From 395e445c99207ee8f9120dbd85b0aa4fbb46d0b9 Mon Sep 17 00:00:00 2001
From: Bryce <bryce@brycecovertoperations.com>
Date: Sun, 8 Feb 2026 08:40:40 -0800
Subject: [PATCH 1/7] Add test for Bonanza Produce invoice 03882095

Validates existing template correctly parses multi-page invoice with:
- Invoice number 03882095
- Customer identifier NICK THE GREEK
- Account number 600 VISTA WAY
- Total of $946.24
---
 dev-resources/INVOICE - 03882095.pdf      | Bin 0 -> 55419 bytes
 test/clj/auto_ap/parse/templates_test.clj |  19 +++++++++++++++++++
 2 files changed, 19 insertions(+)
 create mode 100755 dev-resources/INVOICE - 03882095.pdf

diff --git a/dev-resources/INVOICE - 03882095.pdf b/dev-resources/INVOICE - 03882095.pdf
new file mode 100755
index 0000000000000000000000000000000000000000..3810d6670f577979e63ee074d478a9969c447eb4
GIT binary patch
literal 55419
zcmc$`WmH^Evo?&&;4rwmySo$IJwR}Ghu{vuJ-EBOySrN;xCMec1m4O0JkL4jUGJas
z{rY~)bno81tE;Z6u03njHBG53A;rkb!~vijJ&!8@aFVc)I2c<41O%An&Fn2)ElIdQ
zBdW|&R<^EY&LqrIwnnaI5@se2re;Dy02fzhGb1~IXV$d-=f=&JgrCQ^^on-YmFB9v
zz>BmlnN&O47PIwKGx~9%p;c3iANbVk73a0v_5omc6cMDn1a@>9tiy}894`-UkR->o
zkG4CHh#%bVk7vXeM84LSy&pdaJ3rnPS^F=lmu*qs4Nm%<4{!Ya-ybgc^OT=v<s?#3
zWLG4nlp?zb+d4#sLUFR%SqSuyHVnub03U1A=-#0_iPiBkQJ8Ep9x_`|)yl1j^hKK9
zp&cooSvjXQ<rO9|f5l!<0UJ6En~4%o3llpe#+yPc*P8?t=dA^!1fGdh(z~vaVb8<S
zD0LAFnN$FU7mhNk`UOR2LJ0<>o>B2krFmyelFsiJ+T+i!6852qiB_*+2qn$vqg6D9
zQ;}BiXt!zwrW-^mTy_p^wxG5}*P#tas{fCC+vcCz>(=^Ytzvn$%{2-^%gK`cOi&c0
zy2xYynrPchr1G~P+su^E$?*Z2ztphYAz?rK*0|ik1+R%gkm4vBBUn&1LZssU&ZM&7
zmNurJ$fwlv2}o7@$CwE3TQl<T$^3WY`Rp{>L}uo=L_ibruw|iHlxZGvXg7rw+caC8
zVcMZ^sdJS$DKjm{@Tc$reN{`kem<acv)J#bpmg-<gXySCwBof><TRuu@+iex?_!Oc
zS0)u_+htm~#xD;%@a{5sRU<#ObwG-o<aO6K#JNWv00J9`A9&2P&VTV0<MtFJ{zgAE
z9n@ON)mL06{hC!o^n05Uz;&tum8Q|7<rB^HgBovHIufgLgh}P*?833X_7!Lxx-^cb
zAE<iZ!Aog#7r9AUo^<O0Eo;>wmz>qhuO~ZvcJ83Ll$&hH8r>m58{IJ|`RYM?2U>U8
zJF8&X8@Nu=U9URv%Xvcc41F9^)grh|wTSUdx0*(^Q-XK1LxMco)l7E0c9M3~G>!&V
z4dk6vqEg#bri9G`>Ynt5#WxUQt4yjCdB2q@wyr2qCtM5;5~#bR(fTA`Fu%3<7R;y7
z&Ko<QqEm)nB9D&d<SB7TNv6^0bjl?o{-j2yHwApJkV}~Qsi7)s;R|x{uLDxwGZ<=C
z`c&Oc3EEw?g5iUOL*VjSq4f1KwXF3yJdm1Mi=kPy!0h-E4fH`ubK4@H=(s>iYw%5@
zd3AGWOTK!MxJaaG6!nHM>%DN2ZLe3N(2^$nJ*%a@l5APuaDi_2`WQC(aEW%<wL-Z-
z4>hZ}Kt7?kfX_5)nkHR~!}Pgzl=gG04S!ROBmD%2Y!l9weu3%Mh2wY!sBHtaj`{`3
z_ML;2XAhBgfPQhni7Ey4DaJVFty0bswKM%uu0Z)Eb$`-S6kE4kGDNFfG7@NkjB|8K
zg$x7e9FBGJ3E5vr*eMju)w~`wsvHw?BAxOH`;Jb@>R;Sx5*e{+8%VKfozEH7PUH%Q
z0(9S89s<n(9-<MBd;2-tAI}%H9zJid__O|-!d`BVCu$xJFb>6wkF`CW`{caoFF&0H
zSv)>|g?Dae=j0M^=Cx_v+!g5cAg76WdhK1;%%ttsFr-zX)*b2p?4m!>@AEoJC$asw
zU3R!YlwbYo^zm!3Q>*uFYaH`=tk}}|@v!D6C0*>tMP;Yb#XG<{ye^fC<|>d~IVYHB
z&)V@(6CWvVgq%C?y;Qg#!}FK<I91m6Yd^jbkTXiz53Eyn1eSH<u<<q+ia1F(*C3~x
zxT@vl?&%Fo6tTzY<&FXNR3NPsWyX3(>Z=0rGo~J%@QI;1j6t8FYN^MpF^e8};i^R~
z4Ec9zhTI%zFgA~pO>xSrDu3lzymYgLeDB5Lh_nG{1vw;VFF)_vF;$6}{m*n`lP-Cy
z7k5rTpmTe4Tu5haK-_XX&)ca?>fIoF31FA!#VWOD%0;@dRmLNFP=S}HvPhO(qevd(
zo!CObC(=I^mEpy7LO`dD1B*cFuv1ja$1(Q0sBSxlcqp&^7<oV*X+<W>5oeA+Tyb;G
zVmD%5q=`Ts!DE~MYrHhOjBVPXz@K+lKbAbb<KN?{$987Lu8)rvo{E76eP726Lk3cg
zi3|Z!F7~I}8n=mulN-SX=31Uowj#e(I_cMP0ypq5NR3w-+)4w}Le=j|0`*i*2T%qy
z$^7t!jd$3(hF7NVlzq&_Hn`#$FE|%@-?!3wJ6F`oT*f#OOZ-XaI4`q_<Q?Z6#G+J!
zR|9Bx1QB-0NbiJ%Gey~IfFU^n^jCZwsT}dxtTzGiGA2Ac#7|u88)7gJ+>i43`0`=z
zLkt2JBsLj4C6PC{LNmN=bc8os?D!PQy7)J#d%>)~?q=4J4J@fAZh2VSWLQP_)*?<}
zFiBWq&J3}gwdf!<g7d^v%X@P}zxiX0XbuPt_XTgj?A<#_^Ajyy@d-<q67Q5WFh!lh
zz(~`}P=U1tq<#{i!WkE%3lI~FME#I4T+9k%@>u5~FJ#3u^nv^28eJ}8vW-|Sf(;{~
zQgsyt4+bXTDO&{yrSl+GrWdgzIFy3(JgX0zHwcRJ%5Nej6stQ&75&3Jp}(ixI8I^5
zagaG}##b#}*?xV;<bVv01wM#GK(<@TzI6Cg#_I(a(E+GgRM=kZ5k+DqPP59<Zwnzx
z^963qq<|NE-t_2m;bBGCqcw1=LItS)r2I|S+$H8F{1$RaEa!Hh_4DhPxhUQ<UM>3<
zbamEU8hH3)$ffSo4!}V&3s~Nl<O6gZxLL8{{W^=X1ypsuzNJV%YZZm=PSzKa9wEsm
zOk`(=$WwE3ks%i4Yq0p_q2N;uPe?^*&In9fFsD4-ekc=D87kKXapd3B6gKdX-?t)A
zpUMC`YRA1{F6k5GTvYVjZVly`=$BzEVsY2<`tq9Ybax!r^QLB*3BNL&EHZSIHNgE`
z8!{BA5Q{QzrjO8>^x0R&^_PoMK2XM^%2f4aH5<^IrDDhRYLqmoNIZmfM2}eOn+L;?
zW%1>a9;I~RpfNbym2$QPz2E2mZ2P~DwtB?%v>kiI<?Mb4dOah*9X~I=`geYPeEvhN
zCPlZh--!c{%-d2IbTmZvO|XhZi+4a)yIYIyqK_#gC6e+GSyQg0=@D7ps;ICe*}g6;
z@+-M-%OSsobl0Yc^&f&)`SF;63}nQrtdNU6%pnGLWfI?LfA<M`rx&;!a4{s6s2(G|
zsmU>-&W1ka(6OVb9bFCcle)E(U{xaJBXL)yqwa$cwEXBShU0sl`cK@EiQ>nEW{cXL
z;>f#+?V=|~d8UkFlr~}`q82G-7%YL1aGR#nw1o%vnYg&QTVxGEKgZ6EmSb+9R|AlX
zAEJ*fkieoI`~thFO!7`vE#OZkjP>K_EPRTBV<|h(iw2Eri{Ank2W3s~UNV(XSS(O0
zGKkcf+K3UsZlBH%0!HJa8krRWiZHSuWT-P^6c%I*H5SIFo53kjN$iVb(kx&xNlmmz
zDKSihOOubtDh2`L)W3E}=(EMgO;({3T7F)}NR?`jS7ou|QY3o2B)aRWo}j|aqMVy7
zD{`)~P3Ug)NANGEXT<-&h38eCgQbB7Y|mH|CyUNEAdS}Dz@l&~PhysNr?L|SwkJO1
z;T;-?Oc&-2giH`-K#JG6_IUS!ch{q`Q*8rd=*7lv6n^eR(5wH1I0|*sVW;WC76)Su
zps|4H2uiH`Vi9deYJm@l)E3AN?qF}*8Gj07Zh38pn<4q$nE%q%Zc2nfo^Y-po={w+
zjgFngj8(<IS8h)6Ggh)FOZ#A$f(Yywn>ur0-HFY6?8n>&q=X7?H4a0wf@NMG;>O4W
zwLyocRg-j@r&hAuO*(VhoT791a;qX#8+IQ;f1$J16wFAc9mILKQ-6BpknJWy#`ggp
zOJAcBBf;lV)Q^FeMUVK_Hj|lX6paovth7+jZ%Mp-vnoVfet|}$DgpZdgE+yjIE;p~
z$eO=r?scWwUAFoy%Ryh(pf9sd_v4Q2<&h{(hNexMSyoxGH(~h0at{-pNN@f%jf86m
z@<Gd(AK{lf0Awv?-5env7erV~)a~$qMX~2PApEJmC#kLxUDJqEP_Z2`02&2Cc>*E2
z>FF43%;Z-Vyyf1*JSF&G%lBaW2h4(AuD0$M26Q=x0X|%H_KC<N;MFBbow@45BuX6?
z%aqN}9C9|<#KQ$k(P?uw=t9qoAoH9w+Vl}%JWeT?4^V9%i1@e<q)@X?{_Le#vj@fV
zSi%_yyUVK$F0km0A4+e7G;Oukw*JO!g;@67FnEaW&@K1pY)$-}B{WhlMxK7itj$%3
zh&=(dUH(-0mvw&rfd4zL`~pJUF}Oi?HQ`k@*ydW=+=cG6(wCk0(0%krW&%X=oonvX
z>td0*_1;_Or6`}m!YXCPn=Z{Lo6dcO<XrHf03S)0(qqZoA-3L_QDMaWA+?5tB2nL)
zKzPif(8hjo^1|zODos3><RQe2>T9$cprR<UPY%zsV@nXy0xdl$OaWKS%|2L}U4iW;
zPtcJxiwBusDv(($JB6W?o;>zfe06VOQ(;}9YNpUrLCE%~B?)5)0DU(>dq<&Q$1M?#
ze$dJC%T!^x*TS@M59MeW)Kff4WnOyyV$<fdMSRAbExc6}rR*`UP<l><?A0loV1!|?
zXeb4nKxE@cwfmi8;I8|N+nPVDHM~2-tu9Q9`>r%Z_*fs-ywz1lI&NS5PyF(0*4^}e
zc7!ikyz(01NIp9NyHW^PW5;kE>_pw0jnZ9Ga9__m;JBpaz<%A#RUHBq?}c%;A9$Dx
z(c_>a17vC=t>YX)OFH>0VuhFn<t;V|TC3;HxlSr0UwMKNJpCAq%OER*x`a_E&&MCL
z7k=98W=J;G-;R`Z_>irg_Fk1&2|u_=d596s%<8;<4ptZ>FVuH!4#Mezi}HS-t8_SS
zvRKwN;)KD}W`GwS|F*DC7Jr;!%adHgRSR=CeC9*l^cKHgBG;SJ0eo8TkqOeG{iO9A
zsA0+VGpr{$=4axaWa>ney*b?}t(dq~(<*qrTxk@Tre7{u37c2zXDXz7!QW77+S<MC
z8mh5(lc+88Mh`63hp~h{sm`P3nm-8Rf^{|4WEHo5*s@|w{9aNrGI~(_`G$|pR1Gu@
zZ9GR>$*%&B82h<|u+hcve8nlX(vkA=Gf3(hXvAWmV)dPCoih7W$7xF!!Je|+#%D#d
z9;wPW@hd`xit@K0jWY8w#j8fIoUh*>7`4pa1Qi?NueZb4Y$c=%q6PGSQQ>nr{do2d
z*G;|o_^kXbRg_qr(Jb&|QXQP*AsAi}y>w#ZN4ggXO{a>`y`?o1u#q9gv@@+ciC00S
z&7fPB*pcimO9)mQ<m(%iTPB-_<Q4|(9Tk>Z7>7y&F3woZgHT*8&c<1}Z?6!qx*{;u
zR$pFu_2}RU?uv+&&Ul|LBET9qu3!RjIEJuC2SdH%b*&e~lZwd&;*Yb#1@h0R_&D#1
zz71?iBhx}1p@y;=X9YG&wWPg6PDp;~tT!qi%}mkf{Jo*uKsz(wK2&X{79WwX^?eLR
z${dooo4M(G(LRCvmM>mpRLLY?gWiZ6v_l>^k#@WJGMShhI4_#5mI%Lh^UpC@^I;qw
zU4f%L*Fwe3DHmNLR;mY9Yiv7fYIeRwnLk`uL7(8#eP8&%U9eR&Ojk3=wAlG^4t@Io
zA92b$u|b5YoP{J^FRxfE@)cQ1OG1e3hpJeJNw|X(eqw<r5Qe6QsWtZ)Z_fbQt|f!r
zYkeW@%iWvTt}z&}Wa(p1-mM0l@WqX}PNngJ-QHYYKk&8ELz_+Eau&9J4c%WOtJgQi
zKH7a|+L@=cka5fkA>6i(_o#b;HU7e+j*+oo9}S%>HzTnaEUK>)PD9r5UG<Le6gKNp
z@dxa62qZF^Q-LdvfwQWn9CpSjqBmr0_PK8S)H@093g24k<DJ-NDNQ$-^k8voGp+D(
z<4{@nZ`>eS60UXCOiefY%VMHGl`(wkM=ob8yz*9#g}i8W-UyG$%C8p3+l4-Of=SP6
z4h6>_-&*=*C3pc&w_mC7_RId{^gNZ&+XqfqBOWcRz`^s3ul~afEvirT`L)t%aZ>%}
zWA6=BXbsj^QnYUL$((SFa2DOL_qZMr$HV4YV~3fYGN>3zor6iV^>8LhaN$e#U@Tcr
zy<Q7GejN|GqCq#ci4b!z)`ik!i2;4&r`k!G(-Hf$4y8S}2G}Z<j;sWG2K}HF-45O+
z)g}u5r7DrioQp`Qy>-n~^rjK7<E94Rp9+qlWcK^9lV*-vGcMqI9&oLQHCi)G@HOFZ
z>3Ywy;F&w#&9vxk7e-4^tK#aZ1%`3z(=>IT2*b|B>4}&WDp#E$a~c4=XUMJ%uDUxl
zP1*Z`-##CrpbJ|Z>cM~uDBol?g%cZl2lHrVU6IL^h1@}g@SYgLD$Mx3LDVatEL6zN
zwG~cxHs?#R6u9pRvQ+Fnjx@w5b0pXyO9J)b7)~K1D<ibrz4*<ykVU)Q#Lb{l?T*@^
zBz}aRfz7+I+d<BwL70E)QS9SF)whX4l;Fo{4m^QNIiy)5)nErK9d-Blict6}l0BfK
zHlqY5+DkVFL@-zjWoFOR%y3rz%CZft_MT?TTI4bhbg*4(s$CVsUXeU)I2J!isnaO1
zFrPHqhc#38jH%0l_Tvz={k8Ym*GvK92%3?+k^3i3S92=`2gS^S-E;+ov&lL--b%yt
ze7rqkh4b&snD3StKkhBtd{=%8khqD|iO)NNLX6{Yh#~zAF{J;5*!&eJ#5n$jSlGWq
zEJKClKvU>-E<RjqNDSTSb%RY9dZcNOw}5p0f*e+Ntdd~bYz|IwV{l8Z?o%M9ilpTz
zj3`)?*0Qe;?kAO&+L4*)aeZx9lh2e4WF@-W-?y||LL{4Q$+5<{x|RgBO+M_tdop6#
zfx;hfO>xpst=4j@H&F0<z^(42<9kc}2^@GM`4?(K{BJd!k|PC#(Hq*XArsEP^Y{u(
z=z-U2A9o|Po?NO?1)oOnZxR^aeEP|HFusjUw{GuX<EJ!q1q{ORF5qI2js~VV-vF$w
zyreyrHqE}GA^WcdW(uyk*!+lI6IUo)F`lh9!>_j>`_Y9$_Irw?QZ;WLmXSl@tlna@
z>W9kl`R-a{_A$i6IjTMG*P1LVjIYRO|7=RG`eSP~iu3isvPi-3e{ISP6~p_LRjo&(
zxccW?XFte?F)GA_q(2uB4@KfwGxOw$&_r-tDTn>XMJlq)t7+sf`&-vTgLiP|o|M^L
z4Ij8U#{s|z0-a+Q6}qF!)`M^AxaDK`XYG-DodM?~VTvMB=Up#FAJt}ZBASz25V+u^
z>myVl9oI#@WtTHp*A+?c(DzKn8}86eh3jK6KAMIb<~efdE&6T9CHmZpTqT60h7YG_
zP_`x;%_U>$Ex{`Ii?RR7mm&`D6oW$YYHY_z4`?IbuDHH37~*-^^(8MxAC5`*_{xvW
zcExQslIFIM#!De<#jkF_#d4xBr4|bhRGgd7SJ&R4?sE7!j?T_TI?BX1ZnX=J)cRRM
z>D{1VIp6HJyc)DVWJ4vntm=R#ai=o&n=<}*3*`YM9dPlU^+tKx^|pcnv?`!N_=#uF
zJx6Y>4Wu-e0Z3^sB2q*5gTG4egOpxt11XLFUrAns;Jy+9yDs6ie=5&uvR`81;*^Tx
zg70Me&30|^X_^g%QP+eq(U2r`2X-baA(-LP`f!?gklKQ)4{WF39-Cxq&G7U$yK&tz
zbMBUI3zT$<<?a0_bi}-ZKtbv0@$u2>&isQ+D|rIG-(C68Z-KNc%T7l^fe!l;I{`ki
zzVp#l__dKj8-;{xOV~m#BEtLz0%-msYbkKG&(G%r<QJT-Q0yWbHwg*rCW|NuzZ3%0
ziHG`neoYsB%IMKoU^0O%%Nu@yU?&T1KV@7yywa*fsugzmu1Vo=g?wK<ouyo5bcD&`
zZn7(dlR3t9S$Pup?ESSm&}4GR#>w`zDidw0n}=W&v}yY42?rSW*HYN+_SQ%ts6O?m
z_EE*^+eL+#e8u5(I!8?@rdcBg<sm)Sw#@zX!(g@L_lXsISp`zNhfoG;SmtU6fBldu
za`ZeBetQS=OEQ}TA$-OZ+uVWL-lpO2>VENegG2|z#z8f`jKbjtzR(#a4Tqgv6ZUrF
zPSEjq&YY?s@Ius^ZEqLDpd7IjduquHBGo~uGFD}u>qaL~J=2ScblH8EPuguu{)e<%
zNWgkREk<38I_SkszKkqoSHve~#tU$lUXF&a`-!Yd%dg=0`3Hlua)=M?q~1%a$v!6|
z<G2IyQtnrVKdU2g0V3?CTWFWj37q3(@^Q@XQ}+kTLOVII-Ac$?rR+4gXdc<Uz0IQ(
z5?TCH0Ew=8TX-~^^`q_|1E2V&hB>8$JG)`fT4y`55!5%&_<?BLw|Zhjpsa&>4az!b
z*Z;{nXtkV@QbVAu6XE&qtb+@!YJ1p-f@XvxybbJpN*H_al5sXDqLQ|Wcj0kqdd>(?
z@r2!wjl!EYA-RS&AJ<oiWW;w}NbJItLjPIllf(h(v&p!KfV71wB8O<b+W+S>K4&0S
zefei3UC@>Y)MWhpF*yPiu72CK|0e&5=TckfSd@loZ`B=|!FP{ftzv6boS`*%JnQL*
z@u7HjN)Bg$Kiw<^W-1+K0L1~SQb6b{oao!buW+0gg1db|1N=)Ed?C&n61wgLOi?ce
zADf*0<xduGtW;+Mr6-JjYEwgXP}o<yuBm|;fv53E$`DvHGK1SO4^NDIeR^@d-)^7R
zcUpfHmxeHp)zS#=Fhh#V<*bWq_lBPfM%a@4&U4(=$bGYLe&+B2ZaZN>Nq$E(Eu-lU
z?r1?Ib|<Klh#f6w)MJ0UnjI6GjGZx`cszw5ABjxdi|2ZGWIlme%5&U?Qn$S})l)7I
zSq3sD=f=?a`v#(XmCnV%_A%V7jPH(tWk$~u5C?9nAD2lqIig}Tw80S432=-SvQq3%
zp+WX9YSO{kh-+xS6a5)<r2kFB=E&2XV?`esxVe2$4=YfFEM&s_=c^ao3p&3vw7klX
zvXc#?t73vx_w)fMf0!wr_)S#yX{f={Z$Ca|i&@D4H9X@o3@1?8(R#hG{kQ1fSqyNU
z#s{yCQ|#7gCi%Yh5&uc@*@J5HFz?PcP)OF4-kwEY98EfpTV#2{h?qeUoAbi>xr+u<
z!&eVsjAX*(^<K$-fS9Cjok&E6Arhss8>SJtbG<g}jlYGeK9E+NqfILPTN{!2tuM_z
zW7B8FGaXUCNuo*;;zUp#MO$?5dmPYB97|zeus@ss&nWNPQANn;m%TW5kv{6n1|ta;
zz5_3%L<O};%9pxpckeO`ZC1Aw&mh|%);FMY2Sj9^5HUmBhD3qNA9VlMVI1@bN&-4F
z%7OG|f~2Kg42}TEaHXo<Qo+NMQJH#l;XcMce2qJs+qqGugO^XVCk#ca%|`>U6zwg;
zrQck3EbK)tpRO;^Jr8G@XW=^7)JygoDZi#jq&3VWoo}d}gg}HKID72nkd`@S4~?Ki
z3R_urX$Q7_NwEc9WUxnJOy6lZBaO4f8>bwBWtnF+!NC^sF7B4yWpe!4%MSHGE8sb{
zXgewFqt{c>Pb7VRD?m5C%0C$0?rKcM$*Us`%cAy*DiNJiekg5EJ6BcjQlIyPq;ftv
zMZwb*EhKR2L?u8z(i#YPalO6+$N^t?i*_{!$YS-Vy+V5hN5(0Hq&TC%kF~+tGHcTW
zCeK7eFxvo~VzN4fMv`m1GeR~ZbR$Ge2$k-?g92+IY2B<UJ_qH6+ElaAI@K@7$I~w6
zS7GHFEh&$EMJ*I}#s4mX_<oKM!3Z?$pB5TKjC+l|g)k1X;HDwTFk=txajj*ET24!I
zeb9yq>?K8Cl?)xy!WxRY(V@9}lxr5F^R5K6g!s0vdh_`_=@?}eh|ops-hFF6y%sjU
zoMnK-^!>K|2g()w{cby=9<r5%yY1}Sf^zfJLN7s+=;d%RHwYj&bK%fdQk~zFn7m4C
zs5nO+-07!b|6VL`&qy~L$Q>aaHNAcMs)rep&*4#l_sa$d{en66@&TupFMSh9e=yox
zNF&SY=yc;TP>Fb-=Bb=M8Fi*~+=TEhjtJ{$udn|R@&G*&U)>Xlfzcc-5hkp$s9^HO
z=;ubDMl(OEm%qc8jJtcKpl4qW{f-s`8&OkH`o5OT8Vgozt^b4?MLg;9;nD&*RHYDX
z6v(CO4Yyp|_%-j9L=ktX(Q(H=OD$LC0@@fY_nG!bmgRmX5AGPT#L9e$Xj$#Vp+D(L
zU?qa6n?&@>qss1p>U02Uu@PiZa7)L6EilE9Vp+KtQ!B$u-?Ik~AQ&SjsehfDJ{K5T
zl6-I(qQMB}H-#+T1vf{OGDQj3Cm^sCTlq0;3qGBd<GKFi15sByvxy`xzVKwBXO@-T
zU>datR3Rw?@VaH}$q2{xOqo0r6YM^gD)XZ<J+WKwX7e0JPWofBsvxY_lX_>3a;kz?
z3nppMv^0zEUB*#<1G-^s+fZ@<Dz+_jw5XbBS6dty%{juT^AN$4m*J7f>^y{Qn(Eqz
zti2&}sDgeW@!>AOz4%Zzdei}n$oNAgl~{u7n*I=%M4&VhS7O*n`SKLk|L}=lflX7<
z;p|Bz-IS{_p}N31Mtp~BjW+k|YRadr<H^I5BepP|#FoUIm575Ld0$w%oyDQe6Sd$9
z0|U=_uEPWanxs?__(H#6lvbSaqLK|H;pBeu%TdM&+A%~zck!oHd@rpkB9^m6SM(S0
z717r@Gm+E%<86)x?4;~Rxt1p&s-=gawd7?bd}4T)UX`M!B=&jbl$8zamCa94&YR#F
zUn|do2ya)H1R{KBzlGs^g`#g)chDpX`NA=v+x2wj;j}AD3!T>H$rLSv_uZ5~@=L;;
z@sP!?XB4YKvph>~U;k#uoRY|T7HVRf9{XV8OB0huqS45>mBXnCc7Nrmf4N~1T{#p5
zQ7BXOkSbdHLD@L3eTt}cVcfmc6DRMtUTnpz#HUSd$-N4P+skq&_7t`sk`(PfmL8&R
z0_czhl;pUt1%kIT-P5wl7}XmcClyV%@Fwx|O!u4_B^ii+2nY->W!X4?;}bxuYb!m<
z_Qt7qoe9y7=65L$*PpLKJ0MwOKSl)?Fcmk7*f=Jnj}0vXeC4%m$M~2NazgO?Gkb2x
z(T@Qh$sb2ze%O?W=z-MxbNq)QmvTt@1?H&ldRL17=7{a>V{b9$V=M|*Smcj}=d_;D
zFIQN|vywc)y)T4{$~2*J>TOPtehhoYggNnj`WJ2LY_ADk3I4d7^sMja9fw(ZDY=;b
zQP!#>Yq8EZIzfZUjgF~c#-bTtH#etWBEt~_9R=C~5xDNdE3OP9;1-lpVvk=E(B$M~
zn=5dYGE$Azo1u%4E6jgd3g0ZLYlipc4L=F`kv?XU5c_KFfD<avt5p|h^{T?WJqhwL
z5&1#*c|u9Dl3o%6KAlikweb1zMel}78-yUxUVo*wMGceN7Dz$=of0Qx+q$|}+u0ec
zn6R`#F`6ndN9V_h;17<h@L?r@0o3eTJk9kO*%lBPrE1L$hm=C4-OM&f`aLQVkg~G)
zWCDZObu7cX_d;cEXL+dDE2QSzP&AhZF{1P4oVx7;Wji1pjvat(c;NMxzTO<&Mj$-x
z!AXw4P12K*u=5MYEclF|(02Epbpl!Pi8Q*3SL#y~F-LRVsv8`+|J+iOfTeYOWZd_R
zU0B|t`CmA~Z0~vHI$m>2Rf3k*7iAoKO#&lvS;Cgq21Fd34xo94Z|MgpoE-u~abO=P
z8F*>13P|8L@#XM-h^FF6u5(Kvpt(1B))Lb6$na?SPpqM-$}f54yYPwPB_)TVYKy7F
z`=7#y)rb%ZQ8F^FVHKt)f=kR9`A6b5MHONkVL3Smo`Xw{Kr?SgE^iAJrfb8nlD~C4
zQp&+!W;^);QB1<=_Xh%}<}Np`6fPUUuI=@tTE&>F<+|k0D0dg(jY7#DyK^`H5Eso3
zcA43m{+oCM>is3_{H5spZFyO^SpokZW8?mRm^^Ge|7$7_m-Ec+Gp1UK?6Uks_{g6I
zhg8$gQFb~l%?;gW0#EkTEtp@pG%_dRl(<E}6p$lG;bqr1Dln(5xL$7V!(qn7-@J_>
zg<0RWpDtI0x4WO~1${qW3Hg2fOVbUhZ8-5mgy99XYxLe9TOBTYAmKwlyyV7iM90ff
zZ(T?oU~BB*oJe6T>=9u<1-G<@R1FaS5EH9q(QClulBpk{I<*h|T#vb{=^VN&TMO6f
zOs}_S8)~Cl1LqNvsa$p;wW2E~7A<NGC|*L(KU`|z7_MrjXt-s}-}%eru}wq6)MY3v
zQKl<Aa->~R$OoRa#2XlSR>YT-pq`aTK=`{<LA|%ce?}`x-f-U&v#uUurAB8tVrZ6#
zcy3pgwUeVMZQ;~Y1hp2`oO*vBOK(n<n9;SV%4#l&|7@f@qsvZBYBNz_#0^M<W5hQ7
z*TflJIhw!yRb92Qts7yB>O<WbP`COD)cu|m&)Lrk$33uyK4D}FZ+68Us#=vPc9FWg
z{+z1pXz(gYgqPVIHWYEfP!D%(78!DQsG=IY5|883#E^i#6kpfMpir)}f_BsJ=3+gH
zhkm0eqUOs%u~{8Zf>lLIss+1LV;NCCm(tC9#h9<oKfUW5q$`GYSFx;1xyc=hUZ+t=
zI@M-tg?^qY${Sr>?~L<V3@xv^o=qxK%sEsPH=I!cH)>itJo#Gl_PcZuZL(((C9rWm
zS$fO?Pz)MGnbg!~ypPB)iSIOXi^#vB&yb~a-C~YqwY8S515IJ!3RRVC4ZVxn6${Bg
zhhI|o!1%)zie8pENExM{hS6AHW(znR`mV_xvEv|jf(b)OXAL;4Y7YCRV<U4A(ljEg
zzO<CwxB^V1ubP2ZDSp;H|5`R@Y_bTP;I%?Zb6G&2pqv9b(<9FI+XBWpe^Tb`d^_M?
zuoNdVvQr^b_=*$>#P5+fUO$#3T;G+96j@xTZ42GN!t)9SFy2V1(eyX*>XD_j%taiQ
zC{MV5mae^G$}cFVoo2Qp^`NJQ$5#kOS8ER41XN-~Z=k|Sv(aC~a)mnMfc&$fUEZ@H
zMk`h_uPN1g5QU$sZi)NGn2-3r;>a5fYS&jBBMURda2u+3(RV>2s-=%Ynh+=A?W|-s
z*RVk5#6BO>XHd~Kd3rR_Cf{!3F&+0(CVN%Wnrf|qE*Fv~t7(h05YsSL7m_hn<q@b9
z+c3GM%jb-DL5S{U3>FV@hN|vzh08_S04S;KkkcA|U@g!iqAYJEOOse3jAOo2Q~cHZ
z10!*R2OgyP%TbAP#dwSIM6XrT5U&lR0`H~*X}fV7!9}Watf@^Kj*QnCvZFXzN>vx<
zJd@mku|5IieHv0^@|9#{)^9U--^nz+fp2`yR!nkj=40%#sg#>Y<OBG4)P66sonJ1W
zo``LIzU<%aJa1(ZcP8O>r6}g+_<M|gasnG1|I6L+e!t!NGONV&Xs^6U@8ze9{3S%3
zv`gUDQ}cMxQ8QIs6H5D@p*9Eej=>dTidA&!{q@$rlYOV=aqsT!Pv`N+%W5P2LxQ-<
z^2MZ1cfUF-?#J(A58|yq0Hg4MG%l#C9Co;zVA*|ZN9xL$Fu8qtHq`e|%)0;|IdfX-
ztlYPq7?vn1Ng81h1IGPeoZFl6Lj#DBqLpI{>`U0nYN1}Y_HZ^>+brRpF;TwR!{_dA
zcy03ri*i2$#P?wd6DPo+5wrMuebIt<0l@AyPfnb10hQ+yGDCyonPe9nsGNNiFLlU9
zc|Jr3KH#--8>&@#Khx~&CGc}pxs#6^l9xOD%|^Cxbl5;L$v)-oxyzghr}8&p;jz>n
ze^EBHSaQY2`{7wqF9)@AobV)PM@^X&sf-9Vg**Rr@@w38hJ5Y2b)c{g4+j=l;mtZK
zy%5i+Ct&Rh)1&d+rVFfD3CtM<9|6qW3~2=YH3MEfo^-Of<?cB@HVT#%mCQv$_A&EJ
z+E>Vax1Tw7?LQS8l4ty!0?&X$&~xH2<mfee9w<yW)9uB*mA^<Q!_}Y!CzU<rokeb0
zL+KB4MAztIQQ1LxZ>w*Rj84}+PZP1@D!2{<Lpau)H2|@;+)c}gCjEQl3Wg~{SB-IO
z@9RxxrG6+YY)L}$d#H$IP8N|o*a>%_@zM_G6wOIasB?m{w|`IiU*=A7P5`+GA(b57
zj%1Yps_6m_@(!dedm$qWYTqWiovk$PUZhUjCb&%o*doO<4)ZZVo@}_!>i`UV;tI@9
zRUa0qY+{4+oly4zy|~zZ89r)h0(=YKU~p9FeZGUxtdt3nFQg~&!}lJIPS+Mj=R<9u
zv_0ooMY?-1El0(13=Y0U{D#a@Uy)?r>N6}!34u542uMi+qrw@6z!V|Rmni!%tt;=y
zpVZ;<Hsw$SUkP`l7?Fm?(^?UM?w}zFG?vt&081AMDIKVgE^~e$Duh@VQL&Q<SY@iD
z_>F5gg;4wl4z8b#MC>UywGm2LYo^Fj{k-$W>_RhndDGK7RVzFoT4WCfIpyjGBD>Q=
zHOD`A2tQQtEZzPzn~dFTm_|#XKLxU%<_pxAS;4P>GP>L5d1tM`&w^1k_cVYNu(`jy
zow%FBLn3d|S+DsY=f0-Rq%qzxt2)fI71BJi5W8LB^{c8%0A4g0`8g$ob|~n9#<^1-
zJq>wFI6gw<UlN(R>YNw$RYGO8aZWFo$Zf4lt|_>VBP?^*eG;k>uzz_wc|k-&0ImSu
zxoVPr9G$TcKK_FRKM`#?97A_<v0W1yk=f)Ax*Zk_30n$!ZrF8#5~wX@sR*3eC546t
zm%`(rPvaAs^vfD&GwM3Z3V=7uh7M;CYp3!-{}~-wzj<X`M<WHq+A)<BqqR>+$x7$T
z<~8rROG<%f_sFaY@RHZt*bPF~#V-m=Qduz>ghJ?qRl4};bJKqsxBdR`dn+?H=V>c5
z?)rmB;49pRfS2n_X=iJ0mQV)0YCZ9Gv9#mPS^)ry8cX9`B~<S)g3jpPpt3Ev3sr-v
zC7EBHv3MbeplCt*lN#-oArb~Px$n&3AOb2gw@9`Bh+D~ll#voFyr$y7uRY!+2KG4;
z-w0v;!xSEWu+@OPFgi(F9BeP#<^2i<8uk1JUUpAzdV1Hj^9fN}l*Xx7xWA+w3ABXh
z42I)Hr#-wa3K?YjOUulWpM*Riaz`-vmBEQ$(df)DaA5oCSgGP6VAXa?Y-cbjmmD-r
zeZnNwp>4<;KWQ{hVCR9;C)2X!=yAyBrC*k|t(YQ0{MjQjayP559gSxfn&^+B6oWsh
zJFtl)o)bKmkXq_>el(oH4asPO%|;MH41+(a{+0yUqp9B4a{!i);TkwMeq@Tl2VVim
z?z*uQL4abvpun4DLgo`2sf&}N9l6g^&G?3cOiz&;8XR1`6h2_$D_K<i__cDLRx>@t
zg(_H5)q%>Ylrozyq(2Szp}ay(p|*gam@ul19dk8gvqpL>Q1OK&B_zN>tJ#4rxWw#-
zKv=dg$)*UiR!PO^_uVlLElZRRl?&)Q0RW%;$)=H$;aI}Vr$?SVZY=AOgQNmy2`C+*
zaeBOK<djyH<IvXzb7huZ95&K0nPhhG${?{d<{N^~nY?E%dEhua7)O~}S)F~ZQE8jL
zD>>QyY!>2=&l8Nd($PZ=v-E)scEgG7U_EPf7iFd8WY^woWQPpoN*4EEw{HcFku$N4
z^N<dM3q&O})`ghC#qID2G}6H>PR|%9`T`ufMdAYV6Qu1^Y2w--=FV2DBE%Cz0Cphv
zq>d9OOHMVyjyH}2j!Vi+>}*htsu2N$Z~vmB@UvN&ztNv({vF1PboPD8q&2v2t)aIX
zi)hy46KW&KrYqE%M8p9Pvw~lNj8lUA>dRU+-BC9aZs7&RDQCzUa`dbE?Ul89t(6;V
z^<nso)W3N(Wy(Ha^9Aqi8K`%uJ(xF(*m8``aH_Abcg4Gc2Qiycj~|%`Cc&{HF2(w-
z@_pJc;qREbP@CB>b@#=BibsW9>DsVa<h%k?u>6rRZltrdU^1SbPErGR>%RvtpSxuJ
zY3?7bj4Q0WquQhnwwK~naRc{<4dzTrB<cz84lpvf?T9O*(MkPW7|N3Q9YN~)0L0$G
z#+Dz321;Rz#2H(=_B#r9kbGAy+?sH41`_UUW@bP>4!Dd#kbuZLG4zjk74~aSb<f0X
zxO2B=eTP^Mf<^C6H>B=G14Exd<ejXv-MQzdjL47)Gud!WEd(UO_avo08D@bVl&d%6
z-vR!d0VofY3?9`-$4b}FAofn~7akm`zQf$o$uvN}xzF(r75XQsPoMKYA3Ph-{`^6x
zRPYC}1gEZ6;^M7nD9QAQ`T8DZkVjNjF_8mDNr)vs=*tOG4+k4nu1#WbLLmj4<;)0d
znHmo?!4rkm&F&U}OS-fw1TSKqV<HaHut}!wx*v@p7RtpUs1fLi_EMG1D=4#vgRJvP
zSWOs17_2+Iv#9DvY#h{tN~ay-uo7gi3eB7-xrQ4n{+dXnu$ZKnddCQk4|gThTNPwJ
zl2USbu@T$^H~l@n#I&GFU=(3dBMHmLFOx{Vjx=8k9iK>|_F9FXOwX`A`vaKM8{8Bk
zAnMH+tk-!Z3lToiM_I5K&@qM>FMS!a<oVrkYKI>o*MO(3Vi3}24lt<*4QA{Zrh_fb
znE#;CCf&y;Kql#ohPCUYZQ<z&pyCx8=KEl$nDO!<3NyhS%TfppKCPo9#AU|;a9VvA
zhW^$z%soqF@q<h{2C=m+$ZiKe)+nDG;1O|qIlFLK<hFu5B;7ig(zlG$S9AHGIZxgy
z9J1rXqMp)!;T2bLsz6KlV^T26kd~y33S;Hh56<81Hq~|b!N?3PA;gE73;PNrvz%T#
z%9_p3_R2k8*|Q;(!j7A7E0+{{0LPYD8Ics{J0{^Wz_*xHG-fk$UDd9!>IU@8%J?RT
z{Cv(01QG4xMUeoyUS?F6%&s4HNn!6fHBf3g+Pz-oMFcv`;_Fg<=PK&^v4q~KZ6=Ks
zzx(!4H8F`OOP7BvPs>}jE_ws-8^fP>w>|e4WJNC=Q!RoQRaaQh5-ik|PWQ~<2L)wT
zI;4DSNeiB^jHC_Vt(-CiD7&K?_d48}+oYTY)0>kvU^EgA48%==cLnj7c(^wdPuHBY
zf^xHrTCDFx@eC~QXK-OL>=f`)?r8(2gW{WfAD3{G=pVgdb(Xk$qJygTSN^Gd0TZ`|
zY)a_LhbMNXIRa|G!I#Bctj}37q9fz<R?Y%7Gg!61j=&x&YMEzD^BqGW(5L!F{c5Up
zrz^~vF%NK};~fwg{=QuvjhFr!4`2FNLUy~0Ecq-m5F#22r^8f6sHssYawa5*YuX*f
zhU1NSh<Z;aOA7E0^kPx5U0qLyF!%U1LMyVv4@Q(bACl=~g#5IPfFCkHFmbKyMdIen
zwdDa~j8gak9Rj>^E<|bf2XpNLt>FPVsO#8I15JTzF$Eh+4zr2)gN5)<*ksFtY>f=J
zDr8f>;QD>eUq;SCyg~xorCt!LFpkW#<wDxURkB&);B?G`L5i(|ZKq#&`?CdBX{o@7
zgI*g229mTAn+{8jK`h*7dSp?*M>r!2W*7NX2#gFzq;dn@3QiOxsiFv@en~h<j5%YT
z*H!33Pq}Z`$HLsxO&FeNB#SRqS|TRgc^BsVkf_%`hEO?YvHwoPCs>U>ObSC~>x!pM
z8FisfQLt86CJPJ?VbJI&s;to1IbfBTucisk*HS@NsVxAKb>9E3#FVJlIYw8p<*pG0
z`sS=e?!iH_bNw|$(t(am<y={vI*ME@wbC$LW0`I)J8p$-%p22;<&JKG^p{4mSW(MQ
z0s~QCrW+I5u=_rq#Qd>UHcc!Gi%H>ZAD_xy2^q#PvZPx951DB@z+GFT8loK1`8BfO
ze*z(94+4UQ>wgWz)5-vvl7Gj4DZvpY?b)j`Yge#V;}S^Yj?*d+%+Aq_+(U)L;NnB7
zLYMTQLstQ95y~iWvD6B~IFKEV4>$!Un#uihl{DdHS}K5qW&AH0|DVht=ND#95?QJI
zA7FOh*V1dE4ujk;QNPs&qjKk^3xW=DYVCx*P7&B$J|<BQiV7M~xYh*y6Rs~awNn)F
z|LswlP-)vgx*LFkwJMiLnil+3k|-giGYO}VKwNxZn3c!^Zp`mA?lct`!)T<F8g+ve
z)|ifiC|<w*FPD~Z{nGj0`=b)#V)&n!2+aSi0#IoM#RRs^jr9Ku<v$_ue?$4NkYK4%
zQi9Q`EkF!2kmQx<j#7<i;?4PAdef=)eYM0eXY-G1pEG}Yfz|Er!NYFWr5(bwq}fjZ
zjE~K4a@oS(Z!5$5M6w3E+{tTwq#{4}>#v_^UEbgV@sjVQ6rm=}b}#*SiF_UVQTDa5
z-x=1N!(LfJE^|?SK3zRCK#E%M*}L@*YGqy3My(q*J?<l8J;fxpS)uME0fZ>OG_{Y`
zHtoSU$aFV8wVIFY9O)gs*|W?zy|DB80N+K{cOSrWB{HMA3-4p;*#zFEpx-Go0AC6l
z91+7&5?^fj-!bw0lEQbnJe}}ER0#Je)SV3Rg^K}bL55|wrEQ<Gnt#TAaX`h%L;rR|
zntMZkf!6;gFO=sSf~&95K3^y;Bn!M^4e4$zj2j~55pVkG_Yu1QpdTRX)oGS$hCl{G
z&+gjcB_uzPq4!fVj(stq0t`}{_$Gt-IO5W~7ZE-;vq}KL<mu&Mfs-7(GM@XL+<cBP
zEU{GwpL-P58()%>VGn70M+0&#6DBGoLK0@A=Dc87Fs-<=B*`6@pDV3jZB=v|6xZ9Y
z>QGO#x~=`zHHutPQrqQIBxs&UJv3kL&+^PlExjpW{mhHJ!f>L0s5%BI5wG~<B&Q%8
z!^RCW=Eb`f@L8qS>)_FLS{Krxv}~bBh60&0`4D_rmg}{(!4x8@si=vyn5e|l=Hh_~
z3tq4$5cz3uQ!d>|>l`u1P#za=%xPDD<lxixf4ZV}MeE~Bg~&tpe--0eo=fc*bU^3J
z!}>hy5aq)nw?pL2L>$P<GKhke$H{IU-8H1-h$CK6+vks7N`X^8!72luV-5|*KqR+`
zp%~kyz#1xJ;b=Ho5uNwraz>$H*Tp(&Un<rcuc_`3WwphyZD-G=4MuDRI$M2W)`<U8
zcqhq`4T2e_yPS$&yoz8hC(<Az#Kbx-n>d;%!CouZ9R&~V9wh>l7lyM6%(X0aIGsMG
zJ!v#VR|Q8n?_#v#w<}8VSp3lnCr8&_u*MT6DWINTP_F4H5`;dyegml=w9@X8`>sp$
z(`o&c!b@^MK^VnNhT;hj5AiVe$snRQ#IyYSHH_*3>ggk1hD;$rpgs*U?0X7ZemawM
z?i3-w3AyR>J{`mXZ8`lL6p&icC&CB_`J!#UMJ3EkitxzK?kuDQ&84GnG`uD&u4W@c
zBX!~Q3e5l2jo=)BTmanSm@>U#&@G)GRD$=kk-i7cmQ@VH8zXAwi7=4`yD+EeM(Uhl
z);++pbrCvRlzXkRWX>9ht}5GQo-U=$U`p0s-Xy-nWTV(4S`1Ys#k<#uRaxeSip_0X
zqpEiDpX$r~PIGCl98|1r``DCOZ<`)|x}S4>MtM?UHpdM)`MgPkR6?^m`w{AL-pBX^
zV`0P#_MPC7{uZ6=)&ws9)1}`iimK&FDaG<V<%K^Y+QV_}#CYz6#<uYlL7u3DN-TZQ
zrHdA7*urM{xbl}m+ByU9Umu_601Ampx`7lQaGA-pFgsMe82V;qxqBX5ZCRGSUNX78
ze|WJV`gE0IzZm<8vMR4|&$F^NC#+rV4{dRbTt3C9Z(c3WdFsIe^TbookhX`Eu#}MA
zDKDI<mk%n4E4W6`@`T+mgUFnFlPf=7jbY35GQ)<r?2_-4LI0tMCy8*JV8gN71q;nm
zJD`XUbb{h#b~%!f?}=mr|AzW)bPA@hhc5gB&Aq5e+k--tqS-&%2s?G;nDPRA9EK#+
zdoGbXN|z<d+VT*PS5t>wlZzPYxv#1s@-BF>J;s?r(Tky>23d3miRI0jCq#EmiPI;b
zr(Rq0AvzP_mX%{<*X1{G@kPIFaH~fD3ardHbyf@y8h4)V1f5q>F>sNYyvj=t9*V=q
z3Ar0;9=#=VNQs$WY3@Tm3#U0gMuO~Iz<xP6ciPBVHRV1&UiB>>RW_0r+%V?H$<&K)
ziyLL@bn^;$i?lr=u?a3)Yt<1KP3zWDs`t#Mg~nps_EH!Yaw@wi>B()vRJ>uifTR?}
z1wo8|qS0xFfBNjx&dpkyVaiCm{;-06@jW;--RPi_9o#Xx!4zWfyb2g;7F)*i^;}p=
z;4t_iQNzp_9@ubEqRiC<$AcPYTkkNVL<&2;lM+?VnUUInYz_ePlWpJ2Q2F@vJwZeg
zfBET|>}*d6=@^hF8@DE3RpgIJ>@0IJFtUW16*#A=C|(~b*V`itlcC?ZW6=eds*~!h
z{GH4~2eQq&wuOqO|MI?-I`ZbHv_^^un^Ai5`H~E{p?xzl<zO#xGu||gJz3A1lNt`N
zJsJK`zjNQ|ISZ=hhI?-7;Utl<nQ&V%_@%jIC5P^pcX7n9eLsQ!^Th%?6@8Ai6gNSn
zW}>W!Gy8#>mbK7j<Fohr^ms*7?-Kn&ygVXBgqZYx+HEWNy$1Uj$Ek_`wbbUlnBxXG
z+Eh$6`Om}Z_na3dc6jq{7Yd8Yd4qZ6xjx)Y?#=0V3&(Fz9taX{g%w-6FbQrpYz~g2
zicXy#WZ&cH1vc5cf7zIsu~w^RwX~If&k2s95KJQD+MjU^sx}#yqC#Us(zl6N^dylo
zl7^{St>(dsqSKq-9pFDjnWVM{-}9f<F4R*(q!=SQW~V>4nQ&aW^6Of?=9(Kf?)jqU
zBarz8is$0l_RrTN5OG-Q_=$36y=BqJ=J*)f;);Iima%B?BF#t+v+j;#EBf%)<Tjaq
z4d`!p&l~28hd)jyug5P*39xcsj%6{0`h>i+#YM$TqD|Mahf@Xvr(5N&!!$f<RZxu^
zmKOvLqDv#>Si=Zf=?PmM*fv&M3Y{J})+0)c71rg#7rPM?@cWvd6}gP!q|C2M3hBa2
z2#~S6=EH7l$|9L8n0k@x1zqH7#kB*OHLu8{B$#~~H4RM%(!R2a35VMy40xDQ|F{$&
zc)S#iPFhqNs8Lkr-4$;-OfW_5!(#9m$7;h(zYu*k|9zY=XyoPbz8DIVTpSUG!$Rcl
zykw-*ZC4vI1w6gtI|h&PS<9~bf|f?w3ro|m>-*hLGN{rdD25-82>owewjX)xnKWw8
zo%>G|P<X8Q3iTXS@||S0NnniA4#j!;Dj3Wv&xIH2(+KfFMha}Z`ESvh_Cm{{;aWkW
zyfM&N8f^Q~Z`K<4kvLNSleI%qo}lLslGQfQ<5?sqP6}5hCAQjZga>#RO#TrzH+l9F
zJ2}5TB}XW~rAx`t_{Q5jS&x&}>}raJx0URtQv8WR6fP0Ok^%|71}%0dTB9==+n>O1
zsY1Rf`VDXQO|-_#E8gbklP}Lk)6;St)S+?5!yi-!TF*_#!?zh|hpfHI_1&?ys}ghV
z%RL)Al<}2DhtbzF&69Df0tOJfu61@eE#;=;v9R+4Qd4r@^8cyP{!@JYTcqXY;N|*H
zk(T4XYqaWKj%LitMiyqw3TCEOMq&=0B%fJ8x4Br^NVs{~^a0GO4z8fH7f4t@vz*QB
zT}jygR&znaW-bnH&L(Cqpd%ZUogGZn%v?V+gAR2dVV1E2i4*&GD^9|!ZszF<k|XKq
z`bq5{QEdMfp{-<WZD!(1!uD4mkVq*9ka)JgM?t6pK&Lz~i-WE~E4q;U*U*28%>Su8
zgVz54!vJ>He<}PQ1K8RAhXL&WvhM#f;Ge4aKSurAg1>YAdPP70gb&CCB>(upg@jqo
z%G8DAGvHr{u>Erg20)(#1clpQZ2rRXZwY@@_?Lu#3lKMQHL`WE_>ZK2W2|82YGew!
zL&EVdk^e2=e-!Hf!SKKQ17KECRv=*&68aC?|E(;uDmUQobE^L><{#(%TM<=O769wt
z==mS_|GED6eKj{@*T3=hPlWvSudRc#nxm148MB0$yOoLACubus0JD~rDd_wU4$l9>
z+E>6;(e!N}LP=>55b3T198$WwyQRAu1f)BqML@bkI;A_MLrFnW=@R(P!CP;iJKo>(
zzQ2!U&hF0a&d&a8ubI8h91tQ<!o<SN+?kk}lLZkdWZ~?jVB#ojXJc<?3o%4au*KX@
z4+0bsR{1eE$j`|`I9b@a`1t-{E8NZ99RN@S!IT9PfH45_cee--2B07!Jwif2d4&83
z4HX3)hx{=P78VXYF$q37D<cOxh>?ZmnV_=RGhR7978VIZNjWtQT|He+QBxZeEo)_M
zUCq0801`Z)4yp$ViWG3y4IlylpdLWo|J`2%`~d|G1N-1196SOd68L~xGypUd3=A|Z
z%!3E8u;5Z}a5(@L{Q(9Ev*1HaMFTie2P_u9xVP|RLRB5uN)zA6L57b02#7e3aq;je
zD5<DvXj$3VIXJnV35$q|iAzXIDXXZescUFz85x_HnweWzIyt+zy19FJ1_TBLhlGZO
z$G=KQOiE5kP0P;7&C4$+EGm9iT~k|E-_Y39+11_C+t)uZ_+fHtdS-TReqnWOedF`y
z)|c&_!=vMq)3fu7%d5Ku06Y{F0KgA8Nu$mV|G)hYC9B6=Ya!wCyAO9ubj7A)MqbTC
z#*<6vsjCQ1r>r1G&m1824<~&<KqIi#OD+2H-(6>P%H=f!m#;Uq1t^Ar%WkkS;>Pv%
z6aksO?Db1H##4Qfwz_wXQ5&X|<WAKDNjwj(rq8tBI397@N-oHqMaki?-4@ikRQ3>{
z(<>5-D89_Hr<J147blhSTYo<2i7x*?H=^{Bau0hFqhX+TzJk3_I`wxe>=p}GeL5R>
zeIZHyHx?GROm!Ke(FY(~`NJ(bUD|g|!Af`%{bX+oRIPUB=o!+yLJ$Lvsm8r#sa)2$
zKgupVp}6LuD!Bs?Z7sYT61U#3Kc76cz}=!6_e={dNI_1<0CBFvT=?GjOgnyp4dR<*
z>Y_c2i$pyvFX@^w{nS53-91ahZFV7UaOwMOHZQwqC;4!DMxHg$win&2+7&x_RsR{c
z1;b|w|5ZP#mvWADUY;>)L~j@vuoOlA?H@aA?Tu*74Si@dMarJ?7w)v<G)Klwn8t0X
zLsqj*+}qkYcWJFC>y6r$R5T$DF`ad~B_C|Zt)3Z0=;z@U?YG3u>c?yWZVrsqjunnQ
z0-p_uT;MLIFb9i58QQi-*OxMVJ5vdKw7$lL`ix}gpvp_7eInx~&$Ws4?uH=>J1cb2
z&hFMGA@JVuTi8@pq?j6&H#O>!%HDz1Bxy+iII=gc)mXQvdYh}-PU(n87X<gsH06}e
zzhPP?f1Um1@kNBM8)0pqrDyIe2lobGlvAZwiAnzWyf}O9YE2Qpxl<h3sGo}WA@{6w
z?u8yJ9q*x;Z8jwr%<e7rB-nM4p+v>b(cY4Lj*{3-f-dH(ejbfEhAg>wbUdODiw6J2
z!u;P1q+Gbqvd8*;a}wTu23^eJBoT*G_(F|8yFZtz$AUOao{BN%=hRo0MT;3Qgr{m_
zb_?sDpmdHNSy~?OjiBkl@Txa8(q@0uu_4<sPz)OvBg3P@<@&O$uWy+kB8Z_|r(GC%
z%9na_r82AD2}^_bkuEx?Rw0}z$IB!}xrck0$o<u^Pr^1)tgwMEez_(W9{I_>jBps1
z9c}KB=UUkV!OiZVNHc;v0H)En>PNmaX{AYFSi$7aF~bA2-rfTxIjYlk5BV0z);UFx
zc6%++8K#bSK>ABbM4dzdYNa)<tuY9#A!4phFRdIWyUxasX;>WmTjA~idbQK40*F~q
z<4|({CYVB7#;n>H@9rXutE!&odKbN;m~}H84SesNecrF?%v4n@?M##^Ws^%S`WJpZ
z{cc6<QdXZLZ0veqav-z<wVgI-vD8=X^!&)tbNVCYGX10kJZ|Up^mPix=A!8y`d~cw
z3`lsR{z^#-l_%0kUOF@fPlR|K&nTXz!hP813)r>F1mm?G25j?l8721nKBN@j?a=fL
z05D(DM9ji9tf!HS2_Mrai3zY38Ejl?QZgrA9(fdfIGFi3M;}pnf{3u0Wp#?-o88`X
zvol>g9|3gAuQ`f--?qSf0$r1JsPk4;SsI$}C4CAmQILi{wuB1vq;baqInk<G*>{n8
z)H+_i!)O-QLbBr#>)xJqHClzZbM3-{iNCp@s$?x4CnFAmExHN$qqfxTO!?k2r3q1C
zC#OfHl-gl9oPA2YjlA-`BA;2mRPt}-23&%pfY#=YSEEcaMoYO@RiR%;fi<7rVgD#<
zEeY{y5oNqux1+@HLnef^^6i;eS%i4q?%-ZHsh0igaYR4-+k}fmjrF$#(;<uXi68gF
zWA?s%?GJ)`vG&d-6j3G~steg+R|V?Q%Rv^_PmpI~M5A7#XNfqyTx|a%t*n5UDKw>;
zs$O<x!4nrDQ)*ny^H$n!CoR%M@cXTeEn89gde_hE%yi7k8JJ}((v3(`6I~?gxSu^$
zl304fOI{??1oS21j_p{zt)8yoB!v|xCDJ4%Pxo;tE3iECj9^)4X4Y#|q7(Z2lc!{P
zbY|u;CiRdw-gD**2b~wpsMMF4+yloF+VS0|Bf3@ZGun$8P3wq`hBMS}CU59+YFg`C
zg=UW6`jDStUxim`;?K0&<dG<eB$L0WLf!PHdpX5MS0<*<vZ*w8T{7?EUqUPdZ>Vy{
z+5a{+@`Tt8Yas~%R_VoVqeO?kWn3AhW~W$?-)BkO{t^y$M?9OUcO^|mnTksDB@06g
z)p5<iux@#7uG<4}h1e`)iJB_$61}{Z8<ttNUt}dSyo>AJ+MPwHDV~Q6zt`Ff?dTx*
zuo<6B_LLe9oA?-?eF3+^DLOMsI|y!`l)t&%y3X^oBpx=&4E@n{4l%5fN0H&=K`I&a
zCr9z2b2*Q5HqS}1DKc_~M#L_zBmu7PELK8~pfwS!QkD1xiKq%H?f_a9!f!SD>R*@|
zwmjM*JKEM_?jaCH?=3_<7o$1(`y(LG`1uhX;kg)Wat#Tp`<U>_NvWHfxUmcE?iBh6
zDX5D&4UTz`Kh*7vtfA=Oh1$%S4MA*7y%CHZwfBuL;yOj*R$^XaL^DAWuVlWWvNl5G
zO99+h+mnZ7iuvUI_yVM_8srkB5d|^8j#bn-oWprFbzzl~sExq#w0}L;Cqc5wu3ADF
z`JF*X!Ncsvdaq!Q>@|%=q>L3+Wu{MjO7SrMA!S<OE0nIrC=EO>X<M#J9xGI>LJf?0
zrm{WVjSUhkqHIGK%0)Y>Y!}>BHThu7gaBh|TiW(sYS`J?raVu3JRBN?1|2U?fLLW=
zz&r9?%?qE4!0(s_m+*a}<w&0B+hsaSd*10B)Wmg8ymO*Sw%UAI!dlWUE1NT2_N8E#
z_M2T-xW!iIHWi~=&5F-*0F;-ATK@u$N<M0Kxuzug7)*pH>g1QlZ_}l|jMKi+3Fo95
zkDeYFAd@EJPOsu(U7!;ilkt%7XcIX(uoBR^)OQrdHzPBDn0I6h2+FJ|4ktT?NBq#e
z{ubcqs};|QK`LWp&Rg9>rqdl2`Dzpah8W)+37^pZ*~W}*_V{4XOZ8V54zni(9R<Xq
zCTTL~z08?|C2VnNXA&X>8+v)-gwswE6FE(_O=+9oI<TAftx@Gpi*j|opqH*uxFxaD
z>#abK!s))>Q0GYtJbz4w|Bd_w^;0o<seM*2I*kd~s>WskVUO?ijZdpi${g^4B8n&2
zuv*@w>hZd{!uuHBTjZ~lhp?O|2NZR^ag7z?a;@rERrE!1{~_T0G(USi*7u+t(h2#4
z6@r+vm^*+r_Q;2qk^tma>ZK>UuV3f+&+s0jXk>(G$6r{f2lKOV=cc|K9qBt6G3#=0
zbM9PNm`_{hG>Cq@yRD6Li`kI!@O>*8uTiM4{%tM8d5|>&19^(1vs5(n%JHQdL(_;A
z;y{?0QU??qJnq?;X9FoJ8FsAA*f9HXrp(k{aToI2khge+&siQ*A$)cQ&?wRNs071F
zZ*Lj0HvkZu3${NjyPIA<H(7RIHi5lD@Aw{N_N9#=WAjY3S($(tBi<m`DLUY|By2T#
z@@YkWB4zL*OQ0%u=2OtNY}KLj$cs$ta1bWJi+~5bePymWacTc%K9I;qH*|U!<#^72
zJT>EDW1%L9B~N@AdMUWC*!AG+Ywiw^KzSdhA&1kxE?nTLbdl|5WlL<osv8;ez{(M5
zxy*T@1B+sTa~kQ*ut2YTQMsA&p%MN5!&Laxgq8l4xC<zm$re>QT_kTM+zFzn9e9`>
z6!$WIw8artwE-K#HQfC^QS#@QdtBvg<>XcI@F_P-smx1h9}u=$lyTyj8ZV!j?W$R@
zfFdKWRMh1LQ097#9ns;6*k&#2tPBhuy^DQO+d<ZNV9^1~Ay2#_8+iw4;Ur4ARRs|{
z8{6Y)JP%k>=XpV4$p)LjrAe&zXk(q{#+xqZ-$2BD{;@t*`7+wa7^Q+cz*B5x*?LUb
z#$H7)&zY-liF!L{bS@oSFN~?bYUyE38XxPcHeSAH7cp9FEDxp&twpj3L~%G4Z}40%
zEJy6Ji9BA^iD5LcCO9v!+>57opc-K|sDT=BeYGTQWnp0ph(CCa2JOD`qWgx9U+LS<
zSWaj*(pkgkw~ri{Q{McYjl0^d1$(o_MsHA<*75EDyE9Sh^>s0W?;CB}td$-rX9z{w
zu1`L!`Oa%P>&CwTq9hSe19)B4I-dkWGYOD=D&BdVX%Hx75U(<dTk!2V)3OHsIXo9!
ztmr*3SHcV;hnCpmo_*##G<-922ato=*KoM5Zsxy2Ad8WzKI5*ft*=*%vvWq|BEH>o
zrplP_TUGj`^=ZH!pX)K7NN9PE?F?t1)3%JXB+sIgo#okRIr2L^xY5>*4vOlp%G)z^
zcuA5gF{2=Ey2J;S@&wb`Pq;|QMr&kmt=Nw-n0wa*KQ{C77TMWQrCCL4Z&W=Yhqe9k
zjF}&}LUW#UKE70~QGMxznyONce(@xFb&@b6p~}KMc_NHdGfRR!DfZz|(g4qSzRrB(
zH2JH&B63P{)nUsOG&y?&+#Nc#2aC{*<0%U4evv-V)dytFvbqI9xV<*hEC7BcQ(h!g
zMaBNKfH4#M37a@02VxmC@XQ?;ywuX#b(6Ud5Jx`*zi7i3fopt<@H7PLi;b=w`u={}
z2ed$mypU0cK0sVwnXr)wy`(YDbXF3N#|K*g(*Y;XEt@4b5ubKJOJp-1YP@FK&WaIX
z`qrlsVJlbB620zO>M9%eA()UcC4`Q(_=8bRoF!3n5eqJ(Crl3Y7Eck{w<_7*8az&@
zxDE;-_nw;uU1F;LjQTC-y^8y@l6QcNxT4$44<&tA3+}K*@su6bF3O+E81{hYy1tm<
zE_+NPFt)vW7^rW{DjqD=TuFC+57jrnBJ}O8-77Vi%t`4>=YGt!$BmkWz4h+N8^c@e
zq>iPJ+S$>aZyc;=SOgv4CBGhq%hap=@<E_Fh1@Q2ojZgu2iB)1c~;uQgl#CY)GFQc
zS{=r=qF7hj+v6C=_Hq3kpir$qP|cZotugu}{aGra7rTP7PvT^Dkf<t@3NnCOxiEKE
z05WKS@)C?R|E)g=&UYYWjNv1$q32T*CDKoss)bE*JtC-~$y8w0Yzky|ok&!<*+qG{
z-q-5VhFN9xlxjG^#$znSY2Km7O6#Mj2c{&#l3)1NEcWoSyWzo;REiIqs!^jd)(+u5
zuUB6uHAQ<XnYcuLHd0Q{^xV-*#HvOseim;}7kS8D)8vQm5;NM|=Jxc-(~$aBag4k-
z#U)IL0k4!bw$Gn+(Y+bh*h=DI&6KxXs`keve?uY~&6+|=eTseuI32NkOM#V<t6Z2J
ze%xxLF=aGez8-y~A{tv<TnB(IyU<r}YnZ{nJJ8ekC?}kLf}QGHW{IIMC%V+%+>cl;
z0K-eCEiv_#e4I_pD-2&kfO=yi^7<BQ40&hvm1T!*d2T%V6A&C10rF-|3$W;;C2Aqh
zQ8n#qocy;f9yOH2(j6AdnJ|it@)(v98Xh#cN5nHOMEf?G*2#96QH|?QnhcZ9A#ExU
zZAl>=7SLUSN?UH7I)IC?p<hc(A^?E>jX3jL=^X%j$E~jEeWINcxnk(lzOrA2Wky)Z
z4#ti{Zn9%jqIIx!Op^txx0zzHdW|IGXJ-%ScUAqwlQu4IL{CE%D=4VVROy=iIh-p*
z%hh|IMSV<2im>7qAz-#?y;7}!*IW8DCwHz?Q~K^X&K?t8`mBrgMeXatwU$(LBE;ei
zDD@V}l4b4M1bZDGgDiE!796UX;)@XVHtmgY?o=|-FckEvcohu!EoFCQrIy!fNBNCO
z8Vl^4u2gZFAggD|nN(LU?Uyl7{n*W`45kNbmt~A57ICrfk~jQ$cPheay}r~ItpsmM
zWXG5zMn$)S0c-W@Bc-D)rFf)>kTejULCc0e{2c(lWKCD=mci29pec!Zy<JtT&p^ps
ztM(*mAvAtd64~|hc-4Ti#{0!*$=~k)OLu_fF5QYi+k)l~Zw@FtbWLdSqUD(AJX;o(
zXKFEvbb?w^v5ies#fSlqEat2pFMo@&#AMw&>K-iIAHXAaDJ9zX7U#Nl>AU&P*1Yyq
z>5SW(ExR!uL=UxWWJEO^zQZbMoGD%tug<uSOA({2{v|tnlg9)FWAqye$*V^v{I|u0
zC}N`6Qnww9is{HwaB#B=^)E<X%r+S<jvd#)*~)V%kNZBGuc?V1<bdxEHteq2pYsN+
zRRLe<o7vGs!)L6+J@9M)&TFX)>S0&^K(F+$J~0|#6zhxMTKwhgD%V&_S07hhjmPIH
zT}U`x6w9p@QT1g#-lgj)?;U{NNqfOJ<iqWp&d%dUlq(JdW{8<L4r=sK7cX^MyISL+
zN#UXURh$i(15Qe2!syw}tC5#v+thJ8M)|K+)Y2lU3H{%QVyT0QwY4&_=Ps*6KeyO^
zuvH9h=Sf4iMh&;_O|Sf3#TDE6aAJEhTpn3tVa&#j{A@z%4q$GOEU@ITt7NYBt-PR2
zJ2ZLV7~9n-(y5m=s?vW*V1`m6&iFVtNCQQH6JT~&LWog!O|kzS_Ia^r1CdfA|7a@y
z_LX?pf#{$pmRtlq{ZJ?2#mQH>n&>XYL&c;S&J0|`Pnzn%;6Z>e>;0I>oMH4>o5&Da
zCT%zUG9ztFr!@^=jAZ#o^_yuJqS3k+!seA9JBlyqSi}Px#1z^K%26HEW+kiBjz({%
zM6t|s_oJC$Uq(MuQ_Y$@@kRU8=Nu<eU>(a1{CEm8c?T$yF6c4wT`MxHjb`_U?=n&M
z-#ERRRoA$sstdNkUy~$LizgpsCa56G<B)0jP?{A!!<7}RRMIHetKm2Msd!f{DMW9Q
zP{Ob~a#Km5>$zM0+N9E<7OX}&aquD>fCVOlw|N4)^f4bxi{`4NDzQ@WZY=84V$)jx
z#h#@1W<jKnVB*p3QCDTOpQs-?e>od}=bgg-;br7jIj@D!(1ZF&hMpEljM{39!Yt&C
zV?RZ0E$xr)UCP%YlGGwfFp<#_O4?e27V8*whozP?dEtfaqpP=An)8bv-E&l}LX~v=
zphFY{`cL?!Ch8~l_iORW4OJvQM~WG$KzWZiH3@AiT58p}4OtggCx%ME0dQ7)5+}Yi
zId0c|5ChL=9iRHxd<AA)Ey~G<sIoTmT1az$E%A10H(6i~@BC^?Yc!eg^;=6*$|qED
z1jIV9PeQOA?*KAY@~ERj769XVdR*d1v5lji({K1j7j`A8IMBptG}NC=5jbcu_r{48
z;TMxeK2UrK>75F?**yJRT6c_`8&PxZHA}&kd!>F*E@&=}z)67q#rqL8ab!T8Bw49L
zbya8KKp7F7W@~F;J&S?Q_+o-5b=gy)6`e2Yjtg}whTgeuy@KUbQt=CP-ot|wR2f^}
zir6$vtoUoZ<5ffru4i=L-*|qdC-<;s*m(7|#Zr4WeDk~Z6RqVrOLM+;SfdjzqM5o1
zdbKqKM*8$Vp15=tb{v^#(C+E3x=pO89hNYRAykYUEwt*_OgCccNT;PEUjf?B;0LGU
zRc+7fi|hfjB+4)&=VS+5JlN+GIj<#J<Xvzw`fW1Mx=H$x;kPfR^a!R)OIMqNHyto9
z_qyEdeQ#8ax{~e33auVXwF`}w;x(*iSdnsv9vDfJo0w!OS`cMknld?^+yM~hCl2<P
zyS4J?*ZC}DQw)xuJH=@62-uL$unru&$Zn+Gx!|YyB60FC2Kk8xV=dRp(G<^|ieCRS
z0<X=IovT2#h3_9q3$?f@1;-Az{7#GGJaA;Q$m6q{lHzqTo10<HKGc`HM2JpNR5ml0
zK7uzO<3P<=PE`E%`9$q}(n9jt2t39962akA#pQY4?4xu(lF7|RW)_wjN4Sm!ZVbNs
z%vJsB_lsMBy~x$+q-TPYG2OGGnuL@Y)HT`(@gnMROyTkj{o5K>&D$*QzMfA^o2gUi
zqAu4Di)y(eB-waLY4SpgOAv%P0N7tetEy`cRnRSLGgJ<V*o>^p1;~AP6zul*c#K?U
zmEb2<Rgpc-08?>0IJ39(_3R%!!U&L&P*QVs<py}vS<9SoBNt(pGe8-s1r(>PTM;W(
z7HT5WrVm17Hqv5bTI%f{TawEJN);D6b)h{JDB_#9eqoF&Pq<v|;jzTr>?U8vzHqxR
z)P0rJm}qzmZNo6W;(NL)G^Xu;tkh5+S`>`i1)jI$>J~d9?-8Nbh@A9Hy{T0)wK3TP
zM|)9ceBSR`K{-6=mkxa-VFF(Sdg03uH(8&`jgIf2E$NWUpA}eh;6Zv4D$nvuoAUjN
z5(LPCMO3YCRvVnufVDS#vd|hI>^}@V?7$`P7o#&0zXQaIf<wFhXLWOM=O~vLO%M<;
zH>2AdU_^$8#@p;dNx8t!n3(CXTH9QAGnzvphKHw0@*X`rqVpB+NYrMsz5Ib=)>al5
z?)OKQz3;Z0o_5zGlc$qOY!P5abDnH#5+YB!_AW#;P|9RyDfaQ2AHHsqHhjl!qj@wD
zy<v2P59Xw-mSt<p__aFK`@`9FagNn;XhkEidd!^q_tjIp{NjavF#`;+1!lk?^)!w6
zY((0NSDxM`*3+TxJ5cV?<Lv2}O-1^Cp^Ts(p@|D-kMFzL+`nLiTh{{n4fa-Aen^pQ
zv99FPoOe8tDv^#Ltu~B_uk>H@8kz#T+w|HI@W|tCu@k*l%jEZ~J=kxJO$O9ZS|YF0
zCMQp%7iD3TB#mxPcG!ChsK6r%x(X9DbStw;vet+D_4a<j9L%@?9~YFcJWGU9t>*dB
z(D;X@&a?m`t>(2d#;aXTi|2Lm8iR~@VxsaZH_whH71E?%dyonfLK#G+hY!CNnxdK^
zCo+i@JI+jxNr3j;+LkWg<`^l}VP$t3z$3FF#ei==pt<UeDU@U=ivFOEWE<`px#HJf
z)B?&~Ufflb<t>ft^?NtWJcTZ~W<z_srJbh1U=q)c6s#C`E>PlwI$1&gwIF`;lSFJ^
z4G!+Wh%5Gh`^@O(rZ&h9_FWJ%N)JPHM&dAITw(PC91c7xf?iSG>6$XZTAFap(cQRU
zjR82nPv!2~Qf(0$(H>=a;nZEm{mq{K+&7keVKsEut*YfVhQ~^xPjR8)algua8x8U{
zD|`}B7${Mw0^J@j|DjS}c&e-N8o4iHNIL^>0!W-;^*Tk1<TFcly&7dTt2g5<ui^AY
zb%Tf|6#Yaj;A%=bcLz=hZciQexH^-5y`s$gB1UA2ku7!0|6^XX4BDW07B*#6wk6Jl
ze(B6-nYte3xB=c0qFeME_1hP@H~hWL{D|{Q8rziIDZ{oOk{0AS!B7x!v4VT*1%FXp
zj{U?!bx!|qDSQX)Oj73C<wr=0)$u?^O*|>%NOmTxr!PPy)c_mBtw!(woz-~hb1N%c
zVnZZxTqW^BY{UD36mESKXYMf|cT4r;<oj)%Pkt^Xixz%mWiv-h@z`!JCNiZKza6Bq
zMLLbS_&GRU&kOeJ+fB`s4I??(&|`QHU=@A0O0K@0`nDr!O)tCOw%>o4PU!ng*`&}t
zKq1)b%cHV%p3u1?tCDhYo%G#jAKMaPh-le|bDhV0`_)xSu=6Tap*gel0<xg1(wxXU
zvD+J(x`)fA6^txzQ~9H;7dweVi8oG-Zq_{0lKwvA{ns3;;wJ3ph?O014dp`8y5e2x
zO0tH*YrVp+h^XvlzgxB+TJ<*@PEvWuKX(LODjUwaSYd8i)-jw}a6NeZfPbvjO6wv-
zy0LdLH}XpI=nn8KLswre2&r`s_i2E?FNsES8@boynJhk4yxICN8Sa&DSQ#qnmmKN9
z0cKP;;IeJQ88%KuQN_Z{ATb5mlXc-F*S)r`M!rNRsmZ7+uh&T!dLzRzbH49*OQinV
z@}HgN-}7GqoUvGfl}e%D{82r@l$V)A`<|%E$jr-4shFWWfeeff)9=*O&&<|O%Dl9>
ztvJuLh2ntMWEE5AMU?99x<<YX{q6Rk7|)^t3$+E$SNLC38$B|U?RqQz#~v*>#{BpH
z*mv^~`o$l-f}ivV2s`B`0fL1Yk>#Eo0#st=LS*KGa3R2(9Ei;Kv<dJg8zS>PodvuJ
zLS(*YX@EDG5t;uujT7;Hx`aOo7WZV6pY{KZesNDd`C0l8^ox5o%Fl8ZE<~1}P5S@T
zy8HV6s9(sy$ppgT0V+x<C@8DZ3Ck)gGc(=OdPGc|j2tcOo$VZnLH7iaAG{sN(GV7g
zqm#3+xq%~?qym&N_+y)yh4lv&#7Uc&g##kK`%gqRCMIG?`tkX5?>}=OrGG4lU@j9o
zgh#^;;v(i?VIgMY;vi;Y=K|+)5OXkb{!uqO7b`IvD>E@C2ituv2Z$Y!9RyJYJ1ZM8
z8yg!jJ13+@NL^g_TpGw0`@Powywb0${=E9{Yj8{cd0}Q^VuBE)Y{5ToV_|DX%z95J
z0{&#nK-f88HqKAt&wc4168}Nm`QtnwME*Z30gKL7(ALS~*S?5_si_H=zy)S(X(K{p
zYhq(;;AF1*XT|r1`&U&8DX3|Q{+lYn(uCOeeJlQ|O3?4BWCHzCB}7r2_g48s7$8ng
zVo3U-K!}P#;8MsMobyZBkkbDt{U+Ey6n?Ls-&77!-Jc3)<zONH?^Mpt$?;3+_jUe*
z+F8M-!Nv?RvL6e$rT?MNA71`%`uvSv^?%hTSlA9OcFrcohSrV{#?)_Gy^leE)vB6^
zq^7jo4+mxWtAnyYZsK3G%F6MlgR*h_QYtGa7a}+j|DKqB?fu&NO(=h}&wr85ecb$O
z^JO&zr3J<Ao6q&v)-&IS&wsW_R<=J|&&<sHtN9?XPqA=<!!jZpI3oW{5HbARhOB?=
z{nRmd4Y4#%a1a2W$<7A0EmjaXAV2~YB!>e`-eUpV&V4QHV4LUSywBrc<3hYYnhg?y
zz@deM2^?_1WJ@MUP4|K7zRo|b>Bp7+ye^0tLgo9<1>C;>i*SE?bo~n6%E~f=;-X;T
zg4uk36E37x|6&@T--OHcr)m7|>%X`8ufhCh8N|yW%YFIJy97&`gAF1lhz!B9Vh2ka
z>~rjFkN^ZJ0kK0KpOA$M?1%Tqa&RF22-)CJejmUgXZ|>vndzR82|4Vy1$>eJblm^i
zMt}3*Ut*M3QxTFBzqe7&zlrgli}}ws3i{2%z}@FxHp&UHPw>JDwnRvRY_o8&5rf!R
z@7G}41tW$3CjI9v-^&y%S9T8Y;}IMo*+JmM^dnM21O&MTSZd&0HV#f=F0kP4rOU~R
z2xcOJOCa%)jSGAPn7GRUMgx%gzz;Og4`o3rW`#hGKNg6L!HiHgR!(9_2>!VSfmx*Y
zO$X<*uz|xrCqz|{El#jgL5>2KB0|;>RkIMYf*T0p{80jlIgr}#V-Gv?|HTb{<I?`p
zpRl@ykc#HL{)9CC!4v+6M;|NGpJ9fJ>6Zps!LoxSNMk`vV9kM_B#<>&b6`3DH|duc
z?_&=K_&Ir>Ai@U27j`gw`2k2Ed!T!q1@RQNd*A}e11CgCtO08a{0TW0ay~@6e}1xa
zKuF)eV8dTw#J_}Th+_U4rIi)cm1N}UoSEI7o&V|qKTzmD0tZ&kKc&aX{!@C0Y+(EP
zJ%J^5PZj^M{<;09nf)d!aNGVo`qwtt6#rbn=l>t>`d-9;-1e_~`4j5i-?W^8jmbX%
zVj(co9!#`nU<Tg=7Z=!VnAvq9zjA2i1deKKtYE&gppy}V<qR$WGo=me|DZzO??NsC
zDTADi2$Tf#zAcOdZOyE~EPX_vva^Ye8W>_B0%a|noWOYU2cH@o+Q9XIK{lAEPYo0V
z3Ij!eqChdAI8Xv836uuP0A+!4KzX17Pzk6EQ~|01)q$EoEufK|jg0~Do`?MhWCWU8
zxS9Y>!R&vat%a=#5X{B~+M769*ck(zEZl+4=8h&NKu;4#JDPg|fH~SGAY#yc$oms)
z-tYe*x<6Rlzx~D|_%8mSibKT8Ec}z#%>wqBU%YPjbXAo{8Y(6@w~TI^qp}Xrb<Lv*
zBgpv=!@oy<k4S+gg^{7&(AQvs_wS8?$AFG0l<4Q!Sj+FXWU-`8z=to)>!DT3d3m9Y
z1RW+@Wp2@&x`nc=a80tuH^z6~ICjJP)nkn7s|Ox=l`wKwzfiW3Q7ezQomnW5c@2yE
z&;$pwZx!0gA8WCCPS4SCFfciN#h(m|2bJzA+7MG}BLzvS=H<MFm9i5nqhvXL#Y+G`
zN7T$DNT8aSmy4T$hFKW%P0FjZ^o$f?qE8durj&UUTN_q7{z^`c@1S{kj*gC&Fef>h
z%uFjDxw=el<bBSyOro@t8U2*dB34ZeA`{P%myw@|ta2i14m8d;`@BhRW|a+^B{wr8
z4rE1A3ob=`q>a_aNy<X2b>}(!VXnbss1<R`{rchxuA$M3lok6ywuL!kTC{1FdK{9Y
zC@AhpTGUb;+>wZ$Im(e3Uq9+48C4Bt>r2=ZGgdsBi3oEHPeLwIvjs|W!DlM|O}NpT
z!wF0U`;-fpbD|5_3*P2tMy>ORb;{YXDiUq6JaLo~ba{OZTMa==aPJ1*J>}`+KGwR;
z)u60zGQt$83tzzBY`93krqXojB#2gt`I76_;49#dHR`w=54%k)p47?bhueq}%H(}|
z*!uBQicDRxhWpwc_71scN2jYj6>8?06>?{QH7x_pM?Iy|spi&e=JL50B9dwyc-tx{
z_%@%Ejt&7+0~<5^*lwZAwV*frm4>MHLc?h_vWzKIlP%9FWddk!RvuK_Wh|z9O6q=0
zevbI*aabaGnhZq-d62mQX;=VTz@zIY+*6L|_66>zh?BJVnupRQ)#JuPF~RPd*ySv0
z288+c>>aN9X~g*4W&<r%t_2*Mvrdjyh_={XTB#v0*~ftE*m$Ce4j(+&E-d>1ipt0q
zSf_p~ON?i0<O<Q%CRvw>GNf<GFR)3;@YCGkmtWF?u-ur1anzPzy!}&8y3`b+HW`UV
zp3WO+Kf_?8Tq2iS!fDBSfyBU!SIpTsCwYC>i1&#oVkCqS-wVODW8<zT*mX`wypv&E
zw9yl*UU&-IeO&MfB@1uq1!fJru?;JAC{eP?iK!&?12q{qiVOc)BQ3w|^P}Ewpv6~1
z`H_<7tX8i8Y6<u-@@ES1Orgz_s>)un4E5z%tmP@IllW3FVyPMyWHq^o$bu!VB4&O*
zxTH5YawslFIr(=28(;WO$SCrkcwK)Zq>~c$g_5zC*%^)Fw`M7#K7Km!F@Oip<dkKv
zhJ==~aqi_}Pr)4=S(B^df}`hiA8gU@M#zT_^%wQFYCI2#b3J=8L)P5e(&^Z2ih$OX
zdf94muKH5BWKFhoERKo0PY|3~33RNbdTgTeuRp(PL*-l0%~?|R+MCfwc`}4eR=8M9
zmcFOiF$V7jvu#Qep+t<5!&D0X-j(@T8GXJC2VHwd@oSFGB&V<J6rUEWl4*IV>V?0T
zy|Jhbm8LIsVf;=nfS8KHM;;5F<l`!ijT~Di6z-x!Cq-`hbvEh#M!W!}%meYz0EtSN
zhve=26iOI!NthxVfjOA=*_ceV9rKD5on?AB83NS+l=nCA@db>ip;EH6Vq4?Geu%de
zFLjeYaZuCx_fK`F9uzJW=N>*DuKcR`LLNwWB^dMVYm*g+1Mn`C>3o2W_MMRk2Y^Fh
zND#S^q}IO9UXih#FNG4O4MfSx$`UM-<!L+6%E)(MtmT#ECq+NM!`S^Ml)ExkN_u~P
zCtl&rTuPy>&+cAQMficug0d@5v+40$7f!#J(1>rW?)#0~1+>WD`3`I+R7+udR)EiE
z4@WPT$aXG(Gu|r>?vgGY<tI55iK(?0^mo%e6>#sl-ygj3OkBbblwHetjjWTkhFOZy
z(Rt$rrMFkfJJAubbU}K@M2e@n)bLqF`;A6PaI_tvc*2ID-zwWtZ{75uqpg<_^qdX1
z5KgEAq8m!Il6X$j6O^Z@Pka)ep1n07NvCS86TGHGpw$)3sdNyRhHcqJ6b=^{jd0$0
zSV2ybS9LPv6{X2<$B&NcgzaZ9wbRwHh*g#Bg&ZSWKlakf1nIO(cUycZy3uc#UDqMg
zvIV(5jKU^UQGa;H;B5~+^@anp=iNIFw<Bp|s>m(6Hl{=HB+(8CC$;F}sV^GP28WRe
z8J~wBWyvtz>18D=Cg^}zbppP#izR5x2|83Lc;&1sgEqApbH#TaF<+6MMjyT5bcU;V
zPXpuJ@BO)DI<6zaU(ThqjM3-jY_Fp%${FqGtFPyg(OjbatE<I)W!(!}{*~ozj20#u
zdPO#=DOk`*Hj>GL<7;e>6d(^vbEsejK~c>E$<uEnsmo+!aBmgN@c?FX;lN||5C>bg
z5w!8qlTZHSO+(e95rFH(fpc~XDz~hvTjwX6{O`?)&z$);+!qaRwj=O%T&iTHE1r1L
zl!V0)`C)Qi@uVds=roWB^9Elu<JH*690OMP)Y6UKkdziOuaMI6o2`kAoo*=Gk1t<e
z4X-*COmDUET;Lt7t_H!!4r}rIUR!xi^L^WH<PLrEjf$cm-2H>G6Pi6+Ig{F<+vvxA
zeqSE$JTVigB8eWmRn`{I90RA#;F`QSyvLm-CR7)P!LJRF^2U)8oiXi{kE^CK_PTwy
zLSA@n_ew#3=S_MOS!rA-^v*?b?lskL7I**i?9Z!q{K2V@iPVCo5jqYZm+QZ`zm*$n
z{M;0aT_QZS5obIRe=IC-%cf)9oWW{idZHb-{=h3mG}v?(hNu10Gt%_o@@3~BL|+ye
zXg1?^1eU{MyA%>$3e~6BZ6N=0e2=%UBnb5^Dq7veRApZH2LzbY?A|ujMTg+y;zUxo
z(=o2Xs4>8YkMZcdmrV3(Y9Y+*FpHAy8=ILT<p1RF+Y8s95U$F@=DcQpRhxNPlo`|`
z_I7Ofj!cu?A%UIu`0DWd#{a!9|9NETMO3PV4<K(UL0vhdgZJwVsA~4xNH!UrJu=D=
zi}@@A{b`?*!+3d+3lez#z}GH#%f0Ha`5N_Rs|qmrKTBd*U?mv|3x6u}ANu^*fuk+_
zJ)eEi(Tcct>&fbu?;kJWj1CP6qR8x3e5M|bnLOBK29EKP_Y%DP9CAjq7W!7oG-I4s
zkxg(--RLg;(%b9$p!Mt(+7)W&ckG^j7|4cn4E`H5`}Z-ypJ<i^+>zmg427^U{X(;U
zB3U*F0{s^x3qJFIg=97Uz{9NU%>Myvh5i7xKVYrYKLA_RduXe14{i;B;L&C<bak=<
z8vX~;{S)Gv0nI(^!QZR>fpu+NYz$2toh;03f52YIS7NPAOr3%DkgfZ%x1U(}KL+H0
zPA0D4Iw1Ji$r?QD`UgsOcC-6CQik-mfBOO@2(tgbM#>;IHjdwrvWps$Mx@2H@A9Y3
zH|p`-&G>sV(b_0)#>|TdXek`Egk(iU;b=sa6pJ##OXZ|qy&JV6>oW;Lc^DK}ry^2Q
zHhECruzV=9e9lXD{r=WV_wJ5uRtGe;?c;OqeRr^YGoDa~BRW|#*E8AI*Qs;t=Fb$5
zBW8i14}#w+{8U&M5z83hT<c4~hKtueL=wx4+csH%n-(1^=@1sWM1cK{opYg|v%R~&
zv!lcIU0hycW5C34WmaJ<;Le^*{_e|47So+Mi-z3>COR4hR_lDfyOzDPb8b$mrnPlx
zk?)+?WN2Zn9ObJhL*eXzD4d5j$l(iESmvzUq&y4#L;Uppg+y;G?qZ}xG>m1O6%yji
zM4l_CaEdDCgOa&?x85ze%%nHk9^4Whd1UAvx6U%2Xx6w7C?QGHS-obib3H>bijt+2
z%P_Pwl~XjLhO?yqED@EHue4r-kicvrB%4dAI67rK7?dWIs$`nLWg<9|S4wR)82m18
zkJ@YSCBD?79QPeM+9Z5AJS7ZE*gV-sS<Z!iQ^Zm+_%hqd!qgxP1(toeJO%k}bZ0bO
zAvepY@rA-#{Sv8NF3{^Rlbuw;{rQE(8f}p-(bGLN_9))ITasI`@2w3<pw)K`O;BBM
z!-V$AAv0m)mqyQP8FRSR&r@xei30?U;4V=t(LbE3<QF3ISi(v_@YcBKhYwIWXu*z%
zxLOiLo!9S>huxaT*`wMqI1~au9B~!_wkD^283#oP##QqOUfF{m8^+XBa<HA_24A9!
z_~W1!jWeco8`|jvCJV%w(<3dfyS@-8qwwtM^ehaa)&X8cOsALn2}=pEo$Sh8RKM|%
z1)MYrhvD|N`W|kkp59DQyaRvLY)1iU)@aJFPoj#Zd=<*i4>x5?dTFzHv_lDR^P3YP
zN{9Pl2#21snFd39!k(`}M<b&cThTHzsD*}s!bV&wzT3)ii8-M)Psl&Hi)#WGr+8|H
z^hGIBboi-?@GJa4s`~BT$C2X?>Ayb3eK&yX;GX_KCeVSY7?b|_;0=<tf5lMvv+slH
zh`h0|UTe&A1Qi`gOlUy=_6+47)kiG6PzpKryOg?Q#>}1A)8@C4p4C(r;YbRCYEWy>
zu}U_l$3%RD)Yi$X*xn6SiY-0ENM<V(GcS3o?}CuioT7dsNP`oA8R<Vz2}oLrdmd!g
zUul&ICC?;>9x$Qrj^^4UXH<pzBrd{B5fh7=WSjBh;t0IQcn6&W6?uS)lUx3#ZOp^d
z&NeRpWpC?t%Ixl8ku^g!tk}hoc-yX)*WbKg5c~w{nLDitHxISsnYvxA1v<eK9lV>i
z=aB$Ur0@w{CV0R0$xTJ9`9*rV-iBB<_+o~S_xwHz`kQrRhqz&jAH*imlQ}mR1!iKw
zVwu|)g<2&wJUkbQGRgGfa25g{?3tdfnEM{}6Mh@tBZ(-@sN@54v1F7yTO-hs2Wq0O
zSeqZnc0Rk6KF>sqqZ}@jXu&>%mAswSfg{BT{6bC<*^Fp<dU9#{&CVpS%0B6CvT<P8
zTlGb51?y~C(@}Egki?ObYP(EoCa(N&yYNjM_Lf`!p{AnUS<tiX1@X1*=lwaHSlAek
z+qkGf2o7{=iJ3Ogi@aO!!lVyw1oU~Q6_ztXSUAa9Ob&gg4C9FF_MLnYs|+y;D@cT8
z<DPxML`2A+l?qiDe;PxalL&>h)*s1tJ`-UrI^4Lz9qKiEiX!&%mLMx1){_#L2^>0H
zi=gv)=JC|wl)=Xx_jYh}jE>3qu7`SUjmBB~;vz->fikMpgz}QumP>Ne_X?`b3i~V$
zKmffGFydY16Aw%t$WNqDv*nFofR*lwH6x`brB+eFdEH!&ILSW@WmMb!4N7|a&Y{KV
zYX>i)<fk~{k>;UlmPglxYKh#YJ(<c^^LJ|P-N_QrP`g&cOq$k3-%D+5F&th*kbEgw
zDmZ6OwO+!zD=4}Y0c9KE2cp(*r`Z|^a^$2T+PP~4^aVU}?Uu_;*s~`_d1z$)(3J_h
z_f@zySx^0;3*m00A4w%Vj{uVS_`?G-oK-G&n*2&aQ%NCY_`boNm6m+Ztj0Hf=j2;i
zcdHcUzO1*pIXLt9`EN`F5q*!cTxN${7kD`6lU650_D=$x=_`T|MmQ`<8j{-PVV%;j
zWV=I|;`v{qd@UBZp4dLIPH-Nw$I(K2TxX*!+201}p66^%si4s*nIlF@&JjomX5V`R
zoUd{AUX!ZvdwuB2_oZW{{`9>+vb?CD5}oTJtuvdi`e8=vyLV+&7_{i;+1m!^c`1Xr
z-Yh&=LzisQL)_dYLv&*|1kBz|c7d6D(0c7e0Q9t0PuIeLoZYHSCk0_T2X&#P*3!Vv
zv4gr=kpI(~!@FmmTYQ#VpA4_?2<du?ybpB8VUy_H*C`b_N;1g494f%Ccek^7HaB^?
z8$A`u+ez{2Y!++Ee<T-|hN_f$6d^}X>p)q{Sk2CSMt4+kl>A25g|CWlbvwW1q)RcJ
z0Zu56XsfP&M8`JHZCS2q`tUNl51~F57TN0-P!@ceY)EU|_CD}{jZR+y>pk6GNWxMm
z*%uyl-+i&MSJH2H>GC{_Eed7ay)uJ`L>{>(vM-O^mdTUhPksGp0DCP;r+;FBiJ;Kf
zJyjU&Jrh$9I0}Sc&M)~)&tBtH?PTBZfGp2{NogP0i}@UoZ$M5%j&3mMzRlm1Feu>^
z-GlMntL4Q*y%z60@>d@fKf`G)(tVRLh<i(e#2-s3v2*%rH`yq&&46z{)`+o`tF5}j
z@j*sXU1YkDX3?}Qni+I!aCGSd+fauql;+&a*u*!gadxih--3#QqwST9yE-imtKN9S
zeH|oBhk3PR`9a7nNL7Z96|Z~eFnEl0N!Ue5>Z543eVh%lN(sTG#?0anpSS44dVv?D
zyGmz3lk_H7R87EB7xz#Nr<FDZm)AHcC=b&+UQZFuJobP$`fB8MxSS?e-G^Gw^UO8Z
z`7W_K?;5Dn;EK)rSzzxX+MIP4^wBh@=K0XU)ZWQnWQ&alLbyI^eVd5R*F?NYo5zeN
z8S?INggJrAZqJ>bGMKx8c!l_UbBk7~DAtOBAs+4nt*scwMX7k;8J>=tfDd<GZo5sY
zdvcCsxE>u?YJT_*r|cPD0#9+0@!sdoab|?e<XsYo>T9;PPO^7S)hnlVdf%en7?zYm
ztjMsfX;fUl0K3b2DI<e4t_Y{;NfEtDBHu;I-n`1hiUa?N*hovR+O`IwMI#E%rToR$
zBrii(u-?87SzEkl)SBu~Qc=w)7hW2h-Oxyek04y&o83LBwbv{hOAR{T*oU2NceCpN
z1kbfReT-J)BHYlcZ6H0b|K=o2?)fvk6<EKomG%78(VfB~W*QRE0e8FyaNq1GG-f8u
zngK3M{)v{*?`25D5y($+s-P~*yZHUuW+$I)4Fc1XbQ_dB(Q6%;h9A{Xm0i2`Ap<Q)
z=4yBk1PjIw6J8+@@a4>GDWVUK(ykEdxi5Ka+fU&K)mY2AGHHRQ8yk!|VnBZ)gp)mC
zPWR%Kk3Sh&{9vG|lF+M6rb^W>D|bFR$c9zSb=BQ%@OJANmGI@A8t^vWqils`I`6v=
z5->0jPF(vbq%L2wh8&RbvuBs+RM>DUs@TAJRa5Xcxr9jTW-o1#SPA75Dx-C^AE*=Q
zjVg^YB#%BD<i6BvbNhOf7h>}`si~P>dz-Y&uGS3LFm>H_IaS-_1+`A;S$=fUNeapn
zc(wQp;KDqD{XIr8@wF{RR+j-<KQV#aieJ68*+AC}?9k@OfIZoQe+Zl5zB-2;QKPF|
zTA)pOdVU;QpwIg=YB<D;ZnL~B<AhEw`b@47j_el4SFD@PrWDUYM$O)Ez0h;m__k_!
z@-T5laehd$&m%NBK~NT3LtU`Uzg+PFODEq&cnEG?Ar=jmgLw%uT(wz;7OdP}+iejn
zUL7gw>ZIm8*8}rpa^LGuxfdrklG`7OE{fs3?(U?St%V4}qZmZ5jnRg$jE)+d4eQV3
zu?O12T{;UupbwZ6a*`iD?O*nA1zmD|=(AUa{dBj5af|P>&Tn*lYb^@~1zaYXFR+}S
zSTti7?|*NqY}BJWTmj@HO!VWe;^2l*B&#_|x%N=-V7bFG6jH)HOow^{YM=hZ`PN``
znVmQT7w@Ih#k%-cYGCI|af}yV7Tg9rAzVE678mgB10rs?hat{o?mCoXDOulA=jGeC
z_*a77sox$kzdIl#lR?k;*5h^Tnxj-sT1QM`Vdm-R@BCqDFQ-v{TyWrR%2&+w_4u4@
z$NhI*xs>O1n+36IG?JmRODPRr*Pm48Giopo_e+@fZE)Z7ay{yCc!C`!dfDuF6rNjg
zU>umY@RnL~!|&;Xo;(jY)O@}HPTHH19OK3ElNaPPN?0mbx%(e8=%nYLYVEmaki|&w
zh$s(MNIo4Kxe}ijdQ4xQb8Ns5BmSIOKja*UW<~f$pWW@~?CeeEGW5-15qdDlzj-iu
zSvS;CfxSS|wR3c1!<pvbrrv3RJt3NfkE+C6T~9Ci1T-HcE_Jo{HCC)?O6o(r;^OG?
z_r=dKrt0*<pUl;AmsqB_MhIm^CtbOST*}j?Ff^q}eRhWry~Lj!;ZKO8z^%~w(8Onk
z+eBB4v;=ESFgWLIc-n4vM7y$FtS<7tmi8Xk*$7)2Zy7mePXUJMhj6y0!1%i%(DN$1
zc-eCVU8PjulBFWPDEF3IAT_6CF|C3-H2W5*%zDD`A3F4q_gnu>hyL$$kl#D>tl-zK
zzjx@_*x12S@BDl{^_NaPWcSzWsekX(vvd59ucv;zZo2P;|9ZvrU-g~u`3b+hWrFPg
zulvr-%q(EO)gLTB_jK8KD+OgUwBYw$lB@6u7@uour#77T9w;_y!a|?o?7%*trPS(n
z3?so+kcdRjrR89NMpAizXKdMnk7q7L6aLa%Tai@<+C0`UU>!L}tuQFnRqK5Kk<pWf
zz9+K>w{vdGW^Od(_5xU<T#`8(j(0ETPk2AQT3dEqc|0L7=+WccLAN3mP?B|cdGR8h
zrn`97zLYzgMymO1s7lGuOu@kvE+=prW0aqq+#K)m%GTq~GFkOqWz|7sMk$N&!pX#k
zURAGOS*aFT3bSuv=QHCvW9ToJmeLcMT<H;&`D_(a3^kOh1OzXZekz$UD}L2@x_}Jx
zxJ*Xf$!YV&roYPT@<lU+-9~DgcUqZ#XlYwSm8AA2_MsI-LdO%(8-9A?c3DAR7&f8<
z`{z+YVX3havuP~ZTt0U6y&W(}k6s542@Bi50ya$h1a~(3<~j5^Gc_+Cw)^d8qN@xO
z(9#Uxl%zMUI?CEmfRu%o48H+6!d_2WFA^^=2(P9pUReU440xf$pUO4HYR4lXZ@IVG
zeh>S+S(#T4m%)^xcS_~)ideKEM$TAC(7~kqa2{1X#1F5T1nD~~NDPOh4#_mlp&D<?
zRq>(+_a?N$ILiBD8BF_kX9}YLdc7(NbsY^1%@qC47ltlZLk&VCVG&8T$e>3(5y$MB
z(1e5yh)9PmA@A>;fUfo?trv2~K~P`JddYFVj(_WhuQj*rEW`^rQ(&i)!_TSWxJ&7w
z^6J0A^Xr+In|7^xkP>YrwI;MFt;!r88vIFjt%l)dhzfCcZ(-C|#()Ipp=?`)6j$MF
zTMds<FOjQaGT}-Ndz${U8^-1w%Jr0oxNDMuA~LRV5gOF>soG<@ZN#=;d8VO+k<UWg
z6PC3uM+31GvCrN`%L~%Ic&(q=7n_gghC`dxbOP(NwH8qIRp!Csj;NVx9<4<1)7XTJ
z*s{s5VF5k%Xub-@hPUr)ah@<%Pt5seR<-KCuIOR{p|f70IK;wUmu;(^7)Ovl3qlsc
zJD70X3w_g<am!nb8#@(d{K#74Lv35!s5Fc)KV|8w9y@I^%2&{u!--*L!m|9!4R2cJ
zxSx?6QIx;OyR+)6U0u7bneMN%(mGmr*@0Avq!(B_C-G&GE_aYMPprk;sY7jU7_BZ-
z;r++fLvQiwFHGPWd@mOSUDbC-K^IsVrqVG2d;|t+R6!4XGvMn#h+Mypo)M<1Nz}76
zui(-)+X*cAhJ8pM@j8g&bM4q?vqCvNiR0aT%sHcJg@-0GF1LqWT%r%Sf=G`pdYU>3
zsDsynJg`GbiihOYyt&*weCA|oBUi%F)6}0oL4pxIKht<sxsqd7*ZDA1MjAmH=}rjR
zPoQv+da~~kx_7bQmyl2Sy^B#Zm~IB~Bw-t*(mVh<D*AEnCg~TW3$CNL%yTdjHDAR-
z`=c>-lLn8^0P9JbLw3a-Rka0HPs82~4(#!)kvihQzHxXn>#;QLvXQ%60)GSdviiyL
z-{bZ@h3&tI+kfN1{S4d85Sk8{xbqvUfEmQh%mk(q{EXZGGpzs|p8uIv0IuQhw1WR`
zF!oP|f#M$=1ISP;WFXe`2c_WmfmXZ!pcVWYJpIQ3QwXKz_W@JL{{K4Yvw&FtoHEWm
z-9^<(MOhucl_S~9Nf9}_6{l3zKifYkB=obQwqUF{Q@8>ab}=<x4fb1H5mC6(X+=~S
zRju)>T*Nvx0>xf`oHEr3&LVV0bL>h5B4UZ@iA&q7pmMH`@^UtQ(>Jy8=^H-F^In-Z
z`<0Oa{sx+A@Uv9pu#5arar#D|(Gf3QqE{4l`Ad;J*1FNDLI%-c^oXEq87l|zOi@ia
zlXTnGa=s0hPR~nECgav-M6}jm`Uk))k6&G1KCtRyL7ta>T);THqZ}oTj8`Pqq?s?<
zuhTO1T&L_by`|fH81e9QWMt%2aztbGRqC7D=-DR=OL@H%3+`Qr!e>&#Y3wXcjf&i4
zY+YIVa9fji_!+5jiAJo(R;Q^J!F!*PyUe@d^G!z|#iZb1KLzRX8*S>Znf6e%yyo=s
zzsu!-3262Hj%!MeIUH%YmV(wBfHx9pz=H=gC0HN1U}}pb!t9ZG{yjBJ1^^24c!gjb
z%p{y@FkBKz2TE6D9*sm=mt!*|NFk<-V6Mh^(&5wjNr96VhXxT_pPJE;a7pQadvud&
zezgJSX!|?Lt^W6~{uPya<|?D=K9p^gS78Qg2p-jg&k_k<_Iq+Y=cjAdbcwHc33uiE
z-R3Rc=CK0R_t4`@Jt*IIEEo+dUwLp4ZrIe^w3tNHBm}a8&e50%rR~`hzV#zjVrqY@
zl<nZhB*tWHM{H?_k>Bl<;7v$1Q0Be9;9F`O;?0LU+s+a~Sl8p(YulR5`dGHjJEb6R
z8;%<H|62RXu(+0N?Sw#Z3GTrqc;oKw?(W{Wy9WqPa0?ndxCM822<{%-34BfF%uI65
zx%1t5p1c3hd-bYa)m3{HwW{8=UdwKIi!|RI(mC*Qip(n#*;KSQk=XDY1|i_a^eVUO
zv&nJ9VC&J7g`1-=)F)#@-qWwi7ueV_zL2;&QBwdZ5bz`68nX`^WHG@5GP(WqEwsY?
zCOF4G`a$;Q+tNfviWdsmX*?(mXKrSd#Z}2<zi5Gg>+uhbX~a(hOLap9XS0S~JryIz
zmH%Aw3ASu-82u{5M#dZbRbG93U=6>J5S`CS@Y?D;G(P>^UBdL9DN~bAvSL0}B#8|h
zA~z6uq#Jx}T{C*Z?cv-4mYY3lYLN9{K10S$ihTB5A=RE#3c|(pl?gv`V<&jp=k{G5
zQ}M6RJQ8w>{#-qJZ1x(s{K~t;!zW=_Dl0~B<@wNnqJRy-zG8*i=ouOsAuHR8yi4K!
z`C&r{+x3?2)X<9bSSYG`gf-r_SDc9I^@IH^Y~*WSFoD9ngqNR!4lv{-mQg6-nCn+w
z$)1>7^=T-5nqP{sXS?v_&5IAkh7;x<0lz~CtE2IVTFi=HF8JPP6+G|*74gE+Va6|h
z#+56I8|dwsS%#yL1*zExftKb;$r%I>ePy~E<uCD7411IO>AVzov4RhZkWf<~)C@_f
z72ZSrx>}jmc5CyUE3Fr1dg%Ux+q#OrmlF(}hSTe%tU)Iy_$V2#MwNLLig+?@f$~_X
zcgqa3>x*6vb>%3j5E4hXJH6$;Pa~5yK`ffZ${{iWystc-dP~3LBm_v@W>@RGJhn@7
zvLu$>+Z%?3mib%+a@T5iyX8^UdL7ns`^=slK@inzIJL7ZsC*0DWa{HazcQ#x6Jkz+
z;6~2<gdx>I-`HG;F~I=elg%3_fa&VTn_E-~-I@T*LQf+^Flb+cfO2FvlMk`eaP0BJ
zM$`JVf0azoKg842$zQ@H1U3=~7Ao+m;pU`3v_Hk-65jZ6g_nW_$xdr-sxl=k`;KfO
zn$vk@;u|+vVeLJ93I|(swglL90e9P1%*g;^W;Kh}%y%!DPNcx{*sn_K3=HL`R>cZy
z6+5yaziVvj418AfE{}_|jFPx6(}Bonvs`~NblL3sAUinCyFq}D3%&?7K9M4ASzD67
zZ7&1~^i8J6Q^SOkaje`8tfU})Jt95X{3Gx>-_%`ks9;!bG3wR^l3cVyc4D$KGBQ`$
zGk9IwL(l49(#anJ3_Mg6c7<kceXAWAb+Y=!cq~#`YPP5;2gR(tP5-rR1%^*B3a>+j
zIznu$M4U{l<a+lp9k*GDX2WWlyG!q);5p)*yhBvlDm#nE!ukNJ^pVv0xBbheM-vUr
z<~(QZC9oU}!}ZHYLd6eh>189Zu3Q`K!INF^I>+uXxF<Yy0@o9Sq2!R8WhUsfV==hG
z0aF5Hwv|Yy_JW!A-_ZQNzuzs3+RLv4a271@Pw-M-o4<cq;~7n(+_v`et}TlIrM_rO
zc*7btK}p+`hPebAm;dFbX`lQ=<~ALoEZ7v-FJuNYx*LnTn4YXyv0ut_VD`0pq2$ER
zmv}TY-^8Vve$JLR%|%Ws;h&Ho)L_k^Cd|=sOG+bM@ge-?yh`Q13s|F)@ZgVoNC--R
zeCXg8j*FK)tJ|I|R)o^^x-B^nyFGV4cbg#g2kb(B0A})ZIwUtbtFW_Wa9R-AT+<3c
z+;@+_gpZF!L+yMrS|Ri3#bsQi7xWFXzI`*X8+|`$&Ge0C&JqPDsN7b2zBVcp#5TT$
zq!d&zoQC4GtC2#+ZR0XhLpfz;vwC)+3iNA#Z29h!E{aZWspAaJ7{OXufY0})rjJtv
z(fo0_ItTat)T@weblx@?Ow@U&t<*0maVd-|N5!Od{Xy_flB0BA8;xWE4AB)}UP91t
zbr+8zhvdC=8N+CmGc0^WO=9x;VRN4O4SApKwe1_+ecZ<(NrG}?gx}I?CB!5%hnV$i
zVAk9gnmuuH5Il`_`5${Bu=EWpP*T!R=b0Z+XT5z5p$F5Ru<qr@2i?-<DAyr(+Gs7Y
z`!>ZjWsP+p>(zUFU>$-u^Byxqf%z#=Lgf_}5DE{+bA6{Y<vPP;xye#Nj3R82y%n&h
zX0Y{{F*jYSsF*D!L>^_QD_Y86&gMoVFn|dImNoWr(~yCU^5LipO&5Pa(KK_>J@z3k
z?H$+UC2O9?K-6@cPh2`%BfYj#JFysjC8=CHKN^V`S;-icvYha@`DJH>i=&BL@go6V
zm3b?Z;srgrngakw<mPy9E6IxYlZTfvT(TsQO3StL+2-(fl2{wLLg=E@x#sUU_F+u;
zT+=E}4w{e+#1r>yWZ5`=n`OnDhdVn=_hqV?^<wjlZz4{^h+;(2doYu&q=<9g6-a$p
zcok;sF$k`u^qC3K45tu(6{&uuztX!YPH{n|fFJH$mrS3!@oyHezqsB15f}THSc88p
zU_oeQ5Q_XaT<m|ff(0R+|9%Dga}oR>mat5qy^UXBvj4;ri2Q`f{vAYC9|Rn*vIXG-
z{say90}=ak>G~Hm?9U*TU-l_}!B77eXjnGDuS?b-6=)@tS?mm?q~v#brH&bLM^aiA
z+HbVptD#=cXt*5sn;FLm&mh6n>j@DN`XHkdS_y=LcZX($s(7j>S=H32EPPT~ysK98
zvdApY*tsWPb{)Zis^%^~I$d<I2e@o6AGfYN{aEoajxUBKjqBgtbHKR0b$-Mlx{3??
zq20y0#h1u4IX7GH*Mz&MeSPWE(2S^|+qtO<+$)aPB9j#BPsvD%&yEOtuR<9djHq}6
z0e%yu6mfb9FDDflrPLD`LPoJ2{5gksLr{4_FwMZuz*Q>uogf1fy+)oy3Y)v5hDM64
zndf`i9Dv1HMa=tZOyz0=c_WG3v$#H}?vgI>1Opv2&)gg;w#>4Xy|7d9qR(P^1~vvl
zxd6W$isPb56{$=Hhnf2-!JU!RR=x3cQpu0Ew}>gb8<O&`iuk95Ea)%MnFHNZu|?nu
z^5uD^%mzN5ed<xzC_IhlW%k<_bdxVr;@wBvXWoYoL)hb|bNHChbm26Ac=pyU*OG2l
zxeTEW*_|L=VnzS+Jlf&yN0Y1A>y+68z2lN)QFmQCT@nlKLv_7QG#0yB_1ak;Wm<%4
zpFV4<VVcDkIDEzPwPAsr_^!s(h$}ZSA0iE%_YrZh+h3P9csOM?Abw$>il5Q=^i|Ck
zNu#112h7VqVqyoADS8916*KmREr0xm2G_T9EQd3Gp@AeI88H=R`jWabv>UfE#+fx%
z!ej2Eq+ME_UR)_6Ox?-3=p_F2C8|7SBe2kLA3jLb%`?G!>SSbsz5P*$_94ET`*Wi!
z0&SIx$O?(i1|F>)^M!H%hXinnKI18DKv{NMalPx2$$jPMW+&a3N=S!jh;)|i3>z<2
zQ;klKhF0&<sc+{8)*#qxSZ%I3V-~DOpeF63>Vw~c&sBJHOWU`k`bD5Na#y>6;1?YZ
zKHN#In2h`xqir*AWWLY+Ru3M|444EfP2W;n0_zy$znLSw%&w4lYq6^(*RSP!wEx~n
zOA_BT##qY5%JI`Fr&(-|%UI!&kw~}H3_2_H&6^E<-BgRJs4ti19z<o9avJyU%eI}6
zxX`^Wp>Ib7pEBk7YB6CLr?cjBHtJ&e-@hPw<&3ZX6)_4n<EckQtM-_BfWxyNiP3fr
z{2M@zs!fe%72O09^|OP$-noi*_f$>fATQ3#<&5ioPe4WlsU^v~v&N!T+whF2E%++}
z+Opuiwb~GM4D44iz1j6IFk-xSMg76g?i?Uyh09#qlE3s`d;~IF-b8f5zVGQIAvn9Z
zm2Wo}4@XCMIn#+xk@pY*e{kJj;RE?v(=Kq@EWz-}xeRg>-~}aZBcUPgsWjP#su$+s
zay8_VESm3h45d<{G_f&l*XhPPl%LMAW`+yVl&FN{S2Gcow7<<ZNsNHlBml;3(TPsJ
zi%f;^WuV*gif?56tl0mv&#-(zrS^av<HJ<?Cp8n2cowL_reQAX?|#=S$ejLfqac<}
zzB3^}9<0N3NS=&<-A@GHTWR~2;@OYWK6Wr;OR3&s<KUI1!^BJ^fsOabR63$a1H`FJ
z0CYF|b&g_wI*9{^FSPuE%lH(N`Wx~^UJh0!#JBEJA$l&SpFQH)OC7<Dnl<*!I)gz<
zRJ=i&gV!3=Vsw6GIqm0Zzmqtd3!l2Gah=#Nl~wB?DPLS$Qn$t-d8FOyL6gW6QdZU+
z@`ynvZt#KEuda3HtivS;AENfoY92mYx*<uuaH`PI;lt)RW=9*L+52yA$E$M;NGo1e
z37GVz&dz=>W13C0D%Q=zaAwA36t8hRbnL>^r`d43>9RkPItn>eG>9KuHFRDl-coG_
zx5w8&P{A{<vIDzjVYGK2+Fz{*9+kms40;LC+*_5sM6Pm(ZfVmeZ}_&ySiL$cmWgFg
zmC!7i1PY6~K`r1hDI0%(P0c1?^5%8txVHaXp{d;YA}KE;Z!u=GwBBNdsX+P<W4e|N
z&c=|7A3d<zPLJ@1PuzP3(z5RTBpg_LAJh4f@l2b&t8yNjx_y`I7tP*w8Yk>t>?xSV
zZS3#b(;o~tan`uw<yL+8j1gEL(7%#DyJg-L^FdTcIQ6noKyNUsLINp@p=os&rN1J_
zslA~R3AR1hte}(IFPfzN4au#Xu|?@ps|wleSg-8nl~{A{8a6=SOEzMkhY>24XoncZ
z9g=QZ(A!lg-0)(zGsH7uR{!Qx;zWIDga+UN0zwM^dofbCNuTP~lDk(mH_8R=j;rJ3
z_EMeUxH388ctto-KKOUUZi)o5KBhZ#a^>hQ!1_sZHaw;eK`+}0`6vJ?V2XJfB=soh
zRta}7J~&Rh=og#%*1Dsng&hUBiS!jH64X5gf_O=OE#YPCo2BZMDE)G4c4XIu`9G+u
zs}P}oymCt=UwIIhda_;Tc2f0)+qi8OK(-eg@}ns7YDRp^=jveOFhx0xueac`xTyVt
ztiQGDi<7^Jh+{Cazy86g^fhC-hjAKgnXW>&duXWw#>vuBK`F~Et`1wB63jjFBayq^
zrqjaWS!moz!*w0`XzfN5IzZp)W%;ac54aWOrYdy(=fSNir^exV&x@R!#)@r*Rq4$~
zLr5t$hEi^E`Yqg*ha>ly^T)D7?)j!!6><zo7(LUHr0<zX@jh0RttYuxX=U=N&1lta
zCIZgEd;&?A(bn&#aHN8`b|ZW4P->GL<nh|pC1-s^Fxt<NxiY*aSE$+VH7dehPO~|+
zmW;n&-~=`)+gw*d0ugd2#XqMe&~~0~U9y3_%SM0iQ0%}5|4t=``85mtX6MGP$p+mR
zQ6%};qOc_!BhtW?(@aEs{+9u+IDHHyziNIrD=e(zi}@*w`xmJt178(vK8CS2eEHF|
zPrKWM;|l0{nrYK?n(kM~ww<=HXEyq<fkO91jmc~v7vJWjj1zvQ44+5xtR<nM2Wd;|
zyarqqJq!nLv>9gdye6;W72NHuaY=6#GP%uG73yu(OJtj^z0Pjwbc~RjMK*0NlD0Jb
zMO(*hH8IFY=i)%l#W&l+Jz>d>&5K}r-z#<;3XeLx$_IC6F+0*MWdxbyh15;l-?TF%
zL|{yFd{S!fX?=Kv*|ero4<|%u`p7U?pNE=jh_;<z;G1+Dgn|b#B5u1=Lc&lQU-Y9^
zb{HVlNZtGCYPJEJzVN2Op{Ii*+Q!r5228_JJ!DF-I`zkmQ@XM%B!a|-j0;+s;X`%)
zkM!V74H|DR<rxz%pe!v}m~2B1a@d4L;^tV_D|<<Y&uXN2k{!7hI8^Vyf&x>h%|aB!
zdDg1k1qovEdhTMpD}{XP=4dJ!^B_K;p7&z08FSVAFj^k@vXJRbNqGQJ*ND``70L{7
z?V+};67B1Tx!9Hy{;2FXpN4<~fh;U}yhI;L>mp-~+{f04hqwpdgWPw{VvJVAYQ{LN
z;Z0=jKn(kMm+*c$9>LsPS&mi@6;H-<Q4FbNoL!l0mCYTQJ$G>0Cefy8KZjZ|sB+3^
z(^fAPhxTStHJ6uXv(Z3vtR@xmyI(=ljgs?y5$?xOd@XGWX#oKV2>}6V32kj@X*}6)
z+E4VeH3JQsU2jz#x7!V_zx1WptX*l^+rjIsuin)jjDJ++hAV^$x}~RKA2MAkv5s5S
zPKw=`#dUOD&#N{BB7ZG^yl7tzzdZs*lFDx)W4wed!9tuiUCqe#a{zkZ_rE*z%IkY~
znRJe&EEtX<h~!D3ExxQcI?rY=|6s8v@zLT<!Eqb7qF)f1K50bhZ1=J!ovKgOy<{Sh
z%XPTP^+(EmAEDcdp1*NPp5xE{H+$-TiQE0@lF%@*63{%Oo7tazl7FL{89{EwKX=ss
zbP@{6^zpwr31tTznEnTM1Qad)_wLC56u0*~ycvXQ{sY%+L}&a*6yG1a?LPzfK<MUw
z;+xIsEa<H0tm*zhI{&c&{|{jE-$0z70}%fSb+)H-_yyqX_zSq%iO!kMjn4hAAm^U}
zpuadk&-efJo;?#IGyN|IwUMeGY|7>fx`VZ|Iyp;r(#>%#MT80Q69jKy*aIm924n=b
zkcc=!V=oHBKE%Br=Vva=#g!-udu{!O*-;^ak~!hS^*8Q?d+*Ww<YTY$>-&wSE2mP+
zW6Sa#@9#S<Pu{Kf-ewZokvZlm$=st03j&wJ(NBrnqQ$3;{@t##7+%7kk<6i^6Wzym
z-_&;AzUkC^LOQ{cfHva*usAt`axF@^nyIB_$e*}!D@sZ_7`7BC=Bw?`3kP-uLJksL
zZuhTu2oM?BZT4Dl9~Z8kMAr*(e@fQ3vm0k5la&z@qmL2pN)hS~{1(AFBMB7+J9!Qh
z1|JrNs9v^%iH23MLmLh?ejq!N`^3)qj>z3wODtl!xp0e+AqG`=eomP7OVn8^-Vtvv
zVGqL$rOkJZ9oOUoKwa0WoA}_8AeV}3aIjmDN4Zu7utqkpd~eF!WU`gDu7Zgk+m@@}
z2u3(En~Opc1br4C&ieXkTTvzcrLmZs;zl7v{F|C+Y}s2m6bjve3_!k#VjP8!1%j~v
zgd7406&;fzz%HLZr8SV8BGMpd5>LgPewUFVnymOe9)dXyn?Ev_Z6C)1HBWj^?kNjX
zA^=+mKEG=U$pVu(JWIAH4ntLu+&uUyD{dE?8IReehPvi;4I-Eqf8uIhV|HV~oyw))
zek%+)3<j)ZAWg(elo2gMo^V`YOQF^Z<eALj@slyJS+nsQHnXj)b$(f<8fIxG<CHuN
zWE#ZMoOZ$2qj;WTLt#5%R3SsSXLf~0V?)^xg5_`th^gJS7*y!lT)@Juf}M%x?2e$+
zwpD)~j5Wi2yoVrQoO$nKM-<%m&8Pl$;39d~d_)qRs9Q6i4DVjxRyr6Dcp31>4)GMJ
z9Kw!AlC)GsVns#_qaPN(x<wQr2HCSxajG>+Ak&IyYnrXkUsOPf(UovH{D)pSk|iKI
z{Oy`SUJ8=gYlBq|lGOu&F(V}^%QbTL-02BhkE|xelf>Nl9k3l?J@A~eI&CtSN&?Zl
zHP>^RsScjroL<*7aG$7RcClC1ZwgyaoYFasdC(;)5x%dll4DZ&uW^^vI+HD{Nx$2M
zRY=KFl*#-aNVUndK=}UE5d+_v?Fp+PeWd8xn@l+009&4~0dJ7gB8KaeKQI%3ueE&k
zxYqQle8K3@Y?bTt_Kk%OEGn#6>;`5t#M6h#RTo11p*HxuWTZ?tcvC2B70O{xOBAo2
zQr{<xQ1*~4<%1qVblD8>*C%+GEs&I$1IJw<%3=<WK(@7(Ui>{hAFDtbD5JqPRGfh0
zgNel|`&e)GtNvFG>|8cEna%<#1uv|q8uooti-bdeOfA8F%i4ki`$SrsnmF`PhvgV&
znR5Mn`W#l`gRaP7r+bsRNUh8aj)C)bX^hBb!CL`Q^-2MZrLAI|J&mt&ZM=$N^?)tE
z1|*`pH+X#yZz{6}Dd6J~1N}VLmh6aL8Aa>+_T_LFCfb(f>9%f5>%!_FqVA<ZZO0O0
zb$Y4=!i%rVC>$=c25xBTr$9OK2fR28UaE8jn<0Zj5Il;e4Czw28`XKK`x=pr-5XL|
zkAlM&;gF55_R3PF=aT(Y^P4o5gHeY52Q}Tf?$EW&z}WnTi%Eo+YJzMbzWZf+14hST
zLoW4nuvhw-3lv_QLI#hovOOAbYvB)pP@6^}Dq@g(E1a&(RH_&3m;Px;UIqhryEa+j
z3;O&`z6EZYBSmetsuTu>CqjWv=$UE`^y(V8&UTVc62|+NsHkm?>RFLx__q-4v5~dH
z;;kaQ{2W__)c1@14iJz7a&I_d<%u|3bLg2k^~!f1+gb`ETISy)EKy79D3TJwNtnOp
zWOrmmF*)gM1b?p&jO?@<p~sdrNVGwa&=wFgFpxsRgKebKBa-seK_M+BBC(@(98DG$
z`vQ)$QRK>S6%;my`=F7rjmm-)8$p2Es{5229p_H*Le?7-Qsi<DN@Q;JjpAY>5S{V*
zBrP!!=ax4kk%YM<0)7EG$k8ZOl1fZo0otf;Q!Yu8AV9VSEC|1-l(4KPGwWN$XdVWB
zJNZMQ>J}_zO|!}Om9K3c_9i#ThFhqND>jlgLE!kQYqaB2v7y@&W!xWa#lgh+SI>OS
z#F*Q3(LREc#IVHLe;~GbBW|F^poZa+CtT25$(ck$DnDGjP(r}BkoHnFuiym2jgwOt
zVP(dj|CRP5l1gl;bymEG>5|bVdIe>NW~{O9&1AwPVzi8Uw}hs71r&~TXK-;0^nt3;
zlG9%Ma;$~8SV$jS50K(zDRj7QLcM3NNf&K29`DMF8TBnrXedj_3C{)MRnle%$eq>P
zF<*HE)z7eQm*QTu+!ZoHLdCD{L&d)y_X;4$ZXuPflN^$Mt|lvBJa*VCG4j@MVb4vV
zkNoZq`AM&WxG>VeK~`;ze95>!8`m+5?P+W|4l>LW=a{ZtL(QtPOJ8_y?TkX9_r5U9
z=lZSLslzd#r;n`@v(o$BDsYVE@k({mgr2dYj&*xti4g|57@2BTSIvj8vJ2j^rhpNt
z<U;C$6qM9LE(+a3Jp*>$Cp3y(vBZF@<p@w{)EI>0)mXP`Ns_K~;pDhbCTRu7%i-Hn
zjU+b2$~cVW1DmEX_>1&R*0RQT+;i)8?!)|+0&UQfr+PyMr&J}cKc(7k;kA;W`6RRW
zF83mQZ5C|P4XM+z@3P_|7Z!Qfc&S7Xsvx7MxvYT`ey_!GLzg_1QDLd(acxqeAT#OR
z*5;~%XUyU^yoSS(EU}mkY!~cPH!gg$34dX(quVyR3EvPtkX=SEL%JzNwCOz253B=H
zmal}8hsVmFeK6`u`5|gN;@qJVD_ijyQ15S7>e&BY=n%7*!4(`I)WrM76#txag%z2O
z$ZV~lFVVX%x;Tcuf>FbHxSx&$<>a2Ayt>;h5P{^4s2?>!hKo|cdu0kZ5eo~V*H|+s
z>*B;jOSGqNg@{PoK7vkMZnsJGkH)h9+Vq1RHVRXzvefQ&c&r#-^hel8cie>-KJm)F
zpYw2Or)iml9b>NDEuv-kXF04!JfEq+r0=IUO%LH@jkO<jW#X|AeC&~=8UrAl$=(`H
z(D~cZC#@E(3PrdgO9dDsKftNl=Zb-0N?Fanobr23b0$x&bLiV5#yi;&kY`{<+^9Me
z5S8{QG_sX<2A7X-=^JYPc||qJ#s0p>Ay#EPrDU2{i1><Alash8IZ`v#9#g)?;I+C(
zJ%WVt(Tj{n!d2!qF42_2T|^|W8J{5dTsB=}ydA8G@5>GZR;ToJjwvC`xvseJ$hj~T
zB?yiSwo~mB9Cyw*uGM(A(rv`cnVR9--;>aiD+M_()YMogXI(u~_w*qJ&Ohbi#IXov
zBUN*eo7kTDE2qAar{+BP1nK$e6VKuu{KcsiDhY%B3}m)t!~8wKMIw9_-IhCSZno5V
z)LVu-!Brt8BM2Z*cHc=;&3Vox!AsT7YshP(50p3bn68wZr3)ObxeAAmRWZ<|efyel
zmS6$O!C_(Yqw}Y4q7$t>L}-;6j(oeVvLchOeypRAjAczc`9z6SL93zJ&rKq#AilID
zthS@STA!D3O#k8AEnDFSzH`yg94t~{)P}(d<AIeI@phmcpB~+BcUgcFQk1Sl_<iEE
zZCcifq)T+pu>71uaB#~IddX-q6*nhTMf&OWttpM;5o7(8R9nG2DYjXGa$L@ix-dm}
zGFnbdAgP>2Z3$7Hji9K&W3A#F(b+AbY@l;S-2r%ce+Z7L#7wG+Fc0)=r`%T)tSwoO
zW_H2?8A>YH^()(<_ff@HUE8)Cm>;7?s#+fu&Ub95EBRGP4Jdl}haVyzn|=4>l4to0
zHr4jDgr(f}-MUzo%Dic}Vj2LNfym=`H@Wq>6!Gtk%!bD|e+2HYZJN=2Gpm=zuA@vA
z^+;;fxN;fxYD74}J6FEt9`K39&j}4JSB5*X)v)D&fRWCTWXy|bf1-EF<XLJ)s3v^?
z2pUI+BH6IzL&5hVbC2m!>_N)snW6bJLTWVy+<G)C4k-&8oB%y7Eo0xvNM26Px94i%
zK`u;Ouf+g0H8cGb00PAdyEk?G>eDEoZ2b%!i?cq;B_vx$Lzi}aur#5X`<;)v0p~t3
zTassd=(;&#=rcp$p5!#kFMF-E#bU*pIB;Sazx1?wP2frcFSmiF%@)PQ`<c2&dV^O#
z$bf<iNq$hVON!gvj@mDa)AqS}pMVPFas3*epiQ716i<PBKn96tSuDZl9h3vAzM+b*
znlG+V6Bjjlx;p_&!~sqy2}UYMB?HC@O_d*TPA=6%b2Y|#Fqp<4`Y^!Q7J9sDw1(*E
zu^gi|wb)&lL<<fDj+m$V{l^}-@r#cSjge@JE{2XNzAlA1a$s{w(>!2!xQe47qtk}T
zhH7oFu>yjfHce}ba(V~XrnEy#Ke?5uo+PgHCh%C@h7DEJ7_aH@WP`$1#Osd4L`N3X
zcAUot4K!H~ULb-33g2Tt<fdv_XyFIdq4a#%cl&W#S><W+^`b5|R>U#Y%feaIHpMF|
zL@H;1H%e;hbHl5Yw@|L!73(~Gy=N*Sa3jhZ(COJon%pRBM00)VW#F29!gXp}S>;7b
zF`XA=jT?l4G0Rr%E<j)-G*x_nMzY~7Ra63TZ8h!txm$|xKH-tFZr08`LVVT5<5B`e
zXtP!yNCQlcTX+>%n0X`=!lS4@)|qkRa)SE?Ul(OeAgqJn7>9p8!%UB%9R<&8gZpJs
zjL|1gk#9iqbJ}+%`ct@B<Pq2Es92QjP>sWMegX}<0wU8K=&DqZb`-F91B=7U4Hug(
zNW>)=`2I%Y0C6ibApwF3QE_?;O|0TZgss!Mu%RJ$aNnDi`tltAHMn_?2XI{flh?H&
z{Bj6}dcrP<3nh+qx5Yg6YO12Mwe62AFPj5L)40mNVlNp!(I2#>s7(%ez6a4c1cUci
zo7s{Zb?&#ML3Qfi460@>G=EP@kDo)eci8?|%M!2Z#8q_SkiLOuMAuC>jkh%D-e^f%
zS3Pwjo6clgH2H!@j|4J<?*jLWF7&q#4ypo!itofT-06`o^wHAV0#eCjw8_FF;u{-{
z*mAb0w^J%tnV}B8n;s=vbxoGwQOD3}I5B;vfHhrx^)WeEK@Qup&M049tm|=tIhL6e
zYe$~_9sic;z?n=Yk4n&^keiy}M=GkvoHd#d!%cf9DVbRwusv>|5;p`4MiAo17M~s3
z_+fmh`8rB=ZtF?(FnjftyXyF(J+tDGd@o8!#E0k_I>`>+5I5Wknb8vKBbpNe>aVub
zcUhINfyh>&t)yPGYhq{p!v%nmtV!yK`r7NUJjF5xE7hhrghyXGd^K}h%b;$xs_C=G
zC)>Ov*6yaWudXN##Kh*2L<y1tSQKuIc8tubhoL}%j&oZBjIo|W5Nc*zze~rY_Bic?
z1S!9(mYi3_7OC0qn4k5U{=T)6pj7b$>v$dEQ~GY3w}L{=YoHKPsNPqMdOd4BR=goT
z@lbd@XX6KRdA|bODjvPC2qbSo+Wkgoaq0%h)fl(TrahM~3v?s<*3=aAP@+>YefEY0
zuh+-!cP~(3vyht`+_es8d~9#->{(4Mz74~P<?G0xjB?3n9KSZ(88ZgQ4u4CxU(1f_
zn@DgF={@<X1VA6T7`=q3NIUW_)sC(fy+xSSLS`0YW$6-kx{?hY!ybSNq|PT@o5i~<
zOz`^PtJSK<)G-p59%EfnOk#1Bb4k@7#L5$O%?0l57IKbBy+9X>xIYySr@%ToJyAG3
zGqL|5Z%Hrw1MywVpz`1Bc>Qm~`Ts7{*+0+WpSQeNK{;lB+42IVr(y-|S^ZDDULb(z
z{{sIHI?MmNZLk0F;Qcv2)$iG<)c%y4>faIjzrjeKb5s3?ApL)b<^LmX)!*SunV!Qa
ze!-Xiy#KHFsz90EeobBFrDCq6IE((3!PP;z>)X{kwPE237=+L&m2POwv^TgFT$b|0
za>fWkM)BZcUj(5HI|u>^*uZ3_b806nO3N*DX`I@e)lI{#b+v0oz0MI1T3iGwN-Z0f
z%RP?OuRT|IRvxdGMLX&*3`mg0Ga&{A1b0HDPh31BP*<Wu1wFz#bNM2!Ts>rLfeHS_
zgYDTi$1U$MUgx;KuyGBFksyIC`UYWlS`;=OBQGJFDg8AA#bhXnWyT?=^$Bj&jp2RQ
zuJoJAj6tG!`S(dsq(A1iu|P`!jclpQi)6GsrJh!1?`Da-v+z*yvvA1>xD&jCqW3By
zZow3>s9}`vhcj$@yWeqt6z!tm%Iw{_elX_OlJfkb5VPArZBs?Wkf@JY?xuf^(Tr1n
za+D=3nMkYq1{b-}VmL4?j!ZV0!}<>H?Mmgw!^58J5L{0xR{N0AvXKbj6Q-^S6JsJ)
zZ-nVXGV~CM34k#uxu<!cxu<#LWQf3oeq+RyUNDJAN;jW(qX$m!HDFl@&=VvNXccFX
zpuKjlQne_5oBOEHauGNv_fhU+;<D87bj!kA<l)O?sag@|ILXbjEA{c6;;$(8EEnf{
z1>ao;r)QlSiU%%h3!SRSebFG7-e62ibg4D96@X4p(SUJkXk7w#_at8q!aQ`yb_t@w
zSK!gk(48?3L*9Q9mD~StKbOz2U1%^(d2$n9ItL#~M$uOVr5(W*Th67=t~JqtrKX6y
zD-j<h9>*D`-vr`=uq1^%`l?`;z1y)NVnxY}11EQ=FBuGXtK|%N=zD<*NGbu6+pd1W
ztCbRa8MS960z<OnUq&t2#%3RC6!#&Gx&@yJe}Dsfj`@lJ6+PKy4Ry$_H(5wASqp-B
z)h@hdE~|{KoMeTBZSFX$5s&y-41XPHCCLBY-;3dGazcynt~+%&^(Y5PugKLq+L~1&
zT$#W|8sQFN%LT06Rr*jN!N9Z#;<x9RVO~a}(UTvDsj=X~z}EVN@uzP-mta8<JV41x
zvu(jH-4>g96E*nqDBK_H4u3R*Igc~Ic!fnv?spK~KE8WT=_S?b19;aUPcgu_jUh;w
zBo*AD@wp;fPPdTd^(;+!5<KpBtY7ZienJk<$ciMNrs0S2I)N~8Rk*f>dGgL<gBiM5
z*mbO;o2r|5x+=bxQ+AQ=3oD!2;q#%3c$zCU9pg<dkw8^5lYXB@DNejFWw*lg9dy=;
zkU{EUfuh5B<Q(!h`~^64E>*0Zc$GcbvrrEhA6%1lrl~D#H^ktYl5ZV$SvwZrh84Rp
zM7pTV9yhB6ln(+mDNl)Mb6r?Y$;Oq?@pqG19oN@QQC;Fu9irc>c7HFY<#DH|qLv^~
zu0Ld2c*$CW*T%fC8ZSr0nN{?S;uyP!qv7pk7uO7yLlE&c;!N<KUMbfbkzK{hwA9e4
zZ}*&bOOrb!rmj*?u;LtLoFh5`2j48)n13YXK82HHva#bTs8!aWSX$uux(4}w6Fd~W
z`7W(rVqi)JF-)jRFFI3o;V;8YuNI&x7HMT^_pOpQ`ZTfX9X|WI(i8OUmmfA)0z0FK
zcF{^{gm(&CNJCq4;6eB*Xf)Yd)qzUUIYhI4>@JH3aAbGF75N!@CjD}EobSXnl_l~%
zX?@izMXOK+qS&^foJv?n*~_|~c7Du&_VN0TmFj(cXH$34#ljcA`hqf}#^aPy)DV}u
z`?$L_awOd#oj=&4@k*WbC_v-nrqcAXGLCk+$U-$;N2D^Y6~)$Z%mAD8%Ejz$RFs<*
z@7tXii7#|Xfw81U-K1ZTtkstN;-VAxx$Q&Asa~QX9=|N>(9?n@G3pQ^h#^UW!4f!!
zX02S8ap5V(TOxog<@#W3C$M8|al`QSV`wH{1f6VdvFnH4_Cz$;fG;1T3Bl|-VP>G+
zoAKh(Nfjmeh0(kRebjGn=vS$5%ZM3HGSbX+y11qT)PoeTWXMISVh6GjxJIgKrYmH3
zQ{F$VGhjjXM^}~UqNY`*z-6)LP$7?B;V2ssz<Xw)TCW3m=BtNZ@6<2U!KRFOr(t<(
z=p@*TVJNsHMf3~|G<}C4t)|1w7P1wq24{gx?eI+%>nVsv^9z}oEew>M$yl6^ac8Nb
zEtgTQolF6Pu~|etf}GrD^{ST1FrMM(*%Zi7NzLGy*DlEaAqYz;ODx@3uD~<R{37HN
zXKTmlF5pLqeC>B{OSIND9b_w~n?mIWzhetGexXWXXRtA053qXfOCQR1mI5vdbyx1g
zm?s97!}cqE&ul}jr1~DA{mWr17(69&oIV_Fz;#WRtnHAE4DU97{`+k6-VNLUL*~>N
zs8ctkR~&5d+Okx{R~!*np*0=&g&h3%UE*dKG&{1h67=XH;%|-~J>d_RvIb_2jr$cR
zQ8hgswJiL}SiWFU-=|2EdIZr9TB)0$3UR1_a}6cF^-oNsiKd}8!UK+W<>->$z;Wk&
zv^nQ=QHXH{a!aH8*k>$Izv9SHkYEndG`A)ZjO9so9x9@4+-Q>+T>FuLhM(zmr;f9@
zGiHqpFj7(yTiyn`eK7GdvKZ@?TnwN3ATAFB(JkU|G%Nj92fS>9Z}p7yeHNNzA)^eL
zi@{M{{pDA1;m;4U>sVh&!evY;g8c;)PsvxjU!kwkCVHRPybiQggaT!-X~fj7^={HB
zo-{KLo~&0=_vc?B;BDujMudi%pgvpSD8CsbAS_U_?SpjB$8ABlP?y~6CO99_WW(Hf
z+<4>81=UL5PWJRDv_WdYpC;8z6W(7zpzCB4^DXNmXLV(cM*&-i#ShY}1pIahopc$R
z_yJN5P9ido$|X9FG>#vS*@scVc!cg%H1pduXSavWVj<L|qB=(@-5W++>WwQ(!&rTW
zGj11j-^TA%`)P0k1#!QIqrW}F?8#u7!^X+t(IU8?FEwvS1-I9^%8*`}lY_ZLJG&#6
zu6YaQ0=+$i;LEPFuuR#~AU=j}9?ryPo$;}FMDE=uzRn`LH?Ldl23n5o-Zhrr1w}|o
z4UCG%awZ?wd>Zu<r*dBdOYvric8A_?M=}<t2ru|-w}}~T7$@?A!LTP%k-4-tkTDY@
z{Zn1IgYRJfH|5mY(uj|#_?Y|eqQ19yH&kOe^9R)ORI!Z~GQKo@?U2X!&^U5d_2uni
zgR;+$)MJ9NUJU<y4*Lviv~nWi>~=SCVaihG9FiAZ;QCs1xusUqFWHDN$AKSpY_#m8
z#IfS#{5i}b=!J0l++8v1^Q`J&I)bFIa@(CPW$YgLEBxX2;aOJQJ*Ph`;EJN2;E6hT
z2p<kUIktI1@T>!;>J=}7iB7*sJ<J|zoDqod5UDW3CfavBh1B64Rc~N_@V<F$NM>o6
zCG<}Deu1Hjf%ny|iVXnF<FQKN!*7t9NN=%&{`&Rl#j-k+YMs4(R6@(bsVHO~`RjEc
z<s$~~&Lw;B(YNdK#DWhbEqXXziCxDdR1@f%PUKXwEnb$v$oA})$;_>K#H*E%qZevI
zN`vUebm~-5YI*9AFDt4EHeLJ1YfASp*4{B?)*bGM6r3?;|H$MOyzeY825ScRMqmmG
zCJ9E&_=L<zd|#EL)TsgSURCERPKF-zy#PRpp+-M8h574n^s3cijBR%u859q+8wC14
z)1LP%u)U~2IN7Ax<Z03}dq?3bFcJ%Ie#V>4;BT<<Y0P{+x(FhjUGc`F4Gr)@3@>_S
zFHjRLzBs#tgSHCy^Jdd7bMp&l<?Mqv95zULm<k`FcYRX0aSERtq%>I{JnJu65E2)=
z+Z7_b23U9Dq0e5h@R!RXf#KG8$z`M_eoRbFO#R9@;-@KMH*7_N31_U_gk5~CbWB;A
zMKaBF)B<#B>WU~;pzfS*ZU}O266-_m<6xnRb#6zepX40cIeD7H-ejG79gv;P`RQoA
z)4AUc_r2t}<~!_Da{Q2&CUH!$2qbY(Mwrn@Nx^%*loWm99Ohd){8z-*pYq{3)-cmT
z!i5VWBaN@iCa01Mu#~&?>0xL1poV5jCdiELNAqAvX2Xt^4YlwjSyGJCz3j|*-E=>i
z*OYky%^ECy0*Y}u9}p2!$SeQqo&9p&{htxie@>$OPtOd*BEk&9B7oQ_{*`I%x4>-B
z7a-)ozp|~dJZB32mt*#fP59gRKGr|S_dRn{{DMFb2YF#C|HKhIrvd&~c=mtrpPtie
z|LQ+I-~ZSC6FdE{?h|*kmz1I^X3yx6wFh0^x||KGs7rW?oIn}`M~zeGh(f1mxiF6v
zgRm9^ImtT*r0Z@LATmHksw8=#ki^+WenUVi1mZ|&i3p7|sM4_!M2m#7&a$*#d&q5{
zQUNRdaFBMMas7jP^qyX<h!3u_Q1g7n$~wJ?hBz5+oGLV<+q&z?H4Mg5y+j#dlv)jZ
z|Kc8&JVO8`SbVm@rFnT`s+oMS8DJ}{a!N)C%_pX~Z@+_)q^e%x2DL?mq7i_e-A(ao
zZw&c@T0*qw3xNU=@wX3PW})K%X{lBs)$vkSw#h^ho=yhj1WeZ>T1l=(Oy*cx`W|F+
zWK0z8DGEDTjeOBHB?ifF;!2_N;@C1tjqLk`9!eMNx8ur$evB&oI&6i(G-2q|vLv4~
zaJWVA#fRii1Ogk?*E8QbOB&)%lYA}=Rx0W-n4%J%(vuKUzTONFQa+D`a~w>3XDrFp
zKm)4|LMP98E9V5AiL2V3wZz?$BJguc;u_VxC~-4tSU6wC(HTc=ZNuYz=*}Kx@G%5x
z78x6EZCeO76gO5c_bjY27=2?^2!n06FuQ#d5cJW`dbaOaCU}ne3&k9SXZiNow>VZA
z(clxB$75wv>E&-fj;F$$X*~};Wx>xo*YfQ@kL)qw3^YJKIgSO@reJGoYZI(8mh5yK
z1wg)LKuqBkCFqO}T&ZQOaK+^~S66r)`$CeEQ^JWzEsI%(_yTafOP~8SvZ##{`@PO*
z+Z(0|Me20{JYBCby14qiOhQs||1jhvdw^ja{nud9NIkR@rTOR$tBavLTVR^cjeTF5
z<$UuZ+L;J;H}VQPM(vpr`_bKXE99&nN|nAs+xOt3^21VYdGFUzCo2eP^{(c6sx@<x
zPsm!zmkGkl;k;VVUU=V8K1H@puVKXP@%1Yw*#TCT{K9Y(5B)j8FrE1rv}Gs56UXBZ
z$I*PtwAr|)$W4y&sfxaOYub($pS@nY^83(0oyJh;y93Ye1N9-@ILI=Uthe09?O?my
zOC|M&<VPRsBAs5p4kikL1C^^8A<d!$H&fjHs61;)fYVMJyn7{I2#D42XhG<_FW409
z?d4s-7vC9KNmZP~DZ1vSr_vFxq=KS!f+cRB6BFQE^wlGI*R@?UWW4B<W9J*0A=o<;
z=5@b~5A#a$oyMC?mWtb!26g4?#pzE-nFuDM78nE<yrH2D9)F$Kesbgd3bc|ocGNf0
zchvuPPH#17sedN)W?*Ck{0qUu#p?>xH?%Z%Brq^GHMij=KW=IzConhSCRb&ark4f^
z8k?Dmx!W5ny2~gTx?38u8<F$!z;N;E8`&Bd)41vbX-v$mK<OME2tfJKxrqc7q(q3G
z6<j%7t%25{W)QeqTiG~pxN?*KEW!c${4Ay;C-|x2Xvs~kCM`$cXlrX_Y3@h>pk=3J
zpkZL7CNQxFWpQ`0wYMZ-pk*NkJ<{IDghN3{<c|k}?zqX#936oibaXB*F0?L;w6^x9
zbPS-x?sW73IskwMq(S50X5*;uN@L?d465&EL(J9wRm{eL_Gg=DLHX9{%+=@^XzA(x
zS<&;f{Y;)@ZfisET(Q1^t&<}+xs#K*5r@7Zzz{@i!$iYKZ^A;uz+hrX1DdhvX^a5u
zjP!=gER03~wtrR!{H2+{)d%_lR3Rg%A3&ct<m_#YoD7ZaxyeQ4qzFXKY#ki`Q9l7Y
zEr6Mv?vJ1Uf7L3`*!+DjfCluBZr}pxa7cs5kxbl#^c{_P0Q3MB8hQpA0HYFso`ar+
zgBf(o#z9ZdMfWF7(BOlL3fdckiv4ej{-XIyQCoW@&?~`X<ZKRfps=JQV5VhfXCx4`
z1-kvr_(=eu2N7~8=o^_E>RS;AyBQNG+L}1JfVLg~(Vm|V{o@&2bk8IBOW*xp_ohBj
zTKYftr?vI-3;(RgA!KXlWDNrHi3|NVuhaka8(?JkuLc91?5%#<j*%gqv6b<2+Z;eI
z0RyPTMur?Fw)WQgpf_J12m~=6=sz0-9q5fE=ivf<>1gg~Wz6%_GWo3>|M9`f{Mpht
ztn_V6xyfB=jEqh6ova+mc^DX3=ovt%W90y}ph5k|m{^(f{NuyV(sciR;@^zePZ7xe
zL4!y4ui1qMhT#9``oDY7zo%3XTOBvK%kzZ!R|dO(ugCsr`xJj?`jnuB;Ik!xy8YRf
zD1<nk4UwJ!zzCqHXZdM^<n;99AT^M!{(m(7unCHvHl;;jsr6r26{rHG=fS4<eHbZu
zc>bW|bG0`%0nvMaR>045;XkftS`APtT@!+T$QW1w&s0s%7lF+mG7$e8GbnQLHyHyf
z12bs7`n!yU6-3<hy9{*q%<K1?9zFZtJ?|&C&2M@DHWmPgfaNzCGXvA#w1x4R1n4(C
z02|{oVbX6hCRTP3snqW>04v)wS<>%%j113QU%$x!tUsw#ev>h>v(x{%4*;wTtbgt+
zMplMrhMwQb0$AAp(q=|b0x1w2`%ikzf9XF)2A1dK$G_<@fKH?S+*cqOh$-lIJphRH
z=Fh*EfrTBEoBDS>&=~#YcQAndpZ>Ldp!1tQl?AY|fp`Ree;%k_5YgA4W$b{zk%36T
z{-npw@Rxo8nbtGm-}Cja_mq*D{jV}sCJ=ek?|Mx101&CzpJbq}`g5N$u`&Lo@0l4`
zK^#lJmj$pefk@5%EMo(aKm9Ia1`YZzWgYGHK@>3dFkD;&bc*Kg#vr>Spi{85btL%d
z7!uHl+nCrAJfBu7fV@&60!=Okets54VPRGw&>-@I{s;)L@-qoC3JWo@2+%XKvhw`@
fHMC(s;Bp5?eS62BlL0dmBMUPODXFlm2+aQj7FPHA

literal 0
HcmV?d00001

diff --git a/test/clj/auto_ap/parse/templates_test.clj b/test/clj/auto_ap/parse/templates_test.clj
index 3313bcfb..fcdfe54b 100644
--- a/test/clj/auto_ap/parse/templates_test.clj
+++ b/test/clj/auto_ap/parse/templates_test.clj
@@ -51,3 +51,22 @@
       (is (= "720.33" (:total (nth results 1))))
       (is (= "853.16" (:total (nth results 2))))
       (is (= "1066.60" (:total (nth results 3)))))))
+
+(deftest parse-bonanza-produce-invoice-03882095
+  (testing "Should parse Bonanza Produce invoice 03882095 with customer identifier including address"
+    (let [pdf-file (io/file "dev-resources/INVOICE - 03882095.pdf")
+          pdf-text (:out (clojure.java.shell/sh "pdftotext" "-layout" (str pdf-file) "-"))
+          results (sut/parse pdf-text)
+          result (first results)]
+      (is (some? results) "parse should return a result")
+      (is (some? result) "Template should match and return a result")
+      (when result
+        (is (= "Bonanza Produce" (:vendor-code result)))
+        (is (= "03882095" (:invoice-number result)))
+        (let [d (:date result)]
+          (is (= 2026 (time/year d)))
+          (is (= 1 (time/month d)))
+          (is (= 23 (time/day d))))
+        (is (= "NICK THE GREEK" (:customer-identifier result)))
+        (is (= "600 VISTA WAY" (str/trim (:account-number result))))
+        (is (= "946.24" (:total result)))))))

From c196723913e5b2af20f0d86a15f026ec80c70b45 Mon Sep 17 00:00:00 2001
From: Bryce <bryce@brycecovertoperations.com>
Date: Sun, 8 Feb 2026 08:43:53 -0800
Subject: [PATCH 2/7] ok.

---
 .beads/.gitignore         | 46 ++++++++++++++++++++++
 .beads/README.md          | 81 +++++++++++++++++++++++++++++++++++++++
 .beads/config.yaml        | 67 ++++++++++++++++++++++++++++++++
 .beads/interactions.jsonl |  0
 .beads/issues.jsonl       |  0
 .beads/metadata.json      |  4 ++
 .gitattributes            |  3 ++
 AGENTS.md                 | 41 ++++++++++++++++++++
 8 files changed, 242 insertions(+)
 create mode 100644 .beads/.gitignore
 create mode 100644 .beads/README.md
 create mode 100644 .beads/config.yaml
 create mode 100644 .beads/interactions.jsonl
 create mode 100644 .beads/issues.jsonl
 create mode 100644 .beads/metadata.json
 create mode 100644 .gitattributes
 create mode 100644 AGENTS.md

diff --git a/.beads/.gitignore b/.beads/.gitignore
new file mode 100644
index 00000000..0acd8c61
--- /dev/null
+++ b/.beads/.gitignore
@@ -0,0 +1,46 @@
+# SQLite databases
+*.db
+*.db?*
+*.db-journal
+*.db-wal
+*.db-shm
+
+# Daemon runtime files
+daemon.lock
+daemon.log
+daemon.pid
+bd.sock
+sync-state.json
+last-touched
+
+# Local version tracking (prevents upgrade notification spam after git ops)
+.local_version
+
+# Legacy database files
+db.sqlite
+bd.db
+
+# Worktree redirect file (contains relative path to main repo's .beads/)
+# Must not be committed as paths would be wrong in other clones
+redirect
+
+# Merge artifacts (temporary files from 3-way merge)
+beads.base.jsonl
+beads.base.meta.json
+beads.left.jsonl
+beads.left.meta.json
+beads.right.jsonl
+beads.right.meta.json
+
+# Sync state (local-only, per-machine)
+# These files are machine-specific and should not be shared across clones
+.sync.lock
+.jsonl.lock
+sync_base.jsonl
+export-state/
+
+# NOTE: Do NOT add negation patterns (e.g., !issues.jsonl) here.
+# They would override fork protection in .git/info/exclude, allowing
+# contributors to accidentally commit upstream issue databases.
+# The JSONL files (issues.jsonl, interactions.jsonl) and config files
+# are tracked by git by default since no pattern above ignores them.
diff --git a/.beads/README.md b/.beads/README.md
new file mode 100644
index 00000000..50f281f0
--- /dev/null
+++ b/.beads/README.md
@@ -0,0 +1,81 @@
+# Beads - AI-Native Issue Tracking
+
+Welcome to Beads! This repository uses **Beads** for issue tracking - a modern, AI-native tool designed to live directly in your codebase alongside your code.
+
+## What is Beads?
+
+Beads is issue tracking that lives in your repo, making it perfect for AI coding agents and developers who want their issues close to their code. No web UI required - everything works through the CLI and integrates seamlessly with git.
+
+**Learn more:** [github.com/steveyegge/beads](https://github.com/steveyegge/beads)
+
+## Quick Start
+
+### Essential Commands
+
+```bash
+# Create new issues
+bd create "Add user authentication"
+
+# View all issues
+bd list
+
+# View issue details
+bd show <issue-id>
+
+# Update issue status
+bd update <issue-id> --status in_progress
+bd update <issue-id> --status done
+
+# Sync with git remote
+bd sync
+```
+
+### Working with Issues
+
+Issues in Beads are:
+- **Git-native**: Stored in `.beads/issues.jsonl` and synced like code
+- **AI-friendly**: CLI-first design works perfectly with AI coding agents
+- **Branch-aware**: Issues can follow your branch workflow
+- **Always in sync**: Auto-syncs with your commits
+
+## Why Beads?
+
+✨ **AI-Native Design**
+- Built specifically for AI-assisted development workflows
+- CLI-first interface works seamlessly with AI coding agents
+- No context switching to web UIs
+
+🚀 **Developer Focused**
+- Issues live in your repo, right next to your code
+- Works offline, syncs when you push
+- Fast, lightweight, and stays out of your way
+
+🔧 **Git Integration**
+- Automatic sync with git commits
+- Branch-aware issue tracking
+- Intelligent JSONL merge resolution
+
+## Get Started with Beads
+
+Try Beads in your own projects:
+
+```bash
+# Install Beads
+curl -sSL https://raw.githubusercontent.com/steveyegge/beads/main/scripts/install.sh | bash
+
+# Initialize in your repo
+bd init
+
+# Create your first issue
+bd create "Try out Beads"
+```
+
+## Learn More
+
+- **Documentation**: [github.com/steveyegge/beads/docs](https://github.com/steveyegge/beads/tree/main/docs)
+- **Quick Start Guide**: Run `bd quickstart`
+- **Examples**: [github.com/steveyegge/beads/examples](https://github.com/steveyegge/beads/tree/main/examples)
+
+---
+
+*Beads: Issue tracking that moves at the speed of thought* ⚡
diff --git a/.beads/config.yaml b/.beads/config.yaml
new file mode 100644
index 00000000..ff8bc921
--- /dev/null
+++ b/.beads/config.yaml
@@ -0,0 +1,67 @@
+# Beads Configuration File
+# This file configures default behavior for all bd commands in this repository
+# All settings can also be set via environment variables (BD_* prefix)
+# or overridden with command-line flags
+
+# Issue prefix for this repository (used by bd init)
+# If not set, bd init will auto-detect from directory name
+# Example: issue-prefix: "myproject" creates issues like "myproject-1", "myproject-2", etc.
+# issue-prefix: ""
+
+# Use no-db mode: load from JSONL, no SQLite, write back after each command
+# When true, bd will use .beads/issues.jsonl as the source of truth
+# instead of SQLite database
+# no-db: false
+
+# Disable daemon for RPC communication (forces direct database access)
+# no-daemon: false
+
+# Disable auto-flush of database to JSONL after mutations
+# no-auto-flush: false
+
+# Disable auto-import from JSONL when it's newer than database
+# no-auto-import: false
+
+# Enable JSON output by default
+# json: false
+
+# Default actor for audit trails (overridden by BD_ACTOR or --actor)
+# actor: ""
+
+# Path to database (overridden by BEADS_DB or --db)
+# db: ""
+
+# Auto-start daemon if not running (can also use BEADS_AUTO_START_DAEMON)
+# auto-start-daemon: true
+
+# Debounce interval for auto-flush (can also use BEADS_FLUSH_DEBOUNCE)
+# flush-debounce: "5s"
+
+# Export events (audit trail) to .beads/events.jsonl on each flush/sync
+# When enabled, new events are appended incrementally using a high-water mark.
+# Use 'bd export --events' to trigger manually regardless of this setting.
+# events-export: false
+
+# Git branch for beads commits (bd sync will commit to this branch)
+# IMPORTANT: Set this for team projects so all clones use the same sync branch.
+# This setting persists across clones (unlike database config which is gitignored).
+# Can also use BEADS_SYNC_BRANCH env var for local override.
+# If not set, bd sync will require you to run 'bd config set sync.branch <branch>'.
+# sync-branch: "beads-sync"
+
+# Multi-repo configuration (experimental - bd-307)
+# Allows hydrating from multiple repositories and routing writes to the correct JSONL
+# repos:
+#   primary: "."  # Primary repo (where this database lives)
+#   additional:   # Additional repos to hydrate from (read-only)
+#     - ~/beads-planning  # Personal planning repo
+#     - ~/work-planning   # Work planning repo
+
+# Integration settings (access with 'bd config get/set')
+# These are stored in the database, not in this file:
+# - jira.url
+# - jira.project
+# - linear.url
+# - linear.api-key
+# - github.org
+# - github.repo
diff --git a/.beads/interactions.jsonl b/.beads/interactions.jsonl
new file mode 100644
index 00000000..e69de29b
diff --git a/.beads/issues.jsonl b/.beads/issues.jsonl
new file mode 100644
index 00000000..e69de29b
diff --git a/.beads/metadata.json b/.beads/metadata.json
new file mode 100644
index 00000000..c787975e
--- /dev/null
+++ b/.beads/metadata.json
@@ -0,0 +1,4 @@
+{
+  "database": "beads.db",
+  "jsonl_export": "issues.jsonl"
+}
\ No newline at end of file
diff --git a/.gitattributes b/.gitattributes
new file mode 100644
index 00000000..807d5983
--- /dev/null
+++ b/.gitattributes
@@ -0,0 +1,3 @@
+
+# Use bd merge for beads JSONL files
+.beads/issues.jsonl merge=beads
diff --git a/AGENTS.md b/AGENTS.md
new file mode 100644
index 00000000..78c7c75e
--- /dev/null
+++ b/AGENTS.md
@@ -0,0 +1,41 @@
+# Agent Instructions
+
+This project uses **bd** (beads) for issue tracking. Run `bd onboard` to get started.
+
+## Quick Reference
+
+```bash
+bd ready              # Find available work
+bd show <id>          # View issue details
+bd update <id> --status in_progress  # Claim work
+bd close <id>         # Complete work
+bd sync               # Sync with git
+```
+
+## Landing the Plane (Session Completion)
+
+**When ending a work session**, you MUST complete ALL steps below. Work is NOT complete until `git push` succeeds.
+
+**MANDATORY WORKFLOW:**
+
+1. **File issues for remaining work** - Create issues for anything that needs follow-up
+2. **Run quality gates** (if code changed) - Tests, linters, builds
+3. **Update issue status** - Close finished work, update in-progress items
+4. **PUSH TO REMOTE** - This is MANDATORY:
+   ```bash
+   git pull --rebase
+   bd sync
+   git push
+   git status  # MUST show "up to date with origin"
+   ```
+5. **Clean up** - Clear stashes, prune remote branches
+6. **Verify** - All changes committed AND pushed
+7. **Hand off** - Provide context for next session
+
+**CRITICAL RULES:**
+- Work is NOT complete until `git push` succeeds
+- NEVER stop before pushing - that leaves work stranded locally
+- NEVER say "ready to push when you are" - YOU must push
+- If push fails, resolve and retry until it succeeds
+
+Use 'bd' for task tracking

From 8899c643edbaa2f4bd43bc24052963e953c7a4e3 Mon Sep 17 00:00:00 2001
From: Bryce <bryce@brycecovertoperations.com>
Date: Sun, 8 Feb 2026 09:31:26 -0800
Subject: [PATCH 3/7] Complete code review session - documented findings for
 auto_ap.permissions, iol-ion.query, and auto_ap.ss.admin.background-jobs

---
 .beads/issues.jsonl                     |  64 +++++++++
 .claude/skills/clojure-eval/SKILL.md    | 174 ++++++++++++++++++++++++
 .claude/skills/clojure-eval/examples.md |  82 +++++++++++
 AGENTS.md                               |  13 ++
 4 files changed, 333 insertions(+)
 create mode 100644 .claude/skills/clojure-eval/SKILL.md
 create mode 100644 .claude/skills/clojure-eval/examples.md

diff --git a/.beads/issues.jsonl b/.beads/issues.jsonl
index e69de29b..0f64cf33 100644
--- a/.beads/issues.jsonl
+++ b/.beads/issues.jsonl
@@ -0,0 +1,64 @@
+{"id":"integreat-00t","title":"Security: Input validation and sanitization in import functions","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.0129384-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:28.0129384-08:00"}
+{"id":"integreat-01o","title":"Security: Remove hardcoded API keys in insight_outcome_recommendation","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:46.141653019-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:46.141653019-08:00"}
+{"id":"integreat-08c","title":"Performance: Fix N+1 query problem in sales_summaries","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:47.102267818-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:47.102267818-08:00"}
+{"id":"integreat-0ic","title":"Clientize sales summaries and add schema cleanup","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:43.768991121-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:43.768991121-08:00"}
+{"id":"integreat-0tf","title":"Security: Remove hardcoded cookie secret","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:54.956951237-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:54.956951237-08:00"}
+{"id":"integreat-0z7","title":"Complete test coverage for transactions and invoice functionality","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:54.738460045-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:54.738460045-08:00"}
+{"id":"integreat-104","title":"Code Review: auto_ap.permissions","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.102943422-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:00.915797483-08:00","closed_at":"2026-02-08T09:30:00.915797483-08:00","close_reason":"Closed"}
+{"id":"integreat-1b8","title":"Code Review: auto_ap.ledger","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.457434281-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:52.517437805-08:00","closed_at":"2026-02-08T09:30:52.517437805-08:00","close_reason":"Closed"}
+{"id":"integreat-1ex","title":"Security: Implement rate limiting","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:55.32191677-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:55.32191677-08:00"}
+{"id":"integreat-1ff","title":"Code Review: iol_ion","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:59.195722157-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:30.631572319-08:00","closed_at":"2026-02-08T09:30:30.631572319-08:00","close_reason":"Closed"}
+{"id":"integreat-1ht","title":"Security: Add input validation and sanitization","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:55.707181622-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:55.707181622-08:00"}
+{"id":"integreat-1m3","title":"Security: Remove hardcoded JWT secrets","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:54.57377807-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:54.57377807-08:00"}
+{"id":"integreat-1qy","title":"Code Review: auto_ap.routes","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:55.26442193-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:55.26442193-08:00"}
+{"id":"integreat-278","title":"Security: Remove hardcoded Google credentials in auth.clj","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:19.491341584-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:19.491341584-08:00"}
+{"id":"integreat-35k","title":"Fix session handling and authentication route issues","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:50.662486708-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:50.662486708-08:00"}
+{"id":"integreat-3a7","title":"Refactor clients module for better reusability, schemas, and bug fixes","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:44.681764032-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:44.681764032-08:00"}
+{"id":"integreat-3cp","title":"Code Review: auto_ap.import","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.573843708-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:54.573843708-08:00"}
+{"id":"integreat-3pr","title":"Code Review: auto_ap.ss_routes","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.020989213-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:57.020989213-08:00"}
+{"id":"integreat-46f","title":"Security: Rate limiting for external API calls","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.429193916-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:28.429193916-08:00"}
+{"id":"integreat-4ag","title":"Code Review: iol-ion.query - Security and Code Quality Issues","description":"Code review of /home/noti/dev/integreat/iol_ion/src/iol_ion/query.clj revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- **Regex Injection Vulnerability** (line 67-68): User input passed directly to regex compilation without sanitization, enabling ReDoS attacks\\n- **No input validation on date parameters** (lines 25-30, 46-54, 83-162): Invalid dates could cause Denial of Service attacks\\n- **No validation of client IDs** (lines 46-54, 83-162): Malicious client IDs could bypass access controls\\n- **Unsafe timezone handling** (line 70-75): Hardcoded timezone without validation or fallback could cause failures\\n- **Permission checking lacks validation** (lines 59-64): Assumes identity structure without validation\\n\\n## Code Quality Issues:\\n- **Extreme code duplication** (lines 83-162): 8 scan functions with identical structure except for index names and entity types\\n- **Obsolete function** (lines 7-9):  marked as \"not working in Datomic Cloud\" but still used\\n- **Magic numbers** (lines 25-30, 86-89): Hardcoded years (2001-2030) and days (90) should be configuration\\n- **Inconsistent client handling**: Mixed use of  vs direct client IDs\\n\\n## Performance Issues:\\n- **Inefficient database queries** (lines 83-162): Sequential scans in for-loops instead of bulk operations\\n- **Repeated timezone conversions**: Each call to local-now converts to same timezone unnecessarily\\n\\n## Recommendations:\\n1. Add input validation for all user-supplied parameters\\n2. Create a utility function to handle regex compilation safely\\n3. Extract common scan logic into a single reusable function\\n4. Replace deprecated entid function or remove its usage\\n5. Move magic numbers to configuration constants\\n6. Optimize database queries with bulk operations\\n7. Add proper error handling and validation for all functions","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:53.593616294-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:59.771987594-08:00"}
+{"id":"integreat-4mc","title":"Clean up legacy code and remove commented out templates","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.479644441-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.479644441-08:00"}
+{"id":"integreat-54l","title":"Code Review: auto_ap.background","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.809902284-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:31:14.526449134-08:00","closed_at":"2026-02-08T09:31:14.526449134-08:00","close_reason":"Closed"}
+{"id":"integreat-59c","title":"Security: Fix SQL injection vulnerability in exports.clj","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:19.959391674-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:19.959391674-08:00"}
+{"id":"integreat-5a1","title":"Concurrency: Fix thread safety issues in sysco.clj","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:48.485672868-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:48.485672868-08:00"}
+{"id":"integreat-6cf","title":"Implement autopay and unpaid API unification","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:49.217286047-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:49.217286047-08:00"}
+{"id":"integreat-74f","title":"Security: Transaction validation and data integrity","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:29.251711914-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:29.251711914-08:00"}
+{"id":"integreat-7cx","title":"Code Review: auto_ap.shared_views","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.754073898-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:57.754073898-08:00"}
+{"id":"integreat-7de","title":"Security: Database connection management in imports","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:27.574962301-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:27.574962301-08:00"}
+{"id":"integreat-7en","title":"Code Review: auto_ap.ss.admin.background-jobs - Security and Code Quality Issues","description":"Code review of /home/noti/dev/integreat/src/clj/auto_ap/ssr/admin/background_jobs.clj revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- **No job name validation** (lines 53-58): Job names used to construct task ARNs without validation, enabling injection attacks\\n- **Hardcoded network configuration** (lines 150-52): Subnets and security groups hardcoded with direct IPs\\n- **Hardcoded security group IDs** (lines 151-52): Security credentials directly embedded in code\\n- **No rate limiting** (lines 56-61): Job execution lacks rate limiting, enabling DoS attacks\\n- **Fragile job name sanitization** (lines 161-62): Regex replacement approach is insecure\\n- **No URL validation** (lines 74, 84-86): S3 URLs not validated before use\\n\\n## Code Quality Issues:\\n- **Poor error handling** (lines 30-37): AWS API errors not handled, could crash page\\n- **Code duplication** (lines 46-52, 53-58):  and  have identical logic\\n- **Magic strings** (lines 33-42, 224-42): Job names hardcoded in select options and processing\\n- **Inconsistent error handling**: Mixed approach to form errors and API errors\\n\\n## Performance Issues:\\n- **Inefficient task querying** (lines 30-37): Two separate AWS API calls instead of one\\n- **Nested AWS calls** (lines 35-36): Multiple nested API calls increase complexity\\n- **No caching**: Repeated API calls to  without memoization\\n\\n## Recommendations:\\n1. Add input validation for all user-supplied parameters\\n2. Extract hardcoded configuration to environment variables or config files\\n3. Implement rate limiting on job execution\\n4. Use secure sanitization for job names\\n5. Add proper error handling for AWS API calls\\n6. Remove code duplication by extracting common logic\\n7. Optimize AWS API calls and add caching where appropriate\\n8. Validate S3 URLs before use","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:31:15.621682311-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:31:22.196700831-08:00"}
+{"id":"integreat-8jt","title":"Performance: Fix potential memory leak in client hydration","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:56.135939778-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:56.135939778-08:00"}
+{"id":"integreat-8p7","title":"Code Review: auto_ap.client_routes","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.389725276-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:57.389725276-08:00"}
+{"id":"integreat-9o2","title":"Code Review: auto_ap.ss","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:56.653394004-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:56.653394004-08:00"}
+{"id":"integreat-adj","title":"Performance: Fix CSV writing efficiency in exports.clj","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:21.877285694-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:21.877285694-08:00"}
+{"id":"integreat-ae3","title":"Investigate iol-ion module and security review requirements","description":"iol-ion appears to be an external or internal module that provides query functions used throughout the codebase:\\n\\nFunctions used:\\n- iol-ion.query/ident (line 98 in transaction_rules.clj)\\n- iol-ion.query/recent-date (line 317 in transaction_rules.clj)\\n- iol-ion.query/-\u003epattern (lines 323, 541 in transaction_rules.clj)\\n- iol-ion.query/dom (lines 361, 368 in transaction_rules.clj)\\n\\nNeeds investigation:\\n1. Is iol-ion a third-party library or internal module?\\n2. What security concerns exist in its usage?\\n3. Is there proper input validation in its functions?\\n4. Are there any potential injection vulnerabilities?\\n5. What are the dependencies and version requirements?\\n\\nSearch in:\\n- project.clj or deps.edn for dependencies\\n- src directory for module definition\\n- Documentation or README files","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:31.587996635-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:34.841745089-08:00"}
+{"id":"integreat-aut","title":"Fix payment query parameter parsing and implement proper decoding","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:46.65410618-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:46.65410618-08:00"}
+{"id":"integreat-bct","title":"Complete IOL integration with Datomic Cloud","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.056089489-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.056089489-08:00"}
+{"id":"integreat-d8q","title":"Code Review: auto_ap.main","status":"in_progress","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.224210511-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:51.465831393-08:00"}
+{"id":"integreat-dsb","title":"Performance: External API calls should be asynchronous","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:29.66389647-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:29.66389647-08:00"}
+{"id":"integreat-edg","title":"Fix grid page helper issues and form bubbling problems","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.844140503-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.844140503-08:00"}
+{"id":"integreat-g4b","title":"Complete wizard implementation and make it more modular","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:52.493115251-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:52.493115251-08:00"}
+{"id":"integreat-gf0","title":"Performance: Fix memory leak in client cache","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.846092823-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:28.846092823-08:00"}
+{"id":"integreat-ifw","title":"Add Plaid merchant integration and improve vendors module","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.076207245-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.076207245-08:00"}
+{"id":"integreat-lov","title":"Security: Add input validation to all routes","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:21.423853589-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:21.423853589-08:00"}
+{"id":"integreat-mt4","title":"Code Review: auto_ap.jobs","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.921445539-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:54.921445539-08:00"}
+{"id":"integreat-mxf","title":"Security: Fix error information leakage","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:56.506580155-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:56.506580155-08:00"}
+{"id":"integreat-opb","title":"Security: Fix SQL injection risk in close_auto_invoices","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:47.576841414-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:47.576841414-08:00"}
+{"id":"integreat-oyo","title":"Componentize transaction rules and improve form handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.44170363-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.44170363-08:00"}
+{"id":"integreat-pc1","title":"Complete real user testing for invoices and add credit from balance support","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:46.269009169-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:46.269009169-08:00"}
+{"id":"integreat-qj2","title":"Improve component structure and implement better error handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:52.132393487-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:52.132393487-08:00"}
+{"id":"integreat-rlj","title":"Complete wizard step structure and modularize page components","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:53.993488192-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:53.993488192-08:00"}
+{"id":"integreat-s53","title":"Security: Remove hardcoded NTG API key in exports.clj","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:20.457790327-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:20.457790327-08:00"}
+{"id":"integreat-s5h","title":"Resource: Fix resource leaks in import_uploaded_invoices","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:48.026329699-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:48.026329699-08:00"}
+{"id":"integreat-syf","title":"Code Review: auto_ap.graphql","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:55.620533412-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:55.620533412-08:00"}
+{"id":"integreat-uc3","title":"Security: Input sanitization and validation in job functions","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:46.60155898-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:46.60155898-08:00"}
+{"id":"integreat-vk3","title":"Add feature flags system and signature support","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.419253869-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.419253869-08:00"}
+{"id":"integreat-vkf","title":"Improve form handling and remove unused code","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:49.592681075-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:49.592681075-08:00"}
+{"id":"integreat-vvk","title":"Performance: Fix N+1 query problems in exports.clj","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:20.96494325-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:20.96494325-08:00"}
+{"id":"integreat-w1i","title":"Improve input components and data grid implementations","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:47.721945968-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:47.721945968-08:00"}
+{"id":"integreat-y3e","title":"Improve typeahead component and implement proper query handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:53.602661377-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:53.602661377-08:00"}
+{"id":"integreat-y72","title":"Enhance ledger reports and improve navigation/aside components","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.101954827-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.101954827-08:00"}
+{"id":"integreat-yq9","title":"Remove deprecated code and clean up unused functions","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:54.367393577-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:54.367393577-08:00"}
+{"id":"integreat-zly","title":"Code Review: auto_ap.permissions - Security and Maintainability Issues","description":"Code review of /home/noti/dev/integreat/src/cljc/auto_ap/permissions.cljc revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- Client access control bypass: Non-admins completely blocked if client-id is nil (lines 22-24)\\n- No input validation: Client IDs and user data not validated (lines 10-11, 17)\\n- Trust-based user object: No schema validation for user data\\n\\n## Maintainability Issues:\\n- Extreme code duplication: Permission logic repeated 4 times across different role checks (lines 26-141)\\n- Magic strings: Inconsistent role representation (mixing keywords and strings)\\n- Hardcoded permissions: No separation from business logic\\n- No unit tests: No test coverage for permission checks\\n\\n## Performance Issues:\\n- Redundant set creation on every call (lines 22-23)\\n- Repeated condition checks for each role\\n\\n## Recommendations:\\n1. Implement schema validation for user data using malli\\n2. Extract permissions to data structure following DRY principle\\n3. Add client-id validation with pos-int?\\n4. Add unit tests for all permission sets\\n5. Move set creation outside function or add short-circuit for admin role\\n\\nSee full review for detailed analysis and refactoring suggestions.","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:01.992071212-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:05.576405896-08:00"}
+{"id":"integreat-zn0","title":"Implement cash drawer shift functionality","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.76190647-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.76190647-08:00"}
+{"id":"integreat-zt8","title":"Complete invoice totals implementation to include expense accounts","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.848572114-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.848572114-08:00"}
diff --git a/.claude/skills/clojure-eval/SKILL.md b/.claude/skills/clojure-eval/SKILL.md
new file mode 100644
index 00000000..36d58650
--- /dev/null
+++ b/.claude/skills/clojure-eval/SKILL.md
@@ -0,0 +1,174 @@
+---
+name: clojure-eval
+description: Evaluate Clojure code via nREPL using clj-nrepl-eval. Use this when you need to test code, check if edited files compile, verify function behavior, or interact with a running REPL session.
+---
+
+# Clojure REPL Evaluation
+
+## When to Use This Skill
+
+Use this skill when you need to:
+- **Verify that edited Clojure files compile and load correctly**
+- Test function behavior interactively
+- Check the current state of the REPL
+- Debug code by evaluating expressions
+- Require or load namespaces for testing
+- Validate that code changes work before committing
+
+## How It Works
+
+The `clj-nrepl-eval` command evaluates Clojure code against an nREPL server. **Session state persists between evaluations**, so you can require a namespace in one evaluation and use it in subsequent calls. Each host:port combination maintains its own session file.
+
+## Instructions
+
+### 0. Discover and select nREPL server
+
+First, discover what nREPL servers are running in the current directory:
+
+```bash
+clj-nrepl-eval --discover-ports
+```
+
+This will show all nREPL servers (Clojure, Babashka, shadow-cljs, etc.) running in the current project directory.
+
+**Then use the AskUserQuestion tool:**
+
+- **If ports are discovered:** Prompt user to select which nREPL port to use:
+  - **question:** "Which nREPL port would you like to use?"
+  - **header:** "nREPL Port"
+  - **options:** Present each discovered port as an option with:
+    - **label:** The port number 
+    - **description:** The server type and status (e.g., "Clojure nREPL server in current directory")
+  - Include up to 4 discovered ports as options
+  - The user can select "Other" to enter a custom port number
+
+- **If no ports are discovered:** Prompt user how to start an nREPL server:
+  - **question:** "No nREPL servers found. How would you like to start one?"
+  - **header:** "Start nREPL"
+  - **options:**
+    - **label:** "deps.edn alias", **description:** "Find and use an nREPL alias in deps.edn"
+    - **label:** "Leiningen", **description:** "Start nREPL using 'lein repl'"
+  - The user can select "Other" for alternative methods or if they already have a server running on a specific port
+
+IMPORTANT: IF you start a REPL do not supply a port let the nREPL start and return the port that it was started on.
+
+### 1. Evaluate Clojure Code
+
+> Evaluation automatically connects to the given port
+
+Use the `-p` flag to specify the port and pass your Clojure code.
+
+**Recommended: Pass code as a command-line argument:**
+```bash
+clj-nrepl-eval -p <PORT> "(+ 1 2 3)"
+```
+
+**For multiple expressions (single line):**
+```bash
+clj-nrepl-eval -p <PORT> "(def x 10) (+ x 20)"
+```
+
+**Alternative: Using heredoc (may require permission approval for multiline commands):**
+```bash
+clj-nrepl-eval -p <PORT> <<'EOF'
+(def x 10)
+(+ x 20)
+EOF
+```
+
+**Alternative: Via stdin pipe:**
+```bash
+echo "(+ 1 2 3)" | clj-nrepl-eval -p <PORT>
+```
+
+### 2. Display nREPL Sessions
+
+**Discover all nREPL servers in current directory:**
+```bash
+clj-nrepl-eval --discover-ports
+```
+Shows all running nREPL servers in the current project directory, including their type (clj/bb/basilisp) and whether they match the current working directory.
+
+**Check previously connected sessions:**
+```bash
+clj-nrepl-eval --connected-ports
+```
+Shows only connections you have made before (appears after first evaluation on a port).
+
+### 3. Common Patterns
+
+**Require a namespace (always use :reload to pick up changes):**
+```bash
+clj-nrepl-eval -p <PORT> "(require '[my.namespace :as ns] :reload)"
+```
+
+**Test a function after requiring:**
+```bash
+clj-nrepl-eval -p <PORT> "(ns/my-function arg1 arg2)"
+```
+
+**Check if a file compiles:**
+```bash
+clj-nrepl-eval -p <PORT> "(require 'my.namespace :reload)"
+```
+
+**Multiple expressions:**
+```bash
+clj-nrepl-eval -p <PORT> "(def x 10) (* x 2) (+ x 5)"
+```
+
+**Complex multiline code (using heredoc):**
+```bash
+clj-nrepl-eval -p <PORT> <<'EOF'
+(def x 10)
+(* x 2)
+(+ x 5)
+EOF
+```
+*Note: Heredoc syntax may require permission approval.*
+
+**With custom timeout (in milliseconds):**
+```bash
+clj-nrepl-eval -p <PORT> --timeout 5000 "(long-running-fn)"
+```
+
+**Reset the session (clears all state):**
+```bash
+clj-nrepl-eval -p <PORT> --reset-session
+clj-nrepl-eval -p <PORT> --reset-session "(def x 1)"
+```
+
+## Available Options
+
+- `-p, --port PORT` - nREPL port (required)
+- `-H, --host HOST` - nREPL host (default: 127.0.0.1)
+- `-t, --timeout MILLISECONDS` - Timeout (default: 120000 = 2 minutes)
+- `-r, --reset-session` - Reset the persistent nREPL session
+- `-c, --connected-ports` - List previously connected nREPL sessions
+- `-d, --discover-ports` - Discover nREPL servers in current directory
+- `-h, --help` - Show help message
+
+## Important Notes
+
+- **Prefer command-line arguments:** Pass code as quoted strings: `clj-nrepl-eval -p <PORT> "(+ 1 2 3)"` - works with existing permissions
+- **Heredoc for complex code:** Use heredoc (`<<'EOF' ... EOF`) for truly multiline code, but note it may require permission approval
+- **Sessions persist:** State (vars, namespaces, loaded libraries) persists across invocations until the nREPL server restarts or `--reset-session` is used
+- **Automatic delimiter repair:** The tool automatically repairs missing or mismatched parentheses
+- **Always use :reload:** When requiring namespaces, use `:reload` to pick up recent changes
+- **Default timeout:** 2 minutes (120000ms) - increase for long-running operations
+- **Input precedence:** Command-line arguments take precedence over stdin
+
+## Typical Workflow
+
+1. Discover nREPL servers: `clj-nrepl-eval --discover-ports`
+2. Use **AskUserQuestion** tool to prompt user to select a port
+3. Require namespace:
+   ```bash
+   clj-nrepl-eval -p <PORT> "(require '[my.ns :as ns] :reload)"
+   ```
+4. Test function:
+   ```bash
+   clj-nrepl-eval -p <PORT> "(ns/my-fn ...)"
+   ```
+5. Iterate: Make changes, re-require with `:reload`, test again
+
diff --git a/.claude/skills/clojure-eval/examples.md b/.claude/skills/clojure-eval/examples.md
new file mode 100644
index 00000000..003b5aeb
--- /dev/null
+++ b/.claude/skills/clojure-eval/examples.md
@@ -0,0 +1,82 @@
+# clj-nrepl-eval Examples
+
+## Discovery
+
+```bash
+clj-nrepl-eval --connected-ports
+```
+
+## Heredoc for Multiline Code
+
+```bash
+clj-nrepl-eval -p 7888 <<'EOF'
+(defn greet [name]
+  (str "Hello, " name "!"))
+
+(greet "Claude")
+EOF
+```
+
+### Heredoc Simplifies String Escaping
+
+Heredoc avoids shell escaping issues with quotes, backslashes, and special characters:
+
+```bash
+# With heredoc - no escaping needed
+clj-nrepl-eval -p 7888 <<'EOF'
+(def regex #"\\d{3}-\\d{4}")
+(def message "She said \"Hello!\" and waved")
+(def path "C:\\Users\\name\\file.txt")
+(println message)
+EOF
+
+# Without heredoc - requires complex escaping
+clj-nrepl-eval -p 7888 "(def message \"She said \\\"Hello!\\\" and waved\")"
+```
+
+## Working with Project Namespaces
+
+```bash
+# Test a function after requiring
+clj-nrepl-eval -p 7888 <<'EOF'
+(require '[clojure-mcp-light.delimiter-repair :as dr] :reload)
+(dr/delimiter-error? "(defn foo [x]")
+EOF
+```
+
+## Verify Compilation After Edit
+
+```bash
+# If this returns nil, the file compiled successfully
+clj-nrepl-eval -p 7888 "(require 'clojure-mcp-light.hook :reload)"
+```
+
+## Session Management
+
+```bash
+# Reset session if state becomes corrupted
+clj-nrepl-eval -p 7888 --reset-session
+```
+
+## Common Workflow Patterns
+
+### Load, Test, Iterate
+
+```bash
+# After editing a file, reload and test in one command
+clj-nrepl-eval -p 7888 <<'EOF'
+(require '[my.namespace :as ns] :reload)
+(ns/my-function test-data)
+EOF
+```
+
+### Run Tests After Changes
+
+```bash
+clj-nrepl-eval -p 7888 <<'EOF'
+(require '[my.project.core :as core] :reload)
+(require '[my.project.core-test :as test] :reload)
+(clojure.test/run-tests 'my.project.core-test)
+EOF
+```
+
diff --git a/AGENTS.md b/AGENTS.md
index 78c7c75e..3dec65dd 100644
--- a/AGENTS.md
+++ b/AGENTS.md
@@ -2,6 +2,19 @@
 
 This project uses **bd** (beads) for issue tracking. Run `bd onboard` to get started.
 
+## Issue Tracking
+
+This project uses **bd (beads)** for issue tracking.
+Run `bd prime` for workflow context, or install hooks (`bd hooks install`) for auto-injection.
+
+**Quick reference:**
+- `bd ready` - Find unblocked work
+- `bd create "Title" --type task --priority 2` - Create issue
+- `bd close <id>` - Complete work
+- `bd sync` - Sync with git (run at session end)
+
+For full workflow details: `bd prime`
+
 ## Quick Reference
 
 ```bash

From 53625e458314a7cd8ebc57317a2a8c364b78954a Mon Sep 17 00:00:00 2001
From: Bryce <bryce@brycecovertoperations.com>
Date: Sat, 21 Feb 2026 22:53:05 -0800
Subject: [PATCH 4/7] Makes invoices use the closed_at date.

---
 .beads/issues.jsonl              | 67 ++++++++++++++++++--------------
 src/clj/auto_ap/square/core3.clj | 66 +++++++++++++++++--------------
 2 files changed, 75 insertions(+), 58 deletions(-)

diff --git a/.beads/issues.jsonl b/.beads/issues.jsonl
index 0f64cf33..68609603 100644
--- a/.beads/issues.jsonl
+++ b/.beads/issues.jsonl
@@ -1,64 +1,73 @@
-{"id":"integreat-00t","title":"Security: Input validation and sanitization in import functions","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.0129384-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:28.0129384-08:00"}
-{"id":"integreat-01o","title":"Security: Remove hardcoded API keys in insight_outcome_recommendation","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:46.141653019-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:46.141653019-08:00"}
-{"id":"integreat-08c","title":"Performance: Fix N+1 query problem in sales_summaries","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:47.102267818-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:47.102267818-08:00"}
+{"id":"integreat-00t","title":"Security: Input validation and sanitization in import functions","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.0129384-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:33:06.050946022-08:00","closed_at":"2026-02-08T13:33:06.050946022-08:00","close_reason":"Code review completed - import_uploaded_invoices.clj reviewed"}
+{"id":"integreat-01o","title":"Security: Remove hardcoded API keys in insight_outcome_recommendation","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:46.141653019-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:31:42.926029101-08:00","closed_at":"2026-02-08T13:31:42.926029101-08:00","close_reason":"Code review completed - Hardcoded Pinecone API key found at lines 31, 48"}
+{"id":"integreat-08c","title":"Performance: Fix N+1 query problem in sales_summaries","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:47.102267818-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:31:42.899786826-08:00","closed_at":"2026-02-08T13:31:42.899786826-08:00","close_reason":"Code review completed - N+1 queries identified throughout sales_summaries.clj"}
+{"id":"integreat-0df","title":"Code review: auto_ap.ssr.admin.transaction_rules","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:26:21.41732477-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:26:50.545369921-08:00","closed_at":"2026-02-08T13:26:50.545369921-08:00","close_reason":"Closed"}
 {"id":"integreat-0ic","title":"Clientize sales summaries and add schema cleanup","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:43.768991121-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:43.768991121-08:00"}
-{"id":"integreat-0tf","title":"Security: Remove hardcoded cookie secret","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:54.956951237-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:54.956951237-08:00"}
+{"id":"integreat-0kl","title":"Code review: auto_ap.ssr.admin.import_batch","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:25:10.532871346-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:25:29.784001757-08:00","closed_at":"2026-02-08T13:25:29.784001757-08:00","close_reason":"Closed"}
+{"id":"integreat-0tf","title":"Security: Remove hardcoded cookie secret","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:54.956951237-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.535163011-08:00","closed_at":"2026-02-08T13:34:04.535163011-08:00","close_reason":"Code review completed - Hardcoded cookie store key found at lines 447-448"}
 {"id":"integreat-0z7","title":"Complete test coverage for transactions and invoice functionality","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:54.738460045-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:54.738460045-08:00"}
 {"id":"integreat-104","title":"Code Review: auto_ap.permissions","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.102943422-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:00.915797483-08:00","closed_at":"2026-02-08T09:30:00.915797483-08:00","close_reason":"Closed"}
 {"id":"integreat-1b8","title":"Code Review: auto_ap.ledger","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.457434281-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:52.517437805-08:00","closed_at":"2026-02-08T09:30:52.517437805-08:00","close_reason":"Closed"}
-{"id":"integreat-1ex","title":"Security: Implement rate limiting","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:55.32191677-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:55.32191677-08:00"}
+{"id":"integreat-1ex","title":"Security: Implement rate limiting","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:55.32191677-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.585536605-08:00","closed_at":"2026-02-08T13:34:04.585536605-08:00","close_reason":"Code review completed - Rate limiting not implemented, recommendation added"}
 {"id":"integreat-1ff","title":"Code Review: iol_ion","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:59.195722157-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:30.631572319-08:00","closed_at":"2026-02-08T09:30:30.631572319-08:00","close_reason":"Closed"}
-{"id":"integreat-1ht","title":"Security: Add input validation and sanitization","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:55.707181622-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:55.707181622-08:00"}
-{"id":"integreat-1m3","title":"Security: Remove hardcoded JWT secrets","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:54.57377807-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:54.57377807-08:00"}
-{"id":"integreat-1qy","title":"Code Review: auto_ap.routes","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:55.26442193-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:55.26442193-08:00"}
-{"id":"integreat-278","title":"Security: Remove hardcoded Google credentials in auth.clj","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:19.491341584-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:19.491341584-08:00"}
+{"id":"integreat-1ht","title":"Security: Add input validation and sanitization","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:55.707181622-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.560514104-08:00","closed_at":"2026-02-08T13:34:04.560514104-08:00","close_reason":"Code review completed - handler.clj reviewed, input validation issues identified"}
+{"id":"integreat-1jz","title":"Code review: auto_ap.ssr.admin.excel_invoice","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:18:26.802261171-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:18:51.297567931-08:00","closed_at":"2026-02-08T13:18:51.297567931-08:00","close_reason":"Closed"}
+{"id":"integreat-1m3","title":"Security: Remove hardcoded JWT secrets","status":"in_progress","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:54.57377807-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:35:21.465147919-08:00"}
+{"id":"integreat-1oo","title":"Code review: auto_ap.ssr.admin.vendors","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:26:57.577293865-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:27:29.429533887-08:00","closed_at":"2026-02-08T13:27:29.429533887-08:00","close_reason":"Closed"}
+{"id":"integreat-1qy","title":"Code Review: auto_ap.routes","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:55.26442193-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:55.026115465-08:00","closed_at":"2026-02-08T13:29:55.026115465-08:00","close_reason":"No file found for this namespace"}
+{"id":"integreat-278","title":"Security: Remove hardcoded Google credentials in auth.clj","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:19.491341584-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:30:37.240560315-08:00","closed_at":"2026-02-08T13:30:37.240560315-08:00","close_reason":"Code review completed - JWT secret management reviewed"}
+{"id":"integreat-2cd","title":"Code review: auto_ap.ssr.admin.sales_summaries","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:25:56.325342803-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:26:17.717894907-08:00","closed_at":"2026-02-08T13:26:17.717894907-08:00","close_reason":"Closed"}
+{"id":"integreat-2ti","title":"Code review: auto_ap.ssr.admin.accounts","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T12:53:44.646685216-08:00","created_by":"Bryce","updated_at":"2026-02-08T12:55:55.094416105-08:00","closed_at":"2026-02-08T12:55:55.094416105-08:00","close_reason":"Closed"}
 {"id":"integreat-35k","title":"Fix session handling and authentication route issues","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:50.662486708-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:50.662486708-08:00"}
 {"id":"integreat-3a7","title":"Refactor clients module for better reusability, schemas, and bug fixes","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:44.681764032-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:44.681764032-08:00"}
-{"id":"integreat-3cp","title":"Code Review: auto_ap.import","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.573843708-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:54.573843708-08:00"}
-{"id":"integreat-3pr","title":"Code Review: auto_ap.ss_routes","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.020989213-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:57.020989213-08:00"}
-{"id":"integreat-46f","title":"Security: Rate limiting for external API calls","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.429193916-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:28.429193916-08:00"}
-{"id":"integreat-4ag","title":"Code Review: iol-ion.query - Security and Code Quality Issues","description":"Code review of /home/noti/dev/integreat/iol_ion/src/iol_ion/query.clj revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- **Regex Injection Vulnerability** (line 67-68): User input passed directly to regex compilation without sanitization, enabling ReDoS attacks\\n- **No input validation on date parameters** (lines 25-30, 46-54, 83-162): Invalid dates could cause Denial of Service attacks\\n- **No validation of client IDs** (lines 46-54, 83-162): Malicious client IDs could bypass access controls\\n- **Unsafe timezone handling** (line 70-75): Hardcoded timezone without validation or fallback could cause failures\\n- **Permission checking lacks validation** (lines 59-64): Assumes identity structure without validation\\n\\n## Code Quality Issues:\\n- **Extreme code duplication** (lines 83-162): 8 scan functions with identical structure except for index names and entity types\\n- **Obsolete function** (lines 7-9):  marked as \"not working in Datomic Cloud\" but still used\\n- **Magic numbers** (lines 25-30, 86-89): Hardcoded years (2001-2030) and days (90) should be configuration\\n- **Inconsistent client handling**: Mixed use of  vs direct client IDs\\n\\n## Performance Issues:\\n- **Inefficient database queries** (lines 83-162): Sequential scans in for-loops instead of bulk operations\\n- **Repeated timezone conversions**: Each call to local-now converts to same timezone unnecessarily\\n\\n## Recommendations:\\n1. Add input validation for all user-supplied parameters\\n2. Create a utility function to handle regex compilation safely\\n3. Extract common scan logic into a single reusable function\\n4. Replace deprecated entid function or remove its usage\\n5. Move magic numbers to configuration constants\\n6. Optimize database queries with bulk operations\\n7. Add proper error handling and validation for all functions","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:53.593616294-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:59.771987594-08:00"}
+{"id":"integreat-3cp","title":"Code Review: auto_ap.import","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.573843708-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:55.090966459-08:00","closed_at":"2026-02-08T13:29:55.090966459-08:00","close_reason":"No file found for this namespace"}
+{"id":"integreat-3pr","title":"Code Review: auto_ap.ss_routes","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.020989213-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:54.961399111-08:00","closed_at":"2026-02-08T13:29:54.961399111-08:00","close_reason":"No file found for this namespace"}
+{"id":"integreat-3y8","title":"Code review: auto_ap.ssr.admin.clients","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:42:10.903791187-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:47:29.495083383-08:00","closed_at":"2026-02-08T09:47:29.495083383-08:00","close_reason":"Closed"}
+{"id":"integreat-46f","title":"Security: Rate limiting for external API calls","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.429193916-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.63601665-08:00","closed_at":"2026-02-08T13:34:04.63601665-08:00","close_reason":"Code review completed - Rate limiting recommendations added"}
+{"id":"integreat-4ag","title":"Code Review: iol-ion.query - Security and Code Quality Issues","description":"Code review of /home/noti/dev/integreat/iol_ion/src/iol_ion/query.clj revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- **Regex Injection Vulnerability** (line 67-68): User input passed directly to regex compilation without sanitization, enabling ReDoS attacks\\n- **No input validation on date parameters** (lines 25-30, 46-54, 83-162): Invalid dates could cause Denial of Service attacks\\n- **No validation of client IDs** (lines 46-54, 83-162): Malicious client IDs could bypass access controls\\n- **Unsafe timezone handling** (line 70-75): Hardcoded timezone without validation or fallback could cause failures\\n- **Permission checking lacks validation** (lines 59-64): Assumes identity structure without validation\\n\\n## Code Quality Issues:\\n- **Extreme code duplication** (lines 83-162): 8 scan functions with identical structure except for index names and entity types\\n- **Obsolete function** (lines 7-9):  marked as \"not working in Datomic Cloud\" but still used\\n- **Magic numbers** (lines 25-30, 86-89): Hardcoded years (2001-2030) and days (90) should be configuration\\n- **Inconsistent client handling**: Mixed use of  vs direct client IDs\\n\\n## Performance Issues:\\n- **Inefficient database queries** (lines 83-162): Sequential scans in for-loops instead of bulk operations\\n- **Repeated timezone conversions**: Each call to local-now converts to same timezone unnecessarily\\n\\n## Recommendations:\\n1. Add input validation for all user-supplied parameters\\n2. Create a utility function to handle regex compilation safely\\n3. Extract common scan logic into a single reusable function\\n4. Replace deprecated entid function or remove its usage\\n5. Move magic numbers to configuration constants\\n6. Optimize database queries with bulk operations\\n7. Add proper error handling and validation for all functions","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:53.593616294-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:28:52.035161365-08:00","closed_at":"2026-02-08T13:28:52.035161365-08:00","close_reason":"Closed"}
 {"id":"integreat-4mc","title":"Clean up legacy code and remove commented out templates","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.479644441-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.479644441-08:00"}
 {"id":"integreat-54l","title":"Code Review: auto_ap.background","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.809902284-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:31:14.526449134-08:00","closed_at":"2026-02-08T09:31:14.526449134-08:00","close_reason":"Closed"}
-{"id":"integreat-59c","title":"Security: Fix SQL injection vulnerability in exports.clj","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:19.959391674-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:19.959391674-08:00"}
+{"id":"integreat-59c","title":"Security: Fix SQL injection vulnerability in exports.clj","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:19.959391674-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:30:37.208340718-08:00","closed_at":"2026-02-08T13:30:37.208340718-08:00","close_reason":"Code review completed - SQL injection vulnerability found in export-raw function"}
 {"id":"integreat-5a1","title":"Concurrency: Fix thread safety issues in sysco.clj","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:48.485672868-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:48.485672868-08:00"}
 {"id":"integreat-6cf","title":"Implement autopay and unpaid API unification","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:49.217286047-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:49.217286047-08:00"}
-{"id":"integreat-74f","title":"Security: Transaction validation and data integrity","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:29.251711914-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:29.251711914-08:00"}
-{"id":"integreat-7cx","title":"Code Review: auto_ap.shared_views","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.754073898-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:57.754073898-08:00"}
-{"id":"integreat-7de","title":"Security: Database connection management in imports","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:27.574962301-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:27.574962301-08:00"}
-{"id":"integreat-7en","title":"Code Review: auto_ap.ss.admin.background-jobs - Security and Code Quality Issues","description":"Code review of /home/noti/dev/integreat/src/clj/auto_ap/ssr/admin/background_jobs.clj revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- **No job name validation** (lines 53-58): Job names used to construct task ARNs without validation, enabling injection attacks\\n- **Hardcoded network configuration** (lines 150-52): Subnets and security groups hardcoded with direct IPs\\n- **Hardcoded security group IDs** (lines 151-52): Security credentials directly embedded in code\\n- **No rate limiting** (lines 56-61): Job execution lacks rate limiting, enabling DoS attacks\\n- **Fragile job name sanitization** (lines 161-62): Regex replacement approach is insecure\\n- **No URL validation** (lines 74, 84-86): S3 URLs not validated before use\\n\\n## Code Quality Issues:\\n- **Poor error handling** (lines 30-37): AWS API errors not handled, could crash page\\n- **Code duplication** (lines 46-52, 53-58):  and  have identical logic\\n- **Magic strings** (lines 33-42, 224-42): Job names hardcoded in select options and processing\\n- **Inconsistent error handling**: Mixed approach to form errors and API errors\\n\\n## Performance Issues:\\n- **Inefficient task querying** (lines 30-37): Two separate AWS API calls instead of one\\n- **Nested AWS calls** (lines 35-36): Multiple nested API calls increase complexity\\n- **No caching**: Repeated API calls to  without memoization\\n\\n## Recommendations:\\n1. Add input validation for all user-supplied parameters\\n2. Extract hardcoded configuration to environment variables or config files\\n3. Implement rate limiting on job execution\\n4. Use secure sanitization for job names\\n5. Add proper error handling for AWS API calls\\n6. Remove code duplication by extracting common logic\\n7. Optimize AWS API calls and add caching where appropriate\\n8. Validate S3 URLs before use","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:31:15.621682311-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:31:22.196700831-08:00"}
+{"id":"integreat-74f","title":"Security: Transaction validation and data integrity","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:29.251711914-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.611256589-08:00","closed_at":"2026-02-08T13:34:04.611256589-08:00","close_reason":"Code review completed - Transaction validation reviewed in multiple files"}
+{"id":"integreat-7cx","title":"Code Review: auto_ap.shared_views","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.754073898-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:39.003484636-08:00","closed_at":"2026-02-08T13:29:39.003484636-08:00","close_reason":"Closed"}
+{"id":"integreat-7de","title":"Security: Database connection management in imports","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:27.574962301-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:33:06.077037636-08:00","closed_at":"2026-02-08T13:33:06.077037636-08:00","close_reason":"Code review completed - No connection management issues found in import files"}
+{"id":"integreat-7en","title":"Code Review: auto_ap.ss.admin.background-jobs - Security and Code Quality Issues","description":"Code review of /home/noti/dev/integreat/src/clj/auto_ap/ssr/admin/background_jobs.clj revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- **No job name validation** (lines 53-58): Job names used to construct task ARNs without validation, enabling injection attacks\\n- **Hardcoded network configuration** (lines 150-52): Subnets and security groups hardcoded with direct IPs\\n- **Hardcoded security group IDs** (lines 151-52): Security credentials directly embedded in code\\n- **No rate limiting** (lines 56-61): Job execution lacks rate limiting, enabling DoS attacks\\n- **Fragile job name sanitization** (lines 161-62): Regex replacement approach is insecure\\n- **No URL validation** (lines 74, 84-86): S3 URLs not validated before use\\n\\n## Code Quality Issues:\\n- **Poor error handling** (lines 30-37): AWS API errors not handled, could crash page\\n- **Code duplication** (lines 46-52, 53-58):  and  have identical logic\\n- **Magic strings** (lines 33-42, 224-42): Job names hardcoded in select options and processing\\n- **Inconsistent error handling**: Mixed approach to form errors and API errors\\n\\n## Performance Issues:\\n- **Inefficient task querying** (lines 30-37): Two separate AWS API calls instead of one\\n- **Nested AWS calls** (lines 35-36): Multiple nested API calls increase complexity\\n- **No caching**: Repeated API calls to  without memoization\\n\\n## Recommendations:\\n1. Add input validation for all user-supplied parameters\\n2. Extract hardcoded configuration to environment variables or config files\\n3. Implement rate limiting on job execution\\n4. Use secure sanitization for job names\\n5. Add proper error handling for AWS API calls\\n6. Remove code duplication by extracting common logic\\n7. Optimize AWS API calls and add caching where appropriate\\n8. Validate S3 URLs before use","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:31:15.621682311-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:18:06.425132957-08:00","closed_at":"2026-02-08T13:18:06.425132957-08:00","close_reason":"Closed"}
 {"id":"integreat-8jt","title":"Performance: Fix potential memory leak in client hydration","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:56.135939778-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:56.135939778-08:00"}
-{"id":"integreat-8p7","title":"Code Review: auto_ap.client_routes","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.389725276-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:57.389725276-08:00"}
-{"id":"integreat-9o2","title":"Code Review: auto_ap.ss","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:56.653394004-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:56.653394004-08:00"}
+{"id":"integreat-8p7","title":"Code Review: auto_ap.client_routes","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.389725276-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:13.440742845-08:00","closed_at":"2026-02-08T13:34:13.440742845-08:00","close_reason":"No file found for auto_ap.client_routes namespace"}
+{"id":"integreat-9o2","title":"Code Review: auto_ap.ss","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:56.653394004-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:54.994180329-08:00","closed_at":"2026-02-08T13:29:54.994180329-08:00","close_reason":"No file found for this namespace"}
 {"id":"integreat-adj","title":"Performance: Fix CSV writing efficiency in exports.clj","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:21.877285694-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:21.877285694-08:00"}
 {"id":"integreat-ae3","title":"Investigate iol-ion module and security review requirements","description":"iol-ion appears to be an external or internal module that provides query functions used throughout the codebase:\\n\\nFunctions used:\\n- iol-ion.query/ident (line 98 in transaction_rules.clj)\\n- iol-ion.query/recent-date (line 317 in transaction_rules.clj)\\n- iol-ion.query/-\u003epattern (lines 323, 541 in transaction_rules.clj)\\n- iol-ion.query/dom (lines 361, 368 in transaction_rules.clj)\\n\\nNeeds investigation:\\n1. Is iol-ion a third-party library or internal module?\\n2. What security concerns exist in its usage?\\n3. Is there proper input validation in its functions?\\n4. Are there any potential injection vulnerabilities?\\n5. What are the dependencies and version requirements?\\n\\nSearch in:\\n- project.clj or deps.edn for dependencies\\n- src directory for module definition\\n- Documentation or README files","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:31.587996635-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:34.841745089-08:00"}
 {"id":"integreat-aut","title":"Fix payment query parameter parsing and implement proper decoding","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:46.65410618-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:46.65410618-08:00"}
 {"id":"integreat-bct","title":"Complete IOL integration with Datomic Cloud","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.056089489-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.056089489-08:00"}
-{"id":"integreat-d8q","title":"Code Review: auto_ap.main","status":"in_progress","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.224210511-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:51.465831393-08:00"}
+{"id":"integreat-d8q","title":"Code Review: auto_ap.main","notes":"Code review completed for auto_ap.views.main\n\n**Summary**: Found several issues ranging from performance to code quality.\n\n**High Priority**:\n- Inefficient key generation on line 90 using pr-str - causes unnecessary re-renders\n\n**Medium Priority**:\n- Permission check pattern duplication across 16 page methods\n- Insufficient nil handling for edge cases\n\n**Low Priority**:\n- Subscription frequency could be optimized\n- Growing page handler count suggests need for refactoring\n\n**Security**: All page routes properly check permissions - good security posture.\n\nFull detailed review saved to REVIEW_auto_ap.main.md","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.224210511-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:35:08.65588745-08:00","closed_at":"2026-02-08T09:35:08.65588745-08:00","close_reason":"Closed"}
 {"id":"integreat-dsb","title":"Performance: External API calls should be asynchronous","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:29.66389647-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:29.66389647-08:00"}
 {"id":"integreat-edg","title":"Fix grid page helper issues and form bubbling problems","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.844140503-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.844140503-08:00"}
 {"id":"integreat-g4b","title":"Complete wizard implementation and make it more modular","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:52.493115251-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:52.493115251-08:00"}
 {"id":"integreat-gf0","title":"Performance: Fix memory leak in client cache","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.846092823-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:28.846092823-08:00"}
 {"id":"integreat-ifw","title":"Add Plaid merchant integration and improve vendors module","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.076207245-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.076207245-08:00"}
+{"id":"integreat-iut","title":"Code review: auto_ap.ssr.admin.history","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:22:16.782050468-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:22:40.135978155-08:00","closed_at":"2026-02-08T13:22:40.135978155-08:00","close_reason":"Closed"}
 {"id":"integreat-lov","title":"Security: Add input validation to all routes","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:21.423853589-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:21.423853589-08:00"}
-{"id":"integreat-mt4","title":"Code Review: auto_ap.jobs","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.921445539-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:54.921445539-08:00"}
+{"id":"integreat-mt4","title":"Code Review: auto_ap.jobs","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.921445539-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:55.058776633-08:00","closed_at":"2026-02-08T13:29:55.058776633-08:00","close_reason":"No file found for this namespace"}
 {"id":"integreat-mxf","title":"Security: Fix error information leakage","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:56.506580155-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:56.506580155-08:00"}
-{"id":"integreat-opb","title":"Security: Fix SQL injection risk in close_auto_invoices","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:47.576841414-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:47.576841414-08:00"}
+{"id":"integreat-opb","title":"Security: Fix SQL injection risk in close_auto_invoices","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:47.576841414-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:33:26.149329059-08:00","closed_at":"2026-02-08T13:33:26.149329059-08:00","close_reason":"Code review completed - No SQL injection risk found, queries properly parameterized"}
 {"id":"integreat-oyo","title":"Componentize transaction rules and improve form handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.44170363-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.44170363-08:00"}
 {"id":"integreat-pc1","title":"Complete real user testing for invoices and add credit from balance support","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:46.269009169-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:46.269009169-08:00"}
 {"id":"integreat-qj2","title":"Improve component structure and implement better error handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:52.132393487-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:52.132393487-08:00"}
 {"id":"integreat-rlj","title":"Complete wizard step structure and modularize page components","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:53.993488192-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:53.993488192-08:00"}
-{"id":"integreat-s53","title":"Security: Remove hardcoded NTG API key in exports.clj","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:20.457790327-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:20.457790327-08:00"}
-{"id":"integreat-s5h","title":"Resource: Fix resource leaks in import_uploaded_invoices","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:48.026329699-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:48.026329699-08:00"}
-{"id":"integreat-syf","title":"Code Review: auto_ap.graphql","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:55.620533412-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:20:55.620533412-08:00"}
-{"id":"integreat-uc3","title":"Security: Input sanitization and validation in job functions","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:46.60155898-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:46.60155898-08:00"}
+{"id":"integreat-s53","title":"Security: Remove hardcoded NTG API key in exports.clj","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:20.457790327-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:30:37.176681233-08:00","closed_at":"2026-02-08T13:30:37.176681233-08:00","close_reason":"Code review completed - Hardcoded API key found at lines 659, 665"}
+{"id":"integreat-s5h","title":"Resource: Fix resource leaks in import_uploaded_invoices","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:48.026329699-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:31:42.874323093-08:00","closed_at":"2026-02-08T13:31:42.874323093-08:00","close_reason":"Code review completed - Resource leaks identified in lines 43-76"}
+{"id":"integreat-syf","title":"Code Review: auto_ap.graphql","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:55.620533412-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:39.033441719-08:00","closed_at":"2026-02-08T13:29:39.033441719-08:00","close_reason":"Closed"}
+{"id":"integreat-uc3","title":"Security: Input sanitization and validation in job functions","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:46.60155898-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:31:42.951371743-08:00","closed_at":"2026-02-08T13:31:42.951371743-08:00","close_reason":"Code review completed - Job functions reviewed, input validation needed"}
 {"id":"integreat-vk3","title":"Add feature flags system and signature support","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.419253869-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.419253869-08:00"}
 {"id":"integreat-vkf","title":"Improve form handling and remove unused code","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:49.592681075-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:49.592681075-08:00"}
-{"id":"integreat-vvk","title":"Performance: Fix N+1 query problems in exports.clj","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:20.96494325-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:20.96494325-08:00"}
+{"id":"integreat-vvk","title":"Performance: Fix N+1 query problems in exports.clj","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:20.96494325-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:30:37.144024095-08:00","closed_at":"2026-02-08T13:30:37.144024095-08:00","close_reason":"Code review completed - N+1 queries identified in exports.clj"}
 {"id":"integreat-w1i","title":"Improve input components and data grid implementations","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:47.721945968-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:47.721945968-08:00"}
 {"id":"integreat-y3e","title":"Improve typeahead component and implement proper query handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:53.602661377-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:53.602661377-08:00"}
 {"id":"integreat-y72","title":"Enhance ledger reports and improve navigation/aside components","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.101954827-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.101954827-08:00"}
 {"id":"integreat-yq9","title":"Remove deprecated code and clean up unused functions","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:54.367393577-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:54.367393577-08:00"}
-{"id":"integreat-zly","title":"Code Review: auto_ap.permissions - Security and Maintainability Issues","description":"Code review of /home/noti/dev/integreat/src/cljc/auto_ap/permissions.cljc revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- Client access control bypass: Non-admins completely blocked if client-id is nil (lines 22-24)\\n- No input validation: Client IDs and user data not validated (lines 10-11, 17)\\n- Trust-based user object: No schema validation for user data\\n\\n## Maintainability Issues:\\n- Extreme code duplication: Permission logic repeated 4 times across different role checks (lines 26-141)\\n- Magic strings: Inconsistent role representation (mixing keywords and strings)\\n- Hardcoded permissions: No separation from business logic\\n- No unit tests: No test coverage for permission checks\\n\\n## Performance Issues:\\n- Redundant set creation on every call (lines 22-23)\\n- Repeated condition checks for each role\\n\\n## Recommendations:\\n1. Implement schema validation for user data using malli\\n2. Extract permissions to data structure following DRY principle\\n3. Add client-id validation with pos-int?\\n4. Add unit tests for all permission sets\\n5. Move set creation outside function or add short-circuit for admin role\\n\\nSee full review for detailed analysis and refactoring suggestions.","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:01.992071212-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:05.576405896-08:00"}
+{"id":"integreat-zly","title":"Code Review: auto_ap.permissions - Security and Maintainability Issues","description":"Code review of /home/noti/dev/integreat/src/cljc/auto_ap/permissions.cljc revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- Client access control bypass: Non-admins completely blocked if client-id is nil (lines 22-24)\\n- No input validation: Client IDs and user data not validated (lines 10-11, 17)\\n- Trust-based user object: No schema validation for user data\\n\\n## Maintainability Issues:\\n- Extreme code duplication: Permission logic repeated 4 times across different role checks (lines 26-141)\\n- Magic strings: Inconsistent role representation (mixing keywords and strings)\\n- Hardcoded permissions: No separation from business logic\\n- No unit tests: No test coverage for permission checks\\n\\n## Performance Issues:\\n- Redundant set creation on every call (lines 22-23)\\n- Repeated condition checks for each role\\n\\n## Recommendations:\\n1. Implement schema validation for user data using malli\\n2. Extract permissions to data structure following DRY principle\\n3. Add client-id validation with pos-int?\\n4. Add unit tests for all permission sets\\n5. Move set creation outside function or add short-circuit for admin role\\n\\nSee full review for detailed analysis and refactoring suggestions.","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:01.992071212-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:13.389737709-08:00","closed_at":"2026-02-08T13:34:13.389737709-08:00","close_reason":"No file found for auto_ap.permissions namespace"}
 {"id":"integreat-zn0","title":"Implement cash drawer shift functionality","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.76190647-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.76190647-08:00"}
+{"id":"integreat-zp6","title":"Code review: auto_ap.ssr.admin.sales_powerqueries","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:25:33.754411978-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:25:52.806787427-08:00","closed_at":"2026-02-08T13:25:52.806787427-08:00","close_reason":"Closed"}
 {"id":"integreat-zt8","title":"Complete invoice totals implementation to include expense accounts","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.848572114-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.848572114-08:00"}
diff --git a/src/clj/auto_ap/square/core3.clj b/src/clj/auto_ap/square/core3.clj
index a0df0672..dee59bd0 100644
--- a/src/clj/auto_ap/square/core3.clj
+++ b/src/clj/auto_ap/square/core3.clj
@@ -349,7 +349,10 @@
                        (s/reduce conj []))]
                      [(remove-nils
                        #:sales-order
-                        {:date        (coerce/to-date (time/to-time-zone (coerce/to-date-time (:created_at order)) (time/time-zone-for-id "America/Los_Angeles")))
+                        {:date        (if (= "Invoices" (:name (:source order)))
+                                        (when (:closed_at order)
+                                          (coerce/to-date (time/to-time-zone (coerce/to-date-time (:closed_at order)) (time/time-zone-for-id "America/Los_Angeles")))) 
+                                        (coerce/to-date (time/to-time-zone (coerce/to-date-time (:created_at order)) (time/time-zone-for-id "America/Los_Angeles"))))
                          :client      (:db/id client)
                          :location    (:square-location/client-location location)
                          :external-id (str "square/order/" (:client/code client) "-" (:square-location/client-location location) "-" (:id order))
@@ -379,6 +382,9 @@
                                     ;; sometimes orders stay open in square. At least one payment
                                     ;; is needed to import, in order to avoid importing orders in-progress.
   (and
+   (if (= "Invoices" (:name (:source order)))
+     (boolean (:closed_at order))
+     true)
    (or (> (count (:tenders order)) 0)
        (seq (:returns order)))
    (or (= #{} (set (map #(:status (:card_details %)) (:tenders order))))
@@ -972,13 +978,14 @@
                                      :headers (client-base-headers client)
                                      :as      :json})
                  :body)))
-(->>
-     @(let [[c [l]] (get-square-client-and-location "NGGG")]
+  (->>
+   @(let [[c [l]] (get-square-client-and-location "NGGG")]
 
 
-        (search c l (time/plus (time/now))))
-     (filter (fn [r]
-               (str/starts-with? (:created_at r) "2024-03-14"))))
+      (search c l (time/now) (time/plus (time/now) (time/days -1))))
+   
+   (filter (fn [r]
+             (str/starts-with? (:created_at r) "2024-03-14"))))
 
   (def refs
     (->>
@@ -995,35 +1002,35 @@
 
     (map (fn [r] @(get-payment c (:payment_id r))) refs))
 
-(get-square-client-and-location "NGGB")
+  (get-square-client-and-location "NGGB")
 
   (def my-results
     (let [[c [l]] (get-square-client-and-location "NGFA")]))
 
   (clojure.data.csv/write-csv *out*
-                            (for [c  (get-square-clients)
-                                  l (:client/square-locations c)
-                                  :when (:square-location/client-location l)
-                                  bad-row (try (->> @(search c l (coerce/to-date-time #inst "2024-04-01T00:00:00-07:00") (coerce/to-date-time #inst "2024-04-15T23:59:00-07:00"))
-                                                    (filter #(not (should-import-order? %)))
-                                                    (map #(first (deref (order->sales-order c l %))))
-                                                    (filter (fn already-exists [o]
-                                                              (when (:sales-order/external-id o)
-                                                                (seq (dc/q '[:find ?i
-                                                                             :in $ ?ei
-                                                                             :where [?i :sales-order/external-id ?ei]]
-                                                                           (dc/db conn)
-                                                                           (:sales-order/external-id o)))))))
-                                               (catch Exception e
-                                                 []))]
-                              [(:client/code c) (atime/unparse-local (clj-time.coerce/to-date-time (:sales-order/date bad-row)) atime/normal-date) (:sales-order/total bad-row)  (:sales-order/tax bad-row) (:sales-order/tip bad-row) (:db/id bad-row)])
-                            :separator \tab)
+                              (for [c  (get-square-clients)
+                                    l (:client/square-locations c)
+                                    :when (:square-location/client-location l)
+                                    bad-row (try (->> @(search c l (coerce/to-date-time #inst "2024-04-01T00:00:00-07:00") (coerce/to-date-time #inst "2024-04-15T23:59:00-07:00"))
+                                                      (filter #(not (should-import-order? %)))
+                                                      (map #(first (deref (order->sales-order c l %))))
+                                                      (filter (fn already-exists [o]
+                                                                (when (:sales-order/external-id o)
+                                                                  (seq (dc/q '[:find ?i
+                                                                               :in $ ?ei
+                                                                               :where [?i :sales-order/external-id ?ei]]
+                                                                             (dc/db conn)
+                                                                             (:sales-order/external-id o)))))))
+                                                 (catch Exception e
+                                                   []))]
+                                [(:client/code c) (atime/unparse-local (clj-time.coerce/to-date-time (:sales-order/date bad-row)) atime/normal-date) (:sales-order/total bad-row)  (:sales-order/tax bad-row) (:sales-order/tip bad-row) (:db/id bad-row)])
+                              :separator \tab)
   
 
 
 
   ;; => 
-
+  
 
 
   (require 'auto-ap.time-reader)
@@ -1035,7 +1042,7 @@
 
 
                            (def z @(search c l #clj-time/date-time "2025-02-23T00:00:00-08:00"
-                                             #clj-time/date-time "2025-02-28T00:00:00-08:00"))
+                                           #clj-time/date-time "2025-02-28T00:00:00-08:00"))
                            (take 10 (map #(first (deref (order->sales-order c l %))) z)))
 
 
@@ -1058,10 +1065,11 @@
   #_(filter (comp #{"OTHER"} :type) (mapcat :tenders z))
   
 
-  (let [[c [l]] (get-square-client-and-location "LFHH")]
-    (search c l (clj-time.coerce/from-date #inst "2025-02-28") (clj-time.coerce/from-date #inst "2025-03-01"))
+  @(let [[c [l]] (get-square-client-and-location "NGRY")]
+    #_(search c l (clj-time.coerce/from-date #inst "2025-02-28") (clj-time.coerce/from-date #inst "2025-03-01"))
+
+    (order->sales-order c l (:order (get-order c l "KdvwntmfMNTKBu8NOocbxatOs18YY" )))
 
-    (:order (get-order c l "CLjQqkzVfGa82o5hEFUrGtUGO6QZY" ))
     )
   
   )

From 01347ff3f56a59ef2e22e92833704a7cfa6cc039 Mon Sep 17 00:00:00 2001
From: Bryce <bryce@integreatconsult.com>
Date: Mon, 2 Mar 2026 22:53:53 -0800
Subject: [PATCH 5/7] fixes balance sheet

---
 src/clj/auto_ap/ssr/ledger/balance_sheet.clj | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/clj/auto_ap/ssr/ledger/balance_sheet.clj b/src/clj/auto_ap/ssr/ledger/balance_sheet.clj
index 185faba3..adfc67e5 100644
--- a/src/clj/auto_ap/ssr/ledger/balance_sheet.clj
+++ b/src/clj/auto_ap/ssr/ledger/balance_sheet.clj
@@ -81,7 +81,7 @@
           data (into []
                      (for [client-id client-ids
                            d date
-                           [client-id account-id location debits credits balance count] (iol-ion.query/detailed-account-snapshot (dc/db conn) client-id (coerce/to-date (time/plus d (time/days 1))))
+                           [client-id account-id location debits credits balance count] (iol-ion.query/detailed-account-snapshot (dc/db conn) client-id (coerce/to-date d))
                            :let [account ((or (lookup-account client-id) {}) account-id)]]
                        {:client-id client-id
                         :account-id account-id

From 28a755e9a97f3d219409b23afcb1348468fa3732 Mon Sep 17 00:00:00 2001
From: Bryce <bryce@integreatconsult.com>
Date: Mon, 2 Mar 2026 23:20:14 -0800
Subject: [PATCH 6/7] fixes invoice date filtering

---
 src/clj/auto_ap/ssr/components/date_range.clj | 14 ++++++++++---
 src/clj/auto_ap/ssr/invoices.clj              | 20 +++++++++++++------
 2 files changed, 25 insertions(+), 9 deletions(-)

diff --git a/src/clj/auto_ap/ssr/components/date_range.clj b/src/clj/auto_ap/ssr/components/date_range.clj
index ff1306f1..fe694c35 100644
--- a/src/clj/auto_ap/ssr/components/date_range.clj
+++ b/src/clj/auto_ap/ssr/components/date_range.clj
@@ -1,11 +1,13 @@
 (ns auto-ap.ssr.components.date-range
   (:require [auto-ap.ssr.components :as com]
+            [auto-ap.ssr.components.buttons :as but]
+            [auto-ap.ssr.svg :as svg]
             [auto-ap.time :as atime]
             [clj-time.coerce :as c]
             [clj-time.core :as t]
             [clj-time.periodic :as per]))
 
-(defn date-range-field [{:keys [value id]}]
+(defn date-range-field [{:keys [value id apply-button?]}]
   [:div {:id id}
    (com/field {:label "Date Range"}
               [:div.space-y-4
@@ -21,11 +23,17 @@
                                                       (atime/unparse-local atime/normal-date))
                                  :placeholder "Date"
                                  :size        :small
-                                 :class "shrink"})
+                                 :class "shrink date-filter-input"})
 
                 (com/date-input {:name        "end-date"
                                  :value       (some-> (:end value)
                                                       (atime/unparse-local atime/normal-date))
                                  :placeholder "Date"
                                  :size        :small
-                                 :class "shrink"})]])])
+                                 :class "shrink date-filter-input"})
+                (when apply-button?
+                  (but/button- {:color :secondary
+                                :size :small
+                                :type "button"
+                                "x-on:click" "$dispatch('datesApplied')"}
+                               "Apply"))]])])
diff --git a/src/clj/auto_ap/ssr/invoices.clj b/src/clj/auto_ap/ssr/invoices.clj
index 92b95c15..4028ebe1 100644
--- a/src/clj/auto_ap/ssr/invoices.clj
+++ b/src/clj/auto_ap/ssr/invoices.clj
@@ -37,7 +37,7 @@
    [auto-ap.ssr.invoice.common :refer [default-read]]
    [auto-ap.ssr.invoice.import :as invoice-import]
    [auto-ap.ssr.invoice.new-invoice-wizard :as new-invoice-wizard :refer [location-select*]]
-   [auto-ap.ssr.pos.common :refer [date-range-field*]]
+   [auto-ap.ssr.components.date-range :as dr]
    [auto-ap.ssr.svg :as svg]
    [auto-ap.ssr.utils
              :refer [apply-middleware-to-all-handlers assert-schema
@@ -77,7 +77,7 @@
     [:div {:id "exact-match-id-tag"}]))
 
 (defn filters [request]
-  [:form#invoice-filters {"hx-trigger"   "change delay:500ms, keyup changed from:.hot-filter delay:1000ms"
+  [:form#invoice-filters {"hx-trigger"   "datesApplied, change delay:500ms from:.filter-trigger, keyup changed from:.hot-filter delay:1000ms"
                           "hx-get"       (bidi/path-for ssr-routes/only-routes
                                                         ::route/table)
                           "hx-target"    "#entity-table"
@@ -92,7 +92,8 @@
                                :url (bidi/path-for ssr-routes/only-routes :vendor-search)
                                :value       (:vendor (:query-params request))
                                :value-fn :db/id
-                               :content-fn :vendor/name}))
+                               :content-fn :vendor/name
+                               :class       "filter-trigger"}))
     (com/field {:label "Account"}
                (com/typeahead {:name        "account"
                                :id          "account"
@@ -100,8 +101,12 @@
                                :value       (:account (:query-params request))
                                :value-fn :db/id
                                :content-fn #(:account/name (d-accounts/clientize (dc/pull (dc/db conn) d-accounts/default-read (:db/id %))
-                                                                                 (:db/id (:client request))))}))
-    (date-range-field* request)
+                                                                                 (:db/id (:client request))))
+                               :class       "filter-trigger"}))
+    (dr/date-range-field {:value {:start (:start-date (:query-params request))
+                                 :end (:end-date (:query-params request))}
+                        :id "date-range"
+                        :apply-button? true})
     (com/field {:label "Check #"}
                (com/text-input {:name        "check-number"
                                 :id          "check-number"
@@ -486,7 +491,10 @@
                  :fetch-page         fetch-page
                  :oob-render
                  (fn [request]
-                   [(assoc-in (date-range-field* request) [1 :hx-swap-oob] true)
+                   [(assoc-in (dr/date-range-field {:value {:start (:start-date (:query-params request))
+                                                           :end (:end-date (:query-params request))}
+                                                   :id "date-range"
+                                                   :apply-button? true}) [1 :hx-swap-oob] true)
                     (assoc-in (exact-match-id* request)  [1 :hx-swap-oob] true)])
                  :query-schema query-schema
                  :parse-query-params (fn [p]

From 6e3a024f66ecec667681211e611f45319bdc9ffa Mon Sep 17 00:00:00 2001
From: Bryce <bryce@brycecovertoperations.com>
Date: Mon, 30 Mar 2026 22:36:12 -0700
Subject: [PATCH 7/7] adds stuff for dough burger

---
 .beads/.gitignore                | 46 ------------------
 .beads/README.md                 | 81 --------------------------------
 .beads/config.yaml               | 67 --------------------------
 .beads/interactions.jsonl        |  0
 .beads/issues.jsonl              | 73 ----------------------------
 .beads/metadata.json             |  4 --
 src/clj/auto_ap/square/core3.clj | 45 +++++++++++++++---
 7 files changed, 38 insertions(+), 278 deletions(-)
 delete mode 100644 .beads/.gitignore
 delete mode 100644 .beads/README.md
 delete mode 100644 .beads/config.yaml
 delete mode 100644 .beads/interactions.jsonl
 delete mode 100644 .beads/issues.jsonl
 delete mode 100644 .beads/metadata.json

diff --git a/.beads/.gitignore b/.beads/.gitignore
deleted file mode 100644
index 0acd8c61..00000000
--- a/.beads/.gitignore
+++ /dev/null
@@ -1,46 +0,0 @@
-# SQLite databases
-*.db
-*.db?*
-*.db-journal
-*.db-wal
-*.db-shm
-
-# Daemon runtime files
-daemon.lock
-daemon.log
-daemon.pid
-bd.sock
-sync-state.json
-last-touched
-
-# Local version tracking (prevents upgrade notification spam after git ops)
-.local_version
-
-# Legacy database files
-db.sqlite
-bd.db
-
-# Worktree redirect file (contains relative path to main repo's .beads/)
-# Must not be committed as paths would be wrong in other clones
-redirect
-
-# Merge artifacts (temporary files from 3-way merge)
-beads.base.jsonl
-beads.base.meta.json
-beads.left.jsonl
-beads.left.meta.json
-beads.right.jsonl
-beads.right.meta.json
-
-# Sync state (local-only, per-machine)
-# These files are machine-specific and should not be shared across clones
-.sync.lock
-.jsonl.lock
-sync_base.jsonl
-export-state/
-
-# NOTE: Do NOT add negation patterns (e.g., !issues.jsonl) here.
-# They would override fork protection in .git/info/exclude, allowing
-# contributors to accidentally commit upstream issue databases.
-# The JSONL files (issues.jsonl, interactions.jsonl) and config files
-# are tracked by git by default since no pattern above ignores them.
diff --git a/.beads/README.md b/.beads/README.md
deleted file mode 100644
index 50f281f0..00000000
--- a/.beads/README.md
+++ /dev/null
@@ -1,81 +0,0 @@
-# Beads - AI-Native Issue Tracking
-
-Welcome to Beads! This repository uses **Beads** for issue tracking - a modern, AI-native tool designed to live directly in your codebase alongside your code.
-
-## What is Beads?
-
-Beads is issue tracking that lives in your repo, making it perfect for AI coding agents and developers who want their issues close to their code. No web UI required - everything works through the CLI and integrates seamlessly with git.
-
-**Learn more:** [github.com/steveyegge/beads](https://github.com/steveyegge/beads)
-
-## Quick Start
-
-### Essential Commands
-
-```bash
-# Create new issues
-bd create "Add user authentication"
-
-# View all issues
-bd list
-
-# View issue details
-bd show <issue-id>
-
-# Update issue status
-bd update <issue-id> --status in_progress
-bd update <issue-id> --status done
-
-# Sync with git remote
-bd sync
-```
-
-### Working with Issues
-
-Issues in Beads are:
-- **Git-native**: Stored in `.beads/issues.jsonl` and synced like code
-- **AI-friendly**: CLI-first design works perfectly with AI coding agents
-- **Branch-aware**: Issues can follow your branch workflow
-- **Always in sync**: Auto-syncs with your commits
-
-## Why Beads?
-
-✨ **AI-Native Design**
-- Built specifically for AI-assisted development workflows
-- CLI-first interface works seamlessly with AI coding agents
-- No context switching to web UIs
-
-🚀 **Developer Focused**
-- Issues live in your repo, right next to your code
-- Works offline, syncs when you push
-- Fast, lightweight, and stays out of your way
-
-🔧 **Git Integration**
-- Automatic sync with git commits
-- Branch-aware issue tracking
-- Intelligent JSONL merge resolution
-
-## Get Started with Beads
-
-Try Beads in your own projects:
-
-```bash
-# Install Beads
-curl -sSL https://raw.githubusercontent.com/steveyegge/beads/main/scripts/install.sh | bash
-
-# Initialize in your repo
-bd init
-
-# Create your first issue
-bd create "Try out Beads"
-```
-
-## Learn More
-
-- **Documentation**: [github.com/steveyegge/beads/docs](https://github.com/steveyegge/beads/tree/main/docs)
-- **Quick Start Guide**: Run `bd quickstart`
-- **Examples**: [github.com/steveyegge/beads/examples](https://github.com/steveyegge/beads/tree/main/examples)
-
----
-
-*Beads: Issue tracking that moves at the speed of thought* ⚡
diff --git a/.beads/config.yaml b/.beads/config.yaml
deleted file mode 100644
index ff8bc921..00000000
--- a/.beads/config.yaml
+++ /dev/null
@@ -1,67 +0,0 @@
-# Beads Configuration File
-# This file configures default behavior for all bd commands in this repository
-# All settings can also be set via environment variables (BD_* prefix)
-# or overridden with command-line flags
-
-# Issue prefix for this repository (used by bd init)
-# If not set, bd init will auto-detect from directory name
-# Example: issue-prefix: "myproject" creates issues like "myproject-1", "myproject-2", etc.
-# issue-prefix: ""
-
-# Use no-db mode: load from JSONL, no SQLite, write back after each command
-# When true, bd will use .beads/issues.jsonl as the source of truth
-# instead of SQLite database
-# no-db: false
-
-# Disable daemon for RPC communication (forces direct database access)
-# no-daemon: false
-
-# Disable auto-flush of database to JSONL after mutations
-# no-auto-flush: false
-
-# Disable auto-import from JSONL when it's newer than database
-# no-auto-import: false
-
-# Enable JSON output by default
-# json: false
-
-# Default actor for audit trails (overridden by BD_ACTOR or --actor)
-# actor: ""
-
-# Path to database (overridden by BEADS_DB or --db)
-# db: ""
-
-# Auto-start daemon if not running (can also use BEADS_AUTO_START_DAEMON)
-# auto-start-daemon: true
-
-# Debounce interval for auto-flush (can also use BEADS_FLUSH_DEBOUNCE)
-# flush-debounce: "5s"
-
-# Export events (audit trail) to .beads/events.jsonl on each flush/sync
-# When enabled, new events are appended incrementally using a high-water mark.
-# Use 'bd export --events' to trigger manually regardless of this setting.
-# events-export: false
-
-# Git branch for beads commits (bd sync will commit to this branch)
-# IMPORTANT: Set this for team projects so all clones use the same sync branch.
-# This setting persists across clones (unlike database config which is gitignored).
-# Can also use BEADS_SYNC_BRANCH env var for local override.
-# If not set, bd sync will require you to run 'bd config set sync.branch <branch>'.
-# sync-branch: "beads-sync"
-
-# Multi-repo configuration (experimental - bd-307)
-# Allows hydrating from multiple repositories and routing writes to the correct JSONL
-# repos:
-#   primary: "."  # Primary repo (where this database lives)
-#   additional:   # Additional repos to hydrate from (read-only)
-#     - ~/beads-planning  # Personal planning repo
-#     - ~/work-planning   # Work planning repo
-
-# Integration settings (access with 'bd config get/set')
-# These are stored in the database, not in this file:
-# - jira.url
-# - jira.project
-# - linear.url
-# - linear.api-key
-# - github.org
-# - github.repo
diff --git a/.beads/interactions.jsonl b/.beads/interactions.jsonl
deleted file mode 100644
index e69de29b..00000000
diff --git a/.beads/issues.jsonl b/.beads/issues.jsonl
deleted file mode 100644
index 68609603..00000000
--- a/.beads/issues.jsonl
+++ /dev/null
@@ -1,73 +0,0 @@
-{"id":"integreat-00t","title":"Security: Input validation and sanitization in import functions","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.0129384-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:33:06.050946022-08:00","closed_at":"2026-02-08T13:33:06.050946022-08:00","close_reason":"Code review completed - import_uploaded_invoices.clj reviewed"}
-{"id":"integreat-01o","title":"Security: Remove hardcoded API keys in insight_outcome_recommendation","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:46.141653019-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:31:42.926029101-08:00","closed_at":"2026-02-08T13:31:42.926029101-08:00","close_reason":"Code review completed - Hardcoded Pinecone API key found at lines 31, 48"}
-{"id":"integreat-08c","title":"Performance: Fix N+1 query problem in sales_summaries","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:47.102267818-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:31:42.899786826-08:00","closed_at":"2026-02-08T13:31:42.899786826-08:00","close_reason":"Code review completed - N+1 queries identified throughout sales_summaries.clj"}
-{"id":"integreat-0df","title":"Code review: auto_ap.ssr.admin.transaction_rules","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:26:21.41732477-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:26:50.545369921-08:00","closed_at":"2026-02-08T13:26:50.545369921-08:00","close_reason":"Closed"}
-{"id":"integreat-0ic","title":"Clientize sales summaries and add schema cleanup","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:43.768991121-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:43.768991121-08:00"}
-{"id":"integreat-0kl","title":"Code review: auto_ap.ssr.admin.import_batch","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:25:10.532871346-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:25:29.784001757-08:00","closed_at":"2026-02-08T13:25:29.784001757-08:00","close_reason":"Closed"}
-{"id":"integreat-0tf","title":"Security: Remove hardcoded cookie secret","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:54.956951237-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.535163011-08:00","closed_at":"2026-02-08T13:34:04.535163011-08:00","close_reason":"Code review completed - Hardcoded cookie store key found at lines 447-448"}
-{"id":"integreat-0z7","title":"Complete test coverage for transactions and invoice functionality","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:54.738460045-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:54.738460045-08:00"}
-{"id":"integreat-104","title":"Code Review: auto_ap.permissions","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.102943422-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:00.915797483-08:00","closed_at":"2026-02-08T09:30:00.915797483-08:00","close_reason":"Closed"}
-{"id":"integreat-1b8","title":"Code Review: auto_ap.ledger","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.457434281-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:52.517437805-08:00","closed_at":"2026-02-08T09:30:52.517437805-08:00","close_reason":"Closed"}
-{"id":"integreat-1ex","title":"Security: Implement rate limiting","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:55.32191677-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.585536605-08:00","closed_at":"2026-02-08T13:34:04.585536605-08:00","close_reason":"Code review completed - Rate limiting not implemented, recommendation added"}
-{"id":"integreat-1ff","title":"Code Review: iol_ion","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:59.195722157-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:30.631572319-08:00","closed_at":"2026-02-08T09:30:30.631572319-08:00","close_reason":"Closed"}
-{"id":"integreat-1ht","title":"Security: Add input validation and sanitization","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:55.707181622-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.560514104-08:00","closed_at":"2026-02-08T13:34:04.560514104-08:00","close_reason":"Code review completed - handler.clj reviewed, input validation issues identified"}
-{"id":"integreat-1jz","title":"Code review: auto_ap.ssr.admin.excel_invoice","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:18:26.802261171-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:18:51.297567931-08:00","closed_at":"2026-02-08T13:18:51.297567931-08:00","close_reason":"Closed"}
-{"id":"integreat-1m3","title":"Security: Remove hardcoded JWT secrets","status":"in_progress","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:54.57377807-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:35:21.465147919-08:00"}
-{"id":"integreat-1oo","title":"Code review: auto_ap.ssr.admin.vendors","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:26:57.577293865-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:27:29.429533887-08:00","closed_at":"2026-02-08T13:27:29.429533887-08:00","close_reason":"Closed"}
-{"id":"integreat-1qy","title":"Code Review: auto_ap.routes","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:55.26442193-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:55.026115465-08:00","closed_at":"2026-02-08T13:29:55.026115465-08:00","close_reason":"No file found for this namespace"}
-{"id":"integreat-278","title":"Security: Remove hardcoded Google credentials in auth.clj","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:19.491341584-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:30:37.240560315-08:00","closed_at":"2026-02-08T13:30:37.240560315-08:00","close_reason":"Code review completed - JWT secret management reviewed"}
-{"id":"integreat-2cd","title":"Code review: auto_ap.ssr.admin.sales_summaries","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:25:56.325342803-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:26:17.717894907-08:00","closed_at":"2026-02-08T13:26:17.717894907-08:00","close_reason":"Closed"}
-{"id":"integreat-2ti","title":"Code review: auto_ap.ssr.admin.accounts","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T12:53:44.646685216-08:00","created_by":"Bryce","updated_at":"2026-02-08T12:55:55.094416105-08:00","closed_at":"2026-02-08T12:55:55.094416105-08:00","close_reason":"Closed"}
-{"id":"integreat-35k","title":"Fix session handling and authentication route issues","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:50.662486708-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:50.662486708-08:00"}
-{"id":"integreat-3a7","title":"Refactor clients module for better reusability, schemas, and bug fixes","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:44.681764032-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:44.681764032-08:00"}
-{"id":"integreat-3cp","title":"Code Review: auto_ap.import","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.573843708-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:55.090966459-08:00","closed_at":"2026-02-08T13:29:55.090966459-08:00","close_reason":"No file found for this namespace"}
-{"id":"integreat-3pr","title":"Code Review: auto_ap.ss_routes","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.020989213-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:54.961399111-08:00","closed_at":"2026-02-08T13:29:54.961399111-08:00","close_reason":"No file found for this namespace"}
-{"id":"integreat-3y8","title":"Code review: auto_ap.ssr.admin.clients","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:42:10.903791187-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:47:29.495083383-08:00","closed_at":"2026-02-08T09:47:29.495083383-08:00","close_reason":"Closed"}
-{"id":"integreat-46f","title":"Security: Rate limiting for external API calls","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.429193916-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.63601665-08:00","closed_at":"2026-02-08T13:34:04.63601665-08:00","close_reason":"Code review completed - Rate limiting recommendations added"}
-{"id":"integreat-4ag","title":"Code Review: iol-ion.query - Security and Code Quality Issues","description":"Code review of /home/noti/dev/integreat/iol_ion/src/iol_ion/query.clj revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- **Regex Injection Vulnerability** (line 67-68): User input passed directly to regex compilation without sanitization, enabling ReDoS attacks\\n- **No input validation on date parameters** (lines 25-30, 46-54, 83-162): Invalid dates could cause Denial of Service attacks\\n- **No validation of client IDs** (lines 46-54, 83-162): Malicious client IDs could bypass access controls\\n- **Unsafe timezone handling** (line 70-75): Hardcoded timezone without validation or fallback could cause failures\\n- **Permission checking lacks validation** (lines 59-64): Assumes identity structure without validation\\n\\n## Code Quality Issues:\\n- **Extreme code duplication** (lines 83-162): 8 scan functions with identical structure except for index names and entity types\\n- **Obsolete function** (lines 7-9):  marked as \"not working in Datomic Cloud\" but still used\\n- **Magic numbers** (lines 25-30, 86-89): Hardcoded years (2001-2030) and days (90) should be configuration\\n- **Inconsistent client handling**: Mixed use of  vs direct client IDs\\n\\n## Performance Issues:\\n- **Inefficient database queries** (lines 83-162): Sequential scans in for-loops instead of bulk operations\\n- **Repeated timezone conversions**: Each call to local-now converts to same timezone unnecessarily\\n\\n## Recommendations:\\n1. Add input validation for all user-supplied parameters\\n2. Create a utility function to handle regex compilation safely\\n3. Extract common scan logic into a single reusable function\\n4. Replace deprecated entid function or remove its usage\\n5. Move magic numbers to configuration constants\\n6. Optimize database queries with bulk operations\\n7. Add proper error handling and validation for all functions","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:53.593616294-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:28:52.035161365-08:00","closed_at":"2026-02-08T13:28:52.035161365-08:00","close_reason":"Closed"}
-{"id":"integreat-4mc","title":"Clean up legacy code and remove commented out templates","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.479644441-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.479644441-08:00"}
-{"id":"integreat-54l","title":"Code Review: auto_ap.background","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:58.809902284-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:31:14.526449134-08:00","closed_at":"2026-02-08T09:31:14.526449134-08:00","close_reason":"Closed"}
-{"id":"integreat-59c","title":"Security: Fix SQL injection vulnerability in exports.clj","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:19.959391674-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:30:37.208340718-08:00","closed_at":"2026-02-08T13:30:37.208340718-08:00","close_reason":"Code review completed - SQL injection vulnerability found in export-raw function"}
-{"id":"integreat-5a1","title":"Concurrency: Fix thread safety issues in sysco.clj","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:48.485672868-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:24:48.485672868-08:00"}
-{"id":"integreat-6cf","title":"Implement autopay and unpaid API unification","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:49.217286047-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:49.217286047-08:00"}
-{"id":"integreat-74f","title":"Security: Transaction validation and data integrity","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:29.251711914-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:04.611256589-08:00","closed_at":"2026-02-08T13:34:04.611256589-08:00","close_reason":"Code review completed - Transaction validation reviewed in multiple files"}
-{"id":"integreat-7cx","title":"Code Review: auto_ap.shared_views","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.754073898-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:39.003484636-08:00","closed_at":"2026-02-08T13:29:39.003484636-08:00","close_reason":"Closed"}
-{"id":"integreat-7de","title":"Security: Database connection management in imports","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:27.574962301-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:33:06.077037636-08:00","closed_at":"2026-02-08T13:33:06.077037636-08:00","close_reason":"Code review completed - No connection management issues found in import files"}
-{"id":"integreat-7en","title":"Code Review: auto_ap.ss.admin.background-jobs - Security and Code Quality Issues","description":"Code review of /home/noti/dev/integreat/src/clj/auto_ap/ssr/admin/background_jobs.clj revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- **No job name validation** (lines 53-58): Job names used to construct task ARNs without validation, enabling injection attacks\\n- **Hardcoded network configuration** (lines 150-52): Subnets and security groups hardcoded with direct IPs\\n- **Hardcoded security group IDs** (lines 151-52): Security credentials directly embedded in code\\n- **No rate limiting** (lines 56-61): Job execution lacks rate limiting, enabling DoS attacks\\n- **Fragile job name sanitization** (lines 161-62): Regex replacement approach is insecure\\n- **No URL validation** (lines 74, 84-86): S3 URLs not validated before use\\n\\n## Code Quality Issues:\\n- **Poor error handling** (lines 30-37): AWS API errors not handled, could crash page\\n- **Code duplication** (lines 46-52, 53-58):  and  have identical logic\\n- **Magic strings** (lines 33-42, 224-42): Job names hardcoded in select options and processing\\n- **Inconsistent error handling**: Mixed approach to form errors and API errors\\n\\n## Performance Issues:\\n- **Inefficient task querying** (lines 30-37): Two separate AWS API calls instead of one\\n- **Nested AWS calls** (lines 35-36): Multiple nested API calls increase complexity\\n- **No caching**: Repeated API calls to  without memoization\\n\\n## Recommendations:\\n1. Add input validation for all user-supplied parameters\\n2. Extract hardcoded configuration to environment variables or config files\\n3. Implement rate limiting on job execution\\n4. Use secure sanitization for job names\\n5. Add proper error handling for AWS API calls\\n6. Remove code duplication by extracting common logic\\n7. Optimize AWS API calls and add caching where appropriate\\n8. Validate S3 URLs before use","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:31:15.621682311-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:18:06.425132957-08:00","closed_at":"2026-02-08T13:18:06.425132957-08:00","close_reason":"Closed"}
-{"id":"integreat-8jt","title":"Performance: Fix potential memory leak in client hydration","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:56.135939778-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:56.135939778-08:00"}
-{"id":"integreat-8p7","title":"Code Review: auto_ap.client_routes","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:57.389725276-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:13.440742845-08:00","closed_at":"2026-02-08T13:34:13.440742845-08:00","close_reason":"No file found for auto_ap.client_routes namespace"}
-{"id":"integreat-9o2","title":"Code Review: auto_ap.ss","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:56.653394004-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:54.994180329-08:00","closed_at":"2026-02-08T13:29:54.994180329-08:00","close_reason":"No file found for this namespace"}
-{"id":"integreat-adj","title":"Performance: Fix CSV writing efficiency in exports.clj","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:21.877285694-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:21.877285694-08:00"}
-{"id":"integreat-ae3","title":"Investigate iol-ion module and security review requirements","description":"iol-ion appears to be an external or internal module that provides query functions used throughout the codebase:\\n\\nFunctions used:\\n- iol-ion.query/ident (line 98 in transaction_rules.clj)\\n- iol-ion.query/recent-date (line 317 in transaction_rules.clj)\\n- iol-ion.query/-\u003epattern (lines 323, 541 in transaction_rules.clj)\\n- iol-ion.query/dom (lines 361, 368 in transaction_rules.clj)\\n\\nNeeds investigation:\\n1. Is iol-ion a third-party library or internal module?\\n2. What security concerns exist in its usage?\\n3. Is there proper input validation in its functions?\\n4. Are there any potential injection vulnerabilities?\\n5. What are the dependencies and version requirements?\\n\\nSearch in:\\n- project.clj or deps.edn for dependencies\\n- src directory for module definition\\n- Documentation or README files","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:31.587996635-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:30:34.841745089-08:00"}
-{"id":"integreat-aut","title":"Fix payment query parameter parsing and implement proper decoding","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:46.65410618-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:46.65410618-08:00"}
-{"id":"integreat-bct","title":"Complete IOL integration with Datomic Cloud","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.056089489-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.056089489-08:00"}
-{"id":"integreat-d8q","title":"Code Review: auto_ap.main","notes":"Code review completed for auto_ap.views.main\n\n**Summary**: Found several issues ranging from performance to code quality.\n\n**High Priority**:\n- Inefficient key generation on line 90 using pr-str - causes unnecessary re-renders\n\n**Medium Priority**:\n- Permission check pattern duplication across 16 page methods\n- Insufficient nil handling for edge cases\n\n**Low Priority**:\n- Subscription frequency could be optimized\n- Growing page handler count suggests need for refactoring\n\n**Security**: All page routes properly check permissions - good security posture.\n\nFull detailed review saved to REVIEW_auto_ap.main.md","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.224210511-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:35:08.65588745-08:00","closed_at":"2026-02-08T09:35:08.65588745-08:00","close_reason":"Closed"}
-{"id":"integreat-dsb","title":"Performance: External API calls should be asynchronous","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:29.66389647-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:29.66389647-08:00"}
-{"id":"integreat-edg","title":"Fix grid page helper issues and form bubbling problems","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.844140503-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.844140503-08:00"}
-{"id":"integreat-g4b","title":"Complete wizard implementation and make it more modular","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:52.493115251-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:52.493115251-08:00"}
-{"id":"integreat-gf0","title":"Performance: Fix memory leak in client cache","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:23:28.846092823-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:23:28.846092823-08:00"}
-{"id":"integreat-ifw","title":"Add Plaid merchant integration and improve vendors module","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.076207245-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.076207245-08:00"}
-{"id":"integreat-iut","title":"Code review: auto_ap.ssr.admin.history","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:22:16.782050468-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:22:40.135978155-08:00","closed_at":"2026-02-08T13:22:40.135978155-08:00","close_reason":"Closed"}
-{"id":"integreat-lov","title":"Security: Add input validation to all routes","status":"open","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:21.423853589-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:26:21.423853589-08:00"}
-{"id":"integreat-mt4","title":"Code Review: auto_ap.jobs","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:54.921445539-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:55.058776633-08:00","closed_at":"2026-02-08T13:29:55.058776633-08:00","close_reason":"No file found for this namespace"}
-{"id":"integreat-mxf","title":"Security: Fix error information leakage","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:21:56.506580155-08:00","created_by":"Bryce","updated_at":"2026-02-08T09:21:56.506580155-08:00"}
-{"id":"integreat-opb","title":"Security: Fix SQL injection risk in close_auto_invoices","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:47.576841414-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:33:26.149329059-08:00","closed_at":"2026-02-08T13:33:26.149329059-08:00","close_reason":"Code review completed - No SQL injection risk found, queries properly parameterized"}
-{"id":"integreat-oyo","title":"Componentize transaction rules and improve form handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:45.44170363-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:45.44170363-08:00"}
-{"id":"integreat-pc1","title":"Complete real user testing for invoices and add credit from balance support","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:46.269009169-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:46.269009169-08:00"}
-{"id":"integreat-qj2","title":"Improve component structure and implement better error handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:52.132393487-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:52.132393487-08:00"}
-{"id":"integreat-rlj","title":"Complete wizard step structure and modularize page components","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:53.993488192-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:53.993488192-08:00"}
-{"id":"integreat-s53","title":"Security: Remove hardcoded NTG API key in exports.clj","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:20.457790327-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:30:37.176681233-08:00","closed_at":"2026-02-08T13:30:37.176681233-08:00","close_reason":"Code review completed - Hardcoded API key found at lines 659, 665"}
-{"id":"integreat-s5h","title":"Resource: Fix resource leaks in import_uploaded_invoices","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:48.026329699-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:31:42.874323093-08:00","closed_at":"2026-02-08T13:31:42.874323093-08:00","close_reason":"Code review completed - Resource leaks identified in lines 43-76"}
-{"id":"integreat-syf","title":"Code Review: auto_ap.graphql","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:20:55.620533412-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:29:39.033441719-08:00","closed_at":"2026-02-08T13:29:39.033441719-08:00","close_reason":"Closed"}
-{"id":"integreat-uc3","title":"Security: Input sanitization and validation in job functions","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:24:46.60155898-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:31:42.951371743-08:00","closed_at":"2026-02-08T13:31:42.951371743-08:00","close_reason":"Code review completed - Job functions reviewed, input validation needed"}
-{"id":"integreat-vk3","title":"Add feature flags system and signature support","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.419253869-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.419253869-08:00"}
-{"id":"integreat-vkf","title":"Improve form handling and remove unused code","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:49.592681075-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:49.592681075-08:00"}
-{"id":"integreat-vvk","title":"Performance: Fix N+1 query problems in exports.clj","status":"closed","priority":1,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:26:20.96494325-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:30:37.144024095-08:00","closed_at":"2026-02-08T13:30:37.144024095-08:00","close_reason":"Code review completed - N+1 queries identified in exports.clj"}
-{"id":"integreat-w1i","title":"Improve input components and data grid implementations","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:47.721945968-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:47.721945968-08:00"}
-{"id":"integreat-y3e","title":"Improve typeahead component and implement proper query handling","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:53.602661377-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:53.602661377-08:00"}
-{"id":"integreat-y72","title":"Enhance ledger reports and improve navigation/aside components","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.101954827-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.101954827-08:00"}
-{"id":"integreat-yq9","title":"Remove deprecated code and clean up unused functions","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:54.367393577-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:54.367393577-08:00"}
-{"id":"integreat-zly","title":"Code Review: auto_ap.permissions - Security and Maintainability Issues","description":"Code review of /home/noti/dev/integreat/src/cljc/auto_ap/permissions.cljc revealed critical security and maintainability issues:\\n\\n## Security Issues:\\n- Client access control bypass: Non-admins completely blocked if client-id is nil (lines 22-24)\\n- No input validation: Client IDs and user data not validated (lines 10-11, 17)\\n- Trust-based user object: No schema validation for user data\\n\\n## Maintainability Issues:\\n- Extreme code duplication: Permission logic repeated 4 times across different role checks (lines 26-141)\\n- Magic strings: Inconsistent role representation (mixing keywords and strings)\\n- Hardcoded permissions: No separation from business logic\\n- No unit tests: No test coverage for permission checks\\n\\n## Performance Issues:\\n- Redundant set creation on every call (lines 22-23)\\n- Repeated condition checks for each role\\n\\n## Recommendations:\\n1. Implement schema validation for user data using malli\\n2. Extract permissions to data structure following DRY principle\\n3. Add client-id validation with pos-int?\\n4. Add unit tests for all permission sets\\n5. Move set creation outside function or add short-circuit for admin role\\n\\nSee full review for detailed analysis and refactoring suggestions.","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T09:30:01.992071212-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:34:13.389737709-08:00","closed_at":"2026-02-08T13:34:13.389737709-08:00","close_reason":"No file found for auto_ap.permissions namespace"}
-{"id":"integreat-zn0","title":"Implement cash drawer shift functionality","status":"open","priority":3,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:51.76190647-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:51.76190647-08:00"}
-{"id":"integreat-zp6","title":"Code review: auto_ap.ssr.admin.sales_powerqueries","status":"closed","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T13:25:33.754411978-08:00","created_by":"Bryce","updated_at":"2026-02-08T13:25:52.806787427-08:00","closed_at":"2026-02-08T13:25:52.806787427-08:00","close_reason":"Closed"}
-{"id":"integreat-zt8","title":"Complete invoice totals implementation to include expense accounts","status":"open","priority":2,"issue_type":"task","owner":"bryce@brycecovertoperations.com","created_at":"2026-02-08T08:56:48.848572114-08:00","created_by":"Bryce","updated_at":"2026-02-08T08:56:48.848572114-08:00"}
diff --git a/.beads/metadata.json b/.beads/metadata.json
deleted file mode 100644
index c787975e..00000000
--- a/.beads/metadata.json
+++ /dev/null
@@ -1,4 +0,0 @@
-{
-  "database": "beads.db",
-  "jsonl_export": "issues.jsonl"
-}
\ No newline at end of file
diff --git a/src/clj/auto_ap/square/core3.clj b/src/clj/auto_ap/square/core3.clj
index dee59bd0..2f192cd2 100644
--- a/src/clj/auto_ap/square/core3.clj
+++ b/src/clj/auto_ap/square/core3.clj
@@ -293,7 +293,9 @@
                       (condp = (:name (:source order))
                         "GRUBHUB"          :ccp-processor/grubhub
                         "UBEREATS"         :ccp-processor/uber-eats
+                        "Uber Eats"         :ccp-processor/uber-eats
                         "DOORDASH"         :ccp-processor/doordash
+                        "DoorDash"         :ccp-processor/doordash
                         "Koala"            :ccp-processor/koala
                         "koala-production" :ccp-processor/koala
                         :ccp-processor/na))
@@ -868,7 +870,11 @@
 #_(comment 
   (require 'auto-ap.time-reader)
 
-  
+ @(let [[c [l]] (get-square-client-and-location "DBFS")  ]
+     (log/peek :x  [ c l])
+     (search c l #clj-time/date-time "2026-03-28" #clj-time/date-time "2026-03-29")
+
+     ) 
 
   @(let [[c [l]] (get-square-client-and-location "NGAK")  ]
      (log/peek :x  [ c l])
@@ -1058,18 +1064,43 @@
        (count)
        
        )
-  (doseq [c (get-square-clients)]
-    (println "Upserting" (:client/name c))
-    @(upsert c))
+  
+  
+  
+  (doseq [[code] (seq (dc/q '[:find ?code
+                              :in $
+                              :where [?o :sales-order/date ?d]
+                              [(>= ?d #inst "2026-01-01")]
+                              [?o :sales-order/source "Invoices"]
+                              [?o :sales-order/client ?c]
+                              [?c :client/code ?code]]
+                            (dc/db conn)))
+          :let [[c [l]] (get-square-client-and-location code)
+                ]
+          order @(search c l #clj-time/date-time "2026-01-01T00:00:00-08:00" (time/now))
+          :when (= "Invoices" (:name (:source order) ))
+          :let [[sales-order] @(order->sales-order c l order)]]
+    
+    (when (should-import-order? order)
+      (println "DATE IS" (:sales-order/date sales-order))
+      (when (some-> (:sales-order/date sales-order) coerce/to-date-time (time/after?  #clj-time/date-time "2026-2-16T00:00:00-08:00"))
+        (println "WOULD UPDATE" sales-order)
+        @(dc/transact auto-ap.datomic/conn [sales-order])
+        )
+      #_@(dc/transact )
+      (println "DONE"))
+    
+    
+    )
 
   #_(filter (comp #{"OTHER"} :type) (mapcat :tenders z))
   
 
   @(let [[c [l]] (get-square-client-and-location "NGRY")]
-    #_(search c l (clj-time.coerce/from-date #inst "2025-02-28") (clj-time.coerce/from-date #inst "2025-03-01"))
+     #_(search c l (clj-time.coerce/from-date #inst "2025-02-28") (clj-time.coerce/from-date #inst "2025-03-01"))
 
-    (order->sales-order c l (:order (get-order c l "KdvwntmfMNTKBu8NOocbxatOs18YY" )))
+     (order->sales-order c l (:order (get-order c l "KdvwntmfMNTKBu8NOocbxatOs18YY" )))
 
-    )
+     )
   
   )