d27/wrapt-1.17.2-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:9fee687dce376205d9a494e9c121e27183b2a3df18037f89d69bd7b35bcf59e2", size = 86721, upload-time = "2025-01-14T10:34:32.91Z" },
+    { url = "https://files.pythonhosted.org/packages/6f/54/f170dfb278fe1c30d0ff864513cff526d624ab8de3254b20abb9cffedc24/wrapt-1.17.2-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:18983c537e04d11cf027fbb60a1e8dfd5190e2b60cc27bc0808e653e7b218d1b", size = 79763, upload-time = "2025-01-14T10:34:34.903Z" },
+    { url = "https://files.pythonhosted.org/packages/4a/98/de07243751f1c4a9b15c76019250210dd3486ce098c3d80d5f729cba029c/wrapt-1.17.2-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:703919b1633412ab54bcf920ab388735832fdcb9f9a00ae49387f0fe67dad504", size = 87585, upload-time = "2025-01-14T10:34:36.13Z" },
+    { url = "https://files.pythonhosted.org/packages/f9/f0/13925f4bd6548013038cdeb11ee2cbd4e37c30f8bfd5db9e5a2a370d6e20/wrapt-1.17.2-cp313-cp313-win32.whl", hash = "sha256:abbb9e76177c35d4e8568e58650aa6926040d6a9f6f03435b7a522bf1c487f9a", size = 36676, upload-time = "2025-01-14T10:34:37.962Z" },
+    { url = "https://files.pythonhosted.org/packages/bf/ae/743f16ef8c2e3628df3ddfd652b7d4c555d12c84b53f3d8218498f4ade9b/wrapt-1.17.2-cp313-cp313-win_amd64.whl", hash = "sha256:69606d7bb691b50a4240ce6b22ebb319c1cfb164e5f6569835058196e0f3a845", size = 38871, upload-time = "2025-01-14T10:34:39.13Z" },
+    { url = "https://files.pythonhosted.org/packages/3d/bc/30f903f891a82d402ffb5fda27ec1d621cc97cb74c16fea0b6141f1d4e87/wrapt-1.17.2-cp313-cp313t-macosx_10_13_universal2.whl", hash = "sha256:4a721d3c943dae44f8e243b380cb645a709ba5bd35d3ad27bc2ed947e9c68192", size = 56312, upload-time = "2025-01-14T10:34:40.604Z" },
+    { url = "https://files.pythonhosted.org/packages/8a/04/c97273eb491b5f1c918857cd26f314b74fc9b29224521f5b83f872253725/wrapt-1.17.2-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:766d8bbefcb9e00c3ac3b000d9acc51f1b399513f44d77dfe0eb026ad7c9a19b", size = 40062, upload-time = "2025-01-14T10:34:45.011Z" },
+    { url = "https://files.pythonhosted.org/packages/4e/ca/3b7afa1eae3a9e7fefe499db9b96813f41828b9fdb016ee836c4c379dadb/wrapt-1.17.2-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:e496a8ce2c256da1eb98bd15803a79bee00fc351f5dfb9ea82594a3f058309e0", size = 40155, upload-time = "2025-01-14T10:34:47.25Z" },
+    { url = "https://files.pythonhosted.org/packages/89/be/7c1baed43290775cb9030c774bc53c860db140397047cc49aedaf0a15477/wrapt-1.17.2-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:40d615e4fe22f4ad3528448c193b218e077656ca9ccb22ce2cb20db730f8d306", size = 113471, upload-time = "2025-01-14T10:34:50.934Z" },
+    { url = "https://files.pythonhosted.org/packages/32/98/4ed894cf012b6d6aae5f5cc974006bdeb92f0241775addad3f8cd6ab71c8/wrapt-1.17.2-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:a5aaeff38654462bc4b09023918b7f21790efb807f54c000a39d41d69cf552cb", size = 101208, upload-time = "2025-01-14T10:34:52.297Z" },
+    { url = "https://files.pythonhosted.org/packages/ea/fd/0c30f2301ca94e655e5e057012e83284ce8c545df7661a78d8bfca2fac7a/wrapt-1.17.2-cp313-cp313t-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9a7d15bbd2bc99e92e39f49a04653062ee6085c0e18b3b7512a4f2fe91f2d681", size = 109339, upload-time = "2025-01-14T10:34:53.489Z" },
+    { url = "https://files.pythonhosted.org/packages/75/56/05d000de894c4cfcb84bcd6b1df6214297b8089a7bd324c21a4765e49b14/wrapt-1.17.2-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:e3890b508a23299083e065f435a492b5435eba6e304a7114d2f919d400888cc6", size = 110232, upload-time = "2025-01-14T10:34:55.327Z" },
+    { url = "https://files.pythonhosted.org/packages/53/f8/c3f6b2cf9b9277fb0813418e1503e68414cd036b3b099c823379c9575e6d/wrapt-1.17.2-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:8c8b293cd65ad716d13d8dd3624e42e5a19cc2a2f1acc74b30c2c13f15cb61a6", size = 100476, upload-time = "2025-01-14T10:34:58.055Z" },
+    { url = "https://files.pythonhosted.org/packages/a7/b1/0bb11e29aa5139d90b770ebbfa167267b1fc548d2302c30c8f7572851738/wrapt-1.17.2-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:4c82b8785d98cdd9fed4cac84d765d234ed3251bd6afe34cb7ac523cb93e8b4f", size = 106377, upload-time = "2025-01-14T10:34:59.3Z" },
+    { url = "https://files.pythonhosted.org/packages/6a/e1/0122853035b40b3f333bbb25f1939fc1045e21dd518f7f0922b60c156f7c/wrapt-1.17.2-cp313-cp313t-win32.whl", hash = "sha256:13e6afb7fe71fe7485a4550a8844cc9ffbe263c0f1a1eea569bc7091d4898555", size = 37986, upload-time = "2025-01-14T10:35:00.498Z" },
+    { url = "https://files.pythonhosted.org/packages/09/5e/1655cf481e079c1f22d0cabdd4e51733679932718dc23bf2db175f329b76/wrapt-1.17.2-cp313-cp313t-win_amd64.whl", hash = "sha256:eaf675418ed6b3b31c7a989fd007fa7c3be66ce14e5c3b27336383604c9da85c", size = 40750, upload-time = "2025-01-14T10:35:03.378Z" },
+    { url = "https://files.pythonhosted.org/packages/2d/82/f56956041adef78f849db6b289b282e72b55ab8045a75abad81898c28d19/wrapt-1.17.2-py3-none-any.whl", hash = "sha256:b18f2d1533a71f069c7f82d524a52599053d4c7166e9dd374ae2136b7f40f7c8", size = 23594, upload-time = "2025-01-14T10:35:44.018Z" },
+]
+
+[[package]]
+name = "wsproto"
+version = "1.3.1"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "h11" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/91/8d/48e227460422d3f78f52618d8ef7d7a0474c6fcdaddf7f2d1aa25854ea75/wsproto-1.3.1.tar.gz", hash = "sha256:81529992325c28f0d9b86ca66fc973da96eb80ab53410249ce2e502749c7723c", size = 50083, upload-time = "2025-11-12T07:50:48.408Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/8f/da/539c2d24b13025e54a86ce3215eb9b6297b023937a087db9ef2a436cc7b4/wsproto-1.3.1-py3-none-any.whl", hash = "sha256:297ce79322989c0d286cc158681641cd18bc7632dfb38cf4054696a89179b993", size = 24402, upload-time = "2025-11-12T07:50:47.178Z" },
+]
+
+[[package]]
+name = "xxhash"
+version = "3.5.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/00/5e/d6e5258d69df8b4ed8c83b6664f2b47d30d2dec551a29ad72a6c69eafd31/xxhash-3.5.0.tar.gz", hash = "sha256:84f2caddf951c9cbf8dc2e22a89d4ccf5d86391ac6418fe81e3c67d0cf60b45f", size = 84241, upload-time = "2024-08-17T09:20:38.972Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/07/0e/1bfce2502c57d7e2e787600b31c83535af83746885aa1a5f153d8c8059d6/xxhash-3.5.0-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:14470ace8bd3b5d51318782cd94e6f94431974f16cb3b8dc15d52f3b69df8e00", size = 31969, upload-time = "2024-08-17T09:18:24.025Z" },
+    { url = "https://files.pythonhosted.org/packages/3f/d6/8ca450d6fe5b71ce521b4e5db69622383d039e2b253e9b2f24f93265b52c/xxhash-3.5.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:59aa1203de1cb96dbeab595ded0ad0c0056bb2245ae11fac11c0ceea861382b9", size = 30787, upload-time = "2024-08-17T09:18:25.318Z" },
+    { url = "https://files.pythonhosted.org/packages/5b/84/de7c89bc6ef63d750159086a6ada6416cc4349eab23f76ab870407178b93/xxhash-3.5.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:08424f6648526076e28fae6ea2806c0a7d504b9ef05ae61d196d571e5c879c84", size = 220959, upload-time = "2024-08-17T09:18:26.518Z" },
+    { url = "https://files.pythonhosted.org/packages/fe/86/51258d3e8a8545ff26468c977101964c14d56a8a37f5835bc0082426c672/xxhash-3.5.0-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:61a1ff00674879725b194695e17f23d3248998b843eb5e933007ca743310f793", size = 200006, upload-time = "2024-08-17T09:18:27.905Z" },
+    { url = "https://files.pythonhosted.org/packages/02/0a/96973bd325412feccf23cf3680fd2246aebf4b789122f938d5557c54a6b2/xxhash-3.5.0-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:f2f2c61bee5844d41c3eb015ac652a0229e901074951ae48581d58bfb2ba01be", size = 428326, upload-time = "2024-08-17T09:18:29.335Z" },
+    { url = "https://files.pythonhosted.org/packages/11/a7/81dba5010f7e733de88af9555725146fc133be97ce36533867f4c7e75066/xxhash-3.5.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9d32a592cac88d18cc09a89172e1c32d7f2a6e516c3dfde1b9adb90ab5df54a6", size = 194380, upload-time = "2024-08-17T09:18:30.706Z" },
+    { url = "https://files.pythonhosted.org/packages/fb/7d/f29006ab398a173f4501c0e4977ba288f1c621d878ec217b4ff516810c04/xxhash-3.5.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:70dabf941dede727cca579e8c205e61121afc9b28516752fd65724be1355cc90", size = 207934, upload-time = "2024-08-17T09:18:32.133Z" },
+    { url = "https://files.pythonhosted.org/packages/8a/6e/6e88b8f24612510e73d4d70d9b0c7dff62a2e78451b9f0d042a5462c8d03/xxhash-3.5.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:e5d0ddaca65ecca9c10dcf01730165fd858533d0be84c75c327487c37a906a27", size = 216301, upload-time = "2024-08-17T09:18:33.474Z" },
+    { url = "https://files.pythonhosted.org/packages/af/51/7862f4fa4b75a25c3b4163c8a873f070532fe5f2d3f9b3fc869c8337a398/xxhash-3.5.0-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:3e5b5e16c5a480fe5f59f56c30abdeba09ffd75da8d13f6b9b6fd224d0b4d0a2", size = 203351, upload-time = "2024-08-17T09:18:34.889Z" },
+    { url = "https://files.pythonhosted.org/packages/22/61/8d6a40f288f791cf79ed5bb113159abf0c81d6efb86e734334f698eb4c59/xxhash-3.5.0-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:149b7914451eb154b3dfaa721315117ea1dac2cc55a01bfbd4df7c68c5dd683d", size = 210294, upload-time = "2024-08-17T09:18:36.355Z" },
+    { url = "https://files.pythonhosted.org/packages/17/02/215c4698955762d45a8158117190261b2dbefe9ae7e5b906768c09d8bc74/xxhash-3.5.0-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:eade977f5c96c677035ff39c56ac74d851b1cca7d607ab3d8f23c6b859379cab", size = 414674, upload-time = "2024-08-17T09:18:38.536Z" },
+    { url = "https://files.pythonhosted.org/packages/31/5c/b7a8db8a3237cff3d535261325d95de509f6a8ae439a5a7a4ffcff478189/xxhash-3.5.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:fa9f547bd98f5553d03160967866a71056a60960be00356a15ecc44efb40ba8e", size = 192022, upload-time = "2024-08-17T09:18:40.138Z" },
+    { url = "https://files.pythonhosted.org/packages/78/e3/dd76659b2811b3fd06892a8beb850e1996b63e9235af5a86ea348f053e9e/xxhash-3.5.0-cp312-cp312-win32.whl", hash = "sha256:f7b58d1fd3551b8c80a971199543379be1cee3d0d409e1f6d8b01c1a2eebf1f8", size = 30170, upload-time = "2024-08-17T09:18:42.163Z" },
+    { url = "https://files.pythonhosted.org/packages/d9/6b/1c443fe6cfeb4ad1dcf231cdec96eb94fb43d6498b4469ed8b51f8b59a37/xxhash-3.5.0-cp312-cp312-win_amd64.whl", hash = "sha256:fa0cafd3a2af231b4e113fba24a65d7922af91aeb23774a8b78228e6cd785e3e", size = 30040, upload-time = "2024-08-17T09:18:43.699Z" },
+    { url = "https://files.pythonhosted.org/packages/0f/eb/04405305f290173acc0350eba6d2f1a794b57925df0398861a20fbafa415/xxhash-3.5.0-cp312-cp312-win_arm64.whl", hash = "sha256:586886c7e89cb9828bcd8a5686b12e161368e0064d040e225e72607b43858ba2", size = 26796, upload-time = "2024-08-17T09:18:45.29Z" },
+    { url = "https://files.pythonhosted.org/packages/c9/b8/e4b3ad92d249be5c83fa72916c9091b0965cb0faeff05d9a0a3870ae6bff/xxhash-3.5.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:37889a0d13b0b7d739cfc128b1c902f04e32de17b33d74b637ad42f1c55101f6", size = 31795, upload-time = "2024-08-17T09:18:46.813Z" },
+    { url = "https://files.pythonhosted.org/packages/fc/d8/b3627a0aebfbfa4c12a41e22af3742cf08c8ea84f5cc3367b5de2d039cce/xxhash-3.5.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:97a662338797c660178e682f3bc180277b9569a59abfb5925e8620fba00b9fc5", size = 30792, upload-time = "2024-08-17T09:18:47.862Z" },
+    { url = "https://files.pythonhosted.org/packages/c3/cc/762312960691da989c7cd0545cb120ba2a4148741c6ba458aa723c00a3f8/xxhash-3.5.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:7f85e0108d51092bdda90672476c7d909c04ada6923c14ff9d913c4f7dc8a3bc", size = 220950, upload-time = "2024-08-17T09:18:49.06Z" },
+    { url = "https://files.pythonhosted.org/packages/fe/e9/cc266f1042c3c13750e86a535496b58beb12bf8c50a915c336136f6168dc/xxhash-3.5.0-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:cd2fd827b0ba763ac919440042302315c564fdb797294d86e8cdd4578e3bc7f3", size = 199980, upload-time = "2024-08-17T09:18:50.445Z" },
+    { url = "https://files.pythonhosted.org/packages/bf/85/a836cd0dc5cc20376de26b346858d0ac9656f8f730998ca4324921a010b9/xxhash-3.5.0-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:82085c2abec437abebf457c1d12fccb30cc8b3774a0814872511f0f0562c768c", size = 428324, upload-time = "2024-08-17T09:18:51.988Z" },
+    { url = "https://files.pythonhosted.org/packages/b4/0e/15c243775342ce840b9ba34aceace06a1148fa1630cd8ca269e3223987f5/xxhash-3.5.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:07fda5de378626e502b42b311b049848c2ef38784d0d67b6f30bb5008642f8eb", size = 194370, upload-time = "2024-08-17T09:18:54.164Z" },
+    { url = "https://files.pythonhosted.org/packages/87/a1/b028bb02636dfdc190da01951d0703b3d904301ed0ef6094d948983bef0e/xxhash-3.5.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:c279f0d2b34ef15f922b77966640ade58b4ccdfef1c4d94b20f2a364617a493f", size = 207911, upload-time = "2024-08-17T09:18:55.509Z" },
+    { url = "https://files.pythonhosted.org/packages/80/d5/73c73b03fc0ac73dacf069fdf6036c9abad82de0a47549e9912c955ab449/xxhash-3.5.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:89e66ceed67b213dec5a773e2f7a9e8c58f64daeb38c7859d8815d2c89f39ad7", size = 216352, upload-time = "2024-08-17T09:18:57.073Z" },
+    { url = "https://files.pythonhosted.org/packages/b6/2a/5043dba5ddbe35b4fe6ea0a111280ad9c3d4ba477dd0f2d1fe1129bda9d0/xxhash-3.5.0-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:bcd51708a633410737111e998ceb3b45d3dbc98c0931f743d9bb0a209033a326", size = 203410, upload-time = "2024-08-17T09:18:58.54Z" },
+    { url = "https://files.pythonhosted.org/packages/a2/b2/9a8ded888b7b190aed75b484eb5c853ddd48aa2896e7b59bbfbce442f0a1/xxhash-3.5.0-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:3ff2c0a34eae7df88c868be53a8dd56fbdf592109e21d4bfa092a27b0bf4a7bf", size = 210322, upload-time = "2024-08-17T09:18:59.943Z" },
+    { url = "https://files.pythonhosted.org/packages/98/62/440083fafbc917bf3e4b67c2ade621920dd905517e85631c10aac955c1d2/xxhash-3.5.0-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:4e28503dccc7d32e0b9817aa0cbfc1f45f563b2c995b7a66c4c8a0d232e840c7", size = 414725, upload-time = "2024-08-17T09:19:01.332Z" },
+    { url = "https://files.pythonhosted.org/packages/75/db/009206f7076ad60a517e016bb0058381d96a007ce3f79fa91d3010f49cc2/xxhash-3.5.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:a6c50017518329ed65a9e4829154626f008916d36295b6a3ba336e2458824c8c", size = 192070, upload-time = "2024-08-17T09:19:03.007Z" },
+    { url = "https://files.pythonhosted.org/packages/1f/6d/c61e0668943a034abc3a569cdc5aeae37d686d9da7e39cf2ed621d533e36/xxhash-3.5.0-cp313-cp313-win32.whl", hash = "sha256:53a068fe70301ec30d868ece566ac90d873e3bb059cf83c32e76012c889b8637", size = 30172, upload-time = "2024-08-17T09:19:04.355Z" },
+    { url = "https://files.pythonhosted.org/packages/96/14/8416dce965f35e3d24722cdf79361ae154fa23e2ab730e5323aa98d7919e/xxhash-3.5.0-cp313-cp313-win_amd64.whl", hash = "sha256:80babcc30e7a1a484eab952d76a4f4673ff601f54d5142c26826502740e70b43", size = 30041, upload-time = "2024-08-17T09:19:05.435Z" },
+    { url = "https://files.pythonhosted.org/packages/27/ee/518b72faa2073f5aa8e3262408d284892cb79cf2754ba0c3a5870645ef73/xxhash-3.5.0-cp313-cp313-win_arm64.whl", hash = "sha256:4811336f1ce11cac89dcbd18f3a25c527c16311709a89313c3acaf771def2d4b", size = 26801, upload-time = "2024-08-17T09:19:06.547Z" },
+]
+
+[[package]]
+name = "yarl"
+version = "1.20.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "idna" },
+    { name = "multidict" },
+    { name = "propcache" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/62/51/c0edba5219027f6eab262e139f73e2417b0f4efffa23bf562f6e18f76ca5/yarl-1.20.0.tar.gz", hash = "sha256:686d51e51ee5dfe62dec86e4866ee0e9ed66df700d55c828a615640adc885307", size = 185258, upload-time = "2025-04-17T00:45:14.661Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c3/e8/3efdcb83073df978bb5b1a9cc0360ce596680e6c3fac01f2a994ccbb8939/yarl-1.20.0-cp312-cp312-macosx_10_13_universal2.whl", hash = "sha256:e06b9f6cdd772f9b665e5ba8161968e11e403774114420737f7884b5bd7bdf6f", size = 147089, upload-time = "2025-04-17T00:42:39.602Z" },
+    { url = "https://files.pythonhosted.org/packages/60/c3/9e776e98ea350f76f94dd80b408eaa54e5092643dbf65fd9babcffb60509/yarl-1.20.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:b9ae2fbe54d859b3ade40290f60fe40e7f969d83d482e84d2c31b9bff03e359e", size = 97706, upload-time = "2025-04-17T00:42:41.469Z" },
+    { url = "https://files.pythonhosted.org/packages/0c/5b/45cdfb64a3b855ce074ae607b9fc40bc82e7613b94e7612b030255c93a09/yarl-1.20.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:6d12b8945250d80c67688602c891237994d203d42427cb14e36d1a732eda480e", size = 95719, upload-time = "2025-04-17T00:42:43.666Z" },
+    { url = "https://files.pythonhosted.org/packages/2d/4e/929633b249611eeed04e2f861a14ed001acca3ef9ec2a984a757b1515889/yarl-1.20.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:087e9731884621b162a3e06dc0d2d626e1542a617f65ba7cc7aeab279d55ad33", size = 343972, upload-time = "2025-04-17T00:42:45.391Z" },
+    { url = "https://files.pythonhosted.org/packages/49/fd/047535d326c913f1a90407a3baf7ff535b10098611eaef2c527e32e81ca1/yarl-1.20.0-cp312-cp312-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:69df35468b66c1a6e6556248e6443ef0ec5f11a7a4428cf1f6281f1879220f58", size = 339639, upload-time = "2025-04-17T00:42:47.552Z" },
+    { url = "https://files.pythonhosted.org/packages/48/2f/11566f1176a78f4bafb0937c0072410b1b0d3640b297944a6a7a556e1d0b/yarl-1.20.0-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:3b2992fe29002fd0d4cbaea9428b09af9b8686a9024c840b8a2b8f4ea4abc16f", size = 353745, upload-time = "2025-04-17T00:42:49.406Z" },
+    { url = "https://files.pythonhosted.org/packages/26/17/07dfcf034d6ae8837b33988be66045dd52f878dfb1c4e8f80a7343f677be/yarl-1.20.0-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:4c903e0b42aab48abfbac668b5a9d7b6938e721a6341751331bcd7553de2dcae", size = 354178, upload-time = "2025-04-17T00:42:51.588Z" },
+    { url = "https://files.pythonhosted.org/packages/15/45/212604d3142d84b4065d5f8cab6582ed3d78e4cc250568ef2a36fe1cf0a5/yarl-1.20.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:bf099e2432131093cc611623e0b0bcc399b8cddd9a91eded8bfb50402ec35018", size = 349219, upload-time = "2025-04-17T00:42:53.674Z" },
+    { url = "https://files.pythonhosted.org/packages/e6/e0/a10b30f294111c5f1c682461e9459935c17d467a760c21e1f7db400ff499/yarl-1.20.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:8a7f62f5dc70a6c763bec9ebf922be52aa22863d9496a9a30124d65b489ea672", size = 337266, upload-time = "2025-04-17T00:42:55.49Z" },
+    { url = "https://files.pythonhosted.org/packages/33/a6/6efa1d85a675d25a46a167f9f3e80104cde317dfdf7f53f112ae6b16a60a/yarl-1.20.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:54ac15a8b60382b2bcefd9a289ee26dc0920cf59b05368c9b2b72450751c6eb8", size = 360873, upload-time = "2025-04-17T00:42:57.895Z" },
+    { url = "https://files.pythonhosted.org/packages/77/67/c8ab718cb98dfa2ae9ba0f97bf3cbb7d45d37f13fe1fbad25ac92940954e/yarl-1.20.0-cp312-cp312-musllinux_1_2_armv7l.whl", hash = "sha256:25b3bc0763a7aca16a0f1b5e8ef0f23829df11fb539a1b70476dcab28bd83da7", size = 360524, upload-time = "2025-04-17T00:43:00.094Z" },
+    { url = "https://files.pythonhosted.org/packages/bd/e8/c3f18660cea1bc73d9f8a2b3ef423def8dadbbae6c4afabdb920b73e0ead/yarl-1.20.0-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:b2586e36dc070fc8fad6270f93242124df68b379c3a251af534030a4a33ef594", size = 365370, upload-time = "2025-04-17T00:43:02.242Z" },
+    { url = "https://files.pythonhosted.org/packages/c9/99/33f3b97b065e62ff2d52817155a89cfa030a1a9b43fee7843ef560ad9603/yarl-1.20.0-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:866349da9d8c5290cfefb7fcc47721e94de3f315433613e01b435473be63daa6", size = 373297, upload-time = "2025-04-17T00:43:04.189Z" },
+    { url = "https://files.pythonhosted.org/packages/3d/89/7519e79e264a5f08653d2446b26d4724b01198a93a74d2e259291d538ab1/yarl-1.20.0-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:33bb660b390a0554d41f8ebec5cd4475502d84104b27e9b42f5321c5192bfcd1", size = 378771, upload-time = "2025-04-17T00:43:06.609Z" },
+    { url = "https://files.pythonhosted.org/packages/3a/58/6c460bbb884abd2917c3eef6f663a4a873f8dc6f498561fc0ad92231c113/yarl-1.20.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:737e9f171e5a07031cbee5e9180f6ce21a6c599b9d4b2c24d35df20a52fabf4b", size = 375000, upload-time = "2025-04-17T00:43:09.01Z" },
+    { url = "https://files.pythonhosted.org/packages/3b/2a/dd7ed1aa23fea996834278d7ff178f215b24324ee527df53d45e34d21d28/yarl-1.20.0-cp312-cp312-win32.whl", hash = "sha256:839de4c574169b6598d47ad61534e6981979ca2c820ccb77bf70f4311dd2cc64", size = 86355, upload-time = "2025-04-17T00:43:11.311Z" },
+    { url = "https://files.pythonhosted.org/packages/ca/c6/333fe0338305c0ac1c16d5aa7cc4841208d3252bbe62172e0051006b5445/yarl-1.20.0-cp312-cp312-win_amd64.whl", hash = "sha256:3d7dbbe44b443b0c4aa0971cb07dcb2c2060e4a9bf8d1301140a33a93c98e18c", size = 92904, upload-time = "2025-04-17T00:43:13.087Z" },
+    { url = "https://files.pythonhosted.org/packages/0f/6f/514c9bff2900c22a4f10e06297714dbaf98707143b37ff0bcba65a956221/yarl-1.20.0-cp313-cp313-macosx_10_13_universal2.whl", hash = "sha256:2137810a20b933b1b1b7e5cf06a64c3ed3b4747b0e5d79c9447c00db0e2f752f", size = 145030, upload-time = "2025-04-17T00:43:15.083Z" },
+    { url = "https://files.pythonhosted.org/packages/4e/9d/f88da3fa319b8c9c813389bfb3463e8d777c62654c7168e580a13fadff05/yarl-1.20.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:447c5eadd750db8389804030d15f43d30435ed47af1313303ed82a62388176d3", size = 96894, upload-time = "2025-04-17T00:43:17.372Z" },
+    { url = "https://files.pythonhosted.org/packages/cd/57/92e83538580a6968b2451d6c89c5579938a7309d4785748e8ad42ddafdce/yarl-1.20.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:42fbe577272c203528d402eec8bf4b2d14fd49ecfec92272334270b850e9cd7d", size = 94457, upload-time = "2025-04-17T00:43:19.431Z" },
+    { url = "https://files.pythonhosted.org/packages/e9/ee/7ee43bd4cf82dddd5da97fcaddb6fa541ab81f3ed564c42f146c83ae17ce/yarl-1.20.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:18e321617de4ab170226cd15006a565d0fa0d908f11f724a2c9142d6b2812ab0", size = 343070, upload-time = "2025-04-17T00:43:21.426Z" },
+    { url = "https://files.pythonhosted.org/packages/4a/12/b5eccd1109e2097bcc494ba7dc5de156e41cf8309fab437ebb7c2b296ce3/yarl-1.20.0-cp313-cp313-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:4345f58719825bba29895011e8e3b545e6e00257abb984f9f27fe923afca2501", size = 337739, upload-time = "2025-04-17T00:43:23.634Z" },
+    { url = "https://files.pythonhosted.org/packages/7d/6b/0eade8e49af9fc2585552f63c76fa59ef469c724cc05b29519b19aa3a6d5/yarl-1.20.0-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:5d9b980d7234614bc4674468ab173ed77d678349c860c3af83b1fffb6a837ddc", size = 351338, upload-time = "2025-04-17T00:43:25.695Z" },
+    { url = "https://files.pythonhosted.org/packages/45/cb/aaaa75d30087b5183c7b8a07b4fb16ae0682dd149a1719b3a28f54061754/yarl-1.20.0-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:af4baa8a445977831cbaa91a9a84cc09debb10bc8391f128da2f7bd070fc351d", size = 353636, upload-time = "2025-04-17T00:43:27.876Z" },
+    { url = "https://files.pythonhosted.org/packages/98/9d/d9cb39ec68a91ba6e66fa86d97003f58570327d6713833edf7ad6ce9dde5/yarl-1.20.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:123393db7420e71d6ce40d24885a9e65eb1edefc7a5228db2d62bcab3386a5c0", size = 348061, upload-time = "2025-04-17T00:43:29.788Z" },
+    { url = "https://files.pythonhosted.org/packages/72/6b/103940aae893d0cc770b4c36ce80e2ed86fcb863d48ea80a752b8bda9303/yarl-1.20.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ab47acc9332f3de1b39e9b702d9c916af7f02656b2a86a474d9db4e53ef8fd7a", size = 334150, upload-time = "2025-04-17T00:43:31.742Z" },
+    { url = "https://files.pythonhosted.org/packages/ef/b2/986bd82aa222c3e6b211a69c9081ba46484cffa9fab2a5235e8d18ca7a27/yarl-1.20.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:4a34c52ed158f89876cba9c600b2c964dfc1ca52ba7b3ab6deb722d1d8be6df2", size = 362207, upload-time = "2025-04-17T00:43:34.099Z" },
+    { url = "https://files.pythonhosted.org/packages/14/7c/63f5922437b873795d9422cbe7eb2509d4b540c37ae5548a4bb68fd2c546/yarl-1.20.0-cp313-cp313-musllinux_1_2_armv7l.whl", hash = "sha256:04d8cfb12714158abf2618f792c77bc5c3d8c5f37353e79509608be4f18705c9", size = 361277, upload-time = "2025-04-17T00:43:36.202Z" },
+    { url = "https://files.pythonhosted.org/packages/81/83/450938cccf732466953406570bdb42c62b5ffb0ac7ac75a1f267773ab5c8/yarl-1.20.0-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:7dc63ad0d541c38b6ae2255aaa794434293964677d5c1ec5d0116b0e308031f5", size = 364990, upload-time = "2025-04-17T00:43:38.551Z" },
+    { url = "https://files.pythonhosted.org/packages/b4/de/af47d3a47e4a833693b9ec8e87debb20f09d9fdc9139b207b09a3e6cbd5a/yarl-1.20.0-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:f9d02b591a64e4e6ca18c5e3d925f11b559c763b950184a64cf47d74d7e41877", size = 374684, upload-time = "2025-04-17T00:43:40.481Z" },
+    { url = "https://files.pythonhosted.org/packages/62/0b/078bcc2d539f1faffdc7d32cb29a2d7caa65f1a6f7e40795d8485db21851/yarl-1.20.0-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:95fc9876f917cac7f757df80a5dda9de59d423568460fe75d128c813b9af558e", size = 382599, upload-time = "2025-04-17T00:43:42.463Z" },
+    { url = "https://files.pythonhosted.org/packages/74/a9/4fdb1a7899f1fb47fd1371e7ba9e94bff73439ce87099d5dd26d285fffe0/yarl-1.20.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:bb769ae5760cd1c6a712135ee7915f9d43f11d9ef769cb3f75a23e398a92d384", size = 378573, upload-time = "2025-04-17T00:43:44.797Z" },
+    { url = "https://files.pythonhosted.org/packages/fd/be/29f5156b7a319e4d2e5b51ce622b4dfb3aa8d8204cd2a8a339340fbfad40/yarl-1.20.0-cp313-cp313-win32.whl", hash = "sha256:70e0c580a0292c7414a1cead1e076c9786f685c1fc4757573d2967689b370e62", size = 86051, upload-time = "2025-04-17T00:43:47.076Z" },
+    { url = "https://files.pythonhosted.org/packages/52/56/05fa52c32c301da77ec0b5f63d2d9605946fe29defacb2a7ebd473c23b81/yarl-1.20.0-cp313-cp313-win_amd64.whl", hash = "sha256:4c43030e4b0af775a85be1fa0433119b1565673266a70bf87ef68a9d5ba3174c", size = 92742, upload-time = "2025-04-17T00:43:49.193Z" },
+    { url = "https://files.pythonhosted.org/packages/d4/2f/422546794196519152fc2e2f475f0e1d4d094a11995c81a465faf5673ffd/yarl-1.20.0-cp313-cp313t-macosx_10_13_universal2.whl", hash = "sha256:b6c4c3d0d6a0ae9b281e492b1465c72de433b782e6b5001c8e7249e085b69051", size = 163575, upload-time = "2025-04-17T00:43:51.533Z" },
+    { url = "https://files.pythonhosted.org/packages/90/fc/67c64ddab6c0b4a169d03c637fb2d2a212b536e1989dec8e7e2c92211b7f/yarl-1.20.0-cp313-cp313t-macosx_10_13_x86_64.whl", hash = "sha256:8681700f4e4df891eafa4f69a439a6e7d480d64e52bf460918f58e443bd3da7d", size = 106121, upload-time = "2025-04-17T00:43:53.506Z" },
+    { url = "https://files.pythonhosted.org/packages/6d/00/29366b9eba7b6f6baed7d749f12add209b987c4cfbfa418404dbadc0f97c/yarl-1.20.0-cp313-cp313t-macosx_11_0_arm64.whl", hash = "sha256:84aeb556cb06c00652dbf87c17838eb6d92cfd317799a8092cee0e570ee11229", size = 103815, upload-time = "2025-04-17T00:43:55.41Z" },
+    { url = "https://files.pythonhosted.org/packages/28/f4/a2a4c967c8323c03689383dff73396281ced3b35d0ed140580825c826af7/yarl-1.20.0-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:f166eafa78810ddb383e930d62e623d288fb04ec566d1b4790099ae0f31485f1", size = 408231, upload-time = "2025-04-17T00:43:57.825Z" },
+    { url = "https://files.pythonhosted.org/packages/0f/a1/66f7ffc0915877d726b70cc7a896ac30b6ac5d1d2760613603b022173635/yarl-1.20.0-cp313-cp313t-manylinux_2_17_armv7l.manylinux2014_armv7l.manylinux_2_31_armv7l.whl", hash = "sha256:5d3d6d14754aefc7a458261027a562f024d4f6b8a798adb472277f675857b1eb", size = 390221, upload-time = "2025-04-17T00:44:00.526Z" },
+    { url = "https://files.pythonhosted.org/packages/41/15/cc248f0504610283271615e85bf38bc014224122498c2016d13a3a1b8426/yarl-1.20.0-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:2a8f64df8ed5d04c51260dbae3cc82e5649834eebea9eadfd829837b8093eb00", size = 411400, upload-time = "2025-04-17T00:44:02.853Z" },
+    { url = "https://files.pythonhosted.org/packages/5c/af/f0823d7e092bfb97d24fce6c7269d67fcd1aefade97d0a8189c4452e4d5e/yarl-1.20.0-cp313-cp313t-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:4d9949eaf05b4d30e93e4034a7790634bbb41b8be2d07edd26754f2e38e491de", size = 411714, upload-time = "2025-04-17T00:44:04.904Z" },
+    { url = "https://files.pythonhosted.org/packages/83/70/be418329eae64b9f1b20ecdaac75d53aef098797d4c2299d82ae6f8e4663/yarl-1.20.0-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:9c366b254082d21cc4f08f522ac201d0d83a8b8447ab562732931d31d80eb2a5", size = 404279, upload-time = "2025-04-17T00:44:07.721Z" },
+    { url = "https://files.pythonhosted.org/packages/19/f5/52e02f0075f65b4914eb890eea1ba97e6fd91dd821cc33a623aa707b2f67/yarl-1.20.0-cp313-cp313t-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:91bc450c80a2e9685b10e34e41aef3d44ddf99b3a498717938926d05ca493f6a", size = 384044, upload-time = "2025-04-17T00:44:09.708Z" },
+    { url = "https://files.pythonhosted.org/packages/6a/36/b0fa25226b03d3f769c68d46170b3e92b00ab3853d73127273ba22474697/yarl-1.20.0-cp313-cp313t-musllinux_1_2_aarch64.whl", hash = "sha256:9c2aa4387de4bc3a5fe158080757748d16567119bef215bec643716b4fbf53f9", size = 416236, upload-time = "2025-04-17T00:44:11.734Z" },
+    { url = "https://files.pythonhosted.org/packages/cb/3a/54c828dd35f6831dfdd5a79e6c6b4302ae2c5feca24232a83cb75132b205/yarl-1.20.0-cp313-cp313t-musllinux_1_2_armv7l.whl", hash = "sha256:d2cbca6760a541189cf87ee54ff891e1d9ea6406079c66341008f7ef6ab61145", size = 402034, upload-time = "2025-04-17T00:44:13.975Z" },
+    { url = "https://files.pythonhosted.org/packages/10/97/c7bf5fba488f7e049f9ad69c1b8fdfe3daa2e8916b3d321aa049e361a55a/yarl-1.20.0-cp313-cp313t-musllinux_1_2_i686.whl", hash = "sha256:798a5074e656f06b9fad1a162be5a32da45237ce19d07884d0b67a0aa9d5fdda", size = 407943, upload-time = "2025-04-17T00:44:16.052Z" },
+    { url = "https://files.pythonhosted.org/packages/fd/a4/022d2555c1e8fcff08ad7f0f43e4df3aba34f135bff04dd35d5526ce54ab/yarl-1.20.0-cp313-cp313t-musllinux_1_2_ppc64le.whl", hash = "sha256:f106e75c454288472dbe615accef8248c686958c2e7dd3b8d8ee2669770d020f", size = 423058, upload-time = "2025-04-17T00:44:18.547Z" },
+    { url = "https://files.pythonhosted.org/packages/4c/f6/0873a05563e5df29ccf35345a6ae0ac9e66588b41fdb7043a65848f03139/yarl-1.20.0-cp313-cp313t-musllinux_1_2_s390x.whl", hash = "sha256:3b60a86551669c23dc5445010534d2c5d8a4e012163218fc9114e857c0586fdd", size = 423792, upload-time = "2025-04-17T00:44:20.639Z" },
+    { url = "https://files.pythonhosted.org/packages/9e/35/43fbbd082708fa42e923f314c24f8277a28483d219e049552e5007a9aaca/yarl-1.20.0-cp313-cp313t-musllinux_1_2_x86_64.whl", hash = "sha256:3e429857e341d5e8e15806118e0294f8073ba9c4580637e59ab7b238afca836f", size = 422242, upload-time = "2025-04-17T00:44:22.851Z" },
+    { url = "https://files.pythonhosted.org/packages/ed/f7/f0f2500cf0c469beb2050b522c7815c575811627e6d3eb9ec7550ddd0bfe/yarl-1.20.0-cp313-cp313t-win32.whl", hash = "sha256:65a4053580fe88a63e8e4056b427224cd01edfb5f951498bfefca4052f0ce0ac", size = 93816, upload-time = "2025-04-17T00:44:25.491Z" },
+    { url = "https://files.pythonhosted.org/packages/3f/93/f73b61353b2a699d489e782c3f5998b59f974ec3156a2050a52dfd7e8946/yarl-1.20.0-cp313-cp313t-win_amd64.whl", hash = "sha256:53b2da3a6ca0a541c1ae799c349788d480e5144cac47dba0266c7cb6c76151fe", size = 101093, upload-time = "2025-04-17T00:44:27.418Z" },
+    { url = "https://files.pythonhosted.org/packages/ea/1f/70c57b3d7278e94ed22d85e09685d3f0a38ebdd8c5c73b65ba4c0d0fe002/yarl-1.20.0-py3-none-any.whl", hash = "sha256:5d0fe6af927a47a230f31e6004621fd0959eaa915fc62acfafa67ff7229a3124", size = 46124, upload-time = "2025-04-17T00:45:12.199Z" },
+]
+
+[[package]]
+name = "zipp"
+version = "3.22.0"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/12/b6/7b3d16792fdf94f146bed92be90b4eb4563569eca91513c8609aebf0c167/zipp-3.22.0.tar.gz", hash = "sha256:dd2f28c3ce4bc67507bfd3781d21b7bb2be31103b51a4553ad7d90b84e57ace5", size = 25257, upload-time = "2025-05-26T14:46:32.217Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/ad/da/f64669af4cae46f17b90798a827519ce3737d31dbafad65d391e49643dc4/zipp-3.22.0-py3-none-any.whl", hash = "sha256:fe208f65f2aca48b81f9e6fd8cf7b8b32c26375266b009b413d45306b6148343", size = 9796, upload-time = "2025-05-26T14:46:30.775Z" },
+]
+
+[[package]]
+name = "zope-event"
+version = "6.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/46/33/d3eeac228fc14de76615612ee208be2d8a5b5b0fada36bf9b62d6b40600c/zope_event-6.1.tar.gz", hash = "sha256:6052a3e0cb8565d3d4ef1a3a7809336ac519bc4fe38398cb8d466db09adef4f0", size = 18739, upload-time = "2025-11-07T08:05:49.934Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/c2/b0/956902e5e1302f8c5d124e219c6bf214e2649f92ad5fce85b05c039a04c9/zope_event-6.1-py3-none-any.whl", hash = "sha256:0ca78b6391b694272b23ec1335c0294cc471065ed10f7f606858fc54566c25a0", size = 6414, upload-time = "2025-11-07T08:05:48.874Z" },
+]
+
+[[package]]
+name = "zope-interface"
+version = "8.1.1"
+source = { registry = "https://pypi.org/simple" }
+sdist = { url = "https://files.pythonhosted.org/packages/71/c9/5ec8679a04d37c797d343f650c51ad67d178f0001c363e44b6ac5f97a9da/zope_interface-8.1.1.tar.gz", hash = "sha256:51b10e6e8e238d719636a401f44f1e366146912407b58453936b781a19be19ec", size = 254748, upload-time = "2025-11-15T08:32:52.404Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/08/3d/f5b8dd2512f33bfab4faba71f66f6873603d625212206dd36f12403ae4ca/zope_interface-8.1.1-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:a16715808408db7252b8c1597ed9008bdad7bf378ed48eb9b0595fad4170e49d", size = 208660, upload-time = "2025-11-15T08:36:53.579Z" },
+    { url = "https://files.pythonhosted.org/packages/e5/41/c331adea9b11e05ff9ac4eb7d3032b24c36a3654ae9f2bf4ef2997048211/zope_interface-8.1.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:ce6b58752acc3352c4aa0b55bbeae2a941d61537e6afdad2467a624219025aae", size = 208851, upload-time = "2025-11-15T08:36:54.854Z" },
+    { url = "https://files.pythonhosted.org/packages/25/00/7a8019c3bb8b119c5f50f0a4869183a4b699ca004a7f87ce98382e6b364c/zope_interface-8.1.1-cp312-cp312-manylinux1_i686.manylinux2014_i686.manylinux_2_17_i686.manylinux_2_5_i686.whl", hash = "sha256:807778883d07177713136479de7fd566f9056a13aef63b686f0ab4807c6be259", size = 259292, upload-time = "2025-11-15T08:36:56.409Z" },
+    { url = "https://files.pythonhosted.org/packages/1a/fc/b70e963bf89345edffdd5d16b61e789fdc09365972b603e13785360fea6f/zope_interface-8.1.1-cp312-cp312-manylinux1_x86_64.manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_5_x86_64.whl", hash = "sha256:50e5eb3b504a7d63dc25211b9298071d5b10a3eb754d6bf2f8ef06cb49f807ab", size = 264741, upload-time = "2025-11-15T08:36:57.675Z" },
+    { url = "https://files.pythonhosted.org/packages/96/fe/7d0b5c0692b283901b34847f2b2f50d805bfff4b31de4021ac9dfb516d2a/zope_interface-8.1.1-cp312-cp312-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:eee6f93b2512ec9466cf30c37548fd3ed7bc4436ab29cd5943d7a0b561f14f0f", size = 264281, upload-time = "2025-11-15T08:36:58.968Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/2c/a7cebede1cf2757be158bcb151fe533fa951038cfc5007c7597f9f86804b/zope_interface-8.1.1-cp312-cp312-win_amd64.whl", hash = "sha256:80edee6116d569883c58ff8efcecac3b737733d646802036dc337aa839a5f06b", size = 212327, upload-time = "2025-11-15T08:37:00.4Z" },
+    { url = "https://files.pythonhosted.org/packages/85/81/3c3b5386ce4fba4612fd82ffb8a90d76bcfea33ca2b6399f21e94d38484f/zope_interface-8.1.1-cp313-cp313-macosx_10_9_x86_64.whl", hash = "sha256:84f9be6d959640de9da5d14ac1f6a89148b16da766e88db37ed17e936160b0b1", size = 209046, upload-time = "2025-11-15T08:37:01.473Z" },
+    { url = "https://files.pythonhosted.org/packages/4a/e3/32b7cb950c4c4326b3760a8e28e5d6f70ad15f852bfd8f9364b58634f74b/zope_interface-8.1.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:531fba91dcb97538f70cf4642a19d6574269460274e3f6004bba6fe684449c51", size = 209104, upload-time = "2025-11-15T08:37:02.887Z" },
+    { url = "https://files.pythonhosted.org/packages/a3/3d/c4c68e1752a5f5effa2c1f5eaa4fea4399433c9b058fb7000a34bfb1c447/zope_interface-8.1.1-cp313-cp313-manylinux1_i686.manylinux2014_i686.manylinux_2_17_i686.manylinux_2_5_i686.whl", hash = "sha256:fc65f5633d5a9583ee8d88d1f5de6b46cd42c62e47757cfe86be36fb7c8c4c9b", size = 259277, upload-time = "2025-11-15T08:37:04.389Z" },
+    { url = "https://files.pythonhosted.org/packages/fd/5b/cf4437b174af7591ee29bbad728f620cab5f47bd6e9c02f87d59f31a0dda/zope_interface-8.1.1-cp313-cp313-manylinux1_x86_64.manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_5_x86_64.whl", hash = "sha256:efef80ddec4d7d99618ef71bc93b88859248075ca2e1ae1c78636654d3d55533", size = 264742, upload-time = "2025-11-15T08:37:05.613Z" },
+    { url = "https://files.pythonhosted.org/packages/0b/0e/0cf77356862852d3d3e62db9aadae5419a1a7d89bf963b219745283ab5ca/zope_interface-8.1.1-cp313-cp313-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:49aad83525eca3b4747ef51117d302e891f0042b06f32aa1c7023c62642f962b", size = 264252, upload-time = "2025-11-15T08:37:07.035Z" },
+    { url = "https://files.pythonhosted.org/packages/8a/10/2af54aa88b2fa172d12364116cc40d325fedbb1877c3bb031b0da6052855/zope_interface-8.1.1-cp313-cp313-win_amd64.whl", hash = "sha256:71cf329a21f98cb2bd9077340a589e316ac8a415cac900575a32544b3dffcb98", size = 212330, upload-time = "2025-11-15T08:37:08.14Z" },
+    { url = "https://files.pythonhosted.org/packages/b9/f5/44efbd98ba06cb937fce7a69fcd7a78c4ac7aa4e1ad2125536801376d2d0/zope_interface-8.1.1-cp314-cp314-macosx_10_9_x86_64.whl", hash = "sha256:da311e9d253991ca327601f47c4644d72359bac6950fbb22f971b24cd7850f8c", size = 209099, upload-time = "2025-11-15T08:37:09.395Z" },
+    { url = "https://files.pythonhosted.org/packages/fd/36/a19866c09c8485c36a4c6908e1dd3f8820b41c1ee333c291157cf4cf09e7/zope_interface-8.1.1-cp314-cp314-macosx_11_0_arm64.whl", hash = "sha256:3fb25fca0442c7fb93c4ee40b42e3e033fef2f648730c4b7ae6d43222a3e8946", size = 209240, upload-time = "2025-11-15T08:37:10.687Z" },
+    { url = "https://files.pythonhosted.org/packages/c1/28/0dbf40db772d779a4ac8d006a57ad60936d42ad4769a3d5410dcfb98f6f9/zope_interface-8.1.1-cp314-cp314-manylinux1_i686.manylinux2014_i686.manylinux_2_17_i686.manylinux_2_5_i686.whl", hash = "sha256:bac588d0742b4e35efb7c7df1dacc0397b51ed37a17d4169a38019a1cebacf0a", size = 260919, upload-time = "2025-11-15T08:37:11.838Z" },
+    { url = "https://files.pythonhosted.org/packages/72/ae/650cd4c01dd1b32c26c800b2c4d852f044552c34a56fbb74d41f569cee31/zope_interface-8.1.1-cp314-cp314-manylinux1_x86_64.manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_5_x86_64.whl", hash = "sha256:3d1f053d2d5e2b393e619bce1e55954885c2e63969159aa521839e719442db49", size = 264102, upload-time = "2025-11-15T08:37:13.241Z" },
+    { url = "https://files.pythonhosted.org/packages/46/f0/f534a2c34c006aa090c593cd70eaf94e259fd0786f934698d81f0534d907/zope_interface-8.1.1-cp314-cp314-manylinux2014_aarch64.manylinux_2_17_aarch64.whl", hash = "sha256:64a1ad7f4cb17d948c6bdc525a1d60c0e567b2526feb4fa38b38f249961306b8", size = 264276, upload-time = "2025-11-15T08:37:14.369Z" },
+    { url = "https://files.pythonhosted.org/packages/5b/a8/d7e9cf03067b767e23908dbab5f6be7735d70cb4818311a248a8c4bb23cc/zope_interface-8.1.1-cp314-cp314-win_amd64.whl", hash = "sha256:169214da1b82b7695d1a36f92d70b11166d66b6b09d03df35d150cc62ac52276", size = 212492, upload-time = "2025-11-15T08:37:15.538Z" },
+]
+
+[[package]]
+name = "zstandard"
+version = "0.23.0"
+source = { registry = "https://pypi.org/simple" }
+dependencies = [
+    { name = "cffi", marker = "platform_python_implementation == 'PyPy'" },
+]
+sdist = { url = "https://files.pythonhosted.org/packages/ed/f6/2ac0287b442160a89d726b17a9184a4c615bb5237db763791a7fd16d9df1/zstandard-0.23.0.tar.gz", hash = "sha256:b2d8c62d08e7255f68f7a740bae85b3c9b8e5466baa9cbf7f57f1cde0ac6bc09", size = 681701, upload-time = "2024-07-15T00:18:06.141Z" }
+wheels = [
+    { url = "https://files.pythonhosted.org/packages/7b/83/f23338c963bd9de687d47bf32efe9fd30164e722ba27fb59df33e6b1719b/zstandard-0.23.0-cp312-cp312-macosx_10_9_x86_64.whl", hash = "sha256:b4567955a6bc1b20e9c31612e615af6b53733491aeaa19a6b3b37f3b65477094", size = 788713, upload-time = "2024-07-15T00:15:35.815Z" },
+    { url = "https://files.pythonhosted.org/packages/5b/b3/1a028f6750fd9227ee0b937a278a434ab7f7fdc3066c3173f64366fe2466/zstandard-0.23.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:1e172f57cd78c20f13a3415cc8dfe24bf388614324d25539146594c16d78fcc8", size = 633459, upload-time = "2024-07-15T00:15:37.995Z" },
+    { url = "https://files.pythonhosted.org/packages/26/af/36d89aae0c1f95a0a98e50711bc5d92c144939efc1f81a2fcd3e78d7f4c1/zstandard-0.23.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:b0e166f698c5a3e914947388c162be2583e0c638a4703fc6a543e23a88dea3c1", size = 4945707, upload-time = "2024-07-15T00:15:39.872Z" },
+    { url = "https://files.pythonhosted.org/packages/cd/2e/2051f5c772f4dfc0aae3741d5fc72c3dcfe3aaeb461cc231668a4db1ce14/zstandard-0.23.0-cp312-cp312-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:12a289832e520c6bd4dcaad68e944b86da3bad0d339ef7989fb7e88f92e96072", size = 5306545, upload-time = "2024-07-15T00:15:41.75Z" },
+    { url = "https://files.pythonhosted.org/packages/0a/9e/a11c97b087f89cab030fa71206963090d2fecd8eb83e67bb8f3ffb84c024/zstandard-0.23.0-cp312-cp312-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:d50d31bfedd53a928fed6707b15a8dbeef011bb6366297cc435accc888b27c20", size = 5337533, upload-time = "2024-07-15T00:15:44.114Z" },
+    { url = "https://files.pythonhosted.org/packages/fc/79/edeb217c57fe1bf16d890aa91a1c2c96b28c07b46afed54a5dcf310c3f6f/zstandard-0.23.0-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:72c68dda124a1a138340fb62fa21b9bf4848437d9ca60bd35db36f2d3345f373", size = 5436510, upload-time = "2024-07-15T00:15:46.509Z" },
+    { url = "https://files.pythonhosted.org/packages/81/4f/c21383d97cb7a422ddf1ae824b53ce4b51063d0eeb2afa757eb40804a8ef/zstandard-0.23.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:53dd9d5e3d29f95acd5de6802e909ada8d8d8cfa37a3ac64836f3bc4bc5512db", size = 4859973, upload-time = "2024-07-15T00:15:49.939Z" },
+    { url = "https://files.pythonhosted.org/packages/ab/15/08d22e87753304405ccac8be2493a495f529edd81d39a0870621462276ef/zstandard-0.23.0-cp312-cp312-musllinux_1_1_aarch64.whl", hash = "sha256:6a41c120c3dbc0d81a8e8adc73312d668cd34acd7725f036992b1b72d22c1772", size = 4936968, upload-time = "2024-07-15T00:15:52.025Z" },
+    { url = "https://files.pythonhosted.org/packages/eb/fa/f3670a597949fe7dcf38119a39f7da49a8a84a6f0b1a2e46b2f71a0ab83f/zstandard-0.23.0-cp312-cp312-musllinux_1_1_x86_64.whl", hash = "sha256:40b33d93c6eddf02d2c19f5773196068d875c41ca25730e8288e9b672897c105", size = 5467179, upload-time = "2024-07-15T00:15:54.971Z" },
+    { url = "https://files.pythonhosted.org/packages/4e/a9/dad2ab22020211e380adc477a1dbf9f109b1f8d94c614944843e20dc2a99/zstandard-0.23.0-cp312-cp312-musllinux_1_2_aarch64.whl", hash = "sha256:9206649ec587e6b02bd124fb7799b86cddec350f6f6c14bc82a2b70183e708ba", size = 4848577, upload-time = "2024-07-15T00:15:57.634Z" },
+    { url = "https://files.pythonhosted.org/packages/08/03/dd28b4484b0770f1e23478413e01bee476ae8227bbc81561f9c329e12564/zstandard-0.23.0-cp312-cp312-musllinux_1_2_i686.whl", hash = "sha256:76e79bc28a65f467e0409098fa2c4376931fd3207fbeb6b956c7c476d53746dd", size = 4693899, upload-time = "2024-07-15T00:16:00.811Z" },
+    { url = "https://files.pythonhosted.org/packages/2b/64/3da7497eb635d025841e958bcd66a86117ae320c3b14b0ae86e9e8627518/zstandard-0.23.0-cp312-cp312-musllinux_1_2_ppc64le.whl", hash = "sha256:66b689c107857eceabf2cf3d3fc699c3c0fe8ccd18df2219d978c0283e4c508a", size = 5199964, upload-time = "2024-07-15T00:16:03.669Z" },
+    { url = "https://files.pythonhosted.org/packages/43/a4/d82decbab158a0e8a6ebb7fc98bc4d903266bce85b6e9aaedea1d288338c/zstandard-0.23.0-cp312-cp312-musllinux_1_2_s390x.whl", hash = "sha256:9c236e635582742fee16603042553d276cca506e824fa2e6489db04039521e90", size = 5655398, upload-time = "2024-07-15T00:16:06.694Z" },
+    { url = "https://files.pythonhosted.org/packages/f2/61/ac78a1263bc83a5cf29e7458b77a568eda5a8f81980691bbc6eb6a0d45cc/zstandard-0.23.0-cp312-cp312-musllinux_1_2_x86_64.whl", hash = "sha256:a8fffdbd9d1408006baaf02f1068d7dd1f016c6bcb7538682622c556e7b68e35", size = 5191313, upload-time = "2024-07-15T00:16:09.758Z" },
+    { url = "https://files.pythonhosted.org/packages/e7/54/967c478314e16af5baf849b6ee9d6ea724ae5b100eb506011f045d3d4e16/zstandard-0.23.0-cp312-cp312-win32.whl", hash = "sha256:dc1d33abb8a0d754ea4763bad944fd965d3d95b5baef6b121c0c9013eaf1907d", size = 430877, upload-time = "2024-07-15T00:16:11.758Z" },
+    { url = "https://files.pythonhosted.org/packages/75/37/872d74bd7739639c4553bf94c84af7d54d8211b626b352bc57f0fd8d1e3f/zstandard-0.23.0-cp312-cp312-win_amd64.whl", hash = "sha256:64585e1dba664dc67c7cdabd56c1e5685233fbb1fc1966cfba2a340ec0dfff7b", size = 495595, upload-time = "2024-07-15T00:16:13.731Z" },
+    { url = "https://files.pythonhosted.org/packages/80/f1/8386f3f7c10261fe85fbc2c012fdb3d4db793b921c9abcc995d8da1b7a80/zstandard-0.23.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:576856e8594e6649aee06ddbfc738fec6a834f7c85bf7cadd1c53d4a58186ef9", size = 788975, upload-time = "2024-07-15T00:16:16.005Z" },
+    { url = "https://files.pythonhosted.org/packages/16/e8/cbf01077550b3e5dc86089035ff8f6fbbb312bc0983757c2d1117ebba242/zstandard-0.23.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:38302b78a850ff82656beaddeb0bb989a0322a8bbb1bf1ab10c17506681d772a", size = 633448, upload-time = "2024-07-15T00:16:17.897Z" },
+    { url = "https://files.pythonhosted.org/packages/06/27/4a1b4c267c29a464a161aeb2589aff212b4db653a1d96bffe3598f3f0d22/zstandard-0.23.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl", hash = "sha256:d2240ddc86b74966c34554c49d00eaafa8200a18d3a5b6ffbf7da63b11d74ee2", size = 4945269, upload-time = "2024-07-15T00:16:20.136Z" },
+    { url = "https://files.pythonhosted.org/packages/7c/64/d99261cc57afd9ae65b707e38045ed8269fbdae73544fd2e4a4d50d0ed83/zstandard-0.23.0-cp313-cp313-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl", hash = "sha256:2ef230a8fd217a2015bc91b74f6b3b7d6522ba48be29ad4ea0ca3a3775bf7dd5", size = 5306228, upload-time = "2024-07-15T00:16:23.398Z" },
+    { url = "https://files.pythonhosted.org/packages/7a/cf/27b74c6f22541f0263016a0fd6369b1b7818941de639215c84e4e94b2a1c/zstandard-0.23.0-cp313-cp313-manylinux_2_17_s390x.manylinux2014_s390x.whl", hash = "sha256:774d45b1fac1461f48698a9d4b5fa19a69d47ece02fa469825b442263f04021f", size = 5336891, upload-time = "2024-07-15T00:16:26.391Z" },
+    { url = "https://files.pythonhosted.org/packages/fa/18/89ac62eac46b69948bf35fcd90d37103f38722968e2981f752d69081ec4d/zstandard-0.23.0-cp313-cp313-manylinux_2_17_x86_64.manylinux2014_x86_64.whl", hash = "sha256:6f77fa49079891a4aab203d0b1744acc85577ed16d767b52fc089d83faf8d8ed", size = 5436310, upload-time = "2024-07-15T00:16:29.018Z" },
+    { url = "https://files.pythonhosted.org/packages/a8/a8/5ca5328ee568a873f5118d5b5f70d1f36c6387716efe2e369010289a5738/zstandard-0.23.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl", hash = "sha256:ac184f87ff521f4840e6ea0b10c0ec90c6b1dcd0bad2f1e4a9a1b4fa177982ea", size = 4859912, upload-time = "2024-07-15T00:16:31.871Z" },
+    { url = "https://files.pythonhosted.org/packages/ea/ca/3781059c95fd0868658b1cf0440edd832b942f84ae60685d0cfdb808bca1/zstandard-0.23.0-cp313-cp313-musllinux_1_1_aarch64.whl", hash = "sha256:c363b53e257246a954ebc7c488304b5592b9c53fbe74d03bc1c64dda153fb847", size = 4936946, upload-time = "2024-07-15T00:16:34.593Z" },
+    { url = "https://files.pythonhosted.org/packages/ce/11/41a58986f809532742c2b832c53b74ba0e0a5dae7e8ab4642bf5876f35de/zstandard-0.23.0-cp313-cp313-musllinux_1_1_x86_64.whl", hash = "sha256:e7792606d606c8df5277c32ccb58f29b9b8603bf83b48639b7aedf6df4fe8171", size = 5466994, upload-time = "2024-07-15T00:16:36.887Z" },
+    { url = "https://files.pythonhosted.org/packages/83/e3/97d84fe95edd38d7053af05159465d298c8b20cebe9ccb3d26783faa9094/zstandard-0.23.0-cp313-cp313-musllinux_1_2_aarch64.whl", hash = "sha256:a0817825b900fcd43ac5d05b8b3079937073d2b1ff9cf89427590718b70dd840", size = 4848681, upload-time = "2024-07-15T00:16:39.709Z" },
+    { url = "https://files.pythonhosted.org/packages/6e/99/cb1e63e931de15c88af26085e3f2d9af9ce53ccafac73b6e48418fd5a6e6/zstandard-0.23.0-cp313-cp313-musllinux_1_2_i686.whl", hash = "sha256:9da6bc32faac9a293ddfdcb9108d4b20416219461e4ec64dfea8383cac186690", size = 4694239, upload-time = "2024-07-15T00:16:41.83Z" },
+    { url = "https://files.pythonhosted.org/packages/ab/50/b1e703016eebbc6501fc92f34db7b1c68e54e567ef39e6e59cf5fb6f2ec0/zstandard-0.23.0-cp313-cp313-musllinux_1_2_ppc64le.whl", hash = "sha256:fd7699e8fd9969f455ef2926221e0233f81a2542921471382e77a9e2f2b57f4b", size = 5200149, upload-time = "2024-07-15T00:16:44.287Z" },
+    { url = "https://files.pythonhosted.org/packages/aa/e0/932388630aaba70197c78bdb10cce2c91fae01a7e553b76ce85471aec690/zstandard-0.23.0-cp313-cp313-musllinux_1_2_s390x.whl", hash = "sha256:d477ed829077cd945b01fc3115edd132c47e6540ddcd96ca169facff28173057", size = 5655392, upload-time = "2024-07-15T00:16:46.423Z" },
+    { url = "https://files.pythonhosted.org/packages/02/90/2633473864f67a15526324b007a9f96c96f56d5f32ef2a56cc12f9548723/zstandard-0.23.0-cp313-cp313-musllinux_1_2_x86_64.whl", hash = "sha256:fa6ce8b52c5987b3e34d5674b0ab529a4602b632ebab0a93b07bfb4dfc8f8a33", size = 5191299, upload-time = "2024-07-15T00:16:49.053Z" },
+    { url = "https://files.pythonhosted.org/packages/b0/4c/315ca5c32da7e2dc3455f3b2caee5c8c2246074a61aac6ec3378a97b7136/zstandard-0.23.0-cp313-cp313-win32.whl", hash = "sha256:a9b07268d0c3ca5c170a385a0ab9fb7fdd9f5fd866be004c4ea39e44edce47dd", size = 430862, upload-time = "2024-07-15T00:16:51.003Z" },
+    { url = "https://files.pythonhosted.org/packages/a2/bf/c6aaba098e2d04781e8f4f7c0ba3c7aa73d00e4c436bcc0cf059a66691d1/zstandard-0.23.0-cp313-cp313-win_amd64.whl", hash = "sha256:f3513916e8c645d0610815c257cbfd3242adfd5c4cfa78be514e5a3ebb42a41b", size = 495578, upload-time = "2024-07-15T00:16:53.135Z" },
+]

From 1618becd9fab59b4e4eacdd059384946ec46b799 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Thu, 27 Nov 2025 21:41:12 -0600
Subject: [PATCH 03/17] create task list

---
 benchmarks/sregym/data/benchmark/tasks.jsonl | 89 ++++++++++++++++++++
 1 file changed, 89 insertions(+)
 create mode 100644 benchmarks/sregym/data/benchmark/tasks.jsonl

diff --git a/benchmarks/sregym/data/benchmark/tasks.jsonl b/benchmarks/sregym/data/benchmark/tasks.jsonl
new file mode 100644
index 0000000..b01020f
--- /dev/null
+++ b/benchmarks/sregym/data/benchmark/tasks.jsonl
@@ -0,0 +1,89 @@
+{"id": "sregym_001", "task_name": "faulty_image_correlated"}
+{"id": "sregym_002", "task_name": "update_incompatible_correlated"}
+{"id": "sregym_003", "task_name": "incorrect_image"}
+{"id": "sregym_004", "task_name": "incorrect_port_assignment"}
+{"id": "sregym_005", "task_name": "misconfig_app_hotel_res"}
+{"id": "sregym_006", "task_name": "missing_env_variable_astronomy_shop"}
+{"id": "sregym_007", "task_name": "revoke_auth_mongodb-1"}
+{"id": "sregym_008", "task_name": "revoke_auth_mongodb-2"}
+{"id": "sregym_009", "task_name": "storage_user_unregistered-1"}
+{"id": "sregym_010", "task_name": "storage_user_unregistered-2"}
+{"id": "sregym_011", "task_name": "valkey_auth_disruption"}
+{"id": "sregym_012", "task_name": "valkey_memory_disruption"}
+{"id": "sregym_013", "task_name": "capacity_decrease_rpc_retry_storm"}
+{"id": "sregym_014", "task_name": "gc_capacity_degradation"}
+{"id": "sregym_015", "task_name": "load_spike_rpc_retry_storm"}
+{"id": "sregym_016", "task_name": "assign_to_non_existent_node"}
+{"id": "sregym_017", "task_name": "auth_miss_mongodb"}
+{"id": "sregym_018", "task_name": "configmap_drift_hotel_reservation"}
+{"id": "sregym_019", "task_name": "duplicate_pvc_mounts_astronomy_shop"}
+{"id": "sregym_020", "task_name": "duplicate_pvc_mounts_hotel_reservation"}
+{"id": "sregym_021", "task_name": "duplicate_pvc_mounts_social_network"}
+{"id": "sregym_022", "task_name": "env_variable_shadowing_astronomy_shop"}
+{"id": "sregym_023", "task_name": "k8s_target_port-misconfig"}
+{"id": "sregym_024", "task_name": "liveness_probe_misconfiguration_astronomy_shop"}
+{"id": "sregym_025", "task_name": "liveness_probe_misconfiguration_hotel_reservation"}
+{"id": "sregym_026", "task_name": "liveness_probe_misconfiguration_social_network"}
+{"id": "sregym_027", "task_name": "liveness_probe_too_aggressive_astronomy_shop"}
+{"id": "sregym_028", "task_name": "liveness_probe_too_aggressive_hotel_reservation"}
+{"id": "sregym_029", "task_name": "liveness_probe_too_aggressive_social_network"}
+{"id": "sregym_030", "task_name": "missing_configmap_hotel_reservation"}
+{"id": "sregym_031", "task_name": "missing_configmap_social_network"}
+{"id": "sregym_032", "task_name": "missing_service_astronomy_shop"}
+{"id": "sregym_033", "task_name": "missing_service_hotel_reservation"}
+{"id": "sregym_034", "task_name": "missing_service_social_network"}
+{"id": "sregym_035", "task_name": "namespace_memory_limit"}
+{"id": "sregym_036", "task_name": "pod_anti_affinity_deadlock"}
+{"id": "sregym_037", "task_name": "persistent_volume_affinity_violation"}
+{"id": "sregym_038", "task_name": "pvc_claim_mismatch"}
+{"id": "sregym_039", "task_name": "rbac_misconfiguration"}
+{"id": "sregym_040", "task_name": "readiness_probe_misconfiguration_astronomy_shop"}
+{"id": "sregym_041", "task_name": "readiness_probe_misconfiguration_hotel_reservation"}
+{"id": "sregym_042", "task_name": "readiness_probe_misconfiguration_social_network"}
+{"id": "sregym_043", "task_name": "resource_request_too_large"}
+{"id": "sregym_044", "task_name": "resource_request_too_small"}
+{"id": "sregym_045", "task_name": "rolling_update_misconfigured_hotel_reservation"}
+{"id": "sregym_046", "task_name": "rolling_update_misconfigured_social_network"}
+{"id": "sregym_047", "task_name": "scale_pod_zero_social_net"}
+{"id": "sregym_048", "task_name": "service_dns_resolution_failure_astronomy_shop"}
+{"id": "sregym_049", "task_name": "service_dns_resolution_failure_social_network"}
+{"id": "sregym_050", "task_name": "sidecar_port_conflict_astronomy_shop"}
+{"id": "sregym_051", "task_name": "sidecar_port_conflict_hotel_reservation"}
+{"id": "sregym_052", "task_name": "sidecar_port_conflict_social_network"}
+{"id": "sregym_053", "task_name": "stale_coredns_config_astronomy_shop"}
+{"id": "sregym_054", "task_name": "stale_coredns_config_social_network"}
+{"id": "sregym_055", "task_name": "taint_no_toleration_social_network"}
+{"id": "sregym_056", "task_name": "wrong_bin_usage"}
+{"id": "sregym_057", "task_name": "wrong_dns_policy_astronomy_shop"}
+{"id": "sregym_058", "task_name": "wrong_dns_policy_hotel_reservation"}
+{"id": "sregym_059", "task_name": "wrong_dns_policy_social_network"}
+{"id": "sregym_060", "task_name": "wrong_service_selector_astronomy_shop"}
+{"id": "sregym_061", "task_name": "wrong_service_selector_hotel_reservation"}
+{"id": "sregym_062", "task_name": "wrong_service_selector_social_network"}
+{"id": "sregym_063", "task_name": "astronomy_shop_ad_service_failure"}
+{"id": "sregym_064", "task_name": "astronomy_shop_ad_service_high_cpu"}
+{"id": "sregym_065", "task_name": "astronomy_shop_ad_service_manual_gc"}
+{"id": "sregym_066", "task_name": "astronomy_shop_cart_service_failure"}
+{"id": "sregym_067", "task_name": "astronomy_shop_ad_service_image_slow_load"}
+{"id": "sregym_068", "task_name": "astronomy_shop_payment_service_failure"}
+{"id": "sregym_069", "task_name": "astronomy_shop_payment_service_unreachable"}
+{"id": "sregym_070", "task_name": "astronomy_shop_product_catalog_service_failure"}
+{"id": "sregym_071", "task_name": "astronomy_shop_recommendation_service_cache_failure"}
+{"id": "sregym_072", "task_name": "kafka_queue_problems"}
+{"id": "sregym_073", "task_name": "loadgenerator_flood_homepage"}
+{"id": "sregym_074", "task_name": "trainticket_f17_nested_sql_select_clause_error"}
+{"id": "sregym_075", "task_name": "trainticket_f22_sql_column_name_mismatch_error"}
+{"id": "sregym_076", "task_name": "read_error"}
+{"id": "sregym_077", "task_name": "latent_sector_error"}
+{"id": "sregym_078", "task_name": "silent_data_corruption"}
+{"id": "sregym_079", "task_name": "ingress_misroute"}
+{"id": "sregym_080", "task_name": "network_policy_block"}
+{"id": "sregym_081", "task_name": "social_net_hotel_res_astro_shop_concurrent_failures"}
+{"id": "sregym_082", "task_name": "kubelet_crash"}
+{"id": "sregym_083", "task_name": "workload_imbalance"}
+{"id": "sregym_084", "task_name": "operator_overload_replicas"}
+{"id": "sregym_085", "task_name": "operator_non_existent_storage"}
+{"id": "sregym_086", "task_name": "operator_invalid_affinity_toleration"}
+{"id": "sregym_087", "task_name": "operator_security_context_fault"}
+{"id": "sregym_088", "task_name": "operator_wrong_update_strategy_fault"}
+

From f244ff228e797a0791feb4ab56a40591d435a01e Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Mon, 1 Dec 2025 11:38:44 -0600
Subject: [PATCH 04/17] add install.sh

---
 .../example_bench_benchmark_timestamp.jsonl   |   3 -
 benchmarks/sregym/env.toml                    |   5 +-
 benchmarks/sregym/install.sh                  | 168 ++++++++++++++++--
 3 files changed, 159 insertions(+), 17 deletions(-)
 delete mode 100644 benchmarks/sregym/data/benchmark/example_bench_benchmark_timestamp.jsonl

diff --git a/benchmarks/sregym/data/benchmark/example_bench_benchmark_timestamp.jsonl b/benchmarks/sregym/data/benchmark/example_bench_benchmark_timestamp.jsonl
deleted file mode 100644
index c4b375f..0000000
--- a/benchmarks/sregym/data/benchmark/example_bench_benchmark_timestamp.jsonl
+++ /dev/null
@@ -1,3 +0,0 @@
-{"id": "platform_1", "sys_prompt": "You are an expert on Kusto. Help me write kusto query based on the user requirement. DO NOT explain anything, DO give KQL directly. You should strictly use the following format:\n##### KQL\n```\ncluster(#CLUSTER_NAME#).database(#DATABASE_NAME#).#TABLE_NAME# | where #COLUMN_NAME# xxx\n```", "user_prompt": "Query the nodes are stuck in Linux MOS under cluster IAD02PrdGPC01", "thinking": "chain of thought", "response": "let targetCluster = \"IAD02PrdGPC01\";\ncluster(\"azuredcm\").database(\"AzureDCMDb\").dcmInventoryMachines \n| where AzureClusterName == targetCluster\n| join kind=inner \n( \n    cluster('Oneboot').database('OneDhcp').OneDhcpApi\n    | where PreciseTimeStamp > ago(7d)\n    | where ApiName has 'SetDeviceOsType' \n    | parse ApiParams with \"name=\" MachineName \",osType=\" OSType \",osPath=\" OSPath\n) on MachineName\n| project PreciseTimeStamp, AzureClusterName, AzureNodeId, MachineName, OSType, OSPath\n| summarize arg_max(PreciseTimeStamp, *) by AzureNodeId, MachineName\n| where OSPath == \"LinuxMOS\" ", "metadata": {"scenario": "Example", "subtask": "Example", "data_quality":"high", "XXX": "XXX"}}
-{"id": "platform_2", "sys_prompt": "You are an expert on Kusto. Help me write kusto query based on the user requirement. DO NOT explain anything, DO give KQL directly. You should strictly use the following format:\n##### KQL\n```\ncluster(#CLUSTER_NAME#).database(#DATABASE_NAME#).#TABLE_NAME# | where #COLUMN_NAME# xxx\n```", "user_prompt": "Check the capacity of cluster SIN22PrdApp22, which is a non-GPU cluster", "thinking": "chain of thought", "response": "cluster(\"azcore.centralus\").database(\"AzureCP\").MycroftNodeHealthSnapshot\n| where PreciseTimeStamp  >= ago(1d)\n| where ClusterName == \"SIN22PrdApp22\"\n| summarize arg_max(PreciseTimeStamp, *) by ClusterName, NodeId\n| project PreciseTimeStamp, ClusterName, NodeId, NsdState, AvailabilityState, ContainerCount\n| summarize NodeCount = count() by NsdState, AvailabilityState, ContainerCount", "metadata": {"scenario": "Example", "subtask": "Example", "data_quality":"high", "XXX": "XXX"}}
-{"id": "platform_3", "sys_prompt": "You are an expert on Kusto. Help me write kusto query based on the user requirement. DO NOT explain anything, DO give KQL directly. You should strictly use the following format:\n##### KQL\n```\ncluster(#CLUSTER_NAME#).database(#DATABASE_NAME#).#TABLE_NAME# | where #COLUMN_NAME# xxx\n```", "user_prompt": "Check the capacity of cluster IAD02PrdGPC01, which is a GPU cluster", "thinking": "chain of thought", "response": "let cluster = \"IAD02PrdGPC01\";\ncluster(\"azcore.centralus\").database(\"AzureCP\").MycroftNodeSnapshot\n| where PreciseTimeStamp  >= ago(1d)\n| where ClusterName == cluster\n| summarize arg_max(PreciseTimeStamp, *) by ClusterName, NodeId\n| where MachinePoolName contains \"MP2\"\n| project PreciseTimeStamp, ClusterName, NodeId, MachinePoolName\n| join (\ncluster(\"azcore.centralus\").database(\"AzureCP\").MycroftNodeHealthSnapshot\n| where PreciseTimeStamp  >= ago(1d)\n| where ClusterName == cluster\n| summarize arg_max(PreciseTimeStamp, *) by ClusterName, NodeId\n| project PreciseTimeStamp, ClusterName, NodeId, NsdState, AvailabilityState, ContainerCount\n) on NodeId\n| summarize NodeCount = count() by NsdState, AvailabilityState, ContainerCount", "metadata": {"scenario": "Example", "subtask": "Example", "data_quality":"high", "XXX": "XXX"}}
diff --git a/benchmarks/sregym/env.toml b/benchmarks/sregym/env.toml
index eac33ed..1628beb 100644
--- a/benchmarks/sregym/env.toml
+++ b/benchmarks/sregym/env.toml
@@ -9,4 +9,7 @@ use_gpu = false
 
 [env-docker]
 image = "default"
-entrypoint = "./run.sh"
\ No newline at end of file
+entrypoint = "./run.sh"
+
+[sregym_mode]
+mode = "remote" # where to run the Kubernetes Cluster {kind, remote}
\ No newline at end of file
diff --git a/benchmarks/sregym/install.sh b/benchmarks/sregym/install.sh
index 8a2c40c..b49a571 100755
--- a/benchmarks/sregym/install.sh
+++ b/benchmarks/sregym/install.sh
@@ -1,19 +1,161 @@
 #!/bin/bash
 
-set -e  # Exit immediately on error.
+set -e
 
-# if .venv does not exist, create it
-if [ -d ".venv" ]; then
-    echo "==> .venv already exists, skipping creation."
+
+# Homebrew installation
+if ! command -v brew >/dev/null 2>&1; then
+    echo "==> Homebrew not found. Installing Homebrew..."
+    /bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)"
+fi
+
+# Helm installation
+if ! command -v helm >/dev/null 2>&1; then
+    echo "==> Helm not found. Installing Helm..."
+    brew install helm
+fi
+
+# Detect architecture and set kubectl architecture
+ARCH=$(uname -m)
+if [ "$ARCH" == "x86_64" ]; then
+    KUBECTL_ARCH="amd64"
+    echo "==> x86_64 machine detected. Using amd64 kubectl."
+elif [ "$ARCH" == "aarch64" ]; then
+    KUBECTL_ARCH="arm64"
+    echo "==> aarch64 machine detected. Using arm64 kubectl."
+else
+    echo "==> Unknown machine type detected: $ARCH"
+    exit 1
+fi
+
+# kubectl installation
+if ! command -v kubectl >/dev/null 2>&1; then
+    echo "==> kubectl not found. Installing kubectl..."
+    
+    # Get the latest stable version
+    KUBECTL_VERSION=$(curl -L -s https://dl.k8s.io/release/stable.txt)
+    echo "==> Installing kubectl version: $KUBECTL_VERSION"
+    
+    # Download kubectl binary
+    curl -LO "https://dl.k8s.io/release/${KUBECTL_VERSION}/bin/linux/${KUBECTL_ARCH}/kubectl"
+    
+    # Download kubectl checksum file
+    curl -LO "https://dl.k8s.io/release/${KUBECTL_VERSION}/bin/linux/${KUBECTL_ARCH}/kubectl.sha256"
+    
+    # Validate the binary against the checksum file
+    echo "$(cat kubectl.sha256)  kubectl" | sha256sum --check
+    if [ $? -ne 0 ]; then
+        echo "==> Error: kubectl checksum validation failed!"
+        rm -f kubectl kubectl.sha256
+        exit 1
+    fi
+    
+    # Install kubectl
+    sudo install -o root -g root -m 0755 kubectl /usr/local/bin/kubectl
+    
+    # Clean up installation files
+    rm -f kubectl kubectl.sha256
+    
+    # Verify installation
+    kubectl version --client
+    echo "==> kubectl installed successfully."
+else
+    echo "==> kubectl is already installed."
+    kubectl version --client
+fi
+
+# Install uv (Python package manager)
+if ! command -v uv >/dev/null 2>&1; then
+    echo "==> uv not found. Installing uv..."
+    curl -LsSf https://astral.sh/uv/install.sh | sh
+    
+    # Add uv to PATH if not already there
+    export PATH="$HOME/.cargo/bin:$HOME/.local/bin:$PATH"
+    
+    # Verify installation
+    if command -v uv >/dev/null 2>&1; then
+        uv --version
+        echo "==> uv installed successfully."
+    else
+        echo "==> Warning: uv installation may have failed. Please check your PATH."
+        echo "==> You may need to add ~/.cargo/bin or ~/.local/bin to your PATH."
+    fi
+else
+    echo "==> uv is already installed."
+    uv --version
+fi
+
+# Synchronize the dependencies
+cd sregym_core
+uv sync
+uv run pre-commit install
+
+# Check for inventory.yml and configure remote cluster if present
+if [ -f "scripts/ansible/inventory.yml" ]; then
+    echo "==> Found inventory.yml. Checking if cluster already exists..."
+    
+    # Check if cluster is already configured
+    CLUSTER_EXISTS=false
+    if kubectl get nodes >/dev/null 2>&1; then
+        READY_NODES=$(kubectl get nodes --no-headers 2>/dev/null | grep -c " Ready " || echo "0")
+        TOTAL_NODES=$(kubectl get nodes --no-headers 2>/dev/null | wc -l || echo "0")
+        
+        if [ "$TOTAL_NODES" -gt 0 ] && [ "$READY_NODES" -eq "$TOTAL_NODES" ]; then
+            CLUSTER_EXISTS=true
+            echo "==> Cluster already exists with $TOTAL_NODES node(s) in Ready state."
+            echo "==> Cluster nodes:"
+            kubectl get nodes
+            echo ""
+            echo "==> ✓ Skipping cluster setup. Cluster is already configured correctly."
+        fi
+    fi
+    
+    # Only run ansible-playbook if cluster doesn't exist or is not fully ready
+    if [ "$CLUSTER_EXISTS" = false ]; then
+        echo "==> Cluster not found or not fully ready. Configuring remote cluster with Ansible..."
+        cd scripts/ansible
+        ansible-playbook -i inventory.yml setup_cluster.yml
+        
+        if [ $? -eq 0 ]; then
+            echo "==> Ansible playbook completed successfully."
+            
+            # Verify cluster configuration with kubectl
+            echo "==> Verifying cluster configuration..."
+            if kubectl get nodes >/dev/null 2>&1; then
+                echo "==> Cluster nodes:"
+                kubectl get nodes
+                echo ""
+                
+                # Check if nodes are in Ready state
+                READY_NODES=$(kubectl get nodes --no-headers 2>/dev/null | grep -c " Ready " || echo "0")
+                TOTAL_NODES=$(kubectl get nodes --no-headers 2>/dev/null | wc -l || echo "0")
+                
+                if [ "$READY_NODES" -gt 0 ] && [ "$READY_NODES" -eq "$TOTAL_NODES" ]; then
+                    echo "==> ✓ All nodes are in Ready state. Cluster configuration is correct."
+                elif [ "$READY_NODES" -gt 0 ]; then
+                    echo "==> ⚠ Warning: Only $READY_NODES out of $TOTAL_NODES nodes are Ready."
+                    echo "==> Please check the cluster status manually."
+                else
+                    echo "==> ⚠ Warning: No nodes are in Ready state."
+                    echo "==> Please check the cluster status manually."
+                fi
 else
-    echo "==> Creating .venv directory..."
-
-    python3 -m venv .venv
-    source .venv/bin/activate
-    pip install -r requirements.txt
-    pip install pytest
-    pip install pytest-cov
-    deactivate
+                echo "==> ⚠ Warning: kubectl cannot connect to the cluster."
+                echo "==> Please verify the cluster configuration manually."
+            fi
+            cd - >/dev/null
+        else
+            echo "==> Error: Ansible playbook failed."
+            cd - >/dev/null
+            exit 1
+        fi
+    fi
+else
+    echo "==> No inventory.yml found at scripts/ansible/inventory.yml. Skipping remote cluster setup."
+    echo "==> To set up a remote cluster, create inventory.yml from inventory.yml.example"
 fi
 
-echo "==> ExampleBench environment is set up successfully."
+
+
+
+

From 6788f100a8950bed4ff2defa6c9a30d5dfe7a04f Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Mon, 1 Dec 2025 11:40:23 -0600
Subject: [PATCH 05/17] modify main.py entrypoint

---
 benchmarks/sregym/sregym_core/main.py | 30 +++++++++++++--------------
 1 file changed, 15 insertions(+), 15 deletions(-)

diff --git a/benchmarks/sregym/sregym_core/main.py b/benchmarks/sregym/sregym_core/main.py
index d56609b..86534b6 100644
--- a/benchmarks/sregym/sregym_core/main.py
+++ b/benchmarks/sregym/sregym_core/main.py
@@ -194,20 +194,7 @@ def start_dashboard_process():
     return dashboard_process
 
 
-def main():
-    # Parse command-line arguments
-    parser = argparse.ArgumentParser(description="Run SREGym benchmark suite")
-    parser.add_argument(
-        "--problem",
-        type=str,
-        default=None,
-        help="Run only a specific problem by its ID (e.g., 'target_port')",
-    )
-    parser.add_argument(
-        "--use-external-harness", action="store_true", help="For use in external harnesses, deploy the fault and exit."
-    )
-    args = parser.parse_args()
-
+def main(args):
     # set up the logger
     init_logger()
 
@@ -286,4 +273,17 @@ def main():
 
 
 if __name__ == "__main__":
-    main()
+    # Parse command-line arguments
+    parser = argparse.ArgumentParser(description="Run SREGym benchmark suite")
+    parser.add_argument(
+        "--problem",
+        type=str,
+        default=None,
+        help="Run only a specific problem by its ID (e.g., 'target_port')",
+    )
+    parser.add_argument(
+        "--use-external-harness", action="store_true", help="For use in external harnesses, deploy the fault and exit."
+    )
+    args = parser.parse_args()
+
+    main(args)

From 51bfd5e8c236cc7c4cf5d52cc357c1dc31161564 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Mon, 1 Dec 2025 12:04:12 -0600
Subject: [PATCH 06/17] add agent selection

---
 benchmarks/sregym/sregym_core/main.py | 22 ++++++++++++++++++----
 1 file changed, 18 insertions(+), 4 deletions(-)

diff --git a/benchmarks/sregym/sregym_core/main.py b/benchmarks/sregym/sregym_core/main.py
index 86534b6..9587dad 100644
--- a/benchmarks/sregym/sregym_core/main.py
+++ b/benchmarks/sregym/sregym_core/main.py
@@ -32,7 +32,7 @@ def get_current_datetime_formatted():
     return formatted_datetime
 
 
-def driver_loop(conductor: Conductor, problem_filter: str = None, use_external_harness: bool = False):
+def driver_loop(conductor: Conductor, problem_filter: str = None, agent_to_run: str = "stratus", use_external_harness: bool = False):
     """
     Deploy each problem and wait for HTTP grading via POST /submit.
     Returns a list of flattened dicts with results per problem.
@@ -47,9 +47,17 @@ async def driver():
         console = Console()
         # give the API a moment to bind
         await asyncio.sleep(1)
-        agents_to_start = list_agents()
+        agents_to_start = list_agents().keys()
         all_results = []
-        for agent_name in agents_to_start.keys():
+        
+        if agent_to_run is not None:
+            if agent_to_run not in agents_to_start:
+                console.log(f"⚠️ Agent '{agent_to_run}' not found in registry. Available agents: {agents_to_start}")
+                sys.exit(1)
+            else:
+                agents_to_start = [agent_to_run]
+        
+        for agent_name in agents_to_start:
             console.log(f"Starting agent now: {agent_name}")
             conductor.register_agent(agent_name)
             all_results_for_agent = []
@@ -208,7 +216,7 @@ def main(args):
     # Start the driver in the background; it will call request_shutdown() when finished
     driver_thread = threading.Thread(
         target=_run_driver_and_shutdown,
-        args=(conductor, args.problem, args.use_external_harness),
+        args=(conductor, args.problem, args.agent, args.use_external_harness),
         name="driver",
         daemon=True,
     )
@@ -281,6 +289,12 @@ def main(args):
         default=None,
         help="Run only a specific problem by its ID (e.g., 'target_port')",
     )
+    parser.add_argument(
+        "--agent",
+        type=str,
+        default=None,
+        help="Run only a specific agent by its name (e.g., 'stratus')",
+    )
     parser.add_argument(
         "--use-external-harness", action="store_true", help="For use in external harnesses, deploy the fault and exit."
     )

From f408aebc1e06fa8db3082bfaeba593c5fe84fa3f Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Tue, 2 Dec 2025 02:47:32 -0600
Subject: [PATCH 07/17] ensure compatibility with sregym_core

---
 benchmarks/sregym/install.sh  |   5 +-
 benchmarks/sregym/run.sh      |  11 ++-
 benchmarks/sregym/src/main.py | 179 +++++++++++++++-------------------
 3 files changed, 91 insertions(+), 104 deletions(-)

diff --git a/benchmarks/sregym/install.sh b/benchmarks/sregym/install.sh
index b49a571..79d9da8 100755
--- a/benchmarks/sregym/install.sh
+++ b/benchmarks/sregym/install.sh
@@ -155,7 +155,10 @@ else
     echo "==> To set up a remote cluster, create inventory.yml from inventory.yml.example"
 fi
 
+cd -
 
+source sregym_core/.venv/bin/activate
 
+# uv pip install -r requirements.txt
 
-
+deactivate
diff --git a/benchmarks/sregym/run.sh b/benchmarks/sregym/run.sh
index 45f0f10..5158c95 100755
--- a/benchmarks/sregym/run.sh
+++ b/benchmarks/sregym/run.sh
@@ -9,7 +9,6 @@ if [ $# -ne 1 ]; then
 fi
 
 MODEL_NAME="$1"
-NEW_MODEL_NAME="${MODEL_NAME//\//_}"
 
 # Note: set it to "openai" if you are using your own model server (vllm)
 # Otherwise, set it to "azure" if you are using azure gpt endpoint
@@ -18,12 +17,14 @@ NEW_MODEL_NAME="${MODEL_NAME//\//_}"
 # export OPENAI_BASE_URL="http://localhost:2327/v1"
 # export OPENAI_API_KEY="EMPTY"
 
-source .venv/bin/activate
-echo "==> Start to run ExampleBench"
+source benchmarks/sregym/sregym_core/.venv/bin/activate
+
+echo "==> Start to run SREGym"
 # Note that if you benchmark has multiple tasks, you need to add --task <task> 
 # in your code to enable task selection.
+
 python src/main.py \
-    --model_name "${MODEL_NAME}"
-    # --save_path "./outputs/examplebench__${NEW_MODEL_NAME}__$(date +"%Y-%m-%d_%H-%M-%S")" \
+    --agent "stratus" \
+    --model_name "${MODEL_NAME}" 
     
 deactivate
diff --git a/benchmarks/sregym/src/main.py b/benchmarks/sregym/src/main.py
index b078c17..a7bdb58 100644
--- a/benchmarks/sregym/src/main.py
+++ b/benchmarks/sregym/src/main.py
@@ -1,120 +1,103 @@
-"""Example for benchmarking the performance of a model on a specific task."""
-
 import argparse
+import datetime
 import json
 import os
 import sys
-from datetime import datetime
 
-sys.path.append(os.path.abspath(os.path.join(os.path.dirname(__file__), '../../../')))
+# Add parent directory to path to allow importing sregym_core
+sys.path.append(os.path.abspath(os.path.join(os.path.dirname(__file__), "../")))
+
+try:
+    from sregym_core.main import main as sregym_main
+except ImportError:
+    # In case sregym_core is not found in parent, try explicit path
+    sys.path.append(
+        os.path.abspath(os.path.join(os.path.dirname(__file__), "../sregym_core"))
+    )
+    from sregym_core.main import main as sregym_main
 
-from sdk.utils import set_llm_endpoint_from_config
+import logging
 
-set_llm_endpoint_from_config('env.toml')
+logging.basicConfig(level=logging.INFO, format="[%(levelname)s] %(message)s")
+logger = logging.getLogger(__name__)
 
-from sdk.evaluator import BasicEvaluator  # noqa: E402
-from sdk.executor import SimpleExecutor  # noqa: E402
 
+def main(input_file: str, output_dir: str, model_name: str, agent_name: str):
+    # Set the environment variable for the model so the agent can find it
+    os.environ["PROVIDER_OVERWRITE"] = model_name
 
-def main(_input_file, output_dir, _model_name, agent_name):
-    """Main function for running the benchmark."""
-    total_score = []
-    with (
-        open(_input_file, encoding='utf-8') as data,
-        open(os.path.join(output_dir, 'result.jsonl'), 'w', encoding='utf-8') as output_file,
-    ):
-        for line in data:
+    # Ensure output directory exists
+    save_path = os.path.abspath(os.path.expanduser(output_dir))
+    os.makedirs(save_path, exist_ok=True)
+
+    scores = []
+
+    with open(input_file) as f, open(
+        os.path.join(output_dir, "result.jsonl"), "w"
+    ) as out:
+        for line in f:
             item = json.loads(line)
-            print('============ ' + item['id'] + ' ============')
-            if agent_name == 'llm':
-                executor = SimpleExecutor(_model_name, item['sys_prompt'])
-            else:
-                # You can add more agents here
-                raise ValueError(f'Unknown agent name: {agent_name}')
-            response = executor.run(item['user_prompt'])
-
-            evaluator = BasicEvaluator(_model_name)
-            offline_metrics = evaluator.eval(question=item['user_prompt'], answer=response, groundtruth=item)
-
-            total_score.append(
-                (
-                    offline_metrics['syntax_acc'],
-                    offline_metrics['exact_match'],
-                    offline_metrics['jaccard_similarity'],
-                    offline_metrics['cosine_similarity'],
-                    offline_metrics['embeddings_similarity'],
-                    offline_metrics['llmjudger_rating'],
+            task_id, task_name = item["id"], item["task_name"]
+            logger.info(f"\n{'='*70}\nTask: {task_id} ({task_name})\n{'='*70}")
+
+            try:
+                sregym_args = argparse.Namespace(
+                    agent=agent_name,
+                    model=model_name,
+                    problem=task_name,
+                    use_external_harness=False,
                 )
-            )  # drop llmjudger_answer
-
-            result = {
-                'id': item['id'],
-                'sys_prompt': item['sys_prompt'],
-                'user_prompt': item['user_prompt'],
-                'groundtruth': item['response'],
-                'response': response,
-                'syntax_acc': offline_metrics['syntax_acc'],
-                'exact_match': offline_metrics['exact_match'],
-                'jaccard_similarity': offline_metrics['jaccard_similarity'],
-                'cosine_similarity': offline_metrics['cosine_similarity'],
-                'embeddings_similarity': offline_metrics['embeddings_similarity'],
-                'llmjudger_rating': offline_metrics['llmjudger_rating'],
-                'llmjudger_answer': offline_metrics['llmjudger_answer'],
-            }
-            print('Evaluation Result:')
-            print(result)
-            output_file.write(json.dumps(result))
-            output_file.write('\n')
-
-    avg_score = [sum(values) / len(values) for values in list(zip(*total_score))]
-    avg_score_dict = {
-        'syntax_acc': avg_score[0],
-        'exact_match': avg_score[1],
-        'jaccard_similarity': avg_score[2],
-        'cosine_similarity': avg_score[3],
-        'embeddings_similarity': avg_score[4],
-        'llmjudger_rating': avg_score[5],
-        'final_score': sum(avg_score[:5]) / 5,  # Average of the first five metrics
+
+                result = sregym_main(sregym_args)
+
+                output = {
+                    "id": task_id,
+                    "task_name": task_name,
+                    "model_name": model_name,
+                    "success": result.success,
+                    "final_score": 1.0 if result.success else 0.0,
+                    "total_time": result.total_time,
+                }
+                if result.error:
+                    output["error"] = result.error
+
+                scores.append(1.0 if result.success else 0.0)
+            except Exception as e:
+                logger.error(f"Error: {e}")
+                output = {"id": task_id, "error": str(e), "final_score": 0.0}
+                scores.append(0.0)
+
+            out.write(json.dumps(output) + "\n")
+            out.flush()
+
+    # Save summary
+    avg_score = {
+        "final_score": sum(scores) / len(scores) if scores else 0.0,
+        "total_tasks": len(scores),
     }
-    with open(os.path.join(output_dir, 'avg_score.json'), 'w', encoding='utf-8') as avg_score_file:
-        json.dump(avg_score_dict, avg_score_file, indent=4)
-    print('************ Final average score ************')
-    print(avg_score_dict)
+    with open(os.path.join(output_dir, "avg_score.json"), "w") as f:
+        json.dump(avg_score, f, indent=2)
 
+    logger.info(f"\n{'='*70}\nFinal Score: {avg_score['final_score']:.3f}\n{'='*70}")
 
-if __name__ == '__main__':
-    parser = argparse.ArgumentParser(description='example benchmark')
+
+if __name__ == "__main__":
+    parser = argparse.ArgumentParser(description="SREGym Benchmark Runner")
     parser.add_argument(
-        '-i',
-        '--input_file',
-        help='Benchmark input file',
-        default='./data/benchmark/example_bench_benchmark_timestamp.jsonl',
+        "--input_file",
+        type=str,
+        default="./data/benchmark/tasks.jsonl",
+        help="Path to input file",
     )
-    parser.add_argument('-o', '--save_path', help='Result save path', default=None)
-    # Add a parameter for agent
-    parser.add_argument('-a', '--agent', help='Agent Name', default='llm')
-
     parser.add_argument(
-        '-m',
-        '--model_name',
-        help='Model Name',
+        "--output_dir", type=str, default=None, help="Path to output directory"
     )
-    # Note that if your benchmark has multiple tasks, you need to add --task <task>
-    # in your code to enable task selection.
-    parser.add_argument('-t', '--task', help='specify task in scenarios', default=None)
+    parser.add_argument("--model_name", type=str, default="openai", help="Model name")
+    parser.add_argument("--agent_name", type=str, default="stratus", help="Agent name")
 
     args = parser.parse_args()
+    if args.output_dir is None:
+        timestamp = datetime.datetime.now().strftime("%Y-%m-%d_%H-%M-%S")
+        args.output_dir = f"./outputs/sregym__{args.model_name.replace('/', '_')}__{args.agent_name}___{timestamp}"
 
-    model_name = args.model_name
-    input_file = args.input_file
-    save_path = args.save_path
-
-    if save_path is None:
-        str_model_name = model_name.replace('/', '_')
-        timestamp = datetime.now().strftime('%Y-%m-%d_%H-%M-%S')
-        save_path = os.path.join('./outputs', f'examplebench__{str_model_name}__{args.agent}__{timestamp}')
-
-    save_path = os.path.abspath(os.path.expanduser(save_path))
-    os.makedirs(save_path, exist_ok=True)
-
-    main(input_file, save_path, model_name, agent_name=args.agent)
+    main(args.input_file, args.output_dir, args.model_name, args.agent_name)

From a3601507d6941a146edb04cf9ece0f2a5278b1b7 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Tue, 2 Dec 2025 02:51:09 -0600
Subject: [PATCH 08/17] Bench Core

---
 benchmarks/sregym/.gitignore                  |   3 +
 .../stratus/llm_backend/init_backend.py       | 139 +++++++++++-------
 .../stratus/stratus_agent/driver/driver.py    |   8 +
 benchmarks/sregym/sregym_core/main.py         |  28 +++-
 4 files changed, 114 insertions(+), 64 deletions(-)
 create mode 100644 benchmarks/sregym/.gitignore

diff --git a/benchmarks/sregym/.gitignore b/benchmarks/sregym/.gitignore
new file mode 100644
index 0000000..cf2a479
--- /dev/null
+++ b/benchmarks/sregym/.gitignore
@@ -0,0 +1,3 @@
+# ignore all html files in current directory
+*.html
+agent_graph.png
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/init_backend.py b/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/init_backend.py
index eb983f2..152c913 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/init_backend.py
+++ b/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/init_backend.py
@@ -14,13 +14,13 @@
     PROVIDER = os.environ["PROVIDER"]
 except KeyError:
     PROVIDER = "openai"
-    print("Unable to find environment variable - PROVIDER, setting to openai...")
+    print("Unable to find environment variable - PROVIDER")
     raise
 
 try:
     PROVIDER_TOOLS = os.environ["PROVIDER_TOOLS"]
 except KeyError:
-    PROVIDER_TOOLS = ""
+    PROVIDER_TOOLS = PROVIDER
     print("Unable to find environment variable - PROVIDER_TOOLS.")
     raise
 
@@ -108,70 +108,97 @@
     MAX_TOKENS_TOOLS = 16000
     print(f"Unable to find environment variable - MAX_TOKENS_TOOLS. Setting to {MAX_TOKENS_TOOLS}.")
 
+### For framework running ###
+global PROVIDER_OVERWRITE
+
+try:
+    PROVIDER_OVERWRITE = os.environ["PROVIDER_OVERWRITE"]
+except KeyError:
+    PROVIDER_OVERWRITE = None
+    print(f"Unable to find environment variable - PROVIDER_OVERWRITE. Setting to {PROVIDER_OVERWRITE}.")
+
 
 def get_llm_backend_for_tools():
-    if PROVIDER == "watsonx":
-        try:
-            WATSONX_API_KEY = os.environ["WATSONX_API_KEY"]
-        except KeyError:
-            print(f"Unable to find environment variable - WATSONX_API_KEY. Exiting...")
-            exit(1)
-        return LiteLLMBackend(
-            provider=PROVIDER,
-            model_name=MODEL_TOOLS,
-            url=URL_TOOLS,
-            api_key=WATSONX_API_KEY,
-            api_version=API_VERSION_TOOLS,
-            seed=SEED_TOOLS,
-            top_p=TOP_P_TOOLS,
-            temperature=TEMPERATURE_TOOLS,
-            reasoning_effort=REASONING_EFFORT_TOOLS,
-            max_tokens=MAX_TOKENS_TOOLS,
-            thinking_tools=THINKING_TOOLS,
-            thinking_budget_tools=THINKING_BUDGET_TOOLS,
-        )
-    elif PROVIDER == "openai":
-        return LiteLLMBackend(
-            provider=PROVIDER,
-            model_name=MODEL_TOOLS,
-            url=URL_TOOLS,
-            api_key=API_KEY_TOOLS,
-            api_version=API_VERSION_TOOLS,
-            seed=SEED_TOOLS,
-            top_p=TOP_P_TOOLS,
-            temperature=TEMPERATURE_TOOLS,
-            reasoning_effort=REASONING_EFFORT_TOOLS,
-            max_tokens=MAX_TOKENS_TOOLS,
-            thinking_tools=THINKING_TOOLS,
-            thinking_budget_tools=THINKING_BUDGET_TOOLS,
-        )
-    elif PROVIDER == "litellm":
+    # If SREGym is running in an external framework (i.e. System Intelligence), we allow the provider to be overridden
+    if PROVIDER_OVERWRITE is not None:
+        # Framwork run, use LiteLLMBackend
         return LiteLLMBackend(
-            provider=PROVIDER,
-            model_name=MODEL_TOOLS,
-            url=URL_TOOLS, # not used
+            provider="litellm",
+            model_name=PROVIDER_OVERWRITE,
+            url=URL_TOOLS,  # not used
             api_key=API_KEY_TOOLS,
             api_version=API_VERSION_TOOLS,
             seed=SEED_TOOLS,
             top_p=TOP_P_TOOLS,
             temperature=TEMPERATURE_TOOLS,
             reasoning_effort=REASONING_EFFORT_TOOLS,
-            thinking_tools=THINKING_TOOLS,
-            thinking_budget_tools=THINKING_BUDGET_TOOLS,
             max_tokens=MAX_TOKENS_TOOLS,
-        )
-    elif PROVIDER == "compatible":
-        return LiteLLMBackend(
-            provider=PROVIDER,
-            model_name=MODEL_TOOLS,
-            url=URL_TOOLS,
-            api_key=API_KEY_TOOLS,
-            api_version=API_VERSION_TOOLS,
-            seed=SEED_TOOLS,
-            top_p=TOP_P_TOOLS,
-            temperature=TEMPERATURE_TOOLS,
-            reasoning_effort=REASONING_EFFORT_TOOLS,
             thinking_tools=THINKING_TOOLS,
             thinking_budget_tools=THINKING_BUDGET_TOOLS,
-            max_tokens=MAX_TOKENS_TOOLS,
         )
+    else:
+        if PROVIDER == "watsonx":
+            try:
+                WATSONX_API_KEY = os.environ["WATSONX_API_KEY"]
+            except KeyError:
+                print(f"Unable to find environment variable - WATSONX_API_KEY. Exiting...")
+                exit(1)
+            return LiteLLMBackend(
+                provider=PROVIDER,
+                model_name=MODEL_TOOLS,
+                url=URL_TOOLS,
+                api_key=WATSONX_API_KEY,
+                api_version=API_VERSION_TOOLS,
+                seed=SEED_TOOLS,
+                top_p=TOP_P_TOOLS,
+                temperature=TEMPERATURE_TOOLS,
+                reasoning_effort=REASONING_EFFORT_TOOLS,
+                max_tokens=MAX_TOKENS_TOOLS,
+                thinking_tools=THINKING_TOOLS,
+                thinking_budget_tools=THINKING_BUDGET_TOOLS,
+            )
+        elif PROVIDER == "openai":
+            return LiteLLMBackend(
+                provider=PROVIDER,
+                model_name=MODEL_TOOLS,
+                url=URL_TOOLS,
+                api_key=API_KEY_TOOLS,
+                api_version=API_VERSION_TOOLS,
+                seed=SEED_TOOLS,
+                top_p=TOP_P_TOOLS,
+                temperature=TEMPERATURE_TOOLS,
+                reasoning_effort=REASONING_EFFORT_TOOLS,
+                max_tokens=MAX_TOKENS_TOOLS,
+                thinking_tools=THINKING_TOOLS,
+                thinking_budget_tools=THINKING_BUDGET_TOOLS,
+            )
+        elif PROVIDER == "litellm":
+            return LiteLLMBackend(
+                provider=PROVIDER,
+                model_name=MODEL_TOOLS,
+                url=URL_TOOLS,  # not used
+                api_key=API_KEY_TOOLS,
+                api_version=API_VERSION_TOOLS,
+                seed=SEED_TOOLS,
+                top_p=TOP_P_TOOLS,
+                temperature=TEMPERATURE_TOOLS,
+                reasoning_effort=REASONING_EFFORT_TOOLS,
+                thinking_tools=THINKING_TOOLS,
+                thinking_budget_tools=THINKING_BUDGET_TOOLS,
+                max_tokens=MAX_TOKENS_TOOLS,
+            )
+        elif PROVIDER == "compatible":
+            return LiteLLMBackend(
+                provider=PROVIDER,
+                model_name=MODEL_TOOLS,
+                url=URL_TOOLS,
+                api_key=API_KEY_TOOLS,
+                api_version=API_VERSION_TOOLS,
+                seed=SEED_TOOLS,
+                top_p=TOP_P_TOOLS,
+                temperature=TEMPERATURE_TOOLS,
+                reasoning_effort=REASONING_EFFORT_TOOLS,
+                thinking_tools=THINKING_TOOLS,
+                thinking_budget_tools=THINKING_BUDGET_TOOLS,
+                max_tokens=MAX_TOKENS_TOOLS,
+            )
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/driver/driver.py b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/driver/driver.py
index 822ecc0..196923e 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/driver/driver.py
+++ b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/driver/driver.py
@@ -1,3 +1,11 @@
+import sys
+from pathlib import Path
+
+# for external call
+sregym_core_path = Path(__file__).resolve().parents[4]
+if str(sregym_core_path) not in sys.path:
+    sys.path.insert(0, str(sregym_core_path))
+
 import asyncio
 import time
 
diff --git a/benchmarks/sregym/sregym_core/main.py b/benchmarks/sregym/sregym_core/main.py
index 9587dad..16f03d8 100644
--- a/benchmarks/sregym/sregym_core/main.py
+++ b/benchmarks/sregym/sregym_core/main.py
@@ -8,6 +8,7 @@
 import threading
 import time
 from datetime import datetime
+from pathlib import Path
 
 import uvicorn
 from rich.console import Console
@@ -32,7 +33,9 @@ def get_current_datetime_formatted():
     return formatted_datetime
 
 
-def driver_loop(conductor: Conductor, problem_filter: str = None, agent_to_run: str = "stratus", use_external_harness: bool = False):
+def driver_loop(
+    conductor: Conductor, problem_filter: str = None, agent_to_run: str = "stratus", use_external_harness: bool = False
+):
     """
     Deploy each problem and wait for HTTP grading via POST /submit.
     Returns a list of flattened dicts with results per problem.
@@ -47,16 +50,16 @@ async def driver():
         console = Console()
         # give the API a moment to bind
         await asyncio.sleep(1)
-        agents_to_start = list_agents().keys()
+        agents_to_start = list_agents(path=Path(os.path.dirname(os.path.abspath(__file__))) / "agents.yaml").keys()
         all_results = []
-        
+
         if agent_to_run is not None:
             if agent_to_run not in agents_to_start:
                 console.log(f"⚠️ Agent '{agent_to_run}' not found in registry. Available agents: {agents_to_start}")
                 sys.exit(1)
             else:
                 agents_to_start = [agent_to_run]
-        
+
         for agent_name in agents_to_start:
             console.log(f"Starting agent now: {agent_name}")
             conductor.register_agent(agent_name)
@@ -89,7 +92,7 @@ async def driver():
                     return []
 
                 if not use_external_harness:
-                    reg = get_agent(agent_name)
+                    reg = get_agent(agent_name, path=Path(os.path.dirname(os.path.abspath(__file__))) / "agents.yaml")
                     if reg:
                         await LAUNCHER.ensure_started(reg)
 
@@ -145,9 +148,13 @@ def start_mcp_server_after_api():
     server.run()
 
 
-def _run_driver_and_shutdown(conductor: Conductor, problem_filter: str = None, use_external_harness: bool = False):
+def _run_driver_and_shutdown(
+    conductor: Conductor, problem_filter: str = None, agent_to_run: str = "stratus", use_external_harness: bool = False
+):
     """Run the benchmark driver, stash results, then tell the API to exit."""
-    results = driver_loop(conductor, problem_filter=problem_filter, use_external_harness=use_external_harness)
+    results = driver_loop(
+        conductor, problem_filter=problem_filter, agent_to_run=agent_to_run, use_external_harness=use_external_harness
+    )
     setattr(main, "results", results)
     # ⬇️ Ask the API server (running in main thread) to stop so we can write CSV
     request_shutdown()
@@ -277,7 +284,12 @@ def main(args):
     else:
         print("⚠️ No results to write.")
 
-    sys.exit(0)
+    if __name__ == "__main__":
+        # separate run, use exit
+        sys.exit(0)
+    else:
+        # function call run, return results
+        return results
 
 
 if __name__ == "__main__":

From 79dbf8f07af3d7c669a1e13549f534ea3b8a27d3 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Thu, 4 Dec 2025 02:03:08 -0600
Subject: [PATCH 09/17] squash bugs found in the test

---
 benchmarks/sregym/.gitignore  |  2 ++
 benchmarks/sregym/install.sh  | 17 ++++++----
 benchmarks/sregym/run.sh      |  2 +-
 benchmarks/sregym/src/main.py | 60 +++++++++++++++++++++++++++--------
 benchmarks/sregym/test.sh     |  7 +---
 5 files changed, 62 insertions(+), 26 deletions(-)

diff --git a/benchmarks/sregym/.gitignore b/benchmarks/sregym/.gitignore
index cf2a479..5bf3613 100644
--- a/benchmarks/sregym/.gitignore
+++ b/benchmarks/sregym/.gitignore
@@ -1,3 +1,5 @@
 # ignore all html files in current directory
 *.html
 agent_graph.png
+*.csv
+
diff --git a/benchmarks/sregym/install.sh b/benchmarks/sregym/install.sh
index 79d9da8..9a7bcd4 100755
--- a/benchmarks/sregym/install.sh
+++ b/benchmarks/sregym/install.sh
@@ -2,6 +2,13 @@
 
 set -e
 
+# Clone submodule to SREGym-applications if no file in sregym_core/SREGym-applications
+if [ ! -f "sregym_core/SREGym-applications/README.md" ]; then
+    echo "==> Cloning SREGym-applications..."
+    git clone https://github.com/SREGym/SREGym-applications.git sregym_core/SREGym-applications --recurse-submodules
+else
+    echo "==> SREGym-applications already exists. Skipping clone."
+fi
 
 # Homebrew installation
 if ! command -v brew >/dev/null 2>&1; then
@@ -97,8 +104,8 @@ if [ -f "scripts/ansible/inventory.yml" ]; then
     # Check if cluster is already configured
     CLUSTER_EXISTS=false
     if kubectl get nodes >/dev/null 2>&1; then
-        READY_NODES=$(kubectl get nodes --no-headers 2>/dev/null | grep -c " Ready " || echo "0")
-        TOTAL_NODES=$(kubectl get nodes --no-headers 2>/dev/null | wc -l || echo "0")
+        READY_NODES=$(kubectl get nodes --no-headers 2>/dev/null | grep -c " Ready " || true)
+        TOTAL_NODES=$(kubectl get nodes --no-headers 2>/dev/null | wc -l || true)
         
         if [ "$TOTAL_NODES" -gt 0 ] && [ "$READY_NODES" -eq "$TOTAL_NODES" ]; then
             CLUSTER_EXISTS=true
@@ -127,8 +134,8 @@ if [ -f "scripts/ansible/inventory.yml" ]; then
                 echo ""
                 
                 # Check if nodes are in Ready state
-                READY_NODES=$(kubectl get nodes --no-headers 2>/dev/null | grep -c " Ready " || echo "0")
-                TOTAL_NODES=$(kubectl get nodes --no-headers 2>/dev/null | wc -l || echo "0")
+                READY_NODES=$(kubectl get nodes --no-headers 2>/dev/null | grep -c " Ready " || true)
+                TOTAL_NODES=$(kubectl get nodes --no-headers 2>/dev/null | wc -l || true)
                 
                 if [ "$READY_NODES" -gt 0 ] && [ "$READY_NODES" -eq "$TOTAL_NODES" ]; then
                     echo "==> ✓ All nodes are in Ready state. Cluster configuration is correct."
@@ -158,7 +165,5 @@ fi
 cd -
 
 source sregym_core/.venv/bin/activate
-
 # uv pip install -r requirements.txt
-
 deactivate
diff --git a/benchmarks/sregym/run.sh b/benchmarks/sregym/run.sh
index 5158c95..67aac8a 100755
--- a/benchmarks/sregym/run.sh
+++ b/benchmarks/sregym/run.sh
@@ -17,7 +17,7 @@ MODEL_NAME="$1"
 # export OPENAI_BASE_URL="http://localhost:2327/v1"
 # export OPENAI_API_KEY="EMPTY"
 
-source benchmarks/sregym/sregym_core/.venv/bin/activate
+source sregym_core/.venv/bin/activate
 
 echo "==> Start to run SREGym"
 # Note that if you benchmark has multiple tasks, you need to add --task <task> 
diff --git a/benchmarks/sregym/src/main.py b/benchmarks/sregym/src/main.py
index a7bdb58..78bf24a 100644
--- a/benchmarks/sregym/src/main.py
+++ b/benchmarks/sregym/src/main.py
@@ -16,11 +16,6 @@
     )
     from sregym_core.main import main as sregym_main
 
-import logging
-
-logging.basicConfig(level=logging.INFO, format="[%(levelname)s] %(message)s")
-logger = logging.getLogger(__name__)
-
 
 def main(input_file: str, output_dir: str, model_name: str, agent_name: str):
     # Set the environment variable for the model so the agent can find it
@@ -38,7 +33,7 @@ def main(input_file: str, output_dir: str, model_name: str, agent_name: str):
         for line in f:
             item = json.loads(line)
             task_id, task_name = item["id"], item["task_name"]
-            logger.info(f"\n{'='*70}\nTask: {task_id} ({task_name})\n{'='*70}")
+            print(f"\n{'='*70}\nTask: {task_id} ({task_name})\n{'='*70}")
 
             try:
                 sregym_args = argparse.Namespace(
@@ -47,23 +42,62 @@ def main(input_file: str, output_dir: str, model_name: str, agent_name: str):
                     problem=task_name,
                     use_external_harness=False,
                 )
+                print(f"SREGym Main Arguments: \33[94m{sregym_args}\33[0m")
 
                 result = sregym_main(sregym_args)
 
+                if type(result) != list or len(result) != 1:
+                    raise ValueError(f"Result is not a valid list: {result}")
+
+                first_agent_result = result[0].get(agent_name, None)
+
+                if first_agent_result is None:
+                    raise ValueError(
+                        f"Agent result for {agent_name} not found: {result}"
+                    )
+
+                if type(first_agent_result) != list or len(first_agent_result) != 1:
+                    raise ValueError(
+                        f"Agent result for {agent_name} is not a valid list: {first_agent_result}"
+                    )
+
+                first_problem_result = first_agent_result[0]
+
+                print(f"SREGym Problem Result: \33[94m{first_problem_result}\33[0m")
+
+                problem_id_ = first_problem_result.get("problem_id", None)
+                if problem_id_ is None or problem_id_ != task_name:
+                    raise ValueError(
+                        f"Problem ID mismatch: {problem_id_} != {task_name}"
+                    )
+                diagnosis_result = first_problem_result.get("Diagnosis.success", None)
+                mitigation_result = first_problem_result.get("Mitigation.success", None)
+                diagnosis_time = first_problem_result.get("TTL", None)
+                mitigation_time = first_problem_result.get("TTM", None)
+
                 output = {
                     "id": task_id,
                     "task_name": task_name,
                     "model_name": model_name,
-                    "success": result.success,
-                    "final_score": 1.0 if result.success else 0.0,
-                    "total_time": result.total_time,
                 }
-                if result.error:
+
+                if diagnosis_result is not None:
+                    output["diagnosis_success"] = diagnosis_result
+                    output["diagnosis_time"] = diagnosis_time
+
+                if mitigation_result is not None:
+                    output["mitigation_success"] = mitigation_result
+                    output["mitigation_time"] = mitigation_time
+
+                if hasattr(result, "error") and result.error:
                     output["error"] = result.error
 
-                scores.append(1.0 if result.success else 0.0)
+                all_success = output.get("diagnosis_success", True) and output.get(
+                    "mitigation_success", True
+                )
+                scores.append(1.0 if all_success else 0.0)
             except Exception as e:
-                logger.error(f"Error: {e}")
+                print(f"\33[91mError: {e}\33[0m")
                 output = {"id": task_id, "error": str(e), "final_score": 0.0}
                 scores.append(0.0)
 
@@ -78,7 +112,7 @@ def main(input_file: str, output_dir: str, model_name: str, agent_name: str):
     with open(os.path.join(output_dir, "avg_score.json"), "w") as f:
         json.dump(avg_score, f, indent=2)
 
-    logger.info(f"\n{'='*70}\nFinal Score: {avg_score['final_score']:.3f}\n{'='*70}")
+    print(f"\n{'='*70}\nFinal Score: {avg_score['final_score']:.3f}\n{'='*70}")
 
 
 if __name__ == "__main__":
diff --git a/benchmarks/sregym/test.sh b/benchmarks/sregym/test.sh
index 00820da..b9ca4cd 100755
--- a/benchmarks/sregym/test.sh
+++ b/benchmarks/sregym/test.sh
@@ -2,9 +2,4 @@
 
 set -e  # Exit immediately on error.
 
-source envexamplebench/bin/activate
-pytest --version
-pytest
-deactivate
-
-echo "==> ExampleBench test is done successfully."
+echo "==> SREGym test is extremely time-consuming. Skipped."

From 68e1d6463bc9644905d461a18d1ee86809e0bdf9 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Thu, 4 Dec 2025 02:04:12 -0600
Subject: [PATCH 10/17] Fix problems in the SREGym

---
 .../sregym/sregym_core/logger/__init__.py     | 94 +++++++++++--------
 .../conductor/problems/misconfig_app.py       |  1 +
 2 files changed, 58 insertions(+), 37 deletions(-)

diff --git a/benchmarks/sregym/sregym_core/logger/__init__.py b/benchmarks/sregym/sregym_core/logger/__init__.py
index ffc96ed..33194f7 100644
--- a/benchmarks/sregym/sregym_core/logger/__init__.py
+++ b/benchmarks/sregym/sregym_core/logger/__init__.py
@@ -1,57 +1,72 @@
 import logging
 import os
-from .handler import ExhaustInfoFormatter, ColorFormatter
-from logging import Formatter
 from datetime import datetime
+from logging import Formatter
+
 from dashboard.proxy import LogProxy
 
+from .handler import ColorFormatter, ExhaustInfoFormatter
+
 
 def get_current_datetime_formatted():
     now = datetime.now()
     formatted_datetime = now.strftime("%m-%d_%H-%M")
     return formatted_datetime
 
+
 def init_logger():
     # set up the logger for dashboard
-    logging.getLogger('sregym-global').setLevel(logging.INFO)
-    logging.getLogger('sregym-global').addHandler(LogProxy())
-    logging.getLogger('sregym-global').propagate = False # do not propagate to the real root logger ('')
-    
+    logging.getLogger("sregym-global").setLevel(logging.INFO)
+    logging.getLogger("sregym-global").addHandler(LogProxy())
+    logging.getLogger("sregym-global").propagate = False  # do not propagate to the real root logger ('')
+
     # set up the logger for log file
-    root_logger = logging.getLogger('all')
+    root_logger = logging.getLogger("all")
     root_logger.setLevel(logging.DEBUG)
-    root_logger.propagate = False # do not propagate to the real root logger ('')
-    
-    timestamp = get_current_datetime_formatted()
-    # create dir and file
-    path = f'./logs/sregym_{timestamp}.log'
-    os.makedirs('./logs', exist_ok=True)
-    
-    handler = logging.FileHandler(path)
-    # add code line and filename and function name
-    handler.setFormatter(ExhaustInfoFormatter(fmt='%(asctime)s - %(levelname)s - %(name)s - %(message)s - %(filename)s:%(funcName)s:%(lineno)d', datefmt='%Y-%m-%d %H:%M:%S', extra_attributes=["sol", "result", "Full Prompt", "Tool Calls"]))
-    handler.setLevel(logging.DEBUG)
-    root_logger.addHandler(handler)
-    
-    
-    std_handler = logging.StreamHandler()
-    std_handler.setFormatter(ColorFormatter(fmt='%(levelname)s - %(name)s - %(message)s', datefmt='%Y-%m-%d %H:%M:%S', style='%'))
-    std_handler.setLevel(logging.INFO)
-    root_logger.addHandler(std_handler)
-    
+    root_logger.propagate = False  # do not propagate to the real root logger ('')
+
+    # Only add handlers if they don't exist to prevent duplication
+    if not root_logger.handlers:
+        timestamp = get_current_datetime_formatted()
+        # create dir and file
+        path = f"./logs/sregym_{timestamp}.log"
+        os.makedirs("./logs", exist_ok=True)
+
+        handler = logging.FileHandler(path)
+        # add code line and filename and function name
+        handler.setFormatter(
+            ExhaustInfoFormatter(
+                fmt="%(asctime)s - %(levelname)s - %(name)s - %(message)s - %(filename)s:%(funcName)s:%(lineno)d",
+                datefmt="%Y-%m-%d %H:%M:%S",
+                extra_attributes=["sol", "result", "Full Prompt", "Tool Calls"],
+            )
+        )
+        handler.setLevel(logging.DEBUG)
+        root_logger.addHandler(handler)
+
+        std_handler = logging.StreamHandler()
+        std_handler.setFormatter(
+            ColorFormatter(fmt="%(levelname)s - %(name)s - %(message)s", datefmt="%Y-%m-%d %H:%M:%S", style="%")
+        )
+        std_handler.setLevel(logging.INFO)
+        root_logger.addHandler(std_handler)
+
     unify_third_party_loggers()
     silent_litellm_loggers()
     silent_httpx_loggers()
     silent_FastMCP_loggers()
-    
+
+
 def silent_paramiko_loggers():
     # make the paramiko logger silent
-    logging.getLogger('paramiko').setLevel(logging.WARNING) # throttle the log source
-    
+    logging.getLogger("paramiko").setLevel(logging.WARNING)  # throttle the log source
+
+
 def silent_FastMCP_loggers():
     # make the FastMCP logger silent
-    logging.getLogger('mcp').setLevel(logging.WARNING)
-    
+    logging.getLogger("mcp").setLevel(logging.WARNING)
+
+
 def silent_litellm_loggers():
     verbose_proxy_logger = logging.getLogger("LiteLLM Proxy")
     verbose_router_logger = logging.getLogger("LiteLLM Router")
@@ -59,20 +74,25 @@ def silent_litellm_loggers():
     verbose_proxy_logger.setLevel(logging.WARNING)
     verbose_router_logger.setLevel(logging.WARNING)
     verbose_logger.setLevel(logging.WARNING)
-    
+
+
 def silent_httpx_loggers():
     httpx_logger = logging.getLogger("httpx")
     httpx_logger.setLevel(logging.WARNING)
 
+
 def unify_third_party_loggers():
     # make the info level third party loggers (e.g. paramiko) have the common formatter
-    logging.getLogger('')
+    logging.getLogger("")
     # get the handler
-    handlers = logging.getLogger('').handlers
+    handlers = logging.getLogger("").handlers
     if handlers:
         for handler in handlers:
-            handler.setFormatter(ColorFormatter(fmt='%(levelname)s - %(name)s - %(message)s', datefmt='%Y-%m-%d %H:%M:%S', style='%'))
+            handler.setFormatter(
+                ColorFormatter(fmt="%(levelname)s - %(name)s - %(message)s", datefmt="%Y-%m-%d %H:%M:%S", style="%")
+            )
     else:
         print("No handler found for root logger")
-        
-# silent uvicorn: main.py:96
\ No newline at end of file
+
+
+# silent uvicorn: main.py:96
diff --git a/benchmarks/sregym/sregym_core/sregym/conductor/problems/misconfig_app.py b/benchmarks/sregym/sregym_core/sregym/conductor/problems/misconfig_app.py
index 7bdef6a..ed0cde9 100644
--- a/benchmarks/sregym/sregym_core/sregym/conductor/problems/misconfig_app.py
+++ b/benchmarks/sregym/sregym_core/sregym/conductor/problems/misconfig_app.py
@@ -1,5 +1,6 @@
 """MongoDB storage user unregistered problem in the HotelReservation application."""
 
+from sregym.conductor.oracles.llm_as_a_judge.llm_as_a_judge_oracle import LLMAsAJudgeOracle
 from sregym.conductor.oracles.mitigation import MitigationOracle
 from sregym.conductor.problems.base import Problem
 from sregym.generators.fault.inject_app import ApplicationFaultInjector

From 5818f51f63453d06f1c8cc3050251caef35ead95 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Thu, 4 Dec 2025 02:04:44 -0600
Subject: [PATCH 11/17] Update README.md

---
 benchmarks/sregym/README.md | 88 ++++++++++++++++++++-----------------
 1 file changed, 48 insertions(+), 40 deletions(-)

diff --git a/benchmarks/sregym/README.md b/benchmarks/sregym/README.md
index daa3db8..f5d32b2 100644
--- a/benchmarks/sregym/README.md
+++ b/benchmarks/sregym/README.md
@@ -1,61 +1,69 @@
-# YourBenchmarkName
+# SREGym Quick Guide
 
-## Scenario Description
+In this README.md, I will quickly explain how to run SREGym within the System Intelligence Framework.
 
-Provide a summary of your scenarios here. This section should give an overview of the context, objectives, and key elements involved in your scenarios.
+For advanced use of *System Intelligence* and *SREGym*, please refer to the docs of [*System Intelligence*](https://github.com/sys-intelligence/system-intelligence-benchmark/tree/main/doc) and [*SREGym*](https://sregym.com/docs)
 
-### Task Details
+## Architecture Explanation
 
-Describe your task in detail, including:
+SREGym has a decoupled design which complies with *System Intelligence* philosophy.
+Here is the correspondence of the components in *System Intelligence* and *SREGym*:
 
-- **Input**: Specify the type of input data required for the task.
-- **Output**: Define the expected output from the task.
-- **Evaluation**: Explain how to evaluate the output, including any metrics or criteria used to measure performance.
+The `Executor` is the agent in *SREGym*, which is decoupled from the framework functionality. We have a baseline agent implementation in `sregym_core/clients/stratus/stratus_agent/` and it is run by default. If you want to bring your own agent, please follow the [Running Your Own Agent](https://sregym.com/docs/running-your-own-agent) guide.
 
-## Benchmark Setup
+The `Evaluator` is the evaluation oracles in *SREGym*, which is decoupled from the agent implementation. 
 
-### Test in Docker
+The*SREGym*'s `Conductor` serves as the `Environment` in *System Intelligence*.
 
-To test your benchmark in a Docker container, follow these steps:
+## Run SREGym
 
-1. Build the Docker image using the provided Dockerfile. You can do this by running the following command in the terminal:
+1. Prepare `.env` for the configurations. You can make a copy of `.env.example` into `.env` and set the keys in the `.env` file. For System Intelligence, you need to set the API keys for the models you want to test, like below:
 
-   ```sh
-   docker build -t your_benchmark_image .
-   ```
+``` shell
+PROVIDER_TOOLS="litellm"
+PROVIDER="litellm"
 
-2. Once the image is built, you can run it using the following command:
+GEMINI_API_KEY="XXXXXX"
+OPENAI_API_KEY="XXXXXX"
+ANTHROPIC_API_KEY="XXXXXX"
+MOONSHOT_API_KEY="XXXXXX"
+```
+> You do not need to set the `MODEL_TOOLS` in the `.env` file. It will be set automatically by the System Intelligence Framework. It is indented for individual run of SREGym.
 
-   ```sh
-   docker run -it --rm your_benchmark_image
-   # docker run --rm your_benchmark_image
-   ```
+2. You need to make a `inventory.yml` file in the `sregym_core/scripts/ansible` directory. You can make a copy of `inventory.yml.example` into `inventory.yml` and set the hosts in the `inventory.yml` file. You can follow the instructions [here](https://github.com/SREGym/SREGym?tab=readme-ov-file#a-kubernetes-cluster-recommended) to get a cluster and set up the inventory file.
 
-3. Inside the container, navigate to the appropriate directory and execute the benchmark script to start the testing process.
+3. Install the dependencies
+``` shell
+cd benchmarks/sregym
+./install.sh
+```
 
-   ```sh
-   ./run.sh
-   ```
+4. Run the benchmark
+``` shell
+cd benchmarks/sregym
+./run.sh <model_name>
+```
+> Some tested available names are: "gemini/gemini-2.5-flash", "openai/gpt-4o", "anthropic/claude-sonnet-4-20250514", "moonshot/moonshot-v1-32k".
 
-### Maunaly Test
+The wrapper executes `python src/main.py --agent "stratus" --model_name "${MODEL_NAME}"` to run the benchmark.
 
-To manually test your benchmark, follow these steps:
+The results will be saved in the `outputs/` directory.
+``` shell
+outputs/sregym__<model>__<agent>__<timestamp>/
+├── avg_score.json     # Average score
+└── result.jsonl       # Detailed results
+```
 
-#### Install Dependencies
+## Use the System Intelligence CLI (optional)
 
-To install and configure your benchmark, follow these steps:
+To orchestrate SysMoBench alongside other benchmarks:
 
-1. Run the `install.sh` script to set up the environment and install necessary dependencies. You can simply execute the following command:
+```bash
+cd cli
+./run_all_local.sh <model_name>
+```
 
-   ```sh
-   ./install.sh
-   ```
+## Contribution
 
-#### Run
-
-To run your benchmark and obtain results for a specific task and model, follow these steps:
-
-1. Review the `run.sh` script to understand the expected commands and parameters.
-2. Execute the `run.sh` script to start the benchmark. The script will guide you through the process and generate the results.
-
-Feel free to adjust the details to better fit your specific scenario and requirements. Let me know if there's anything else you need!
+We strongly welcome contributions to SREGym.   
+You can report bugs, suggest features, or contribute code to SREGym in the upstream repository [SREGym](https://github.com/SREGym/SREGym).

From c97bbdaffd0d1942e89f002547e54033d44626ef Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Thu, 4 Dec 2025 02:18:46 -0600
Subject: [PATCH 12/17] Small fixes

---
 benchmarks/sregym/requirements.txt |  5 -----
 benchmarks/sregym/run.sh           | 12 +-----------
 2 files changed, 1 insertion(+), 16 deletions(-)
 delete mode 100644 benchmarks/sregym/requirements.txt

diff --git a/benchmarks/sregym/requirements.txt b/benchmarks/sregym/requirements.txt
deleted file mode 100644
index f5e49c2..0000000
--- a/benchmarks/sregym/requirements.txt
+++ /dev/null
@@ -1,5 +0,0 @@
-sentence-transformers==4.0.1
-scikit-learn==1.6.1
-requests
-azure-identity
-litellm==1.77.5
\ No newline at end of file
diff --git a/benchmarks/sregym/run.sh b/benchmarks/sregym/run.sh
index 67aac8a..e519161 100755
--- a/benchmarks/sregym/run.sh
+++ b/benchmarks/sregym/run.sh
@@ -4,25 +4,15 @@ set -e  # Exit immediately on error.
 
 if [ $# -ne 1 ]; then
     echo "Usage: $0 <model_location>"
-    echo "Example: $0 Qwen/Qwen2.5-7B-Instruct"
+    echo "Example: $0 \"gemini/gemini-2.5-flash\""
     exit 1
 fi
 
 MODEL_NAME="$1"
 
-# Note: set it to "openai" if you are using your own model server (vllm)
-# Otherwise, set it to "azure" if you are using azure gpt endpoint
-# Run self-serving model
-# export OPENAI_API_TYPE="openai"  
-# export OPENAI_BASE_URL="http://localhost:2327/v1"
-# export OPENAI_API_KEY="EMPTY"
-
 source sregym_core/.venv/bin/activate
 
 echo "==> Start to run SREGym"
-# Note that if you benchmark has multiple tasks, you need to add --task <task> 
-# in your code to enable task selection.
-
 python src/main.py \
     --agent "stratus" \
     --model_name "${MODEL_NAME}" 

From 9f42685f4d287cb20960b9f163fdbb32052a4b02 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Sat, 6 Dec 2025 18:54:41 -0600
Subject: [PATCH 13/17] Delete unused files

---
 .../sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl | 1 -
 benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl    | 2 --
 2 files changed, 3 deletions(-)
 delete mode 100644 benchmarks/sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl
 delete mode 100644 benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl

diff --git a/benchmarks/sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl b/benchmarks/sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl
deleted file mode 100644
index c44eafe..0000000
--- a/benchmarks/sregym/data/pretrain/example_bench_pretrain_timestamp.jsonl
+++ /dev/null
@@ -1 +0,0 @@
-{"text": "text of one doc", "metadata": {"scenarios": "XXX", "subtask": "XXXX", "description": "xx", "link": "XXX", "XXX": "XXX"}}
\ No newline at end of file
diff --git a/benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl b/benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl
deleted file mode 100644
index 26cadb9..0000000
--- a/benchmarks/sregym/data/sft/example_bench_sft_timestamp.jsonl
+++ /dev/null
@@ -1,2 +0,0 @@
-{"sys_prompt": "You are XXX", "user_prompt": "what", "thinking": "chain of thought", "response": "XXX", "metadata": {"scenario": "XX", "subtask": "XXX", "data_quality":"high", "XXX": "XXX"}}
-  
\ No newline at end of file

From 4bcbbb50683d7838ee7def5c32041a4c717785f8 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Sat, 6 Dec 2025 18:55:50 -0600
Subject: [PATCH 14/17] clean up

---
 benchmarks/sregym/Dockerfile |  2 +-
 benchmarks/sregym/env.toml   | 15 ---------------
 2 files changed, 1 insertion(+), 16 deletions(-)
 delete mode 100644 benchmarks/sregym/env.toml

diff --git a/benchmarks/sregym/Dockerfile b/benchmarks/sregym/Dockerfile
index 3e1536e..b0f082f 100644
--- a/benchmarks/sregym/Dockerfile
+++ b/benchmarks/sregym/Dockerfile
@@ -11,4 +11,4 @@ RUN apt-get update && apt-get install -y \
 
 RUN chmod +x install.sh test.sh && ./install.sh
  
-ENTRYPOINT ["./test.sh"]
+# ENTRYPOINT ["./test.sh"]
diff --git a/benchmarks/sregym/env.toml b/benchmarks/sregym/env.toml
deleted file mode 100644
index 1628beb..0000000
--- a/benchmarks/sregym/env.toml
+++ /dev/null
@@ -1,15 +0,0 @@
-[llm]
-AZURE_API_KEY = "XXX"
-AZURE_API_BASE = "XXXX"
-AZURE_API_VERSION = "XXX"
-ANTHROPIC_API_KEY = "sk-XXXX"
-
-[hardware]
-use_gpu = false
-
-[env-docker]
-image = "default"
-entrypoint = "./run.sh"
-
-[sregym_mode]
-mode = "remote" # where to run the Kubernetes Cluster {kind, remote}
\ No newline at end of file

From b7e7262954c005243a02936fc50b95bc0b4b0dd0 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Sat, 6 Dec 2025 19:31:32 -0600
Subject: [PATCH 15/17] refactor the llm backend / expose llm selection to CLI

---
 benchmarks/sregym/sregym_core/.env.example    |  28 +--
 .../stratus/llm_backend/init_backend.py       | 204 ------------------
 .../stratus/stratus_agent/diagnosis_agent.py  |  15 +-
 .../stratus_agent/localization_agent.py       |   2 +-
 .../stratus/stratus_agent/mitigation_agent.py |   7 +-
 .../stratus/stratus_agent/rollback_agent.py   |   2 +-
 .../clients/stratus/tools/jaeger_tools.py     |   2 +-
 .../clients/stratus/tools/prometheus_tools.py |   2 +-
 .../stratus => }/llm_backend/__init__.py      |   0
 .../sregym_core/llm_backend/configs.yaml      |  78 +++++++
 .../llm_backend/get_llm_backend.py            |  88 ++++----
 .../sregym_core/llm_backend/init_backend.py   | 112 ++++++++++
 .../stratus => }/llm_backend/trim_util.py     |  18 +-
 benchmarks/sregym/sregym_core/main.py         |   9 +
 .../sregym_core/mcp_server/test_client.py     |   3 +-
 .../conductor/oracles/llm_as_a_judge/judge.py |  26 +--
 .../file_editing/test_file_editing_tool.py    |   2 +-
 .../kubectl_tool_set_test.py                  |   2 +-
 18 files changed, 275 insertions(+), 325 deletions(-)
 delete mode 100644 benchmarks/sregym/sregym_core/clients/stratus/llm_backend/init_backend.py
 rename benchmarks/sregym/sregym_core/{clients/stratus => }/llm_backend/__init__.py (100%)
 create mode 100644 benchmarks/sregym/sregym_core/llm_backend/configs.yaml
 rename benchmarks/sregym/sregym_core/{clients/stratus => }/llm_backend/get_llm_backend.py (88%)
 create mode 100644 benchmarks/sregym/sregym_core/llm_backend/init_backend.py
 rename benchmarks/sregym/sregym_core/{clients/stratus => }/llm_backend/trim_util.py (89%)

diff --git a/benchmarks/sregym/sregym_core/.env.example b/benchmarks/sregym/sregym_core/.env.example
index 8a1a631..794aee0 100644
--- a/benchmarks/sregym/sregym_core/.env.example
+++ b/benchmarks/sregym/sregym_core/.env.example
@@ -27,15 +27,7 @@ LLM_QUERY_MAX_RETRIES=5
 LLM_QUERY_INIT_RETRY_DELAY=1
 
 
-### LLM Config1: LiteLLM ###
-# PROVIDER_TOOLS="litellm" 
-# PROVIDER="litellm"
-
-# MODEL_TOOLS="gemini/gemini-2.5-flash"
-# MODEL_TOOLS="openai/gpt-4o"
-# MODEL_TOOLS="anthropic/claude-sonnet-4-20250514" # this one is ok, but the model on the doc of LiteLLM seems to be invalid. 
-# MODEL_TOOLS="bedrock/meta.llama3-1-70b-instruct-v1:0"
-
+### LLM API Keys ###
 # GEMINI_API_KEY="AIHaveFreeFood_LotsOfIt"
 # OPENAI_API_KEY="sk-proj-HaveSleep_LotsOfIt"
 # ANTHROPIC_API_KEY="sk-ant-api03-HaveCats_LotsOfIt_Meow"
@@ -43,22 +35,6 @@ LLM_QUERY_INIT_RETRY_DELAY=1
 # AWS_PROFILE="default"
 # AWS_DEFAULT_REGION=us-east-2
 
-
-### LLM Config2: WatsonX ###
-# PROVIDER_TOOLS="watsonx"
-# PROVIDER="watsonx"
-# MODEL_TOOLS="meta-llama/llama-3-3-70b-instruct"
-# URL_TOOLS="https://us-south.ml.cloud.ibm.com"
-# API_KEY_TOOLS="HaveCornsLotsOfIt"
 # WATSONX_API_BASE="https://us-south.ml.cloud.ibm.com"
-# WX_PROJECT_ID="fe3d8da2-be7e-41b2-8d92-f0e855869e28"
+# WX_PROJECT_ID="HaveIllinisLotsOfIt"
 # WATSONX_API_KEY="HaveCornsLotsOfIt"
-
-### LLM Config3: LiteLLM not supported but OpenAI API compatible ###
-# PROVIDER="compatible"
-# PROVIDER_TOOLS="compatible"
-
-# MODEL_TOOLS="openai/glm-4" # you should use 'openai' as the provider to reuse the interface
-# API_KEY_TOOLS="HaveFunding_LotsOfIt"
-# URL_TOOLS="https://open.bigmodel.cn/api/paas/v4/" # the base url of the model, taking Zhipu GLM as the example
-
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/init_backend.py b/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/init_backend.py
deleted file mode 100644
index 152c913..0000000
--- a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/init_backend.py
+++ /dev/null
@@ -1,204 +0,0 @@
-"""Adopted from previous project"""
-
-import os
-
-from dotenv import load_dotenv
-
-from clients.stratus.llm_backend.get_llm_backend import LiteLLMBackend
-
-load_dotenv()
-
-global PROVIDER_TOOLS, MODEL_TOOLS, URL_TOOLS, API_VERSION_TOOLS, API_KEY_TOOLS, REASONING_EFFORT_TOOLS, SEED_TOOLS, TOP_P_TOOLS, TEMPERATURE_TOOLS, THINKING_TOOLS, THINKING_BUDGET_TOOLS, MAX_TOKENS_TOOLS
-
-try:
-    PROVIDER = os.environ["PROVIDER"]
-except KeyError:
-    PROVIDER = "openai"
-    print("Unable to find environment variable - PROVIDER")
-    raise
-
-try:
-    PROVIDER_TOOLS = os.environ["PROVIDER_TOOLS"]
-except KeyError:
-    PROVIDER_TOOLS = PROVIDER
-    print("Unable to find environment variable - PROVIDER_TOOLS.")
-    raise
-
-try:
-    MODEL_TOOLS = os.environ["MODEL_TOOLS"]
-except KeyError:
-    MODEL_TOOLS = ""
-    print("Unable to find environment variable - MODEL_TOOLS.")
-    raise
-
-try:
-    URL_TOOLS = os.environ["URL_TOOLS"].rstrip("/")
-except KeyError:
-    URL_TOOLS = ""
-    print("Unable to find environment variable, leave it empty - URL_TOOLS.")
-
-try:
-    API_KEY_TOOLS = os.environ["API_KEY_TOOLS"]
-    # os.environ["OPENAI_API_KEY"] = API_KEY_TOOLS # should not use this fallback
-except KeyError:
-    API_KEY_TOOLS = ""
-    print("Unable to find environment variable, leave it empty - API_KEY_TOOLS.")
-
-try:
-    SEED_TOOLS = int(os.environ["SEED_TOOLS"])
-except KeyError:
-    SEED_TOOLS = 10
-    print(f"Unable to find environment variable - SEED_TOOLS. Defaulting to {SEED_TOOLS}.")
-
-try:
-    TOP_P_TOOLS = float(os.environ["TOP_P_TOOLS"])
-except KeyError:
-    TOP_P_TOOLS = 0.95
-    print(f"Unable to find environment variable - TOP_P_TOOLS. Defaulting to {TOP_P_TOOLS}.")
-
-try:
-    TEMPERATURE_TOOLS = float(os.environ["TEMPERATURE_TOOLS"])
-except KeyError:
-    TEMPERATURE_TOOLS = 0.0
-    print(f"Unable to find environment variable - TEMPERATURE_TOOLS. Defaulting to {TEMPERATURE_TOOLS}.")
-except ValueError as e:
-    print("Incorrect TEMPERATURE_TOOLS value:", e)
-    raise
-
-try:
-    REASONING_EFFORT_TOOLS = str(os.environ["REASONING_EFFORT_TOOLS"]).lower()
-except KeyError:
-    REASONING_EFFORT_TOOLS = ""
-    print(f"Unable to find environment variable - REASONING_EFFORT_TOOLS. Setting to {REASONING_EFFORT_TOOLS}.")
-
-try:
-    API_VERSION_TOOLS = os.environ["API_VERSION_TOOLS"]
-except KeyError:
-    API_VERSION_TOOLS = ""
-    print(f"Unable to find environment variable - API_VERSION_TOOLS. Setting to {API_VERSION_TOOLS}.")
-
-try:
-    THINKING_TOOLS = os.environ["THINKING_TOOLS"]
-except KeyError:
-    THINKING_TOOLS = ""
-    print(f"Unable to find environment variable - THINKING_TOOLS. Setting to {THINKING_TOOLS}.")
-
-try:
-    WX_PROJECT_ID = os.environ["WX_PROJECT_ID"]
-except KeyError:
-    WX_PROJECT_ID = ""
-    print(f"Unable to find environment variable - WX_PROJECT_ID. Setting to {WX_PROJECT_ID}.")
-
-try:
-    WATSONX_API_BASE = os.environ["WATSONX_API_BASE"]
-except KeyError:
-    WATSONX_API_BASE = "https://us-south.ml.cloud.ibm.com"
-    print(f"Unable to find environment variable - WATSONX_API_BASE. Setting to {WATSONX_API_BASE}.")
-
-
-try:
-    THINKING_BUDGET_TOOLS = int(os.environ["THINKING_BUDGET_TOOLS"])
-except KeyError:
-    THINKING_BUDGET_TOOLS = 16000
-    print(f"Unable to find environment variable - THINKING_BUDGET_TOOLS. Setting to {THINKING_BUDGET_TOOLS}.")
-
-try:
-    MAX_TOKENS_TOOLS = int(os.environ["MAX_TOKENS_TOOLS"])
-except KeyError:
-    MAX_TOKENS_TOOLS = 16000
-    print(f"Unable to find environment variable - MAX_TOKENS_TOOLS. Setting to {MAX_TOKENS_TOOLS}.")
-
-### For framework running ###
-global PROVIDER_OVERWRITE
-
-try:
-    PROVIDER_OVERWRITE = os.environ["PROVIDER_OVERWRITE"]
-except KeyError:
-    PROVIDER_OVERWRITE = None
-    print(f"Unable to find environment variable - PROVIDER_OVERWRITE. Setting to {PROVIDER_OVERWRITE}.")
-
-
-def get_llm_backend_for_tools():
-    # If SREGym is running in an external framework (i.e. System Intelligence), we allow the provider to be overridden
-    if PROVIDER_OVERWRITE is not None:
-        # Framwork run, use LiteLLMBackend
-        return LiteLLMBackend(
-            provider="litellm",
-            model_name=PROVIDER_OVERWRITE,
-            url=URL_TOOLS,  # not used
-            api_key=API_KEY_TOOLS,
-            api_version=API_VERSION_TOOLS,
-            seed=SEED_TOOLS,
-            top_p=TOP_P_TOOLS,
-            temperature=TEMPERATURE_TOOLS,
-            reasoning_effort=REASONING_EFFORT_TOOLS,
-            max_tokens=MAX_TOKENS_TOOLS,
-            thinking_tools=THINKING_TOOLS,
-            thinking_budget_tools=THINKING_BUDGET_TOOLS,
-        )
-    else:
-        if PROVIDER == "watsonx":
-            try:
-                WATSONX_API_KEY = os.environ["WATSONX_API_KEY"]
-            except KeyError:
-                print(f"Unable to find environment variable - WATSONX_API_KEY. Exiting...")
-                exit(1)
-            return LiteLLMBackend(
-                provider=PROVIDER,
-                model_name=MODEL_TOOLS,
-                url=URL_TOOLS,
-                api_key=WATSONX_API_KEY,
-                api_version=API_VERSION_TOOLS,
-                seed=SEED_TOOLS,
-                top_p=TOP_P_TOOLS,
-                temperature=TEMPERATURE_TOOLS,
-                reasoning_effort=REASONING_EFFORT_TOOLS,
-                max_tokens=MAX_TOKENS_TOOLS,
-                thinking_tools=THINKING_TOOLS,
-                thinking_budget_tools=THINKING_BUDGET_TOOLS,
-            )
-        elif PROVIDER == "openai":
-            return LiteLLMBackend(
-                provider=PROVIDER,
-                model_name=MODEL_TOOLS,
-                url=URL_TOOLS,
-                api_key=API_KEY_TOOLS,
-                api_version=API_VERSION_TOOLS,
-                seed=SEED_TOOLS,
-                top_p=TOP_P_TOOLS,
-                temperature=TEMPERATURE_TOOLS,
-                reasoning_effort=REASONING_EFFORT_TOOLS,
-                max_tokens=MAX_TOKENS_TOOLS,
-                thinking_tools=THINKING_TOOLS,
-                thinking_budget_tools=THINKING_BUDGET_TOOLS,
-            )
-        elif PROVIDER == "litellm":
-            return LiteLLMBackend(
-                provider=PROVIDER,
-                model_name=MODEL_TOOLS,
-                url=URL_TOOLS,  # not used
-                api_key=API_KEY_TOOLS,
-                api_version=API_VERSION_TOOLS,
-                seed=SEED_TOOLS,
-                top_p=TOP_P_TOOLS,
-                temperature=TEMPERATURE_TOOLS,
-                reasoning_effort=REASONING_EFFORT_TOOLS,
-                thinking_tools=THINKING_TOOLS,
-                thinking_budget_tools=THINKING_BUDGET_TOOLS,
-                max_tokens=MAX_TOKENS_TOOLS,
-            )
-        elif PROVIDER == "compatible":
-            return LiteLLMBackend(
-                provider=PROVIDER,
-                model_name=MODEL_TOOLS,
-                url=URL_TOOLS,
-                api_key=API_KEY_TOOLS,
-                api_version=API_VERSION_TOOLS,
-                seed=SEED_TOOLS,
-                top_p=TOP_P_TOOLS,
-                temperature=TEMPERATURE_TOOLS,
-                reasoning_effort=REASONING_EFFORT_TOOLS,
-                thinking_tools=THINKING_TOOLS,
-                thinking_budget_tools=THINKING_BUDGET_TOOLS,
-                max_tokens=MAX_TOKENS_TOOLS,
-            )
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/diagnosis_agent.py b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/diagnosis_agent.py
index 308c233..76e21f5 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/diagnosis_agent.py
+++ b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/diagnosis_agent.py
@@ -1,4 +1,5 @@
 import asyncio
+import logging
 from pathlib import Path
 
 import yaml
@@ -6,15 +7,14 @@
 from langgraph.checkpoint.memory import MemorySaver
 from langgraph.constants import END, START
 
-from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
 from clients.stratus.stratus_agent.base_agent import BaseAgent
 from clients.stratus.stratus_agent.mitigation_agent import generate_run_summary
 from clients.stratus.stratus_utils.get_logger import get_logger
 from clients.stratus.stratus_utils.get_starting_prompt import get_starting_prompts
 from clients.stratus.stratus_utils.str_to_tool import str_to_tool
 from clients.stratus.tools.stratus_tool_node import StratusToolNode
+from llm_backend.init_backend import get_llm_backend_for_tools
 
-import logging
 logger = logging.getLogger("all.stratus.diagnosis")
 logger.propagate = True
 logger.setLevel(logging.DEBUG)
@@ -76,7 +76,7 @@ async def arun(self, starting_prompts):
 
         if len(starting_prompts) == 0:
             raise ValueError("No prompts used to start the conversation!")
-        
+
         all_init_prompts = ""
         for prompt in starting_prompts:
             all_init_prompts += prompt.content + "\n"
@@ -86,7 +86,7 @@ async def arun(self, starting_prompts):
 
         while True:
             graph_config = {"configurable": {"thread_id": "1"}}
-            
+
             logger.info(f"{'-' * 20} [Loop {self.loop_count}] {'-' * 20}")
             last_state = self.graph.get_state(config=graph_config)
             # logger.info("last state: %s", last_state)
@@ -109,7 +109,6 @@ async def arun(self, starting_prompts):
                     # "ans": dict(),
                     "rollback_stack": "",
                 }
-                
 
             async for event in self.graph.astream(
                 state,
@@ -118,16 +117,16 @@ async def arun(self, starting_prompts):
                 stream_mode="values",
             ):
                 if (not graph_events) or event["messages"][-1] != graph_events[-1]["messages"][-1]:
-                    #print(f"Last message: {graph_events[-1]['messages']}")
+                    # print(f"Last message: {graph_events[-1]['messages']}")
                     event["messages"][-1].pretty_print()
                 graph_events.append(event)
             last_state = self.graph.get_state(config=graph_config)
             if last_state.values["submitted"]:
                 logger.info(f"[Loop {self.loop_count}] Agent submitted, breaking loop.")
                 break
-            
+
             self.loop_count += 1
-            
+
             # print(f"================{last_state.values['num_steps']}===============")
 
         return last_state
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/localization_agent.py b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/localization_agent.py
index e733a84..279f531 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/localization_agent.py
+++ b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/localization_agent.py
@@ -4,10 +4,10 @@
 
 import yaml
 
-from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
 from clients.stratus.stratus_agent.diagnosis_agent import DiagnosisAgent
 from clients.stratus.stratus_utils.get_starting_prompt import get_starting_prompts
 from clients.stratus.stratus_utils.str_to_tool import str_to_tool
+from llm_backend.init_backend import get_llm_backend_for_tools
 
 logger = logging.getLogger("all.stratus.localization")
 logger.propagate = True
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/mitigation_agent.py b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/mitigation_agent.py
index aab1b50..2d349e1 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/mitigation_agent.py
+++ b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/mitigation_agent.py
@@ -1,7 +1,8 @@
 import asyncio
+import logging
 from pathlib import Path
 from typing import List
-import logging
+
 import yaml
 from langchain_core.callbacks import UsageMetadataCallbackHandler
 from langchain_core.messages import HumanMessage, SystemMessage
@@ -9,11 +10,11 @@
 from langgraph.constants import END, START
 from langgraph.types import StateSnapshot
 
-from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
 from clients.stratus.stratus_agent.base_agent import BaseAgent
 from clients.stratus.stratus_agent.state import State
 from clients.stratus.stratus_utils.str_to_tool import str_to_tool
 from clients.stratus.tools.stratus_tool_node import StratusToolNode
+from llm_backend.init_backend import get_llm_backend_for_tools
 
 logger = logging.getLogger("all.stratus.mitigation")
 logger.propagate = True
@@ -122,7 +123,7 @@ async def arun(self, starting_prompts):
             if last_state.values["submitted"]:
                 logger.info(f"[Loop {self.loop_count}] Agent submitted, breaking loop.")
                 break
-            
+
             self.loop_count += 1
 
         return last_state
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/rollback_agent.py b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/rollback_agent.py
index 817a31a..5171acc 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/rollback_agent.py
+++ b/benchmarks/sregym/sregym_core/clients/stratus/stratus_agent/rollback_agent.py
@@ -8,11 +8,11 @@
 from langgraph.constants import END
 from langgraph.graph import START
 
-from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
 from clients.stratus.stratus_agent.base_agent import BaseAgent
 from clients.stratus.stratus_utils.get_starting_prompt import get_starting_prompts
 from clients.stratus.stratus_utils.str_to_tool import str_to_tool
 from clients.stratus.tools.stratus_tool_node import StratusToolNode
+from llm_backend.init_backend import get_llm_backend_for_tools
 
 logger = logging.getLogger("all.stratus.rollback")
 logger.propagate = True
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/tools/jaeger_tools.py b/benchmarks/sregym/sregym_core/clients/stratus/tools/jaeger_tools.py
index b4d9ddc..dc09dbd 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/tools/jaeger_tools.py
+++ b/benchmarks/sregym/sregym_core/clients/stratus/tools/jaeger_tools.py
@@ -9,7 +9,6 @@
 from mcp.client.sse import sse_client
 
 from clients.stratus.configs.langgraph_tool_configs import LanggraphToolConfig
-from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
 from clients.stratus.stratus_utils.truncate_by_token import truncate_to_tokens
 from clients.stratus.tools.text_editing.flake8_utils import flake8, format_flake8_output  # type: ignore
 from clients.stratus.tools.text_editing.windowed_file import (  # type: ignore
@@ -17,6 +16,7 @@
     TextNotFound,
     WindowedFile,
 )
+from llm_backend.init_backend import get_llm_backend_for_tools
 
 logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
 logger = logging.getLogger("all.stratus.tools.jaeger")
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/tools/prometheus_tools.py b/benchmarks/sregym/sregym_core/clients/stratus/tools/prometheus_tools.py
index 3c6a7d7..a5c7269 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/tools/prometheus_tools.py
+++ b/benchmarks/sregym/sregym_core/clients/stratus/tools/prometheus_tools.py
@@ -9,7 +9,6 @@
 from mcp.client.sse import sse_client
 
 from clients.stratus.configs.langgraph_tool_configs import LanggraphToolConfig
-from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
 from clients.stratus.stratus_utils.truncate_by_token import truncate_to_tokens
 from clients.stratus.tools.text_editing.flake8_utils import flake8, format_flake8_output  # type: ignore
 from clients.stratus.tools.text_editing.windowed_file import (  # type: ignore
@@ -17,6 +16,7 @@
     TextNotFound,
     WindowedFile,
 )
+from llm_backend.init_backend import get_llm_backend_for_tools
 
 logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
 logger = logging.getLogger(__name__)
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/__init__.py b/benchmarks/sregym/sregym_core/llm_backend/__init__.py
similarity index 100%
rename from benchmarks/sregym/sregym_core/clients/stratus/llm_backend/__init__.py
rename to benchmarks/sregym/sregym_core/llm_backend/__init__.py
diff --git a/benchmarks/sregym/sregym_core/llm_backend/configs.yaml b/benchmarks/sregym/sregym_core/llm_backend/configs.yaml
new file mode 100644
index 0000000..3906125
--- /dev/null
+++ b/benchmarks/sregym/sregym_core/llm_backend/configs.yaml
@@ -0,0 +1,78 @@
+# You can add new model configurations here with the following params:
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | param \ provider | litellm                | watsonx                           | openai (native, default setting)                                             |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | model_name       | openai/gpt-4o          | meta-llama/llama-3-3-70b-instruct | gpt-4o                                                                       |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | url              | <not set>              | https://us-south.ml.cloud.ibm.com | ✗                                                                            |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | api_key          | $OPENAI_API_KEY        | $WATSONX_API_KEY                  | $OPENAI_API_KEY                                                              |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | seed             | x                      | <not set>                         | <not set>                                                                    |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | top_p            | 0.95                   | 0.95                              | 0.95                                                                         |
+# |                  |                        |                                   | Reasoning models (o1, o3) and newer models (gpt-5) don't support top_p       |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | temperature      | 0.0                    | 0.0                               | 0.0                                                                          |
+# |                  |                        |                                   | Reasoning models (o1, o3) and newer models (gpt-5) don't support temperature |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | max_tokens       | <not set>              | <not set>                         | <not set>                                                                    |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | project_id       | x                      | $WX_PROJECT_ID                    | x                                                                            |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | azure_version    | $AZURE_API_VERSION     | x                                 | x                                                                            |
+# |                  | Only for Azure backend |                                   |                                                                              |
+# +------------------+------------------------+-----------------------------------+------------------------------------------------------------------------------+
+# | - x means the provider backend does not support the param.                                                                                                   |
+# | - <not set> means the param is not set and passed into the backend by default.                                                                               |
+# | - Other values mean the default values if you don't overwrite below.                                                                                         |
+# +--------------------------------------------------------------------------------------------------------------------------------------------------------------+
+
+"gpt-4o":
+  provider: "openai"
+  model_name: "gpt-4o"
+  api_key: "$OPENAI_API_KEY"
+  top_p: 0.95
+  temperature: 0.0
+
+"gemini-2.5-pro":
+  provider: "litellm"
+  model_name: "gemini/gemini-2.5-pro"
+  api_key: "$GEMINI_API_KEY"
+  temperature: 0.0
+  top_p: 0.95
+
+"claude-sonnet-4":
+  provider: "litellm"
+  model_name: "anthropic/claude-sonnet-4-20250514"
+  api_key: "$ANTHROPIC_API_KEY"
+  temperature: 0.0
+  top_p: 0.95
+
+"moonshot":
+  provider: "litellm"
+  model_name: "moonshot/moonshot"
+  api_key: "$MOONSHOT_API_KEY"
+  temperature: 0.0
+  top_p: 0.95
+
+"watsonx-llama":
+  provider: "watsonx"
+  model_name: "meta-llama/llama-3-3-70b-instruct"
+  api_key: "$WATSONX_API_KEY"
+  url: "https://us-south.ml.cloud.ibm.com"
+  wx_project_id: "$WX_PROJECT_ID"
+
+"glm-4":
+  provider: "litellm"
+  model_name: "openai/glm-4" # this should use openai/xxx
+  api_key: "$GLM_API_KEY"
+  temperature: 0.0
+  top_p: 0.95
+  url: "https://open.bigmodel.cn/api/paas/v4/"
+
+"azure-openai-gpt-4o":
+  provider: "litellm"
+  model_name: "azure/gpt-4o"
+  api_key: "$AZURE_API_KEY"
+  url: "$AZURE_API_BASE"
\ No newline at end of file
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/get_llm_backend.py b/benchmarks/sregym/sregym_core/llm_backend/get_llm_backend.py
similarity index 88%
rename from benchmarks/sregym/sregym_core/clients/stratus/llm_backend/get_llm_backend.py
rename to benchmarks/sregym/sregym_core/llm_backend/get_llm_backend.py
index 982e048..dee3285 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/get_llm_backend.py
+++ b/benchmarks/sregym/sregym_core/llm_backend/get_llm_backend.py
@@ -10,14 +10,12 @@
 import openai
 from dotenv import load_dotenv
 from langchain_core.messages import AIMessage, HumanMessage, SystemMessage
-from langchain_google_genai import ChatGoogleGenerativeAI
 from langchain_ibm import ChatWatsonx
 from langchain_litellm import ChatLiteLLM
 from langchain_openai import ChatOpenAI
-from litellm.utils import trim_messages
 from requests.exceptions import HTTPError
 
-from clients.stratus.llm_backend.trim_util import trim_messages_conservative
+from llm_backend.trim_util import trim_messages_conservative
 
 logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s")
 logger = logging.getLogger(__name__)
@@ -34,30 +32,26 @@ def __init__(
         self,
         provider: str,
         model_name: str,
-        url: str,
         api_key: str,
-        api_version: str,
-        seed: int,
-        top_p: float,
-        temperature: float,
-        reasoning_effort: str,
-        thinking_tools: str,
-        thinking_budget_tools: int,
-        max_tokens: int,
+        url: Optional[str] = None,
+        top_p: Optional[float] = None,
+        temperature: Optional[float] = None,
+        max_tokens: Optional[int] = None,
+        seed: Optional[int] = None,
+        wx_project_id: Optional[str] = None,
+        azure_version: Optional[str] = None,
         extra_headers: Optional[Dict[str, str]] = None,
     ):
         self.provider = provider
         self.model_name = model_name
         self.url = url
         self.api_key = api_key
-        self.api_version = api_version
         self.temperature = temperature
         self.seed = seed
         self.top_p = top_p
-        self.reasoning_effort = reasoning_effort
-        self.thinking_tools = thinking_tools
-        self.thinking_budget_tools = thinking_budget_tools
         self.max_tokens = max_tokens
+        self.wx_project_id = wx_project_id
+        self.azure_version = azure_version
         self.extra_headers = extra_headers
         litellm.drop_params = True
         litellm.modify_params = True  # for Anthropic
@@ -112,35 +106,41 @@ def inference(
                 model_config["top_p"] = self.top_p
             llm = ChatOpenAI(**model_config)
         elif self.provider == "watsonx":
-            llm = ChatWatsonx(
-                model_id=self.model_name,
-                url=self.url,
-                project_id=os.environ["WX_PROJECT_ID"],
-                apikey=self.api_key,
-                temperature=self.temperature,
-            )
-        # FIXME: openai client is broken, but we can just use LiteLLM to use openai
-        elif self.provider == "openai":
-            llm = ChatLiteLLM(
-                model=self.model_name,
-                temperature=self.temperature,
-                top_p=self.top_p,
-                api_key=self.api_key,
-            )
+
+            model_config = {
+                "model_id": self.model_name,
+            }
+
+            if self.wx_project_id is not None:
+                model_config["project_id"] = self.wx_project_id
+            if self.temperature is not None:
+                model_config["temperature"] = self.temperature
+            if self.top_p is not None:
+                model_config["top_p"] = self.top_p
+            if self.api_key is not None:
+                model_config["apikey"] = self.api_key
+            if self.url is not None:
+                model_config["url"] = self.url
+            llm = ChatWatsonx(**model_config)
+
         elif self.provider == "litellm":
-            llm = ChatLiteLLM(
-                model=self.model_name,
-                temperature=self.temperature,
-                top_p=self.top_p,
-            )
-        elif self.provider == "compatible":
-            llm = ChatLiteLLM(
-                model=self.model_name,
-                temperature=self.temperature,
-                top_p=self.top_p,
-                api_key=self.api_key,
-                api_base=self.url,
-            )
+
+            model_config = {
+                "model": self.model_name,
+            }
+
+            if self.temperature is not None:
+                model_config["temperature"] = self.temperature
+            if self.top_p is not None:
+                model_config["top_p"] = self.top_p
+            if self.api_key is not None:
+                model_config["api_key"] = self.api_key
+            if self.url is not None:
+                model_config["api_base"] = self.url
+            if self.max_tokens is not None:
+                model_config["max_tokens"] = self.max_tokens
+
+            llm = ChatLiteLLM(**model_config)
         else:
             raise ValueError(f"Unsupported provider: {self.provider}")
 
diff --git a/benchmarks/sregym/sregym_core/llm_backend/init_backend.py b/benchmarks/sregym/sregym_core/llm_backend/init_backend.py
new file mode 100644
index 0000000..dbd8cce
--- /dev/null
+++ b/benchmarks/sregym/sregym_core/llm_backend/init_backend.py
@@ -0,0 +1,112 @@
+"""Adopted from previous project"""
+
+import os
+
+import yaml
+from dotenv import load_dotenv
+
+from llm_backend.get_llm_backend import LiteLLMBackend
+
+load_dotenv()
+
+
+def load_model_config():
+    with open(os.path.join(os.path.dirname(__file__), "configs.yaml"), "r") as f:
+        configs = yaml.load(f, Loader=yaml.FullLoader)
+    return configs
+
+
+def set_param(params, config, field, default_value, required=False):
+    value_to_set = None
+    value_or_env = None
+
+    if field in config:
+        value_or_env = config[field]
+    elif default_value is not None:
+        value_or_env = default_value
+
+    if value_or_env is not None and type(value_or_env) == str and value_or_env.startswith("$"):
+        key = value_or_env[1:]
+        if key in os.environ:
+            value_to_set = os.environ[key]
+        # else do nothing
+    else:
+        value_to_set = value_or_env
+
+    if value_to_set is not None:
+        params[field] = value_to_set
+    else:
+        if required:
+            print(f"Unable to find value for required field - {field}. Exiting...")
+            exit(1)
+        # else do nothing
+
+
+def get_llm_backend_for_tools():
+    llm_config = load_model_config()
+
+    MODEL_ID = os.environ.get("MODEL_ID", "gpt-4o")
+    print("Found MODEL_ID: ", MODEL_ID)
+
+    if MODEL_ID not in llm_config:
+        print(
+            f"Unable to find model configuration - {MODEL_ID}. Available models: {[key for key in llm_config.keys()]}"
+        )
+        exit(1)
+    model_config = llm_config[MODEL_ID]
+
+    if model_config["provider"] == "litellm":
+        config_params = {
+            "provider": "litellm",
+        }
+        set_param(config_params, model_config, "model_name", "openai/gpt-4o")
+        set_param(config_params, model_config, "url", None)
+        set_param(config_params, model_config, "api_key", None, required=True)
+        set_param(config_params, model_config, "top_p", 0.95)
+        set_param(config_params, model_config, "temperature", 0.0)
+        set_param(config_params, model_config, "max_tokens", None)
+
+        if "AZURE_API_VERSION" not in os.environ:
+            if "azure_version" in model_config:
+                # set env
+                print(f"Setting Azure API version env from config - {model_config['azure_version']}")
+                os.environ["AZURE_API_VERSION"] = model_config["azure_version"]
+
+        print("Making LiteLLMBackend with config_params: ", config_params)
+
+        return LiteLLMBackend(**config_params)
+
+    elif model_config["provider"] == "openai":
+        config_params = {
+            "provider": "openai",
+        }
+        set_param(config_params, model_config, "model_name", "openai/gpt-4o")
+        set_param(config_params, model_config, "api_key", None, required=True)
+        set_param(config_params, model_config, "seed", None)
+        set_param(config_params, model_config, "top_p", 0.95)
+        set_param(config_params, model_config, "temperature", 0.0)
+        set_param(config_params, model_config, "max_tokens", None)
+
+        print("Making LiteLLMBackend with config_params: ", config_params)
+
+        return LiteLLMBackend(**config_params)
+
+    elif model_config["provider"] == "watsonx":
+        config_params = {
+            "provider": "watsonx",
+        }
+        set_param(config_params, model_config, "model_name", "meta-llama/llama-3-3-70b-instruct")
+        set_param(config_params, model_config, "url", "https://us-south.ml.cloud.ibm.com")
+        set_param(config_params, model_config, "api_key", None, required=True)
+        set_param(config_params, model_config, "seed", None)
+        set_param(config_params, model_config, "top_p", 0.95)
+        set_param(config_params, model_config, "temperature", 0.0)
+        set_param(config_params, model_config, "max_tokens", None)
+        set_param(config_params, model_config, "wx_project_id", "$WX_PROJECT_ID", required=True)
+
+        print("Making LiteLLMBackend with config_params: ", config_params)
+
+        return LiteLLMBackend(**config_params)
+
+    else:
+        raise ValueError(f"Unsupported provider - {model_config['provider']}. Exiting...")
diff --git a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/trim_util.py b/benchmarks/sregym/sregym_core/llm_backend/trim_util.py
similarity index 89%
rename from benchmarks/sregym/sregym_core/clients/stratus/llm_backend/trim_util.py
rename to benchmarks/sregym/sregym_core/llm_backend/trim_util.py
index 1e326b5..2a5a8f4 100644
--- a/benchmarks/sregym/sregym_core/clients/stratus/llm_backend/trim_util.py
+++ b/benchmarks/sregym/sregym_core/llm_backend/trim_util.py
@@ -1,35 +1,33 @@
 """Trim utility for langchain message types."""
 
 import copy
+
 from langchain_core.messages import HumanMessage
 
 
-def trim_messages_conservative(
-    messages,
-    kept_threshold: int = 30
-):
+def trim_messages_conservative(messages, kept_threshold: int = 30):
     """
     Trim messages by keeping the last kept_threshold messages unchanged,
     and replacing HumanMessage content with "..." for earlier messages.
-    
+
     Args:
         messages: List of langchain messages to trim
         kept_threshold: Number of messages to keep unchanged from the end (default: 30)
-        
+
     Returns:
         Deep copy of trimmed messages without modifying the original
     """
     # Create a deep copy to avoid modifying the original
     trimmed_messages = copy.deepcopy(messages)
-    
+
     trim_sum = 0
     # If we have fewer messages than the threshold, return all unchanged
     if len(trimmed_messages) <= kept_threshold:
         return trimmed_messages, 0
-    
+
     # Calculate how many messages to process from the beginning
     messages_to_trim = len(trimmed_messages) - kept_threshold
-    
+
     # Process the first messages_to_trim messages
     for i in range(messages_to_trim):
         message = trimmed_messages[i]
@@ -37,4 +35,4 @@ def trim_messages_conservative(
         if isinstance(message, HumanMessage):
             message.content = "..."
             trim_sum += 1
-    return trimmed_messages, trim_sum 
+    return trimmed_messages, trim_sum
diff --git a/benchmarks/sregym/sregym_core/main.py b/benchmarks/sregym/sregym_core/main.py
index 16f03d8..de2d5b7 100644
--- a/benchmarks/sregym/sregym_core/main.py
+++ b/benchmarks/sregym/sregym_core/main.py
@@ -213,6 +213,9 @@ def main(args):
     # set up the logger
     init_logger()
 
+    os.environ["MODEL_ID"] = args.model
+    print("Setting MODEL_ID: ", args.model)
+
     # Start dashboard in a separate process
     dashboard_process = None
     if not args.use_external_harness:
@@ -307,6 +310,12 @@ def main(args):
         default=None,
         help="Run only a specific agent by its name (e.g., 'stratus')",
     )
+    parser.add_argument(
+        "--model",
+        type=str,
+        default="gpt-4o",
+        help="Run only a speicfic model backend (e.g., 'gpt-4o', 'gemini-2.5-pro', 'claude-sonnet-4', 'moonshot')",
+    )
     parser.add_argument(
         "--use-external-harness", action="store_true", help="For use in external harnesses, deploy the fault and exit."
     )
diff --git a/benchmarks/sregym/sregym_core/mcp_server/test_client.py b/benchmarks/sregym/sregym_core/mcp_server/test_client.py
index d62b971..c7ca070 100644
--- a/benchmarks/sregym/sregym_core/mcp_server/test_client.py
+++ b/benchmarks/sregym/sregym_core/mcp_server/test_client.py
@@ -8,10 +8,11 @@
 
 from anthropic import Anthropic
 from dotenv import load_dotenv
-from init_backend import get_llm_backend_for_tools
 from mcp import ClientSession, StdioServerParameters
 from mcp.client.stdio import stdio_client
 
+from llm_backend.init_backend import get_llm_backend_for_tools
+
 load_dotenv()  # load environment variables from .env
 
 
diff --git a/benchmarks/sregym/sregym_core/sregym/conductor/oracles/llm_as_a_judge/judge.py b/benchmarks/sregym/sregym_core/sregym/conductor/oracles/llm_as_a_judge/judge.py
index fee416d..7b7c31b 100644
--- a/benchmarks/sregym/sregym_core/sregym/conductor/oracles/llm_as_a_judge/judge.py
+++ b/benchmarks/sregym/sregym_core/sregym/conductor/oracles/llm_as_a_judge/judge.py
@@ -11,7 +11,7 @@
 from dotenv import load_dotenv
 from langchain_core.messages import HumanMessage, SystemMessage
 
-from clients.stratus.llm_backend.get_llm_backend import LiteLLMBackend
+from llm_backend.init_backend import get_llm_backend_for_tools
 
 load_dotenv()
 
@@ -33,31 +33,11 @@ def __init__(
         temperature: float = 0.0,
         max_tokens: int = 4096,
     ):
-        # Load from environment if not provided
-        self.provider = provider or os.getenv("PROVIDER", "openai")
-        self.model_name = model_name or os.getenv("MODEL_TOOLS", "gpt-4o")
-        self.url = url or os.getenv("URL_TOOLS", "")
-        self.api_key = api_key or os.getenv("API_KEY_TOOLS", "")
-        self.temperature = temperature
-        self.max_tokens = max_tokens
 
         # Initialize LiteLLM backend
-        self.backend = LiteLLMBackend(
-            provider=self.provider,
-            model_name=self.model_name,
-            url=self.url,
-            api_key=self.api_key,
-            api_version=os.getenv("API_VERSION_TOOLS", ""),
-            seed=int(os.getenv("SEED_TOOLS", "42")),
-            top_p=float(os.getenv("TOP_P_TOOLS", "0.95")),
-            temperature=self.temperature,
-            reasoning_effort="",
-            thinking_tools="",
-            thinking_budget_tools=0,
-            max_tokens=self.max_tokens,
-        )
+        self.backend = get_llm_backend_for_tools()
 
-        print(f"Initialized LLMJudge with provider={self.provider}, model={self.model_name}")
+        print(f"Initialized LLMJudge")
 
     def judge(self, solution: str, expectation: str) -> JudgmentResult:
         system_prompt = """You are an expert judge evaluating whether an agent's diagnosis of a system issue matches the expected root cause.
diff --git a/benchmarks/sregym/sregym_core/tests/file_editing/test_file_editing_tool.py b/benchmarks/sregym/sregym_core/tests/file_editing/test_file_editing_tool.py
index 0701b39..33751c5 100644
--- a/benchmarks/sregym/sregym_core/tests/file_editing/test_file_editing_tool.py
+++ b/benchmarks/sregym/sregym_core/tests/file_editing/test_file_editing_tool.py
@@ -4,8 +4,8 @@
 import pytest
 import yaml
 
-from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
 from clients.test_k8s_agent.k8s_agent import XAgent
+from llm_backend.init_backend import get_llm_backend_for_tools
 
 
 def get_agent():
diff --git a/benchmarks/sregym/sregym_core/tests/kubectl_tool_tests/kubectl_tool_set_test.py b/benchmarks/sregym/sregym_core/tests/kubectl_tool_tests/kubectl_tool_set_test.py
index 4162ac5..5118c8c 100644
--- a/benchmarks/sregym/sregym_core/tests/kubectl_tool_tests/kubectl_tool_set_test.py
+++ b/benchmarks/sregym/sregym_core/tests/kubectl_tool_tests/kubectl_tool_set_test.py
@@ -41,7 +41,7 @@ def get_agent(is_mock):
     if is_mock:
         llm = None
     else:
-        from clients.stratus.llm_backend.init_backend import get_llm_backend_for_tools
+        from llm_backend.init_backend import get_llm_backend_for_tools
 
         llm = get_llm_backend_for_tools()
 

From 1bb9bace34fb13344807407b809372137e58836d Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Mon, 8 Dec 2025 14:23:00 -0600
Subject: [PATCH 16/17] Minor adaptions

---
 benchmarks/sregym/README.md                | 48 +++++++++++++++++-----
 benchmarks/sregym/WHY.md                   | 28 +++++++++++++
 benchmarks/sregym/run.sh                   | 14 ++++---
 benchmarks/sregym/sregym_core/.env.example |  3 ++
 4 files changed, 77 insertions(+), 16 deletions(-)
 create mode 100644 benchmarks/sregym/WHY.md

diff --git a/benchmarks/sregym/README.md b/benchmarks/sregym/README.md
index f5d32b2..b57afe2 100644
--- a/benchmarks/sregym/README.md
+++ b/benchmarks/sregym/README.md
@@ -1,4 +1,15 @@
-# SREGym Quick Guide
+<h1>SREGym: A Benchmarking Platform for SRE Agents</h1>
+
+[🔍Overview](#🤖overview) |  [📦Installation](#📦installation) | [🚀Quick Start](#🚀quickstart) | [⚙️Usage](#⚙️usage) | [🤝Contributing](./CONTRIBUTING.md) | [📖Docs](https://sregym.com/docs) | [![Slack](https://img.shields.io/badge/-Slack-4A154B?style=flat-square&logo=slack&logoColor=white)](https://join.slack.com/t/SREGym/shared_invite/zt-3gvqxpkpc-RvCUcyBEMvzvXaQS9KtS_w)
+
+## Overview
+SREGym is an AI-native platform to enable the design, development, and evaluation of AI agents for Site Reliability Engineering (SRE). The core idea is to create live system environments for SRE agents to solve real-world SRE problems. SREGym provides a comprehensive SRE benchmark suite with a wide variety of problems for evaluating SRE agents and also for training next-generation AI agents.
+<br><br>
+
+![SREGym Overview](./sregym_core/assets/SREGymFigure.png)
+
+SREGym is inspired by our prior work on AIOpsLab and ITBench. It is architectured with AI-native usability and extensibility as first-class principles. The SREGym benchmark suites contain 86 different SRE problems. It supports all the problems from AIOpsLab and ITBench, and includes new problems such as OS-level faults, metastable failures, and concurrent failures. See our [problem set](https://sregym.com/problems) for a complete list of problems.
+
 
 In this README.md, I will quickly explain how to run SREGym within the System Intelligence Framework.
 
@@ -6,6 +17,8 @@ For advanced use of *System Intelligence* and *SREGym*, please refer to the docs
 
 ## Architecture Explanation
 
+### Abstraction
+
 SREGym has a decoupled design which complies with *System Intelligence* philosophy.
 Here is the correspondence of the components in *System Intelligence* and *SREGym*:
 
@@ -15,30 +28,41 @@ The `Evaluator` is the evaluation oracles in *SREGym*, which is decoupled from t
 
 The*SREGym*'s `Conductor` serves as the `Environment` in *System Intelligence*.
 
+### Task Details
+
+- **Environment Setup**: SREGym Conductor will inject faults into the environment and lead to failures.
+- **Diagnosis**: The agent will be asked to diagnose the root cause of the failure.
+- **Mitigation**: The agent will be asked to mitigate the failure.
+- **Evaluation**: The RCA result will be evaluated by the LLM as a judge oracle, and the mitigation result will be evaluated by specifically-designed mitigation oracles.
+
+
 ## Run SREGym
 
-1. Prepare `.env` for the configurations. You can make a copy of `.env.example` into `.env` and set the keys in the `.env` file. For System Intelligence, you need to set the API keys for the models you want to test, like below:
+1. Prepare `sregym_core/.env` for the configurations. You can make a copy of `sregym_core/.env.example` into `sregym_core/.env` and set the keys in the `.env` file. For System Intelligence, you need to set the API keys for all the models you want to test, like below:
 
 ``` shell
-PROVIDER_TOOLS="litellm"
-PROVIDER="litellm"
-
 GEMINI_API_KEY="XXXXXX"
 OPENAI_API_KEY="XXXXXX"
 ANTHROPIC_API_KEY="XXXXXX"
 MOONSHOT_API_KEY="XXXXXX"
+AZURE_API_KEY="XXXXXX"
+AZURE_API_BASE="XXXXXX"
+
 ```
-> You do not need to set the `MODEL_TOOLS` in the `.env` file. It will be set automatically by the System Intelligence Framework. It is indented for individual run of SREGym.
+> If you want more pre-defined model configurations, please refer to the `sregym_core/llm_backend/configs.yaml` file and add your own configurations there. Then you can select the backend with cli argument `--model <model_id>`.
+
+> For MS Azure and AWS Bedrock, you may need more configurations.
 
-2. You need to make a `inventory.yml` file in the `sregym_core/scripts/ansible` directory. You can make a copy of `inventory.yml.example` into `inventory.yml` and set the hosts in the `inventory.yml` file. You can follow the instructions [here](https://github.com/SREGym/SREGym?tab=readme-ov-file#a-kubernetes-cluster-recommended) to get a cluster and set up the inventory file.
 
-3. Install the dependencies
+1. You need to make a `inventory.yml` file in the `sregym_core/scripts/ansible` directory. You can make a copy of `inventory.yml.example` into `inventory.yml` and set the hosts in the `inventory.yml` file. You can follow the instructions [here](https://github.com/SREGym/SREGym?tab=readme-ov-file#a-kubernetes-cluster-recommended) to get a cluster and set up the inventory file.
+
+2. Install the dependencies
 ``` shell
 cd benchmarks/sregym
 ./install.sh
 ```
 
-4. Run the benchmark
+1. Run the benchmark
 ``` shell
 cd benchmarks/sregym
 ./run.sh <model_name>
@@ -60,9 +84,13 @@ To orchestrate SysMoBench alongside other benchmarks:
 
 ```bash
 cd cli
-./run_all_local.sh <model_name>
+./run_all_local.sh <model_name> <agent_name>
 ```
 
+## How to Extend the Benchmark
+
+Please refer to the [Adding New Components](https://sregym.com/docs/contributing#adding-new-components) guide in the SREGym documentation.
+
 ## Contribution
 
 We strongly welcome contributions to SREGym.   
diff --git a/benchmarks/sregym/WHY.md b/benchmarks/sregym/WHY.md
new file mode 100644
index 0000000..a0fecae
--- /dev/null
+++ b/benchmarks/sregym/WHY.md
@@ -0,0 +1,28 @@
+# Why Site Reliability Engineering as an AI Training Task?
+
+`SREGym` treats the Site Reliability Engineering (SRE) incident management process as a training ground for AI agents to form core [system intelligence capabilities](https://www.sigops.org/2025/defining-system-intelligence/). During an incident, SREs must diagnose root causes in complex distributed systems, mitigate failures and solve the root cause of the failure. This makes SRE a rich, realistic testbed for AI: agents must reason across system boundaries, interpret noisy signals (logs, metrics, traces), and execute safe remediation actions, yet we believe they can be trained to reliably assist or autonomously handle critical incidents.
+
+## Goals and Objectives
+
+Site Reliability Engineering has become the standard for operating large-scale software systems. Despite best practices, the practical work of incident response remains stressful and high-stakes. To alleviate this burden, we envision automated SRE agents that execute reliable diagnosis and mitigation. Startups, cloud providers and The capability of the agents in incident response can also show the critical capabilities of agents' understanding of the system.
+
+
+## Background
+
+#### » The SRE Incident Lifecycle
+
+SREGym focuses on the core phases of the incident lifecycle, mirroring the critical tasks performed by human Site Reliability Engineers during production outages:
+
+*   **Diagnosis (Root Cause Analysis).** In a real-world incident, SREs must rapidly identify *why* a system is failing under pressure. This involves navigating complex distributed systems, correlating noisy signals (logs, metrics, traces) across the stack, and verifying hypotheses to pinpoint the underlying fault (e.g., code bug, configuration drift, or infrastructure failure).
+
+*   **Mitigation.** Once the issue is understood (or sometimes even before, to stop bleeding), SREs must determine *how* to restore service health. This requires executing safe, decisive actions—such as rolling back deployments, draining traffic, or restarting services—while carefully managing the risk of collateral damage to ensure the system returns to a healthy state and meets SLAs.
+
+#### » What makes AISRE challenging in practice?
+
+Reliability engineering is obstructed by multiple factors that make it a formidable AI challenge:
+
+1.  **Complexity and Scale**: Modern microservice architectures generate vast amounts of data. Finding a signal in the noise of terabytes of logs and metrics is non-trivial. SREGym provides a noise generator to evaluate the agents' ability to handle noise.
+2.  **Partial Observability**: Failures often occur in "blind spots" where instrumentation is missing or misleading (e.g., silent failures, heisenbugs). Text-based RCA problems, the agents are exposed to the problems directly, but in the real scenario SREGym creates, the agents need to reason the system appearance from the logs and metrics and identify the problems.
+3.  **Fail-slow**: Some failures do not cause immediate system failure, but they can cause the system to degrade over time. SREGym includes fail-slow faults to evaluate the agents' ability to find and solve these sorts of problems.
+4.  **Time-to-mitigate**: SREGym enables the evaluation of the agents' efficiency in mitigating the faults, which is a critical metric for SRE.
+
diff --git a/benchmarks/sregym/run.sh b/benchmarks/sregym/run.sh
index e519161..e050158 100755
--- a/benchmarks/sregym/run.sh
+++ b/benchmarks/sregym/run.sh
@@ -2,19 +2,21 @@
 
 set -e  # Exit immediately on error.
 
-if [ $# -ne 1 ]; then
-    echo "Usage: $0 <model_location>"
-    echo "Example: $0 \"gemini/gemini-2.5-flash\""
+if [ $# -lt 1 ] || [ $# -gt 2 ]; then
+    echo "Usage: $0 <model_id> [agent_name]"
+    echo "Example: $0 \"gpt-4o\""
+    echo "Example: $0 \"gpt-4o\" \"stratus\""
     exit 1
 fi
 
-MODEL_NAME="$1"
+MODEL_ID="${1:-gpt-4o}"
+AGENT_NAME="${2:-stratus}"  # Default to "stratus" if not provided
 
 source sregym_core/.venv/bin/activate
 
 echo "==> Start to run SREGym"
 python src/main.py \
-    --agent "stratus" \
-    --model_name "${MODEL_NAME}" 
+    --agent "${AGENT_NAME}" \
+    --model "${MODEL_ID}" 
     
 deactivate
diff --git a/benchmarks/sregym/sregym_core/.env.example b/benchmarks/sregym/sregym_core/.env.example
index 794aee0..b71d4e9 100644
--- a/benchmarks/sregym/sregym_core/.env.example
+++ b/benchmarks/sregym/sregym_core/.env.example
@@ -38,3 +38,6 @@ LLM_QUERY_INIT_RETRY_DELAY=1
 # WATSONX_API_BASE="https://us-south.ml.cloud.ibm.com"
 # WX_PROJECT_ID="HaveIllinisLotsOfIt"
 # WATSONX_API_KEY="HaveCornsLotsOfIt"
+
+# AZURE_API_KEY="HaveBluesLotsOfIt"
+# AZURE_API_BASE="HaveBasesLotsOfIt"

From 2d66dc7491c81c3c9dd3958549e460cbf8efdfe8 Mon Sep 17 00:00:00 2001
From: Jackcuii <forever_1210@yeah.net>
Date: Mon, 8 Dec 2025 14:58:28 -0600
Subject: [PATCH 17/17] Fix the typo of the bullet points in the README.md

---
 benchmarks/sregym/README.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/benchmarks/sregym/README.md b/benchmarks/sregym/README.md
index b57afe2..4d70fd7 100644
--- a/benchmarks/sregym/README.md
+++ b/benchmarks/sregym/README.md
@@ -62,10 +62,10 @@ cd benchmarks/sregym
 ./install.sh
 ```
 
-1. Run the benchmark
+3. Run the benchmark
 ``` shell
 cd benchmarks/sregym
-./run.sh <model_name>
+./run.sh <model_name> <agent_name>
 ```
 > Some tested available names are: "gemini/gemini-2.5-flash", "openai/gpt-4o", "anthropic/claude-sonnet-4-20250514", "moonshot/moonshot-v1-32k".